Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

java trojan / fake java problem


  • This topic is locked This topic is locked
25 replies to this topic

#1 3759allen

3759allen

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 18 August 2014 - 06:37 AM

hi.

 

i've been advised to post a topic here with the following logs.

 

i have a major problem with a fake java pop up that can't be closed and automatically starts to download and take over the web page your using.

 

i must apologise for my lack of computer knowledege, i'm a bit of a computer idiot that doesn't understand any of this stuff.

 

any help and advice is much appreciated. 

 

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 
System Uptime: 8/18/2014 12:05:50 PM (0 hours ago)
.
Motherboard: Dell Inc. |  | 0TD761
Processor: Genuine Intel® CPU           T2400  @ 1.83GHz | Microprocessor | 1828/166mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 75 GiB total, 59.22 GiB free.
D: is CDROM ()
.
==== Disabled Device Manager Items =============
.
Class GUID: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Description: IDT High Definition Audio CODEC
Device ID: HDAUDIO\FUNC_01&VEN_8384&DEV_7690&SUBSYS_102801C2&REV_1022\4&10575340&0&0001
Manufacturer: IDT
Name: IDT High Definition Audio CODEC
PNP Device ID: HDAUDIO\FUNC_01&VEN_8384&DEV_7690&SUBSYS_102801C2&REV_1022\4&10575340&0&0001
Service: STHDA
.
Class GUID: 
Description: Ethernet Controller
Device ID: PCI\VEN_14E4&DEV_1600&SUBSYS_01C21028&REV_02\4&378EDFA4&0&00E2
Manufacturer: 
Name: Ethernet Controller
PNP Device ID: PCI\VEN_14E4&DEV_1600&SUBSYS_01C21028&REV_02\4&378EDFA4&0&00E2
Service: 
.
Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Description: O2Micro CCID SC Reader
Device ID: USB\VID_0B97&PID_7762\7&312B4FD&0&2
Manufacturer: 
Name: O2Micro CCID SC Reader
PNP Device ID: USB\VID_0B97&PID_7762\7&312B4FD&0&2
Service: 
.
==== System Restore Points ===================
.
.
==== Installed Programs ======================
.
Adobe Flash Player 14 ActiveX
Adobe Reader 9.3
Broadcom TPM Driver Installer
Conexant HDA D110 MDC V.92 Modem
EPSON Scan
EPSON SX440 Series Printer Uninstall
EpsonNet Print
FLV Player (remove only)
Google Chrome
Google Earth
Intel® Graphics Media Accelerator Driver
Intel® PROSet/Wireless Software
Malwarebytes Anti-Malware version 2.0.2.1012
mCore
mDriver
mDrWiFi
mHelp
Microsoft .NET Framework 1.1
Microsoft Application Error Reporting
Microsoft Choice Guard
mIWA
mLogView
mMHouse
mPfMgr
mPfWiz
mProSafe
MSVCRT
mWlsSafe
mXML
mZConfig
NTRU Hybrid TSS v2.0.25
NVIDIA Drivers
OpenOffice.org 3.2
Segoe UI
Skype™ 6.3
Update for Windows XP (KB898461)
WebFldrs XP
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 8
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Messenger
Windows Live Sign-in Assistant
XML Paper Specification Shared Components Pack 1.0
.
==== End Of File ===========================
 
 
DDS (Ver_2012-11-20.01) - NTFS_x86 
Internet Explorer: 8.0.6001.18702
Run by Owner at 12:15:53 on 2014-08-18
.
============== Running Processes ================
.
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\NTRU Cryptosystems\NTRU Hybrid TSS v2.0.25\bin\tcsd_win32.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\WINDOWS\system32\igfxsrvc.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\Program Files\Google\Chrome\Application\chrome.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k NetworkService
C:\WINDOWS\system32\svchost.exe -k LocalService
C:\WINDOWS\system32\svchost.exe -k imgsvc
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com
uDefault_Page_URL = hxxp://www.google.com
mStart Page = hxxp://www.google.com
mSearch Page = hxxp://www.google.com
mDefault_Page_URL = hxxp://www.google.com
mDefault_Search_URL = hxxp://www.google.com
mSearchAssistant = hxxp://www.google.com
mCustomizeSearch = hxxp://www.google.com
BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /minimized /regrun
uRun: [EPLTarget\P0000000000000001] c:\windows\system32\spool\drivers\w32x86\3\e_fatihbe.exe /ept "epltarget\P0000000000000001" /M "Epson Stylus SX440" /EF "HKCU"
uRun: [IzhoHobx] regsvr32.exe "c:\documents and settings\all users\application data\izhohobx\IzhoHobx.dat"
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [IDTSysTrayApp] sttray.exe
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
uPolicies-Explorer: Run = "c:\documents and settings\owner\application data\microsoft\windows\ieupdate\lpq.exe"
mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1372275058000
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: NameServer = 192.168.0.1
TCP: Interfaces\{E122453E-4C42-4F0A-8D06-6BDF13C95F63} : DHCPNameServer = 192.168.0.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
Notify: igfxcui - igfxdev.dll
AppInit_DLLs= c:\docume~1\alluse~1\applic~1\fastan~1\fastan~1.dll, c:\progra~1\common~1\system\1044\biapp.dll
LSA: Authentication Packages =  msv1_0 wvauth
mASetup: {8A69D345-D564-463c-AFF1-A69D9E530F96} - "c:\program files\google\chrome\application\36.0.1985.125\installer\chrmstp.exe" --configure-user-settings --verbose-logging --system-level --multi-install --chrome
.
============= SERVICES / DRIVERS ===============
.
R? SkypeUpdate;Skype Updater
S? MBAMProtector;MBAMProtector
S? MBAMScheduler;MBAMScheduler
S? MBAMService;MBAMService
S? MBAMSwissArmy;MBAMSwissArmy
.
=============== Created Last 30 ================
.
2050-10-19 14:13:47 -------- d-----w- C:\dell
.
==================== Find3M  ====================
.
2050-10-19 13:26:51 21419 ----a-w- c:\windows\system32\drivers\AegisP.sys
2014-08-18 11:08:17 110296 ----a-w- c:\windows\system32\drivers\MBAMSwissArmy.sys
2014-08-17 09:48:50 49623040 ---h--w- c:\documents and settings\owner\tpqlksln.exe
2014-08-16 17:54:03 48312320 ---h--w- c:\documents and settings\owner\cyzutbuw.exe
2014-07-08 18:44:32 71344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2014-07-08 18:44:32 699056 ----a-w- c:\windows\system32\FlashPlayerApp.exe
.
============= FINISH: 12:19:03.15 ===============
 
 
i hope this is what i'm meant to have done and you can make sense of it all.  thanks
 
 


BC AdBot (Login to Remove)

 


#2 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:11 AM

Posted 18 August 2014 - 08:12 AM

Hi there,
my name is Marius and I will assist you with your malware related problems.

Before we move on, please read the following points carefully.

  • First, read my instructions completely. If there is anything that you do not understand kindly ask before proceeding.
  • Perform everything in the correct order. Sometimes one step requires the previous one.
  • If you have any problems while following my instructions, Stop there and tell me the exact nature of your problem.
  • Do not run any other scans without instruction or add/remove software unless I tell you to do so. This would change the output of our tools and could be confusing for me.
  • Post all logfiles as a reply rather than as an attachment unless I specifically ask you. If you can not post all logfiles in one reply, feel free to use more posts.
  • If I don't hear from you within 3 days from this initial or any subsequent post, then this thread will be closed.
  • Stay with me. I will give you some advice about prevention after the cleanup process. Absence of symptoms does not always mean the computer is clean.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

 

 

Scan with FRST in normal mode

Please download Farbar's Recovery Scan Tool to your desktop: FRST 32bit or FRST 64bit (If not sure: Start --> Computer (right click) --> properties)

  • Run FRST.
  • Don´t change one of the checkboxes and hit Scan.
  • Logfiles are created on your desktop.
  • Poste the FRST.txt and (after the first scan only!) the Addition.txt.

 

 

 

Scan with Gmer rootkit scanner

Please download Gmer from here by clicking on the "Download EXE" Button.

  • Double click on the randomly named GMER.exe. If asked to allow gmer.sys driver to load, please consent.
  • If it gives you a warning about rootkit activity and asks if you want to run scan...click on NO.
  • In the right panel, you will see several boxes that have been checked. Uncheck the following ...
    • Sections
    • IAT/EAT
    • Show All ( should be unchecked by default )
  • Leave everything else as it is.
  • Close all other running programs as well as your Browser.
  • Click the Scan button & wait for it to finish.
  • Once done click on the Save.. button, and in the File name area, type in "ark.txt" or it will save as a .log file which cannot be uploaded to your post.
  • Save it where you can easily find it, such as your desktop.
  • Please post the content of the ark.txt here.

**Caution**
Rootkit scans often produce false positives. Do NOT take any action on any "<--- ROOKIT" entries


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#3 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 18 August 2014 - 11:51 AM

Additional scan result of Farbar Recovery Scan Tool (x86) Version:17-08-2014 01
Ran by Owner at 2014-08-18 17:48:35
Running from C:\Documents and Settings\Owner\My Documents\Downloads
Boot Mode: Normal
==========================================================
 
 
==================== Security Center ========================
 
(If an entry is included in the fixlist, it will be removed.)
 
 
==================== Installed Programs ======================
 
(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)
 
Adobe Flash Player 14 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 14.0.0.145 - Adobe Systems Incorporated)
Adobe Reader 9.3 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A93000000001}) (Version: 9.3.0 - Adobe Systems Incorporated)
Broadcom TPM Driver Installer (Version: 8.04.04 - Broadcom Corporation) Hidden
Conexant HDA D110 MDC V.92 Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3) (Version:  - )
EPSON Scan (HKLM\...\EPSON Scanner) (Version:  - Seiko Epson Corporation)
EPSON SX440 Series Printer Uninstall (HKLM\...\EPSON SX440 Series) (Version:  - SEIKO EPSON Corporation)
EpsonNet Print (HKLM\...\{3E31400D-274E-4647-916C-2CACC3741799}) (Version: 2.6.0 - SEIKO EPSON CORPORATION)
FLV Player (remove only) (HKLM\...\FLVM Player) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 36.0.1985.125 - Google Inc.)
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version:  - )
Intel® PROSet/Wireless Software (HKLM\...\ProInst) (Version: 10.50.0000 - Intel Corporation)
Malwarebytes Anti-Malware version 2.0.2.1012 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.2.1012 - Malwarebytes Corporation)
mCore (Version: 7.10.0000 - Intel Corporation) Hidden
mDriver (Version: 7.10.0000 - Intel) Hidden
mDrWiFi (Version: 7.10.0000 - Intel Corporation) Hidden
mHelp (Version: 7.10.0000 - Intel) Hidden
Microsoft .NET Framework 1.1 (HKLM\...\{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}) (Version: 1.1.4322 - Microsoft)
Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
mIWA (Version: 7.10.0000 - Intel Corporation) Hidden
mLogView (Version: 7.10.0000 - Intel Corporation) Hidden
mMHouse (Version: 7.10.0000 - Intel Corporation) Hidden
mPfMgr (Version: 7.10.0000 - Intel Corporation) Hidden
mPfWiz (Version: 7.10.0000 - Intel Corporation) Hidden
mProSafe (Version: 9.00.0000 - Intel) Hidden
MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
mWlsSafe (Version: 7.10.0000 - Intel) Hidden
mXML (Version: 7.10.0000 - Intel Corporation) Hidden
mZConfig (Version: 7.10.0000 - Intel Corporation) Hidden
NTRU Hybrid TSS v2.0.25 (Version: 2.0.25 - NTRU Cryptosystems) Hidden
NVIDIA Drivers (HKLM\...\NVIDIA Drivers) (Version:  - )
OpenOffice.org 3.2 (HKLM\...\{A62892A7-9D90-4A58-8FFF-78FC5A2BC3C5}) (Version: 3.2.9483 - OpenOffice.org)
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
Skype™ 6.3 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.3.105 - Skype Technologies S.A.)
Update for Windows XP (KB898461) (HKLM\...\KB898461) (Version: 1 - Microsoft Corporation)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
Windows Live Messenger (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
XML Paper Specification Shared Components Pack 1.0 (Version:  - Microsoft Corporation) Hidden
 
==================== Custom CLSID (selected items): ==========================
 
(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)
 
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{00b7e0ab-817a-44ad-a04b-d1148d524136}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{7c6e29bc-8b8b-4c3d-859e-af6cd158be0f}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c0-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c1-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c2-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c3-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c4-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c5-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c8-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969c9-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969ca-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
CustomCLSID: HKU\S-1-5-21-1708537768-299502267-1801674531-1003_Classes\CLSID\{88d969d6-f192-11d4-a65f-0040963251e5}\InprocServer32 -> C:\WINDOWS\system32\msxml4.dll (Microsoft Corporation)
 
