False Positive?

[seawolves]

Antivir detected a virus, but I believe it was a false positive. I deleted the file anyway. Nothing came up on a virus scan afterwards. I think I may be overly paranoid.

Virus or unwanted program 'HTML/Infected.WebPage.Gen [virus]'
detected in file 'C:\Users\Jeff\AppData\Local\Mozilla\Firefox\Profiles\j4v29wld.default\Cache\_CACHE_001_.
Action performed: Delete file

Just wanted to double check with you here. Thanks for the help

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 5:39:29 AM, on 6/26/2009
Platform: Windows Vista SP2 (WinNT 6.00.1906)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
C:\Program Files (x86)\Java\jre6\bin\jusched.exe
C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files (x86)\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE
C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe
C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe
C:\Program Files (x86)\Mozilla Firefox\firefox.exe
C:\Program Files (x86)\Trend Micro\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
F2 - REG:system.ini: UserInit=userinit.exe
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre6\bin\ssv.dll
O2 - BHO: Microsoft Live Search Toolbar Helper - {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
O2 - BHO: HP Smart BHO Class - {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O3 - Toolbar: Microsoft Live Search Toolbar - {1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414} - c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll
O4 - HKLM\..\Run: [hpWirelessAssistant] C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
O4 - HKLM\..\Run: [HP Health Check Scheduler] c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [Aim6] "C:\Program Files (x86)\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Global Startup: Bluetooth.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~2\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: Send To Bluetooth - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: Send to &Bluetooth Device... - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: HP Smart Select - {DDE87865-83C5-48c4-8357-2F5B1AA84522} - C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~2\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Andrea ST Filters Service (AESTFilters) - Unknown owner - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_6ef279c8\AESTSr64.exe (file missing)
O23 - Service: Agere Modem Call Progress Audio (AgereModemAudio) - Unknown owner - C:\Windows\system32\agr64svc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)
O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe
O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Com4QLBEx - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)
O23 - Service: GameConsoleService - WildTangent, Inc. - C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe
O23 - Service: HP Health Check Service - Hewlett-Packard - c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe
O23 - Service: hpqwmiex - Hewlett-Packard Development Company, L.P. - C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe
O23 - Service: HP Service (hpsrv) - Unknown owner - C:\Windows\system32\Hpservice.exe (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe
O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)
O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: Recovery Service for Windows - Unknown owner - C:\Program Files (x86)\SMINST\BLService.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe
O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)
O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)
O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)
O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)
O23 - Service: Audio Service (STacSV) - Unknown owner - C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_6ef279c8\STacSV64.exe (file missing)
O23 - Service: TV Background Capture Service (TVBCS) (TVCapSvc) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe
O23 - Service: TV Task Scheduler (TVTS) (TVSched) - Unknown owner - C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe
O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)
O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)
O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)
O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--
End of file - 10499 bytes

 

[katana]

Please note that all instructions given are customised for this computer only,
the tools used may cause damage if used on a computer with different infections.

If you think you have similar problems, please post a log in the HJT forum and wait for help.

Hello and welcome to the forums

My name is Katana and I will be helping you to remove any infection(s) that you may have.

Please observe these rules while we work:

1. Please Read All Instructions Carefully
2. If you don't understand something, stop and ask! Don't keep going on.
3. Please do not run any other tools or scans whilst I am helping you
4. Failure to reply within 5 days will result in the topic being closed.
5. Please continue to respond until I give you the "All Clear"
   (Just because you can't see a problem doesn't mean it isn't there)

If you can do those few things, everything should go smoothly

Please Note, your security programs may give warnings for some of the tools I will ask you to use.
Be assured, any links I give are safe
----------------------------------------------------------------------------------------

Please note:-
Your log shows signs that this is a 64 bit machine.
Most of the tools we use don't run on 64 bit machines, so the help I can offer is limited.
I will do my best though

detected in file 'C:\Users\Jeff\AppData\Local\Mozilla\Firefox\Profiles\j4v29wld.default\Cache

I suspect that a site you visited was "hacked" and the page had an exploit.

OTScanIt

1. Please download OTS.exe by OldTimer and save it to your desktop.
2. Double click on OTS.exe to run it.
3. Put a checkmark in the Include 64Bit Scans box
4. Under Drivers section, select Non-Microsoft.
5. Click on the Run Scan button at the top left hand corner.
6. OTS will start running. Once done, Notepad will open. Please post the contents of this Notepad file in your next reply.

Please Download GMER to your desktop

Download GMER and extract it to your desktop.

***Please close any open programs ***

Double-click gmer.exe. The program will begin to run.

**Caution**
These types of scans can produce false positives. Do NOT take any action on any "<--- ROOKIT" entries unless advised by a trained Security Analyst

If possible rootkit activity is found, you will be asked if you would like to perform a full scan.

• Click Yes.
  
• Once the scan is complete, you may receive another notice about rootkit activity.
• Click OK.
  
• GMER will produce a log. Click on the Save button, and save the log as gmer.txt somewhere you can easily find it, such as your desktop.

If you do not receive notice about possible rootkit activity remain on the Rootkit/Malware tab & make sure the 'Show All' button is unticked.

• Click the Scan button and let the program do its work. GMER will produce a log.
• Click on the Save button, and save the log as gmer.txt somewhere you can easily find it, such as your desktop.

DO NOT touch the PC at ALL for Whatever reason/s until it has 100% completed its scan, or attempted scan in case of some error etc !

Please post the results from the GMER scan in your reply.

 

[seawolves]

OTS logfile created on: 6/27/2009 11:34:09 PM - Run 1
OTS by OldTimer - Version 3.0.8.0     Folder = C:\Users\Jeff\Desktop
64bit-Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18783)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
 
3.93 Gb Total Physical Memory | 2.04 Gb Available Physical Memory | 51.86% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 285.62 Gb Total Space | 62.36 Gb Free Space | 21.83% Space Free | Partition Type: NTFS
Drive D: | 12.47 Gb Total Space | 1.98 Gb Free Space | 15.84% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: NOTEBOOK
Current User Name: Jeff
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Include 64bit Scans
Company Name Whitelist: On
Skip Microsoft Files: Off
File Age = 30 Days
 
[Processes - Safe List]
avgnt.exe -> C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe -> [2009/03/02 13:08:47 | 00,209,153 | ---- | M] (Avira GmbH)
avguard.exe -> C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -> [2009/05/11 10:15:50 | 00,185,089 | ---- | M] (Avira GmbH)
blservice.exe -> C:\Program Files (x86)\SMINST\BLService.exe -> [2008/10/06 13:54:52 | 00,365,952 | ---- | M] ()
bluetoothheadsetproxy.exe -> C:\Program Files\WIDCOMM\Bluetooth Software\BluetoothHeadsetProxy.exe -> [2008/06/19 18:04:50 | 00,014,376 | ---- | M] (Broadcom Corporation.)
firefox.exe -> C:\Program Files (x86)\Mozilla Firefox\firefox.exe -> [2009/06/11 21:36:24 | 00,307,704 | ---- | M] (Mozilla Corporation)
hpqtoaster.exe -> C:\Program Files (x86)\Hewlett-Packard\Shared\HpqToaster.exe -> [2008/04/11 13:04:54 | 00,685,360 | ---- | M] ()
hpqwmiex.exe -> C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe -> [2008/05/01 20:25:56 | 00,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.)
hpwamain.exe -> C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe -> [2008/04/15 18:51:00 | 00,488,752 | ---- | M] (Hewlett-Packard Development Company, L.P.)
jusched.exe -> C:\Program Files (x86)\Java\jre6\bin\jusched.exe -> [2009/03/09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.)
lssrvc.exe -> C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -> [2009/01/27 22:37:24 | 00,073,728 | ---- | M] (Hewlett-Packard Company)
ots.exe -> C:\Users\Jeff\Desktop\OTS.exe -> [2009/06/27 23:33:26 | 00,510,976 | ---- | M] (OldTimer Tools)
richvideo.exe -> C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe -> [2008/06/29 19:10:18 | 00,241,734 | ---- | M] ()
sched.exe -> C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -> [2009/05/13 16:48:22 | 00,108,289 | ---- | M] (Avira GmbH)
sdwinsec.exe -> C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -> [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.)
tvcapsvc.exe -> C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe -> [2009/02/09 18:14:02 | 00,296,320 | ---- | M] ()
tvsched.exe -> C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe -> [2009/02/09 18:14:02 | 00,116,096 | ---- | M] ()
viewpointservice.exe -> C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe -> [2007/01/04 17:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation)
wifimsg.exe -> C:\Program Files (x86)\Hewlett-Packard\HP wireless Assistant\WiFiMsg.EXE -> [2007/09/26 11:34:40 | 00,316,720 | ---- | M] (Hewlett-Packard Development Company, L.P.)
 
