Author Topic: virus resource hog-Need help with removing it (Read 31107 times)

w619 · « **Reply #15 on:** April 08, 2010, 02:07:43 PM »

bckgres.dll -> C:\WINDOWS\System32\dllcache\bckgres.dll -> [2010/02/20 08:26:37 | 001,817,687 | ---- | C | MD5 = C13927D872E8FC3DA28686854D1882FF] (Microsoft Corporation)
chkrres.dll -> C:\WINDOWS\System32\dllcache\chkrres.dll -> [2010/02/20 08:26:37 | 000,780,885 | ---- | C | MD5 = 27243B5FFE972BF15B1D9BAD19D89660] (Microsoft Corporation)
rvseres.dll -> C:\WINDOWS\System32\dllcache\rvseres.dll -> [2010/02/20 08:26:37 | 000,753,236 | ---- | C | MD5 = 44CB5A7B5CF90E6BD5298FAE312CF446] (Microsoft Corporation)
bckg.dll -> C:\WINDOWS\System32\dllcache\bckg.dll -> [2010/02/20 08:26:37 | 000,082,501 | ---- | C | MD5 = 12A7A6C65309995551FE199BC1FF3AA6] (Microsoft Corporation)
rvse.dll -> C:\WINDOWS\System32\dllcache\rvse.dll -> [2010/02/20 08:26:37 | 000,048,706 | ---- | C | MD5 = 07E5DEDA0BE09F3CA78B10A12A7E9BD2] (Microsoft Corporation)
chkrzm.exe -> C:\WINDOWS\System32\dllcache\chkrzm.exe -> [2010/02/20 08:26:37 | 000,042,575 | ---- | C | MD5 = 930270EC019A03CA2F0DF97C660AF7FD] (Microsoft Corporation)
rvsezm.exe -> C:\WINDOWS\System32\dllcache\rvsezm.exe -> [2010/02/20 08:26:37 | 000,042,574 | ---- | C | MD5 = F0B652C670BA295C8A25E28A04A4C979] (Microsoft Corporation)
shvlres.dll -> C:\WINDOWS\System32\dllcache\shvlres.dll -> [2010/02/20 08:26:36 | 002,178,131 | ---- | C | MD5 = E7F813D201E24B36BF33DBC9061FD7DC] (Microsoft Corporation)
hrtzres.dll -> C:\WINDOWS\System32\dllcache\hrtzres.dll -> [2010/02/20 08:26:36 | 001,175,635 | ---- | C | MD5 = 11EBFEC6FCF2638AC1086E67EE74D4AD] (Microsoft Corporation)
shvl.dll -> C:\WINDOWS\System32\dllcache\shvl.dll -> [2010/02/20 08:26:36 | 000,066,113 | ---- | C | MD5 = BB7102E2DA5106FDE04E204B49EC5298] (Microsoft Corporation)
hrtz.dll -> C:\WINDOWS\System32\dllcache\hrtz.dll -> [2010/02/20 08:26:36 | 000,057,409 | ---- | C | MD5 = D681CD9B8CBB3BA31A0AAB042B2D2176] (Microsoft Corporation)
shvlzm.exe -> C:\WINDOWS\System32\dllcache\shvlzm.exe -> [2010/02/20 08:26:36 | 000,042,573 | ---- | C | MD5 = 8053FEB9502EE2261F192EEB57DA2E4A] (Microsoft Corporation)
hrtzzm.exe -> C:\WINDOWS\System32\dllcache\hrtzzm.exe -> [2010/02/20 08:26:36 | 000,042,573 | ---- | C | MD5 = 73B8B5915E8EDB68AAFBADCEDB012F86] (Microsoft Corporation)
chkr.dll -> C:\WINDOWS\System32\dllcache\chkr.dll -> [2010/02/20 08:26:36 | 000,040,515 | ---- | C | MD5 = 0C97F6DD68EECC42E967F39898051C42] (Microsoft Corporation)
uniansi.dll -> C:\WINDOWS\System32\dllcache\uniansi.dll -> [2010/02/20 08:26:36 | 000,032,339 | ---- | C | MD5 = FFD946510141E56D810DF93FBB2E2959] (Microsoft Corporation)
zeeverm.dll -> C:\WINDOWS\System32\dllcache\zeeverm.dll -> [2010/02/20 08:26:36 | 000,004,677 | ---- | C | MD5 = A5E8C0798C72BF4E0DEA30E15128A0B7] (Microsoft Corporation)
cmnresm.dll -> C:\WINDOWS\System32\dllcache\cmnresm.dll -> [2010/02/20 08:26:35 | 001,039,955 | ---- | C | MD5 = C24B1914D780FC48062ADE2033381594] (Microsoft Corporation)
cmnclim.dll -> C:\WINDOWS\System32\dllcache\cmnclim.dll -> [2010/02/20 08:26:35 | 000,217,160 | ---- | C | MD5 = 0626E91A7D22A242AB7119AF2C45B294] (Microsoft Corporation)
zoneclim.dll -> C:\WINDOWS\System32\dllcache\zoneclim.dll -> [2010/02/20 08:26:35 | 000,113,222 | ---- | C | MD5 = 314C9EE6B374695DC057190138349BB3] (Microsoft Corporation)
zcorem.dll -> C:\WINDOWS\System32\dllcache\zcorem.dll -> [2010/02/20 08:26:35 | 000,041,029 | ---- | C | MD5 = 51FD808F3C87A6A53F7778EDAA2A2C7C] (Microsoft Corporation)
zonelibm.dll -> C:\WINDOWS\System32\dllcache\zonelibm.dll -> [2010/02/20 08:26:35 | 000,013,894 | ---- | C | MD5 = FAC7105361ED9B15A7332C18FE5F66BC] (Microsoft Corporation)
zclientm.exe -> C:\WINDOWS\System32\dllcache\zclientm.exe -> [2010/02/20 08:26:34 | 000,036,937 | ---- | C | MD5 = 5AC6CD4642FC24DC829BF5025A557EFB] (Microsoft Corporation)
znetm.dll -> C:\WINDOWS\System32\dllcache\znetm.dll -> [2010/02/20 08:26:34 | 000,029,760 | ---- | C | MD5 = 938BB9335D05182D3446868E27230869] (Microsoft Corporation)
write.exe -> C:\WINDOWS\System32\write.exe -> [2010/02/20 08:26:34 | 000,005,632 | ---- | C | MD5 = BB75ED2CEA65D2DE97E88FDE1B1A0BF8] (Microsoft Corporation)
write.exe -> C:\WINDOWS\System32\dllcache\write.exe -> [2010/02/20 08:26:34 | 000,005,632 | ---- | C | MD5 = BB75ED2CEA65D2DE97E88FDE1B1A0BF8] (Microsoft Corporation)
MSN Gaming Zone -> C:\Program Files\MSN Gaming Zone -> [2010/02/20 08:26:34 | 000,000,000 | ---D | C]
sndvol32.exe -> C:\WINDOWS\System32\sndvol32.exe -> [2010/02/20 08:26:26 | 000,138,752 | ---- | C | MD5 = 7DF33946B5911E75320CCA9AC1A3492B] (Microsoft Corporation)
sndvol32.exe -> C:\WINDOWS\System32\dllcache\sndvol32.exe -> [2010/02/20 08:26:26 | 000,138,752 | ---- | C | MD5 = 7DF33946B5911E75320CCA9AC1A3492B] (Microsoft Corporation)
avtapi.dll -> C:\WINDOWS\System32\dllcache\avtapi.dll -> [2010/02/20 08:26:25 | 000,227,840 | ---- | C | MD5 = B82C4535E430DDC631FEC10D63390ECA] (Microsoft Corporation)
avtapi.dll -> C:\WINDOWS\System32\avtapi.dll -> [2010/02/20 08:26:25 | 000,227,840 | ---- | C | MD5 = B82C4535E430DDC631FEC10D63390ECA] (Microsoft Corporation)
avwav.dll -> C:\WINDOWS\System32\dllcache\avwav.dll -> [2010/02/20 08:26:25 | 000,073,216 | ---- | C | MD5 = F415ACC27107AA6DADABE339949EE670] (Microsoft Corporation)
avwav.dll -> C:\WINDOWS\System32\avwav.dll -> [2010/02/20 08:26:25 | 000,073,216 | ---- | C | MD5 = F415ACC27107AA6DADABE339949EE670] (Microsoft Corporation)
winchat.exe -> C:\WINDOWS\System32\winchat.exe -> [2010/02/20 08:26:25 | 000,035,328 | ---- | C | MD5 = FEFC52216D2787EA1DE42BABA01AF9BF] (Microsoft Corporation)
winchat.exe -> C:\WINDOWS\System32\dllcache\winchat.exe -> [2010/02/20 08:26:25 | 000,035,328 | ---- | C | MD5 = FEFC52216D2787EA1DE42BABA01AF9BF] (Microsoft Corporation)
avmeter.dll -> C:\WINDOWS\System32\dllcache\avmeter.dll -> [2010/02/20 08:26:25 | 000,016,384 | ---- | C | MD5 = 399495998BCEEA80F23E57CCAB074508] (Microsoft Corporation)
avmeter.dll -> C:\WINDOWS\System32\avmeter.dll -> [2010/02/20 08:26:25 | 000,016,384 | ---- | C | MD5 = 399495998BCEEA80F23E57CCAB074508] (Microsoft Corporation)
getuname.dll -> C:\WINDOWS\System32\getuname.dll -> [2010/02/20 08:26:18 | 000,605,696 | ---- | C | MD5 = 60B9959D333C3D11255D8695D2685430] (Microsoft Corporation)
getuname.dll -> C:\WINDOWS\System32\dllcache\getuname.dll -> [2010/02/20 08:26:18 | 000,605,696 | ---- | C | MD5 = 60B9959D333C3D11255D8695D2685430] (Microsoft Corporation)
charmap.exe -> C:\WINDOWS\System32\dllcache\charmap.exe -> [2010/02/20 08:26:18 | 000,080,384 | ---- | C | MD5 = AC9FA2BA34225342A8897930503AE12F] (Microsoft Corporation)
charmap.exe -> C:\WINDOWS\System32\charmap.exe -> [2010/02/20 08:26:18 | 000,080,384 | ---- | C | MD5 = AC9FA2BA34225342A8897930503AE12F] (Microsoft Corporation)
winmine.exe -> C:\WINDOWS\System32\winmine.exe -> [2010/02/20 08:26:17 | 000,119,808 | ---- | C | MD5 = 9C45D38B74634C9DED60BEC640C5C3CA] (Microsoft Corporation)
winmine.exe -> C:\WINDOWS\System32\dllcache\winmine.exe -> [2010/02/20 08:26:17 | 000,119,808 | ---- | C | MD5 = 9C45D38B74634C9DED60BEC640C5C3CA] (Microsoft Corporation)
calc.exe -> C:\WINDOWS\System32\dllcache\calc.exe -> [2010/02/20 08:26:17 | 000,114,688 | ---- | C | MD5 = 829E4805B0E12B383EE09ABDC9E2DC3C] (Microsoft Corporation)
calc.exe -> C:\WINDOWS\System32\calc.exe -> [2010/02/20 08:26:17 | 000,114,688 | ---- | C | MD5 = 829E4805B0E12B383EE09ABDC9E2DC3C] (Microsoft Corporation)
sol.exe -> C:\WINDOWS\System32\sol.exe -> [2010/02/20 08:26:17 | 000,056,832 | ---- | C | MD5 = 373E7A863A1A345C60EDB9E20EC32311] (Microsoft Corporation)
sol.exe -> C:\WINDOWS\System32\dllcache\sol.exe -> [2010/02/20 08:26:17 | 000,056,832 | ---- | C | MD5 = 373E7A863A1A345C60EDB9E20EC32311] (Microsoft Corporation)
mshearts.exe -> C:\WINDOWS\System32\mshearts.exe -> [2010/02/20 08:26:16 | 000,126,976 | ---- | C | MD5 = BE1B85306352E0AC901EC08506792B6B] (Microsoft Corporation)
mshearts.exe -> C:\WINDOWS\System32\dllcache\mshearts.exe -> [2010/02/20 08:26:16 | 000,126,976 | ---- | C | MD5 = BE1B85306352E0AC901EC08506792B6B] (Microsoft Corporation)
freecell.exe -> C:\WINDOWS\System32\freecell.exe -> [2010/02/20 08:26:16 | 000,055,296 | ---- | C | MD5 = 4D9B5E540158BF8E9B1BCAC1AEDD8C60] (Microsoft Corporation)
freecell.exe -> C:\WINDOWS\System32\dllcache\freecell.exe -> [2010/02/20 08:26:16 | 000,055,296 | ---- | C | MD5 = 4D9B5E540158BF8E9B1BCAC1AEDD8C60] (Microsoft Corporation)
tsshutdn.exe -> C:\WINDOWS\System32\tsshutdn.exe -> [2010/02/20 08:26:16 | 000,016,896 | ---- | C | MD5 = 725902D25A3B8F234F729CA057052C41] (Microsoft Corporation)
tsshutdn.exe -> C:\WINDOWS\System32\dllcache\tsshutdn.exe -> [2010/02/20 08:26:16 | 000,016,896 | ---- | C | MD5 = 725902D25A3B8F234F729CA057052C41] (Microsoft Corporation)
tskill.exe -> C:\WINDOWS\System32\tskill.exe -> [2010/02/20 08:26:16 | 000,016,384 | ---- | C | MD5 = F5FE756927FEF0F4A069DE0A832B5F0F] (Microsoft Corporation)
tskill.exe -> C:\WINDOWS\System32\dllcache\tskill.exe -> [2010/02/20 08:26:16 | 000,016,384 | ---- | C | MD5 = F5FE756927FEF0F4A069DE0A832B5F0F] (Microsoft Corporation)
tsdiscon.exe -> C:\WINDOWS\System32\tsdiscon.exe -> [2010/02/20 08:26:16 | 000,014,848 | ---- | C | MD5 = DC8AAE44CDB63F178BC7B993B43C3318] (Microsoft Corporation)
tsdiscon.exe -> C:\WINDOWS\System32\dllcache\tsdiscon.exe -> [2010/02/20 08:26:16 | 000,014,848 | ---- | C | MD5 = DC8AAE44CDB63F178BC7B993B43C3318] (Microsoft Corporation)
shadow.exe -> C:\WINDOWS\System32\shadow.exe -> [2010/02/20 08:26:16 | 000,014,848 | ---- | C | MD5 = A72C27CE68318023981A4E034F85131C] (Microsoft Corporation)
shadow.exe -> C:\WINDOWS\System32\dllcache\shadow.exe -> [2010/02/20 08:26:16 | 000,014,848 | ---- | C | MD5 = A72C27CE68318023981A4E034F85131C] (Microsoft Corporation)
tscon.exe -> C:\WINDOWS\System32\tscon.exe -> [2010/02/20 08:26:16 | 000,014,848 | ---- | C | MD5 = 900D05DAB18DA23083358D0839DC1134] (Microsoft Corporation)
tscon.exe -> C:\WINDOWS\System32\dllcache\tscon.exe -> [2010/02/20 08:26:16 | 000,014,848 | ---- | C | MD5 = 900D05DAB18DA23083358D0839DC1134] (Microsoft Corporation)
reset.exe -> C:\WINDOWS\System32\reset.exe -> [2010/02/20 08:26:16 | 000,009,728 | ---- | C | MD5 = 88F105251EE261ACF11AD88E7567258C] (Microsoft Corporation)
reset.exe -> C:\WINDOWS\System32\dllcache\reset.exe -> [2010/02/20 08:26:16 | 000,009,728 | ---- | C | MD5 = 88F105251EE261ACF11AD88E7567258C] (Microsoft Corporation)
regini.exe -> C:\WINDOWS\System32\regini.exe -> [2010/02/20 08:26:15 | 000,033,792 | ---- | C | MD5 = 4114B8D04AEE5FF6700A5CE1130D64FA] (Microsoft Corporation)
regini.exe -> C:\WINDOWS\System32\dllcache\regini.exe -> [2010/02/20 08:26:15 | 000,033,792 | ---- | C | MD5 = 4114B8D04AEE5FF6700A5CE1130D64FA] (Microsoft Corporation)
qwinsta.exe -> C:\WINDOWS\System32\qwinsta.exe -> [2010/02/20 08:26:15 | 000,022,016 | ---- | C | MD5 = 1317CB79629C34B5FF8260C297B09A1C] (Microsoft Corporation)
qwinsta.exe -> C:\WINDOWS\System32\dllcache\qwinsta.exe -> [2010/02/20 08:26:15 | 000,022,016 | ---- | C | MD5 = 1317CB79629C34B5FF8260C297B09A1C] (Microsoft Corporation)
msg.exe -> C:\WINDOWS\System32\msg.exe -> [2010/02/20 08:26:15 | 000,020,992 | ---- | C | MD5 = DE60FA13A37BEA1EE44228DCB60F44BF] (Microsoft Corporation)
msg.exe -> C:\WINDOWS\System32\dllcache\msg.exe -> [2010/02/20 08:26:15 | 000,020,992 | ---- | C | MD5 = DE60FA13A37BEA1EE44228DCB60F44BF] (Microsoft Corporation)
qappsrv.exe -> C:\WINDOWS\System32\qappsrv.exe -> [2010/02/20 08:26:15 | 000,016,896 | ---- | C | MD5 = 1556473E920CA676702516DA38DCAC86] (Microsoft Corporation)
qappsrv.exe -> C:\WINDOWS\System32\dllcache\qappsrv.exe -> [2010/02/20 08:26:15 | 000,016,896 | ---- | C | MD5 = 1556473E920CA676702516DA38DCAC86] (Microsoft Corporation)
rwinsta.exe -> C:\WINDOWS\System32\rwinsta.exe -> [2010/02/20 08:26:15 | 000,015,872 | ---- | C | MD5 = 4ED862390A8986E2423122FC6A326EC4] (Microsoft Corporation)
rwinsta.exe -> C:\WINDOWS\System32\dllcache\rwinsta.exe -> [2010/02/20 08:26:15 | 000,015,872 | ---- | C | MD5 = 4ED862390A8986E2423122FC6A326EC4] (Microsoft Corporation)
cdmodem.dll -> C:\WINDOWS\System32\dllcache\cdmodem.dll -> [2010/02/20 08:26:15 | 000,015,872 | ---- | C | MD5 = 0D72D44A333628B15288C69738583A2E] (Microsoft Corporation)
cdmodem.dll -> C:\WINDOWS\System32\cdmodem.dll -> [2010/02/20 08:26:15 | 000,015,872 | ---- | C | MD5 = 0D72D44A333628B15288C69738583A2E] (Microsoft Corporation)
logoff.exe -> C:\WINDOWS\System32\logoff.exe -> [2010/02/20 08:26:15 | 000,015,360 | ---- | C | MD5 = 1497D0AB91183A5B51EF37CCFC88C6C5] (Microsoft Corporation)
logoff.exe -> C:\WINDOWS\System32\dllcache\logoff.exe -> [2010/02/20 08:26:15 | 000,015,360 | ---- | C | MD5 = 1497D0AB91183A5B51EF37CCFC88C6C5] (Microsoft Corporation)
rdpcfgex.dll -> C:\WINDOWS\System32\rdpcfgex.dll -> [2010/02/20 08:26:15 | 000,004,096 | ---- | C | MD5 = 092D468C0BDF67EC129C28692276AC88] (Microsoft Corporation)
rdpcfgex.dll -> C:\WINDOWS\System32\dllcache\rdpcfgex.dll -> [2010/02/20 08:26:15 | 000,004,096 | ---- | C | MD5 = 092D468C0BDF67EC129C28692276AC88] (Microsoft Corporation)
wmi2xml.dll -> C:\WINDOWS\System32\dllcache\wmi2xml.dll -> [2010/02/20 08:26:14 | 000,045,568 | ---- | C | MD5 = DDC32A2FF2A1B94DBB76C149FDE4ECE7] (Microsoft Corporation)
mtsadmin.tlb -> C:\WINDOWS\System32\dllcache\mtsadmin.tlb -> [2010/02/20 08:26:14 | 000,019,456 | ---- | C | MD5 = 71F66605BDB6CD931002900932F4CE7E] (Microsoft Corporation)
updprov.dll -> C:\WINDOWS\System32\dllcache\updprov.dll -> [2010/02/20 08:26:11 | 000,116,224 | ---- | C | MD5 = B2843E32D88CF4B0FD02F44AB347D97A] (Microsoft Corporation)
wmipicmp.dll -> C:\WINDOWS\System32\dllcache\wmipicmp.dll -> [2010/02/20 08:26:11 | 000,075,264 | ---- | C | MD5 = 5FFA6D45E6D250BB3E2EDFC15FF3A934] (Microsoft Corporation)
wmimsg.dll -> C:\WINDOWS\System32\dllcache\wmimsg.dll -> [2010/02/20 08:26:11 | 000,061,440 | ---- | C | MD5 = DB8330FB66C2ABC37C4F300C6621FD42] (Microsoft Corporation)
trnsprov.dll -> C:\WINDOWS\System32\dllcache\trnsprov.dll -> [2010/02/20 08:26:11 | 000,059,904 | ---- | C | MD5 = C8DDBB1959E797BF922E0E956F5C8F4B] (Microsoft Corporation)
wbemdisp.tlb -> C:\WINDOWS\System32\dllcache\wbemdisp.tlb -> [2010/02/20 08:26:11 | 000,059,904 | ---- | C | MD5 = 06F9F4DF22B9C0CE8A1310285AB1D451] (Microsoft Corporation)
wmitimep.dll -> C:\WINDOWS\System32\dllcache\wmitimep.dll -> [2010/02/20 08:26:11 | 000,052,224 | ---- | C | MD5 = 119AF756945981A123C1F130A15C5D1B] (Microsoft Corporation)
wbemads.tlb -> C:\WINDOWS\System32\dllcache\wbemads.tlb -> [2010/02/20 08:26:11 | 000,031,232 | ---- | C | MD5 = 286D2A9401AC40D6D1028A9EE9ED0EB2] (Microsoft Corporation)
unsecapp.exe -> C:\WINDOWS\System32\dllcache\unsecapp.exe -> [2010/02/20 08:26:11 | 000,016,896 | ---- | C | MD5 = C7000F2DB2A5515C64C257478769A481] (Microsoft Corporation)
winmgmtr.dll -> C:\WINDOWS\System32\dllcache\winmgmtr.dll -> [2010/02/20 08:26:11 | 000,016,384 | ---- | C | MD5 = 0CC386EBBC87CCCE81A3126AD09AF83F] (Microsoft Corporation)
winmgmt.exe -> C:\WINDOWS\System32\dllcache\winmgmt.exe -> [2010/02/20 08:26:11 | 000,013,312 | ---- | C | MD5 = 945D0FAE2735AC677FDA531F3D54700E] (Microsoft Corporation)
wbemads.dll -> C:\WINDOWS\System32\dllcache\wbemads.dll -> [2010/02/20 08:26:11 | 000,012,288 | ---- | C | MD5 = DE1F95BDD243F3D774B9650DB627E235] (Microsoft Corporation)
msiprov.dll -> C:\WINDOWS\System32\dllcache\msiprov.dll -> [2010/02/20 08:26:10 | 000,273,920 | ---- | C | MD5 = 25702762863AF362A26537AF42F77B51] (Microsoft Corporation)
dsprov.dll -> C:\WINDOWS\System32\dllcache\dsprov.dll -> [2010/02/20 08:26:10 | 000,120,320 | ---- | C | MD5 = 29B60038BA91FCEDB8C131AA684998E7] (Microsoft Corporation)
tmplprov.dll -> C:\WINDOWS\System32\dllcache\tmplprov.dll -> [2010/02/20 08:26:10 | 000,061,952 | ---- | C | MD5 = DD9465BCB22021BCCC245789A41367BC] (Microsoft Corporation)
fwdprov.dll -> C:\WINDOWS\System32\dllcache\fwdprov.dll -> [2010/02/20 08:26:10 | 000,053,248 | ---- | C | MD5 = 8D60ADCECAF3BF46673B112B109CD0D2] (Microsoft Corporation)
smtpcons.dll -> C:\WINDOWS\System32\dllcache\smtpcons.dll -> [2010/02/20 08:26:10 | 000,040,960 | ---- | C | MD5 = D855E7CC6968011F3A45466937E09F91] (Microsoft Corporation)
MSN -> C:\Program Files\MSN -> [2010/02/20 08:25:54 | 000,000,000 | ---D | C]
pinball.exe -> C:\WINDOWS\System32\dllcache\pinball.exe -> [2010/02/20 08:25:53 | 000,281,088 | ---- | C | MD5 = FAA1FDE004B3C60B5A8068A7C3AAB151] (Cinematronics)
accwiz.exe -> C:\WINDOWS\System32\dllcache\accwiz.exe -> [2010/02/20 08:25:53 | 000,184,320 | ---- | C | MD5 = D4B13D675DEC600C5A0ED2BB0EB301E6] (Microsoft Corporation)
accwiz.exe -> C:\WINDOWS\System32\accwiz.exe -> [2010/02/20 08:25:53 | 000,184,320 | ---- | C | MD5 = D4B13D675DEC600C5A0ED2BB0EB301E6] (Microsoft Corporation)
access.cpl -> C:\WINDOWS\System32\dllcache\access.cpl -> [2010/02/20 08:25:53 | 000,068,608 | ---- | C | MD5 = 841FB340ABC439B4557FBDD32B7BA11D] (Microsoft Corporation)
access.cpl -> C:\WINDOWS\System32\access.cpl -> [2010/02/20 08:25:53 | 000,068,608 | ---- | C | MD5 = 841FB340ABC439B4557FBDD32B7BA11D] (Microsoft Corporation)
sndrec32.exe -> C:\WINDOWS\System32\sndrec32.exe -> [2010/02/20 08:25:52 | 000,131,584 | ---- | C | MD5 = B22332758A8293C14DB318748A928CC4] (Microsoft Corporation)
sndrec32.exe -> C:\WINDOWS\System32\dllcache\sndrec32.exe -> [2010/02/20 08:25:52 | 000,131,584 | ---- | C | MD5 = B22332758A8293C14DB318748A928CC4] (Microsoft Corporation)
mplay32.exe -> C:\WINDOWS\System32\mplay32.exe -> [2010/02/20 08:25:52 | 000,123,392 | ---- | C | MD5 = 954BD0D7C3CB90D23C136FEC90999377] (Microsoft Corporation)
mplay32.exe -> C:\WINDOWS\System32\dllcache\mplay32.exe -> [2010/02/20 08:25:52 | 000,123,392 | ---- | C | MD5 = 954BD0D7C3CB90D23C136FEC90999377] (Microsoft Corporation)
dialer.exe -> C:\WINDOWS\System32\dllcache\dialer.exe -> [2010/02/20 08:25:51 | 000,539,136 | ---- | C | MD5 = 8D9C34F9D67DADD376EA7DF1DDD3C6C5] (Microsoft Corporation)
mspaint.exe -> C:\WINDOWS\System32\mspaint.exe -> [2010/02/20 08:25:51 | 000,343,040 | ---- | C | MD5 = A68DA24239C7BA6C424E1AEAE7AA3E7A] (Microsoft Corporation)
mspaint.exe -> C:\WINDOWS\System32\dllcache\mspaint.exe -> [2010/02/20 08:25:51 | 000,343,040 | ---- | C | MD5 = A68DA24239C7BA6C424E1AEAE7AA3E7A] (Microsoft Corporation)
clipbrd.exe -> C:\WINDOWS\System32\dllcache\clipbrd.exe -> [2010/02/20 08:25:51 | 000,102,912 | ---- | C | MD5 = 7A526169AC958E6602023A39734C8684] (Microsoft Corporation)
clipbrd.exe -> C:\WINDOWS\System32\clipbrd.exe -> [2010/02/20 08:25:51 | 000,102,912 | ---- | C | MD5 = 7A526169AC958E6602023A39734C8684] (Microsoft Corporation)
Windows NT -> C:\Program Files\Windows NT -> [2010/02/20 08:25:51 | 000,000,000 | ---D | C]
spider.exe -> C:\WINDOWS\System32\spider.exe -> [2010/02/20 08:25:50 | 000,538,624 | ---- | C | MD5 = 8D1492DBE9A856EE306EDC5A103E0BF2] (Microsoft Corporation)
spider.exe -> C:\WINDOWS\System32\dllcache\spider.exe -> [2010/02/20 08:25:50 | 000,538,624 | ---- | C | MD5 = 8D1492DBE9A856EE306EDC5A103E0BF2] (Microsoft Corporation)
tdtcp.sys -> C:\WINDOWS\System32\dllcache\tdtcp.sys -> [2010/02/20 08:25:50 | 000,021,896 | ---- | C | MD5 = C56B6D0402371CF3700EB322EF3AAF61] (Microsoft Corporation)
tdpipe.sys -> C:\WINDOWS\System32\dllcache\tdpipe.sys -> [2010/02/20 08:25:50 | 000,012,040 | ---- | C | MD5 = 6471A66807F5E104E4885F5B67349397] (Microsoft Corporation)
en-US -> C:\WINDOWS\System32\en-US -> [2010/02/20 08:25:50 | 000,000,000 | ---D | C]
rhttpaa.dll -> C:\WINDOWS\System32\rhttpaa.dll -> [2010/02/20 08:25:49 | 000,290,304 | ---- | C | MD5 = 28D9646A6B8DE72980B683AF06D9D981] (Microsoft Corporation)
rhttpaa.dll -> C:\WINDOWS\System32\dllcache\rhttpaa.dll -> [2010/02/20 08:25:49 | 000,290,304 | ---- | C | MD5 = 28D9646A6B8DE72980B683AF06D9D981] (Microsoft Corporation)
rdpwd.sys -> C:\WINDOWS\System32\dllcache\rdpwd.sys -> [2010/02/20 08:25:49 | 000,139,656 | ---- | C | MD5 = 6728E45B66F93C08F11DE2E316FC70DD] (Microsoft Corporation)
aaclient.dll -> C:\WINDOWS\System32\dllcache\aaclient.dll -> [2010/02/20 08:25:49 | 000,136,192 | ---- | C | MD5 = B0C23B6813A9FCBAE18370247BE594CE] (Microsoft Corporation)
aaclient.dll -> C:\WINDOWS\System32\aaclient.dll -> [2010/02/20 08:25:49 | 000,136,192 | ---- | C | MD5 = B0C23B6813A9FCBAE18370247BE594CE] (Microsoft Corporation)
tscfgwmi.dll -> C:\WINDOWS\System32\tscfgwmi.dll -> [2010/02/20 08:25:49 | 000,093,696 | ---- | C | MD5 = A125CBFE55C05735417786DD15A5BE76] (Microsoft Corporation)
tscfgwmi.dll -> C:\WINDOWS\System32\dllcache\tscfgwmi.dll -> [2010/02/20 08:25:49 | 000,093,696 | ---- | C | MD5 = A125CBFE55C05735417786DD15A5BE76] (Microsoft Corporation)