==================== Restore Points  =========================
 
31-07-2013 20:58:41 System Checkpoint
01-08-2013 21:28:56 System Checkpoint
03-08-2013 12:22:40 System Checkpoint
05-08-2013 09:14:16 System Checkpoint
11-08-2013 21:17:35 System Checkpoint
14-08-2013 09:49:56 System Checkpoint
16-08-2013 07:57:59 System Checkpoint
17-08-2013 12:58:04 System Checkpoint
18-08-2013 14:24:20 System Checkpoint
24-08-2013 21:28:36 System Checkpoint
26-08-2013 07:55:01 System Checkpoint
27-08-2013 20:24:43 System Checkpoint
29-08-2013 10:50:45 System Checkpoint
30-08-2013 16:42:17 System Checkpoint
02-09-2013 06:06:53 System Checkpoint
05-09-2013 18:11:53 System Checkpoint
06-09-2013 18:19:16 System Checkpoint
09-09-2013 20:50:56 System Checkpoint
12-09-2013 07:54:55 System Checkpoint
13-09-2013 17:38:43 System Checkpoint
16-09-2013 09:10:30 System Checkpoint
17-09-2013 10:31:31 System Checkpoint
18-09-2013 14:44:46 System Checkpoint
20-09-2013 17:27:06 System Checkpoint
21-09-2013 18:36:27 System Checkpoint
23-09-2013 07:51:07 System Checkpoint
26-09-2013 17:49:25 System Checkpoint
29-09-2013 10:18:35 System Checkpoint
02-10-2013 18:32:25 System Checkpoint
10-10-2013 18:49:50 System Checkpoint
13-10-2013 17:32:42 System Checkpoint
18-10-2013 08:03:32 System Checkpoint
19-10-2013 11:54:46 System Checkpoint
22-10-2013 12:18:51 System Checkpoint
24-10-2013 08:45:50 System Checkpoint
26-10-2013 10:06:48 System Checkpoint
27-10-2013 14:35:56 System Checkpoint
28-10-2013 15:21:16 System Checkpoint
03-11-2013 10:04:28 System Checkpoint
07-11-2013 14:42:00 System Checkpoint
09-11-2013 17:29:15 System Checkpoint
11-11-2013 21:39:04 System Checkpoint
15-11-2013 17:14:31 System Checkpoint
16-11-2013 18:00:46 System Checkpoint
20-11-2013 18:01:45 System Checkpoint
22-11-2013 15:51:22 System Checkpoint
24-11-2013 18:25:09 System Checkpoint
27-11-2013 15:40:57 System Checkpoint
27-11-2013 19:40:16 Removed Broadcom Gigabit Integrated Controller
28-11-2013 12:22:01 Removed SigmaTel Audio
30-11-2013 21:36:15 Removed Microsoft Silverlight
02-12-2013 16:49:03 System Checkpoint
04-12-2013 19:42:33 System Checkpoint
06-12-2013 20:21:42 System Checkpoint
10-12-2013 21:03:45 System Checkpoint
12-12-2013 19:20:46 System Checkpoint
13-12-2013 23:26:22 System Checkpoint
16-12-2013 09:43:00 System Checkpoint
22-12-2013 13:44:19 System Checkpoint
28-12-2013 20:12:52 System Checkpoint
01-01-2014 17:00:35 System Checkpoint
09-01-2014 15:44:01 System Checkpoint
11-01-2014 15:05:07 System Checkpoint
17-01-2014 16:42:06 System Checkpoint
24-01-2014 16:00:02 System Checkpoint
26-01-2014 14:15:57 System Checkpoint
28-01-2014 17:48:30 System Checkpoint
31-01-2014 18:54:09 System Checkpoint
05-02-2014 14:01:38 System Checkpoint
08-02-2014 11:29:57 System Checkpoint
14-02-2014 16:12:40 System Checkpoint
15-02-2014 17:31:29 System Checkpoint
20-02-2014 14:54:41 System Checkpoint
23-02-2014 16:22:10 System Checkpoint
24-02-2014 17:14:26 System Checkpoint
26-02-2014 21:25:37 System Checkpoint
28-02-2014 19:09:23 System Checkpoint
02-03-2014 10:08:01 System Checkpoint
03-03-2014 11:05:22 System Checkpoint
04-03-2014 16:37:12 System Checkpoint
07-03-2014 21:28:30 System Checkpoint
09-03-2014 10:52:09 System Checkpoint
12-03-2014 10:27:24 System Checkpoint
13-03-2014 21:34:02 System Checkpoint
14-03-2014 21:57:50 System Checkpoint
16-03-2014 16:33:33 System Checkpoint
21-03-2014 19:55:38 System Checkpoint
24-03-2014 19:50:58 System Checkpoint
28-03-2014 20:45:39 System Checkpoint
31-03-2014 09:50:02 System Checkpoint
02-04-2014 15:31:19 System Checkpoint
03-04-2014 15:48:09 System Checkpoint
05-04-2014 18:40:39 System Checkpoint
07-04-2014 16:06:04 System Checkpoint
09-04-2014 16:46:07 System Checkpoint
11-04-2014 21:57:50 System Checkpoint
14-04-2014 18:27:16 System Checkpoint
16-04-2014 20:43:10 System Checkpoint
17-04-2014 20:50:53 System Checkpoint
21-04-2014 16:47:41 System Checkpoint
22-04-2014 19:48:48 System Checkpoint
24-04-2014 15:11:06 System Checkpoint
27-04-2014 20:29:59 System Checkpoint
30-04-2014 19:29:36 System Checkpoint
02-05-2014 08:59:28 System Checkpoint
03-05-2014 09:20:53 System Checkpoint
05-05-2014 10:48:06 System Checkpoint
10-05-2014 18:50:37 System Checkpoint
11-05-2014 19:52:28 System Checkpoint
14-05-2014 14:23:25 System Checkpoint
17-05-2014 14:06:56 System Checkpoint
12-06-2014 17:29:27 System Checkpoint
14-06-2014 10:19:30 System Checkpoint
17-06-2014 21:07:32 System Checkpoint
19-06-2014 18:32:12 System Checkpoint
22-06-2014 12:05:21 System Checkpoint
24-06-2014 14:05:33 System Checkpoint
25-06-2014 15:17:11 System Checkpoint
26-06-2014 17:44:03 System Checkpoint
28-06-2014 10:18:20 System Checkpoint
29-06-2014 11:25:59 System Checkpoint
01-07-2014 20:12:09 System Checkpoint
02-07-2014 21:26:37 System Checkpoint
03-07-2014 21:44:40 System Checkpoint
04-07-2014 21:11:50 Installed %1 %2.
04-07-2014 21:12:06 Printer Driver Microsoft XPS Document Writer Installed
04-07-2014 21:46:23 Removed Windows Live Upload Tool
06-07-2014 10:44:58 System Checkpoint
07-07-2014 19:07:31 System Checkpoint
09-07-2014 21:04:12 System Checkpoint
21-07-2014 20:02:13 System Checkpoint
25-07-2014 18:05:17 System Checkpoint
27-07-2014 08:11:33 System Checkpoint
28-07-2014 11:11:16 System Checkpoint
02-08-2014 06:47:14 System Checkpoint
03-08-2014 15:31:45 System Checkpoint
08-08-2014 20:37:59 System Checkpoint
10-08-2014 10:46:10 System Checkpoint
15-08-2014 12:34:03 System Checkpoint
16-08-2014 17:47:47 Hahomedia
16-08-2014 18:15:59 Removed Windows Live Sign-in Assistant
16-08-2014 18:17:35 Removed Microsoft .NET Framework 2.0 Service Pack 2
 
==================== Hosts content: ==========================
 
(If needed Hosts: directive could be included in the fixlist to reset Hosts.)
 
2008-04-14 13:00 - 2008-04-14 13:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 
==================== Scheduled Tasks (whitelisted) =============
 
 
(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)
 
Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
 
==================== Loaded Modules (whitelisted) =============
 
2006-08-02 00:24 - 2006-08-02 00:24 - 00348160 _____ () C:\Program Files\Intel\Wireless\Bin\IntStngs.dll
2006-08-02 00:26 - 2006-08-02 00:26 - 00118784 _____ () C:\Program Files\Intel\Wireless\Bin\IWMSPROV.DLL
2006-06-12 10:01 - 2006-06-12 10:01 - 00180224 _____ () C:\Program Files\NTRU Cryptosystems\NTRU Hybrid TSS v2.0.25\bin\tcsd_win32.exe
2006-08-02 00:24 - 2006-08-02 00:24 - 00348160 _____ () C:\Program Files\Intel\Wireless\bin\IntStngs.dll
2008-04-14 13:00 - 2008-04-14 13:00 - 00059904 _____ () C:\WINDOWS\system32\devenum.dll
2008-04-14 13:00 - 2008-04-14 13:00 - 00014336 _____ () C:\WINDOWS\system32\msdmo.dll
2009-10-20 21:02 - 2050-10-19 14:30 - 00970752 _____ () C:\Program Files\OpenOffice.org 3\program\libxml2.dll
2006-06-23 13:07 - 2006-06-23 13:07 - 01167360 _____ () C:\Program Files\Intel\Wireless\Bin\acAuth.dll
2014-07-21 16:01 - 2014-07-15 10:24 - 08537928 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.125\pdf.dll
2014-07-21 16:01 - 2014-07-15 10:24 - 00353096 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.125\ppGoogleNaClPluginChrome.dll
2014-07-21 16:01 - 2014-07-15 10:24 - 01732936 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.125\ffmpegsumo.dll
2014-07-21 16:01 - 2014-07-15 10:24 - 14664008 _____ () C:\Program Files\Google\Chrome\Application\36.0.1985.125\PepperFlash\pepflashplayer.dll
2014-06-09 11:20 - 2014-02-10 13:44 - 04592128 _____ () C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libglesv2.dll
2014-06-09 11:20 - 2014-02-10 13:44 - 00112128 _____ () C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\SwiftShader\3.2.6.45159\libegl.dll
 
==================== Alternate Data Streams (whitelisted) =========
 
(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)
 
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:373E1720
AlternateDataStreams: C:\Documents and Settings\Owner\Local Settings:init
 
==================== Safe Mode (whitelisted) ===================
 
(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)
 
 
==================== EXE Association (whitelisted) =============
 
(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)
 
 
==================== MSCONFIG/TASK MANAGER disabled items =========
 
(Currently there is no automatic fix for this section.)
 
 
==================== Faulty Device Manager Devices =============
 
Name: IDT High Definition Audio CODEC
Description: IDT High Definition Audio CODEC
Class Guid: {4D36E96C-E325-11CE-BFC1-08002BE10318}
Manufacturer: IDT
Service: STHDA
Problem: : This device cannot start. (Code10)
Resolution: Device failed to start. Click "Update Driver" to update the drivers for this device.
On the "General Properties" tab of the device, click "Troubleshoot" to start the troubleshooting wizard.
 
Name: Ethernet Controller
Description: Ethernet Controller
Class Guid: 
Manufacturer: 
Service: 
Problem: : This device is not configured correctly. (Code1)
Resolution: You may be prompted to provide the path of the driver. Windows may have the driver built-in, or may still have the driver files installed from the last time that you set up the device. If you are asked for the driver and you do not have it, you can try to download the latest driver from the hardware vendor�s Web site.
In the device properties dialog box, click the "Driver" tab, and then click "Update Driver" to start the "Hardware Update Wizard". Follow the instructions to update the driver. If updating the driver does not work, see your hardware documentation for more information.
 
Name: O2Micro CCID SC Reader
Description: O2Micro CCID SC Reader
Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
Manufacturer: 
Service: 
Problem: : The drivers for this device are not installed. (Code 28)
Resolution: To install the drivers for this device, click "Update Driver", which starts the Hardware Update wizard.
 
 
==================== Event log errors: =========================
 
Application errors:
==================
Error: (08/18/2014 05:39:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: Hanging application FRST.exe, version 17.8.2014.0, hang module hungapp, version 0.0.0.0, hang address 0x00000000.
 
Error: (08/17/2014 01:15:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application tpqlksln.exe, version 8.0.0.2, faulting module tpqlksln.exe, version 8.0.0.2, fault address 0x000013b4.
Processing media-specific event for [tpqlksln.exe!ws!]
 
Error: (08/17/2014 10:39:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application cyzutbuw.exe, version 8.0.0.2, faulting module cyzutbuw.exe, version 8.0.0.2, fault address 0x000013b4.
Processing media-specific event for [cyzutbuw.exe!ws!]
 
Error: (08/16/2014 09:27:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application chrome.exe, version 36.0.1985.125, faulting module chrome.dll, version 36.0.1985.125, fault address 0x0108f1cb.
Processing media-specific event for [chrome.exe!ws!]
 
Error: (08/16/2014 07:21:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application 5[1].exe, version 8.0.0.2, faulting module 5[1].exe, version 8.0.0.2, fault address 0x000013b4.
Processing media-specific event for [5[1].exe!ws!]
 
Error: (08/16/2014 07:13:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application cyzutbuw.exe, version 8.0.0.2, faulting module cyzutbuw.exe, version 8.0.0.2, fault address 0x000013b4.
Processing media-specific event for [cyzutbuw.exe!ws!]
 
Error: (08/16/2014 07:03:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application 05597821-7593-46b1-9a04-0143a1f890a8-6.exe, version 1.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [05597821-7593-46b1-9a04-0143a1f890a8-6.exe!ws!]
 
Error: (08/16/2014 06:56:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application msiexec.exe, version 9.87.85.0, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [msiexec.exe!ws!]
 
Error: (08/16/2014 06:52:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application 05597821-7593-46b1-9a04-0143a1f890a8-6.exe, version 1.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [05597821-7593-46b1-9a04-0143a1f890a8-6.exe!ws!]
 
Error: (08/16/2014 06:52:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: Faulting application e5a8b767-2814-4507-bfb2-39128c44025f-6.exe, version 1.0.0.1, faulting module unknown, version 0.0.0.0, fault address 0x00000000.
Processing media-specific event for [e5a8b767-2814-4507-bfb2-39128c44025f-6.exe!ws!]
 
 
System errors:
=============
Error: (08/18/2014 04:48:10 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (08/18/2014 04:47:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error: 
%%3
 
Error: (08/18/2014 04:47:28 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The DataSvr2 service failed to start due to the following error: 
%%2
 
Error: (08/18/2014 00:07:29 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (08/18/2014 00:06:58 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (08/18/2014 00:06:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error: 
%%3
 
Error: (08/18/2014 00:06:22 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The DataSvr2 service failed to start due to the following error: 
%%2
 
Error: (08/17/2014 09:45:13 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (08/17/2014 09:44:43 PM) (Source: Service Control Manager) (EventID: 7011) (User: )
Description: Timeout (30000 milliseconds) waiting for a transaction response from the MBAMService service.
 
Error: (08/17/2014 09:43:53 PM) (Source: Service Control Manager) (EventID: 7000) (User: )
Description: The Google Update Service (gupdate) service failed to start due to the following error: 
%%3
 
 
Microsoft Office Sessions:
=========================
Error: (08/18/2014 05:39:01 PM) (Source: Application Hang) (EventID: 1002) (User: )
Description: FRST.exe17.8.2014.0hungapp0.0.0.000000000
 
Error: (08/17/2014 01:15:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: tpqlksln.exe8.0.0.2tpqlksln.exe8.0.0.2000013b4
 
Error: (08/17/2014 10:39:14 AM) (Source: Application Error) (EventID: 1000) (User: )
Description: cyzutbuw.exe8.0.0.2cyzutbuw.exe8.0.0.2000013b4
 
Error: (08/16/2014 09:27:10 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: chrome.exe36.0.1985.125chrome.dll36.0.1985.1250108f1cb
 
Error: (08/16/2014 07:21:30 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 5[1].exe8.0.0.25[1].exe8.0.0.2000013b4
 
Error: (08/16/2014 07:13:53 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: cyzutbuw.exe8.0.0.2cyzutbuw.exe8.0.0.2000013b4
 
Error: (08/16/2014 07:03:23 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 05597821-7593-46b1-9a04-0143a1f890a8-6.exe1.0.0.1unknown0.0.0.000000000
 
Error: (08/16/2014 06:56:42 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: msiexec.exe9.87.85.0unknown0.0.0.000000000
 
Error: (08/16/2014 06:52:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: 05597821-7593-46b1-9a04-0143a1f890a8-6.exe1.0.0.1unknown0.0.0.000000000
 
Error: (08/16/2014 06:52:35 PM) (Source: Application Error) (EventID: 1000) (User: )
Description: e5a8b767-2814-4507-bfb2-39128c44025f-6.exe1.0.0.1unknown0.0.0.000000000
 
 
==================== Memory info =========================== 
 
Processor: Genuine Intel® CPU T2400 @ 1.83GHz
Percentage of memory in use: 89%
Total physical RAM: 2038.05 MB
Available physical RAM: 205 MB
Total Pagefile: 3409.16 MB
Available Pagefile: 1092.29 MB
Total Virtual: 2047.88 MB
Available Virtual: 1934.25 MB
 
==================== Drives ================================
 
Drive c: () (Fixed) (Total:74.53 GB) (Free:59.1 GB) NTFS ==>[Drive with boot components (Windows XP)]
 
==================== MBR & Partition Table ==================
 
========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 74.5 GB) (Disk ID: A25FA25F)
Partition 1: (Active) - (Size=74.5 GB) - (Type=07 NTFS)
 
==================== End Of Log ============================


#4 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 18 August 2014 - 11:58 AM

hi. thanks for the reply.