[Win32 Services - Safe List]
64bit-(AESTFilters) Andrea ST Filters Service [Win32_Own | Auto | Running] -> C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_6ef279c8\AESTSr64.exe -> [2009/03/02 18:42:58 | 00,089,600 | ---- | M] (Andrea Electronics Corporation)
64bit-(AgereModemAudio) Agere Modem Call Progress Audio [Win32_Own | Auto | Running] -> C:\Windows\SysNative\agr64svc.exe -> [2007/12/11 16:11:30 | 00,015,872 | ---- | M] (Agere Systems)
64bit-(BthServ) Bluetooth Support Service [Win32_Shared | Auto | Running] -> C:\Windows\SysNative\bthserv.dll -> [2009/04/11 03:11:13 | 00,053,760 | ---- | M] (Microsoft Corporation)
64bit-(btwdins) Bluetooth Service [Win32_Own | Auto | Running] -> C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe -> [2008/06/19 18:04:46 | 00,700,456 | ---- | M] (Broadcom Corporation.)
64bit-(hpsrv) HP Service [Win32_Own | Auto | Running] -> C:\Windows\SysNative\Hpservice.exe -> [2008/03/18 20:25:40 | 00,023,040 | ---- | M] (Hewlett-Packard Corporation)
64bit-(STacSV) Audio Service [Win32_Own | Auto | Running] -> C:\Windows\SysNative\DriverStore\FileRepository\stwrt64.inf_6ef279c8\STacSV64.exe -> [2009/06/03 20:43:18 | 00,239,104 | ---- | M] (IDT, Inc.)
64bit-(WinDefend) Windows Defender [Win32_Shared | Auto | Running] -> C:\Program Files\Windows Defender\mpsvc.dll -> [2008/01/20 22:47:32 | 00,383,544 | ---- | M] (Microsoft Corporation)
64bit-(WMPNetworkSvc) Windows Media Player Network Sharing Service [Win32_Own | On_Demand | Stopped] -> C:\Program Files\Windows Media Player\wmpnetwk.exe -> [2008/01/20 22:52:15 | 01,216,000 | ---- | M] (Microsoft Corporation)
(AntiVirSchedulerService) Avira AntiVir Scheduler [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -> [2009/05/13 16:48:22 | 00,108,289 | ---- | M] (Avira GmbH)
(AntiVirService) Avira AntiVir Guard [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -> [2009/05/11 10:15:50 | 00,185,089 | ---- | M] (Avira GmbH)
(clr_optimization_v2.0.50727_32) Microsoft .NET Framework NGEN v2.0.50727_X86 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -> [2009/03/30 00:42:14 | 00,066,368 | ---- | M] (Microsoft Corporation)
(clr_optimization_v2.0.50727_64) Microsoft .NET Framework NGEN v2.0.50727_X64 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -> [2009/03/30 00:39:54 | 00,089,920 | ---- | M] (Microsoft Corporation)
(Com4QLBEx) Com4QLBEx [Win32_Own | On_Demand | Stopped] -> C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe -> [2008/04/03 15:33:26 | 00,193,840 | ---- | M] (Hewlett-Packard Development Company, L.P.)
(ehRecvr) Windows Media Center Receiver Service [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehRecvr.exe -> [2008/01/20 22:51:36 | 00,344,064 | ---- | M] (Microsoft Corporation)
(ehSched) Windows Media Center Scheduler Service [Win32_Own | On_Demand | Stopped] -> C:\Windows\ehome\ehsched.exe -> [2008/01/20 22:51:36 | 00,153,600 | ---- | M] (Microsoft Corporation)
(ehstart) Windows Media Center Service Launcher [Win32_Shared | Auto | Stopped] -> C:\Windows\ehome\ehstart.dll -> [2006/11/02 11:03:48 | 00,015,360 | ---- | M] (Microsoft Corporation)
(FontCache3.0.0.0) Windows Presentation Foundation Font Cache 3.0.0.0 [Win32_Own | On_Demand | Stopped] -> C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe -> [2009/02/18 14:40:04 | 00,042,840 | ---- | M] (Microsoft Corporation)
(GameConsoleService) GameConsoleService [Win32_Own | On_Demand | Stopped] -> C:\Program Files (x86)\HP Games\My HP Game Console\GameConsoleService.exe -> [2008/05/05 18:25:46 | 00,165,416 | ---- | M] (WildTangent, Inc.)
(HP Health Check Service) HP Health Check Service [Win32_Own | Auto | Running] -> c:\Program Files (x86)\Hewlett-Packard\HP Health Check\hphc_service.exe -> [2008/10/09 07:56:48 | 00,094,208 | ---- | M] (Hewlett-Packard)
(hpqcxs08) hpqcxs08 [Win32_Shared | On_Demand | Running] -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqcxs08.dll -> [2008/03/25 20:38:24 | 00,217,088 | ---- | M] (Hewlett-Packard Co.)
(hpqddsvc) HP CUE DeviceDiscovery Service [Win32_Shared | Auto | Running] -> C:\Program Files (x86)\HP\Digital Imaging\bin\hpqddsvc.dll -> [2008/03/25 21:27:36 | 00,135,168 | ---- | M] (Hewlett-Packard Co.)
(hpqwmiex) hpqwmiex [Win32_Own | On_Demand | Running] -> C:\Program Files (x86)\Hewlett-Packard\Shared\hpqwmiex.exe -> [2008/05/01 20:25:56 | 00,165,192 | ---- | M] (Hewlett-Packard Development Company, L.P.)
(IDriverT) InstallDriver Table Manager [Win32_Own | On_Demand | Stopped] -> C:\Program Files (x86)\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -> [2004/10/22 07:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation)
(idsvc) Windows CardSpace [Win32_Shared | Unknown | Stopped] -> C:\Windows\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe -> [2009/02/18 14:39:11 | 00,857,432 | ---- | M] (Microsoft Corporation)
(KeyIso) CNG Key Isolation [Win32_Shared | On_Demand | Running] -> C:\Windows\SysWow64\keyiso.dll -> [2006/11/02 05:46:05 | 00,018,944 | ---- | M] (Microsoft Corporation)
(LightScribeService) LightScribeService Direct Disc Labeling Service [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -> [2009/01/27 22:37:24 | 00,073,728 | ---- | M] (Hewlett-Packard Company)
(MSDTC) Distributed Transaction Coordinator [Win32_Own | Unknown | Stopped] -> C:\Windows\SysWow64\Msdtc -> [2006/11/02 09:34:14 | 00,000,000 | ---D | M]
(Netlogon) Netlogon [Win32_Shared | On_Demand | Stopped] -> C:\Windows\SysWow64\netlogon.dll -> [2009/04/11 02:28:23 | 00,592,896 | ---- | M] (Microsoft Corporation)
(odserv) Microsoft Office Diagnostics Service [Win32_Own | On_Demand | Stopped] -> C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -> [2008/11/04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation)
(ose) Office Source Engine [Win32_Own | On_Demand | Stopped] -> C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE -> [2006/10/26 18:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation)
(Recovery Service for Windows) Recovery Service for Windows [Win32_Own | Auto | Running] -> C:\Program Files (x86)\SMINST\BLService.exe -> [2008/10/06 13:54:52 | 00,365,952 | ---- | M] ()
(RichVideo) Cyberlink RichVideo Service(CRVS) [Win32_Own | Auto | Running] -> C:\Program Files (x86)\CyberLink\Shared files\RichVideo.exe -> [2008/06/29 19:10:18 | 00,241,734 | ---- | M] ()
(SBSDWSCService) SBSD Security Center Service [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Spybot - Search & Destroy\SDWinSec.exe -> [2009/01/26 15:31:10 | 01,153,368 | ---- | M] (Safer Networking Ltd.)
(TVCapSvc) TV Background Capture Service (TVBCS) [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVCapSvc.exe -> [2009/02/09 18:14:02 | 00,296,320 | ---- | M] ()
(TVSched) TV Task Scheduler (TVTS) [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Hewlett-Packard\Media\TV\Kernel\TV\TVSched.exe -> [2009/02/09 18:14:02 | 00,116,096 | ---- | M] ()
(vds) Virtual Disk [Win32_Own | On_Demand | Stopped] -> C:\Windows\SysWow64\Wbem\vds.mof -> [2006/11/02 02:35:15 | 00,060,994 | ---- | M] ()
(Viewpoint Manager Service) Viewpoint Manager Service [Win32_Own | Auto | Running] -> C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe -> [2007/01/04 17:38:08 | 00,024,652 | ---- | M] (Viewpoint Corporation)
(VSS) Volume Shadow Copy [Win32_Own | On_Demand | Stopped] -> C:\Windows\SysWow64\Wbem\vss.mof -> [2006/11/02 02:35:15 | 00,055,846 | ---- | M] ()
 
[Driver Services - Safe List]
64bit-(Accelerometer) HP Accelerometer [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\Accelerometer.sys -> [2008/03/27 16:10:14 | 00,040,296 | ---- | M] (Hewlett-Packard Corporation)
64bit-(AgereSoftModem) Agere Systems Soft Modem [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\agrsm64.sys -> [2008/11/21 22:05:22 | 01,253,376 | ---- | M] (Agere Systems)
64bit-(avgntflt) avgntflt [File_System | Auto | Running] -> C:\Windows\SysNative\DRIVERS\avgntflt.sys -> [2009/04/06 10:51:06 | 00,073,048 | ---- | M] (Avira GmbH)
64bit-(BCM43XX) Broadcom 802.11 Network Adapter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\bcmwl664.sys -> [2008/10/23 02:16:34 | 01,526,776 | ---- | M] (Broadcom Corporation)
64bit-(BthEnum) Bluetooth Enumerator Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\BthEnum.sys -> [2009/04/11 01:39:55 | 00,026,112 | ---- | M] (Microsoft Corporation)
64bit-(BthPan) Bluetooth Device (Personal Area Network) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\bthpan.sys -> [2008/01/20 22:47:02 | 00,115,712 | ---- | M] (Microsoft Corporation)
64bit-(BTHPORT) Bluetooth Port Driver [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\Drivers\BTHport.sys -> [2009/04/11 01:40:06 | 00,694,272 | ---- | M] (Microsoft Corporation)
64bit-(BTHUSB) Bluetooth Radio USB Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\Drivers\BTHUSB.sys -> [2009/04/11 01:39:53 | 00,034,816 | ---- | M] (Microsoft Corporation)
64bit-(btwaudio) Bluetooth Audio Device Service [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\btwaudio.sys -> [2008/06/23 07:54:02 | 00,091,176 | ---- | M] (Broadcom Corporation.)
64bit-(btwavdt) Bluetooth AVDT [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\btwavdt.sys -> [2008/06/23 07:54:02 | 00,099,368 | ---- | M] (Broadcom Corporation.)
64bit-(btwrchid) btwrchid [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\btwrchid.sys -> [2008/06/23 07:54:02 | 00,019,752 | ---- | M] (Broadcom Corporation.)
64bit-(CmBatt) Microsoft ACPI Control Method Battery Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\CmBatt.sys -> [2008/01/20 22:46:51 | 00,017,792 | ---- | M] (Microsoft Corporation)
64bit-(enecir) ENE CIR Receiver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\enecir.sys -> [2008/09/04 13:48:00 | 00,064,000 | ---- | M] (ENE TECHNOLOGY INC.)
64bit-(HdAudAddService) Microsoft 1.1 UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\drivers\HdAudio.sys -> [2006/11/02 01:28:10 | 00,273,920 | ---- | M] (Microsoft Corporation)
64bit-(hpdskflt) HP Filter [Kernel | Boot | Running] -> C:\Windows\SysNative\DRIVERS\hpdskflt.sys -> [2008/03/27 16:10:56 | 00,026,984 | ---- | M] (Hewlett-Packard Corporation)
64bit-(HpqKbFiltr) HpqKbFilter Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\HpqKbFiltr.sys -> [2007/06/18 21:13:12 | 00,018,432 | ---- | M] (Hewlett-Packard Development Company, L.P.)
64bit-(igfx) igfx [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\igdkmd64.sys -> [2008/10/27 16:33:30 | 08,039,808 | ---- | M] (Intel Corporation)
64bit-(IntcHdmiAddService) Intel(R) High Definition Audio HDMI [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\IntcHdmi.sys -> [2008/09/21 13:49:58 | 00,126,464 | ---- | M] (Intel(R) Corporation)
64bit-(NETw3v64) Intel(R) PRO/Wireless 3945ABG Adapter Driver for Windows Vista 64 Bit [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\NETw3v64.sys -> [2008/01/20 22:46:57 | 03,154,432 | ---- | M] (Intel Corporation)
64bit-(RFCOMM) Bluetooth Device (RFCOMM Protocol TDI) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\rfcomm.sys -> [2009/04/11 01:39:57 | 00,178,176 | ---- | M] (Microsoft Corporation)
64bit-(RTL8169) Realtek 8169 NT Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\Rtlh64.sys -> [2009/03/06 09:06:18 | 00,197,120 | ---- | M] (Realtek Corporation                                            )
64bit-(RTSTOR) Realtek USB 2.0 Card Reader [Kernel | On_Demand | Running] -> C:\Windows\SysNative\drivers\RTSTOR64.SYS -> [2009/03/26 08:00:16 | 00,071,168 | ---- | M] (Realtek Semiconductor Corp.)
64bit-(sdbus) sdbus [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\sdbus.sys -> [2008/01/20 22:46:55 | 00,111,104 | ---- | M] (Microsoft Corporation)
64bit-(STHDA) IDT High Definition Audio CODEC [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\stwrt64.sys -> [2009/06/03 20:43:18 | 00,486,400 | ---- | M] (IDT, Inc.)
64bit-(SynTP) Synaptics TouchPad Driver [Kernel | On_Demand | Running] -> C:\Windows\SysNative\DRIVERS\SynTP.sys -> [2008/07/24 12:48:10 | 00,250,928 | ---- | M] (Synaptics, Inc.)
64bit-(usbvideo) USB Video Device (WDM) [Kernel | On_Demand | Running] -> C:\Windows\SysNative\Drivers\usbvideo.sys -> [2008/01/20 22:47:27 | 00,168,704 | ---- | M] (Microsoft Corporation)
64bit-(yukonx64) NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller [Kernel | On_Demand | Stopped] -> C:\Windows\SysNative\DRIVERS\yk60x64.sys -> [2006/10/03 21:45:36 | 00,273,408 | ---- | M] (Marvell)
(mpsdrv) Windows Firewall Authorization Driver [Kernel | On_Demand | Running] -> C:\Windows\SysWow64\Wbem\mpsdrv.mof -> [2006/09/18 17:35:23 | 00,001,088 | ---- | M] ()
(SASDIFSV) SASDIFSV [Kernel | System | Stopped] -> C:\Program Files (x86)\SUPERAntiSpyware\SASDIFSV.SYS -> [2009/05/26 10:05:54 | 00,009,968 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASENUM) SASENUM [Kernel | On_Demand | Stopped] -> C:\Program Files (x86)\SUPERAntiSpyware\SASENUM.SYS -> [2009/05/26 10:05:56 | 00,007,408 | R--- | M] ( SUPERAdBlocker.com and SUPERAntiSpyware.com)
(SASKUTIL) SASKUTIL [Kernel | System | Stopped] -> C:\Program Files (x86)\SUPERAntiSpyware\SASKUTIL.sys -> [2009/05/26 10:05:52 | 00,072,944 | ---- | M] (SUPERAdBlocker.com and SUPERAntiSpyware.com)
(Tcpip) TCP/IP Protocol Driver [Kernel | Boot | Running] -> C:\Windows\SysWow64\Wbem\tcpip.mof -> [2006/09/18 17:36:40 | 00,003,066 | ---- | M] ()
({55662437-DA8C-40c0-AADA-2C816A897A49}) Power Control [2009/06/12 18:05:25] [Kernel | Auto | Running] -> C:\Program Files (x86)\Hewlett-Packard\Media\DVD\000.fcl -> [2008/11/28 18:04:24 | 00,146,928 | ---- | M] (CyberLink Corp.)