tsgqec.dll -> C:\WINDOWS\System32\tsgqec.dll -> [2010/02/20 08:25:49 | 000,053,248 | ---- | C | MD5 = 1396F781364754123E5180074FC3CB85] (Microsoft Corporation)
tsgqec.dll -> C:\WINDOWS\System32\dllcache\tsgqec.dll -> [2010/02/20 08:25:49 | 000,053,248 | ---- | C | MD5 = 1396F781364754123E5180074FC3CB85] (Microsoft Corporation)
lhmstscx.dll -> C:\WINDOWS\System32\dllcache\lhmstscx.dll -> [2010/02/20 08:25:48 | 002,061,824 | ---- | C | MD5 = ACD3B2A1BC785A8B9FBC70280E1D8663] (Microsoft Corporation)
lhmstsc.exe -> C:\WINDOWS\System32\dllcache\lhmstsc.exe -> [2010/02/20 08:25:48 | 000,677,888 | ---- | C | MD5 = 8DD5CF6D82BD78433E95D86EFA117D67] (Microsoft Corporation)
termsrv.dll -> C:\WINDOWS\System32\dllcache\termsrv.dll -> [2010/02/20 08:25:47 | 000,295,424 | ---- | C | MD5 = FF3477C03BE7201C294C35F684B3479F] (Microsoft Corporation)
rdchost.dll -> C:\WINDOWS\System32\rdchost.dll -> [2010/02/20 08:25:47 | 000,147,968 | ---- | C | MD5 = B84AA6E863DE4A3BD9A0A39AEC207ECC] (Microsoft Corporation)
rdchost.dll -> C:\WINDOWS\System32\dllcache\rdchost.dll -> [2010/02/20 08:25:47 | 000,147,968 | ---- | C | MD5 = B84AA6E863DE4A3BD9A0A39AEC207ECC] (Microsoft Corporation)
sessmgr.exe -> C:\WINDOWS\System32\dllcache\sessmgr.exe -> [2010/02/20 08:25:47 | 000,141,312 | ---- | C | MD5 = 3C37BF86641BDA977C3BF8A840F3B7FA] (Microsoft Corporation)
rdpwsx.dll -> C:\WINDOWS\System32\rdpwsx.dll -> [2010/02/20 08:25:47 | 000,087,176 | ---- | C | MD5 = C7C84DF7233F4834CD190F3DCCAF50CA] (Microsoft Corporation)
rdpwsx.dll -> C:\WINDOWS\System32\dllcache\rdpwsx.dll -> [2010/02/20 08:25:47 | 000,087,176 | ---- | C | MD5 = C7C84DF7233F4834CD190F3DCCAF50CA] (Microsoft Corporation)
rdshost.exe -> C:\WINDOWS\System32\rdshost.exe -> [2010/02/20 08:25:47 | 000,067,072 | ---- | C | MD5 = 57E036885A222D1A8EF237C7399BE98B] (Microsoft Corporation)
rdshost.exe -> C:\WINDOWS\System32\dllcache\rdshost.exe -> [2010/02/20 08:25:47 | 000,067,072 | ---- | C | MD5 = 57E036885A222D1A8EF237C7399BE98B] (Microsoft Corporation)
remotepg.dll -> C:\WINDOWS\System32\dllcache\remotepg.dll -> [2010/02/20 08:25:47 | 000,060,416 | ---- | C | MD5 = B30637E52CB169F89335119978BDBD3E] (Microsoft Corporation)
rdsaddin.exe -> C:\WINDOWS\System32\rdsaddin.exe -> [2010/02/20 08:25:47 | 000,013,824 | ---- | C | MD5 = C29AB058E20C56E8D1ECB44FEDEBC69F] (Microsoft Corporation)
rdsaddin.exe -> C:\WINDOWS\System32\dllcache\rdsaddin.exe -> [2010/02/20 08:25:47 | 000,013,824 | ---- | C | MD5 = C29AB058E20C56E8D1ECB44FEDEBC69F] (Microsoft Corporation)
msdtcuiu.dll -> C:\WINDOWS\System32\msdtcuiu.dll -> [2010/02/20 08:25:46 | 000,161,792 | ---- | C | MD5 = 39C6377F5CFFF489F3F04F442D076442] (Microsoft Corporation)
msdtcuiu.dll -> C:\WINDOWS\System32\dllcache\msdtcuiu.dll -> [2010/02/20 08:25:46 | 000,161,792 | ---- | C | MD5 = 39C6377F5CFFF489F3F04F442D076442] (Microsoft Corporation)
mtxoci.dll -> C:\WINDOWS\System32\mtxoci.dll -> [2010/02/20 08:25:46 | 000,091,648 | ---- | C | MD5 = 2B8B64AA14F817BDF3E3204FB041A61D] (Microsoft Corporation)
mtxoci.dll -> C:\WINDOWS\System32\dllcache\mtxoci.dll -> [2010/02/20 08:25:46 | 000,091,648 | ---- | C | MD5 = 2B8B64AA14F817BDF3E3204FB041A61D] (Microsoft Corporation)
rdpclip.exe -> C:\WINDOWS\System32\rdpclip.exe -> [2010/02/20 08:25:46 | 000,062,976 | ---- | C | MD5 = DCCF6ED915BC05C244801B550AD12B17] (Microsoft Corporation)
rdpclip.exe -> C:\WINDOWS\System32\dllcache\rdpclip.exe -> [2010/02/20 08:25:46 | 000,062,976 | ---- | C | MD5 = DCCF6ED915BC05C244801B550AD12B17] (Microsoft Corporation)
cfgbkend.dll -> C:\WINDOWS\System32\dllcache\cfgbkend.dll -> [2010/02/20 08:25:46 | 000,038,912 | ---- | C | MD5 = AA4A015E2ACAE6127FDF833F301C1FE4] (Microsoft Corporation)
cfgbkend.dll -> C:\WINDOWS\System32\cfgbkend.dll -> [2010/02/20 08:25:46 | 000,038,912 | ---- | C | MD5 = AA4A015E2ACAE6127FDF833F301C1FE4] (Microsoft Corporation)
qprocess.exe -> C:\WINDOWS\System32\qprocess.exe -> [2010/02/20 08:25:46 | 000,019,968 | ---- | C | MD5 = 5AD00EED5722CAABDDAAC1CB92F68E57] (Microsoft Corporation)
qprocess.exe -> C:\WINDOWS\System32\dllcache\qprocess.exe -> [2010/02/20 08:25:46 | 000,019,968 | ---- | C | MD5 = 5AD00EED5722CAABDDAAC1CB92F68E57] (Microsoft Corporation)
rdpsnd.dll -> C:\WINDOWS\System32\rdpsnd.dll -> [2010/02/20 08:25:46 | 000,019,968 | ---- | C | MD5 = 31DD1EF4149B0F22AFB12A2DD360B34D] (Microsoft Corporation)
rdpsnd.dll -> C:\WINDOWS\System32\dllcache\rdpsnd.dll -> [2010/02/20 08:25:46 | 000,019,968 | ---- | C | MD5 = 31DD1EF4149B0F22AFB12A2DD360B34D] (Microsoft Corporation)
icaapi.dll -> C:\WINDOWS\System32\icaapi.dll -> [2010/02/20 08:25:46 | 000,011,264 | ---- | C | MD5 = DF6551E4C4C46655A0C76194F1FCEA5D] (Microsoft Corporation)
icaapi.dll -> C:\WINDOWS\System32\dllcache\icaapi.dll -> [2010/02/20 08:25:46 | 000,011,264 | ---- | C | MD5 = DF6551E4C4C46655A0C76194F1FCEA5D] (Microsoft Corporation)
MsDtc -> C:\WINDOWS\System32\MsDtc -> [2010/02/20 08:25:46 | 000,000,000 | ---D | C]
msdtctm.dll -> C:\WINDOWS\System32\msdtctm.dll -> [2010/02/20 08:25:45 | 000,956,928 | ---- | C | MD5 = 31E6A08C6DFB167E15F53B12E57F3F52] (Microsoft Corporation)
msdtctm.dll -> C:\WINDOWS\System32\dllcache\msdtctm.dll -> [2010/02/20 08:25:45 | 000,956,928 | ---- | C | MD5 = 31E6A08C6DFB167E15F53B12E57F3F52] (Microsoft Corporation)
msdtcprx.dll -> C:\WINDOWS\System32\msdtcprx.dll -> [2010/02/20 08:25:45 | 000,428,032 | ---- | C | MD5 = 92E1A82CA4B048D1D970CBEA1A097F6E] (Microsoft Corporation)
msdtcprx.dll -> C:\WINDOWS\System32\dllcache\msdtcprx.dll -> [2010/02/20 08:25:45 | 000,428,032 | ---- | C | MD5 = 92E1A82CA4B048D1D970CBEA1A097F6E] (Microsoft Corporation)
msdtclog.dll -> C:\WINDOWS\System32\msdtclog.dll -> [2010/02/20 08:25:45 | 000,058,880 | ---- | C | MD5 = F0D371D357790601C4A03B25F6AD09F8] (Microsoft Corporation)
msdtclog.dll -> C:\WINDOWS\System32\dllcache\msdtclog.dll -> [2010/02/20 08:25:45 | 000,058,880 | ---- | C | MD5 = F0D371D357790601C4A03B25F6AD09F8] (Microsoft Corporation)
xolehlp.dll -> C:\WINDOWS\System32\xolehlp.dll -> [2010/02/20 08:25:45 | 000,011,776 | ---- | C | MD5 = AE3470D2BF8F16FD93FA54167B87172D] (Microsoft Corporation)
xolehlp.dll -> C:\WINDOWS\System32\dllcache\xolehlp.dll -> [2010/02/20 08:25:45 | 000,011,776 | ---- | C | MD5 = AE3470D2BF8F16FD93FA54167B87172D] (Microsoft Corporation)
msdtc.exe -> C:\WINDOWS\System32\dllcache\msdtc.exe -> [2010/02/20 08:25:45 | 000,006,144 | ---- | C | MD5 = A137F1470499A205ABBB9AAFB3B6F2B1] (Microsoft Corporation)
mtxlegih.dll -> C:\WINDOWS\System32\mtxlegih.dll -> [2010/02/20 08:25:44 | 000,034,304 | ---- | C | MD5 = 2A516AC024EA9E34AE0F0297293EABAB] (Microsoft Corporation)
mtxlegih.dll -> C:\WINDOWS\System32\dllcache\mtxlegih.dll -> [2010/02/20 08:25:44 | 000,034,304 | ---- | C | MD5 = 2A516AC024EA9E34AE0F0297293EABAB] (Microsoft Corporation)
mtxdm.dll -> C:\WINDOWS\System32\mtxdm.dll -> [2010/02/20 08:25:44 | 000,030,720 | ---- | C | MD5 = 7827FB784D9B3029F3DAF73D3331A9CC] (Microsoft Corporation)
mtxdm.dll -> C:\WINDOWS\System32\dllcache\mtxdm.dll -> [2010/02/20 08:25:44 | 000,030,720 | ---- | C | MD5 = 7827FB784D9B3029F3DAF73D3331A9CC] (Microsoft Corporation)
comrepl.exe -> C:\WINDOWS\System32\dllcache\comrepl.exe -> [2010/02/20 08:25:44 | 000,009,728 | ---- | C | MD5 = DEDDBCE9D0B6E4864F593A8A36849E1D] (Microsoft Corporation)
comrereg.exe -> C:\WINDOWS\System32\dllcache\comrereg.exe -> [2010/02/20 08:25:44 | 000,006,144 | ---- | C | MD5 = 5F176F9431BB67B54A233BA2494CE718] (Microsoft Corporation)
dcomcnfg.exe -> C:\WINDOWS\System32\dllcache\dcomcnfg.exe -> [2010/02/20 08:25:44 | 000,006,144 | ---- | C | MD5 = 238BDCE83AF21A6C2C0FCF216D3260E3] (Microsoft Corporation)
dcomcnfg.exe -> C:\WINDOWS\System32\dcomcnfg.exe -> [2010/02/20 08:25:44 | 000,006,144 | ---- | C | MD5 = 238BDCE83AF21A6C2C0FCF216D3260E3] (Microsoft Corporation)
mtxex.dll -> C:\WINDOWS\System32\mtxex.dll -> [2010/02/20 08:25:44 | 000,004,096 | ---- | C | MD5 = BC958016A1F7A23A1A9282C82D73D074] (Microsoft Corporation)
mtxex.dll -> C:\WINDOWS\System32\dllcache\mtxex.dll -> [2010/02/20 08:25:44 | 000,004,096 | ---- | C | MD5 = BC958016A1F7A23A1A9282C82D73D074] (Microsoft Corporation)
comadmin.dll -> C:\WINDOWS\System32\dllcache\comadmin.dll -> [2010/02/20 08:25:43 | 000,195,072 | ---- | C | MD5 = 3116F6B8B1C067532D9F7539A5BD5104] (Microsoft Corporation)
clbcatex.dll -> C:\WINDOWS\System32\dllcache\clbcatex.dll -> [2010/02/20 08:25:43 | 000,110,592 | ---- | C | MD5 = 33B37BB0C69F2DBD19277220435590BE] (Microsoft Corporation)
clbcatex.dll -> C:\WINDOWS\System32\clbcatex.dll -> [2010/02/20 08:25:43 | 000,110,592 | ---- | C | MD5 = 33B37BB0C69F2DBD19277220435590BE] (Microsoft Corporation)
comrepl.dll -> C:\WINDOWS\System32\dllcache\comrepl.dll -> [2010/02/20 08:25:43 | 000,097,792 | ---- | C | MD5 = E7427B6BD2F2B32403C23A4FE15DF3B3] (Microsoft Corporation)
comrepl.dll -> C:\WINDOWS\System32\comrepl.dll -> [2010/02/20 08:25:43 | 000,097,792 | ---- | C | MD5 = E7427B6BD2F2B32403C23A4FE15DF3B3] (Microsoft Corporation)
catsrvps.dll -> C:\WINDOWS\System32\dllcache\catsrvps.dll -> [2010/02/20 08:25:43 | 000,085,504 | ---- | C | MD5 = 5F5E83E18E9344BCD680704101CEA78A] (Microsoft Corporation)
catsrvps.dll -> C:\WINDOWS\System32\catsrvps.dll -> [2010/02/20 08:25:43 | 000,085,504 | ---- | C | MD5 = 5F5E83E18E9344BCD680704101CEA78A] (Microsoft Corporation)
colbact.dll -> C:\WINDOWS\System32\dllcache\colbact.dll -> [2010/02/20 08:25:43 | 000,060,416 | ---- | C | MD5 = 690D97864735E8ECD87F55777E266690] (Microsoft Corporation)
colbact.dll -> C:\WINDOWS\System32\colbact.dll -> [2010/02/20 08:25:43 | 000,060,416 | ---- | C | MD5 = 690D97864735E8ECD87F55777E266690] (Microsoft Corporation)
stclient.dll -> C:\WINDOWS\System32\stclient.dll -> [2010/02/20 08:25:43 | 000,059,392 | ---- | C | MD5 = 9089B700986B7A441F79FE68F96E5149] (Microsoft Corporation)
stclient.dll -> C:\WINDOWS\System32\dllcache\stclient.dll -> [2010/02/20 08:25:43 | 000,059,392 | ---- | C | MD5 = 9089B700986B7A441F79FE68F96E5149] (Microsoft Corporation)
comaddin.dll -> C:\WINDOWS\System32\dllcache\comaddin.dll -> [2010/02/20 08:25:43 | 000,028,160 | ---- | C | MD5 = 035FECD913735E843E95510D7CC89A4E] (Microsoft Corporation)
comaddin.dll -> C:\WINDOWS\System32\comaddin.dll -> [2010/02/20 08:25:43 | 000,028,160 | ---- | C | MD5 = 035FECD913735E843E95510D7CC89A4E] (Microsoft Corporation)
Com -> C:\WINDOWS\System32\Com -> [2010/02/20 08:25:43 | 000,000,000 | ---D | C]
catsrvut.dll -> C:\WINDOWS\System32\dllcache\catsrvut.dll -> [2010/02/20 08:25:42 | 000,625,664 | ---- | C | MD5 = 846300110A32ACDEE7CB60E54C7F693A] (Microsoft Corporation)
catsrvut.dll -> C:\WINDOWS\System32\catsrvut.dll -> [2010/02/20 08:25:42 | 000,625,664 | ---- | C | MD5 = 846300110A32ACDEE7CB60E54C7F693A] (Microsoft Corporation)
catsrv.dll -> C:\WINDOWS\System32\dllcache\catsrv.dll -> [2010/02/20 08:25:42 | 000,226,304 | ---- | C | MD5 = 28CDB50D882D3BAD993D25BE596307EA] (Microsoft Corporation)
catsrv.dll -> C:\WINDOWS\System32\catsrv.dll -> [2010/02/20 08:25:42 | 000,226,304 | ---- | C | MD5 = 28CDB50D882D3BAD993D25BE596307EA] (Microsoft Corporation)
comsvcs.dll -> C:\WINDOWS\System32\dllcache\comsvcs.dll -> [2010/02/20 08:25:41 | 001,267,200 | ---- | C | MD5 = ED0C0DF222209E43AD9AFBF3FE87DDE0] (Microsoft Corporation)
comsvcs.dll -> C:\WINDOWS\System32\comsvcs.dll -> [2010/02/20 08:25:41 | 001,267,200 | ---- | C | MD5 = ED0C0DF222209E43AD9AFBF3FE87DDE0] (Microsoft Corporation)
comuid.dll -> C:\WINDOWS\System32\dllcache\comuid.dll -> [2010/02/20 08:25:41 | 000,539,648 | ---- | C | MD5 = E0950A5B73350A26AB063EF6772FDCA4] (Microsoft Corporation)
comuid.dll -> C:\WINDOWS\System32\comuid.dll -> [2010/02/20 08:25:41 | 000,539,648 | ---- | C | MD5 = E0950A5B73350A26AB063EF6772FDCA4] (Microsoft Corporation)
comsnap.dll -> C:\WINDOWS\System32\dllcache\comsnap.dll -> [2010/02/20 08:25:41 | 000,167,424 | ---- | C | MD5 = 85A335171B8D56B09276D1C6DF2A63B2] (Microsoft Corporation)
comsnap.dll -> C:\WINDOWS\System32\comsnap.dll -> [2010/02/20 08:25:41 | 000,167,424 | ---- | C | MD5 = 85A335171B8D56B09276D1C6DF2A63B2] (Microsoft Corporation)
clbcatq.dll -> C:\WINDOWS\System32\dllcache\clbcatq.dll -> [2010/02/20 08:25:40 | 000,498,688 | ---- | C | MD5 = F137A0CA70003DB20448D540651FA003] (Microsoft Corporation)
wmisvc.dll -> C:\WINDOWS\System32\dllcache\wmisvc.dll -> [2010/02/20 08:25:39 | 000,144,896 | ---- | C | MD5 = 2D0E4ED081963804CCC196A0929275B5] (Microsoft Corporation)
wmiutils.dll -> C:\WINDOWS\System32\dllcache\wmiutils.dll -> [2010/02/20 08:25:39 | 000,095,232 | ---- | C | MD5 = 3273D1565BF30225C115B480A3BB2C9D] (Microsoft Corporation)
wmipsess.dll -> C:\WINDOWS\System32\dllcache\wmipsess.dll -> [2010/02/20 08:25:39 | 000,041,472 | ---- | C | MD5 = 22C7E1DF9C616AF90F14C04F45F5B506] (Microsoft Corporation)
wmic.exe -> C:\WINDOWS\System32\dllcache\wmic.exe -> [2010/02/20 08:25:38 | 000,358,912 | ---- | C | MD5 = 8F50467FBE98C3F2D81F120C94172088] (Microsoft Corporation)
wbemupgd.dll -> C:\WINDOWS\System32\dllcache\wbemupgd.dll -> [2010/02/20 08:25:38 | 000,197,120 | ---- | C | MD5 = ACB8B2AAB1333FA9343B91074B2F6CC8] (Microsoft Corporation)
wmiadap.exe -> C:\WINDOWS\System32\dllcache\wmiadap.exe -> [2010/02/20 08:25:38 | 000,196,608 | ---- | C | MD5 = F5CF984927625B23757C83B0E3AACFA9] (Microsoft Corporation)
wmipcima.dll -> C:\WINDOWS\System32\dllcache\wmipcima.dll -> [2010/02/20 08:25:38 | 000,156,672 | ---- | C | MD5 = C730F70351D950DDA7388C9A9763CF54] (Microsoft Corporation)
wmiprov.dll -> C:\WINDOWS\System32\dllcache\wmiprov.dll -> [2010/02/20 08:25:38 | 000,144,896 | ---- | C | MD5 = 960F6D3CD9A1BA6435D7AADD102B297F] (Microsoft Corporation)
wmidcprv.dll -> C:\WINDOWS\System32\dllcache\wmidcprv.dll -> [2010/02/20 08:25:38 | 000,140,800 | ---- | C | MD5 = F03A08E8826AFA7DD3C0383359D677AC] (Microsoft Corporation)
wmipdskq.dll -> C:\WINDOWS\System32\dllcache\wmipdskq.dll -> [2010/02/20 08:25:38 | 000,132,096 | ---- | C | MD5 = 3E84F28FD81FDA3DC19491674075DF90] (Microsoft Corporation)
wmiapsrv.exe -> C:\WINDOWS\System32\dllcache\wmiapsrv.exe -> [2010/02/20 08:25:38 | 000,126,464 | ---- | C | MD5 = E0673F1106E62A68D2257E376079F821] (Microsoft Corporation)
wbemtest.exe -> C:\WINDOWS\System32\dllcache\wbemtest.exe -> [2010/02/20 08:25:38 | 000,116,224 | ---- | C | MD5 = E9A57BC090E4232D9393E9E393EF3F8D] (Microsoft Corporation)
wmiaprpl.dll -> C:\WINDOWS\System32\dllcache\wmiaprpl.dll -> [2010/02/20 08:25:38 | 000,088,576 | ---- | C | MD5 = 75EE1625AD8B52C5FAA1CCB1B82FB750] (Microsoft Corporation)
wmipjobj.dll -> C:\WINDOWS\System32\dllcache\wmipjobj.dll -> [2010/02/20 08:25:38 | 000,062,464 | ---- | C | MD5 = 65FE75460DA80CE55FD5E7970BAE5AB2] (Microsoft Corporation)
wmipiprt.dll -> C:\WINDOWS\System32\dllcache\wmipiprt.dll -> [2010/02/20 08:25:38 | 000,061,952 | ---- | C | MD5 = 0BC86B35D5ED1B557542541ECA5BDEA4] (Microsoft Corporation)
wmicookr.dll -> C:\WINDOWS\System32\dllcache\wmicookr.dll -> [2010/02/20 08:25:38 | 000,060,928 | ---- | C | MD5 = C4747D259F674D41DE075C88740B38B1] (Microsoft Corporation)
wbemsvc.dll -> C:\WINDOWS\System32\dllcache\wbemsvc.dll -> [2010/02/20 08:25:38 | 000,043,520 | ---- | C | MD5 = 010472D0AE758227C6F6E6933549C219] (Microsoft Corporation)
wbemprox.dll -> C:\WINDOWS\System32\dllcache\wbemprox.dll -> [2010/02/20 08:25:38 | 000,018,944 | ---- | C | MD5 = 205ADD80FF8099B1A8101EB490B933D1] (Microsoft Corporation)
wmiapres.dll -> C:\WINDOWS\System32\dllcache\wmiapres.dll -> [2010/02/20 08:25:38 | 000,006,656 | ---- | C | MD5 = EB7494ECFE01B70B83E781EEB8F88C8A] (Microsoft Corporation)
wbemcore.dll -> C:\WINDOWS\System32\dllcache\wbemcore.dll -> [2010/02/20 08:25:37 | 000,531,456 | ---- | C | MD5 = F0BF811622F2DD6C8E26EE4600D83731] (Microsoft Corporation)
wbemess.dll -> C:\WINDOWS\System32\dllcache\wbemess.dll -> [2010/02/20 08:25:37 | 000,273,920 | ---- | C | MD5 = 26D881D27CBE51D3614E68D7313EA026] (Microsoft Corporation)
wbemcomn.dll -> C:\WINDOWS\System32\dllcache\wbemcomn.dll -> [2010/02/20 08:25:37 | 000,214,528 | ---- | C | MD5 = D95C71052E5EF63B55997FB31483D02F] (Microsoft Corporation)
wbemcntl.dll -> C:\WINDOWS\System32\dllcache\wbemcntl.dll -> [2010/02/20 08:25:37 | 000,196,608 | ---- | C | MD5 = 091737BCA34ED01C06CCD46951EF48ED] (Microsoft Corporation)
wbemdisp.dll -> C:\WINDOWS\System32\dllcache\wbemdisp.dll -> [2010/02/20 08:25:37 | 000,178,176 | ---- | C | MD5 = 880F7ED2DF24DB14AF96C6D797958796] (Microsoft Corporation)
viewprov.dll -> C:\WINDOWS\System32\dllcache\viewprov.dll -> [2010/02/20 08:25:37 | 000,131,584 | ---- | C | MD5 = 43FC68A53C2C6A4251F28888409C335B] (Microsoft Corporation)
stdprov.dll -> C:\WINDOWS\System32\dllcache\stdprov.dll -> [2010/02/20 08:25:37 | 000,086,528 | ---- | C | MD5 = 63D151A73679BB5BD7CF98BDA1AE5F5B] (Microsoft Corporation)
wbemcons.dll -> C:\WINDOWS\System32\dllcache\wbemcons.dll -> [2010/02/20 08:25:37 | 000,071,680 | ---- | C | MD5 = 6404807ABC7AF52FA3792697AE638B50] (Microsoft Corporation)
scrcons.exe -> C:\WINDOWS\System32\dllcache\scrcons.exe -> [2010/02/20 08:25:37 | 000,036,352 | ---- | C | MD5 = 7E484F0150B2E4CA55388992820246D4] (Microsoft Corporation)
provthrd.dll -> C:\WINDOWS\System32\dllcache\provthrd.dll -> [2010/02/20 08:25:36 | 000,237,056 | ---- | C | MD5 = FBDA289C0F13E43252EF3A7FABF23BAB] (Microsoft Corporation)
ntevt.dll -> C:\WINDOWS\System32\dllcache\ntevt.dll -> [2010/02/20 08:25:36 | 000,212,992 | ---- | C | MD5 = 77F6271856F0642EDC6F21B0196DBB98] (Microsoft Corporation)
repdrvfs.dll -> C:\WINDOWS\System32\dllcache\repdrvfs.dll -> [2010/02/20 08:25:36 | 000,178,176 | ---- | C | MD5 = 942A17D2901A31EA68627CBFFCD268CC] (Microsoft Corporation)
mofd.dll -> C:\WINDOWS\System32\dllcache\mofd.dll -> [2010/02/20 08:25:36 | 000,123,904 | ---- | C | MD5 = 5A4B93F78473F397C332A0BF6B8F093F] (Microsoft Corporation)
policman.dll -> C:\WINDOWS\System32\dllcache\policman.dll -> [2010/02/20 08:25:36 | 000,092,672 | ---- | C | MD5 = BBEF24630F702413D54AE0D8F0039760] (Microsoft Corporation)
ncprov.dll -> C:\WINDOWS\System32\dllcache\ncprov.dll -> [2010/02/20 08:25:36 | 000,047,104 | ---- | C | MD5 = D26451B540720A7313A9BCBE794DAF62] (Microsoft Corporation)
krnlprov.dll -> C:\WINDOWS\System32\dllcache\krnlprov.dll -> [2010/02/20 08:25:36 | 000,024,576 | ---- | C | MD5 = 97E7838C008C5F52472B4B6C88A284F6] (Microsoft Corporation)
mofcomp.exe -> C:\WINDOWS\System32\dllcache\mofcomp.exe -> [2010/02/20 08:25:36 | 000,016,384 | ---- | C | MD5 = 04B8261CE83C7518A83D9850DCA8BD0E] (Microsoft Corporation)
esscli.dll -> C:\WINDOWS\System32\dllcache\esscli.dll -> [2010/02/20 08:25:35 | 000,247,808 | ---- | C | MD5 = E4616430709F440CF1809D88DC2366EA] (Microsoft Corporation)
framedyn.dll -> C:\WINDOWS\System32\dllcache\framedyn.dll -> [2010/02/20 08:25:35 | 000,185,344 | ---- | C | MD5 = 4306FA2F1099D7C606139255FDB62B19] (Microsoft Corporation)
cimwin32.dll -> C:\WINDOWS\System32\dllcache\cimwin32.dll -> [2010/02/20 08:25:34 | 001,358,848 | ---- | C | MD5 = E837FDBB92E9873E538395B623F45462] (Microsoft Corporation)
servdeps.dll -> C:\WINDOWS\System32\servdeps.dll -> [2010/02/20 08:25:34 | 000,056,320 | ---- | C | MD5 = 8E7C1B8BBA4070615D6E2F704F272255] (Microsoft Corporation)
servdeps.dll -> C:\WINDOWS\System32\dllcache\servdeps.dll -> [2010/02/20 08:25:34 | 000,056,320 | ---- | C | MD5 = 8E7C1B8BBA4070615D6E2F704F272255] (Microsoft Corporation)
mmfutil.dll -> C:\WINDOWS\System32\mmfutil.dll -> [2010/02/20 08:25:34 | 000,017,408 | ---- | C | MD5 = 56C0F2EF981F235AB011FBFE26D92088] (Microsoft Corporation)
mmfutil.dll -> C:\WINDOWS\System32\dllcache\mmfutil.dll -> [2010/02/20 08:25:34 | 000,017,408 | ---- | C | MD5 = 56C0F2EF981F235AB011FBFE26D92088] (Microsoft Corporation)
cmprops.dll -> C:\WINDOWS\System32\dllcache\cmprops.dll -> [2010/02/20 08:25:33 | 000,185,344 | ---- | C | MD5 = 1C2C0143333F9651F088E29344D3BD0F] (Microsoft Corporation)
cmprops.dll -> C:\WINDOWS\System32\cmprops.dll -> [2010/02/20 08:25:33 | 000,185,344 | ---- | C | MD5 = 1C2C0143333F9651F088E29344D3BD0F] (Microsoft Corporation)
licwmi.dll -> C:\WINDOWS\System32\licwmi.dll -> [2010/02/20 08:25:33 | 000,058,880 | ---- | C | MD5 = 6895427873D6C37A6D6DA7C3DB37DA14] (Microsoft Corporation)
licwmi.dll -> C:\WINDOWS\System32\dllcache\licwmi.dll -> [2010/02/20 08:25:33 | 000,058,880 | ---- | C | MD5 = 6895427873D6C37A6D6DA7C3DB37DA14] (Microsoft Corporation)
My Videos -> C:\Documents and Settings\All Users\Documents\My Videos -> [2010/02/20 08:25:30 | 000,000,000 | R--D | C]
usbui.dll -> C:\WINDOWS\System32\usbui.dll -> [2010/02/20 01:10:43 | 000,074,240 | ---- | C | MD5 = C2D7189CDD37453234A9BBCB58E50883] (Microsoft Corporation)
Installer -> C:\WINDOWS\Installer -> [2010/02/20 01:10:05 | 000,000,000 | -HSD | C]