 

I've posted posted the results of the scan. I hope this makes sense to you.

 

when I clicked to download it didn't give an option to download to my desktop, it just said run or cancel. I clicked run. fort some reason the scan stopped working the first time I tried, I tried it again all seemed to work. hope I done the right thing?

 

I will now try and do the second thing you advised and post results.

 

thank you for your help.



#5 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 18 August 2014 - 03:28 PM

I have tried to do the GMER scan following you instructions, it seems to carry out the scan but brings a box up saying "GMER hasn't found any system modifications."

 

is this what it should do?

 

if you could give some advice of what to do next that would be brilliant.

 

thanks again for all your help.



#6 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:11 AM

Posted 19 August 2014 - 02:18 AM

No, that´s ok.

Please post the FRST.txt as well.


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#7 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 19 August 2014 - 05:42 AM

I thought I did post the FRST.txt.

 

if I have posted the wrong thing please tell me what I need to do and post and I will try my best.

 

sorry for my poor computer skills, I did say I was a computer idiot.



#8 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:11 AM

Posted 19 August 2014 - 07:13 AM

You´ve posted the addition.txt. We need the FRST.txt as well. :)


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#9 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 19 August 2014 - 08:21 AM

i do apologise.

 

is this what you need?

 

if not let me know and i'll try again.



#10 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:11 AM

Posted 19 August 2014 - 08:30 AM

I cannot see a post or an attachment, perhaps you forgot it before replying. :)


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#11 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 19 August 2014 - 08:33 AM

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:17-08-2014 01
Ran by Owner (administrator) on DEFAULT-B6C197E on 18-08-2014 17:45:28
Running from C:\Documents and Settings\Owner\My Documents\Downloads
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8
Boot Mode: Normal
 
The only official download link for FRST:
Download link from any site other than Bleeping Computer is unpermitted or outdated.
 
==================== Processes (Whitelisted) =================
 
(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)
 
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
(Intel Corporation ) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
() C:\Program Files\NTRU Cryptosystems\NTRU Hybrid TSS v2.0.25\bin\tcsd_win32.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\iFrmewrk.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Skype Technologies S.A.) C:\Program Files\Skype\Phone\Skype.exe
(SEIKO EPSON CORPORATION) C:\WINDOWS\system32\spool\drivers\w32x86\3\E_FATIHBE.EXE
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.exe
(OpenOffice.org) C:\Program Files\OpenOffice.org 3\program\soffice.bin
(Intel Corporation) C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Farbar) C:\Documents and Settings\Owner\My Documents\Downloads\FRST (1).exe
 
 
==================== Registry (Whitelisted) ==================
 
(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)
 
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\McAfee <====== ATTENTION
HKLM Group Policy restriction on software: C:\Documents and Settings\All Users\Application Data\Malwarebytes <====== ATTENTION
HKLM Group Policy restriction on software: C:\Program Files\Common Files\Symantec Shared <====== ATTENTION
HKU\S-1-5-21-1708537768-299502267-1801674531-1003\...\Run: [Skype] => C:\Program Files\Skype\Phone\Skype.exe [18643560 2013-03-01] (Skype Technologies S.A.)
HKU\S-1-5-21-1708537768-299502267-1801674531-1003\...\Run: [EPLTarget\P0000000000000001] => C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIHBE.EXE [249440 2013-06-26] (SEIKO EPSON CORPORATION)
HKU\S-1-5-21-1708537768-299502267-1801674531-1003\...\Run: [IzhoHobx] => regsvr32.exe "C:\Documents and Settings\All Users\Application Data\IzhoHobx\IzhoHobx.dat"
HKU\S-1-5-21-1708537768-299502267-1801674531-1003\...\Policies\Explorer: [Run] "C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\IEUpdate\lpq.exe"
AppInit_DLLs: c:\docume~1\alluse~1\applic~1\fastan~1\fastan~1.dll => c:\docume~1\alluse~1\applic~1\fastan~1\fastan~1.dll File Not Found
AppInit_DLLs: , c:\progra~1\common~1\system\1044\biapp.dll => c:\progra~1\common~1\system\1044\biapp.dll File Not Found
Lsa: [Authentication Packages] msv1_0 wvauth
Startup: C:\Documents and Settings\Owner\Start Menu\Programs\Startup\lpq.lnk
ShortcutTarget: lpq.lnk -> C:\Documents and Settings\Owner\Application Data\Microsoft\Windows\IEUpdate\lpq.exe (No File)
Startup: C:\Documents and Settings\Owner\Start Menu\Programs\Startup\OpenOffice.org 3.2.lnk
ShortcutTarget: OpenOffice.org 3.2.lnk -> C:\Program Files\OpenOffice.org 3\program\quickstart.exe ()
 
==================== Internet (Whitelisted) ====================
 
(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)
 
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
Handler: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL No File
Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WINDOW~4\MESSEN~1\MSGRAP~1.DLL No File
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.0.1
 
FireFox:
========
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
 
Chrome: 
=======
CHR HomePage: hxxp://www.google.com/
CHR DefaultSearchKeyword: mysearchdial.com
CHR DefaultSearchProvider: Mysearchdial
CHR DefaultSuggestURL: {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR Extension: (Skype Invisible Status Detector) - C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\bpaiidihgcehbmalapchgbeikblhgoba [2014-08-08]
CHR Extension: (cosstminn) - C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dleopkkmgnmnmcnhgeamgjnjcbflknom [2014-08-16]
CHR Extension: (click-n-mark) - C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\jbpfkjlomjepcimahhajjchpgpjkcfmg [2014-08-16]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-05]
CHR Extension: (cosstminn) - C:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\dleopkkmgnmnmcnhgeamgjnjcbflknom\2.0 [2014-08-16]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
 
========================== Services (Whitelisted) =================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [434176 2006-08-02] (Intel Corporation) [File not signed]
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1809720 2014-05-12] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [860472 2014-05-12] (Malwarebytes Corporation)
R2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2006-08-02] (Intel Corporation) [File not signed]
R2 S24EventMonitor; C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe [937984 2006-08-02] (Intel Corporation ) [File not signed]
R2 tcsd_win32.exe; C:\Program Files\NTRU Cryptosystems\NTRU Hybrid TSS v2.0.25\bin\tcsd_win32.exe [180224 2006-06-12] () [File not signed]
S3 aspnet_state; %SystemRoot%\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [X]
S2 DataSvr2; "C:\Program Files\Wave Systems Corp\Common\DataServer.exe" [X]
S2 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X]
S3 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X]
 
==================== Drivers (Whitelisted) ====================
 
(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)
 
R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21419 2050-10-19] (Meetinghouse Data Communications) [File not signed]
R3 HSFHWAZL; C:\WINDOWS\System32\DRIVERS\HSFHWAZL.sys [201600 2005-07-22] (Conexant Systems, Inc.)
R3 HSF_DPV; C:\WINDOWS\System32\DRIVERS\HSF_DPV.sys [1035008 2005-07-22] (Conexant Systems, Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2014-05-12] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [110296 2014-08-18] (Malwarebytes Corporation)
R3 NETw3x32; C:\WINDOWS\System32\DRIVERS\NETw3x32.sys [1709696 2006-09-27] (Intel® Corporation)
R2 s24trans; C:\WINDOWS\System32\DRIVERS\s24trans.sys [12544 2006-08-02] (Intel Corporation) [File not signed]
S3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1246456 2007-09-05] (IDT, Inc.)
S4 IntelIde; No ImagePath
S3 UIUSys; system32\DRIVERS\UIUSYS.SYS [X]
U1 WS2IFSL; 
 
==================== NetSvcs (Whitelisted) ===================
 
 
(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)
 