 

[seawolves]

[Registry - Safe List]
< 64bit-Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" -> [binary data] ->
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\System32\blank.htm ->
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk ->
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb ->
< Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Page_URL" -> http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Search_URL" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Default_Secondary_Page_URL" -> [binary data] ->
HKEY_LOCAL_MACHINE\: Main\\"Extensions Off Page" -> about:NoAdd-ons ->
HKEY_LOCAL_MACHINE\: Main\\"Local Page" -> C:\Windows\SysWOW64\blank.htm ->
HKEY_LOCAL_MACHINE\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_LOCAL_MACHINE\: Main\\"Security Risk Page" -> about:SecurityRisk ->
HKEY_LOCAL_MACHINE\: Main\\"Start Page" -> http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb ->
< Internet Explorer Settings [HKEY_CURRENT_USER\] > -> ->
HKEY_CURRENT_USER\: Main\\"Default_Page_URL" -> http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb ->
HKEY_CURRENT_USER\: Main\\"Local Page" -> C:\Windows\system32\blank.htm ->
HKEY_CURRENT_USER\: Main\\"Search Page" -> http://go.microsoft.com/fwlink/?LinkId=54896 ->
HKEY_CURRENT_USER\: Main\\"Start Page" -> http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=en_us&c=91&bd=Pavilion&pf=cnnb ->
HKEY_CURRENT_USER\: Main\\"StartPageCache" -> 1 ->
HKEY_CURRENT_USER\: "ProxyEnable" -> 0 ->
< FireFox Settings [Prefs.js] > -> C:\Users\Jeff\AppData\Roaming\Mozilla\FireFox\Profiles\j4v29wld.default\prefs.js ->
extensions.enabledItems -> {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA}:6.0.12 ->
extensions.enabledItems -> {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13 ->
extensions.enabledItems -> {20a82645-c095-46ed-80e3-08825760534b}:1.1 ->
extensions.enabledItems -> {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.11 ->
< FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla
HKLM\software\mozilla\Firefox\Extensions -> ->
HKLM\software\mozilla\Firefox\Extensions\\{20a82645-c095-46ed-80e3-08825760534b} -> C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION [C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION\] -> [2009/06/23 17:53:43 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions -> ->
HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions\\Components -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\COMPONENTS] -> [2009/06/11 21:36:26 | 00,000,000 | ---D | M]
HKLM\software\mozilla\Mozilla Firefox 3.0.11\extensions\\Plugins -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS [C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\PLUGINS] -> [2009/06/13 17:29:32 | 00,000,000 | ---D | M]
< FireFox Extensions [User Folders] > ->
-> C:\Users\Jeff\AppData\Roaming\mozilla\Extensions -> [2009/01/12 00:23:54 | 00,000,000 | ---D | M]
-> C:\Users\Jeff\AppData\Roaming\mozilla\Extensions\{ec8030f7-c20a-464f-9b0e-13a3a9e97384} -> [2009/01/12 00:23:54 | 00,000,000 | ---D | M]
-> C:\Users\Jeff\AppData\Roaming\mozilla\Firefox\Profiles\j4v29wld.default\extensions -> [2009/06/23 18:17:34 | 00,096,428 | ---- | M] ()
-> C:\Users\Jeff\AppData\Roaming\mozilla\Firefox\Profiles\j4v29wld.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} -> [2009/06/23 18:17:34 | 00,096,428 | ---- | M] ()
< FireFox Extensions [Program Folders] > ->
-> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\extensions -> [2009/06/11 21:36:26 | 09,777,144 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} -> [2009/06/11 21:36:26 | 09,777,144 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} -> [2009/06/11 21:36:26 | 09,777,144 | ---- | M] (Mozilla Foundation)
-> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\extensions\{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} -> [2009/06/11 21:36:26 | 09,777,144 | ---- | M] (Mozilla Foundation)
< FireFox Components [Program Folders] > ->
C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\components\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\components -> [2009/06/11 21:36:26 | 00,000,000 | ---D | M]
browserdirprovider.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\components\browserdirprovider.dll -> [2009/06/11 21:36:24 | 00,023,032 | ---- | M] (Mozilla Foundation)
brwsrcmp.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\components\brwsrcmp.dll -> [2009/06/11 21:36:24 | 00,134,648 | ---- | M] (Mozilla Foundation)
< FireFox Plugins [Program Folders] > ->
C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins -> [2009/06/13 17:29:32 | 00,000,000 | ---D | M]
npbittorrent.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\npbittorrent.dll -> [2008/09/03 20:11:24 | 00,054,600 | ---- | M] (BitTorrent, Inc.)
npdeploytk.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\npdeploytk.dll -> [2009/03/09 05:19:09 | 00,410,984 | ---- | M] (Sun Microsystems, Inc.)
npnul32.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\npnul32.dll -> [2009/06/11 21:36:25 | 00,065,528 | ---- | M] (mozilla.org)
nppdf32.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\nppdf32.dll -> [2009/02/27 12:13:42 | 00,103,792 | ---- | M] (Adobe Systems Inc.)
npViewpoint.dll -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\npViewpoint.dll -> [2007/04/16 13:07:12 | 00,180,293 | ---- | M] ()
npViewpoint.xpt -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\plugins\npViewpoint.xpt -> [2006/10/09 14:26:35 | 00,000,266 | ---- | M] ()
< FireFox SearchPlugins [Program Folders] > ->
C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\ -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins -> [2009/06/09 15:12:44 | 00,000,000 | ---D | M]
amazondotcom.xml -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\amazondotcom.xml -> [2009/02/06 00:38:33 | 00,001,394 | ---- | M] ()
answers.xml -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\answers.xml -> [2009/02/06 00:38:33 | 00,002,193 | ---- | M] ()
creativecommons.xml -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\creativecommons.xml -> [2009/02/06 00:38:33 | 00,001,534 | ---- | M] ()
eBay.xml -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\eBay.xml -> [2009/02/06 00:38:33 | 00,002,343 | ---- | M] ()
google.xml -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\google.xml -> [2009/02/06 00:38:33 | 00,001,706 | ---- | M] ()
wikipedia.xml -> C:\PROGRAM FILES (X86)\MOZILLA FIREFOX\searchplugins\wikipedia.xml -> [2009/02/06 00:38:33 | 00,001,178 | ---- | M] ()
< HOSTS File > (307199 bytes and 10619 lines) -> C:\Windows\SysNative\Drivers\etc\hosts ->
First 25 entries...
Reset Hosts
127.0.0.1 localhost
::1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 www.1001namen.com
127.0.0.1 1001namen.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100888290cs.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 10sek.com
127.0.0.1 www.10sek.com
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ ->
{18DF081C-E8AD-4283-A596-FA578C2EBDC3} [HKLM] -> C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [Adobe PDF Link Helper] -> [2009/02/27 12:07:26 | 00,075,128 | ---- | M] (Adobe Systems Incorporated)
{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
{53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [Spybot-S&D IE Protection] -> [2009/01/26 15:31:02 | 01,879,896 | ---- | M] (Safer Networking Limited)
{761497BB-D6F0-462C-B6EB-D4DAF1D92D43} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\ssv.dll [SSVHelper Class] -> [2009/03/09 05:19:10 | 00,320,920 | ---- | M] (Sun Microsystems, Inc.)
{d2ce3e00-f94a-4740-988e-03dc2f38c34f} [HKLM] -> c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll [Microsoft Live Search Toolbar Helper] -> [2008/08/29 00:09:08 | 00,086,032 | ---- | M] (Microsoft Corp.)
{DBC80044-A445-435b-BC74-9C25C1C588A9} [HKLM] -> C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll [Java(tm) Plug-In 2 SSV Helper] -> [2009/03/09 05:18:50 | 00,035,840 | ---- | M] (Sun Microsystems, Inc.)
{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} [HKLM] -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [HP Smart BHO Class] -> [2008/06/21 14:39:38 | 00,501,040 | ---- | M] (Hewlett-Packard Co.)
< Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar ->
"{1E61ED7C-7CB8-49d6-B9E9-AB4C880C8414}" [HKLM] -> c:\Program Files (x86)\MSN\Toolbar\3.0.0541.0\msneshellx.dll [Microsoft Live Search Toolbar] -> [2008/08/29 00:09:08 | 00,086,032 | ---- | M] (Microsoft Corp.)
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ ->
WebBrowser\\"{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found
< 64bit-Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"HotKeysCmds" -> C:\Windows\SysNative\hkcmd.exe [C:\Windows\system32\hkcmd.exe] -> [2008/10/27 16:43:04 | 00,225,816 | ---- | M] (Intel Corporation)
"IgfxTray" -> C:\Windows\SysNative\igfxtray.exe [C:\Windows\system32\igfxtray.exe] -> [2008/10/27 16:43:14 | 00,153,624 | ---- | M] (Intel Corporation)
"Persistence" -> C:\Windows\SysNative\igfxpers.exe [C:\Windows\system32\igfxpers.exe] -> [2008/10/27 16:43:10 | 00,200,216 | ---- | M] (Intel Corporation)
"SynTPEnh" -> C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [C:\Program Files\Synaptics\SynTP\SynTPEnh.exe] -> [2008/07/24 12:48:06 | 01,560,872 | ---- | M] (Synaptics, Inc.)
"SysTrayApp" -> C:\Program Files\IDT\WDM\sttray64.exe [C:\Program Files\IDT\WDM\sttray64.exe] -> [2009/06/03 20:43:18 | 00,442,368 | ---- | M] (IDT, Inc.)
"Windows Defender" -> C:\Program Files\Windows Defender\MSASCui.exe [%ProgramFiles%\Windows Defender\MSASCui.exe -hide] -> [2008/01/20 22:47:32 | 01,584,184 | ---- | M] (Microsoft Corporation)
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"avgnt" -> C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe ["C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min] -> [2009/03/02 13:08:47 | 00,209,153 | ---- | M] (Avira GmbH)
"HP Health Check Scheduler" -> c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe [c:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe] -> [2008/10/09 07:58:56 | 00,075,008 | ---- | M] (Hewlett-Packard)
"hpWirelessAssistant" -> C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe [C:\Program Files (x86)\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe] -> [2008/04/15 18:51:00 | 00,488,752 | ---- | M] (Hewlett-Packard Development Company, L.P.)
"NWEReboot" -> [] -> File not found
"SunJavaUpdateSched" -> C:\Program Files (x86)\Java\jre6\bin\jusched.exe ["C:\Program Files (x86)\Java\jre6\bin\jusched.exe"] -> [2009/03/09 05:19:17 | 00,148,888 | ---- | M] (Sun Microsystems, Inc.)
< Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run ->
"Aim6" -> C:\Program Files (x86)\AIM6\aim6.exe ["C:\Program Files (x86)\AIM6\aim6.exe" /d locale=en-US ee://aol/imApp] -> [2009/05/19 01:23:16 | 00,049,968 | ---- | M] (AOL LLC)
"ehTray.exe" -> C:\Windows\ehome\ehTray.exe [C:\Windows\ehome\ehTray.exe] -> [2008/01/20 22:51:33 | 00,138,240 | ---- | M] (Microsoft Corporation)
"SpybotSD TeaTimer" -> C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe [C:\Program Files (x86)\Spybot - Search & Destroy\TeaTimer.exe] -> [2009/03/05 16:07:20 | 02,260,480 | ---- | M] (Safer-Networking Ltd.)
< CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer
\\"NoActiveDesktop" -> [1] -> File not found
\\"NoActiveDesktopChanges" -> [1] -> File not found
\\"ForceActiveDesktopOn" -> [0] -> File not found
\\"BindDirectlyToPropertySetStorage" -> [0] -> File not found
< CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System
\\"ConsentPromptBehaviorAdmin" -> [2] -> File not found
\\"ConsentPromptBehaviorUser" -> [1] -> File not found
\\"EnableInstallerDetection" -> [1] -> File not found
\\"EnableLUA" -> [1] -> File not found
\\"EnableSecureUIAPaths" -> [1] -> File not found
\\"EnableVirtualization" -> [1] -> File not found
\\"PromptOnSecureDesktop" -> [1] -> File not found
\\"ValidateAdminCodeSignatures" -> [0] -> File not found
\\"dontdisplaylastusername" -> [0] -> File not found
\\"legalnoticecaption" -> [] -> File not found
\\"legalnoticetext" -> [] -> File not found
\\"scforceoption" -> [0] -> File not found
\\"shutdownwithoutlogon" -> [1] -> File not found
\\"undockwithoutlogon" -> [1] -> File not found
\\"FilterAdministratorToken" -> [0] -> File not found
\\"EnableUIADesktopToggle" -> [0] -> File not found
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System\UIPI\Clipboard\ExceptionFormats
\UIPI\Clipboard\ExceptionFormats\\"CF_TEXT" -> [1] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_BITMAP" -> [2] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_OEMTEXT" -> [7] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIB" -> [8] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_PALETTE" -> [9] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_UNICODETEXT" -> [13] -> File not found
\UIPI\Clipboard\ExceptionFormats\\"CF_DIBV5" -> [17] -> File not found
< CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer ->
< 64bit-Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ ->
E&xport to Microsoft Excel -> C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE [res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000] -> [2009/05/04 08:40:04 | 18,333,536 | ---- | M] (Microsoft Corporation)
Send image to &Bluetooth Device... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm] -> [2007/01/23 16:57:50 | 00,001,199 | ---- | M] ()
Send page to &Bluetooth Device... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm] -> [2007/01/23 16:57:52 | 00,002,758 | ---- | M] ()
< Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ ->