w619 · « **Reply #16 on:** April 08, 2010, 02:08:25 PM »

ODBC -> C:\Program Files\Common Files\ODBC -> [2010/02/20 01:10:05 | 000,000,000 | ---D | C]
spcommon.dll -> C:\WINDOWS\System32\dllcache\spcommon.dll -> [2010/02/20 01:10:04 | 000,077,824 | ---- | C | MD5 = 219064EE1ADDEBE69D969E54E6A54578] (Microsoft Corporation)
spcplui.dll -> C:\WINDOWS\System32\dllcache\spcplui.dll -> [2010/02/20 01:10:04 | 000,061,440 | ---- | C | MD5 = CF4A3C495F6D3C08FB39A89B8E142EE4] (Microsoft Corporation)
spttseng.dll -> C:\WINDOWS\System32\dllcache\spttseng.dll -> [2010/02/20 01:10:03 | 000,774,144 | ---- | C | MD5 = D5C97349855DB59FB88C236278391D3A] (Microsoft Corporation)
sapi.dll -> C:\WINDOWS\System32\dllcache\sapi.dll -> [2010/02/20 01:10:01 | 000,741,376 | ---- | C | MD5 = 81F63A7037E2815B771646CE44884800] (Microsoft Corporation)
sapi.cpl -> C:\WINDOWS\System32\dllcache\sapi.cpl -> [2010/02/20 01:10:01 | 000,155,648 | ---- | C | MD5 = 1A56EB64786813F639A2CCAA7BB05821] (Microsoft Corporation)
sapisvr.exe -> C:\WINDOWS\System32\dllcache\sapisvr.exe -> [2010/02/20 01:10:01 | 000,036,864 | ---- | C | MD5 = 81420500B4D35C6BDA89D6B694972C31] (Microsoft Corporation)
Program Files -> C:\Program Files -> [2010/02/20 01:10:01 | 000,000,000 | R--D | C]
SpeechEngines -> C:\Program Files\Common Files\SpeechEngines -> [2010/02/20 01:10:01 | 000,000,000 | ---D | C]
Microsoft Shared -> C:\Program Files\Common Files\Microsoft Shared -> [2010/02/20 01:10:01 | 000,000,000 | ---D | C]
Common Files -> C:\Program Files\Common Files -> [2010/02/20 01:10:01 | 000,000,000 | ---D | C]
agt0408.dll -> C:\WINDOWS\System32\dllcache\agt0408.dll -> [2010/02/20 01:10:00 | 000,022,016 | ---- | C | MD5 = FD67C2F652986C2F217AC83EEAB6268B] (Microsoft Corporation)
agt040e.dll -> C:\WINDOWS\System32\dllcache\agt040e.dll -> [2010/02/20 01:10:00 | 000,019,968 | ---- | C | MD5 = 79C7AA68A9E906BDC999C953B0BAA9AC] (Microsoft Corporation)
agt041f.dll -> C:\WINDOWS\System32\dllcache\agt041f.dll -> [2010/02/20 01:10:00 | 000,019,456 | ---- | C | MD5 = CD2F542E2BC4DA9F5939AAABD1537834] (Microsoft Corporation)
agt0419.dll -> C:\WINDOWS\System32\dllcache\agt0419.dll -> [2010/02/20 01:10:00 | 000,019,456 | ---- | C | MD5 = 9B3C6CD206AAF590C6C0D1D06070C5C2] (Microsoft Corporation)
agt0415.dll -> C:\WINDOWS\System32\dllcache\agt0415.dll -> [2010/02/20 01:10:00 | 000,019,456 | ---- | C | MD5 = 7D7A60F32F725D1F73FA915E233D4059] (Microsoft Corporation)
agt0405.dll -> C:\WINDOWS\System32\dllcache\agt0405.dll -> [2010/02/20 01:09:59 | 000,019,456 | ---- | C | MD5 = 7B8FB679427871AFB2466D08204E728A] (Microsoft Corporation)
kbdtuq.dll -> C:\WINDOWS\System32\kbdtuq.dll -> [2010/02/20 01:09:58 | 000,006,144 | R--- | C | MD5 = 5D569F2951F878EF01D7723DC08682E9] (Microsoft Corporation)
kbdtuf.dll -> C:\WINDOWS\System32\kbdtuf.dll -> [2010/02/20 01:09:58 | 000,006,144 | R--- | C | MD5 = 188E56B70419D8353B8D4F3E381D9E52] (Microsoft Corporation)
kbdtuq.dll -> C:\WINDOWS\System32\dllcache\kbdtuq.dll -> [2010/02/20 01:09:58 | 000,006,144 | ---- | C | MD5 = 5D569F2951F878EF01D7723DC08682E9] (Microsoft Corporation)
kbdtuf.dll -> C:\WINDOWS\System32\dllcache\kbdtuf.dll -> [2010/02/20 01:09:58 | 000,006,144 | ---- | C | MD5 = 188E56B70419D8353B8D4F3E381D9E52] (Microsoft Corporation)
kbdazel.dll -> C:\WINDOWS\System32\kbdazel.dll -> [2010/02/20 01:09:58 | 000,005,632 | R--- | C | MD5 = 712A218557F99D136735E0545E5AE223] (Microsoft Corporation)
kbdazel.dll -> C:\WINDOWS\System32\dllcache\kbdazel.dll -> [2010/02/20 01:09:58 | 000,005,632 | ---- | C | MD5 = 712A218557F99D136735E0545E5AE223] (Microsoft Corporation)
kbdkyr.dll -> C:\WINDOWS\System32\kbdkyr.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = FA30D45301EE66C33C0BF0F053DD9268] (Microsoft Corporation)
kbdtat.dll -> C:\WINDOWS\System32\kbdtat.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = F2D1EEF5ADCD5995C015AB3CB15C9415] (Microsoft Corporation)
kbdycc.dll -> C:\WINDOWS\System32\kbdycc.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = E5D4673C83271FEEE1ED73E1E281A42B] (Microsoft Corporation)
kbdru.dll -> C:\WINDOWS\System32\kbdru.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = C6F23BC1411E91C179B0635893BB40A1] (Microsoft Corporation)
kbdru1.dll -> C:\WINDOWS\System32\kbdru1.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = B6E962B7AC1CB4A78876953D369BE6DD] (Microsoft Corporation)
kbdkaz.dll -> C:\WINDOWS\System32\kbdkaz.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = 95D9106D39AB410A7F7EE513F181F84C] (Microsoft Corporation)
kbduzb.dll -> C:\WINDOWS\System32\kbduzb.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = 4F9CFFBF05831BB81833FC64A5329C36] (Microsoft Corporation)
kbdur.dll -> C:\WINDOWS\System32\kbdur.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = 3DDE3DC57C54452A313DC20F3019F8E3] (Microsoft Corporation)
kbdmon.dll -> C:\WINDOWS\System32\kbdmon.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = 29F119AD63CE42E616E35792DB01A4E0] (Microsoft Corporation)
kbdaze.dll -> C:\WINDOWS\System32\kbdaze.dll -> [2010/02/20 01:09:56 | 000,005,632 | R--- | C | MD5 = 0304318F189E3CC4A99FCCCB0A68147F] (Microsoft Corporation)
kbdkyr.dll -> C:\WINDOWS\System32\dllcache\kbdkyr.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = FA30D45301EE66C33C0BF0F053DD9268] (Microsoft Corporation)
kbdtat.dll -> C:\WINDOWS\System32\dllcache\kbdtat.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = F2D1EEF5ADCD5995C015AB3CB15C9415] (Microsoft Corporation)
kbdycc.dll -> C:\WINDOWS\System32\dllcache\kbdycc.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = E5D4673C83271FEEE1ED73E1E281A42B] (Microsoft Corporation)
kbdru.dll -> C:\WINDOWS\System32\dllcache\kbdru.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = C6F23BC1411E91C179B0635893BB40A1] (Microsoft Corporation)
kbdru1.dll -> C:\WINDOWS\System32\dllcache\kbdru1.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = B6E962B7AC1CB4A78876953D369BE6DD] (Microsoft Corporation)
kbdkaz.dll -> C:\WINDOWS\System32\dllcache\kbdkaz.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = 95D9106D39AB410A7F7EE513F181F84C] (Microsoft Corporation)
kbduzb.dll -> C:\WINDOWS\System32\dllcache\kbduzb.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = 4F9CFFBF05831BB81833FC64A5329C36] (Microsoft Corporation)
kbdur.dll -> C:\WINDOWS\System32\dllcache\kbdur.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = 3DDE3DC57C54452A313DC20F3019F8E3] (Microsoft Corporation)
kbdmon.dll -> C:\WINDOWS\System32\dllcache\kbdmon.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = 29F119AD63CE42E616E35792DB01A4E0] (Microsoft Corporation)
kbdaze.dll -> C:\WINDOWS\System32\dllcache\kbdaze.dll -> [2010/02/20 01:09:56 | 000,005,632 | ---- | C | MD5 = 0304318F189E3CC4A99FCCCB0A68147F] (Microsoft Corporation)
kbdblr.dll -> C:\WINDOWS\System32\kbdblr.dll -> [2010/02/20 01:09:55 | 000,005,632 | R--- | C | MD5 = A1FA7A83F9D98D84419A8E64286284F4] (Microsoft Corporation)
kbdbu.dll -> C:\WINDOWS\System32\kbdbu.dll -> [2010/02/20 01:09:55 | 000,005,632 | R--- | C | MD5 = 1DF6E4758611E1328567BFE4D1B28E27] (Microsoft Corporation)
kbdblr.dll -> C:\WINDOWS\System32\dllcache\kbdblr.dll -> [2010/02/20 01:09:55 | 000,005,632 | ---- | C | MD5 = A1FA7A83F9D98D84419A8E64286284F4] (Microsoft Corporation)
kbdbu.dll -> C:\WINDOWS\System32\dllcache\kbdbu.dll -> [2010/02/20 01:09:55 | 000,005,632 | ---- | C | MD5 = 1DF6E4758611E1328567BFE4D1B28E27] (Microsoft Corporation)
kbdhept.dll -> C:\WINDOWS\System32\kbdhept.dll -> [2010/02/20 01:09:54 | 000,008,192 | R--- | C | MD5 = 90CC52E8B52F0EC3A41D14FFBE789324] (Microsoft Corporation)
kbdhept.dll -> C:\WINDOWS\System32\dllcache\kbdhept.dll -> [2010/02/20 01:09:54 | 000,008,192 | ---- | C | MD5 = 90CC52E8B52F0EC3A41D14FFBE789324] (Microsoft Corporation)
kbdhela3.dll -> C:\WINDOWS\System32\kbdhela3.dll -> [2010/02/20 01:09:54 | 000,006,656 | R--- | C | MD5 = F2312B8A76FD584ACD1D956688BEB6F8] (Microsoft Corporation)
kbdhela3.dll -> C:\WINDOWS\System32\dllcache\kbdhela3.dll -> [2010/02/20 01:09:54 | 000,006,656 | ---- | C | MD5 = F2312B8A76FD584ACD1D956688BEB6F8] (Microsoft Corporation)
kbdhela2.dll -> C:\WINDOWS\System32\kbdhela2.dll -> [2010/02/20 01:09:53 | 000,006,144 | R--- | C | MD5 = D26533FDF72381947F823882BBA4A196] (Microsoft Corporation)
kbdgkl.dll -> C:\WINDOWS\System32\kbdgkl.dll -> [2010/02/20 01:09:53 | 000,006,144 | R--- | C | MD5 = A93447C87DDB6B1945F1F5F87EAB68DC] (Microsoft Corporation)
kbdhela2.dll -> C:\WINDOWS\System32\dllcache\kbdhela2.dll -> [2010/02/20 01:09:53 | 000,006,144 | ---- | C | MD5 = D26533FDF72381947F823882BBA4A196] (Microsoft Corporation)
kbdgkl.dll -> C:\WINDOWS\System32\dllcache\kbdgkl.dll -> [2010/02/20 01:09:53 | 000,006,144 | ---- | C | MD5 = A93447C87DDB6B1945F1F5F87EAB68DC] (Microsoft Corporation)
kbdhe319.dll -> C:\WINDOWS\System32\kbdhe319.dll -> [2010/02/20 01:09:53 | 000,005,632 | R--- | C | MD5 = AC81A176BA35D1D7A5CD53137F3160FE] (Microsoft Corporation)
kbdhe.dll -> C:\WINDOWS\System32\kbdhe.dll -> [2010/02/20 01:09:53 | 000,005,632 | R--- | C | MD5 = 83C99B438B3D6DBE7B838DA783E173AC] (Microsoft Corporation)
kbdhe220.dll -> C:\WINDOWS\System32\kbdhe220.dll -> [2010/02/20 01:09:53 | 000,005,632 | R--- | C | MD5 = 1E81E1F3D5ACB3371CF73C1DE8F800BF] (Microsoft Corporation)
kbdhe319.dll -> C:\WINDOWS\System32\dllcache\kbdhe319.dll -> [2010/02/20 01:09:53 | 000,005,632 | ---- | C | MD5 = AC81A176BA35D1D7A5CD53137F3160FE] (Microsoft Corporation)
kbdhe.dll -> C:\WINDOWS\System32\dllcache\kbdhe.dll -> [2010/02/20 01:09:53 | 000,005,632 | ---- | C | MD5 = 83C99B438B3D6DBE7B838DA783E173AC] (Microsoft Corporation)
kbdhe220.dll -> C:\WINDOWS\System32\dllcache\kbdhe220.dll -> [2010/02/20 01:09:53 | 000,005,632 | ---- | C | MD5 = 1E81E1F3D5ACB3371CF73C1DE8F800BF] (Microsoft Corporation)
kbdlv.dll -> C:\WINDOWS\System32\kbdlv.dll -> [2010/02/20 01:09:52 | 000,006,144 | R--- | C | MD5 = C047165ED75FF85DB5A89EFEE3DA1133] (Microsoft Corporation)
kbdest.dll -> C:\WINDOWS\System32\kbdest.dll -> [2010/02/20 01:09:52 | 000,006,144 | R--- | C | MD5 = BBB6C3346064C6AECEE6AD9F144B1AEA] (Microsoft Corporation)
kbdlv1.dll -> C:\WINDOWS\System32\kbdlv1.dll -> [2010/02/20 01:09:52 | 000,006,144 | R--- | C | MD5 = 27D72BCF2B495FCDA073DBA5F189D7A1] (Microsoft Corporation)
kbdlv.dll -> C:\WINDOWS\System32\dllcache\kbdlv.dll -> [2010/02/20 01:09:52 | 000,006,144 | ---- | C | MD5 = C047165ED75FF85DB5A89EFEE3DA1133] (Microsoft Corporation)
kbdest.dll -> C:\WINDOWS\System32\dllcache\kbdest.dll -> [2010/02/20 01:09:52 | 000,006,144 | ---- | C | MD5 = BBB6C3346064C6AECEE6AD9F144B1AEA] (Microsoft Corporation)
kbdlv1.dll -> C:\WINDOWS\System32\dllcache\kbdlv1.dll -> [2010/02/20 01:09:52 | 000,006,144 | ---- | C | MD5 = 27D72BCF2B495FCDA073DBA5F189D7A1] (Microsoft Corporation)
kbdlt.dll -> C:\WINDOWS\System32\kbdlt.dll -> [2010/02/20 01:09:52 | 000,005,632 | R--- | C | MD5 = F5B3B152A1D2752BC88928EB1E031B7E] (Microsoft Corporation)
kbdlt1.dll -> C:\WINDOWS\System32\kbdlt1.dll -> [2010/02/20 01:09:52 | 000,005,632 | R--- | C | MD5 = AF05A41DBD1B0424B5CB47092152C7F6] (Microsoft Corporation)
kbdlt.dll -> C:\WINDOWS\System32\dllcache\kbdlt.dll -> [2010/02/20 01:09:52 | 000,005,632 | ---- | C | MD5 = F5B3B152A1D2752BC88928EB1E031B7E] (Microsoft Corporation)
kbdlt1.dll -> C:\WINDOWS\System32\dllcache\kbdlt1.dll -> [2010/02/20 01:09:52 | 000,005,632 | ---- | C | MD5 = AF05A41DBD1B0424B5CB47092152C7F6] (Microsoft Corporation)
kbdcz.dll -> C:\WINDOWS\System32\kbdcz.dll -> [2010/02/20 01:09:50 | 000,007,168 | R--- | C | MD5 = 36E68E02AF2206FC4A8C73CAEABE1FB0] (Microsoft Corporation)
kbdcz.dll -> C:\WINDOWS\System32\dllcache\kbdcz.dll -> [2010/02/20 01:09:50 | 000,007,168 | ---- | C | MD5 = 36E68E02AF2206FC4A8C73CAEABE1FB0] (Microsoft Corporation)
kbdsl.dll -> C:\WINDOWS\System32\kbdsl.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = DCCE231E5BDF1401AC0F770EE16902AA] (Microsoft Corporation)
kbdpl.dll -> C:\WINDOWS\System32\kbdpl.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = D199B05901C2407FC0F87444A24A4F3C] (Microsoft Corporation)
kbdhu.dll -> C:\WINDOWS\System32\kbdhu.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = CF92D95B5CB6649CB9D7E8D7616487A7] (Microsoft Corporation)
kbdcz1.dll -> C:\WINDOWS\System32\kbdcz1.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = AFA30A44ED11A5F9A059A2767AB6A81A] (Microsoft Corporation)
kbdsl1.dll -> C:\WINDOWS\System32\kbdsl1.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = 93033C3EA80FB24B198B24DDECA07D4A] (Microsoft Corporation)
kbdcz2.dll -> C:\WINDOWS\System32\kbdcz2.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = 90535C13EB54E1F2C95478F1B99DCCEB] (Microsoft Corporation)
KBDAL.DLL -> C:\WINDOWS\System32\KBDAL.DLL -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = 615DDBB5CBBAE8301C1E7FA95F1E66A3] (Microsoft Corporation)
kbdcr.dll -> C:\WINDOWS\System32\kbdcr.dll -> [2010/02/20 01:09:50 | 000,006,656 | R--- | C | MD5 = 5B46568257EE49714564511D58E0DE53] (Microsoft Corporation)
kbdsl.dll -> C:\WINDOWS\System32\dllcache\kbdsl.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = DCCE231E5BDF1401AC0F770EE16902AA] (Microsoft Corporation)
kbdpl.dll -> C:\WINDOWS\System32\dllcache\kbdpl.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = D199B05901C2407FC0F87444A24A4F3C] (Microsoft Corporation)
kbdhu.dll -> C:\WINDOWS\System32\dllcache\kbdhu.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = CF92D95B5CB6649CB9D7E8D7616487A7] (Microsoft Corporation)
kbdcz1.dll -> C:\WINDOWS\System32\dllcache\kbdcz1.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = AFA30A44ED11A5F9A059A2767AB6A81A] (Microsoft Corporation)
kbdsl1.dll -> C:\WINDOWS\System32\dllcache\kbdsl1.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = 93033C3EA80FB24B198B24DDECA07D4A] (Microsoft Corporation)
kbdcz2.dll -> C:\WINDOWS\System32\dllcache\kbdcz2.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = 90535C13EB54E1F2C95478F1B99DCCEB] (Microsoft Corporation)
kbdal.dll -> C:\WINDOWS\System32\dllcache\kbdal.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = 615DDBB5CBBAE8301C1E7FA95F1E66A3] (Microsoft Corporation)
kbdcr.dll -> C:\WINDOWS\System32\dllcache\kbdcr.dll -> [2010/02/20 01:09:50 | 000,006,656 | ---- | C | MD5 = 5B46568257EE49714564511D58E0DE53] (Microsoft Corporation)
kbdhu1.dll -> C:\WINDOWS\System32\kbdhu1.dll -> [2010/02/20 01:09:50 | 000,005,632 | R--- | C | MD5 = F3D1EEC756847C70E65335E8CA1AE64B] (Microsoft Corporation)
kbdro.dll -> C:\WINDOWS\System32\kbdro.dll -> [2010/02/20 01:09:50 | 000,005,632 | R--- | C | MD5 = C2E62748C875A310A6D5B10498238A68] (Microsoft Corporation)
kbdpl1.dll -> C:\WINDOWS\System32\kbdpl1.dll -> [2010/02/20 01:09:50 | 000,005,632 | R--- | C | MD5 = 897663C8606357A8E86E57CDEA8EE219] (Microsoft Corporation)
kbdhu1.dll -> C:\WINDOWS\System32\dllcache\kbdhu1.dll -> [2010/02/20 01:09:50 | 000,005,632 | ---- | C | MD5 = F3D1EEC756847C70E65335E8CA1AE64B] (Microsoft Corporation)
kbdro.dll -> C:\WINDOWS\System32\dllcache\kbdro.dll -> [2010/02/20 01:09:50 | 000,005,632 | ---- | C | MD5 = C2E62748C875A310A6D5B10498238A68] (Microsoft Corporation)
kbdpl1.dll -> C:\WINDOWS\System32\dllcache\kbdpl1.dll -> [2010/02/20 01:09:50 | 000,005,632 | ---- | C | MD5 = 897663C8606357A8E86E57CDEA8EE219] (Microsoft Corporation)
kbdycl.dll -> C:\WINDOWS\System32\kbdycl.dll -> [2010/02/20 01:09:49 | 000,006,656 | R--- | C | MD5 = 552221E92D6BF55F8358B927F00696C3] (Microsoft Corporation)
kbdycl.dll -> C:\WINDOWS\System32\dllcache\kbdycl.dll -> [2010/02/20 01:09:49 | 000,006,656 | ---- | C | MD5 = 552221E92D6BF55F8358B927F00696C3] (Microsoft Corporation)
irclass.dll -> C:\WINDOWS\System32\irclass.dll -> [2010/02/20 01:09:48 | 000,013,312 | ---- | C | MD5 = FACEF4325FE4795647149DEC6FF728C7] (Microsoft Corporation)
irclass.dll -> C:\WINDOWS\System32\dllcache\irclass.dll -> [2010/02/20 01:09:48 | 000,013,312 | ---- | C | MD5 = FACEF4325FE4795647149DEC6FF728C7] (Microsoft Corporation)
WFWNET.DRV -> C:\WINDOWS\System\WFWNET.DRV -> [2010/02/20 01:09:47 | 000,013,600 | ---- | C | MD5 = 5302ADA9B0793C84151FC463DD65D7BF] (Microsoft Corporation)
VER.DLL -> C:\WINDOWS\System\VER.DLL -> [2010/02/20 01:09:47 | 000,009,008 | ---- | C | MD5 = D022D32A7BCB0B54C34BD687AC00564C] (Microsoft Corporation)
VGA.DRV -> C:\WINDOWS\System\VGA.DRV -> [2010/02/20 01:09:47 | 000,002,176 | ---- | C | MD5 = 9C86BBB80450AF95B6A4EA8EBDA93D76] (Microsoft Corporation)
MSVIDEO.DLL -> C:\WINDOWS\System\MSVIDEO.DLL -> [2010/02/20 01:09:46 | 000,126,912 | ---- | C | MD5 = AD060CFCE701410D7FA4B3461AB83EF5] (Microsoft Corporation)
OLECLI.DLL -> C:\WINDOWS\System\OLECLI.DLL -> [2010/02/20 01:09:46 | 000,082,944 | ---- | C | MD5 = D475029D732983ED962A8FF61688C912] (Microsoft Corporation)
MCIAVI.DRV -> C:\WINDOWS\System\MCIAVI.DRV -> [2010/02/20 01:09:46 | 000,073,376 | ---- | C | MD5 = 174BD475D798303DF480416F4BEDB58E] (Microsoft Corporation)
MCIWAVE.DRV -> C:\WINDOWS\System\MCIWAVE.DRV -> [2010/02/20 01:09:46 | 000,028,160 | ---- | C | MD5 = E05EE7069DE3CCD5B984CFF5AC82858F] (Microsoft Corporation)
MCISEQ.DRV -> C:\WINDOWS\System\MCISEQ.DRV -> [2010/02/20 01:09:46 | 000,025,264 | ---- | C | MD5 = 26C7F2EFBC94964CDE27EBE9CB5395A3] (Microsoft Corporation)
OLESVR.DLL -> C:\WINDOWS\System\OLESVR.DLL -> [2010/02/20 01:09:46 | 000,024,064 | ---- | C | MD5 = 16BF834A84A7DC0D24EDC8E924C90637] (Microsoft Corporation)
TAPI.DLL -> C:\WINDOWS\System\TAPI.DLL -> [2010/02/20 01:09:46 | 000,019,200 | ---- | C | MD5 = 381575677C1C0C6184138307F1A4CDC3] (Microsoft Corporation)
SHELL.DLL -> C:\WINDOWS\System\SHELL.DLL -> [2010/02/20 01:09:46 | 000,005,120 | ---- | C | MD5 = DC8A8C47542EDD026AD8F4AC3D6C2292] (Microsoft Corporation)
TIMER.DRV -> C:\WINDOWS\System\TIMER.DRV -> [2010/02/20 01:09:46 | 000,004,048 | ---- | C | MD5 = 9E7425234ADDEDABC7BF7ADDAFD72FD9] (Microsoft Corporation)
SYSTEM.DRV -> C:\WINDOWS\System\SYSTEM.DRV -> [2010/02/20 01:09:46 | 000,003,360 | ---- | C | MD5 = 4A00D59AE6D75BDFC2C8E5182C4B1376] (Microsoft Corporation)
MOUSE.DRV -> C:\WINDOWS\System\MOUSE.DRV -> [2010/02/20 01:09:46 | 000,002,032 | ---- | C | MD5 = 7D29780AC88BB7292CDCFF71BA67433D] (Microsoft Corporation)
SOUND.DRV -> C:\WINDOWS\System\SOUND.DRV -> [2010/02/20 01:09:46 | 000,001,744 | ---- | C | MD5 = 028A1F74926DC3DF2D9629EDC9AEBAFB] (Microsoft Corporation)
MMTASK.TSK -> C:\WINDOWS\System\MMTASK.TSK -> [2010/02/20 01:09:46 | 000,001,152 | ---- | C | MD5 = AAB73D4BF9CFED0DCDD00A11133751C6] (Microsoft Corporation)
AVIFILE.DLL -> C:\WINDOWS\System\AVIFILE.DLL -> [2010/02/20 01:09:45 | 000,109,456 | ---- | C | MD5 = 1131CC48B374FBF92EBAF0821C228ACA] (Microsoft Corporation)
AVICAP.DLL -> C:\WINDOWS\System\AVICAP.DLL -> [2010/02/20 01:09:45 | 000,069,584 | ---- | C | MD5 = D05D2C408BBDD201E145F1202B2F13BD] (Microsoft Corporation)
COMMDLG.DLL -> C:\WINDOWS\System\COMMDLG.DLL -> [2010/02/20 01:09:45 | 000,032,816 | ---- | C | MD5 = 508AD6502860BA3796DE7E50810F1A72] (Microsoft Corporation)
TASKMAN.EXE -> C:\WINDOWS\TASKMAN.EXE -> [2010/02/20 01:09:45 | 000,015,360 | ---- | C | MD5 = F4DFD83153E8C9088AE2DB704107060D] (Microsoft Corporation)
taskman.exe -> C:\WINDOWS\System32\dllcache\taskman.exe -> [2010/02/20 01:09:45 | 000,015,360 | ---- | C | MD5 = F4DFD83153E8C9088AE2DB704107060D] (Microsoft Corporation)
LZEXPAND.DLL -> C:\WINDOWS\System\LZEXPAND.DLL -> [2010/02/20 01:09:45 | 000,009,936 | ---- | C | MD5 = C7F038338BF55DE73B57C1FC7B23671A] (Microsoft Corporation)
KEYBOARD.DRV -> C:\WINDOWS\System\KEYBOARD.DRV -> [2010/02/20 01:09:45 | 000,002,000 | ---- | C | MD5 = ED4BF709AAD8B665075DE06A0945B030] (Microsoft Corporation)
WINSPOOL.DRV -> C:\WINDOWS\System\WINSPOOL.DRV -> [2010/02/20 01:09:44 | 000,146,432 | ---- | C | MD5 = BD83ABA61E8ACCC8D9FFB869F29418CE] (Microsoft Corporation)
MMSYSTEM.DLL -> C:\WINDOWS\System\MMSYSTEM.DLL -> [2010/02/20 01:09:44 | 000,068,768 | ---- | C | MD5 = BAC7CA4576EF5509F336F5B007DC195B] (Microsoft Corporation)
batt.dll -> C:\WINDOWS\System32\dllcache\batt.dll -> [2010/02/20 01:09:44 | 000,008,704 | ---- | C | MD5 = A956751EF995DF776F19831123868A83] (Microsoft Corporation)
batt.dll -> C:\WINDOWS\System32\batt.dll -> [2010/02/20 01:09:44 | 000,008,704 | ---- | C | MD5 = A956751EF995DF776F19831123868A83] (Microsoft Corporation)
storprop.dll -> C:\WINDOWS\System32\storprop.dll -> [2010/02/20 01:09:42 | 000,074,752 | ---- | C | MD5 = 3FE791B7714A592B17C4DD8C24B382AF] (Microsoft Corporation)
Start Menu -> C:\Documents and Settings\All Users\Start Menu -> [2010/02/20 01:09:36 | 000,000,000 | R--D | C]
Documents -> C:\Documents and Settings\All Users\Documents -> [2010/02/20 01:09:36 | 000,000,000 | R--D | C]
Templates -> C:\Documents and Settings\All Users\Templates -> [2010/02/20 01:09:36 | 000,000,000 | -H-D | C]
Favorites -> C:\Documents and Settings\All Users\Favorites -> [2010/02/20 01:09:36 | 000,000,000 | ---D | C]
Desktop -> C:\Documents and Settings\All Users\Desktop -> [2010/02/20 01:09:36 | 000,000,000 | ---D | C]
CatRoot2 -> C:\WINDOWS\System32\CatRoot2 -> [2010/02/20 01:07:47 | 000,000,000 | ---D | C]
CatRoot -> C:\WINDOWS\System32\CatRoot -> [2010/02/20 01:07:47 | 000,000,000 | ---D | C]
Microsoft -> C:\Documents and Settings\All Users\Application Data\Microsoft -> [2010/02/20 01:07:42 | 000,000,000 | --SD | C]
Application Data -> C:\Documents and Settings\All Users\Application Data -> [2010/02/20 01:07:42 | 000,000,000 | RH-D | C]
System Volume Information -> C:\System Volume Information -> [2010/02/20 01:07:21 | 000,000,000 | -HSD | C]
Documents and Settings -> C:\Documents and Settings -> [2010/02/20 01:07:21 | 000,000,000 | ---D | C]
Fonts -> C:\WINDOWS\Fonts -> [2010/02/20 01:01:07 | 000,000,000 | R-SD | C]
dllcache -> C:\WINDOWS\System32\dllcache -> [2010/02/20 01:01:07 | 000,000,000 | RHSD | C]
Web -> C:\WINDOWS\Web -> [2010/02/20 01:01:07 | 000,000,000 | R--D | C]
inf -> C:\WINDOWS\inf -> [2010/02/20 01:01:07 | 000,000,000 | -H-D | C]
WinSxS -> C:\WINDOWS\WinSxS -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
wins -> C:\WINDOWS\System32\wins -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
WINDOWS -> C:\WINDOWS -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
wbem -> C:\WINDOWS\System32\wbem -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
usmt -> C:\WINDOWS\System32\usmt -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
twain_32 -> C:\WINDOWS\twain_32 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
system32 -> C:\WINDOWS\system32 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
system -> C:\WINDOWS\system -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
spool -> C:\WINDOWS\System32\spool -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
ShellExt -> C:\WINDOWS\System32\ShellExt -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Setup -> C:\WINDOWS\System32\Setup -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
security -> C:\WINDOWS\security -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
scripting -> C:\WINDOWS\System32\scripting -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Resources -> C:\WINDOWS\Resources -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
repair -> C:\WINDOWS\repair -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
ras -> C:\WINDOWS\System32\ras -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Provisioning -> C:\WINDOWS\Provisioning -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
PeerNet -> C:\WINDOWS\PeerNet -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
pchealth -> C:\WINDOWS\pchealth -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
oobe -> C:\WINDOWS\System32\oobe -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
npp -> C:\WINDOWS\System32\npp -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Network Diagnostic -> C:\WINDOWS\Network Diagnostic -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
mui -> C:\WINDOWS\System32\mui -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
mui -> C:\WINDOWS\mui -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
msapps -> C:\WINDOWS\msapps -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
msagent -> C:\WINDOWS\msagent -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Media -> C:\WINDOWS\Media -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
L2Schemas -> C:\WINDOWS\L2Schemas -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
java -> C:\WINDOWS\java -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
inetsrv -> C:\WINDOWS\System32\inetsrv -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
IME -> C:\WINDOWS\System32\IME -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
ime -> C:\WINDOWS\ime -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
icsxml -> C:\WINDOWS\System32\icsxml -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
ias -> C:\WINDOWS\System32\ias -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Help -> C:\WINDOWS\Help -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
export -> C:\WINDOWS\System32\export -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
etc -> C:\WINDOWS\System32\drivers\etc -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
en -> C:\WINDOWS\System32\en -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
ehome -> C:\WINDOWS\ehome -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
drivers -> C:\WINDOWS\System32\drivers -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Driver Cache -> C:\WINDOWS\Driver Cache -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
disdn -> C:\WINDOWS\System32\drivers\disdn -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
dhcp -> C:\WINDOWS\System32\dhcp -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Debug -> C:\WINDOWS\Debug -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Cursors -> C:\WINDOWS\Cursors -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Connection Wizard -> C:\WINDOWS\Connection Wizard -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
config -> C:\WINDOWS\System32\config -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
Config -> C:\WINDOWS\Config -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
AppPatch -> C:\WINDOWS\AppPatch -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
addins -> C:\WINDOWS\addins -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
3com_dmi -> C:\WINDOWS\System32\3com_dmi -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
3076 -> C:\WINDOWS\System32\3076 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
2052 -> C:\WINDOWS\System32\2052 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1054 -> C:\WINDOWS\System32\1054 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1042 -> C:\WINDOWS\System32\1042 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1041 -> C:\WINDOWS\System32\1041 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1037 -> C:\WINDOWS\System32\1037 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1033 -> C:\WINDOWS\System32\1033 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1031 -> C:\WINDOWS\System32\1031 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1028 -> C:\WINDOWS\System32\1028 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
1025 -> C:\WINDOWS\System32\1025 -> [2010/02/20 01:01:07 | 000,000,000 | ---D | C]
3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->
1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp ->
1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->