 
==================== One Month Created Files and Folders ========
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2050-10-19 15:13 - 2050-10-19 15:13 - 00000000 ____D () C:\dell
2050-10-19 14:53 - 2013-06-21 13:11 - 00005208 _____ () C:\WINDOWS\system32\pid.PNF
2050-10-19 14:52 - 2050-10-19 14:52 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2050-10-19 14:52 - 2014-08-18 16:47 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2050-10-19 14:52 - 2014-08-18 16:47 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2050-10-19 14:52 - 2001-08-17 14:59 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\audstub.sys
2050-10-19 14:51 - 2008-04-14 05:42 - 00074240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbui.dll
2050-10-19 14:51 - 2008-04-14 05:42 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbui.dll
2050-10-19 14:51 - 2008-04-14 01:10 - 00057600 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\redbook.sys
2050-10-19 14:51 - 2008-04-14 01:06 - 00014208 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\battc.sys
2050-10-19 14:51 - 2008-04-14 01:06 - 00013952 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\CmBatt.sys
2050-10-19 14:51 - 2008-04-14 01:06 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\compbatt.sys
2050-10-19 14:51 - 2008-04-14 01:06 - 00008832 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wmiacpi.sys
2050-10-19 14:50 - 2050-10-19 14:52 - 00002148 _____ () C:\WINDOWS\regopt.log
2050-10-19 14:50 - 2050-10-19 14:50 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2050-10-19 14:50 - 2050-10-19 14:50 - 00000000 ____D () C:\Program Files\Common Files\ODBC
2050-10-19 14:50 - 2050-10-19 14:32 - 00001393 _____ () C:\WINDOWS\imsins.BAK
2050-10-19 14:50 - 2050-10-19 13:58 - 00004161 _____ () C:\WINDOWS\ODBCINST.INI
2050-10-19 14:50 - 2014-08-18 16:52 - 00470840 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2050-10-19 14:50 - 2013-12-11 23:53 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2050-10-19 14:50 - 2013-06-26 20:37 - 00023905 _____ () C:\WINDOWS\FaxSetup.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00020637 _____ () C:\WINDOWS\ocgen.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00019718 _____ () C:\WINDOWS\comsetup.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00013658 _____ () C:\WINDOWS\tsoc.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00010225 _____ () C:\WINDOWS\ntdtcsetup.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00002667 _____ () C:\WINDOWS\iis6.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00001569 _____ () C:\WINDOWS\ocmsn.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00001489 _____ () C:\WINDOWS\msgsocm.log
2050-10-19 14:50 - 2013-06-26 20:37 - 00001374 _____ () C:\WINDOWS\imsins.log
2050-10-19 14:50 - 2008-04-14 13:00 - 01685606 ____C () C:\WINDOWS\system32\dllcache\sam.spd
2050-10-19 14:50 - 2008-04-14 13:00 - 00774144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spttseng.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00741376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapi.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00643717 ____C () C:\WINDOWS\system32\dllcache\ltts1033.lxa
2050-10-19 14:50 - 2008-04-14 13:00 - 00605050 ____C () C:\WINDOWS\system32\dllcache\r1033tts.lxa
2050-10-19 14:50 - 2008-04-14 13:00 - 00176157 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\dgrpsetu.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00176157 _____ (Digi International, Inc.) C:\WINDOWS\system32\dgrpsetu.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00155648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapi.cpl
2050-10-19 14:50 - 2008-04-14 13:00 - 00126912 _____ (Microsoft Corporation) C:\WINDOWS\system\MSVIDEO.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00109456 _____ (Microsoft Corporation) C:\WINDOWS\system\AVIFILE.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00103424 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnclass.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00103424 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\EqnClass.Dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00085020 ____C (Digi International) C:\WINDOWS\system32\dllcache\dgsetup.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00085020 _____ (Digi International) C:\WINDOWS\system32\dgsetup.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\OLECLI.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spcommon.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00073376 _____ (Microsoft Corporation) C:\WINDOWS\system\MCIAVI.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00069584 _____ (Microsoft Corporation) C:\WINDOWS\system\AVICAP.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_869.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_866.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_857.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_855.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_852.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_737.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 _____ () C:\WINDOWS\system32\c_869.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 _____ () C:\WINDOWS\system32\c_866.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 _____ () C:\WINDOWS\system32\c_857.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 _____ () C:\WINDOWS\system32\c_855.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 _____ () C:\WINDOWS\system32\c_852.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066594 _____ () C:\WINDOWS\system32\c_737.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_875.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28603.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28599.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28597.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28595.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28594.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20127.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10082.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10081.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10029.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10017.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10010.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10007.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10006.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_875.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_28603.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_28599.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\C_28597.NLS
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\C_28595.NLS
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\C_28594.NLS
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_20127.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10082.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10081.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10029.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10017.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10010.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10007.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00066082 _____ () C:\WINDOWS\system32\c_10006.nls
2050-10-19 14:50 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spcplui.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapisvr.exe
2050-10-19 14:50 - 2008-04-14 13:00 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system\MCIWAVE.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00025264 _____ (Microsoft Corporation) C:\WINDOWS\system\MCISEQ.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00024661 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxcoins.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00024661 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\spxcoins.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0408.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040e.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt041f.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0419.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0415.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0405.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system\TAPI.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\taskman.exe
2050-10-19 14:50 - 2008-04-14 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\TASKMAN.EXE
2050-10-19 14:50 - 2008-04-14 13:00 - 00013600 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irclass.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\irclass.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irenum.sys
2050-10-19 14:50 - 2008-04-14 13:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys
2050-10-19 14:50 - 2008-04-14 13:00 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\LZEXPAND.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\VER.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\batt.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\batt.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00008192 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhept.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhept.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00007168 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdycl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdsl1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdsl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdpl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhu.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhela3.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz2.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcr.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\KBDAL.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdycl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsl1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdpl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhu.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhela3.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz2.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcr.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdal.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtuq.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtuf.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlv1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlv.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhela2.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdgkl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdest.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtuq.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtuf.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlv1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlv.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhela2.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgkl.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdest.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdycc.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbduzb.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdur.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtat.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdru1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdru.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdro.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdpl1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdmon.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlt1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlt.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdkyr.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdkaz.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhu1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe319.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe220.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdbu.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdblr.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdazel.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdaze.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdycc.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbduzb.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdur.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtat.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdru1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdru.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdro.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdpl1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdmon.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlt1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlt.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkyr.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkaz.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhu1.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe319.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe220.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdbu.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdblr.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdazel.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdaze.dll
2050-10-19 14:50 - 2008-04-14 13:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2050-10-19 14:50 - 2008-04-14 13:00 - 00004048 _____ (Microsoft Corporation) C:\WINDOWS\system\TIMER.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00003360 _____ (Microsoft Corporation) C:\WINDOWS\system\SYSTEM.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00002577 ____N () C:\WINDOWS\system32\CONFIG.TMP
2050-10-19 14:50 - 2008-04-14 13:00 - 00002176 _____ (Microsoft Corporation) C:\WINDOWS\system\VGA.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00002032 _____ (Microsoft Corporation) C:\WINDOWS\system\MOUSE.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00002000 _____ (Microsoft Corporation) C:\WINDOWS\system\KEYBOARD.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00001744 _____ (Microsoft Corporation) C:\WINDOWS\system\SOUND.DRV
2050-10-19 14:50 - 2008-04-14 13:00 - 00001688 _____ () C:\WINDOWS\system32\AUTOEXEC.NT
2050-10-19 14:50 - 2008-04-14 13:00 - 00001152 _____ (Microsoft Corporation) C:\WINDOWS\system\MMTASK.TSK
2050-10-19 14:50 - 2008-04-14 13:00 - 00000888 ____C () C:\WINDOWS\system32\dllcache\sam.sdf
2050-10-19 14:49 - 2050-10-19 14:49 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Temp
2050-10-19 14:49 - 2050-10-19 14:01 - 00173643 _____ () C:\WINDOWS\setupact.log
2050-10-19 14:49 - 2014-08-18 16:47 - 00525216 _____ () C:\WINDOWS\setupapi.log
2050-10-19 14:49 - 2013-12-31 19:35 - 00117360 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2050-10-19 14:49 - 2008-04-14 13:00 - 02144487 ____C () C:\WINDOWS\system32\dllcache\NT5.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 01296669 ____R () C:\WINDOWS\SET3.tmp
2050-10-19 14:49 - 2008-04-14 13:00 - 01296669 ____C () C:\WINDOWS\system32\dllcache\SP3.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 01088840 ____R () C:\WINDOWS\SET4.tmp
2050-10-19 14:49 - 2008-04-14 13:00 - 01088840 ____C () C:\WINDOWS\system32\dllcache\NTPRINT.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00797189 ____C () C:\WINDOWS\system32\dllcache\NT5IIS.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00402264 ____C () C:\WINDOWS\system32\dllcache\NT5INF.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00399645 ____C () C:\WINDOWS\system32\dllcache\MAPIMIG.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00171588 ____C () C:\WINDOWS\system32\dllcache\startoc.cat
2050-10-19 14:49 - 2008-04-14 13:00 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system\WINSPOOL.DRV
2050-10-19 14:49 - 2008-04-14 13:00 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\NOTEPAD.EXE
2050-10-19 14:49 - 2008-04-14 13:00 - 00068768 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2050-10-19 14:49 - 2008-04-14 13:00 - 00037484 ____C () C:\WINDOWS\system32\dllcache\MW770.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00034063 ____C () C:\WINDOWS\system32\dllcache\FP4.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00026991 ____C () C:\WINDOWS\system32\dllcache\msn7.cat
2050-10-19 14:49 - 2008-04-14 13:00 - 00016535 ____R () C:\WINDOWS\SET8.tmp
2050-10-19 14:49 - 2008-04-14 13:00 - 00016535 ____C () C:\WINDOWS\system32\dllcache\IMS.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00014433 ____C () C:\WINDOWS\system32\dllcache\msn9.cat
2050-10-19 14:49 - 2008-04-14 13:00 - 00013472 ____C () C:\WINDOWS\system32\dllcache\HPCRDP.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00012363 ____C () C:\WINDOWS\system32\dllcache\MSMSGS.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00010027 ____C () C:\WINDOWS\system32\dllcache\MSTSWEB.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00008574 ____C () C:\WINDOWS\system32\dllcache\IASNT4.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00007382 ____C () C:\WINDOWS\system32\dllcache\OEMBIOS.CAT
2050-10-19 14:49 - 2008-04-14 13:00 - 00007334 ____C () C:\WINDOWS\system32\dllcache\wmerrenu.cat
2050-10-19 14:49 - 2008-04-14 06:42 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\storprop.dll
2050-10-19 14:48 - 2050-10-19 14:48 - 01064960 _____ () C:\WINDOWS\system32\config\software.sav
2050-10-19 14:48 - 2050-10-19 14:48 - 00909312 _____ () C:\WINDOWS\system32\config\system.sav
2050-10-19 14:48 - 2050-10-19 14:48 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2050-10-19 14:48 - 2050-10-19 14:48 - 00094208 _____ () C:\WINDOWS\system32\config\default.sav
2050-10-19 14:48 - 2050-10-19 14:48 - 00001024 ____H () C:\WINDOWS\system32\config\userdiff.LOG
2050-10-19 14:48 - 2050-10-19 14:48 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
2050-10-19 14:48 - 2050-10-19 13:53 - 00000211 ___SH () C:\boot.ini
2050-10-19 14:41 - 2050-10-19 14:50 - 00000000 ____D () C:\WINDOWS\system
2050-10-19 14:41 - 2050-10-19 14:48 - 00000000 ____D () C:\WINDOWS\system32\usmt
2050-10-19 14:41 - 2050-10-19 14:48 - 00000000 ____D () C:\WINDOWS\L2Schemas
2050-10-19 14:41 - 2050-10-19 14:47 - 00000000 ____D () C:\WINDOWS\system32\scripting
2050-10-19 14:41 - 2050-10-19 14:47 - 00000000 ____D () C:\WINDOWS\system32\npp
2050-10-19 14:41 - 2050-10-19 14:47 - 00000000 ____D () C:\WINDOWS\PeerNet
2050-10-19 14:41 - 2050-10-19 14:47 - 00000000 ____D () C:\WINDOWS\msagent
2050-10-19 14:41 - 2050-10-19 14:43 - 00000000 ____D () C:\WINDOWS\system32\ras
2050-10-19 14:41 - 2050-10-19 14:43 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2050-10-19 14:41 - 2050-10-19 14:42 - 00000000 ____D () C:\WINDOWS\system32\1033
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\wins
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\ShellExt
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\mui
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\IME
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\export
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\Drivers\disdn
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\dhcp
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\3com_dmi
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\3076
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\2052
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1054
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1042
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1041
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1037
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1031
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1028
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1025
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Resources
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Provisioning
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\mui
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\java
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Driver Cache
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Connection Wizard
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\addins
2050-10-19 14:41 - 2050-10-19 14:32 - 00000000 ____D () C:\WINDOWS\Media
2050-10-19 14:41 - 2050-10-19 13:59 - 00000000 ____D () C:\WINDOWS\security
2050-10-19 14:41 - 2050-10-19 13:59 - 00000000 ____D () C:\WINDOWS\repair
2050-10-19 14:41 - 2050-10-19 13:59 - 00000000 ____D () C:\WINDOWS\ime
2050-10-19 14:41 - 2050-10-19 13:58 - 00000000 ___RD () C:\WINDOWS\Web
2050-10-19 14:41 - 2050-10-19 13:58 - 00000000 ____D () C:\WINDOWS\system32\ias
2050-10-19 14:41 - 2050-10-19 13:55 - 00000000 ____D () C:\WINDOWS\Cursors
2050-10-19 14:41 - 2014-07-04 22:12 - 00000000 ____D () C:\WINDOWS\system32\spool