E&xport to Microsoft Excel -> C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE [res://C:\PROGRA~2\MICROS~2\Office12\EXCEL.EXE/3000] -> [2009/05/04 08:40:04 | 18,333,536 | ---- | M] (Microsoft Corporation)
Send image to &Bluetooth Device... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm] -> [2007/01/23 16:57:50 | 00,001,199 | ---- | M] ()
Send page to &Bluetooth Device... -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm] -> [2007/01/23 16:57:52 | 00,002,758 | ---- | M] ()
< 64bit-Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{CCA281CA-C863-46ef-9331-5C8D4460577F}:C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [HKLM] -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [Button: @btrez.dll,-4015] -> [2007/01/23 16:57:52 | 00,002,758 | ---- | M] ()
{CCA281CA-C863-46ef-9331-5C8D4460577F}:C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [HKLM] -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [Menu: @btrez.dll,-12650] -> [2007/01/23 16:57:52 | 00,002,758 | ---- | M] ()
< Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ ->
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll [Button: Send to OneNote] -> [2008/10/25 07:52:00 | 00,604,056 | ---- | M] (Microsoft Corporation)
{2670000A-7350-4f3c-8081-5663EE0C6C49}:{48E73304-E1D6-4330-914C-F5F514E3486C} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\ONBttnIE.dll [Menu: S&end to OneNote] -> [2008/10/25 07:52:00 | 00,604,056 | ---- | M] (Microsoft Corporation)
{92780B25-18CC-41C8-B9BE-3C9C571A8263}:{FF059E31-CC5A-4E2E-BF3B-96E929D65503} [HKLM] -> C:\Program Files (x86)\Microsoft Office\Office12\REFIEBAR.DLL [Button: Research] -> [2009/03/06 04:04:56 | 00,039,464 | ---- | M] (Microsoft Corporation)
{CCA281CA-C863-46ef-9331-5C8D4460577F}:C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [HKLM] -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [Button: Send To Bluetooth] -> [2007/01/23 16:57:52 | 00,002,758 | ---- | M] ()
{CCA281CA-C863-46ef-9331-5C8D4460577F}:C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [HKLM] -> C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm [Menu: Send to &Bluetooth Device...] -> [2007/01/23 16:57:52 | 00,002,758 | ---- | M] ()
{DDE87865-83C5-48c4-8357-2F5B1AA84522}:{DDE87865-83C5-48c4-8357-2F5B1AA84522} [HKLM] -> C:\Program Files (x86)\HP\Digital Imaging\Smart Web Printing\hpswp_BHO.dll [Button: HP Smart Select] -> [2008/06/21 14:39:38 | 00,501,040 | ---- | M] (Hewlett-Packard Co.)
{DFB852A3-47F8-48C4-A200-58CAB36FD2A2}:{53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> C:\Program Files (x86)\Spybot - Search & Destroy\SDHelper.dll [Menu: Spybot - Search & Destroy Configuration] -> [2009/01/26 15:31:02 | 01,879,896 | ---- | M] (Safer Networking Limited)
< Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ ->
64bit-CmdMapping\\"{CCA281CA-C863-46ef-9331-5C8D4460577F}" [HKLM] -> [@btrez.dll,-4015;Send To Bluetooth] -> File not found
CmdMapping\\"{CCA281CA-C863-46ef-9331-5C8D4460577F}" [HKLM] -> @btrez.dll,-4015 [Send To Bluetooth;@btrez.dll,-4015;Send To Bluetooth] -> File not found
< 64bit-Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix
"" -> http://
< 64bit-Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 5510 domain(s) found. ->
49 domain(s) and sub-domain(s) not assigned to a zone.
< 64bit-Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 36 range(s) found. ->
< Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 5510 domain(s) found. ->
49 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 36 range(s) found. ->
< Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> 9042 domain(s) found. ->
56 domain(s) and sub-domain(s) not assigned to a zone.
< Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ ->
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> 37 range(s) found. ->
Range1 [:Range = 127.0.0.1] -> http = Local intranet | ->
< Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ ->
{8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab [Java Plug-in 1.6.0_13] ->
{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab [Java Plug-in 1.6.0_13] ->
{CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_13-windows-i586.cab [Java Plug-in 1.6.0_13] ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ ->
DhcpNameServer -> 192.168.1.1 ->
< Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ ->
{628BBE67-59BF-45D4-A959-664AD23C337B}\\DhcpNameServer -> 192.168.1.1 (Broadcom 4322AG 802.11a/b/g/draft-n Wi-Fi Adapter) ->
< 64bit-Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
64bit-*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\explorer.exe -> [2009/04/11 03:10:17 | 03,079,168 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon ->
*Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell ->
explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2009/04/11 02:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation)
*MultiFile Done* -> ->
< 64bit-Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
igfxcui -> C:\Windows\SysNative\igfxdev.dll -> [2008/10/27 16:08:54 | 00,228,864 | ---- | M] (Intel Corporation)
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ ->
!SASWinLogon -> C:\Program Files (x86)\SUPERAntiSpyware\SASWINLO.dll -> [2008/12/22 12:05:34 | 00,356,352 | ---- | M] (SUPERAntiSpyware.com)
igfxcui -> Reg Error: Value error. -> File not found
< ShellExecuteHooks [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks ->
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}" [HKLM] -> C:\Program Files (x86)\SUPERAntiSpyware\SASSEH.DLL [] -> [2008/05/13 10:13:36 | 00,077,824 | ---- | M] (SuperAdBlocker.com)
< Vista Public Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile\AuthorizedApplications ->
< Vista Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications ->
64bit-HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
\List\\"C:\Program Files (x86)\BitTorrent\bittorrent.exe" -> C:\Program Files (x86)\BitTorrent\bittorrent.exe [C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent] -> [2008/12/08 21:08:04 | 00,637,232 | ---- | M] (BitTorrent, Inc.)
< Vista Active Firewall Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules ->
< Vista Active Application Exception Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules ->
{043CDEDD-41E1-4D67-AC26-56BAFAB5A917} -> profile=public | protocol=6 | dir=in | action=allow | name=microsoft office onenote | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
{0D605E34-D997-445E-A8D9-9EB690802FFD} -> profile=public | protocol=17 | dir=in | action=allow | name=dna (udp-in) | app=c:\program files (x86)\dna\btdna.exe |
{1A973883-7B01-4E04-8CA2-08709E227623} -> dir=in | action=allow | name=hp touchsmart media resident program | app=c:\program files (x86)\hewlett-packard\touchsmart\media\tsmagent.exe |
{1BFC16B8-4251-4200-B9F5-ACF900580B7C} -> dir=in | action=allow | name=cyberlink powerdirector | app=c:\program files (x86)\cyberlink\powerdirector\pdr.exe |
{1E0C939E-0D46-4812-9EDE-F11846DBA600} -> dir=in | action=allow | name=hp touchsmart video | app=c:\program files (x86)\hewlett-packard\media\dvd\hptouchsmartvideo.exe |
{1F2C2BF1-831B-447D-A8C7-A27B23C4DF06} -> dir=in | action=allow | name=cyberlink media service | app=c:\program files (x86)\hewlett-packard\touchsmart\media\kernel\clml\clmlsvc.exe |
{2030F791-4283-41BB-90BD-F26FA3D90940} -> dir=in | action=allow | name=hpqkygrp.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqkygrp.exe |
{281022B2-1409-4164-9754-C50B3E21FDB4} -> profile=public | protocol=6 | dir=in | action=allow | name=aim | app=c:\program files (x86)\aim6\aim6.exe |
{33F7AE32-D47F-47EC-B728-FE35B333CECD} -> dir=in | action=allow | name=hpqtra08.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqtra08.exe |
{3E234DEC-FE25-4260-BC95-A3DDCF3BA5D7} -> profile=public | protocol=17 | dir=in | action=allow | name=aol loader | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
{57211B7B-9829-426D-AA7E-C541B30DDE0D} -> dir=in | action=allow | name=hp touchsmart video | app=c:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartvideo.exe |
{5A4CCC8E-B027-4AF1-8971-225F5EAAE9AA} -> profile=public | protocol=17 | dir=in | action=allow | name=microsoft office onenote | app=c:\program files (x86)\microsoft office\office12\onenote.exe |
{5B134BD6-802A-4B49-B114-24FC6AEBE33C} -> dir=in | action=allow | name=hpqgplgtupl.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqgplgtupl.exe |
{64621300-1CDE-465F-96A4-4F70236147D7} -> dir=in | action=allow | name=hpqste08.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqste08.exe |
{6E43C141-64AB-4741-941A-B6243E908445} -> dir=in | action=allow | name=hp touchsmart music | app=c:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartmusic.exe |
{6F6A38F2-F917-4AB4-B71D-BE2C5579B90C} -> dir=in | action=allow | name=hp touchsmart photo | app=c:\program files (x86)\hewlett-packard\media\dvd\hptouchsmartphoto.exe |
{8834C5BB-049C-43FF-B8E5-E0AFDC31D1A9} -> profile=public | protocol=6 | dir=in | action=allow | name=aol loader | app=c:\program files (x86)\common files\aol\loader\aolload.exe |
{95CAAA93-DF35-4487-BEE7-E7A0C8345192} -> dir=in | action=allow | name=cyberlink media service | app=c:\program files (x86)\hewlett-packard\media\dvd\kernel\clml\clmlsvc.exe |
{96A1DDB3-A7C7-4A09-A571-4DA73A79E337} -> profile=public | protocol=6 | dir=in | action=allow | name=dna (tcp-in) | app=c:\program files (x86)\dna\btdna.exe |
{9875B646-E295-4555-879F-B779BB02C190} -> dir=in | action=allow | name=hp touchsmart media resident program | app=c:\program files (x86)\hewlett-packard\media\dvd\tsmagent.exe |
{9CA200CC-3B4A-4B98-9FF9-B362AD98C90E} -> dir=in | action=allow | name=hpqpsapp.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqpsapp.exe |
{A58744FA-2FD3-4258-ABBF-E62623C76FC3} -> dir=in | action=allow | name=hpqgpc01.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqgpc01.exe |
{AD8B1E52-FF77-488F-A61A-A9C4159DE610} -> dir=in | action=allow | name=hposid01.exe | app=c:\program files (x86)\hp\digital imaging\bin\hposid01.exe |
{B449024B-F447-40AB-AA73-B68C67F96F2C} -> dir=in | action=allow | name=hpiscnapp.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpiscnapp.exe |
{B57CFB08-FEDE-45B2-AA52-6287BF9B9925} -> dir=in | action=allow | name=hp touchsmart photo | app=c:\program files (x86)\hewlett-packard\touchsmart\media\hptouchsmartphoto.exe |
{BF237B79-A0EE-43DB-82D2-FD977F16BCA5} -> dir=in | action=allow | name=hpqphotocrm.exe | app=c:\program files (x86)\common files\hp\digital imaging\bin\hpqphotocrm.exe |
{C9453382-A41B-4486-92B4-868890878BA8} -> dir=in | action=allow | name=quick play resident program | app=c:\program files (x86)\hewlett-packard\media\tv\qpservice.exe |
{CEB7B6B5-6009-478E-BD81-8EE1AAF68F63} -> dir=in | action=allow | name=hpqcopy2.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqcopy2.exe |
{D7F50EA3-6575-4AEB-A928-C6CE6EACE1BA} -> profile=public | protocol=17 | dir=in | action=allow | name=aim | app=c:\program files (x86)\aim6\aim6.exe |
{E41D465E-DBB1-4523-ACC0-80891DF250F9} -> dir=in | action=allow | name=quick play | app=c:\program files (x86)\hewlett-packard\media\tv\qp.exe |
{F00BE5C2-C8DE-46F2-BB55-E0CC51F14B04} -> dir=in | action=allow | name=hpqsudi.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqsudi.exe |
{F5573DDD-FFBB-4033-AEC1-D28885B86D84} -> dir=in | action=allow | name=hp touchsmart music | app=c:\program files (x86)\hewlett-packard\media\dvd\hptouchsmartmusic.exe |
{FC5BD693-5606-49C0-93BB-79EE7A546453} -> dir=in | action=allow | name=hp mediasmart dvd | app=c:\program files (x86)\hewlett-packard\media\dvd\hpdvdsmart.exe |
{FCA32C3E-B661-45E1-BF97-CF73656F8FF0} -> dir=in | action=allow | name=cyberlink powerdvd 8.0 | app=c:\program files (x86)\cyberlink\powerdvd8\powerdvd8.exe |
{FD29AB3F-5305-4DEB-9924-35394DE397AD} -> dir=in | action=allow | name=hpqpse.exe | app=c:\program files (x86)\hp\digital imaging\bin\hpqpse.exe |
TCP Query User{720F92A0-B81E-49F5-998B-A7C7ADCDD2A9}C:\program files (x86)\aim6\aim6.exe -> profile=private | protocol=6 | dir=in | action=allow | name=aim | app=c:\program files (x86)\aim6\aim6.exe |
TCP Query User{C4964FB4-F52E-4BF1-A392-B04A36D726E8}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=public | protocol=6 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
TCP Query User{D38C264C-8215-4DED-A4BB-563FCAF2CCCA}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=private | protocol=6 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
UDP Query User{66202482-F822-457A-AC2A-F29417F3FC5E}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=private | protocol=17 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
UDP Query User{CFFA682A-4139-4D44-B16A-99713C48DF37}C:\program files (x86)\aim6\aim6.exe -> profile=private | protocol=17 | dir=in | action=allow | name=aim | app=c:\program files (x86)\aim6\aim6.exe |
UDP Query User{EC489A8E-C637-4295-BCF8-5CE28F07D781}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=public | protocol=17 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
< Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List ->
"C:\Program Files (x86)\BitTorrent\bittorrent.exe" -> C:\Program Files (x86)\BitTorrent\bittorrent.exe [C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent] -> [2008/12/08 21:08:04 | 00,637,232 | ---- | M] (BitTorrent, Inc.)
< SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot ->
"AlternateShell" -> cmd.exe ->
< CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom ->
"AutoRun" -> 1 ->
"DisplayName" -> CD-ROM Driver ->
"ImagePath" -> C:\Windows\SysNative\DRIVERS\cdrom.sys [system32\DRIVERS\cdrom.sys] -> [2009/04/11 01:34:39 | 00,079,872 | ---- | M] (Microsoft Corporation)
< MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 ->