w619 · « **Reply #17 on:** April 08, 2010, 02:09:14 PM »

[Files/Folders - Modified Within 90 Days]
NvApps.xml -> C:\WINDOWS\System32\NvApps.xml -> [2010/04/08 11:53:52 | 000,271,490 | ---- | M | MD5 = BFA1DCC38918DD4AB306E7FBC263847D] ()
WGASetup.job -> C:\WINDOWS\tasks\WGASetup.job -> [2010/04/08 11:53:52 | 000,000,258 | ---- | M | MD5 = AAF582866511D6F1FFE18496053E6B59] ()
IconCache.db -> C:\Documents and Settings\chris\Local Settings\Application Data\IconCache.db -> [2010/04/08 11:53:32 | 006,395,978 | -H-- | M | MD5 = FDC870CD84E3F8DE489A103A160316FE] ()
OTS.exe -> C:\Documents and Settings\chris\Desktop\OTS.exe -> [2010/04/08 11:50:27 | 000,638,976 | ---- | M | MD5 = 0699456F9835951BCB3304564244386F] (OldTimer Tools)
SA.DAT -> C:\WINDOWS\tasks\SA.DAT -> [2010/04/08 10:29:33 | 000,000,006 | -H-- | M | MD5 = F1A6CD5ADAAB953A6764EA364E17BFB8] ()
system.ini -> C:\WINDOWS\system.ini -> [2010/04/08 10:28:51 | 000,000,227 | ---- | M | MD5 = F4D021E764F6FA554606F4A735A3151B] ()
boot.ini -> C:\boot.ini -> [2010/04/08 10:23:21 | 000,000,281 | RHS- | M | MD5 = 5730631551AE7CA5D64E9FA67EB963EB] ()
ComboFix.exe -> C:\Documents and Settings\chris\Desktop\ComboFix.exe -> [2010/04/08 10:15:46 | 003,909,898 | R--- | M | MD5 = 33E1E3715E987FFE79EB9D6563EFE6FC] ()
bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2010/04/08 06:57:36 | 000,002,048 | --S- | M | MD5 = 6A2CB42966136854F4464516FBB4AE72] ()
NTUSER.DAT -> C:\Documents and Settings\chris\NTUSER.DAT -> [2010/04/07 23:19:45 | 002,359,296 | -H-- | M | Unable to obtain MD5] ()
ntuser.ini -> C:\Documents and Settings\chris\ntuser.ini -> [2010/04/07 23:19:45 | 000,000,178 | -HS- | M | MD5 = CBDA6984D2ECC537AEF07205AE001013] ()
CONFIG.NT -> C:\WINDOWS\System32\CONFIG.NT -> [2010/04/07 14:25:15 | 000,002,626 | ---- | M | MD5 = 9868202B27D747DD709F5A59DD680C50] ()
win.ini -> C:\WINDOWS\win.ini -> [2010/04/07 11:38:35 | 000,000,507 | ---- | M | MD5 = F5C397BEFBE878EBBAA17055D06359C7] ()
Boot.bak -> C:\Boot.bak -> [2010/04/07 11:38:35 | 000,000,211 | ---- | M | MD5 = FA579938B0733B87066546AFE951082C] ()
wpa.dbl -> C:\WINDOWS\System32\wpa.dbl -> [2010/04/07 11:21:21 | 000,013,646 | ---- | M | MD5 = 012CEA8EC834B83D07510660A65B44F5] ()
sniper.exe.lnk -> C:\Documents and Settings\chris\Desktop\sniper.exe.lnk -> [2010/04/07 00:35:26 | 000,001,734 | ---- | M | MD5 = DD4798E1E76EADEDF46AD981439C4624] ()
SUPERAntiSpyware Free Edition.lnk -> C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk -> [2010/04/06 22:24:03 | 000,000,780 | ---- | M | MD5 = A9F3009C0F9D2C18402A0210351F52BC] ()
CCleaner.lnk -> C:\Documents and Settings\chris\Desktop\CCleaner.lnk -> [2010/04/06 22:16:01 | 000,001,548 | ---- | M | MD5 = 12AC1EC48C09EB78E8EB89E1B22AD77E] ()
Skype.lnk -> C:\Documents and Settings\All Users\Desktop\Skype.lnk -> [2010/04/06 21:49:22 | 000,002,265 | ---- | M | MD5 = EE2EDF4437FC9BE53840C04B393AD13F] ()
Malwarebytes' Anti-Malware.lnk -> C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk -> [2010/04/06 20:19:40 | 000,000,696 | ---- | M | MD5 = E37EA484E91BC9415167C9FD2E45EB95] ()
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\chris\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2010/04/06 20:01:44 | 000,019,456 | ---- | M | MD5 = F9665D22695FA4D4F11406EAC6E1E136] ()
cisvecab.dll -> C:\WINDOWS\System32\cisvecab.dll -> [2010/04/06 19:28:20 | 000,044,032 | -H-- | M | MD5 = B52CB036CC2379222149BD5DB403EAAE] ()
StarMaker.lnk -> C:\Documents and Settings\All Users\Desktop\StarMaker.lnk -> [2010/04/05 07:08:30 | 000,001,808 | ---- | M | MD5 = 86434C94C976E8412048C758753AFB24] ()
The Movies.lnk -> C:\Documents and Settings\All Users\Desktop\The Movies.lnk -> [2010/04/05 07:08:30 | 000,001,785 | ---- | M | MD5 = 5F135C204485D5431B18946023FD03DB] ()
EA Download Manager.lnk -> C:\Documents and Settings\All Users\Desktop\EA Download Manager.lnk -> [2010/04/05 07:03:00 | 000,001,907 | ---- | M | MD5 = 41D02E90F2E34CA5C90A7A004D382086] ()
The Sims™ 3.lnk -> C:\Documents and Settings\All Users\Desktop\The Sims™ 3.lnk -> [2010/04/05 03:49:29 | 000,001,723 | ---- | M | MD5 = 21613415AE2F1971F84A16079F3FF8C5] ()
Fantasy Earth Zero.lnk -> C:\Documents and Settings\All Users\Desktop\Fantasy Earth Zero.lnk -> [2010/04/04 22:18:32 | 000,001,699 | ---- | M | MD5 = E0458CF176003CF4EEBC3904A125DE2A] ()
ezsidmv.dat -> C:\WINDOWS\System32\ezsidmv.dat -> [2010/04/04 22:01:26 | 000,000,056 | -H-- | M | MD5 = 0B580BA76924097E0CE1F0EBC84F0E81] ()
FEZsetup_2010-04-01.exe -> C:\Documents and Settings\chris\Desktop\FEZsetup_2010-04-01.exe -> [2010/04/04 22:00:27 | 940,197,287 | ---- | M | MD5 = 32A4F435590300FAD5D23AB9D180F106] ()
Left 4 Dead 2.lnk -> C:\Documents and Settings\chris\Desktop\Left 4 Dead 2.lnk -> [2010/04/03 19:56:55 | 000,001,616 | ---- | M | MD5 = F8ADF25EAA3EC2387B068642A5242282] ()
Msft_User_ZuneDriver_01_09_00.Wdf -> C:\WINDOWS\System32\drivers\Msft_User_ZuneDriver_01_09_00.Wdf -> [2010/04/02 17:34:32 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Msft_Kernel_WinUSB_01009.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf -> [2010/04/02 17:34:32 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MsftWdf_user_01_09_00.Wdf -> C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf -> [2010/04/02 17:33:46 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
PnkBstrB.xtr -> C:\WINDOWS\System32\PnkBstrB.xtr -> [2010/03/31 08:02:53 | 000,215,128 | ---- | M | MD5 = 9A386EC60A166DF66205343CA12C6B86] ()
pnkbstrk.sys -> C:\WINDOWS\System32\drivers\pnkbstrk.sys -> [2010/03/31 07:44:21 | 000,139,128 | ---- | M | MD5 = 10BE25C04613B70D8CE1F412E14D9454] ()
mbamswissarmy.sys -> C:\WINDOWS\System32\drivers\mbamswissarmy.sys -> [2010/03/30 00:46:30 | 000,038,224 | ---- | M | MD5 = 75B8EF2A089127E8A3B38F46CC366D79] (Malwarebytes Corporation)
mbam.sys -> C:\WINDOWS\System32\drivers\mbam.sys -> [2010/03/30 00:45:52 | 000,020,824 | ---- | M | MD5 = F61B04F2BB5098A34817D776C59E5E7C] (Malwarebytes Corporation)
PnkBstrK.sys -> C:\Documents and Settings\chris\Application Data\PnkBstrK.sys -> [2010/03/29 19:45:25 | 000,138,056 | ---- | M | MD5 = 73709547A3B136DE4FCFDE3EF78C1B8F] ()
pbsvc_bc2.exe -> C:\WINDOWS\System32\pbsvc_bc2.exe -> [2010/03/29 19:45:00 | 002,434,856 | ---- | M | MD5 = 97AE01E23FB8D7048377AB08D1938711] ()
Torchlight.lnk -> C:\Documents and Settings\chris\Desktop\Torchlight.lnk -> [2010/03/26 18:34:42 | 000,001,620 | ---- | M | MD5 = 1BF5CEBE5784527C3A0C0BA2C9C0E67E] ()
Mass Effect.lnk -> C:\Documents and Settings\chris\Desktop\Mass Effect.lnk -> [2010/03/21 16:37:49 | 000,001,620 | ---- | M | MD5 = 7E46F12B55CE4FDA5D2FB97A5304D961] ()
NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2010/03/17 14:34:30 | 000,000,069 | ---- | M | MD5 = DCC78B14C94A442C60981A7095B4A730] ()
Dragon Age Origins - Awakening.lnk -> C:\Documents and Settings\chris\Desktop\Dragon Age Origins - Awakening.lnk -> [2010/03/16 12:06:06 | 000,001,620 | ---- | M | MD5 = 347A392A0C0D716EA00030A6003FF3B9] ()
PEV.exe -> C:\WINDOWS\PEV.exe -> [2010/03/12 18:02:38 | 000,261,632 | ---- | M | MD5 = 7CA96386C782237988592EB606CED583] ()
aswBoot.exe -> C:\WINDOWS\System32\aswBoot.exe -> [2010/03/09 04:24:05 | 000,153,184 | ---- | M | MD5 = A8D96F9986063D53EEBE9D1B09825CCF] (ALWIL Software)
aswTdi.sys -> C:\WINDOWS\System32\drivers\aswTdi.sys -> [2010/03/09 04:12:54 | 000,046,672 | ---- | M | MD5 = 755E4AFB683E3306886A0F4DF02A1575] (ALWIL Software)
aswSP.sys -> C:\WINDOWS\System32\drivers\aswSP.sys -> [2010/03/09 04:12:33 | 000,162,640 | ---- | M | MD5 = 39BF48164A958F4BF0C0EC6CDC447DB5] (ALWIL Software)
aswRdr.sys -> C:\WINDOWS\System32\drivers\aswRdr.sys -> [2010/03/09 04:09:08 | 000,023,376 | ---- | M | MD5 = 7827F70B86B29FBF112CBCE547205ACC] (ALWIL Software)
aswmon2.sys -> C:\WINDOWS\System32\drivers\aswmon2.sys -> [2010/03/09 04:08:41 | 000,100,432 | ---- | M | MD5 = 1A10CBECFDD0A597B27E2D0998D95CF9] (ALWIL Software)
aswmon.sys -> C:\WINDOWS\System32\drivers\aswmon.sys -> [2010/03/09 04:08:38 | 000,094,800 | ---- | M | MD5 = 72BEDB9179163E04280D25314286D253] (ALWIL Software)
aswFsBlk.sys -> C:\WINDOWS\System32\drivers\aswFsBlk.sys -> [2010/03/09 04:08:30 | 000,019,024 | ---- | M | MD5 = FB6A381C32A87EE6588EED61D22DC03B] (ALWIL Software)
aavmker4.sys -> C:\WINDOWS\System32\drivers\aavmker4.sys -> [2010/03/09 04:08:15 | 000,028,880 | ---- | M | MD5 = D5D75EDD02157FCD3EB576D4681E8C3E] (ALWIL Software)
fusioncache.dat -> C:\Documents and Settings\chris\Local Settings\Application Data\fusioncache.dat -> [2010/03/07 13:12:26 | 000,000,128 | ---- | M | MD5 = DC2232D0F40F7860012355B2E65DC3D1] ()
Dungeons and Dragons Online™ - Eberron Unlimited™.lnk -> C:\Documents and Settings\All Users\Desktop\Dungeons and Dragons Online™ - Eberron Unlimited™.lnk -> [2010/03/07 13:12:10 | 000,002,157 | ---- | M | MD5 = D32C7D3BC6F419DE355FBE398A3474CB] ()
Launch Turbine Download Manager.lnk -> C:\Documents and Settings\All Users\Desktop\Launch Turbine Download Manager.lnk -> [2010/03/07 13:05:38 | 000,001,912 | ---- | M | MD5 = 0F4324B7A16B40A6BA6F396822B91D09] ()
PerfStringBackup.INI -> C:\WINDOWS\System32\PerfStringBackup.INI -> [2010/03/07 13:04:57 | 000,509,574 | ---- | M | MD5 = C9125B5CF84AD7C41F003B5D74CAD746] ()
perfh009.dat -> C:\WINDOWS\System32\perfh009.dat -> [2010/03/07 13:04:57 | 000,440,684 | ---- | M | MD5 = ACF3BCFD8A8198430092370D6D1F0145] ()
perfc009.dat -> C:\WINDOWS\System32\perfc009.dat -> [2010/03/07 13:04:57 | 000,071,002 | ---- | M | MD5 = 786F017CC661B8FDE2ABC18073E976F4] ()
VLC media player.lnk -> C:\Documents and Settings\All Users\Desktop\VLC media player.lnk -> [2010/03/06 16:12:29 | 000,000,719 | ---- | M | MD5 = 01D1D7AC243E25C383476C1084A12546] ()
GDIPFONTCACHEV1.DAT -> C:\Documents and Settings\chris\Local Settings\Application Data\GDIPFONTCACHEV1.DAT -> [2010/03/06 15:57:26 | 000,012,328 | ---- | M | MD5 = 8890C64BE218D2B796503639BEFAFAD6] ()
default.pls -> C:\Documents and Settings\chris\default.pls -> [2010/03/06 15:51:30 | 000,000,124 | ---- | M | MD5 = 5501E33AAA49FC9AD1E93282E1BBAB8E] ()
Ascd_tmp.ini -> C:\WINDOWS\Ascd_tmp.ini -> [2010/03/05 08:54:03 | 000,033,147 | ---- | M | MD5 = C7C3D4C835DE742D34E5C88DF073151A] ()
Nero StartSmart Essentials.lnk -> C:\Documents and Settings\chris\Desktop\Nero StartSmart Essentials.lnk -> [2010/03/05 08:53:20 | 000,002,361 | ---- | M | MD5 = 0E2799858AA3244EFC50BF82AD7D7AB6] ()
Nero Home Essentials SE.lnk -> C:\Documents and Settings\chris\Desktop\Nero Home Essentials SE.lnk -> [2010/03/05 08:53:20 | 000,002,261 | ---- | M | MD5 = 6EB31BEDC3357DEF04CB8B96101BD4FB] ()
Nero Online Upgrade.lnk -> C:\Documents and Settings\chris\Desktop\Nero Online Upgrade.lnk -> [2010/03/05 08:53:20 | 000,001,879 | ---- | M | MD5 = 5A8738ED4D2BD3A74F06B868B2AB9A7F] ()
BitTorrent.lnk -> C:\Documents and Settings\chris\Desktop\BitTorrent.lnk -> [2010/03/05 08:53:20 | 000,000,728 | ---- | M | MD5 = DC384DBC36E8907CEE10A652F41E2B34] ()
Neverwinter Nights 2.lnk -> C:\Documents and Settings\chris\Desktop\Neverwinter Nights 2.lnk -> [2010/03/05 08:53:19 | 000,001,780 | ---- | M | MD5 = 978382DFFD6A6393785D34975DDE901F] ()
atksgt.sys -> C:\WINDOWS\System32\drivers\atksgt.sys -> [2010/03/01 13:25:26 | 000,281,760 | ---- | M | MD5 = F0D933B42CD0594048E4D5200AE9E417] ()
lirsgt.sys -> C:\WINDOWS\System32\drivers\lirsgt.sys -> [2010/03/01 13:25:13 | 000,025,888 | ---- | M | MD5 = F8A7212D0864EF5E9185FB95E6623F4D] ()
Dragon Age Origins.lnk -> C:\Documents and Settings\chris\Desktop\Dragon Age Origins.lnk -> [2010/02/28 11:19:27 | 000,001,620 | ---- | M | MD5 = C3F9BF8453167D653979891E323594E6] ()
Risen.lnk -> C:\Documents and Settings\chris\Desktop\Risen.lnk -> [2010/02/28 11:19:03 | 000,001,620 | ---- | M | MD5 = 673F6EF20D42577E7DF074B5BC12B37A] ()
nscompat.tlb -> C:\WINDOWS\System32\nscompat.tlb -> [2010/02/27 03:49:56 | 000,023,392 | ---- | M | MD5 = A32B14BE5EDAE794FCE1A9E970827509] ()
amcompat.tlb -> C:\WINDOWS\System32\amcompat.tlb -> [2010/02/27 03:49:56 | 000,016,832 | ---- | M | MD5 = 6D6F4B1886E91EB37ABCCAD19C561EE0] ()
Msft_Kernel_zumbus_01009.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_zumbus_01009.Wdf -> [2010/02/27 03:35:12 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MsftWdf_Kernel_01009_Coinstaller_Critic al.Wdf -> C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf -> [2010/02/27 03:35:11 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Zune.lnk -> C:\Documents and Settings\All Users\Desktop\Zune.lnk -> [2010/02/27 03:35:00 | 000,000,628 | ---- | M | MD5 = 3D96D642F1E16FCB660FA229CBB5311E] ()
MsftWdf_user_01_00_00.Wdf -> C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf -> [2010/02/27 03:33:59 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
WMSysPr9.prx -> C:\WINDOWS\WMSysPr9.prx -> [2010/02/27 03:25:15 | 000,316,640 | ---- | M | MD5 = DC17DD0189B0C36D863B4DD0A036C10F] ()
ieframe.dll -> C:\WINDOWS\System32\dllcache\ieframe.dll -> [2010/02/25 11:54:36 | 011,070,976 | ---- | M | MD5 = 0D5C62E6462FEE517C7FB3B64A58EF1B] (Microsoft Corporation)
urlmon.dll -> C:\WINDOWS\System32\dllcache\urlmon.dll -> [2010/02/24 23:24:37 | 001,209,344 | ---- | M | MD5 = 9C56C8C957F6AC4C7FA1378E108C42EA] (Microsoft Corporation)
wininet.dll -> C:\WINDOWS\System32\dllcache\wininet.dll -> [2010/02/24 23:24:37 | 000,916,480 | ---- | M | MD5 = 7A42CFED96CDA7F2FB1A26D1F9F65775] (Microsoft Corporation)
mstime.dll -> C:\WINDOWS\System32\mstime.dll -> [2010/02/24 23:24:37 | 000,611,840 | ---- | M | MD5 = 0D5B4C90904B63D3E8830A7DB22C3352] (Microsoft Corporation)
mstime.dll -> C:\WINDOWS\System32\dllcache\mstime.dll -> [2010/02/24 23:24:37 | 000,611,840 | ---- | M | MD5 = 0D5B4C90904B63D3E8830A7DB22C3352] (Microsoft Corporation)
occache.dll -> C:\WINDOWS\System32\dllcache\occache.dll -> [2010/02/24 23:24:37 | 000,206,848 | ---- | M | MD5 = EEA94DFB391F5552D2B4D8FF13775E85] (Microsoft Corporation)
mshtml.dll -> C:\WINDOWS\System32\dllcache\mshtml.dll -> [2010/02/24 23:24:36 | 005,944,832 | ---- | M | MD5 = 7054F6ADC9B670887659F1561603B0D0] (Microsoft Corporation)
iertutil.dll -> C:\WINDOWS\System32\dllcache\iertutil.dll -> [2010/02/24 23:24:35 | 001,985,536 | ---- | M | MD5 = 95825F207451C184CF341255B2212249] (Microsoft Corporation)
inetcpl.cpl -> C:\WINDOWS\System32\inetcpl.cpl -> [2010/02/24 23:24:35 | 001,469,440 | ---- | M | MD5 = 39C8BFB4EF85C138FF39C7E6E5CD0C19] (Microsoft Corporation)
inetcpl.cpl -> C:\WINDOWS\System32\dllcache\inetcpl.cpl -> [2010/02/24 23:24:35 | 001,469,440 | ---- | M | MD5 = 39C8BFB4EF85C138FF39C7E6E5CD0C19] (Microsoft Corporation)
msfeeds.dll -> C:\WINDOWS\System32\msfeeds.dll -> [2010/02/24 23:24:35 | 000,594,432 | ---- | M | MD5 = 389CFF2900A585559FA5AE44B1263696] (Microsoft Corporation)
msfeeds.dll -> C:\WINDOWS\System32\dllcache\msfeeds.dll -> [2010/02/24 23:24:35 | 000,594,432 | ---- | M | MD5 = 389CFF2900A585559FA5AE44B1263696] (Microsoft Corporation)
iepeers.dll -> C:\WINDOWS\System32\iepeers.dll -> [2010/02/24 23:24:35 | 000,184,320 | ---- | M | MD5 = CCCA70E2161E433897FF47D86643FD1B] (Microsoft Corporation)
iepeers.dll -> C:\WINDOWS\System32\dllcache\iepeers.dll -> [2010/02/24 23:24:35 | 000,184,320 | ---- | M | MD5 = CCCA70E2161E433897FF47D86643FD1B] (Microsoft Corporation)
msfeedsbs.dll -> C:\WINDOWS\System32\msfeedsbs.dll -> [2010/02/24 23:24:35 | 000,055,296 | ---- | M | MD5 = 35A5A2DD5155228A8A7E2C4738AF1417] (Microsoft Corporation)
msfeedsbs.dll -> C:\WINDOWS\System32\dllcache\msfeedsbs.dll -> [2010/02/24 23:24:35 | 000,055,296 | ---- | M | MD5 = 35A5A2DD5155228A8A7E2C4738AF1417] (Microsoft Corporation)
jsproxy.dll -> C:\WINDOWS\System32\jsproxy.dll -> [2010/02/24 23:24:35 | 000,025,600 | ---- | M | MD5 = 2AC1469E7C098D624C804A703D552EE8] (Microsoft Corporation)
jsproxy.dll -> C:\WINDOWS\System32\dllcache\jsproxy.dll -> [2010/02/24 23:24:35 | 000,025,600 | ---- | M | MD5 = 2AC1469E7C098D624C804A703D552EE8] (Microsoft Corporation)
iedkcs32.dll -> C:\WINDOWS\System32\iedkcs32.dll -> [2010/02/24 23:24:34 | 000,387,584 | ---- | M | MD5 = B839632AA3A087719BFCB70019221F5E] (Microsoft Corporation)
iedkcs32.dll -> C:\WINDOWS\System32\dllcache\iedkcs32.dll -> [2010/02/24 23:24:34 | 000,387,584 | ---- | M | MD5 = B839632AA3A087719BFCB70019221F5E] (Microsoft Corporation)
LimeWire 5.4.8.lnk -> C:\Documents and Settings\chris\Desktop\LimeWire 5.4.8.lnk -> [2010/02/24 22:12:14 | 000,001,578 | ---- | M | MD5 = 8C7D75A91B189AEC9E973BB28D8F2535] ()
Adobe Reader 9.lnk -> C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk -> [2010/02/24 20:51:55 | 000,001,729 | ---- | M | MD5 = C37CA4E64CEAFE4FEC1C5FF9A1F42E7C] ()
ie4uinit.exe -> C:\WINDOWS\System32\ie4uinit.exe -> [2010/02/24 02:54:25 | 000,173,056 | ---- | M | MD5 = 8B08D5F137DE74DDB3A7F408E18C03DD] (Microsoft Corporation)
ie4uinit.exe -> C:\WINDOWS\System32\dllcache\ie4uinit.exe -> [2010/02/24 02:54:25 | 000,173,056 | ---- | M | MD5 = 8B08D5F137DE74DDB3A7F408E18C03DD] (Microsoft Corporation)
FNTCACHE.DAT -> C:\WINDOWS\System32\FNTCACHE.DAT -> [2010/02/22 05:06:58 | 000,093,480 | ---- | M | MD5 = E9DBAA592EFEE1EF98E559A10D4B0479] ()
A Farewell to Dragons.lnk -> C:\Documents and Settings\chris\Desktop\A Farewell to Dragons.lnk -> [2010/02/22 00:06:19 | 000,001,618 | ---- | M | MD5 = 08814654FEACC5E427A39F5866F9169D] ()
avast! Free Antivirus.lnk -> C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk -> [2010/02/21 23:23:47 | 000,001,700 | ---- | M | MD5 = 73614692D046C23970A7BBA9C13D481E] ()
Company of Heroes Tales of Valor.lnk -> C:\Documents and Settings\chris\Desktop\Company of Heroes Tales of Valor.lnk -> [2010/02/20 20:53:33 | 000,001,620 | ---- | M | MD5 = 8FC007E647C1742EDF9F77E057DD2AFD] ()
Company of Heroes.lnk -> C:\Documents and Settings\chris\Desktop\Company of Heroes.lnk -> [2010/02/20 20:50:09 | 000,001,618 | ---- | M | MD5 = E5DE69C361F85D56338EF505BDF719F9] ()
Call of Duty Modern Warfare 2 - Multiplayer.lnk -> C:\Documents and Settings\chris\Desktop\Call of Duty Modern Warfare 2 - Multiplayer.lnk -> [2010/02/20 20:48:36 | 000,001,620 | ---- | M | MD5 = 60101F98EB961221228E2F285F1DF370] ()
Call of Duty Modern Warfare 2.lnk -> C:\Documents and Settings\chris\Desktop\Call of Duty Modern Warfare 2.lnk -> [2010/02/20 20:28:43 | 000,001,620 | ---- | M | MD5 = C41053DFA6AB35250049E9B5B571B8EA] ()
Ventrilo.lnk -> C:\Documents and Settings\All Users\Desktop\Ventrilo.lnk -> [2010/02/20 20:25:13 | 000,000,630 | ---- | M | MD5 = 394A6C05329CD3EED0BC8DD9B408C22D] ()
{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini -> C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini -> [2010/02/20 20:25:13 | 000,000,262 | ---- | M | MD5 = 8F0F15233F1384BF813D4EB3597B14D4] ()
Msft_Kernel_LMouFilt_01005.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf -> [2010/02/20 14:52:21 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Msft_Kernel_LHidFilt_01005.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf -> [2010/02/20 14:52:21 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Msft_Kernel_LUsbFilt_01005.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf -> [2010/02/20 14:52:10 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MsftWdf_Kernel_01005_Coinstaller_Critic al.Wdf -> C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf -> [2010/02/20 14:52:09 | 000,000,000 | -H-- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Logitech Mouse and Keyboard Settings.lnk -> C:\Documents and Settings\All Users\Desktop\Logitech Mouse and Keyboard Settings.lnk -> [2010/02/20 14:51:22 | 000,001,681 | ---- | M | MD5 = D8C059EBDDBBCA517AD68DBCF7CA44A4] ()
Half-Life 2.lnk -> C:\Documents and Settings\chris\Desktop\Half-Life 2.lnk -> [2010/02/20 09:55:07 | 000,001,616 | ---- | M | MD5 = 5418E9D66413A7CCAC6EE3BF5F12F1B8] ()
Steam.lnk -> C:\Documents and Settings\chris\Desktop\Steam.lnk -> [2010/02/20 09:44:45 | 000,000,481 | ---- | M | MD5 = AA68EB1EB11E87C199C976BAFD1F0CDE] ()
wpa.bak -> C:\WINDOWS\System32\wpa.bak -> [2010/02/20 08:50:55 | 000,013,646 | ---- | M | MD5 = 8849047F273579A195245A648C277625] ()
Ascd_log.ini -> C:\WINDOWS\Ascd_log.ini -> [2010/02/20 08:46:13 | 000,033,529 | ---- | M | MD5 = 6C0A24BF84E9C9AA216144288904F8CE] ()
HD ADeck.lnk -> C:\Documents and Settings\All Users\Desktop\HD ADeck.lnk -> [2010/02/20 08:43:39 | 000,000,849 | ---- | M | MD5 = 7D3D5DFAE65E7E7C2DD660DC12BDEEAF] ()
REGLOCS.OLD -> C:\WINDOWS\REGLOCS.OLD -> [2010/02/20 08:32:13 | 000,008,192 | ---- | M | MD5 = 84075B1C7D27ADC544D86A34FA107398] ()
$winnt$.inf -> C:\WINDOWS\System32\$winnt$.inf -> [2010/02/20 08:31:33 | 000,000,261 | ---- | M | MD5 = D77BBE394E419A31AD8AF29B36D6F735] ()
MSDOS.SYS -> C:\MSDOS.SYS -> [2010/02/20 08:29:47 | 000,000,000 | RHS- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
IO.SYS -> C:\IO.SYS -> [2010/02/20 08:29:47 | 000,000,000 | RHS- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
control.ini -> C:\WINDOWS\control.ini -> [2010/02/20 08:29:47 | 000,000,000 | ---- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
CONFIG.SYS -> C:\CONFIG.SYS -> [2010/02/20 08:29:47 | 000,000,000 | ---- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
AUTOEXEC.BAT -> C:\AUTOEXEC.BAT -> [2010/02/20 08:29:47 | 000,000,000 | ---- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
ODBCINST.INI -> C:\WINDOWS\ODBCINST.INI -> [2010/02/20 08:29:36 | 000,004,161 | ---- | M | MD5 = 53D7F47255085310F50604FDE3076F97] ()
WindowsLogon.manifest -> C:\WINDOWS\System32\WindowsLogon.manifest -> [2010/02/20 08:29:01 | 000,000,488 | RH-- | M | MD5 = 5D76C3FB736514E1D7C88791E7322784] ()
logonui.exe.manifest -> C:\WINDOWS\System32\logonui.exe.manifest -> [2010/02/20 08:29:01 | 000,000,488 | RH-- | M | MD5 = 5D76C3FB736514E1D7C88791E7322784] ()
wuaucpl.cpl.manifest -> C:\WINDOWS\System32\wuaucpl.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | M | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
WindowsShell.Manifest -> C:\WINDOWS\WindowsShell.Manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | M | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
sapi.cpl.manifest -> C:\WINDOWS\System32\sapi.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | M | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
nwc.cpl.manifest -> C:\WINDOWS\System32\nwc.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | M | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
ncpa.cpl.manifest -> C:\WINDOWS\System32\ncpa.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | M | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
cdplayer.exe.manifest -> C:\WINDOWS\System32\cdplayer.exe.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | M | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
emptyregdb.dat -> C:\WINDOWS\System32\emptyregdb.dat -> [2010/02/20 08:27:03 | 000,021,640 | ---- | M | MD5 = 21798E21430D96F7FBEFD60AEC775322] ()
vbaddin.ini -> C:\WINDOWS\vbaddin.ini -> [2010/02/20 08:26:53 | 000,000,037 | ---- | M | MD5 = 6C2F0BA210C2B53EF07653ABAC6C2490] ()
vb.ini -> C:\WINDOWS\vb.ini -> [2010/02/20 08:26:53 | 000,000,036 | ---- | M | MD5 = 487403459F0B2F1A3ADEEF02496BD80E] ()
pid.PNF -> C:\WINDOWS\System32\pid.PNF -> [2010/02/20 01:18:18 | 000,004,444 | ---- | M | MD5 = 2029B25447F0C18AF617342C2D746EC2] ()
avastSS.scr -> C:\WINDOWS\System32\avastSS.scr -> [2010/02/11 11:53:57 | 000,038,848 | ---- | M | MD5 = A0160AD4CE53CDB21ABC67F6B6E1E07B] (ALWIL Software)
NvwsApps.xml -> C:\WINDOWS\System32\NvwsApps.xml -> [2010/01/11 22:17:30 | 000,065,332 | ---- | M | MD5 = 53EE875015436E3A1860F37089F6A018] ()
nvdata.bin -> C:\WINDOWS\System32\nvdata.bin -> [2010/01/11 21:03:33 | 002,283,526 | ---- | M | MD5 = 82859FB17131AAB8C67BEA69FDD7FD44] ()
OpenCL.dll -> C:\WINDOWS\System32\OpenCL.dll -> [2010/01/11 21:03:33 | 000,061,440 | ---- | M | MD5 = 6214A9A805E306CC9AD3EE72FBDD7DDE] (Khronos Group)
nvinfo.pb -> C:\WINDOWS\System32\nvinfo.pb -> [2010/01/11 21:03:33 | 000,009,047 | ---- | M | MD5 = 0C8612F6A51D0D02214F8EDC6361DA9B] ()
3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp ->
1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp ->
1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp ->

w619 · « **Reply #18 on:** April 08, 2010, 02:10:08 PM »