2050-10-19 14:41 - 2013-12-11 23:52 - 00000000 ____D () C:\WINDOWS\pchealth
2050-10-19 14:41 - 2013-06-26 20:31 - 00000000 ____D () C:\WINDOWS\Help
2050-10-19 14:41 - 2013-06-26 10:12 - 00000000 ____D () C:\WINDOWS\twain_32
2050-10-19 14:34 - 2050-10-19 14:35 - 00000000 __SHD () C:\Documents and Settings\Owner\PrivacIE
2050-10-19 14:34 - 2050-10-19 14:34 - 00000000 __SHD () C:\Documents and Settings\Owner\IETldCache
2050-10-19 14:34 - 2014-01-31 17:22 - 00000000 ____D () C:\Documents and Settings\Owner\Local Settings\Application Data\Adobe
2050-10-19 14:34 - 2013-11-27 16:19 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\Adobe
2050-10-19 14:32 - 2050-10-19 14:33 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2050-10-19 14:32 - 2050-10-19 14:32 - 00024346 _____ () C:\WINDOWS\updspapi.log
2050-10-19 14:32 - 2050-10-19 14:32 - 00001804 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
2050-10-19 14:32 - 2050-10-19 14:32 - 00001729 _____ () C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
2050-10-19 14:32 - 2050-10-19 14:32 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2050-10-19 14:32 - 2050-10-19 14:32 - 00000000 ____D () C:\Program Files\Adobe
2050-10-19 14:32 - 2013-07-02 09:05 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2050-10-19 14:32 - 2013-06-26 20:37 - 00007628 _____ () C:\WINDOWS\spupdsvc.log
2050-10-19 14:31 - 2050-10-19 14:31 - 00000000 __HDC () C:\WINDOWS\ie8
2050-10-19 14:31 - 2009-01-07 18:21 - 00026144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spupdsvc.exe
2050-10-19 14:31 - 2009-01-07 18:20 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2050-10-19 14:30 - 2050-10-19 14:32 - 00055545 _____ () C:\WINDOWS\ie8.log
2050-10-19 14:30 - 2050-10-19 14:32 - 00030010 _____ () C:\WINDOWS\ie8_main.log
2050-10-19 14:30 - 2050-10-19 14:31 - 00000000 ___SD () C:\Documents and Settings\All Users\Start Menu\Programs\OpenOffice.org 3.2
2050-10-19 14:30 - 2050-10-19 14:30 - 00000905 _____ () C:\Documents and Settings\All Users\Desktop\OpenOffice.org 3.2.lnk
2050-10-19 14:30 - 2050-10-19 14:30 - 00000000 ____D () C:\Program Files\OpenOffice.org 3
2050-10-19 14:27 - 2050-10-19 14:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
2050-10-19 14:26 - 2050-10-19 14:26 - 00021419 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2050-10-19 14:26 - 2050-10-19 14:26 - 00007236 _____ () C:\WINDOWS\DPINST.LOG
2050-10-19 14:26 - 2050-10-19 14:26 - 00000308 _____ () C:\WINDOWS\system32\results.txt
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\NetworkService\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\Default User\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Intel
2050-10-19 14:26 - 2006-09-27 02:36 - 01709696 _____ (Intel® Corporation) C:\WINDOWS\system32\Drivers\NETw3x32.sys
2050-10-19 14:26 - 2006-07-28 02:46 - 02732032 _____ (Intel Corporation) C:\WINDOWS\system32\NETw3r32.dll
2050-10-19 14:26 - 2006-07-28 02:45 - 00561152 _____ (Intel Corporation) C:\WINDOWS\system32\NETw3c32.dll
2050-10-19 14:24 - 2050-10-19 14:24 - 00001446 _____ () C:\WINDOWS\COM+.log
2050-10-19 14:24 - 2008-04-14 00:15 - 00026368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbstor.sys
2050-10-19 14:24 - 2008-04-14 00:15 - 00026368 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2050-10-19 14:24 - 2007-03-30 20:58 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2050-10-19 14:23 - 2008-02-22 07:06 - 00360448 _____ (NVIDIA Corporation) C:\WINDOWS\system32\NVUNINST.EXE
2050-10-19 14:22 - 2013-06-26 10:13 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2050-10-19 14:22 - 2008-04-14 06:42 - 00129536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksproxy.ax
2050-10-19 14:22 - 2008-04-14 06:42 - 00129536 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2050-10-19 14:22 - 2008-04-14 06:41 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksuser.dll
2050-10-19 14:22 - 2008-04-14 06:41 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksuser.dll
2050-10-19 14:22 - 2008-04-14 01:49 - 00146048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\portcls.sys
2050-10-19 14:22 - 2008-04-14 01:49 - 00146048 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2050-10-19 14:22 - 2008-04-14 01:15 - 00060160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmk.sys
2050-10-19 14:22 - 2008-04-14 01:15 - 00060160 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2050-10-19 14:22 - 2008-04-14 00:47 - 00083072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wdmaud.sys
2050-10-19 14:22 - 2008-04-14 00:47 - 00083072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys
2050-10-19 14:22 - 2008-04-14 00:45 - 00060800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sysaudio.sys
2050-10-19 14:22 - 2008-04-14 00:45 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00172416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kmixer.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00172416 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00056576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swmidi.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00056576 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00052864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmusic.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\DMusic.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00006272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\splitter.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmkaud.sys
2050-10-19 14:22 - 2008-04-14 00:15 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2050-10-19 14:22 - 2008-04-14 00:09 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mskssrv.sys
2050-10-19 14:22 - 2008-04-14 00:09 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSKSSRV.sys
2050-10-19 14:22 - 2008-04-14 00:09 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspclock.sys
2050-10-19 14:22 - 2008-04-14 00:09 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPCLOCK.sys
2050-10-19 14:22 - 2008-04-14 00:09 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspqm.sys
2050-10-19 14:22 - 2008-04-14 00:09 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPQM.sys
2050-10-19 14:22 - 2008-04-13 22:09 - 00142592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aec.sys
2050-10-19 14:22 - 2008-04-13 22:09 - 00142592 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys
2050-10-19 14:20 - 2050-10-19 14:26 - 00000000 ____D () C:\Program Files\Intel
2050-10-19 14:20 - 2050-10-19 14:25 - 00000000 ____D () C:\Intel
2050-10-19 14:20 - 2050-10-19 14:20 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2050-10-19 14:20 - 2050-10-19 14:20 - 00000000 ____D () C:\WINDOWS\system32\Lang
2050-10-19 14:20 - 2007-04-10 22:14 - 00400152 _____ (Intel® Corporation) C:\WINDOWS\system32\igxpun.exe
2050-10-19 14:20 - 2007-03-30 23:22 - 00025472 _____ () C:\WINDOWS\system32\igxpxs32.vp
2050-10-19 14:20 - 2007-03-30 23:12 - 00204800 _____ () C:\WINDOWS\system32\igfxCoIn_v4814.dll
2050-10-19 14:20 - 2007-03-30 22:34 - 05704672 _____ (Intel Corporation) C:\WINDOWS\system32\Drivers\igxpmp32.sys
2050-10-19 14:20 - 2007-03-30 22:34 - 02556928 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdx32.dll
2050-10-19 14:20 - 2007-03-30 22:33 - 01612992 _____ (Intel Corporation) C:\WINDOWS\system32\igxpdv32.dll
2050-10-19 14:20 - 2007-03-30 22:33 - 00149504 _____ (Intel Corporation) C:\WINDOWS\system32\igxpgd32.dll
2050-10-19 14:20 - 2007-03-30 22:33 - 00057344 _____ (Intel Corporation) C:\WINDOWS\system32\igxprd32.dll
2050-10-19 14:20 - 2007-03-30 21:33 - 00450560 _____ (Intel Corporation) C:\WINDOWS\system32\igldev32.dll
2050-10-19 14:20 - 2007-03-30 21:31 - 02334720 _____ (Intel Corporation) C:\WINDOWS\system32\iglicd32.dll
2050-10-19 14:20 - 2007-03-30 21:08 - 00192512 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrdeu.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrita.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00188416 _____ (Intel Corporation) C:\WINDOWS\system32\igfxresp.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00184320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrfra.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00180224 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrptb.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00131072 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrjpn.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00126976 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrkor.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrcht.lrc
2050-10-19 14:20 - 2007-03-30 21:08 - 00110592 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrchs.lrc
2050-10-19 14:20 - 2007-03-30 21:01 - 00535320 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcfg.exe
2050-10-19 14:20 - 2007-03-30 21:00 - 00162584 _____ (Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
2050-10-19 14:20 - 2007-03-30 21:00 - 00138008 _____ (Intel Corporation) C:\WINDOWS\system32\igfxtray.exe
2050-10-19 14:20 - 2007-03-30 20:59 - 00252696 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
2050-10-19 14:20 - 2007-03-30 20:59 - 00204800 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdev.dll
2050-10-19 14:20 - 2007-03-30 20:59 - 00200704 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpph.dll
2050-10-19 14:20 - 2007-03-30 20:59 - 00170776 _____ (Intel Corporation) C:\WINDOWS\system32\igfxzoom.exe
2050-10-19 14:20 - 2007-03-30 20:59 - 00166680 _____ (Intel Corporation) C:\WINDOWS\system32\igfxext.exe
2050-10-19 14:20 - 2007-03-30 20:59 - 00138008 _____ (Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
2050-10-19 14:20 - 2007-03-30 20:59 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxdo.dll
2050-10-19 14:20 - 2007-03-30 20:59 - 00122880 _____ (Intel Corporation) C:\WINDOWS\system32\igfxcpl.cpl
2050-10-19 14:20 - 2007-03-30 20:59 - 00102400 _____ (Intel Corporation) C:\WINDOWS\system32\hccutils.dll
2050-10-19 14:20 - 2007-03-30 20:59 - 00047616 _____ (Intel Corporation) C:\WINDOWS\system32\igfxsrvc.dll
2050-10-19 14:20 - 2007-03-30 20:59 - 00024576 _____ (Intel Corporation) C:\WINDOWS\system32\igfxexps.dll
2050-10-19 14:20 - 2007-03-30 20:58 - 03293184 _____ (Intel Corporation) C:\WINDOWS\system32\igfxress.dll
2050-10-19 14:20 - 2007-03-30 20:58 - 00172032 _____ (Intel Corporation) C:\WINDOWS\system32\igfxrenu.lrc
2050-10-19 14:20 - 2007-03-30 20:53 - 00002096 _____ () C:\WINDOWS\system32\igxpxk32.vp
2050-10-19 14:20 - 2006-11-10 17:25 - 00319456 _____ (Microsoft Corporation) C:\WINDOWS\system32\difxapi.dll
2050-10-19 14:20 - 2006-01-23 19:29 - 00121232 _____ () C:\WINDOWS\system32\IScrNBR.bmp
2050-10-19 14:20 - 2006-01-23 19:29 - 00121232 _____ () C:\WINDOWS\system32\IScrNB.bmp
2050-10-19 14:19 - 2050-10-19 14:20 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2050-10-19 14:19 - 2050-10-19 14:20 - 00000000 ____D () C:\Program Files\Wave Systems Corp
2050-10-19 14:19 - 2050-10-19 14:19 - 00000128 _____ () C:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat
2050-10-19 14:19 - 2050-10-19 14:19 - 00000000 ____D () C:\WINDOWS\system32\Test
2050-10-19 14:19 - 2050-10-19 14:19 - 00000000 ____D () C:\Program Files\NTRU Cryptosystems
2050-10-19 14:19 - 2050-10-19 14:19 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Wave Systems Corp
2050-10-19 14:18 - 2050-10-19 14:18 - 00000000 ____D () C:\WINDOWS\system32\URTTemp
2050-10-19 14:18 - 2014-07-06 06:59 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2050-10-19 14:17 - 2050-10-19 14:19 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2050-10-19 14:17 - 2050-10-19 14:17 - 00000668 _____ () C:\WINDOWS\KB921411.log
2050-10-19 14:17 - 2050-10-19 14:17 - 00000000 ____D () C:\Program Files\Dell
2050-10-19 14:16 - 2013-11-27 20:40 - 00000000 ____D () C:\Program Files\Broadcom
2050-10-19 14:15 - 2050-10-19 14:15 - 00000020 ___SH () C:\Documents and Settings\LocalService\ntuser.ini
2050-10-19 14:15 - 2050-10-19 14:15 - 00000000 __SHD () C:\Documents and Settings\LocalService
2050-10-19 14:15 - 2050-10-19 14:15 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2050-10-19 14:15 - 2014-08-18 16:47 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2050-10-19 14:15 - 2014-08-18 12:45 - 00032484 _____ () C:\WINDOWS\SchedLgU.Txt
2050-10-19 14:02 - 2050-10-19 14:34 - 00000000 ___RD () C:\Documents and Settings\Owner\Start Menu\Programs\Accessories
2050-10-19 14:02 - 2050-10-19 14:02 - 00000738 _____ () C:\Documents and Settings\Owner\Start Menu\Programs\Outlook Express.lnk
2050-10-19 14:02 - 2014-08-18 17:48 - 00000000 ____D () C:\Documents and Settings\Owner\Local Settings\Temp
2050-10-19 14:02 - 2014-08-18 12:45 - 00000178 ___SH () C:\Documents and Settings\Owner\ntuser.ini
2050-10-19 14:02 - 2014-08-17 14:06 - 00000000 ____D () C:\Documents and Settings\Owner
2050-10-19 14:02 - 2014-08-16 19:55 - 00000803 _____ () C:\Documents and Settings\Owner\Start Menu\Programs\Internet Explorer.lnk
2050-10-19 14:02 - 2014-01-31 17:35 - 00001599 _____ () C:\Documents and Settings\Owner\Start Menu\Programs\Remote Assistance.lnk
2050-10-19 14:02 - 2013-07-06 17:01 - 00000792 _____ () C:\Documents and Settings\Owner\Start Menu\Programs\Windows Media Player.lnk
2050-10-19 14:01 - 2050-10-19 14:01 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2050-10-19 14:01 - 2050-10-19 14:01 - 00000020 ___SH () C:\Documents and Settings\NetworkService\ntuser.ini
2050-10-19 14:01 - 2050-10-19 14:01 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2050-10-19 14:01 - 2050-10-19 14:01 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Temp
2050-10-19 14:00 - 2008-04-14 13:00 - 01875968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.lex
2050-10-19 14:00 - 2008-04-14 13:00 - 01158818 ____C () C:\WINDOWS\system32\dllcache\korwbrkr.lex
2050-10-19 14:00 - 2008-04-14 13:00 - 00811064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjp81k.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00716856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpcus.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00571392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlgnt.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00482304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlgnt.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00471102 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskdic.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00456192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsvc.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00455168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintsetp.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00426041 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\voicepad.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00368696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpcic.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00358400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpincl.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00340023 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjp81.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00315455 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskf.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00311359 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsv.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00307257 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdct.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00274489 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjputyc.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00262200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjputy.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00259072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpcl.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smi2smir.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00233527 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjprw.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00229439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\multibox.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00208952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpmig.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00196665 ____C () C:\WINDOWS\system32\dllcache\imjpinst.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00188416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpsmir.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\thawbrkr.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00175104 ____C () C:\WINDOWS\system32\dllcache\pintlcsa.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winzm.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winsp.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winpy.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00155705 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdsvr.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00143422 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\softkey.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00134339 ____C () C:\WINDOWS\system32\dllcache\imekr.lex
2050-10-19 14:00 - 2008-04-14 13:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxviceo.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtstocom.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00106496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrcic.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00102463 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsm.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00102456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imlang.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00101376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusbusd.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekr61.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.sys
2050-10-19 14:00 - 2008-04-14 13:00 - 00092032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00086073 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\voicesub.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmbx.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00083748 ____C () C:\WINDOWS\system32\dllcache\prcp.nls
2050-10-19 14:00 - 2008-04-14 13:00 - 00083748 ____C () C:\WINDOWS\system32\dllcache\prc.nls
2050-10-19 14:00 - 2008-04-14 13:00 - 00081976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdct.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia330.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia001.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00079360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winar30.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00079360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phon.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quick.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00076288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniime.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00072704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wingb.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00070656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\korwbrkr.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00070144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlphr.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmigrate.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winime.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00065024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unicdime.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imkrinst.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00059392 ____C () C:\WINDOWS\system32\dllcache\imscinst.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00057398 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdadm.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlcsd.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00048256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w32.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00047066 ____C () C:\WINDOWS\system32\dllcache\ksc.nls
2050-10-19 14:00 - 2008-04-14 13:00 - 00045109 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpuex.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlphr.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmig.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00041600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiregmv.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpthrd.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm9aw.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00036927 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs411.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iprip.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lmmib2.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00033280 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmp.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb6w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma3w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.sys