 

[seawolves]

[Files/Folders - Created Within 30 Days]
OTS.exe -> C:\Users\Jeff\Desktop\OTS.exe -> [2009/06/27 23:33:25 | 00,510,976 | ---- | C] (OldTimer Tools)
LSI SoftModem -> C:\Program Files\LSI SoftModem -> [2009/06/23 17:54:02 | 00,000,000 | ---D | C]
oem32.inf -> C:\Windows\SysNative\oem32.inf -> [2009/06/23 17:51:58 | 00,873,310 | ---- | C] ()
Sun -> C:\Windows\Sun -> [2009/06/22 21:32:46 | 00,000,000 | ---D | C]
AOL Downloads -> C:\ProgramData\AOL Downloads -> [2009/06/13 17:27:44 | 00,000,000 | ---D | C]
vi-VN -> C:\Windows\SysWow64\vi-VN -> [2009/06/12 19:06:18 | 00,000,000 | ---D | C]
eu-ES -> C:\Windows\SysWow64\eu-ES -> [2009/06/12 19:06:18 | 00,000,000 | ---D | C]
eu-ES -> C:\Windows\SysNative\eu-ES -> [2009/06/12 19:06:18 | 00,000,000 | ---D | C]
ca-ES -> C:\Windows\SysWow64\ca-ES -> [2009/06/12 19:06:18 | 00,000,000 | ---D | C]
ca-ES -> C:\Windows\SysNative\ca-ES -> [2009/06/12 19:06:18 | 00,000,000 | ---D | C]
vi-VN -> C:\Windows\SysNative\vi-VN -> [2009/06/12 19:06:16 | 00,000,000 | ---D | C]
EventProviders -> C:\Windows\SysNative\EventProviders -> [2009/06/12 18:50:47 | 00,000,000 | ---D | C]
NlsLexicons0007.dll -> C:\Windows\SysWow64\NlsLexicons0007.dll -> [2009/06/12 18:49:07 | 12,240,896 | ---- | C] (Microsoft Corporation)
NlsLexicons0007.dll -> C:\Windows\SysNative\NlsLexicons0007.dll -> [2009/06/12 18:49:07 | 12,240,896 | ---- | C] (Microsoft Corporation)
SLsvc.exe -> C:\Windows\SysNative\SLsvc.exe -> [2009/06/12 18:49:01 | 02,582,016 | ---- | C] (Microsoft Corporation)
FunctionDiscoveryFolder.dll -> C:\Windows\SysNative\FunctionDiscoveryFolder.dll -> [2009/06/12 18:49:01 | 02,146,304 | ---- | C] (Microsoft Corporation)
FunctionDiscoveryFolder.dll -> C:\Windows\SysWow64\FunctionDiscoveryFolder.dll -> [2009/06/12 18:49:01 | 02,134,528 | ---- | C] (Microsoft Corporation)
SLCExt.dll -> C:\Windows\SysNative\SLCExt.dll -> [2009/06/12 18:49:01 | 00,710,144 | ---- | C] (Microsoft Corporation)
NlsLexicons0009.dll -> C:\Windows\SysWow64\NlsLexicons0009.dll -> [2009/06/12 18:48:58 | 02,644,480 | ---- | C] (Microsoft Corporation)
NlsLexicons0009.dll -> C:\Windows\SysNative\NlsLexicons0009.dll -> [2009/06/12 18:48:58 | 02,644,480 | ---- | C] (Microsoft Corporation)
mssrch.dll -> C:\Windows\SysNative\mssrch.dll -> [2009/06/12 18:48:55 | 02,280,448 | ---- | C] (Microsoft Corporation)
msstrc.dll -> C:\Windows\SysNative\msstrc.dll -> [2009/06/12 18:48:55 | 00,078,336 | ---- | C] (Microsoft Corporation)
msscntrs.dll -> C:\Windows\SysNative\msscntrs.dll -> [2009/06/12 18:48:55 | 00,073,728 | ---- | C] (Microsoft Corporation)
xmlfilter.dll -> C:\Windows\SysNative\xmlfilter.dll -> [2009/06/12 18:48:55 | 00,067,072 | ---- | C] (Microsoft Corporation)
msshooks.dll -> C:\Windows\SysNative\msshooks.dll -> [2009/06/12 18:48:55 | 00,011,776 | ---- | C] (Microsoft Corporation)
ntoskrnl.exe -> C:\Windows\SysNative\ntoskrnl.exe -> [2009/06/12 18:48:54 | 04,699,608 | ---- | C] (Microsoft Corporation)
SLCExt.dll -> C:\Windows\SysWow64\SLCExt.dll -> [2009/06/12 18:48:54 | 01,081,344 | ---- | C] (Microsoft Corporation)
kd1394.dll -> C:\Windows\SysNative\kd1394.dll -> [2009/06/12 18:48:54 | 00,019,928 | ---- | C] (Microsoft Corporation)
mssrch.dll -> C:\Windows\SysWow64\mssrch.dll -> [2009/06/12 18:48:52 | 01,480,704 | ---- | C] (Microsoft Corporation)
wcnwiz2.dll -> C:\Windows\SysNative\wcnwiz2.dll -> [2009/06/12 18:48:49 | 01,085,440 | ---- | C] (Microsoft Corporation)
wcnwiz2.dll -> C:\Windows\SysWow64\wcnwiz2.dll -> [2009/06/12 18:48:49 | 00,968,192 | ---- | C] (Microsoft Corporation)
WscEapPr.dll -> C:\Windows\SysNative\WscEapPr.dll -> [2009/06/12 18:48:49 | 00,397,312 | ---- | C] (Microsoft Corporation)
WscEapPr.dll -> C:\Windows\SysWow64\WscEapPr.dll -> [2009/06/12 18:48:49 | 00,291,328 | ---- | C] (Microsoft Corporation)
tquery.dll -> C:\Windows\SysNative\tquery.dll -> [2009/06/12 18:48:48 | 02,204,672 | ---- | C] (Microsoft Corporation)
icardagt.exe -> C:\Windows\SysNative\icardagt.exe -> [2009/06/12 18:48:48 | 01,381,720 | ---- | C] (Microsoft Corporation)
hdaudbus.sys -> C:\Windows\SysNative\drivers\hdaudbus.sys -> [2009/06/12 18:48:48 | 00,948,736 | ---- | C] (Microsoft Corporation)
infocardcpl.cpl -> C:\Windows\SysNative\infocardcpl.cpl -> [2009/06/12 18:48:48 | 00,046,944 | ---- | C] (Microsoft Corporation)
PresentationNative_v0300.dll -> C:\Windows\SysNative\PresentationNative_v0300.dll -> [2009/06/12 18:48:47 | 01,165,664 | ---- | C] (Microsoft Corporation)
imapi2fs.dll -> C:\Windows\SysNative\imapi2fs.dll -> [2009/06/12 18:48:47 | 01,146,880 | ---- | C] (Microsoft Corporation)
RMActivate_isv.exe -> C:\Windows\SysNative\RMActivate_isv.exe -> [2009/06/12 18:48:45 | 00,600,576 | ---- | C] (Microsoft Corporation)
RMActivate.exe -> C:\Windows\SysNative\RMActivate.exe -> [2009/06/12 18:48:45 | 00,599,552 | ---- | C] (Microsoft Corporation)
msi.dll -> C:\Windows\SysNative\msi.dll -> [2009/06/12 18:48:44 | 03,108,864 | ---- | C] (Microsoft Corporation)
lsasrv.dll -> C:\Windows\SysNative\lsasrv.dll -> [2009/06/12 18:48:44 | 01,688,064 | ---- | C] (Microsoft Corporation)
tquery.dll -> C:\Windows\SysWow64\tquery.dll -> [2009/06/12 18:48:44 | 01,576,960 | ---- | C] (Microsoft Corporation)
bthport.sys -> C:\Windows\SysNative\drivers\bthport.sys -> [2009/06/12 18:48:44 | 00,694,272 | ---- | C] (Microsoft Corporation)
tcpip.sys -> C:\Windows\SysNative\drivers\tcpip.sys -> [2009/06/12 18:48:43 | 01,426,408 | ---- | C] (Microsoft Corporation)
sysmain.dll -> C:\Windows\SysNative\sysmain.dll -> [2009/06/12 18:48:43 | 00,886,784 | ---- | C] (Microsoft Corporation)
ntfs.sys -> C:\Windows\SysNative\drivers\ntfs.sys -> [2009/06/12 18:48:42 | 01,515,496 | ---- | C] (Microsoft Corporation)
PresentationNative_v0300.dll -> C:\Windows\SysWow64\PresentationNative_v0300.dll -> [2009/06/12 18:48:42 | 00,779,136 | ---- | C] (Microsoft Corporation)
shell32.dll -> C:\Windows\SysNative\shell32.dll -> [2009/06/12 18:48:41 | 12,897,792 | ---- | C] (Microsoft Corporation)
ntdll.dll -> C:\Windows\SysNative\ntdll.dll -> [2009/06/12 18:48:41 | 01,582,792 | ---- | C] (Microsoft Corporation)
scavenge.dll -> C:\Windows\SysNative\scavenge.dll -> [2009/06/12 18:48:40 | 00,946,688 | ---- | C] (Microsoft Corporation)
secproc.dll -> C:\Windows\SysNative\secproc.dll -> [2009/06/12 18:48:40 | 00,539,136 | ---- | C] (Microsoft Corporation)
RMActivate_isv.exe -> C:\Windows\SysWow64\RMActivate_isv.exe -> [2009/06/12 18:48:40 | 00,526,336 | ---- | C] (Microsoft Corporation)
spsys.sys -> C:\Windows\SysNative\drivers\spsys.sys -> [2009/06/12 18:48:39 | 00,594,432 | ---- | C] (Microsoft Corporation)
secproc_isv.dll -> C:\Windows\SysNative\secproc_isv.dll -> [2009/06/12 18:48:39 | 00,538,624 | ---- | C] (Microsoft Corporation)
RMActivate.exe -> C:\Windows\SysWow64\RMActivate.exe -> [2009/06/12 18:48:39 | 00,518,144 | ---- | C] (Microsoft Corporation)
mf.dll -> C:\Windows\SysNative\mf.dll -> [2009/06/12 18:48:38 | 03,547,136 | ---- | C] (Microsoft Corporation)
msi.dll -> C:\Windows\SysWow64\msi.dll -> [2009/06/12 18:48:38 | 02,241,536 | ---- | C] (Microsoft Corporation)
imapi2fs.dll -> C:\Windows\SysWow64\imapi2fs.dll -> [2009/06/12 18:48:37 | 00,677,376 | ---- | C] (Microsoft Corporation)
msxml3.dll -> C:\Windows\SysNative\msxml3.dll -> [2009/06/12 18:48:36 | 01,804,288 | ---- | C] (Microsoft Corporation)
secproc_isv.dll -> C:\Windows\SysWow64\secproc_isv.dll -> [2009/06/12 18:48:36 | 00,476,672 | ---- | C] (Microsoft Corporation)
mmcndmgr.dll -> C:\Windows\SysNative\mmcndmgr.dll -> [2009/06/12 18:48:35 | 03,263,488 | ---- | C] (Microsoft Corporation)
icardagt.exe -> C:\Windows\SysWow64\icardagt.exe -> [2009/06/12 18:48:34 | 00,619,864 | ---- | C] (Microsoft Corporation)
infocardcpl.cpl -> C:\Windows\SysWow64\infocardcpl.cpl -> [2009/06/12 18:48:34 | 00,035,168 | ---- | C] (Microsoft Corporation)
mf.dll -> C:\Windows\SysWow64\mf.dll -> [2009/06/12 18:48:33 | 02,868,224 | ---- | C] (Microsoft Corporation)
kernel32.dll -> C:\Windows\SysNative\kernel32.dll -> [2009/06/12 18:48:33 | 01,217,536 | ---- | C] (Microsoft Corporation)