[Files - No Company Name]
Boot.bak -> C:\Boot.bak -> [2010/04/08 10:23:20 | 000,000,211 | ---- | C | MD5 = FA579938B0733B87066546AFE951082C] ()
cmldr -> C:\cmldr -> [2010/04/08 10:23:16 | 000,260,272 | ---- | C | MD5 = 94E5450C43E4CF78E1D3AD4816966909] ()
PEV.exe -> C:\WINDOWS\PEV.exe -> [2010/04/08 10:22:38 | 000,261,632 | ---- | C | MD5 = 7CA96386C782237988592EB606CED583] ()
sed.exe -> C:\WINDOWS\sed.exe -> [2010/04/08 10:22:38 | 000,098,816 | ---- | C | MD5 = 2B657A67AEBB84AEA5632C53E61E23BF] ()
grep.exe -> C:\WINDOWS\grep.exe -> [2010/04/08 10:22:38 | 000,080,412 | ---- | C | MD5 = 9E05A9C264C8A908A8E79450FCBFF047] ()
MBR.exe -> C:\WINDOWS\MBR.exe -> [2010/04/08 10:22:38 | 000,077,312 | ---- | C | MD5 = C5EC72A20B4C98DB5314E6C46765B148] ()
zip.exe -> C:\WINDOWS\zip.exe -> [2010/04/08 10:22:38 | 000,068,096 | ---- | C | MD5 = 5E832F4FAF5F481F2EAF3B3A48F603B8] ()
ComboFix.exe -> C:\Documents and Settings\chris\Desktop\ComboFix.exe -> [2010/04/08 10:15:21 | 003,909,898 | R--- | C | MD5 = 33E1E3715E987FFE79EB9D6563EFE6FC] ()
sniper.exe.lnk -> C:\Documents and Settings\chris\Desktop\sniper.exe.lnk -> [2010/04/07 00:35:26 | 000,001,734 | ---- | C | MD5 = DD4798E1E76EADEDF46AD981439C4624] ()
SUPERAntiSpyware Free Edition.lnk -> C:\Documents and Settings\All Users\Desktop\SUPERAntiSpyware Free Edition.lnk -> [2010/04/06 22:24:03 | 000,000,780 | ---- | C | MD5 = A9F3009C0F9D2C18402A0210351F52BC] ()
CCleaner.lnk -> C:\Documents and Settings\chris\Desktop\CCleaner.lnk -> [2010/04/06 22:16:01 | 000,001,548 | ---- | C | MD5 = 12AC1EC48C09EB78E8EB89E1B22AD77E] ()
JavaRa.def -> C:\Documents and Settings\chris\Desktop\JavaRa.def -> [2010/04/06 21:59:08 | 000,245,103 | ---- | C | MD5 = 7581E3AE14AA8BD29F72A0A4D09306E8] ()
Malwarebytes' Anti-Malware.lnk -> C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk -> [2010/04/06 20:19:40 | 000,000,696 | ---- | C | MD5 = E37EA484E91BC9415167C9FD2E45EB95] ()
changer.sys -> C:\WINDOWS\System32\dllcache\changer.sys -> [2010/04/06 19:29:25 | 000,008,192 | ---- | C | MD5 = 0829F71740AAB1AB98B33EAE21DEE122] ()
cisvecab.dll -> C:\WINDOWS\System32\cisvecab.dll -> [2010/04/06 19:28:20 | 000,044,032 | -H-- | C | MD5 = B52CB036CC2379222149BD5DB403EAAE] ()
StarMaker.lnk -> C:\Documents and Settings\All Users\Desktop\StarMaker.lnk -> [2010/04/05 07:08:30 | 000,001,808 | ---- | C | MD5 = 86434C94C976E8412048C758753AFB24] ()
The Movies.lnk -> C:\Documents and Settings\All Users\Desktop\The Movies.lnk -> [2010/04/05 07:08:30 | 000,001,785 | ---- | C | MD5 = 5F135C204485D5431B18946023FD03DB] ()
EA Download Manager.lnk -> C:\Documents and Settings\All Users\Desktop\EA Download Manager.lnk -> [2010/04/05 07:03:00 | 000,001,907 | ---- | C | MD5 = 41D02E90F2E34CA5C90A7A004D382086] ()
The Sims™ 3.lnk -> C:\Documents and Settings\All Users\Desktop\The Sims™ 3.lnk -> [2010/04/05 03:49:29 | 000,001,723 | ---- | C | MD5 = 21613415AE2F1971F84A16079F3FF8C5] ()
Fantasy Earth Zero.lnk -> C:\Documents and Settings\All Users\Desktop\Fantasy Earth Zero.lnk -> [2010/04/04 22:18:32 | 000,001,699 | ---- | C | MD5 = E0458CF176003CF4EEBC3904A125DE2A] ()
ezsidmv.dat -> C:\WINDOWS\System32\ezsidmv.dat -> [2010/04/04 22:01:26 | 000,000,056 | -H-- | C | MD5 = 0B580BA76924097E0CE1F0EBC84F0E81] ()
Skype.lnk -> C:\Documents and Settings\All Users\Desktop\Skype.lnk -> [2010/04/04 22:00:11 | 000,002,265 | ---- | C | MD5 = EE2EDF4437FC9BE53840C04B393AD13F] ()
FEZsetup_2010-04-01.exe -> C:\Documents and Settings\chris\Desktop\FEZsetup_2010-04-01.exe -> [2010/04/04 21:54:07 | 940,197,287 | ---- | C | MD5 = 32A4F435590300FAD5D23AB9D180F106] ()
Left 4 Dead 2.lnk -> C:\Documents and Settings\chris\Desktop\Left 4 Dead 2.lnk -> [2010/04/03 19:56:55 | 000,001,616 | ---- | C | MD5 = F8ADF25EAA3EC2387B068642A5242282] ()
Msft_User_ZuneDriver_01_09_00.Wdf -> C:\WINDOWS\System32\drivers\Msft_User_ZuneDriver_01_09_00.Wdf -> [2010/04/02 17:34:32 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Msft_Kernel_WinUSB_01009.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_WinUSB_01009.Wdf -> [2010/04/02 17:34:32 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MsftWdf_user_01_09_00.Wdf -> C:\WINDOWS\System32\drivers\MsftWdf_user_01_09_00.Wdf -> [2010/04/02 17:33:46 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
PnkBstrB.xtr -> C:\WINDOWS\System32\PnkBstrB.xtr -> [2010/03/29 19:45:59 | 000,215,128 | ---- | C | MD5 = 9A386EC60A166DF66205343CA12C6B86] ()
pnkbstrk.sys -> C:\WINDOWS\System32\drivers\pnkbstrk.sys -> [2010/03/29 19:45:26 | 000,139,128 | ---- | C | MD5 = 10BE25C04613B70D8CE1F412E14D9454] ()
PnkBstrK.sys -> C:\Documents and Settings\chris\Application Data\PnkBstrK.sys -> [2010/03/29 19:45:25 | 000,138,056 | ---- | C | MD5 = 73709547A3B136DE4FCFDE3EF78C1B8F] ()
PnkBstrB.exe -> C:\WINDOWS\System32\PnkBstrB.exe -> [2010/03/29 19:45:02 | 000,215,128 | ---- | C | MD5 = 9A386EC60A166DF66205343CA12C6B86] ()
pbsvc_bc2.exe -> C:\WINDOWS\System32\pbsvc_bc2.exe -> [2010/03/29 19:45:00 | 002,434,856 | ---- | C | MD5 = 97AE01E23FB8D7048377AB08D1938711] ()
PnkBstrA.exe -> C:\WINDOWS\System32\PnkBstrA.exe -> [2010/03/29 19:45:00 | 000,075,064 | ---- | C | MD5 = A1DD33D16F277CE34124EE52AB2C0F14] ()
Torchlight.lnk -> C:\Documents and Settings\chris\Desktop\Torchlight.lnk -> [2010/03/26 18:34:42 | 000,001,620 | ---- | C | MD5 = 1BF5CEBE5784527C3A0C0BA2C9C0E67E] ()
Mass Effect.lnk -> C:\Documents and Settings\chris\Desktop\Mass Effect.lnk -> [2010/03/21 16:37:49 | 000,001,620 | ---- | C | MD5 = 7E46F12B55CE4FDA5D2FB97A5304D961] ()
Dragon Age Origins - Awakening.lnk -> C:\Documents and Settings\chris\Desktop\Dragon Age Origins - Awakening.lnk -> [2010/03/16 12:06:06 | 000,001,620 | ---- | C | MD5 = 347A392A0C0D716EA00030A6003FF3B9] ()
fusioncache.dat -> C:\Documents and Settings\chris\Local Settings\Application Data\fusioncache.dat -> [2010/03/07 13:12:26 | 000,000,128 | ---- | C | MD5 = DC2232D0F40F7860012355B2E65DC3D1] ()
Dungeons and Dragons Online™ - Eberron Unlimited™.lnk -> C:\Documents and Settings\All Users\Desktop\Dungeons and Dragons Online™ - Eberron Unlimited™.lnk -> [2010/03/07 13:12:10 | 000,002,157 | ---- | C | MD5 = D32C7D3BC6F419DE355FBE398A3474CB] ()
Launch Turbine Download Manager.lnk -> C:\Documents and Settings\All Users\Desktop\Launch Turbine Download Manager.lnk -> [2010/03/07 13:05:38 | 000,001,912 | ---- | C | MD5 = 0F4324B7A16B40A6BA6F396822B91D09] ()
VLC media player.lnk -> C:\Documents and Settings\All Users\Desktop\VLC media player.lnk -> [2010/03/06 16:12:29 | 000,000,719 | ---- | C | MD5 = 01D1D7AC243E25C383476C1084A12546] ()
AsIO.dll -> C:\WINDOWS\System32\AsIO.dll -> [2010/03/05 08:54:28 | 000,024,576 | R--- | C | MD5 = 212F87EE837B4E35E43A93BBFC44E7A7] ()
AsIO.sys -> C:\WINDOWS\System32\drivers\AsIO.sys -> [2010/03/05 08:54:28 | 000,012,400 | R--- | C | MD5 = 2B4E66FAC6503494A2C6F32BB6AB3826] ()
AsInsHelp64.sys -> C:\WINDOWS\System32\drivers\AsInsHelp64.sys -> [2010/03/05 08:54:26 | 000,011,832 | ---- | C | MD5 = EDAA17CE771C696655B6585F7CAD2100] ()
AsInsHelp32.sys -> C:\WINDOWS\System32\drivers\AsInsHelp32.sys -> [2010/03/05 08:54:26 | 000,010,216 | ---- | C | MD5 = ADAA34740E9F6AFF94CC75D5CF8ED7E2] ()
Nero StartSmart Essentials.lnk -> C:\Documents and Settings\chris\Desktop\Nero StartSmart Essentials.lnk -> [2010/03/05 08:53:20 | 000,002,361 | ---- | C | MD5 = 0E2799858AA3244EFC50BF82AD7D7AB6] ()
Nero Home Essentials SE.lnk -> C:\Documents and Settings\chris\Desktop\Nero Home Essentials SE.lnk -> [2010/03/05 08:53:20 | 000,002,261 | ---- | C | MD5 = 6EB31BEDC3357DEF04CB8B96101BD4FB] ()
Nero Online Upgrade.lnk -> C:\Documents and Settings\chris\Desktop\Nero Online Upgrade.lnk -> [2010/03/05 08:53:20 | 000,001,879 | ---- | C | MD5 = 5A8738ED4D2BD3A74F06B868B2AB9A7F] ()
BitTorrent.lnk -> C:\Documents and Settings\chris\Desktop\BitTorrent.lnk -> [2010/03/05 08:53:20 | 000,000,728 | ---- | C | MD5 = DC384DBC36E8907CEE10A652F41E2B34] ()
Neverwinter Nights 2.lnk -> C:\Documents and Settings\chris\Desktop\Neverwinter Nights 2.lnk -> [2010/03/05 08:53:19 | 000,001,780 | ---- | C | MD5 = 978382DFFD6A6393785D34975DDE901F] ()
atksgt.sys -> C:\WINDOWS\System32\drivers\atksgt.sys -> [2010/03/01 13:25:14 | 000,281,760 | ---- | C | MD5 = F0D933B42CD0594048E4D5200AE9E417] ()
lirsgt.sys -> C:\WINDOWS\System32\drivers\lirsgt.sys -> [2010/03/01 13:25:13 | 000,025,888 | ---- | C | MD5 = F8A7212D0864EF5E9185FB95E6623F4D] ()
Dragon Age Origins.lnk -> C:\Documents and Settings\chris\Desktop\Dragon Age Origins.lnk -> [2010/02/28 11:19:27 | 000,001,620 | ---- | C | MD5 = C3F9BF8453167D653979891E323594E6] ()
Risen.lnk -> C:\Documents and Settings\chris\Desktop\Risen.lnk -> [2010/02/28 11:19:03 | 000,001,620 | ---- | C | MD5 = 673F6EF20D42577E7DF074B5BC12B37A] ()
Msft_Kernel_zumbus_01009.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_zumbus_01009.Wdf -> [2010/02/27 03:35:12 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MsftWdf_Kernel_01009_Coinstaller_Critic al.Wdf -> C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf -> [2010/02/27 03:35:11 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Zune.lnk -> C:\Documents and Settings\All Users\Desktop\Zune.lnk -> [2010/02/27 03:35:00 | 000,000,628 | ---- | C | MD5 = 3D96D642F1E16FCB660FA229CBB5311E] ()
MsftWdf_user_01_00_00.Wdf -> C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf -> [2010/02/27 03:33:59 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
default.pls -> C:\Documents and Settings\chris\default.pls -> [2010/02/27 03:30:55 | 000,000,124 | ---- | C | MD5 = 5501E33AAA49FC9AD1E93282E1BBAB8E] ()
NeroDigital.ini -> C:\WINDOWS\NeroDigital.ini -> [2010/02/27 03:30:39 | 000,000,069 | ---- | C | MD5 = DCC78B14C94A442C60981A7095B4A730] ()
DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\chris\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> [2010/02/25 04:59:26 | 000,019,456 | ---- | C | MD5 = F9665D22695FA4D4F11406EAC6E1E136] ()
LimeWire 5.4.8.lnk -> C:\Documents and Settings\chris\Desktop\LimeWire 5.4.8.lnk -> [2010/02/24 22:12:14 | 000,001,578 | ---- | C | MD5 = 8C7D75A91B189AEC9E973BB28D8F2535] ()
Adobe Reader 9.lnk -> C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk -> [2010/02/24 20:51:55 | 000,001,729 | ---- | C | MD5 = C37CA4E64CEAFE4FEC1C5FF9A1F42E7C] ()
A Farewell to Dragons.lnk -> C:\Documents and Settings\chris\Desktop\A Farewell to Dragons.lnk -> [2010/02/22 00:06:19 | 000,001,618 | ---- | C | MD5 = 08814654FEACC5E427A39F5866F9169D] ()
avast! Free Antivirus.lnk -> C:\Documents and Settings\All Users\Desktop\avast! Free Antivirus.lnk -> [2010/02/21 23:23:47 | 000,001,700 | ---- | C | MD5 = 73614692D046C23970A7BBA9C13D481E] ()
Company of Heroes Tales of Valor.lnk -> C:\Documents and Settings\chris\Desktop\Company of Heroes Tales of Valor.lnk -> [2010/02/20 20:53:33 | 000,001,620 | ---- | C | MD5 = 8FC007E647C1742EDF9F77E057DD2AFD] ()
Company of Heroes.lnk -> C:\Documents and Settings\chris\Desktop\Company of Heroes.lnk -> [2010/02/20 20:50:09 | 000,001,618 | ---- | C | MD5 = E5DE69C361F85D56338EF505BDF719F9] ()
Call of Duty Modern Warfare 2 - Multiplayer.lnk -> C:\Documents and Settings\chris\Desktop\Call of Duty Modern Warfare 2 - Multiplayer.lnk -> [2010/02/20 20:48:36 | 000,001,620 | ---- | C | MD5 = 60101F98EB961221228E2F285F1DF370] ()
Call of Duty Modern Warfare 2.lnk -> C:\Documents and Settings\chris\Desktop\Call of Duty Modern Warfare 2.lnk -> [2010/02/20 20:28:43 | 000,001,620 | ---- | C | MD5 = C41053DFA6AB35250049E9B5B571B8EA] ()
Ventrilo.lnk -> C:\Documents and Settings\All Users\Desktop\Ventrilo.lnk -> [2010/02/20 20:25:13 | 000,000,630 | ---- | C | MD5 = 394A6C05329CD3EED0BC8DD9B408C22D] ()
{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini -> C:\WINDOWS\{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini -> [2010/02/20 20:25:10 | 000,000,262 | ---- | C | MD5 = 8F0F15233F1384BF813D4EB3597B14D4] ()
GDIPFONTCACHEV1.DAT -> C:\Documents and Settings\chris\Local Settings\Application Data\GDIPFONTCACHEV1.DAT -> [2010/02/20 14:53:44 | 000,012,328 | ---- | C | MD5 = 8890C64BE218D2B796503639BEFAFAD6] ()
Msft_Kernel_LMouFilt_01005.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_LMouFilt_01005.Wdf -> [2010/02/20 14:52:21 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Msft_Kernel_LHidFilt_01005.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_LHidFilt_01005.Wdf -> [2010/02/20 14:52:21 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Msft_Kernel_LUsbFilt_01005.Wdf -> C:\WINDOWS\System32\drivers\Msft_Kernel_LUsbFilt_01005.Wdf -> [2010/02/20 14:52:10 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
MsftWdf_Kernel_01005_Coinstaller_Critic al.Wdf -> C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf -> [2010/02/20 14:52:09 | 000,000,000 | -H-- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
Logitech Mouse and Keyboard Settings.lnk -> C:\Documents and Settings\All Users\Desktop\Logitech Mouse and Keyboard Settings.lnk -> [2010/02/20 14:51:22 | 000,001,681 | ---- | C | MD5 = D8C059EBDDBBCA517AD68DBCF7CA44A4] ()
Half-Life 2.lnk -> C:\Documents and Settings\chris\Desktop\Half-Life 2.lnk -> [2010/02/20 09:55:07 | 000,001,616 | ---- | C | MD5 = 5418E9D66413A7CCAC6EE3BF5F12F1B8] ()
Steam.lnk -> C:\Documents and Settings\chris\Desktop\Steam.lnk -> [2010/02/20 09:44:45 | 000,000,481 | ---- | C | MD5 = AA68EB1EB11E87C199C976BAFD1F0CDE] ()
WGASetup.job -> C:\WINDOWS\tasks\WGASetup.job -> [2010/02/20 09:33:01 | 000,000,258 | ---- | C | MD5 = AAF582866511D6F1FFE18496053E6B59] ()
nvinfo.pb -> C:\WINDOWS\System32\nvinfo.pb -> [2010/02/20 09:00:29 | 000,009,047 | ---- | C | MD5 = 0C8612F6A51D0D02214F8EDC6361DA9B] ()
nvdata.bin -> C:\WINDOWS\System32\nvdata.bin -> [2010/02/20 09:00:27 | 002,283,526 | ---- | C | MD5 = 82859FB17131AAB8C67BEA69FDD7FD44] ()
wpa.bak -> C:\WINDOWS\System32\wpa.bak -> [2010/02/20 08:50:56 | 000,013,646 | ---- | C | MD5 = 8849047F273579A195245A648C277625] ()
HD ADeck.lnk -> C:\Documents and Settings\All Users\Desktop\HD ADeck.lnk -> [2010/02/20 08:43:39 | 000,000,849 | ---- | C | MD5 = 7D3D5DFAE65E7E7C2DD660DC12BDEEAF] ()
mskssrv.sys -> C:\WINDOWS\System32\dllcache\mskssrv.sys -> [2010/02/20 08:43:27 | 000,007,552 | ---- | C | MD5 = 56BF0E725F6DD67D4BAEA350F6493C68] ()
IconCache.db -> C:\Documents and Settings\chris\Local Settings\Application Data\IconCache.db -> [2010/02/20 08:42:18 | 006,395,978 | -H-- | C | MD5 = FDC870CD84E3F8DE489A103A160316FE] ()
Ascd_log.ini -> C:\WINDOWS\Ascd_log.ini -> [2010/02/20 08:38:24 | 000,033,529 | ---- | C | MD5 = 6C0A24BF84E9C9AA216144288904F8CE] ()
ASACPI.sys -> C:\WINDOWS\System32\drivers\ASACPI.sys -> [2010/02/20 08:37:46 | 000,005,810 | R--- | C | MD5 = D48659BB24C48345D926ECB45C1EBDF5] ()
Ascd_tmp.ini -> C:\WINDOWS\Ascd_tmp.ini -> [2010/02/20 08:37:39 | 000,033,147 | ---- | C | MD5 = C7C3D4C835DE742D34E5C88DF073151A] ()
ASUSHWIO.SYS -> C:\WINDOWS\System32\drivers\ASUSHWIO.SYS -> [2010/02/20 08:37:39 | 000,010,296 | ---- | C | MD5 = 19166026A93206F9C6A8CD3A1F010AE4] ()
ntuser.dat.LOG -> C:\Documents and Settings\chris\ntuser.dat.LOG -> [2010/02/20 08:33:22 | 000,001,024 | -H-- | C | Unable to obtain MD5] ()
ntuser.ini -> C:\Documents and Settings\chris\ntuser.ini -> [2010/02/20 08:33:22 | 000,000,178 | -HS- | C | MD5 = CBDA6984D2ECC537AEF07205AE001013] ()
NTUSER.DAT -> C:\Documents and Settings\chris\NTUSER.DAT -> [2010/02/20 08:33:21 | 002,359,296 | -H-- | C | Unable to obtain MD5] ()
desktop.ini -> C:\Documents and Settings\chris\Application Data\desktop.ini -> [2010/02/20 08:33:21 | 000,000,062 | -HS- | C | MD5 = 88CF0FF92A4A9FA7BD9B7513B2E9E22B] ()
SA.DAT -> C:\WINDOWS\tasks\SA.DAT -> [2010/02/20 08:32:24 | 000,000,006 | -H-- | C | MD5 = F1A6CD5ADAAB953A6764EA364E17BFB8] ()
REGLOCS.OLD -> C:\WINDOWS\REGLOCS.OLD -> [2010/02/20 08:32:13 | 000,008,192 | ---- | C | MD5 = 84075B1C7D27ADC544D86A34FA107398] ()
bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2010/02/20 08:31:33 | 000,002,048 | --S- | C | MD5 = 6A2CB42966136854F4464516FBB4AE72] ()
xjis.nls -> C:\WINDOWS\System32\dllcache\xjis.nls -> [2010/02/20 08:31:25 | 000,028,288 | ---- | C | MD5 = 09E420F90A329BDA68477FA4AF43CB28] ()
prcp.nls -> C:\WINDOWS\System32\dllcache\prcp.nls -> [2010/02/20 08:31:08 | 000,083,748 | ---- | C | MD5 = 901863C68E6523336CAC602FE9320ABC] ()
prc.nls -> C:\WINDOWS\System32\dllcache\prc.nls -> [2010/02/20 08:31:08 | 000,083,748 | ---- | C | MD5 = 54144F43EDF5AA8F504A30E7C1D1A7B5] ()
pintlcsa.dll -> C:\WINDOWS\System32\dllcache\pintlcsa.dll -> [2010/02/20 08:31:07 | 000,175,104 | ---- | C | MD5 = D2BD52BF0AF4EC318234FFA9164B4A7B] ()
ksc.nls -> C:\WINDOWS\System32\dllcache\ksc.nls -> [2010/02/20 08:30:57 | 000,047,066 | ---- | C | MD5 = DB4F8D50EDA4C0C51BDD0753880FA20B] ()
korwbrkr.lex -> C:\WINDOWS\System32\dllcache\korwbrkr.lex -> [2010/02/20 08:30:56 | 001,158,818 | ---- | C | MD5 = 55DCED5F0946C03E70B255A3AFC932B1] ()
imscinst.exe -> C:\WINDOWS\System32\dllcache\imscinst.exe -> [2010/02/20 08:30:52 | 000,059,392 | ---- | C | MD5 = 1B17E09C1223F6D17336D2DD7A1AF4F4] ()
imjpinst.exe -> C:\WINDOWS\System32\dllcache\imjpinst.exe -> [2010/02/20 08:30:51 | 000,196,665 | ---- | C | MD5 = B36BBA8BAF85B9227832ECB243A689B4] ()
imekr.lex -> C:\WINDOWS\System32\dllcache\imekr.lex -> [2010/02/20 08:30:50 | 000,134,339 | ---- | C | MD5 = E19D74111E346A0E3899854F6CE4F7CE] ()
hwxjpn.dll -> C:\WINDOWS\System32\dllcache\hwxjpn.dll -> [2010/02/20 08:30:40 | 013,463,552 | ---- | C | MD5 = 208B369D5E40D6D73C81252B0D73411E] ()
hanja.lex -> C:\WINDOWS\System32\dllcache\hanja.lex -> [2010/02/20 08:30:35 | 000,108,827 | ---- | C | MD5 = 47897066A2364626019E3C10032E7DAB] ()
fpencode.dll -> C:\WINDOWS\System32\dllcache\fpencode.dll -> [2010/02/20 08:30:32 | 000,094,208 | ---- | C | MD5 = 54639E01CF15A9293976EE22DE552F1B] ()
chtskf.dll -> C:\WINDOWS\System32\dllcache\chtskf.dll -> [2010/02/20 08:30:25 | 000,173,568 | ---- | C | MD5 = 3D2554F6E8984FA2C4647451C0432711] ()
c_20949.nls -> C:\WINDOWS\System32\dllcache\c_20949.nls -> [2010/02/20 08:30:22 | 000,177,698 | ---- | C | MD5 = 232094E602642181A5A508975665D11B] ()
c_864.nls -> C:\WINDOWS\System32\dllcache\c_864.nls -> [2010/02/20 08:30:22 | 000,066,594 | ---- | C | MD5 = C58563DF50115E935BC811FFBCE1FC89] ()
c_720.nls -> C:\WINDOWS\System32\dllcache\c_720.nls -> [2010/02/20 08:30:22 | 000,066,594 | ---- | C | MD5 = C050215D8D21DF5658E94187973FB89C] ()
c_862.nls -> C:\WINDOWS\System32\dllcache\c_862.nls -> [2010/02/20 08:30:22 | 000,066,594 | ---- | C | MD5 = A99203A3397A9DB352C5D8DFBDA230A8] ()
c_858.nls -> C:\WINDOWS\System32\dllcache\c_858.nls -> [2010/02/20 08:30:22 | 000,066,594 | ---- | C | MD5 = 42518F84AA761C84B4F5F366C6E424F1] ()
c_21025.nls -> C:\WINDOWS\System32\dllcache\c_21025.nls -> [2010/02/20 08:30:22 | 000,066,082 | ---- | C | MD5 = 85D74656F26B33F21B5129252B1578D0] ()
c_708.nls -> C:\WINDOWS\System32\dllcache\c_708.nls -> [2010/02/20 08:30:22 | 000,066,082 | ---- | C | MD5 = 77F127766D758EB2C6451E221A0C7F7D] ()
c_28596.nls -> C:\WINDOWS\System32\dllcache\c_28596.nls -> [2010/02/20 08:30:22 | 000,066,082 | ---- | C | MD5 = 4D4C7CED88E5621F21A4911A44CADACC] ()
c_870.nls -> C:\WINDOWS\System32\dllcache\c_870.nls -> [2010/02/20 08:30:22 | 000,066,082 | ---- | C | MD5 = 48841546AC3B8698C93991E99851F0CF] ()
c_21027.nls -> C:\WINDOWS\System32\dllcache\c_21027.nls -> [2010/02/20 08:30:22 | 000,066,082 | ---- | C | MD5 = 07CD5D103AEB4AD2B624EE1ADBFAA456] ()
c_20932.nls -> C:\WINDOWS\System32\dllcache\c_20932.nls -> [2010/02/20 08:30:21 | 000,180,770 | ---- | C | MD5 = 3FEF4EEFC8827A03B19124575B17205E] ()
c_20936.nls -> C:\WINDOWS\System32\dllcache\c_20936.nls -> [2010/02/20 08:30:21 | 000,173,602 | ---- | C | MD5 = 32919D0DA9A834E8197203C4858ABCF6] ()
c_20107.nls -> C:\WINDOWS\System32\dllcache\c_20107.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = EB7AD61171B280F1CA90CF3AC0F43717] ()
c_20924.nls -> C:\WINDOWS\System32\dllcache\c_20924.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = E4642396D2098F65C7E88C0AC1EE7379] ()
c_20423.nls -> C:\WINDOWS\System32\dllcache\c_20423.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = E3AAE11859C598FB936017816567FD96] ()
c_20284.nls -> C:\WINDOWS\System32\dllcache\c_20284.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = E37E1766C1D7C21C5EFAD0F20D923039] ()
c_20833.nls -> C:\WINDOWS\System32\dllcache\c_20833.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = E27DCCEEFABD04FC7D81BE65B233C653] ()
c_20108.nls -> C:\WINDOWS\System32\dllcache\c_20108.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = C8FBDF3805D2F229DE3CA2EF5A248CCC] ()
c_20297.nls -> C:\WINDOWS\System32\dllcache\c_20297.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = C3581190325F812CB7F5F928E722F132] ()
c_20285.nls -> C:\WINDOWS\System32\dllcache\c_20285.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = BCD8AC4CE06E227A2FBA81862B5F0D42] ()
c_20269.nls -> C:\WINDOWS\System32\dllcache\c_20269.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = BA660D994876755C9E90871B919BB5EC] ()
c_20290.nls -> C:\WINDOWS\System32\dllcache\c_20290.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = B2B3B6A63D9A1837673A2B2C44455A20] ()
c_20278.nls -> C:\WINDOWS\System32\dllcache\c_20278.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = AF4F8AEC071515D6FC6E8203A0DBF655] ()
c_20838.nls -> C:\WINDOWS\System32\dllcache\c_20838.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = A124CAA7470CCF0354A57AB30808293F] ()
c_20277.nls -> C:\WINDOWS\System32\dllcache\c_20277.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 947B06BC793BFF9A4808C8CF57B0E273] ()
c_20273.nls -> C:\WINDOWS\System32\dllcache\c_20273.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 947813F75A56A20EF65DC9E479EBEA4D] ()
c_20880.nls -> C:\WINDOWS\System32\dllcache\c_20880.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 8464E9CAB0DA3F209320D782631DD5A2] ()
c_20871.nls -> C:\WINDOWS\System32\dllcache\c_20871.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 61FBE3736279973CBA71EE0CDEAAAA6C] ()
c_20420.nls -> C:\WINDOWS\System32\dllcache\c_20420.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 4FEA99284FA34D8E69C8D865D9426D2B] ()
c_20424.nls -> C:\WINDOWS\System32\dllcache\c_20424.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 3A0FA5F25C5FF909766347627B446511] ()