2050-10-19 14:00 - 2008-04-14 13:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm87w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm81w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00029184 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw330ext.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8cw.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00028288 ____C () C:\WINDOWS\system32\dllcache\xjis.nls
2050-10-19 14:00 - 2008-04-14 13:00 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rw001ext.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm93w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm92w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm90w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8dw.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8aw.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm89w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\romanime.ime
2050-10-19 14:00 - 2008-04-14 13:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm59w.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lpdsvc.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00021896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdipx.sys
2050-10-19 14:00 - 2008-04-14 13:00 - 00020736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ramdisk.sys
2050-10-19 14:00 - 2008-04-14 13:00 - 00019464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdspx.sys
2050-10-19 14:00 - 2008-04-14 13:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\simptcp.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lprmon.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jupiw.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quser.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsm.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs404.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs804.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\register.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsprof.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs412.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00013192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdasync.sys
2050-10-19 14:00 - 2008-04-14 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxmcro.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmigrate.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpstup.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\query.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecat.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmptrap.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migregdb.exe
2050-10-19 14:00 - 2008-04-14 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecnt.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnec95.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdibm02.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlk41a.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpmib.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxgl.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth3.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth2.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlk41j.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinpun.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdax2.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd106n.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101a.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smimsgif.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsy.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdvntc.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdusa.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdurdu.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth1.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth0.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr2.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr1.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintel.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintam.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinmar.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinkan.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinhin.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinguj.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdindev.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdheb.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdfa.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv2.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv1.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda3.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda2.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda1.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgeo.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarmw.dll
2050-10-19 14:00 - 2008-04-14 13:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarme.dll
2050-10-19 14:00 - 2001-08-17 22:36 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
2050-10-19 14:00 - 2001-08-17 22:36 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
2050-10-19 14:00 - 2001-08-17 22:36 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
2050-10-19 14:00 - 2001-08-17 22:36 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll
2050-10-19 14:00 - 2001-08-17 22:36 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
2050-10-19 14:00 - 2001-08-17 22:36 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
2050-10-19 14:00 - 2001-08-17 22:36 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
2050-10-19 13:59 - 2050-10-19 13:59 - 00001599 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk
2050-10-19 13:59 - 2050-10-19 13:59 - 00000398 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk
2050-10-19 13:59 - 2050-10-19 13:59 - 00000000 ____D () C:\WINDOWS\system32\xircom
2050-10-19 13:59 - 2050-10-19 13:59 - 00000000 ____D () C:\Program Files\xerox
2050-10-19 13:59 - 2050-10-19 13:59 - 00000000 ____D () C:\Program Files\microsoft frontpage
2050-10-19 13:59 - 2014-01-31 17:35 - 00001607 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2050-10-19 13:59 - 2014-01-31 17:35 - 00001507 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
2050-10-19 13:59 - 2008-04-14 13:00 - 13463552 ____C () C:\WINDOWS\system32\dllcache\hwxjpn.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 10129408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxkor.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 10096640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxcht.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 01677824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chsbrkr.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00838144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtbrkr.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00562176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsst.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00514587 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\edb500.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00480256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintsetp.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00451584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsapi.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00400384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsxp32.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00397312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxstiff.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00331264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aqueue.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00285184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscomex.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00267776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssvc.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00246272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxst30.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00229376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscover.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00218112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_g18030.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00198656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintime.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00195618 ____C () C:\WINDOWS\system32\dllcache\c_10002.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00192512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxswzrd.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00189986 ____C () C:\WINDOWS\system32\dllcache\c_1361.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00187938 ____C () C:\WINDOWS\system32\dllcache\c_20005.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00186402 ____C () C:\WINDOWS\system32\dllcache\c_20001.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00185378 ____C () C:\WINDOWS\system32\dllcache\c_20003.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00180770 ____C () C:\WINDOWS\system32\dllcache\c_20932.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00180258 ____C () C:\WINDOWS\system32\dllcache\c_20004.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00180258 ____C () C:\WINDOWS\system32\dllcache\c_20000.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00177698 ____C () C:\WINDOWS\system32\dllcache\c_20949.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00177698 ____C () C:\WINDOWS\system32\dllcache\c_10003.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_20936.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_20002.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_10008.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00173568 ____C () C:\WINDOWS\system32\dllcache\chtskf.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00162850 ____C () C:\WINDOWS\system32\dllcache\c_10001.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00154112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsui.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00142848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclnt.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00132608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclntr.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscfgwz.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00108827 ____C () C:\WINDOWS\system32\dllcache\hanja.lex
2050-10-19 13:59 - 2008-04-14 13:00 - 00101888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntagnt.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtmbx.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntwin.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00082172 ____C () C:\WINDOWS\system32\dllcache\bopomofo.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dayi.ime
2050-10-19 13:59 - 2008-04-14 13:00 - 00078336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chajei.ime
2050-10-19 13:59 - 2008-04-14 13:00 - 00072192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscom.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00066728 ____C () C:\WINDOWS\system32\dllcache\big5.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_864.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_862.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_858.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_720.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_870.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_708.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28596.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_21027.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_21025.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20924.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20880.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20871.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20838.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20833.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20424.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20423.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20420.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20297.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20290.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20285.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20284.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20280.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20278.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20277.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20273.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20269.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20108.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20107.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20106.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20105.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1149.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1148.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1147.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1146.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1145.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1144.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1143.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1142.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1141.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1140.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1047.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10021.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10005.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10004.nls
2050-10-19 13:59 - 2008-04-14 13:00 - 00057856 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimgd.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00057399 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cplexe.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtskdic.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsevent.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00054528 ____C (Philips Semiconductors GmbH) C:\WINDOWS\system32\dllcache\cap7146.sys
2050-10-19 13:59 - 2008-04-14 13:00 - 00045056 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunid.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hostmib.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hanjadic.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00031744 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucmd.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsroute.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsdrv.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00025856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\et4000.sys
2050-10-19 13:59 - 2008-04-14 13:00 - 00024064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntcmd.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsmon.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsext32.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintlgnt.ime
2050-10-19 13:59 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0804.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0412.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0411.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040d.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0404.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0401.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cprofile.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgport.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\flattemp.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgusr.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chglogon.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssend.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00010752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_iscii.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\change.exe
2050-10-19 13:59 - 2008-04-14 13:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsperf.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\f3ahvoas.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsres.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_is2022.dll
2050-10-19 13:59 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftlx041e.dll
2050-10-19 13:59 - 2004-05-13 00:39 - 00876653 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awel.dll
2050-10-19 13:59 - 2004-05-13 00:39 - 00598071 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmc.dll
2050-10-19 13:59 - 2004-05-13 00:39 - 00184435 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4amsft.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00618605 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4autl.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00208896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmcsat.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00188494 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpcount.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00188480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgwiz.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00147513 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4apws.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00109328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98swin.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00102509 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4atxt.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00094208 ____C () C:\WINDOWS\system32\dllcache\fpencode.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00082035 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4anscp.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00049212 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awebs.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00049210 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4areg.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00041020 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avnb.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00032827 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptest.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00032826 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avss.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00024632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmcgi.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpexedll.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmdll.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00020538 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpremadm.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00020536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00016437 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.exe
2050-10-19 13:59 - 2003-03-24 16:52 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptsat.dll
2050-10-19 13:59 - 2003-03-24 16:52 - 00014608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98sadm.exe
2050-10-19 13:59 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
2050-10-19 13:59 - 2001-08-17 22:36 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
2050-10-19 13:59 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
2050-10-19 13:58 - 2050-10-19 13:58 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2050-10-19 13:58 - 2050-10-19 13:58 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2050-10-19 13:58 - 2050-10-19 13:58 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2050-10-19 13:58 - 2050-10-19 13:58 - 00002577 _____ () C:\WINDOWS\system32\CONFIG.NT
2050-10-19 13:58 - 2050-10-19 13:58 - 00000792 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Windows Media Player.lnk
2050-10-19 13:58 - 2050-10-19 13:58 - 00000488 ___RH () C:\WINDOWS\system32\WindowsLogon.manifest
2050-10-19 13:58 - 2050-10-19 13:58 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
2050-10-19 13:58 - 2050-10-19 13:58 - 00000000 __SHD () C:\Documents and Settings\All Users\DRM
2050-10-19 13:58 - 2050-10-19 13:58 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2050-10-19 13:58 - 2008-04-14 13:00 - 00112128 _____ (Microsoft Corporation) C:\WINDOWS\system32\mapi32.dll
2050-10-19 13:57 - 2050-10-19 13:59 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
2050-10-19 13:57 - 2050-10-19 13:57 - 00000786 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ___HD () C:\Program Files\WindowsUpdate
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\WINDOWS\srchasst