p2psvc.dll -> C:\Windows\SysNative\p2psvc.dll -> [2009/06/12 18:48:33 | 00,836,608 | ---- | C] (Microsoft Corporation)
mmc.exe -> C:\Windows\SysNative\mmc.exe -> [2009/06/12 18:48:32 | 02,715,136 | ---- | C] (Microsoft Corporation)
AuxiliaryDisplayCpl.dll -> C:\Windows\SysNative\AuxiliaryDisplayCpl.dll -> [2009/06/12 18:48:32 | 01,418,752 | ---- | C] (Microsoft Corporation)
spinstall.exe -> C:\Windows\SysNative\spinstall.exe -> [2009/06/12 18:48:32 | 00,435,712 | ---- | C] (Microsoft Corporation)
spreview.exe -> C:\Windows\SysNative\spreview.exe -> [2009/06/12 18:48:32 | 00,147,456 | ---- | C] (Microsoft Corporation)
esent.dll -> C:\Windows\SysNative\esent.dll -> [2009/06/12 18:48:31 | 02,506,752 | ---- | C] (Microsoft Corporation)
drmv2clt.dll -> C:\Windows\SysNative\drmv2clt.dll -> [2009/06/12 18:48:31 | 01,185,280 | ---- | C] (Microsoft Corporation)
AuxiliaryDisplayCpl.dll -> C:\Windows\SysWow64\AuxiliaryDisplayCpl.dll -> [2009/06/12 18:48:30 | 01,216,000 | ---- | C] (Microsoft Corporation)
SearchIndexer.exe -> C:\Windows\SysNative\SearchIndexer.exe -> [2009/06/12 18:48:30 | 00,597,504 | ---- | C] (Microsoft Corporation)
spwizui.dll -> C:\Windows\SysNative\spwizui.dll -> [2009/06/12 18:48:30 | 00,173,568 | ---- | C] (Microsoft Corporation)
spwizui.dll -> C:\Windows\SysWow64\spwizui.dll -> [2009/06/12 18:48:30 | 00,164,352 | ---- | C] (Microsoft Corporation)
wmp.dll -> C:\Windows\SysNative\wmp.dll -> [2009/06/12 18:48:28 | 13,424,640 | ---- | C] (Microsoft Corporation)
ole32.dll -> C:\Windows\SysNative\ole32.dll -> [2009/06/12 18:48:26 | 01,915,392 | ---- | C] (Microsoft Corporation)
drmv2clt.dll -> C:\Windows\SysWow64\drmv2clt.dll -> [2009/06/12 18:48:26 | 00,978,432 | ---- | C] (Microsoft Corporation)
spinstall.exe -> C:\Windows\SysWow64\spinstall.exe -> [2009/06/12 18:48:26 | 00,289,792 | ---- | C] (Microsoft Corporation)
spreview.exe -> C:\Windows\SysWow64\spreview.exe -> [2009/06/12 18:48:26 | 00,112,640 | ---- | C] (Microsoft Corporation)
dfsr.exe -> C:\Windows\SysNative\dfsr.exe -> [2009/06/12 18:48:25 | 03,433,472 | ---- | C] (Microsoft Corporation)
mssvp.dll -> C:\Windows\SysNative\mssvp.dll -> [2009/06/12 18:48:25 | 00,796,672 | ---- | C] (Microsoft Corporation)
sdohlp.dll -> C:\Windows\SysNative\sdohlp.dll -> [2009/06/12 18:48:25 | 00,499,200 | ---- | C] (Microsoft Corporation)
shell32.dll -> C:\Windows\SysWow64\shell32.dll -> [2009/06/12 18:48:24 | 11,584,000 | ---- | C] (Microsoft Corporation)
MSMPEG2VDEC.DLL -> C:\Windows\SysNative\MSMPEG2VDEC.DLL -> [2009/06/12 18:48:24 | 00,778,752 | ---- | C] (Microsoft Corporation)
p2psvc.dll -> C:\Windows\SysWow64\p2psvc.dll -> [2009/06/12 18:48:24 | 00,644,608 | ---- | C] (Microsoft Corporation)
secproc.dll -> C:\Windows\SysWow64\secproc.dll -> [2009/06/12 18:48:24 | 00,472,064 | ---- | C] (Microsoft Corporation)
wlan.tmf -> C:\Windows\SysNative\wlan.tmf -> [2009/06/12 18:48:23 | 02,607,774 | ---- | C] ()
SearchIndexer.exe -> C:\Windows\SysWow64\SearchIndexer.exe -> [2009/06/12 18:48:23 | 00,441,344 | ---- | C] (Microsoft Corporation)
EhStorAuthn.dll -> C:\Windows\SysNative\EhStorAuthn.dll -> [2009/06/12 18:48:23 | 00,121,856 | ---- | C] ()
EhStorAuthn.dll -> C:\Windows\SysWow64\EhStorAuthn.dll -> [2009/06/12 18:48:23 | 00,117,248 | ---- | C] ()
EhStorPwdMgr.dll -> C:\Windows\SysNative\EhStorPwdMgr.dll -> [2009/06/12 18:48:23 | 00,042,496 | ---- | C] (Microsoft Corporation)
EhStorPwdMgr.dll -> C:\Windows\SysWow64\EhStorPwdMgr.dll -> [2009/06/12 18:48:23 | 00,037,376 | ---- | C] (Microsoft Corporation)
mssvp.dll -> C:\Windows\SysWow64\mssvp.dll -> [2009/06/12 18:48:22 | 00,670,720 | ---- | C] (Microsoft Corporation)
mssph.dll -> C:\Windows\SysNative\mssph.dll -> [2009/06/12 18:48:22 | 00,501,248 | ---- | C] (Microsoft Corporation)
RMActivate_ssp_isv.exe -> C:\Windows\SysNative\RMActivate_ssp_isv.exe -> [2009/06/12 18:48:22 | 00,413,696 | ---- | C] (Microsoft Corporation)
mssphtb.dll -> C:\Windows\SysNative\mssphtb.dll -> [2009/06/12 18:48:22 | 00,312,832 | ---- | C] (Microsoft Corporation)
mcupdate_GenuineIntel.dll -> C:\Windows\SysNative\mcupdate_GenuineIntel.dll -> [2009/06/12 18:48:22 | 00,223,720 | ---- | C] (Microsoft Corporation)
kernel32.dll -> C:\Windows\SysWow64\kernel32.dll -> [2009/06/12 18:48:21 | 00,858,112 | ---- | C] (Microsoft Corporation)
imapi2.dll -> C:\Windows\SysNative\imapi2.dll -> [2009/06/12 18:48:21 | 00,506,880 | ---- | C] (Microsoft Corporation)
srv.sys -> C:\Windows\SysNative\drivers\srv.sys -> [2009/06/12 18:48:21 | 00,440,832 | ---- | C] (Microsoft Corporation)
RMActivate_ssp.exe -> C:\Windows\SysNative\RMActivate_ssp.exe -> [2009/06/12 18:48:21 | 00,409,600 | ---- | C] (Microsoft Corporation)
mscoree.dll -> C:\Windows\SysWow64\mscoree.dll -> [2009/06/12 18:48:21 | 00,278,848 | ---- | C] (Microsoft Corporation)
Query.dll -> C:\Windows\SysNative\Query.dll -> [2009/06/12 18:48:20 | 02,028,032 | ---- | C] (Microsoft Corporation)
ntdll.dll -> C:\Windows\SysWow64\ntdll.dll -> [2009/06/12 18:48:20 | 01,165,088 | ---- | C] (Microsoft Corporation)
MSMPEG2VDEC.DLL -> C:\Windows\SysWow64\MSMPEG2VDEC.DLL -> [2009/06/12 18:48:20 | 00,613,888 | ---- | C] (Microsoft Corporation)
mssph.dll -> C:\Windows\SysWow64\mssph.dll -> [2009/06/12 18:48:20 | 00,351,744 | ---- | C] (Microsoft Corporation)
mssphtb.dll -> C:\Windows\SysWow64\mssphtb.dll -> [2009/06/12 18:48:20 | 00,203,264 | ---- | C] (Microsoft Corporation)
korwbrkr.dll -> C:\Windows\SysNative\korwbrkr.dll -> [2009/06/12 18:48:20 | 00,180,736 | ---- | C] (Microsoft Corporation)
IMJP10K.DLL -> C:\Windows\SysNative\IMJP10K.DLL -> [2009/06/12 18:48:19 | 00,922,624 | ---- | C] (Microsoft Corporation)
mscoree.dll -> C:\Windows\SysNative\mscoree.dll -> [2009/06/12 18:48:19 | 00,403,280 | ---- | C] (Microsoft Corporation)
imapi2.dll -> C:\Windows\SysWow64\imapi2.dll -> [2009/06/12 18:48:19 | 00,378,368 | ---- | C] (Microsoft Corporation)
WinSAT.exe -> C:\Windows\SysNative\WinSAT.exe -> [2009/06/12 18:48:18 | 03,894,272 | ---- | C] (Microsoft Corporation)
uDWM.dll -> C:\Windows\SysNative\uDWM.dll -> [2009/06/12 18:48:18 | 00,367,104 | ---- | C] (Microsoft Corporation)
sdohlp.dll -> C:\Windows\SysWow64\sdohlp.dll -> [2009/06/12 18:48:18 | 00,324,608 | ---- | C] (Microsoft Corporation)
esent.dll -> C:\Windows\SysWow64\esent.dll -> [2009/06/12 18:48:17 | 01,459,200 | ---- | C] (Microsoft Corporation)
IMJP10K.DLL -> C:\Windows\SysWow64\IMJP10K.DLL -> [2009/06/12 18:48:17 | 00,729,600 | ---- | C] (Microsoft Corporation)
DevicePairing.dll -> C:\Windows\SysNative\DevicePairing.dll -> [2009/06/12 18:48:17 | 00,483,328 | ---- | C] (Microsoft Corporation)
DevicePairing.dll -> C:\Windows\SysWow64\DevicePairing.dll -> [2009/06/12 18:48:17 | 00,478,208 | ---- | C] (Microsoft Corporation)
msshsq.dll -> C:\Windows\SysNative\msshsq.dll -> [2009/06/12 18:48:17 | 00,316,928 | ---- | C] (Microsoft Corporation)
rfcomm.sys -> C:\Windows\SysNative\drivers\rfcomm.sys -> [2009/06/12 18:48:17 | 00,178,176 | ---- | C] (Microsoft Corporation)
WMVCORE.DLL -> C:\Windows\SysNative\WMVCORE.DLL -> [2009/06/12 18:48:16 | 02,900,480 | ---- | C] (Microsoft Corporation)
http.sys -> C:\Windows\SysNative\drivers\http.sys -> [2009/06/12 18:48:16 | 00,606,720 | ---- | C] (Microsoft Corporation)
sperror.dll -> C:\Windows\SysNative\sperror.dll -> [2009/06/12 18:48:16 | 00,238,592 | ---- | C] (Microsoft Corporation)
korwbrkr.dll -> C:\Windows\SysWow64\korwbrkr.dll -> [2009/06/12 18:48:16 | 00,143,872 | ---- | C] (Microsoft Corporation)
WindowsAnytimeUpgradeCPL.dll -> C:\Windows\SysNative\WindowsAnytimeUpgradeCPL.dll -> [2009/06/12 18:48:15 | 01,673,216 | ---- | C] (Microsoft Corporation)
IMJP10.IME -> C:\Windows\SysNative\IMJP10.IME -> [2009/06/12 18:48:15 | 01,019,904 | ---- | C] (Microsoft Corporation)
P2PGraph.dll -> C:\Windows\SysNative\P2PGraph.dll -> [2009/06/12 18:48:15 | 00,401,920 | ---- | C] (Microsoft Corporation)
RMActivate_ssp.exe -> C:\Windows\SysWow64\RMActivate_ssp.exe -> [2009/06/12 18:48:15 | 00,347,136 | ---- | C] (Microsoft Corporation)
RMActivate_ssp_isv.exe -> C:\Windows\SysWow64\RMActivate_ssp_isv.exe -> [2009/06/12 18:48:15 | 00,346,624 | ---- | C] (Microsoft Corporation)