c_20280.nls -> C:\WINDOWS\System32\dllcache\c_20280.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 2AB1DF9DFBD49E343AF5D5FA7D17024E] ()
c_20106.nls -> C:\WINDOWS\System32\dllcache\c_20106.nls -> [2010/02/20 08:30:21 | 000,066,082 | ---- | C | MD5 = 00E11B5E8C252190DEC893FD84D3B06D] ()
c_1361.nls -> C:\WINDOWS\System32\dllcache\c_1361.nls -> [2010/02/20 08:30:20 | 000,189,986 | ---- | C | MD5 = A337491EA01F4BE0779A981CB7ACB999] ()
c_20005.nls -> C:\WINDOWS\System32\dllcache\c_20005.nls -> [2010/02/20 08:30:20 | 000,187,938 | ---- | C | MD5 = 9C78D8BC06315FE97936167F5063F924] ()
c_20001.nls -> C:\WINDOWS\System32\dllcache\c_20001.nls -> [2010/02/20 08:30:20 | 000,186,402 | ---- | C | MD5 = 48699E0B2F0B56E132D8200BA23E7176] ()
c_20003.nls -> C:\WINDOWS\System32\dllcache\c_20003.nls -> [2010/02/20 08:30:20 | 000,185,378 | ---- | C | MD5 = 971E382CB790C07536F380C172848C92] ()
c_20000.nls -> C:\WINDOWS\System32\dllcache\c_20000.nls -> [2010/02/20 08:30:20 | 000,180,258 | ---- | C | MD5 = AAB0740BCBDCE107E0BABEE466905EB4] ()
c_20004.nls -> C:\WINDOWS\System32\dllcache\c_20004.nls -> [2010/02/20 08:30:20 | 000,180,258 | ---- | C | MD5 = A47DBDBAEA690F4713185EBB5790BBFF] ()
c_20002.nls -> C:\WINDOWS\System32\dllcache\c_20002.nls -> [2010/02/20 08:30:20 | 000,173,602 | ---- | C | MD5 = A5D79E78E4412AC3C79DED42CD95C3EA] ()
c_1144.nls -> C:\WINDOWS\System32\dllcache\c_1144.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = FD2D28063FB4FD12BC6EF18A6D10769E] ()
c_1146.nls -> C:\WINDOWS\System32\dllcache\c_1146.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = D288777605A2F4E12A9C6E360CE44987] ()
c_1147.nls -> C:\WINDOWS\System32\dllcache\c_1147.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 7623492F4FCB5E317578F897A7476E16] ()
c_1142.nls -> C:\WINDOWS\System32\dllcache\c_1142.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 69316F1B309BA5AC371EFD09267BD670] ()
c_1149.nls -> C:\WINDOWS\System32\dllcache\c_1149.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 484A1C398A16DD464E8468046526985C] ()
c_1143.nls -> C:\WINDOWS\System32\dllcache\c_1143.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 3EA8E21340AF59C80CB35A6A53FE52D7] ()
c_1148.nls -> C:\WINDOWS\System32\dllcache\c_1148.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 32CA3320D8C8F37770764BDFF1C2FE15] ()
c_20105.nls -> C:\WINDOWS\System32\dllcache\c_20105.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 1F55C295A71290992C95CF1F41CDB0E4] ()
c_1145.nls -> C:\WINDOWS\System32\dllcache\c_1145.nls -> [2010/02/20 08:30:20 | 000,066,082 | ---- | C | MD5 = 123B711FF0BF69B4462C279D342380AF] ()
c_10002.nls -> C:\WINDOWS\System32\dllcache\c_10002.nls -> [2010/02/20 08:30:19 | 000,195,618 | ---- | C | MD5 = 05C0B7F8FA403E6DA75671685A58A940] ()
c_10003.nls -> C:\WINDOWS\System32\dllcache\c_10003.nls -> [2010/02/20 08:30:19 | 000,177,698 | ---- | C | MD5 = 1855E6398A2E937E47809FD8B83647E4] ()
c_10008.nls -> C:\WINDOWS\System32\dllcache\c_10008.nls -> [2010/02/20 08:30:19 | 000,173,602 | ---- | C | MD5 = 23C1E8F026FB81824388E8EC457CF75E] ()
c_10001.nls -> C:\WINDOWS\System32\dllcache\c_10001.nls -> [2010/02/20 08:30:19 | 000,162,850 | ---- | C | MD5 = 157A2706E78D7B581642F6F787EC37E5] ()
c_10021.nls -> C:\WINDOWS\System32\dllcache\c_10021.nls -> [2010/02/20 08:30:19 | 000,066,082 | ---- | C | MD5 = F3C139AD492C4F73353057442E6995CE] ()
c_1141.nls -> C:\WINDOWS\System32\dllcache\c_1141.nls -> [2010/02/20 08:30:19 | 000,066,082 | ---- | C | MD5 = F0C0509A9A633332B99F009D1DAA7612] ()
c_1047.nls -> C:\WINDOWS\System32\dllcache\c_1047.nls -> [2010/02/20 08:30:19 | 000,066,082 | ---- | C | MD5 = 7CB90B3604A45355218E6A20BD7B7A0B] ()
c_10005.nls -> C:\WINDOWS\System32\dllcache\c_10005.nls -> [2010/02/20 08:30:19 | 000,066,082 | ---- | C | MD5 = 72233F1A1D788A84D4687A258CC97CBF] ()
c_1140.nls -> C:\WINDOWS\System32\dllcache\c_1140.nls -> [2010/02/20 08:30:19 | 000,066,082 | ---- | C | MD5 = 27E1CBE7F0DF21CA0892D16FD1961F29] ()
c_10004.nls -> C:\WINDOWS\System32\dllcache\c_10004.nls -> [2010/02/20 08:30:19 | 000,066,082 | ---- | C | MD5 = 1DBBCC1B712C2674BDF29A05A5DD366E] ()
bopomofo.nls -> C:\WINDOWS\System32\dllcache\bopomofo.nls -> [2010/02/20 08:30:18 | 000,082,172 | ---- | C | MD5 = EE1F60F8774D74BED8B13498F3FE737A] ()
big5.nls -> C:\WINDOWS\System32\dllcache\big5.nls -> [2010/02/20 08:30:18 | 000,066,728 | ---- | C | MD5 = C01B81BB10AD14DBC5C4ECD350638096] ()
CONFIG.NT -> C:\WINDOWS\System32\CONFIG.NT -> [2010/02/20 08:29:47 | 000,002,626 | ---- | C | MD5 = 9868202B27D747DD709F5A59DD680C50] ()
MSDOS.SYS -> C:\MSDOS.SYS -> [2010/02/20 08:29:47 | 000,000,000 | RHS- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
IO.SYS -> C:\IO.SYS -> [2010/02/20 08:29:47 | 000,000,000 | RHS- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
CONFIG.SYS -> C:\CONFIG.SYS -> [2010/02/20 08:29:47 | 000,000,000 | ---- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
AUTOEXEC.BAT -> C:\AUTOEXEC.BAT -> [2010/02/20 08:29:47 | 000,000,000 | ---- | C | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
WMSysPr9.prx -> C:\WINDOWS\WMSysPr9.prx -> [2010/02/20 08:29:44 | 000,316,640 | ---- | C | MD5 = DC17DD0189B0C36D863B4DD0A036C10F] ()
nscompat.tlb -> C:\WINDOWS\System32\nscompat.tlb -> [2010/02/20 08:29:44 | 000,023,392 | ---- | C | MD5 = A32B14BE5EDAE794FCE1A9E970827509] ()
amcompat.tlb -> C:\WINDOWS\System32\amcompat.tlb -> [2010/02/20 08:29:44 | 000,016,832 | ---- | C | MD5 = 6D6F4B1886E91EB37ABCCAD19C561EE0] ()
WindowsLogon.manifest -> C:\WINDOWS\System32\WindowsLogon.manifest -> [2010/02/20 08:29:01 | 000,000,488 | RH-- | C | MD5 = 5D76C3FB736514E1D7C88791E7322784] ()
logonui.exe.manifest -> C:\WINDOWS\System32\logonui.exe.manifest -> [2010/02/20 08:29:01 | 000,000,488 | RH-- | C | MD5 = 5D76C3FB736514E1D7C88791E7322784] ()
wuaucpl.cpl.manifest -> C:\WINDOWS\System32\wuaucpl.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | C | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
WindowsShell.Manifest -> C:\WINDOWS\WindowsShell.Manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | C | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
sapi.cpl.manifest -> C:\WINDOWS\System32\sapi.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | C | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
nwc.cpl.manifest -> C:\WINDOWS\System32\nwc.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | C | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
ncpa.cpl.manifest -> C:\WINDOWS\System32\ncpa.cpl.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | C | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
cdplayer.exe.manifest -> C:\WINDOWS\System32\cdplayer.exe.manifest -> [2010/02/20 08:28:58 | 000,000,749 | RH-- | C | MD5 = 5A5CFF37F1BD0F86B9BDAAD7A9445882] ()
nls302en.lex -> C:\WINDOWS\System32\dllcache\nls302en.lex -> [2010/02/20 08:28:45 | 004,399,505 | ---- | C | MD5 = 0D1E74EBC2FA511439944BE633A3D362] ()
winnt256.bmp -> C:\WINDOWS\winnt256.bmp -> [2010/02/20 08:28:29 | 000,048,680 | -HS- | C | MD5 = 2F3CDC1D898FD25B2547F5BFEB01FD0D] ()
winnt.bmp -> C:\WINDOWS\winnt.bmp -> [2010/02/20 08:28:29 | 000,048,680 | -HS- | C | MD5 = 2F3CDC1D898FD25B2547F5BFEB01FD0D] ()
srframe.mmf -> C:\WINDOWS\System32\dllcache\srframe.mmf -> [2010/02/20 08:28:22 | 000,000,984 | ---- | C | MD5 = E9D9E61584DFD1FA2857BC242A68E4AC] ()
msinfo.dll -> C:\WINDOWS\System32\dllcache\msinfo.dll -> [2010/02/20 08:27:39 | 000,376,832 | ---- | C | MD5 = 2278E5238F7F58C4205CBAE2C4BEBA77] ()
emptyregdb.dat -> C:\WINDOWS\System32\emptyregdb.dat -> [2010/02/20 08:27:03 | 000,021,640 | ---- | C | MD5 = 21798E21430D96F7FBEFD60AEC775322] ()
Prairie Wind.bmp -> C:\WINDOWS\Prairie Wind.bmp -> [2010/02/20 08:26:20 | 000,065,954 | ---- | C | MD5 = 280920B6773C74C3649A934257112BE1] ()
Santa Fe Stucco.bmp -> C:\WINDOWS\Santa Fe Stucco.bmp -> [2010/02/20 08:26:20 | 000,065,832 | ---- | C | MD5 = EB3BFC14E41FBAA41B4FD4489AA82D39] ()
River Sumida.bmp -> C:\WINDOWS\River Sumida.bmp -> [2010/02/20 08:26:20 | 000,026,680 | ---- | C | MD5 = 5B4AC407E566076BB726BA91E067D313] ()
Greenstone.bmp -> C:\WINDOWS\Greenstone.bmp -> [2010/02/20 08:26:20 | 000,026,582 | ---- | C | MD5 = 1AC5E83598D4F2143B59A2D893C3279A] ()
Rhododendron.bmp -> C:\WINDOWS\Rhododendron.bmp -> [2010/02/20 08:26:20 | 000,017,362 | ---- | C | MD5 = 927A66BD587E31CB12D3AB25381658DC] ()
Gone Fishing.bmp -> C:\WINDOWS\Gone Fishing.bmp -> [2010/02/20 08:26:20 | 000,017,336 | ---- | C | MD5 = 203EF178BF8B0A8EC34E27E4DEDB6349] ()
Zapotec.bmp -> C:\WINDOWS\Zapotec.bmp -> [2010/02/20 08:26:20 | 000,009,522 | ---- | C | MD5 = 5290EA6951F4724259F423B12C8E1393] ()
subrange.uce -> C:\WINDOWS\System32\subrange.uce -> [2010/02/20 08:26:19 | 000,093,702 | ---- | C | MD5 = 30F5568679A54042F99CA9EC1102EBCD] ()
Soap Bubbles.bmp -> C:\WINDOWS\Soap Bubbles.bmp -> [2010/02/20 08:26:19 | 000,065,978 | ---- | C | MD5 = 39F43DBCE366B2561DF073B4C0839299] ()
Coffee Bean.bmp -> C:\WINDOWS\Coffee Bean.bmp -> [2010/02/20 08:26:19 | 000,017,062 | ---- | C | MD5 = 73D70ED3EC3BBFD8FD35DF431C38F374] ()
shiftjis.uce -> C:\WINDOWS\System32\shiftjis.uce -> [2010/02/20 08:26:19 | 000,016,740 | ---- | C | MD5 = 8CA32E9D986FA76F60EFBCFCD9D80A58] ()
FeatherTexture.bmp -> C:\WINDOWS\FeatherTexture.bmp -> [2010/02/20 08:26:19 | 000,016,730 | ---- | C | MD5 = 3A8B85AB7B415BF3F8AFE285DFE0CE29] ()
Blue Lace 16.bmp -> C:\WINDOWS\Blue Lace 16.bmp -> [2010/02/20 08:26:19 | 000,001,272 | ---- | C | MD5 = DAC71A10A6A71CB6E3F427AE3283734B] ()
ideograf.uce -> C:\WINDOWS\System32\ideograf.uce -> [2010/02/20 08:26:18 | 000,060,458 | ---- | C | MD5 = 038F6AD6CEE43585D814CDBC7CDFD3EC] ()
gb2312.uce -> C:\WINDOWS\System32\gb2312.uce -> [2010/02/20 08:26:18 | 000,024,006 | ---- | C | MD5 = 4FDED87068052EEB9B72A97FDBC141DB] ()
bopomofo.uce -> C:\WINDOWS\System32\bopomofo.uce -> [2010/02/20 08:26:18 | 000,022,984 | ---- | C | MD5 = 405E1EF8E3C88E9BCD2853382BB12430] ()
korean.uce -> C:\WINDOWS\System32\korean.uce -> [2010/02/20 08:26:18 | 000,012,876 | ---- | C | MD5 = 7A7A04370A6030B9B0E8178DAD4A6E41] ()
kanji_2.uce -> C:\WINDOWS\System32\kanji_2.uce -> [2010/02/20 08:26:18 | 000,008,484 | ---- | C | MD5 = 529BBD63519BBD654EF328454019693F] ()
kanji_1.uce -> C:\WINDOWS\System32\kanji_1.uce -> [2010/02/20 08:26:18 | 000,006,948 | ---- | C | MD5 = 7C0C25F4BA1084C4ABBEEA2C74194C5F] ()
tslabels.h -> C:\WINDOWS\System32\tslabels.h -> [2010/02/20 08:26:16 | 000,003,286 | ---- | C | MD5 = 4A547D74B435E78418BE06406250C1D3] ()
usrlogon.cmd -> C:\WINDOWS\System32\usrlogon.cmd -> [2010/02/20 08:26:16 | 000,001,161 | ---- | C | MD5 = F463BC45CD34ADE54F801746B6D322B1] ()
msdtcprf.h -> C:\WINDOWS\System32\msdtcprf.h -> [2010/02/20 08:26:15 | 000,000,768 | ---- | C | MD5 = CDD932EDCB756FB5F7CE5E2F090BA838] ()
wmimgmt.msc -> C:\WINDOWS\System32\wmimgmt.msc -> [2010/02/20 08:26:09 | 000,063,488 | ---- | C | MD5 = 2CE7B1EEB99C14032C0E2201B004F80E] ()
pid.PNF -> C:\WINDOWS\System32\pid.PNF -> [2010/02/20 01:18:18 | 000,004,444 | ---- | C | MD5 = 2029B25447F0C18AF617342C2D746EC2] ()
sam.spd -> C:\WINDOWS\System32\dllcache\sam.spd -> [2010/02/20 01:10:03 | 001,685,606 | ---- | C | MD5 = 2D30A41DC6B1022DCE722CADE1292FBA] ()
sam.sdf -> C:\WINDOWS\System32\dllcache\sam.sdf -> [2010/02/20 01:10:03 | 000,000,888 | ---- | C | MD5 = 6B6EBDC1816B4507E05FBC7315978DE7] ()
ltts1033.lxa -> C:\WINDOWS\System32\dllcache\ltts1033.lxa -> [2010/02/20 01:10:02 | 000,643,717 | ---- | C | MD5 = 30AF3137AFD74B97EA88027D9C84F036] ()
r1033tts.lxa -> C:\WINDOWS\System32\dllcache\r1033tts.lxa -> [2010/02/20 01:10:02 | 000,605,050 | ---- | C | MD5 = 86767812C0E0C882191A0ED97A1DD3DA] ()
c_28603.nls -> C:\WINDOWS\System32\dllcache\c_28603.nls -> [2010/02/20 01:10:00 | 000,066,082 | ---- | C | MD5 = 35448F3A71EBBECF8E997FAD3A99327D] ()
c_28603.nls -> C:\WINDOWS\System32\c_28603.nls -> [2010/02/20 01:10:00 | 000,066,082 | ---- | C | MD5 = 35448F3A71EBBECF8E997FAD3A99327D] ()
c_857.nls -> C:\WINDOWS\System32\dllcache\c_857.nls -> [2010/02/20 01:09:58 | 000,066,594 | ---- | C | MD5 = A8764750B22B528D85A691A52CB21856] ()
c_857.nls -> C:\WINDOWS\System32\c_857.nls -> [2010/02/20 01:09:58 | 000,066,594 | ---- | C | MD5 = A8764750B22B528D85A691A52CB21856] ()
c_10081.nls -> C:\WINDOWS\System32\dllcache\c_10081.nls -> [2010/02/20 01:09:58 | 000,066,082 | ---- | C | MD5 = EFFDFF60A38CF648811BBCDD722ECF5E] ()
c_10081.nls -> C:\WINDOWS\System32\c_10081.nls -> [2010/02/20 01:09:58 | 000,066,082 | ---- | C | MD5 = EFFDFF60A38CF648811BBCDD722ECF5E] ()
c_28599.nls -> C:\WINDOWS\System32\dllcache\c_28599.nls -> [2010/02/20 01:09:58 | 000,066,082 | ---- | C | MD5 = C37A21EE1ADFDC13FC707D97073148ED] ()
c_28599.nls -> C:\WINDOWS\System32\c_28599.nls -> [2010/02/20 01:09:58 | 000,066,082 | ---- | C | MD5 = C37A21EE1ADFDC13FC707D97073148ED] ()
c_28595.nls -> C:\WINDOWS\System32\dllcache\c_28595.nls -> [2010/02/20 01:09:55 | 000,066,082 | ---- | C | MD5 = E22D1B9AC7854C0A654E4C4232074E49] ()
C_28595.NLS -> C:\WINDOWS\System32\C_28595.NLS -> [2010/02/20 01:09:55 | 000,066,082 | ---- | C | MD5 = E22D1B9AC7854C0A654E4C4232074E49] ()
c_10007.nls -> C:\WINDOWS\System32\dllcache\c_10007.nls -> [2010/02/20 01:09:55 | 000,066,082 | ---- | C | MD5 = AF4A866226BD04ACF06135088D75BB63] ()
c_10007.nls -> C:\WINDOWS\System32\c_10007.nls -> [2010/02/20 01:09:55 | 000,066,082 | ---- | C | MD5 = AF4A866226BD04ACF06135088D75BB63] ()
c_10017.nls -> C:\WINDOWS\System32\dllcache\c_10017.nls -> [2010/02/20 01:09:55 | 000,066,082 | ---- | C | MD5 = 314E85390BEBDAE5D1E11DB2D8CBC6E9] ()
c_10017.nls -> C:\WINDOWS\System32\c_10017.nls -> [2010/02/20 01:09:55 | 000,066,082 | ---- | C | MD5 = 314E85390BEBDAE5D1E11DB2D8CBC6E9] ()
c_737.nls -> C:\WINDOWS\System32\dllcache\c_737.nls -> [2010/02/20 01:09:53 | 000,066,594 | ---- | C | MD5 = BAC7072B365F9648CA318154BA7E03EC] ()
c_737.nls -> C:\WINDOWS\System32\c_737.nls -> [2010/02/20 01:09:53 | 000,066,594 | ---- | C | MD5 = BAC7072B365F9648CA318154BA7E03EC] ()
c_869.nls -> C:\WINDOWS\System32\dllcache\c_869.nls -> [2010/02/20 01:09:53 | 000,066,594 | ---- | C | MD5 = 780C444EB16B65E6DE96F794A732DA12] ()
c_869.nls -> C:\WINDOWS\System32\c_869.nls -> [2010/02/20 01:09:53 | 000,066,594 | ---- | C | MD5 = 780C444EB16B65E6DE96F794A732DA12] ()
c_28597.nls -> C:\WINDOWS\System32\dllcache\c_28597.nls -> [2010/02/20 01:09:53 | 000,066,082 | ---- | C | MD5 = B537ACFAB9E70F0EF48DB696A08ADC81] ()
C_28597.NLS -> C:\WINDOWS\System32\C_28597.NLS -> [2010/02/20 01:09:53 | 000,066,082 | ---- | C | MD5 = B537ACFAB9E70F0EF48DB696A08ADC81] ()
c_875.nls -> C:\WINDOWS\System32\dllcache\c_875.nls -> [2010/02/20 01:09:53 | 000,066,082 | ---- | C | MD5 = 8BE0D77A873730B4EB1DAB7C6622CD46] ()
c_875.nls -> C:\WINDOWS\System32\c_875.nls -> [2010/02/20 01:09:53 | 000,066,082 | ---- | C | MD5 = 8BE0D77A873730B4EB1DAB7C6622CD46] ()
c_10006.nls -> C:\WINDOWS\System32\dllcache\c_10006.nls -> [2010/02/20 01:09:53 | 000,066,082 | ---- | C | MD5 = 0A206B5CACD3CA70D2044DA691304765] ()
c_10006.nls -> C:\WINDOWS\System32\c_10006.nls -> [2010/02/20 01:09:53 | 000,066,082 | ---- | C | MD5 = 0A206B5CACD3CA70D2044DA691304765] ()
c_28594.nls -> C:\WINDOWS\System32\dllcache\c_28594.nls -> [2010/02/20 01:09:52 | 000,066,082 | ---- | C | MD5 = 5D038EEABA8EA438F6B5ABD5E91BC851] ()
C_28594.NLS -> C:\WINDOWS\System32\C_28594.NLS -> [2010/02/20 01:09:52 | 000,066,082 | ---- | C | MD5 = 5D038EEABA8EA438F6B5ABD5E91BC851] ()
c_866.nls -> C:\WINDOWS\System32\dllcache\c_866.nls -> [2010/02/20 01:09:51 | 000,066,594 | ---- | C | MD5 = 5CD475CA7B87844DE1E0483B536F9AAE] ()
c_866.nls -> C:\WINDOWS\System32\c_866.nls -> [2010/02/20 01:09:51 | 000,066,594 | ---- | C | MD5 = 5CD475CA7B87844DE1E0483B536F9AAE] ()
c_855.nls -> C:\WINDOWS\System32\dllcache\c_855.nls -> [2010/02/20 01:09:51 | 000,066,594 | ---- | C | MD5 = 3E969213F35127D83DAB48FF1283E8E4] ()
c_855.nls -> C:\WINDOWS\System32\c_855.nls -> [2010/02/20 01:09:51 | 000,066,594 | ---- | C | MD5 = 3E969213F35127D83DAB48FF1283E8E4] ()
c_852.nls -> C:\WINDOWS\System32\dllcache\c_852.nls -> [2010/02/20 01:09:49 | 000,066,594 | ---- | C | MD5 = 21E928C8E6ED8EEAB0D1AAEE82ACDD76] ()
c_852.nls -> C:\WINDOWS\System32\c_852.nls -> [2010/02/20 01:09:49 | 000,066,594 | ---- | C | MD5 = 21E928C8E6ED8EEAB0D1AAEE82ACDD76] ()
c_10029.nls -> C:\WINDOWS\System32\dllcache\c_10029.nls -> [2010/02/20 01:09:49 | 000,066,082 | ---- | C | MD5 = D2CA471D36A69D17F82D5C1B64FAEE39] ()
c_10029.nls -> C:\WINDOWS\System32\c_10029.nls -> [2010/02/20 01:09:49 | 000,066,082 | ---- | C | MD5 = D2CA471D36A69D17F82D5C1B64FAEE39] ()
c_10082.nls -> C:\WINDOWS\System32\dllcache\c_10082.nls -> [2010/02/20 01:09:49 | 000,066,082 | ---- | C | MD5 = 9CA501D2A8E6909C5B2E8C9274682BF1] ()
c_10082.nls -> C:\WINDOWS\System32\c_10082.nls -> [2010/02/20 01:09:49 | 000,066,082 | ---- | C | MD5 = 9CA501D2A8E6909C5B2E8C9274682BF1] ()
c_10010.nls -> C:\WINDOWS\System32\dllcache\c_10010.nls -> [2010/02/20 01:09:49 | 000,066,082 | ---- | C | MD5 = 6F8A509550FE8C92D07EE0143BF29BA1] ()
c_10010.nls -> C:\WINDOWS\System32\c_10010.nls -> [2010/02/20 01:09:49 | 000,066,082 | ---- | C | MD5 = 6F8A509550FE8C92D07EE0143BF29BA1] ()
c_20127.nls -> C:\WINDOWS\System32\dllcache\c_20127.nls -> [2010/02/20 01:09:48 | 000,066,082 | ---- | C | MD5 = 6CB26848BCDAA361B6EE21264FB362C3] ()
c_20127.nls -> C:\WINDOWS\System32\c_20127.nls -> [2010/02/20 01:09:48 | 000,066,082 | ---- | C | MD5 = 6CB26848BCDAA361B6EE21264FB362C3] ()
irenum.sys -> C:\WINDOWS\System32\dllcache\irenum.sys -> [2010/02/20 01:09:44 | 000,011,264 | ---- | C | MD5 = 820A81E0916BAC82838FD7E74AB29B15] ()
AUTOEXEC.NT -> C:\WINDOWS\System32\AUTOEXEC.NT -> [2010/02/20 01:09:44 | 000,001,688 | ---- | C | MD5 = 30475F091008E24550523515A023270D] ()
desktop.ini -> C:\Documents and Settings\All Users\Application Data\desktop.ini -> [2010/02/20 01:09:36 | 000,000,062 | -HS- | C | MD5 = 88CF0FF92A4A9FA7BD9B7513B2E9E22B] ()
netfx.cat -> C:\WINDOWS\System32\dllcache\netfx.cat -> [2010/02/20 01:07:58 | 000,144,484 | ---- | C | MD5 = C8E60B1D6D1039C68802E1356912D630] ()
mediactr.cat -> C:\WINDOWS\System32\dllcache\mediactr.cat -> [2010/02/20 01:07:58 | 000,034,747 | ---- | C | MD5 = 7BFBA0511017537D1A89F3E2503BA13C] ()
msn7.cat -> C:\WINDOWS\System32\dllcache\msn7.cat -> [2010/02/20 01:07:58 | 000,026,991 | ---- | C | MD5 = F83D2E286004B9D4920995BC3ED1DAFD] ()
msn9.cat -> C:\WINDOWS\System32\dllcache\msn9.cat -> [2010/02/20 01:07:58 | 000,014,433 | ---- | C | MD5 = CFAF02205DDD13FED8B7D602F1D636B7] ()
NT5.CAT -> C:\WINDOWS\System32\dllcache\NT5.CAT -> [2010/02/20 01:07:57 | 002,144,487 | ---- | C | MD5 = 8F1F4910DABF591FDE2B6436E8C3EF22] ()
SP3.CAT -> C:\WINDOWS\System32\dllcache\SP3.CAT -> [2010/02/20 01:07:57 | 001,296,669 | ---- | C | MD5 = 4D4FFA3DAD3C93478DD6B74A7FF09F36] ()
ntprint.cat -> C:\WINDOWS\System32\dllcache\ntprint.cat -> [2010/02/20 01:07:57 | 001,089,593 | ---- | C | MD5 = 94CDD0FDE092E5893EB68AC3C183DF6D] ()
NT5IIS.CAT -> C:\WINDOWS\System32\dllcache\NT5IIS.CAT -> [2010/02/20 01:07:57 | 000,797,189 | ---- | C | MD5 = 9EA7B8465536B500C7EC58CF39B9DC44] ()
NT5INF.CAT -> C:\WINDOWS\System32\dllcache\NT5INF.CAT -> [2010/02/20 01:07:57 | 000,522,220 | ---- | C | MD5 = 85A46CF0BF2A44D2E032F8A8663C6F00] ()
MAPIMIG.CAT -> C:\WINDOWS\System32\dllcache\MAPIMIG.CAT -> [2010/02/20 01:07:57 | 000,399,645 | ---- | C | MD5 = B58E8E30588CEA0D21BD33E4611FF178] ()
tabletpc.cat -> C:\WINDOWS\System32\dllcache\tabletpc.cat -> [2010/02/20 01:07:57 | 000,112,918 | ---- | C | MD5 = 3F5C09D698092E38DF2F7C7F18D3CE0C] ()
MW770.CAT -> C:\WINDOWS\System32\dllcache\MW770.CAT -> [2010/02/20 01:07:57 | 000,037,484 | ---- | C | MD5 = B89533BB6CA88986968F0B93080EAEB0] ()
FP4.CAT -> C:\WINDOWS\System32\dllcache\FP4.CAT -> [2010/02/20 01:07:57 | 000,034,063 | ---- | C | MD5 = 58EFF887AA3B29185F028D9F5E20AE27] ()
IMS.CAT -> C:\WINDOWS\System32\dllcache\IMS.CAT -> [2010/02/20 01:07:57 | 000,016,535 | ---- | C | MD5 = C88469E6A8796CD38BD931E18BFD6139] ()
HPCRDP.CAT -> C:\WINDOWS\System32\dllcache\HPCRDP.CAT -> [2010/02/20 01:07:57 | 000,013,472 | ---- | C | MD5 = 3B30638E222004E74A6F88061CD2316B] ()
MSMSGS.CAT -> C:\WINDOWS\System32\dllcache\MSMSGS.CAT -> [2010/02/20 01:07:57 | 000,012,363 | ---- | C | MD5 = 6ECFDA4520A03F507D26FF95B2B2FA87] ()
MSTSWEB.CAT -> C:\WINDOWS\System32\dllcache\MSTSWEB.CAT -> [2010/02/20 01:07:57 | 000,010,027 | ---- | C | MD5 = E87BDA50210A7848281B671923C95A2E] ()
IASNT4.CAT -> C:\WINDOWS\System32\dllcache\IASNT4.CAT -> [2010/02/20 01:07:57 | 000,008,574 | ---- | C | MD5 = 72A1D11534F7D3858E92F7EE5C777F6A] ()
OEMBIOS.CAT -> C:\WINDOWS\System32\dllcache\OEMBIOS.CAT -> [2010/02/20 01:07:57 | 000,007,382 | ---- | C | MD5 = 0C4A21405DA34057752AC3782FEB7CF2] ()
wmerrenu.cat -> C:\WINDOWS\System32\dllcache\wmerrenu.cat -> [2010/02/20 01:07:57 | 000,007,334 | ---- | C | MD5 = E8354D3E839B04711A291C99C17C864C] ()
FNTCACHE.DAT -> C:\WINDOWS\System32\FNTCACHE.DAT -> [2010/02/20 01:07:20 | 000,093,480 | ---- | C | MD5 = E9DBAA592EFEE1EF98E559A10D4B0479] ()
boot.ini -> C:\boot.ini -> [2010/02/20 01:06:41 | 000,000,281 | RHS- | C | MD5 = 5730631551AE7CA5D64E9FA67EB963EB] ()
$winnt$.inf -> C:\WINDOWS\System32\$winnt$.inf -> [2010/02/20 01:06:38 | 000,000,261 | ---- | C | MD5 = D77BBE394E419A31AD8AF29B36D6F735] ()
NvApps.xml -> C:\WINDOWS\System32\NvApps.xml -> [2010/01/11 22:17:30 | 000,271,490 | ---- | C | MD5 = BFA1DCC38918DD4AB306E7FBC263847D] ()
NvwsApps.xml -> C:\WINDOWS\System32\NvwsApps.xml -> [2010/01/11 22:17:30 | 000,065,332 | ---- | C | MD5 = 53EE875015436E3A1860F37089F6A018] ()
GlobalUserInterface.CompositeFont -> C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont -> [2006/06/29 14:58:52 | 000,030,808 | ---- | C | MD5 = A6AFBC3436A20A7834D45CDE9D69926C] ()
GlobalSansSerif.CompositeFont -> C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont -> [2006/06/29 14:53:56 | 000,026,489 | ---- | C | MD5 = D6B2075824BA9FAA4B37D98B13447F32] ()
GlobalSerif.CompositeFont -> C:\WINDOWS\Fonts\GlobalSerif.CompositeFont -> [2006/04/18 15:39:28 | 000,029,779 | ---- | C | MD5 = B77AB4697B17FBBB25E41A15CC31D94E] ()
GlobalMonospace.CompositeFont -> C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont -> [2006/04/18 15:39:28 | 000,026,040 | ---- | C | MD5 = B7F882C45E520600053327AA42FA3A4F] ()