#12 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 19 August 2014 - 08:38 AM

2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\Program Files\Common Files\MSSoap
2050-10-19 13:57 - 2014-08-18 16:48 - 00373484 _____ () C:\WINDOWS\WindowsUpdate.log
2050-10-19 13:57 - 2014-08-16 18:58 - 00000000 ____D () C:\Program Files\Common Files\Services
2050-10-19 13:57 - 2012-06-04 17:35 - 00210968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuweb.dll
2050-10-19 13:57 - 2012-06-04 17:35 - 00210968 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuweb.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 01933848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaueng.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 01933848 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 00577048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuapi.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 00577048 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 00329240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wucltui.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 00329240 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltui.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 00219160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaucpl.cpl
2050-10-19 13:57 - 2012-06-02 15:19 - 00219160 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaucpl.cpl
2050-10-19 13:57 - 2012-06-02 15:19 - 00053784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauclt.exe
2050-10-19 13:57 - 2012-06-02 15:19 - 00053784 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2050-10-19 13:57 - 2012-06-02 15:19 - 00035864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wups.dll
2050-10-19 13:57 - 2012-06-02 15:19 - 00035864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2050-10-19 13:57 - 2009-03-08 04:33 - 00759296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\VGX.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 04399505 ____C () C:\WINDOWS\system32\dllcache\nls302en.lex
2050-10-19 13:57 - 2008-04-14 13:00 - 04256768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2res.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 03166208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgr3en.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00786432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migrate.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00774144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setup_wm.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00726078 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srchui.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00502272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2fxa.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00409088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qmgr.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00409088 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00402432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2filt.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00368640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpvis.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00325632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2fxb.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00235520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssoap1.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00226816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpns.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00183296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaueng1.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng1.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00167936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2ae.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00165888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauclt1.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt1.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg723.acm
2050-10-19 13:57 - 2008-04-14 13:00 - 00099840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helphost.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpband.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00093184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieinfo5.ocx
2050-10-19 13:57 - 2008-04-14 13:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmplayer.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwtutor.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00064512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acctres.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\acctres.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwres.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00058434 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srchctls.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00048680 ___SH () C:\WINDOWS\winnt256.bmp
2050-10-19 13:57 - 2008-04-14 13:00 - 00048680 ___SH () C:\WINDOWS\winnt.bmp
2050-10-19 13:57 - 2008-04-14 13:00 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srdiag.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\trialoc.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msinfo32.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\notiflag.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\custsat.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wisc10.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssoapr.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brpinfo.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qmgrprxy.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgrprxy.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isignup.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icfgnt5.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfgnt5.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wb32.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmevtmsg.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cb32.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmevtmsg.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atrace.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\atrace.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx2.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx2.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2ext.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx4.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx3.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx3.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauserv.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hcappres.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauserv.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2res2.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00004639 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplayer2.exe
2050-10-19 13:57 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2eres.dll
2050-10-19 13:57 - 2008-04-14 13:00 - 00000984 ____C () C:\WINDOWS\system32\dllcache\srframe.mmf
2050-10-19 13:56 - 2050-10-19 14:03 - 00000000 ____D () C:\WINDOWS\system32\Restore
2050-10-19 13:56 - 2050-10-19 13:57 - 00000000 ____D () C:\Program Files\Outlook Express
2050-10-19 13:56 - 2050-10-19 13:57 - 00000000 ____D () C:\Program Files\NetMeeting
2050-10-19 13:56 - 2050-10-19 13:57 - 00000000 ____D () C:\Program Files\Movie Maker
2050-10-19 13:56 - 2050-10-19 13:56 - 00021640 _____ () C:\WINDOWS\system32\emptyregdb.dat
2050-10-19 13:56 - 2050-10-19 13:56 - 00000037 _____ () C:\WINDOWS\vbaddin.ini
2050-10-19 13:56 - 2050-10-19 13:56 - 00000036 _____ () C:\WINDOWS\vb.ini
2050-10-19 13:56 - 2050-10-19 13:56 - 00000000 ____D () C:\Program Files\ComPlus Applications
2050-10-19 13:56 - 2014-08-16 19:00 - 00000000 ____D () C:\Program Files\Common Files\System
2050-10-19 13:56 - 2009-03-08 14:09 - 00638816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2050-10-19 13:56 - 2009-03-08 04:24 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hmmapi.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 03558912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 02479616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoeres.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 01314816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoe.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 01032192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\conf.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00769024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpctr.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00744448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00691712 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcomm.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00691712 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00565248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobmain.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00554008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dao360.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00536576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00510976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00487424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledb32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00385024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\callcont.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00380416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rstrui.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00376832 ____C () C:\WINDOWS\system32\dllcache\msinfo.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00315392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasql.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00274944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstask.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstask.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00274432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mst120.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00274432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcfg.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcfg.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00252928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoeacct.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoeacct.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00249856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab32res.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00239104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srrstr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00233472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaora.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00229376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmas.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nac.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00217088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqlxmlx.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn1.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00204800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaps.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00200704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaprst.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00200704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadox.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00192512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\schedsvc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00192512 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00188416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmwb.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msh261.drv
2050-10-19 13:56 - 2008-04-14 13:00 - 00180224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadomd.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00172032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmoldwb.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00172032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwhelp.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00171008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srsvc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00171008 _____ (Microsoft Corporation) C:\WINDOWS\system32\srsvc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00169984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msconfig.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00155648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadds.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00151552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmft.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00150528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uploadm.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00143360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadco.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00129792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmgr.sys
2050-10-19 13:56 - 2008-04-14 13:00 - 00129792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2050-10-19 13:56 - 2008-04-14 13:00 - 00128512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2050-10-19 13:56 - 2008-04-14 13:00 - 00122368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobcomm.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00118784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdarem.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoert2.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00104448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oeimport.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pchshell.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjro.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00094208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdatl3.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00086528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\directdb.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn2.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00085504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabimp.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmchat.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado27.tlb
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado26.tlb
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado25.tlb
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isign32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ils.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\isign32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ils.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmcom.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaosp.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdial.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwdial.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00073472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sr.sys
2050-10-19 13:56 - 2008-04-14 13:00 - 00073472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sr.sys
2050-10-19 13:56 - 2008-04-14 13:00 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setup50.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msconf.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msconf.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srclient.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledb32r.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwphbk.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwphbk.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rrcm.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado21.tlb
2050-10-19 13:56 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado20.tlb
2050-10-19 13:56 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcf.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oemig50.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msimn.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mst123.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadrh15.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msador15.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\h323cc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcs.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oobebaln.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00049152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwutil.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetres.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetres.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00046080 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\safrslv.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrslv.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\confmrsl.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\safrcdlg.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\racpldlg.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrcdlg.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dcap32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00038400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pchsvc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdfmap.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oemiglib.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00034560 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mnmdd.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmdd.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabfind.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mnmsrvc.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdl.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00032768 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\isrdbg32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmsrvc.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00032768 _____ (Intel Corporation) C:\WINDOWS\system32\isrdbg32.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00030720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobshel.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabmig.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00029696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\safrdm.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrdm.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoobe.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmmkcert.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmasnt.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmmkcert.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxactps.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msader15.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaddsr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwrmind.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmc.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltMc.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdatt.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcer.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetwiz.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobweb.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedw.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hscupd.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltlib.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltlib.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobdl.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasqlr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaremr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaprsr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaorar.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcor.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcfr.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstinit.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstinit.exe
2050-10-19 13:56 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaurl.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasc.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaer.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaenum.dll
2050-10-19 13:56 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdadc.dll
2050-10-19 13:55 - 2050-10-19 13:55 - 00001022 _____ () C:\WINDOWS\sessmgr.setup.log
2050-10-19 13:55 - 2050-10-19 13:55 - 00000609 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
2050-10-19 13:55 - 2050-10-19 13:55 - 00000130 _____ () C:\WINDOWS\DtcInstall.log
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\Online Services
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\MSN Gaming Zone
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\Messenger
2050-10-19 13:55 - 2014-08-17 14:07 - 00000000 ____D () C:\WINDOWS\Registration
2050-10-19 13:55 - 2013-07-06 17:01 - 00001380 _____ () C:\WINDOWS\wmsetup.log
2050-10-19 13:55 - 2008-04-14 13:00 - 02178131 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlres.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 01817687 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgres.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 01175635 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzres.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 01039955 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnresm.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00780885 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrres.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00753236 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvseres.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00605696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\getuname.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\getuname.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00273920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiprov.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00227840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avtapi.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\avtapi.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00217160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnclim.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00138752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndvol32.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndvol32.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00126976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshearts.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshearts.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00120320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsprov.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmine.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmine.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\updprov.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00114688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\calc.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00113222 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zoneclim.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00093702 _____ () C:\WINDOWS\system32\subrange.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00082501 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckg.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00080384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\charmap.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\charmap.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00075264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipicmp.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avwav.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\avwav.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00066113 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvl.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00065978 _____ () C:\WINDOWS\Soap Bubbles.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00065954 _____ () C:\WINDOWS\Prairie Wind.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00065832 _____ () C:\WINDOWS\Santa Fe Stucco.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00063488 _____ () C:\WINDOWS\system32\wmimgmt.msc
2050-10-19 13:55 - 2008-04-14 13:00 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmplprov.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmimsg.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00060458 _____ () C:\WINDOWS\system32\ideograf.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.tlb
2050-10-19 13:55 - 2008-04-14 13:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\trnsprov.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00057409 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtz.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00056832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sol.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sol.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\freecell.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\freecell.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fwdprov.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00052224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmitimep.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00048706 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvse.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmi2xml.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00044544 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hticons.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00042577 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgzm.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00042575 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrzm.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00042574 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvsezm.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlzm.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzzm.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00041029 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zcorem.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpcons.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00040515 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkr.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00036937 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zclientm.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winchat.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winchat.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\regini.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\regini.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00032339 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniansi.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemads.tlb
2050-10-19 13:55 - 2008-04-14 13:00 - 00029760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\znetm.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00026680 _____ () C:\WINDOWS\River Sumida.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00026582 _____ () C:\WINDOWS\Greenstone.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00024006 _____ () C:\WINDOWS\system32\gb2312.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00022984 _____ () C:\WINDOWS\system32\bopomofo.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qwinsta.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msg.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtsadmin.tlb
2050-10-19 13:55 - 2008-04-14 13:00 - 00017362 _____ () C:\WINDOWS\Rhododendron.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00017336 _____ () C:\WINDOWS\Gone Fishing.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00017062 _____ () C:\WINDOWS\Coffee Bean.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unsecapp.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsshutdn.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qappsrv.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsshutdn.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016740 _____ () C:\WINDOWS\system32\shiftjis.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00016730 _____ () C:\WINDOWS\FeatherTexture.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmgmtr.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tskill.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avmeter.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\avmeter.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rwinsta.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cdmodem.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdmodem.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logoff.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsdiscon.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscon.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shadow.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\shadow.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00013894 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zonelibm.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmgmt.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00013312 ____C (Hilgraeve, Inc.) C:\WINDOWS\system32\dllcache\htrn_jis.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00013223 _____ () C:\WINDOWS\system32\tslabels.ini
2050-10-19 13:55 - 2008-04-14 13:00 - 00012876 _____ () C:\WINDOWS\system32\korean.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemads.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\reset.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00009522 _____ () C:\WINDOWS\Zapotec.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00008484 _____ () C:\WINDOWS\system32\kanji_2.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00006948 _____ () C:\WINDOWS\system32\kanji_1.uce
2050-10-19 13:55 - 2008-04-14 13:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\write.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\write.exe
2050-10-19 13:55 - 2008-04-14 13:00 - 00004677 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zeeverm.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpcfgex.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcfgex.dll
2050-10-19 13:55 - 2008-04-14 13:00 - 00003286 _____ () C:\WINDOWS\system32\tslabels.h
2050-10-19 13:55 - 2008-04-14 13:00 - 00001931 _____ () C:\WINDOWS\system32\msdtcprf.ini
2050-10-19 13:55 - 2008-04-14 13:00 - 00001272 _____ () C:\WINDOWS\Blue Lace 16.bmp
2050-10-19 13:55 - 2008-04-14 13:00 - 00001161 _____ () C:\WINDOWS\system32\usrlogon.cmd
2050-10-19 13:55 - 2008-04-14 13:00 - 00000768 _____ () C:\WINDOWS\system32\msdtcprf.h
2050-10-19 13:54 - 2050-10-19 13:56 - 00000000 ____D () C:\WINDOWS\system32\Com
2050-10-19 13:54 - 2050-10-19 13:55 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2050-10-19 13:54 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\Windows NT
2050-10-19 13:54 - 2050-10-19 13:54 - 00000200 _____ () C:\WINDOWS\cmsetacl.log
2050-10-19 13:54 - 2013-11-30 22:19 - 00000000 ____D () C:\Program Files\MSN
2050-10-19 13:54 - 2008-04-14 13:00 - 02061824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lhmstscx.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 02061824 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 01358848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cimwin32.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 01267200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsvcs.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 01267200 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00956928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtctm.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00956928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00677888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lhmstsc.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00677888 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00625664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrvut.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00625664 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00539648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comuid.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00539648 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00539136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dialer.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00538624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spider.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\spider.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00531456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcore.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00498688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clbcatq.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00498688 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00472064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00437248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00427008 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcprx.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00427008 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00347136 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hypertrm.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00343040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspaint.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00295424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\termsrv.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00290304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rhttpaa.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00290304 _____ (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00281088 ____C (Cinematronics) C:\WINDOWS\system32\dllcache\pinball.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00273920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemess.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\esscli.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00237056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\provthrd.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00226304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrv.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00226304 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00218112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcomn.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00212992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntevt.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00197120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemupgd.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00196608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiadap.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00196608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcntl.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00195072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comadmin.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\framedyn.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmprops.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmprops.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\accwiz.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\accwiz.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00178176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00178176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\repdrvfs.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00167424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsnap.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00167424 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsnap.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00161792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcuiu.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00161792 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipcima.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00147968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdchost.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdchost.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmisvc.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprov.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00141312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sessmgr.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00141312 _____ (Microsoft Corporation) C:\WINDOWS\system32\sessmgr.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00140800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmidcprv.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00139656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2050-10-19 13:54 - 2008-04-14 13:00 - 00139656 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpwd.sys
2050-10-19 13:54 - 2008-04-14 13:00 - 00136192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aaclient.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00132096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipdskq.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viewprov.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndrec32.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndrec32.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00126464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiapsrv.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00123904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mofd.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplay32.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mplay32.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemtest.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00110592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clbcatex.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatex.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clipbrd.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipbrd.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrepl.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00097792 _____ (Microsoft Corporation) C:\WINDOWS\system32\comrepl.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00095232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiutils.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00093696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscfgwmi.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00091648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxoci.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00091648 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00088576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiaprpl.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00087176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwsx.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00087176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpwsx.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00086528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stdprov.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00085504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrvps.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00071680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcons.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\access.cpl
2050-10-19 13:54 - 2008-04-14 13:00 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\access.cpl
2050-10-19 13:54 - 2008-04-14 13:00 - 00067072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdshost.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdshost.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00062976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpclip.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00062976 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00062464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipjobj.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipiprt.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00060928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmicookr.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\remotepg.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\colbact.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotepg.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00059392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stclient.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00059392 _____ (Microsoft Corporation) C:\WINDOWS\system32\stclient.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtclog.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licwmi.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtclog.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\licwmi.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\servdeps.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\servdeps.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsgqec.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ncprov.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemsvc.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipsess.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgbkend.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00036352 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scrcons.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00034304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxlegih.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxlegih.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00030720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxdm.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00030720 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxdm.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comaddin.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comaddin.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\krnlprov.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00021896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdtcp.sys
2050-10-19 13:54 - 2008-04-14 13:00 - 00021896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdtcp.sys
2050-10-19 13:54 - 2008-04-14 13:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpsnd.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qprocess.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsnd.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemprox.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00017408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmfutil.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmfutil.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mofcomp.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdsaddin.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsaddin.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00012040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdpipe.sys
2050-10-19 13:54 - 2008-04-14 13:00 - 00012040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdpipe.sys
2050-10-19 13:54 - 2008-04-14 13:00 - 00011776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xolehlp.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icaapi.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\icaapi.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrepl.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiapres.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtc.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dcomcnfg.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrereg.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtc.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe
2050-10-19 13:54 - 2008-04-14 13:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxex.dll
2050-10-19 13:54 - 2008-04-14 13:00 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxex.dll
2050-10-19 13:54 - 2008-04-14 05:43 - 00040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\termdd.sys
2050-10-19 13:54 - 2008-04-14 00:02 - 00196224 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2050-10-19 13:53 - 2013-06-26 10:14 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2014-08-18 16:51 - 2014-08-18 17:45 - 00000000 ____D () C:\FRST
2014-08-18 12:27 - 2014-08-18 12:27 - 00016083 _____ () C:\Documents and Settings\Owner\My Documents\dds 2.odt
2014-08-18 12:26 - 2014-08-18 12:26 - 00016175 _____ () C:\Documents and Settings\Owner\My Documents\dds 1.odt
2014-08-18 12:23 - 2014-08-18 12:23 - 00000000 ____D () C:\Documents and Settings\Owner\My Documents\dds
2014-08-18 12:19 - 2014-08-18 12:19 - 00005646 _____ () C:\Documents and Settings\Owner\Desktop\dds.txt
2014-08-18 12:19 - 2014-08-18 12:19 - 00002567 _____ () C:\Documents and Settings\Owner\Desktop\attach.txt
2014-08-17 14:15 - 2014-08-17 14:15 - 00014377 _____ () C:\latest malware scan.txt
2014-08-17 14:05 - 2014-08-17 14:05 - 00013518 _____ () C:\Documents and Settings\Owner\Desktop\malware detections.txt
2014-08-17 13:58 - 2014-08-17 14:02 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-08-17 13:36 - 2014-08-18 17:22 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-17 13:35 - 2014-08-17 13:35 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-17 13:35 - 2014-08-17 13:35 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-17 13:34 - 2014-08-17 13:35 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-17 13:34 - 2014-08-17 13:34 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-08-17 13:34 - 2014-05-12 07:26 - 00053208 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2014-08-17 13:34 - 2014-05-12 07:25 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2014-08-17 12:25 - 2014-08-17 12:25 - 00090112 _____ () C:\WINDOWS\Minidump\Mini081714-01.dmp
2014-08-17 12:25 - 2014-08-17 12:25 - 00000000 ____D () C:\WINDOWS\Minidump
2014-08-17 12:04 - 2014-08-17 12:04 - 00011649 _____ () C:\Documents and Settings\Owner\My Documents\check up.odt
2014-08-17 12:04 - 2014-08-17 12:04 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.check up.odt#
2014-08-17 12:01 - 2014-08-17 12:01 - 00017071 _____ () C:\Documents and Settings\Owner\My Documents\results scan.odt
2014-08-17 12:01 - 2014-08-17 12:01 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.results scan.odt#
2014-08-17 11:59 - 2014-08-17 11:59 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.security scan.odt#
2014-08-17 11:54 - 2014-08-17 11:54 - 00017363 _____ () C:\Documents and Settings\Owner\My Documents\cleaner scan.odt
2014-08-17 11:54 - 2014-08-17 11:54 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.cleaner scan.odt#
2014-08-17 11:52 - 2014-08-17 11:52 - 00011649 _____ () C:\Documents and Settings\Owner\My Documents\security check.odt
2014-08-17 11:19 - 2014-08-17 11:19 - 00017062 _____ () C:\Documents and Settings\Owner\My Documents\mini toolbox.odt
2014-08-17 11:19 - 2014-08-17 11:19 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.mini toolbox.odt#
2014-08-17 11:06 - 2014-08-17 11:06 - 00011649 _____ () C:\Documents and Settings\Owner\My Documents\security scan.odt
2014-08-17 10:48 - 2014-08-17 10:48 - 49623040 ____H (GameRanger Technologies) C:\Documents and Settings\Owner\tpqlksln.exe
2014-08-17 10:45 - 2014-08-17 10:45 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-08-17 10:18 - 2010-08-30 08:34 - 00536576 _____ (SQLite Development Team) C:\WINDOWS\system32\sqlite3.dll
2014-08-17 10:13 - 2014-08-17 10:24 - 00000000 ____D () C:\AdwCleaner
2014-08-17 10:08 - 2014-08-17 10:40 - 00014797 _____ () C:\Documents and Settings\Owner\My Documents\scan result.odt
2014-08-17 10:01 - 2014-08-17 10:04 - 00002940 _____ () C:\Documents and Settings\Owner\Desktop\Rkill.txt
2014-08-16 19:23 - 2014-08-17 10:38 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
2014-08-16 18:56 - 2014-08-16 18:56 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IzhoHobx
2014-08-16 18:53 - 2014-08-17 14:07 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NetworkHostTask
2014-08-16 18:53 - 2014-08-16 18:54 - 48312320 ____H (GameRanger Technologies) C:\Documents and Settings\Owner\cyzutbuw.exe
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\Owner\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo
2014-08-16 18:47 - 2014-08-16 18:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Package Cache
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\HelpAssistant
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Guest
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\ASPNET
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-08-16 18:43 - 2014-08-17 14:07 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Online
2014-08-16 18:43 - 2014-08-16 18:53 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\serv
2014-08-16 18:43 - 2014-08-16 18:43 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\device
2014-08-16 18:43 - 2014-08-16 18:43 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\UpdateCommon
2014-08-14 23:19 - 2014-08-14 23:19 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\McAfee
2014-08-14 23:17 - 2014-08-14 23:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\McAfee
2014-07-25 15:59 - 2014-08-16 19:14 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\7c05a6685fa0f73e
 