SLC.dll -> C:\Windows\SysWow64\SLC.dll -> [2009/06/12 18:48:15 | 00,228,352 | ---- | C] (Microsoft Corporation)
sperror.dll -> C:\Windows\SysWow64\sperror.dll -> [2009/06/12 18:48:15 | 00,190,464 | ---- | C] (Microsoft Corporation)
PresentationHostProxy.dll -> C:\Windows\SysWow64\PresentationHostProxy.dll -> [2009/06/12 18:48:15 | 00,041,344 | ---- | C] (Microsoft Corporation)
wmp.dll -> C:\Windows\SysWow64\wmp.dll -> [2009/06/12 18:48:14 | 10,625,536 | ---- | C] (Microsoft Corporation)
crypt32.dll -> C:\Windows\SysNative\crypt32.dll -> [2009/06/12 18:48:14 | 01,259,520 | ---- | C] (Microsoft Corporation)
msshsq.dll -> C:\Windows\SysWow64\msshsq.dll -> [2009/06/12 18:48:14 | 00,231,424 | ---- | C] (Microsoft Corporation)
EhStorAPI.dll -> C:\Windows\SysNative\EhStorAPI.dll -> [2009/06/12 18:48:13 | 00,131,072 | ---- | C] (Microsoft Corporation)
EhStorAPI.dll -> C:\Windows\SysWow64\EhStorAPI.dll -> [2009/06/12 18:48:13 | 00,120,320 | ---- | C] (Microsoft Corporation)
WMVCORE.DLL -> C:\Windows\SysWow64\WMVCORE.DLL -> [2009/06/12 18:48:12 | 02,386,944 | ---- | C] (Microsoft Corporation)
msjet40.dll -> C:\Windows\SysWow64\msjet40.dll -> [2009/06/12 18:48:12 | 01,589,248 | ---- | C] (Microsoft Corporation)
wevtsvc.dll -> C:\Windows\SysNative\wevtsvc.dll -> [2009/06/12 18:48:12 | 01,491,968 | ---- | C] (Microsoft Corporation)
IasMigPlugin.dll -> C:\Windows\SysNative\IasMigPlugin.dll -> [2009/06/12 18:48:12 | 00,581,632 | ---- | C] (Microsoft)
Storport.sys -> C:\Windows\SysNative\drivers\Storport.sys -> [2009/06/12 18:48:12 | 00,164,328 | ---- | C] (Microsoft Corporation)
setupapi.dll -> C:\Windows\SysNative\setupapi.dll -> [2009/06/12 18:48:11 | 01,925,120 | ---- | C] (Microsoft Corporation)
msxml6.dll -> C:\Windows\SysWow64\msxml6.dll -> [2009/06/12 18:48:11 | 01,336,320 | ---- | C] (Microsoft Corporation)
ndis.sys -> C:\Windows\SysNative\drivers\ndis.sys -> [2009/06/12 18:48:11 | 00,738,264 | ---- | C] (Microsoft Corporation)
PresentationHostProxy.dll -> C:\Windows\SysNative\PresentationHostProxy.dll -> [2009/06/12 18:48:11 | 00,049,496 | ---- | C] (Microsoft Corporation)
Query.dll -> C:\Windows\SysWow64\Query.dll -> [2009/06/12 18:48:10 | 01,381,376 | ---- | C] (Microsoft Corporation)
qmgr.dll -> C:\Windows\SysNative\qmgr.dll -> [2009/06/12 18:48:10 | 01,081,856 | ---- | C] (Microsoft Corporation)
winload.efi -> C:\Windows\SysNative\winload.efi -> [2009/06/12 18:48:10 | 01,078,232 | ---- | C] (Microsoft Corporation)
printfilterpipelinesvc.exe -> C:\Windows\SysNative\printfilterpipelinesvc.exe -> [2009/06/12 18:48:10 | 01,030,144 | ---- | C] (Microsoft Corporation)
EncDec.dll -> C:\Windows\SysNative\EncDec.dll -> [2009/06/12 18:48:10 | 00,558,592 | ---- | C] (Microsoft Corporation)
SearchProtocolHost.exe -> C:\Windows\SysNative\SearchProtocolHost.exe -> [2009/06/12 18:48:10 | 00,258,560 | ---- | C] (Microsoft Corporation)
SearchFilterHost.exe -> C:\Windows\SysNative\SearchFilterHost.exe -> [2009/06/12 18:48:10 | 00,111,616 | ---- | C] (Microsoft Corporation)
compcln.exe -> C:\Windows\SysNative\compcln.exe -> [2009/06/12 18:48:10 | 00,056,320 | ---- | C] (Microsoft Corporation)
IMJP10.IME -> C:\Windows\SysWow64\IMJP10.IME -> [2009/06/12 18:48:09 | 00,883,712 | ---- | C] (Microsoft Corporation)
user32.dll -> C:\Windows\SysWow64\user32.dll -> [2009/06/12 18:48:09 | 00,648,704 | ---- | C] (Microsoft Corporation)
srchadmin.dll -> C:\Windows\SysNative\srchadmin.dll -> [2009/06/12 18:48:09 | 00,347,648 | ---- | C] (Microsoft Corporation)
systemsf.ebd -> C:\Windows\SysNative\systemsf.ebd -> [2009/06/12 18:48:09 | 00,262,552 | ---- | C] ()
infocardapi.dll -> C:\Windows\SysNative\infocardapi.dll -> [2009/06/12 18:48:09 | 00,171,360 | ---- | C] (Microsoft Corporation)
EhStorShell.dll -> C:\Windows\SysNative\EhStorShell.dll -> [2009/06/12 18:48:09 | 00,123,904 | ---- | C] (Microsoft Corporation)
EhStorShell.dll -> C:\Windows\SysWow64\EhStorShell.dll -> [2009/06/12 18:48:09 | 00,114,176 | ---- | C] (Microsoft Corporation)
fdBth.dll -> C:\Windows\SysNative\fdBth.dll -> [2009/06/12 18:48:09 | 00,112,640 | ---- | C] (Microsoft Corporation)
diagperf.dll -> C:\Windows\SysNative\diagperf.dll -> [2009/06/12 18:48:08 | 01,584,128 | ---- | C] (Microsoft Corporation)
vssapi.dll -> C:\Windows\SysNative\vssapi.dll -> [2009/06/12 18:48:08 | 01,495,040 | ---- | C] (Microsoft Corporation)
advapi32.dll -> C:\Windows\SysNative\advapi32.dll -> [2009/06/12 18:48:08 | 01,065,472 | ---- | C] (Microsoft Corporation)
winload.exe -> C:\Windows\SysNative\winload.exe -> [2009/06/12 18:48:08 | 01,064,920 | ---- | C] (Microsoft Corporation)
msexch40.dll -> C:\Windows\SysWow64\msexch40.dll -> [2009/06/12 18:48:08 | 00,409,600 | ---- | C] (Microsoft Corporation)
P2PGraph.dll -> C:\Windows\SysWow64\P2PGraph.dll -> [2009/06/12 18:48:08 | 00,327,168 | ---- | C] (Microsoft Corporation)
explorer.exe -> C:\Windows\explorer.exe -> [2009/06/12 18:48:07 | 03,079,168 | ---- | C] (Microsoft Corporation)
ole32.dll -> C:\Windows\SysWow64\ole32.dll -> [2009/06/12 18:48:07 | 01,316,864 | ---- | C] (Microsoft Corporation)
mblctr.exe -> C:\Windows\SysNative\mblctr.exe -> [2009/06/12 18:48:07 | 00,967,168 | ---- | C] (Microsoft Corporation)
rpcss.dll -> C:\Windows\SysNative\rpcss.dll -> [2009/06/12 18:48:07 | 00,719,872 | ---- | C] (Microsoft Corporation)
IasMigReader.exe -> C:\Windows\SysWow64\IasMigReader.exe -> [2009/06/12 18:48:07 | 00,463,872 | ---- | C] (Microsoft Corporation)
srchadmin.dll -> C:\Windows\SysWow64\srchadmin.dll -> [2009/06/12 18:48:07 | 00,301,568 | ---- | C] (Microsoft Corporation)
msxml6.dll -> C:\Windows\SysNative\msxml6.dll -> [2009/06/12 18:48:06 | 01,733,120 | ---- | C] (Microsoft Corporation)
CertEnroll.dll -> C:\Windows\SysNative\CertEnroll.dll -> [2009/06/12 18:48:06 | 01,658,368 | ---- | C] (Microsoft Corporation)
VSSVC.exe -> C:\Windows\SysNative\VSSVC.exe -> [2009/06/12 18:48:06 | 01,433,600 | ---- | C] (Microsoft Corporation)
mfc42u.dll -> C:\Windows\SysNative\mfc42u.dll -> [2009/06/12 18:48:06 | 01,357,824 | ---- | C] (Microsoft Corporation)
msxml3.dll -> C:\Windows\SysWow64\msxml3.dll -> [2009/06/12 18:48:06 | 01,183,232 | ---- | C] (Microsoft Corporation)
kerberos.dll -> C:\Windows\SysNative\kerberos.dll -> [2009/06/12 18:48:06 | 00,654,848 | ---- | C] (Microsoft Corporation)
EncDec.dll -> C:\Windows\SysWow64\EncDec.dll -> [2009/06/12 18:48:06 | 00,428,544 | ---- | C] (Microsoft Corporation)
psisrndr.ax -> C:\Windows\SysWow64\psisrndr.ax -> [2009/06/12 18:48:06 | 00,217,088 | ---- | C] (Microsoft Corporation)
mmc.exe -> C:\Windows\SysWow64\mmc.exe -> [2009/06/12 18:48:05 | 01,792,512 | ---- | C] (Microsoft Corporation)
comsvcs.dll -> C:\Windows\SysNative\comsvcs.dll -> [2009/06/12 18:48:05 | 01,686,528 | ---- | C] (Microsoft Corporation)
IasMigPlugin.dll -> C:\Windows\SysWow64\IasMigPlugin.dll -> [2009/06/12 18:48:05 | 00,454,144 | ---- | C] (Microsoft)
gdi32.dll -> C:\Windows\SysWow64\gdi32.dll -> [2009/06/12 18:48:05 | 00,303,616 | ---- | C] (Microsoft Corporation)
spoolss.dll -> C:\Windows\SysNative\spoolss.dll -> [2009/06/12 18:48:05 | 00,238,080 | ---- | C] (Microsoft Corporation)
DevicePairingWizard.exe -> C:\Windows\SysNative\DevicePairingWizard.exe -> [2009/06/12 18:48:05 | 00,069,120 | ---- | C] (Microsoft Corporation)
DevicePairingWizard.exe -> C:\Windows\SysWow64\DevicePairingWizard.exe -> [2009/06/12 18:48:05 | 00,065,536 | ---- | C] (Microsoft Corporation)
d3d9.dll -> C:\Windows\SysNative\d3d9.dll -> [2009/06/12 18:48:04 | 01,930,240 | ---- | C] (Microsoft Corporation)
browseui.dll -> C:\Windows\SysNative\browseui.dll -> [2009/06/12 18:48:04 | 01,650,688 | ---- | C] (Microsoft Corporation)
mfc42.dll -> C:\Windows\SysNative\mfc42.dll -> [2009/06/12 18:48:04 | 01,395,712 | ---- | C] (Microsoft Corporation)
Magnify.exe -> C:\Windows\SysWow64\Magnify.exe -> [2009/06/12 18:48:04 | 00,710,144 | ---- | C] (Microsoft Corporation)
riched20.dll -> C:\Windows\SysWow64\riched20.dll -> [2009/06/12 18:48:04 | 00,466,944 | ---- | C] (Microsoft Corporation)
afd.sys -> C:\Windows\SysNative\drivers\afd.sys -> [2009/06/12 18:48:04 | 00,406,016 | ---- | C] (Microsoft Corporation)