w619 · « **Reply #19 on:** April 08, 2010, 02:10:47 PM »

Code: [Select]

[File - Lop Check]
 Alwil Software -> C:\Documents and Settings\All Users\Application Data\Alwil Software -> [2010/02/21 23:23:34 | 000,000,000 | ---D | M]
 BioWare -> C:\Documents and Settings\All Users\Application Data\BioWare -> [2010/03/02 10:43:29 | 000,000,000 | ---D | M]
 Electronic Arts -> C:\Documents and Settings\All Users\Application Data\Electronic Arts -> [2010/04/05 07:02:59 | 000,000,000 | ---D | M]
 Lionhead Studios -> C:\Documents and Settings\All Users\Application Data\Lionhead Studios -> [2010/04/05 07:05:24 | 000,000,000 | ---D | M]
 PC Drivers HeadQuarters -> C:\Documents and Settings\All Users\Application Data\PC Drivers HeadQuarters -> [2010/03/06 15:57:29 | 000,000,000 | ---D | M]
 PMB Files -> C:\Documents and Settings\All Users\Application Data\PMB Files -> [2010/04/04 21:54:07 | 000,000,000 | ---D | M]
 Tages -> C:\Documents and Settings\All Users\Application Data\Tages -> [2010/03/01 13:25:47 | 000,000,000 | ---D | M]
 TEMP -> C:\Documents and Settings\All Users\Application Data\TEMP -> [2010/04/05 20:27:10 | 000,000,000 | ---D | M]
 Turbine -> C:\Documents and Settings\All Users\Application Data\Turbine -> [2010/03/07 13:05:48 | 000,000,000 | ---D | M]
 BitTorrent -> C:\Documents and Settings\chris\Application Data\BitTorrent -> [2010/03/17 14:34:11 | 000,000,000 | ---D | M]
 Leadertech -> C:\Documents and Settings\chris\Application Data\Leadertech -> [2010/02/20 14:53:20 | 000,000,000 | ---D | M]
 LimeWire -> C:\Documents and Settings\chris\Application Data\LimeWire -> [2010/04/06 20:32:14 | 000,000,000 | ---D | M]
 Lionhead Studios -> C:\Documents and Settings\chris\Application Data\Lionhead Studios -> [2010/04/05 07:08:56 | 000,000,000 | ---D | M]
 runic games -> C:\Documents and Settings\chris\Application Data\runic games -> [2010/03/26 19:43:20 | 000,000,000 | ---D | M]
 WGASetup.job -> C:\WINDOWS\Tasks\WGASetup.job -> [2010/04/08 11:53:52 | 000,000,258 | ---- | M | MD5 = AAF582866511D6F1FFE18496053E6B59] ()
 
[File - Purity Scan]
 