==================== One Month Modified Files and Folders =======
 
(If an entry is included in the fixlist, the file\folder will be moved.)
 
2050-10-19 15:13 - 2050-10-19 15:13 - 00000000 ____D () C:\dell
2050-10-19 14:52 - 2050-10-19 14:52 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2050-10-19 14:52 - 2050-10-19 14:50 - 00002148 _____ () C:\WINDOWS\regopt.log
2050-10-19 14:50 - 2050-10-19 14:50 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2050-10-19 14:50 - 2050-10-19 14:50 - 00000000 ____D () C:\Program Files\Common Files\ODBC
2050-10-19 14:50 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system
2050-10-19 14:50 - 2008-04-14 13:00 - 00000231 _____ () C:\WINDOWS\system.ini
2050-10-19 14:49 - 2050-10-19 14:49 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Temp
2050-10-19 14:48 - 2050-10-19 14:48 - 01064960 _____ () C:\WINDOWS\system32\config\software.sav
2050-10-19 14:48 - 2050-10-19 14:48 - 00909312 _____ () C:\WINDOWS\system32\config\system.sav
2050-10-19 14:48 - 2050-10-19 14:48 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2050-10-19 14:48 - 2050-10-19 14:48 - 00094208 _____ () C:\WINDOWS\system32\config\default.sav
2050-10-19 14:48 - 2050-10-19 14:48 - 00001024 ____H () C:\WINDOWS\system32\config\userdiff.LOG
2050-10-19 14:48 - 2050-10-19 14:48 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
2050-10-19 14:48 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\usmt
2050-10-19 14:48 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\L2Schemas
2050-10-19 14:47 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\scripting
2050-10-19 14:47 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\npp
2050-10-19 14:47 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\PeerNet
2050-10-19 14:47 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\msagent
2050-10-19 14:43 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\ras
2050-10-19 14:43 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2050-10-19 14:42 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1033
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\wins
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\ShellExt
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\mui
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\IME
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\export
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\Drivers\disdn
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\dhcp
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\3com_dmi
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\3076
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\2052
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1054
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1042
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1041
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1037
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1031
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1028
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\1025
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Resources
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Provisioning
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\mui
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\java
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Driver Cache
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Connection Wizard
2050-10-19 14:41 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\addins
2050-10-19 14:35 - 2050-10-19 14:34 - 00000000 __SHD () C:\Documents and Settings\Owner\PrivacIE
2050-10-19 14:34 - 2050-10-19 14:34 - 00000000 __SHD () C:\Documents and Settings\Owner\IETldCache
2050-10-19 14:34 - 2050-10-19 14:02 - 00000000 ___RD () C:\Documents and Settings\Owner\Start Menu\Programs\Accessories
2050-10-19 14:33 - 2050-10-19 14:32 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2050-10-19 14:32 - 2050-10-19 14:50 - 00001393 _____ () C:\WINDOWS\imsins.BAK
2050-10-19 14:32 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Media
2050-10-19 14:32 - 2050-10-19 14:32 - 00024346 _____ () C:\WINDOWS\updspapi.log
2050-10-19 14:32 - 2050-10-19 14:32 - 00001804 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Adobe Reader 9.lnk
2050-10-19 14:32 - 2050-10-19 14:32 - 00001729 _____ () C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
2050-10-19 14:32 - 2050-10-19 14:32 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2050-10-19 14:32 - 2050-10-19 14:32 - 00000000 ____D () C:\Program Files\Adobe
2050-10-19 14:32 - 2050-10-19 14:30 - 00055545 _____ () C:\WINDOWS\ie8.log
2050-10-19 14:32 - 2050-10-19 14:30 - 00030010 _____ () C:\WINDOWS\ie8_main.log
2050-10-19 14:31 - 2050-10-19 14:31 - 00000000 __HDC () C:\WINDOWS\ie8
2050-10-19 14:31 - 2050-10-19 14:30 - 00000000 ___SD () C:\Documents and Settings\All Users\Start Menu\Programs\OpenOffice.org 3.2
2050-10-19 14:30 - 2050-10-19 14:30 - 00000905 _____ () C:\Documents and Settings\All Users\Desktop\OpenOffice.org 3.2.lnk
2050-10-19 14:30 - 2050-10-19 14:30 - 00000000 ____D () C:\Program Files\OpenOffice.org 3
2050-10-19 14:27 - 2050-10-19 14:27 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Intel PROSet Wireless
2050-10-19 14:26 - 2050-10-19 14:26 - 00021419 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2050-10-19 14:26 - 2050-10-19 14:26 - 00007236 _____ () C:\WINDOWS\DPINST.LOG
2050-10-19 14:26 - 2050-10-19 14:26 - 00000308 _____ () C:\WINDOWS\system32\results.txt
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\NetworkService\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\Default User\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Intel
2050-10-19 14:26 - 2050-10-19 14:20 - 00000000 ____D () C:\Program Files\Intel
2050-10-19 14:25 - 2050-10-19 14:20 - 00000000 ____D () C:\Intel
2050-10-19 14:24 - 2050-10-19 14:24 - 00001446 _____ () C:\WINDOWS\COM+.log
2050-10-19 14:20 - 2050-10-19 14:20 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2050-10-19 14:20 - 2050-10-19 14:20 - 00000000 ____D () C:\WINDOWS\system32\Lang
2050-10-19 14:20 - 2050-10-19 14:19 - 00000000 ____D () C:\WINDOWS\Downloaded Installations
2050-10-19 14:20 - 2050-10-19 14:19 - 00000000 ____D () C:\Program Files\Wave Systems Corp
2050-10-19 14:19 - 2050-10-19 14:19 - 00000128 _____ () C:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat
2050-10-19 14:19 - 2050-10-19 14:19 - 00000000 ____D () C:\WINDOWS\system32\Test
2050-10-19 14:19 - 2050-10-19 14:19 - 00000000 ____D () C:\Program Files\NTRU Cryptosystems
2050-10-19 14:19 - 2050-10-19 14:19 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Wave Systems Corp
2050-10-19 14:19 - 2050-10-19 14:17 - 00000000 ____D () C:\Program Files\Common Files\InstallShield
2050-10-19 14:18 - 2050-10-19 14:18 - 00000000 ____D () C:\WINDOWS\system32\URTTemp
2050-10-19 14:17 - 2050-10-19 14:17 - 00000668 _____ () C:\WINDOWS\KB921411.log
2050-10-19 14:17 - 2050-10-19 14:17 - 00000000 ____D () C:\Program Files\Dell
2050-10-19 14:15 - 2050-10-19 14:15 - 00000020 ___SH () C:\Documents and Settings\LocalService\ntuser.ini
2050-10-19 14:15 - 2050-10-19 14:15 - 00000000 __SHD () C:\Documents and Settings\LocalService
2050-10-19 14:15 - 2050-10-19 14:15 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2050-10-19 14:03 - 2050-10-19 13:56 - 00000000 ____D () C:\WINDOWS\system32\Restore
2050-10-19 14:02 - 2050-10-19 14:02 - 00000738 _____ () C:\Documents and Settings\Owner\Start Menu\Programs\Outlook Express.lnk
2050-10-19 14:01 - 2050-10-19 14:49 - 00173643 _____ () C:\WINDOWS\setupact.log
2050-10-19 14:01 - 2050-10-19 14:01 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2050-10-19 14:01 - 2050-10-19 14:01 - 00000020 ___SH () C:\Documents and Settings\NetworkService\ntuser.ini
2050-10-19 14:01 - 2050-10-19 14:01 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2050-10-19 14:01 - 2050-10-19 14:01 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Temp
2050-10-19 13:59 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\security
2050-10-19 13:59 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\repair
2050-10-19 13:59 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\ime
2050-10-19 13:59 - 2050-10-19 13:59 - 00001599 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk
2050-10-19 13:59 - 2050-10-19 13:59 - 00000398 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk
2050-10-19 13:59 - 2050-10-19 13:59 - 00000000 ____D () C:\WINDOWS\system32\xircom
2050-10-19 13:59 - 2050-10-19 13:59 - 00000000 ____D () C:\Program Files\xerox
2050-10-19 13:59 - 2050-10-19 13:59 - 00000000 ____D () C:\Program Files\microsoft frontpage
2050-10-19 13:59 - 2050-10-19 13:57 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
2050-10-19 13:58 - 2050-10-19 14:50 - 00004161 _____ () C:\WINDOWS\ODBCINST.INI
2050-10-19 13:58 - 2050-10-19 14:41 - 00000000 ___RD () C:\WINDOWS\Web
2050-10-19 13:58 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\system32\ias
2050-10-19 13:58 - 2050-10-19 13:58 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2050-10-19 13:58 - 2050-10-19 13:58 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2050-10-19 13:58 - 2050-10-19 13:58 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2050-10-19 13:58 - 2050-10-19 13:58 - 00002577 _____ () C:\WINDOWS\system32\CONFIG.NT
2050-10-19 13:58 - 2050-10-19 13:58 - 00000792 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Windows Media Player.lnk
2050-10-19 13:58 - 2050-10-19 13:58 - 00000488 ___RH () C:\WINDOWS\system32\WindowsLogon.manifest
2050-10-19 13:58 - 2050-10-19 13:58 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
2050-10-19 13:58 - 2050-10-19 13:58 - 00000000 __SHD () C:\Documents and Settings\All Users\DRM
2050-10-19 13:58 - 2050-10-19 13:58 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2050-10-19 13:58 - 2008-04-14 13:00 - 00000477 _____ () C:\WINDOWS\win.ini
2050-10-19 13:57 - 2050-10-19 13:57 - 00000786 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ___HD () C:\Program Files\WindowsUpdate
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\WINDOWS\srchasst
2050-10-19 13:57 - 2050-10-19 13:57 - 00000000 ____D () C:\Program Files\Common Files\MSSoap
2050-10-19 13:57 - 2050-10-19 13:56 - 00000000 ____D () C:\Program Files\Outlook Express
2050-10-19 13:57 - 2050-10-19 13:56 - 00000000 ____D () C:\Program Files\NetMeeting
2050-10-19 13:57 - 2050-10-19 13:56 - 00000000 ____D () C:\Program Files\Movie Maker
2050-10-19 13:56 - 2050-10-19 13:56 - 00021640 _____ () C:\WINDOWS\system32\emptyregdb.dat
2050-10-19 13:56 - 2050-10-19 13:56 - 00000037 _____ () C:\WINDOWS\vbaddin.ini
2050-10-19 13:56 - 2050-10-19 13:56 - 00000036 _____ () C:\WINDOWS\vb.ini
2050-10-19 13:56 - 2050-10-19 13:56 - 00000000 ____D () C:\Program Files\ComPlus Applications
2050-10-19 13:56 - 2050-10-19 13:54 - 00000000 ____D () C:\WINDOWS\system32\Com
2050-10-19 13:55 - 2050-10-19 14:41 - 00000000 ____D () C:\WINDOWS\Cursors
2050-10-19 13:55 - 2050-10-19 13:55 - 00001022 _____ () C:\WINDOWS\sessmgr.setup.log
2050-10-19 13:55 - 2050-10-19 13:55 - 00000609 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
2050-10-19 13:55 - 2050-10-19 13:55 - 00000130 _____ () C:\WINDOWS\DtcInstall.log
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\Online Services
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\MSN Gaming Zone
2050-10-19 13:55 - 2050-10-19 13:55 - 00000000 ____D () C:\Program Files\Messenger
2050-10-19 13:55 - 2050-10-19 13:54 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2050-10-19 13:55 - 2050-10-19 13:54 - 00000000 ____D () C:\Program Files\Windows NT
2050-10-19 13:54 - 2050-10-19 13:54 - 00000200 _____ () C:\WINDOWS\cmsetacl.log
2050-10-19 13:53 - 2050-10-19 14:48 - 00000211 ___SH () C:\boot.ini
2014-08-18 17:48 - 2050-10-19 14:02 - 00000000 ____D () C:\Documents and Settings\Owner\Local Settings\Temp
2014-08-18 17:45 - 2014-08-18 16:51 - 00000000 ____D () C:\FRST
2014-08-18 17:44 - 2013-11-27 12:54 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-08-18 17:22 - 2014-08-17 13:36 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2014-08-18 17:03 - 2013-06-25 15:00 - 00000884 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-08-18 16:52 - 2050-10-19 14:50 - 00470840 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-08-18 16:48 - 2050-10-19 13:57 - 00373484 _____ () C:\WINDOWS\WindowsUpdate.log
2014-08-18 16:47 - 2050-10-19 14:52 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-08-18 16:47 - 2050-10-19 14:52 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-08-18 16:47 - 2050-10-19 14:49 - 00525216 _____ () C:\WINDOWS\setupapi.log
2014-08-18 16:47 - 2050-10-19 14:15 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-08-18 16:47 - 2013-12-31 19:41 - 00009312 _____ () C:\WINDOWS\system32\Drivers\sthdae.log
2014-08-18 16:47 - 2013-06-25 15:00 - 00000880 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-08-18 12:45 - 2050-10-19 14:15 - 00032484 _____ () C:\WINDOWS\SchedLgU.Txt
2014-08-18 12:45 - 2050-10-19 14:02 - 00000178 ___SH () C:\Documents and Settings\Owner\ntuser.ini
2014-08-18 12:27 - 2014-08-18 12:27 - 00016083 _____ () C:\Documents and Settings\Owner\My Documents\dds 2.odt
2014-08-18 12:26 - 2014-08-18 12:26 - 00016175 _____ () C:\Documents and Settings\Owner\My Documents\dds 1.odt
2014-08-18 12:23 - 2014-08-18 12:23 - 00000000 ____D () C:\Documents and Settings\Owner\My Documents\dds
2014-08-18 12:19 - 2014-08-18 12:19 - 00005646 _____ () C:\Documents and Settings\Owner\Desktop\dds.txt
2014-08-18 12:19 - 2014-08-18 12:19 - 00002567 _____ () C:\Documents and Settings\Owner\Desktop\attach.txt
2014-08-17 14:15 - 2014-08-17 14:15 - 00014377 _____ () C:\latest malware scan.txt
2014-08-17 14:07 - 2050-10-19 13:55 - 00000000 ____D () C:\WINDOWS\Registration
2014-08-17 14:07 - 2014-08-16 18:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NetworkHostTask
2014-08-17 14:07 - 2014-08-16 18:43 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Online
2014-08-17 14:06 - 2050-10-19 14:02 - 00000000 ____D () C:\Documents and Settings\Owner
2014-08-17 14:05 - 2014-08-17 14:05 - 00013518 _____ () C:\Documents and Settings\Owner\Desktop\malware detections.txt
2014-08-17 14:02 - 2014-08-17 13:58 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat
2014-08-17 13:35 - 2014-08-17 13:35 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2014-08-17 13:35 - 2014-08-17 13:35 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2014-08-17 13:35 - 2014-08-17 13:34 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2014-08-17 13:34 - 2014-08-17 13:34 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2014-08-17 12:25 - 2014-08-17 12:25 - 00090112 _____ () C:\WINDOWS\Minidump\Mini081714-01.dmp
2014-08-17 12:25 - 2014-08-17 12:25 - 00000000 ____D () C:\WINDOWS\Minidump
2014-08-17 12:04 - 2014-08-17 12:04 - 00011649 _____ () C:\Documents and Settings\Owner\My Documents\check up.odt
2014-08-17 12:04 - 2014-08-17 12:04 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.check up.odt#
2014-08-17 12:01 - 2014-08-17 12:01 - 00017071 _____ () C:\Documents and Settings\Owner\My Documents\results scan.odt
2014-08-17 12:01 - 2014-08-17 12:01 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.results scan.odt#
2014-08-17 11:59 - 2014-08-17 11:59 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.security scan.odt#
2014-08-17 11:54 - 2014-08-17 11:54 - 00017363 _____ () C:\Documents and Settings\Owner\My Documents\cleaner scan.odt
2014-08-17 11:54 - 2014-08-17 11:54 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.cleaner scan.odt#
2014-08-17 11:52 - 2014-08-17 11:52 - 00011649 _____ () C:\Documents and Settings\Owner\My Documents\security check.odt
2014-08-17 11:19 - 2014-08-17 11:19 - 00017062 _____ () C:\Documents and Settings\Owner\My Documents\mini toolbox.odt
2014-08-17 11:19 - 2014-08-17 11:19 - 00000149 ____H () C:\Documents and Settings\Owner\My Documents\.~lock.mini toolbox.odt#
2014-08-17 11:06 - 2014-08-17 11:06 - 00011649 _____ () C:\Documents and Settings\Owner\My Documents\security scan.odt
2014-08-17 10:48 - 2014-08-17 10:48 - 49623040 ____H (GameRanger Technologies) C:\Documents and Settings\Owner\tpqlksln.exe
2014-08-17 10:45 - 2014-08-17 10:45 - 00000000 ____D () C:\WINDOWS\ERUNT
2014-08-17 10:40 - 2014-08-17 10:08 - 00014797 _____ () C:\Documents and Settings\Owner\My Documents\scan result.odt
2014-08-17 10:38 - 2014-08-16 19:23 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
2014-08-17 10:24 - 2014-08-17 10:13 - 00000000 ____D () C:\AdwCleaner
2014-08-17 10:04 - 2014-08-17 10:01 - 00002940 _____ () C:\Documents and Settings\Owner\Desktop\Rkill.txt
2014-08-16 19:55 - 2050-10-19 14:02 - 00000803 _____ () C:\Documents and Settings\Owner\Start Menu\Programs\Internet Explorer.lnk
2014-08-16 19:55 - 2013-11-30 22:41 - 00001813 _____ () C:\Documents and Settings\All Users\Desktop\Google Chrome.lnk
2014-08-16 19:14 - 2014-07-25 15:59 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\7c05a6685fa0f73e
2014-08-16 19:00 - 2050-10-19 13:56 - 00000000 ____D () C:\Program Files\Common Files\System
2014-08-16 19:00 - 2013-06-25 15:00 - 00000000 ____D () C:\Program Files\Google
2014-08-16 19:00 - 2008-04-14 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2014-08-16 18:58 - 2050-10-19 13:57 - 00000000 ____D () C:\Program Files\Common Files\Services
2014-08-16 18:56 - 2014-08-16 18:56 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IzhoHobx
2014-08-16 18:54 - 2014-08-16 18:53 - 48312320 ____H (GameRanger Technologies) C:\Documents and Settings\Owner\cyzutbuw.exe
2014-08-16 18:53 - 2014-08-16 18:43 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\serv
2014-08-16 18:52 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Package Cache
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\Owner\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2014-08-16 18:48 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo
2014-08-16 18:48 - 2013-06-25 15:00 - 00000000 ____D () C:\Documents and Settings\Owner\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\HelpAssistant
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Guest
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\ASPNET
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo
2014-08-16 18:47 - 2014-08-16 18:47 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-08-16 18:43 - 2014-08-16 18:43 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\device
2014-08-16 18:43 - 2014-08-16 18:43 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\UpdateCommon
2014-08-14 23:42 - 2013-11-30 22:25 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
2014-08-14 23:19 - 2014-08-14 23:19 - 00000000 ____D () C:\Documents and Settings\LocalService\Application Data\McAfee
2014-08-14 23:17 - 2014-08-14 23:17 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\McAfee
2014-08-14 23:14 - 2013-11-30 22:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Norton
2014-08-10 17:58 - 2013-12-11 23:57 - 00000000 ____D () C:\Documents and Settings\Owner\Application Data\Skype
 
Files to move or delete:
====================
C:\Documents and Settings\Owner\cyzutbuw.exe
C:\Documents and Settings\Owner\tpqlksln.exe
 
 
==================== Bamital & volsnap Check =================
 
(There is no automatic fix for files that do not pass verification.)
 
C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed
 
==================== End Of Log ============================


#13 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 19 August 2014 - 08:40 AM

I hope this has posted ok. I had to do it in 2 different post.

 

thanks.



#14 TB-Psychotic

TB-Psychotic

  • Malware Response Team
  • 6,349 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:11 AM

Posted 19 August 2014 - 09:00 AM

Yes, that´s okay.

 

Fix with FRST (normal mode)

WARNING: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system
 

  • Download the attached fixlist.txt and save it to the location where FRST is saved to.
  • Run FRST.exe (on 64bit, run FRST64.exe) and press the Fix button just once and wait.
  • The tool will make a log (Fixlog.txt) which you find where you saved FRST. Please post it to your reply.

 

 

 

 

Full System Scan with Malwarebytes Antimalware
 

  • If not existing, please download Malwarebytes Anti-Malware to your desktop.
  • Double-click the downloaded setup file and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.

If the program is already installed:

  • Run Malwarebytes Antimalware
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.

  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

 

Attached Files


Proud Member of UNITE & TB
 
My help is free, however, if you want to support my fight against malware, click here --> btn_donate_SM.gif <--(no worries, every little bit helps)

#15 3759allen

3759allen
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:09:11 AM

Posted 19 August 2014 - 10:59 AM

I have done the FRST fix, but I can't seem to find the log anywhere.

 

I am doing the scan you recommended.

 

I will post the log from that when it has finished.

 

thanks again






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users