[Custom Scans]
< %systemroot%\*. /mp /s >
< %systemroot%\system32\*.dll /lockedfiles >
 1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> 
< %systemroot%\system32\*.exe /lockedfiles >
 1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> 
< %systemroot%\Tasks\*.job /lockedfiles >
< %systemroot%\system32\drivers\*.sys /lockedfiles >
 1 C:\WINDOWS\system32\drivers\*.tmp files -> C:\WINDOWS\system32\drivers\*.tmp -> 
< %systemroot%\System32\config\*.sav >
 default.sav -> C:\WINDOWS\system32\config\default.sav -> [2010/02/20 01:06:40 | 000,094,208 | ---- | M | MD5 = E857DB302A6FBAFA5DB5B652BF6180C3] ()
 software.sav -> C:\WINDOWS\system32\config\software.sav -> [2010/02/20 01:06:40 | 001,089,536 | ---- | M | MD5 = A3CBBD9032118BA01AE706EE99931D68] ()
 system.sav -> C:\WINDOWS\system32\config\system.sav -> [2010/02/20 01:06:40 | 000,925,696 | ---- | M | MD5 = 55A77E4C17DCCCC68A62EB0E5E0B72F3] ()
< %systemroot%\System32\*.sys >
 ansi.sys -> C:\WINDOWS\system32\ansi.sys -> [2008/04/14 05:00:00 | 000,009,029 | ---- | M | MD5 = 8AAD333C876590293F72B315E162BCC7] ()
 country.sys -> C:\WINDOWS\system32\country.sys -> [2008/04/14 05:00:00 | 000,027,097 | ---- | M | MD5 = 0FE9F16075C9ACB941C957B7C649176E] ()
 himem.sys -> C:\WINDOWS\system32\himem.sys -> [2008/04/14 05:00:00 | 000,004,768 | ---- | M | MD5 = E6BC0F98FECEF245A0010D350C1A0B9B] ()
 key01.sys -> C:\WINDOWS\system32\key01.sys -> [2008/04/14 05:00:00 | 000,042,809 | ---- | M | MD5 = 582BCDD47CF4B68B5CB528F18E3CB808] ()
 keyboard.sys -> C:\WINDOWS\system32\keyboard.sys -> [2008/04/14 05:00:00 | 000,042,537 | ---- | M | MD5 = FBBCFEC1379C5C02D88A361993EDF1B8] ()
 ntdos.sys -> C:\WINDOWS\system32\ntdos.sys -> [2008/04/14 05:00:00 | 000,027,866 | ---- | M | MD5 = FFFF296A08DBF2AC0126C62E3778AC0D] ()
 ntdos404.sys -> C:\WINDOWS\system32\ntdos404.sys -> [2008/04/14 05:00:00 | 000,029,146 | ---- | M | MD5 = CF9ED169FF86D935E47999E82359E898] ()
 ntdos411.sys -> C:\WINDOWS\system32\ntdos411.sys -> [2008/04/14 05:00:00 | 000,029,370 | ---- | M | MD5 = 03B945AC0481CD8BB161C3569D8ED1C3] ()
 ntdos412.sys -> C:\WINDOWS\system32\ntdos412.sys -> [2008/04/14 05:00:00 | 000,029,274 | ---- | M | MD5 = BBC957DC18C17CC027EB80B7C77F2AEA] ()
 ntdos804.sys -> C:\WINDOWS\system32\ntdos804.sys -> [2008/04/14 05:00:00 | 000,029,146 | ---- | M | MD5 = 3CFFAEFFF23B0D208214A6D3061A5B1B] ()
 ntio.sys -> C:\WINDOWS\system32\ntio.sys -> [2008/04/14 05:00:00 | 000,033,840 | ---- | M | MD5 = 4FE09F868CE65B334B42862C372C69CC] ()
 ntio404.sys -> C:\WINDOWS\system32\ntio404.sys -> [2008/04/14 05:00:00 | 000,034,560 | ---- | M | MD5 = 6F73F50162DEF60C84B725C18CD9140F] ()
 ntio411.sys -> C:\WINDOWS\system32\ntio411.sys -> [2008/04/14 05:00:00 | 000,035,648 | ---- | M | MD5 = 0FDD5E69C1FF3B58043D44F2CC743D45] ()
 ntio412.sys -> C:\WINDOWS\system32\ntio412.sys -> [2008/04/14 05:00:00 | 000,035,424 | ---- | M | MD5 = 8842837C4D8311BF8E72BEE8CCC42217] ()
 ntio804.sys -> C:\WINDOWS\system32\ntio804.sys -> [2008/04/14 05:00:00 | 000,034,560 | ---- | M | MD5 = 6B56CEB3C6F9D5CD7293DBD9FE23B311] ()
 watchdog.sys -> C:\WINDOWS\system32\watchdog.sys -> [2008/04/14 05:00:00 | 000,017,664 | ---- | M | MD5 = 9A10AACBFDC4922715375FB4065EC930] (Microsoft Corporation)
 win32k.sys -> C:\WINDOWS\system32\win32k.sys -> [2009/08/14 06:21:25 | 001,850,624 | ---- | M | MD5 = 716ED09D8D9A9E1E4A03549B32B68186] (Microsoft Corporation)
 1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> 
< %systemroot%\System32\drivers\*.dll >
< %systemroot%\System32\drivers\*.ini >
< %systemroot%\System32\drivers\*.exe >
< %SYSTEMDRIVE%\*.* >
 AUTOEXEC.BAT -> C:\AUTOEXEC.BAT -> [2010/02/20 08:29:47 | 000,000,000 | ---- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
 Boot.bak -> C:\Boot.bak -> [2010/04/07 11:38:35 | 000,000,211 | ---- | M | MD5 = FA579938B0733B87066546AFE951082C] ()
 boot.ini -> C:\boot.ini -> [2010/04/08 10:23:21 | 000,000,281 | RHS- | M | MD5 = 5730631551AE7CA5D64E9FA67EB963EB] ()
 cmldr -> C:\cmldr -> [2004/08/03 23:00:00 | 000,260,272 | ---- | M | MD5 = 94E5450C43E4CF78E1D3AD4816966909] ()
 ComboFix.txt -> C:\ComboFix.txt -> [2010/04/08 10:29:34 | 000,028,596 | ---- | M | MD5 = C3FC576FAE6BE87B15CB07A618AE0446] ()
 CONFIG.SYS -> C:\CONFIG.SYS -> [2010/02/20 08:29:47 | 000,000,000 | ---- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
 eula.1028.txt -> C:\eula.1028.txt -> [2008/04/11 10:07:18 | 000,003,820 | ---- | M | MD5 = D8060194B9EB317DADCBFD5676DF62FE] ()
 eula.1031.txt -> C:\eula.1031.txt -> [2008/04/11 10:07:18 | 000,015,428 | ---- | M | MD5 = 1106CA5098603387518C1EADA04C0542] ()
 eula.1033.txt -> C:\eula.1033.txt -> [2008/04/11 10:07:18 | 000,010,058 | ---- | M | MD5 = 62F82DC664AC6E50F65F76EEB59A4A1A] ()
 eula.1036.txt -> C:\eula.1036.txt -> [2008/04/11 10:07:18 | 000,012,246 | ---- | M | MD5 = 664F4EA9AF608E3DEE1012D7C8CBB7FE] ()
 eula.1040.txt -> C:\eula.1040.txt -> [2008/04/11 10:07:18 | 000,013,912 | ---- | M | MD5 = BBCB29583DB900D3B103DACA1E2D17B7] ()
 eula.1041.txt -> C:\eula.1041.txt -> [2008/04/11 10:07:18 | 000,005,868 | ---- | M | MD5 = 145FE7DEEAF08514FF3C16B351F04907] ()
 eula.1042.txt -> C:\eula.1042.txt -> [2008/04/11 10:07:18 | 000,005,970 | ---- | M | MD5 = 19DE57A008C0A8C04BE9864858079902] ()
 eula.1049.txt -> C:\eula.1049.txt -> [2008/04/11 10:07:18 | 000,010,134 | ---- | M | MD5 = 99C22D4A31F4EAD4351B71D6F4E5F6A1] ()
 eula.2052.txt -> C:\eula.2052.txt -> [2008/04/11 10:07:18 | 000,003,814 | ---- | M | MD5 = DCD5896A9E154441CFFB1D7FB58E6074] ()
 eula.3082.txt -> C:\eula.3082.txt -> [2008/04/11 10:07:18 | 000,012,936 | ---- | M | MD5 = A1D3F43F55FD38DAA6236CB0FCCAA498] ()
 globdata.ini -> C:\globdata.ini -> [2008/04/11 10:07:18 | 000,001,110 | ---- | M | MD5 = 0A6B586FABD072BD7382B5E24194EAC7] ()
 install.ini -> C:\install.ini -> [2008/04/11 10:07:18 | 000,000,843 | ---- | M | MD5 = 0DA9AB4977F3E7BA8C65734DF42FDAB6] ()
 INSTALL.LOG -> C:\INSTALL.LOG -> [2010/03/19 15:37:36 | 000,000,188 | ---- | M | MD5 = B8AB914F06306DCC6D8F2E4C4ADFFA22] ()
 install.res.1028.dll -> C:\install.res.1028.dll -> [2008/04/11 08:03:48 | 000,076,304 | ---- | M | MD5 = 7146CDF809492A14A72BA4EC001384E4] (Microsoft Corporation)
 install.res.1031.dll -> C:\install.res.1031.dll -> [2008/04/11 08:03:48 | 000,096,272 | ---- | M | MD5 = D27AA47D7ADD909AE2B80B13D6E7FF54] (Microsoft Corporation)
 install.res.1033.dll -> C:\install.res.1033.dll -> [2008/04/11 08:03:48 | 000,091,152 | ---- | M | MD5 = 56A6FBDA0EE4DCCCD162ABF3E252DB2A] (Microsoft Corporation)
 install.res.1036.dll -> C:\install.res.1036.dll -> [2008/04/11 08:03:48 | 000,097,296 | ---- | M | MD5 = D5B08950EC8BCE1D4E8618502360ECF3] (Microsoft Corporation)
 install.res.1040.dll -> C:\install.res.1040.dll -> [2008/04/11 08:03:48 | 000,095,248 | ---- | M | MD5 = B9F28320C2F4AEA221E1EA8AE7DAD823] (Microsoft Corporation)
 install.res.1041.dll -> C:\install.res.1041.dll -> [2008/04/11 08:03:48 | 000,081,424 | ---- | M | MD5 = EE2BC6C9A5FD308747881E10BB38289C] (Microsoft Corporation)
 install.res.1042.dll -> C:\install.res.1042.dll -> [2008/04/11 08:03:48 | 000,079,888 | ---- | M | MD5 = DE3394925B2BC787347E8D7CB0135A66] (Microsoft Corporation)
 install.res.1049.dll -> C:\install.res.1049.dll -> [2008/04/11 10:09:24 | 000,093,200 | ---- | M | MD5 = 2F504A769FDC31C5B31B6B5936D5FBF6] (Microsoft Corporation)
 install.res.2052.dll -> C:\install.res.2052.dll -> [2008/04/11 08:03:48 | 000,075,792 | ---- | M | MD5 = 89CB2753BAF5C2BDCC5B46298AB0CC28] (Microsoft Corporation)
 install.res.3082.dll -> C:\install.res.3082.dll -> [2008/04/11 08:03:48 | 000,096,272 | ---- | M | MD5 = C47C3442AC6EB4D69CA54B841B69DDA4] (Microsoft Corporation)
 IO.SYS -> C:\IO.SYS -> [2010/02/20 08:29:47 | 000,000,000 | RHS- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
 JavaRa.log -> C:\JavaRa.log -> [2010/04/06 21:59:39 | 000,000,458 | ---- | M | MD5 = C6F5C7933EC18068E89EB2F54F6DA3EE] ()
 MSDOS.SYS -> C:\MSDOS.SYS -> [2010/02/20 08:29:47 | 000,000,000 | RHS- | M | MD5 = D41D8CD98F00B204E9800998ECF8427E] ()
 NTDETECT.COM -> C:\NTDETECT.COM -> [2008/04/14 05:00:00 | 000,047,564 | RHS- | M | MD5 = B2DE3452DE03674C6CEC68B8C8CE7C78] ()
 ntldr -> C:\ntldr -> [2008/04/14 05:00:00 | 000,250,048 | RHS- | M | MD5 = C1B29B4E6EEA9510610DB2EC4D6DB160] ()
 pagefile.sys -> C:\pagefile.sys -> [2010/04/08 06:57:34 | 3488,653,312 | -HS- | M | Unable to obtain MD5] ()
 vcredist.bmp -> C:\vcredist.bmp -> [2008/04/11 10:07:18 | 000,005,686 | ---- | M | MD5 = 06FBA95313F26E300917C6CEA4480890] ()
 VC_RED.cab -> C:\VC_RED.cab -> [2008/04/11 10:09:38 | 003,797,292 | ---- | M | MD5 = 1817510B96D6D7CA1B0A324FBD28027A] ()
 VC_RED.MSI -> C:\VC_RED.MSI -> [2008/04/11 10:11:40 | 000,233,472 | ---- | M | MD5 = AD35BAD20A685AF5C4338D88D5099057] ()
< %PROGRAMFILES%\*. >
 Adobe -> C:\Program Files\Adobe -> [2010/02/24 20:51:42 | 000,000,000 | ---D | M]
 AGEIA Technologies -> C:\Program Files\AGEIA Technologies -> [2010/02/20 09:01:30 | 000,000,000 | ---D | M]
 Alwil Software -> C:\Program Files\Alwil Software -> [2010/02/21 23:23:34 | 000,000,000 | ---D | M]
 ASUS -> C:\Program Files\ASUS -> [2010/03/05 08:54:31 | 000,000,000 | ---D | M]
 Atari -> C:\Program Files\Atari -> [2010/02/20 12:43:08 | 000,000,000 | ---D | M]
 BitTorrent -> C:\Program Files\BitTorrent -> [2010/02/26 05:39:33 | 000,000,000 | ---D | M]
 Black Isle -> C:\Program Files\Black Isle -> [2010/03/19 15:24:03 | 000,000,000 | ---D | M]
 CCleaner -> C:\Program Files\CCleaner -> [2010/04/06 22:16:01 | 000,000,000 | ---D | M]
 Common Files -> C:\Program Files\Common Files -> [2010/04/08 10:27:02 | 000,000,000 | ---D | M]
 ComPlus Applications -> C:\Program Files\ComPlus Applications -> [2010/02/20 08:26:55 | 000,000,000 | ---D | M]
 DivX -> C:\Program Files\DivX -> [2010/03/07 07:57:02 | 000,000,000 | ---D | M]
 Electronic Arts -> C:\Program Files\Electronic Arts -> [2010/04/05 03:49:58 | 000,000,000 | ---D | M]
 InstallShield Installation Information -> C:\Program Files\InstallShield Installation Information -> [2010/04/05 07:08:46 | 000,000,000 | -H-D | M]
 Internet Explorer -> C:\Program Files\Internet Explorer -> [2010/03/30 20:23:41 | 000,000,000 | ---D | M]
 Java -> C:\Program Files\Java -> [2010/04/06 22:12:49 | 000,000,000 | ---D | M]
 LimeWire -> C:\Program Files\LimeWire -> [2010/02/25 03:28:54 | 000,000,000 | ---D | M]
 Lionhead Studios Ltd -> C:\Program Files\Lionhead Studios Ltd -> [2010/04/05 07:05:24 | 000,000,000 | ---D | M]
 Logitech -> C:\Program Files\Logitech -> [2010/02/20 14:50:09 | 000,000,000 | ---D | M]
 Malwarebytes' Anti-Malware -> C:\Program Files\Malwarebytes' Anti-Malware -> [2010/04/06 20:19:40 | 000,000,000 | ---D | M]
 Messenger -> C:\Program Files\Messenger -> [2010/02/20 09:33:43 | 000,000,000 | ---D | M]
 microsoft frontpage -> C:\Program Files\microsoft frontpage -> [2010/02/20 08:30:04 | 000,000,000 | ---D | M]
 Microsoft WSE -> C:\Program Files\Microsoft WSE -> [2010/04/05 03:49:47 | 000,000,000 | ---D | M]
 Movie Maker -> C:\Program Files\Movie Maker -> [2010/03/10 22:09:17 | 000,000,000 | ---D | M]
 MSBuild -> C:\Program Files\MSBuild -> [2010/02/22 04:59:59 | 000,000,000 | ---D | M]
 MSN -> C:\Program Files\MSN -> [2010/02/20 08:25:54 | 000,000,000 | ---D | M]
 MSN Gaming Zone -> C:\Program Files\MSN Gaming Zone -> [2010/02/20 08:26:34 | 000,000,000 | ---D | M]
 MSXML 4.0 -> C:\Program Files\MSXML 4.0 -> [2010/02/27 15:27:59 | 000,000,000 | ---D | M]
 Nero -> C:\Program Files\Nero -> [2010/02/27 03:25:35 | 000,000,000 | ---D | M]
 NetMeeting -> C:\Program Files\NetMeeting -> [2010/02/20 08:28:21 | 000,000,000 | ---D | M]
 NVIDIA Corporation -> C:\Program Files\NVIDIA Corporation -> [2010/02/20 09:01:45 | 000,000,000 | ---D | M]
 Online Services -> C:\Program Files\Online Services -> [2010/02/20 08:26:44 | 000,000,000 | ---D | M]
 Outlook Express -> C:\Program Files\Outlook Express -> [2010/02/20 09:29:06 | 000,000,000 | ---D | M]
 Pando Networks -> C:\Program Files\Pando Networks -> [2010/03/07 13:57:49 | 000,000,000 | ---D | M]
 Realtek -> C:\Program Files\Realtek -> [2010/02/20 08:44:40 | 000,000,000 | ---D | M]
 Reference Assemblies -> C:\Program Files\Reference Assemblies -> [2010/02/22 04:59:55 | 000,000,000 | ---D | M]
 Skype -> C:\Program Files\Skype -> [2010/04/04 22:00:22 | 000,000,000 | R--D | M]
 Spybot - Search & Destroy -> C:\Program Files\Spybot - Search & Destroy -> [2010/04/06 21:25:01 | 000,000,000 | ---D | M]
 Steam -> C:\Program Files\Steam -> [2010/04/06 23:04:47 | 000,000,000 | ---D | M]
 Sun -> C:\Program Files\Sun -> [2010/04/06 22:13:09 | 000,000,000 | ---D | M]
 SUPERAntiSpyware -> C:\Program Files\SUPERAntiSpyware -> [2010/04/06 22:24:02 | 000,000,000 | ---D | M]
 Trend Micro -> C:\Program Files\Trend Micro -> [2010/04/07 00:35:26 | 000,000,000 | ---D | M]
 Turbine -> C:\Program Files\Turbine -> [2010/03/07 15:38:38 | 000,000,000 | ---D | M]
 Uninstall Information -> C:\Program Files\Uninstall Information -> [2010/02/20 08:33:35 | 000,000,000 | -H-D | M]
 Ventrilo -> C:\Program Files\Ventrilo -> [2010/02/20 20:25:13 | 000,000,000 | ---D | M]
 VIA -> C:\Program Files\VIA -> [2010/02/20 08:43:35 | 000,000,000 | ---D | M]
 VideoLAN -> C:\Program Files\VideoLAN -> [2010/03/06 16:12:11 | 000,000,000 | ---D | M]
 Windows Media Connect 2 -> C:\Program Files\Windows Media Connect 2 -> [2010/02/27 03:46:14 | 000,000,000 | ---D | M]
 Windows Media Player -> C:\Program Files\Windows Media Player -> [2010/02/27 03:49:20 | 000,000,000 | ---D | M]
 Windows NT -> C:\Program Files\Windows NT -> [2010/02/20 08:26:26 | 000,000,000 | ---D | M]
 WindowsUpdate -> C:\Program Files\WindowsUpdate -> [2010/02/20 08:28:54 | 000,000,000 | -H-D | M]
 WinRAR -> C:\Program Files\WinRAR -> [2010/04/06 21:57:52 | 000,000,000 | ---D | M]
 xerox -> C:\Program Files\xerox -> [2010/02/20 08:30:04 | 000,000,000 | ---D | M]
 Zune -> C:\Program Files\Zune -> [2010/02/27 03:35:33 | 000,000,000 | ---D | M]
< %appdata%\*.* >
 desktop.ini -> C:\Documents and Settings\chris\Application Data\desktop.ini -> [2010/02/20 01:09:36 | 000,000,062 | -HS- | M | MD5 = 88CF0FF92A4A9FA7BD9B7513B2E9E22B] ()
 PnkBstrK.sys -> C:\Documents and Settings\chris\Application Data\PnkBstrK.sys -> [2010/03/29 19:45:25 | 000,138,056 | ---- | M | MD5 = 73709547A3B136DE4FCFDE3EF78C1B8F] ()
 
[Alternate Data Streams]
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BEB15613
< End of report >

w619 · « **Reply #20 on:** April 08, 2010, 02:12:46 PM »

Well that sucked . For the love of god and all that is holy!!!!!! Please dont have me do that again!!!!
lol just joking but seriously that was long.

Steve_M · « **Reply #21 on:** April 09, 2010, 09:18:39 AM »

I had the same problem on my home desktop. It was a virus/malware.

Neither Spybot search and destroy, Hijack this, nor Mcafee detected or removed it. The only thing that worked was PrevX and I had to pay the one month license fee to use the removal service. There may be other free ones that will remove it, but it was worth $15 to me.

Here's the link: http://www.prevx.com/filenames/X701295762353902088-X1/MONSXW32.EXE.html

Edited to add: I also tried malwarebytes to no avail.

Dr Jay · « **Reply #22 on:** April 09, 2010, 01:38:45 PM »

Steve_M, please start a new topic.

Start OTS. Copy/Paste the information in the quotebox below into the panel where it says [color="#FF0000"]"Paste fix here"[/color] and then click the Run Fix button.

Quote

[Kill All Processes]
[Unregister Dlls]
[Files/Folders - Modified Within 90 Days]
NY -> DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini -> C:\Documents and Settings\chris\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
NY -> cisvecab.dll -> C:\WINDOWS\System32\cisvecab.dll
[Alternate Data Streams]
NY -> @Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BEB15613
[Purity]
[Empty Temp Folders]
[EmptyFlash]
[CreateRestorePoint]
[Reboot]

The fix should only take a very short time. When the fix is completed a message box will popup telling you that it is finished. Click the Ok button and Notepad will open with a log of actions taken during the fix. Post that information back here.

w619 · « **Reply #23 on:** April 09, 2010, 01:57:20 PM »

Sorry that I took too long to post, heres the log.

All Processes Killed
[Files/Folders - Modified Within 90 Days]
C:\Documents and Settings\chris\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
DllUnregisterServer procedure not found in C:\WINDOWS\System32\cisvecab.dll
C:\WINDOWS\System32\cisvecab.dll moved successfully.
[Alternate Data Streams]
ADS C:\Documents and Settings\All Users\Application Data\TEMP:BEB15613 deleted successfully.
[Purity]
Purity scan complete.
[Empty Temp Folders]

User: Administrator
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: All Users

User: chris
->Temp folder emptied: 261170 bytes
->Temporary Internet Files folder emptied: 322506 bytes
->Java cache emptied: 0 bytes
->Flash cache emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->Flash cache emptied: 41620 bytes

User: LocalService
->Temp folder emptied: 65748 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2402044 bytes
%systemroot%\System32 .tmp files removed: 2577 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 804864 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 32768 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 4.00 mb

[EMPTYFLASH]

User: Administrator
->Flash cache emptied: 0 bytes

User: All Users

User: chris
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0.00 mb

Restore point Set: OTS Restore Point (64424509440)
< End of fix log >
OTS by OldTimer - Version 3.1.28.0 fix logfile created on 04092010_125714

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\chris\Local Settings\Temp\~DF60D9.tmp not found!
File\Folder C:\Documents and Settings\chris\Local Settings\Temp\~DF60EB.tmp not found!
File\Folder C:\Documents and Settings\chris\Local Settings\Temp\~DF6143.tmp not found!
File\Folder C:\Documents and Settings\chris\Local Settings\Temp\~DF6155.tmp not found!
File\Folder C:\Documents and Settings\chris\Local Settings\Temp\~DF6193.tmp not found!
File\Folder C:\Documents and Settings\chris\Local Settings\Temp\~DF61A5.tmp not found!
C:\Documents and Settings\chris\Local Settings\Temporary Internet Files\Content.IE5\PU50N6FM\topic,103035.15[1].html moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Dr Jay · « **Reply #24 on:** April 09, 2010, 02:09:29 PM »

Please run a free online scan with the ESET Online Scanner

Tick the box next to YES, I accept the Terms of Use
Click Start
When asked, allow the ActiveX control to install
Click Start
Make sure that the options Remove found threats and the option Scan unwanted applications is checked
Click Scan (This scan can take several hours, so please be patient)
Once the scan is completed, you may close the window
Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
Copy and paste that log as a reply to this topic

w619 · « **Reply #25 on:** April 09, 2010, 03:16:54 PM »

ESETSmartInstaller@High as CAB hook log:
OnlineScanner.ocx - registred OK
# version=7
# iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339)
# OnlineScanner.ocx=1.0.0.6211
# api_version=3.0.2
# EOSSerial=2f38def2584f8a43a331dbbbfa0d36ad
# end=finished
# remove_checked=true
# archives_checked=false
# unwanted_checked=true
# unsafe_checked=false
# antistealth_checked=true
# utc_time=2010-04-09 09:20:06
# local_time=2010-04-09 02:20:06 (-0700, US Mountain Standard Time)
# country="United States"
# lang=1033
# osver=5.1.2600 NT Service Pack 3
# compatibility_mode=512 16777215 100 0 0 0 0 0
# compatibility_mode=768 16777175 100 0 3103197 3103197 0 0
# compatibility_mode=8192 67108863 100 0 0 0 0 0
# scanned=109323
# found=0
# cleaned=0
# scan_time=3394

Dr Jay · « **Reply #26 on:** April 09, 2010, 10:28:53 PM »

I think this will be the last scan.

Please download the latest version of Kaspersky GetSystemInfo (GSI) from Kaspersky and save it to your Desktop.

Please close all other applications running on your system.

Please double click GetSystemInfo.exe to open it.

Click the Settings button.

Set it to Maximum

IMPORTANT! Then please click Customize - choose Driver / Ports tab and uncheck Scan Ports.

Click Create Report to run it.

It will create a zip folder called GetSystemInfo_XXXXXXXXXXXXXX.zip on your Desktop. Please upload the folder to Kaspersky GSI Parser and click the Submit button.

Please copy and paste the url of the GSI Parser report (not the log) in your next reply.

w619 · « **Reply #27 on:** April 10, 2010, 04:09:27 AM »

http://www.getsysteminfo.com/read.php?file=f1d4e6368d881446a121ebd136a3b5cc&ms=0

Dr Jay · « **Reply #28 on:** April 11, 2010, 03:49:26 AM »

Your logs are clean.

Now to get you off to a good start we will clean your restore points so that all the bad stuff is gone for good. Then if you need to restore at some stage you will be clean. There are several ways to reset your restore points, but this is my method:

Select Start > All Programs > Accessories > System tools > System Restore.
On the dialogue box that appears select Create a Restore Point
Click NEXT
Enter a name e.g. Clean
Click CREATE

You now have a clean restore point, to get rid of the bad ones:

Select Start > All Programs > Accessories > System tools > Disk Cleanup.
In the Drop down box that appears select your main drive e.g. C
Click OK
The System will do some calculation and the display a dialogue box with TABS
Select the More Options Tab.
At the bottom will be a system restore box with a CLEANUP button click this
Accept the Warning and select OK again, the program will close and you are done

To remove all of the tools we used and the files and folders they created, please do the following:
Please download OTC.exe by OldTimer:

Save it to your Desktop.
Double click OTC.exe.
Click the CleanUp! button.
If you are prompted to Reboot during the cleanup, select Yes.
The tool will delete itself once it finishes.

Note: If any tool, file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.

==

Please download TFC by OldTimer to your desktop

Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
It will close all programs when run, so make sure you have saved all your work before you begin.
Click the Start
button to begin the process. Depending on how often you clean temp
files, execution time should be anywhere from a few seconds to a minute
or two. Let it run uninterrupted to completion.
Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.

==

Download Security Check by screen317 from SpywareInfoforum.org or Changelog.fr.

Save it to your Desktop.
Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
A Notepad document should open automatically called checkup.txt; please post the contents of that document.

w619 · « **Reply #29 on:** April 11, 2010, 04:26:18 PM »

Results of screen317's Security Check version 0.99.3
Windows XP Service Pack 3
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:
Windows Firewall Enabled!
avast! Free Antivirus
ESET Online Scanner v3
Antivirus up to date!
```````````````````````````````
Anti-malware/Other Utilities Check:
Malwarebytes' Anti-Malware
HijackThis 2.0.2
CCleaner
Java DB 10.5.3.0
Java(TM) 6 Update 19
Java(TM) SE Development Kit 6 Update 19
Adobe Flash Player 10
Adobe Reader 9.3
````````````````````````````````
Process Check:
objlist.exe by Laurent
Alwil Software Avast5 AvastSvc.exe
ALWILS~1 Avast5 avastUI.exe
````````````````````````````````
DNS Vulnerability Check:
GREAT! (Not vulnerable to DNS cache poisoning)

``````````End of Log````````````

Computer Hope Forum

News:

Author Topic: virus resource hog-Need help with removing it (Read 31107 times)

w619

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

Steve_M

Re: virus resource hog-Need help with removing it

Dr Jay

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

Dr Jay

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

Dr Jay

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it

Dr Jay

Re: virus resource hog-Need help with removing it

w619

Re: virus resource hog-Need help with removing it