PresentationCFFRasterizerNative_v0300.dll -> C:\Windows\SysNative\PresentationCFFRasterizerNative_v0300.dll -> [2009/06/12 18:48:04 | 00,123,256 | ---- | C] (Microsoft Corporation)
fdBth.dll -> C:\Windows\SysWow64\fdBth.dll -> [2009/06/12 18:48:04 | 00,088,064 | ---- | C] (Microsoft Corporation)
WsmSvc.dll -> C:\Windows\SysNative\WsmSvc.dll -> [2009/06/12 18:48:03 | 01,092,096 | ---- | C] (Microsoft Corporation)
RacEngn.dll -> C:\Windows\SysWow64\RacEngn.dll -> [2009/06/12 18:48:03 | 00,880,640 | ---- | C] (Microsoft Corporation)
WMPhoto.dll -> C:\Windows\SysNative\WMPhoto.dll -> [2009/06/12 18:48:03 | 00,379,392 | ---- | C] (Microsoft Corporation)
bcrypt.dll -> C:\Windows\SysWow64\bcrypt.dll -> [2009/06/12 18:48:03 | 00,275,968 | ---- | C] (Microsoft Corporation)
SearchProtocolHost.exe -> C:\Windows\SysWow64\SearchProtocolHost.exe -> [2009/06/12 18:48:03 | 00,185,344 | ---- | C] (Microsoft Corporation)
SearchFilterHost.exe -> C:\Windows\SysWow64\SearchFilterHost.exe -> [2009/06/12 18:48:03 | 00,087,552 | ---- | C] (Microsoft Corporation)
milcore.dll -> C:\Windows\SysWow64\milcore.dll -> [2009/06/12 18:48:02 | 02,012,160 | ---- | C] (Microsoft Corporation)
CertEnroll.dll -> C:\Windows\SysWow64\CertEnroll.dll -> [2009/06/12 18:48:02 | 01,112,064 | ---- | C] (Microsoft Corporation)
NaturalLanguage6.dll -> C:\Windows\SysWow64\NaturalLanguage6.dll -> [2009/06/12 18:48:02 | 00,805,376 | ---- | C] (Microsoft Corporation)
netio.sys -> C:\Windows\SysNative\drivers\netio.sys -> [2009/06/12 18:48:02 | 00,347,112 | ---- | C] (Microsoft Corporation)
iasrecst.dll -> C:\Windows\SysNative\iasrecst.dll -> [2009/06/12 18:48:02 | 00,192,000 | ---- | C] (Microsoft Corporation)
spoolss.dll -> C:\Windows\SysWow64\spoolss.dll -> [2009/06/12 18:48:02 | 00,160,768 | ---- | C] (Microsoft Corporation)
dbgeng.dll -> C:\Windows\SysNative\dbgeng.dll -> [2009/06/12 18:48:01 | 02,484,224 | ---- | C] (Microsoft Corporation)
mstscax.dll -> C:\Windows\SysNative\mstscax.dll -> [2009/06/12 18:48:01 | 02,424,320 | ---- | C] (Microsoft Corporation)
apds.dll -> C:\Windows\SysNative\apds.dll -> [2009/06/12 18:48:01 | 02,112,000 | ---- | C] (Microsoft Corporation)
Magnify.exe -> C:\Windows\SysNative\Magnify.exe -> [2009/06/12 18:48:01 | 00,859,648 | ---- | C] (Microsoft Corporation)
dpapimig.exe -> C:\Windows\SysNative\dpapimig.exe -> [2009/06/12 18:48:01 | 00,553,472 | ---- | C] (Microsoft Corporation)
eudcedit.exe -> C:\Windows\SysNative\eudcedit.exe -> [2009/06/12 18:48:01 | 00,280,064 | ---- | C] (Microsoft Corporation)
gpedit.dll -> C:\Windows\SysNative\gpedit.dll -> [2009/06/12 18:48:00 | 01,013,248 | ---- | C] (Microsoft Corporation)
schedsvc.dll -> C:\Windows\SysNative\schedsvc.dll -> [2009/06/12 18:48:00 | 00,843,776 | ---- | C] (Microsoft Corporation)
audiosrv.dll -> C:\Windows\SysNative\audiosrv.dll -> [2009/06/12 18:48:00 | 00,446,464 | ---- | C] (Microsoft Corporation)
es.dll -> C:\Windows\SysNative\es.dll -> [2009/06/12 18:48:00 | 00,361,984 | ---- | C] (Microsoft Corporation)
msjtes40.dll -> C:\Windows\SysWow64\msjtes40.dll -> [2009/06/12 18:48:00 | 00,290,816 | ---- | C] (Microsoft Corporation)
fsquirt.exe -> C:\Windows\SysNative\fsquirt.exe -> [2009/06/12 18:48:00 | 00,204,288 | ---- | C] (Microsoft Corporation)
RacEngn.dll -> C:\Windows\SysNative\RacEngn.dll -> [2009/06/12 18:47:59 | 01,244,672 | ---- | C] (Microsoft Corporation)
msctf.dll -> C:\Windows\SysNative\msctf.dll -> [2009/06/12 18:47:59 | 01,040,896 | ---- | C] (Microsoft Corporation)
gpedit.dll -> C:\Windows\SysWow64\gpedit.dll -> [2009/06/12 18:47:59 | 00,950,784 | ---- | C] (Microsoft Corporation)
comuid.dll -> C:\Windows\SysNative\comuid.dll -> [2009/06/12 18:47:59 | 00,918,528 | ---- | C] (Microsoft Corporation)
user32.dll -> C:\Windows\SysNative\user32.dll -> [2009/06/12 18:47:59 | 00,820,224 | ---- | C] (Microsoft Corporation)
evr.dll -> C:\Windows\SysNative\evr.dll -> [2009/06/12 18:47:59 | 00,647,680 | ---- | C] (Microsoft Corporation)
msdrm.dll -> C:\Windows\SysNative\msdrm.dll -> [2009/06/12 18:47:59 | 00,460,288 | ---- | C] (Microsoft Corporation)
msvcp60.dll -> C:\Windows\SysWow64\msvcp60.dll -> [2009/06/12 18:47:59 | 00,406,528 | ---- | C] (Microsoft Corporation)
infocardapi.dll -> C:\Windows\SysWow64\infocardapi.dll -> [2009/06/12 18:47:59 | 00,099,680 | ---- | C] (Microsoft Corporation)
slwmi.dll -> C:\Windows\SysNative\slwmi.dll -> [2009/06/12 18:47:59 | 00,088,064 | ---- | C] (Microsoft Corporation)
Storprop.dll -> C:\Windows\SysWow64\Storprop.dll -> [2009/06/12 18:47:59 | 00,055,808 | ---- | C] (Microsoft Corporation)
oleaut32.dll -> C:\Windows\SysNative\oleaut32.dll -> [2009/06/12 18:47:58 | 00,847,360 | ---- | C] (Microsoft Corporation)
bthprops.cpl -> C:\Windows\SysNative\bthprops.cpl -> [2009/06/12 18:47:58 | 00,668,160 | ---- | C] (Microsoft Corporation)
ipsmsnap.dll -> C:\Windows\SysNative\ipsmsnap.dll -> [2009/06/12 18:47:58 | 00,620,544 | ---- | C] (Microsoft Corporation)
photowiz.dll -> C:\Windows\SysNative\photowiz.dll -> [2009/06/12 18:47:58 | 00,402,944 | ---- | C] (Microsoft Corporation)
fltMgr.sys -> C:\Windows\SysNative\drivers\fltMgr.sys -> [2009/06/12 18:47:58 | 00,275,432 | ---- | C] (Microsoft Corporation)
es.dll -> C:\Windows\SysWow64\es.dll -> [2009/06/12 18:47:58 | 00,268,800 | ---- | C] (Microsoft Corporation)
nlhtml.dll -> C:\Windows\SysNative\nlhtml.dll -> [2009/06/12 18:47:58 | 00,181,248 | ---- | C] (Microsoft Corporation)
advapi32.dll -> C:\Windows\SysWow64\advapi32.dll -> [2009/06/12 18:47:57 | 00,800,768 | ---- | C] (Microsoft Corporation)
msihnd.dll -> C:\Windows\SysNative\msihnd.dll -> [2009/06/12 18:47:57 | 00,503,296 | ---- | C] (Microsoft Corporation)
shlwapi.dll -> C:\Windows\SysNative\shlwapi.dll -> [2009/06/12 18:47:57 | 00,455,680 | ---- | C] (Microsoft Corporation)
wevtapi.dll -> C:\Windows\SysNative\wevtapi.dll -> [2009/06/12 18:47:57 | 00,394,240 | ---- | C] (Microsoft Corporation)
WMPhoto.dll -> C:\Windows\SysWow64\WMPhoto.dll -> [2009/06/12 18:47:57 | 00,321,536 | ---- | C] (Microsoft Corporation)
mstext40.dll -> C:\Windows\SysWow64\mstext40.dll -> [2009/06/12 18:47:57 | 00,282,624 | ---- | C] (Microsoft Corporation)
WebClnt.dll -> C:\Windows\SysWow64\WebClnt.dll -> [2009/06/12 18:47:57 | 00,199,680 | ---- | C] (Microsoft Corporation)
PresentationSettings.exe -> C:\Windows\SysNative\PresentationSettings.exe -> [2009/06/12 18:47:57 | 00,173,568 | ---- | C] (Microsoft Corporation)
SLC.dll -> C:\Windows\SysNative\SLC.dll -> [2009/06/12 18:47:57 | 00,151,552 | ---- | C] (Microsoft Corporation)
AuxiliaryDisplayServices.dll -> C:\Windows\SysNative\AuxiliaryDisplayServices.dll -> [2009/06/12 18:47:57 | 00,126,464 | ---- | C] (Microsoft Corporation)
quartz.dll -> C:\Windows\SysNative\quartz.dll -> [2009/06/12 18:47:56 | 01,570,304 | ---- | C] (Microsoft Corporation)
comsvcs.dll -> C:\Windows\SysWow64\comsvcs.dll -> [2009/06/12 18:47:56 | 01,209,856 | ---- | C] (Microsoft Corporation)
msvcrt.dll -> C:\Windows\SysNative\msvcrt.dll -> [2009/06/12 18:47:56 | 00,621,056 | ---- | C] (Microsoft Corporation)
msxbde40.dll -> C:\Windows\SysWow64\msxbde40.dll -> [2009/06/12 18:47:56 | 00,454,656 | ---- | C] (Microsoft Corporation)
certcli.dll -> C:\Windows\SysNative\certcli.dll -> [2009/06/12 18:47:56 | 00,447,488 | ---- | C] (Microsoft Corporation)
msexcl40.dll -> C:\Windows\SysWow64\msexcl40.dll -> [2009/06/12 18:47:56 | 00,339,968 | ---- | C] (Microsoft Corporation)
psisrndr.ax -> C:\Windows\SysNative\psisrndr.ax -> [2009/06/12 18:47:56 | 00,289,792 | ---- | C] (Microsoft Corporation)
WcnNetsh.dll -> C:\Windows\SysNative\WcnNetsh.dll -> [2009/06/12 18:47:56 | 00,238,592 | ---- | C] (Microsoft Corporation)
AuxiliaryDisplayDriverLib.dll -> C:\Windows\SysNative\AuxiliaryDisplayDriverLib.dll -> [2009/06/12 18:47:56 | 00,131,072 | ---- | C] (Microsoft Corporation)
slwmi.dll -> C:\Windows\SysWow64\slwmi.dll -> [2009/06/12 18:47:56 | 00,067,584 | ---- | C] (Microsoft Corporation)
wcnwiz.dll -> C:\Windows\SysNative\wcnwiz.dll -> [2009/06/12 18:47:55 | 01,681,920 | ---- | C] (Microsoft Corporation)
vssapi.dll -> C:\Windows\SysWow64\vssapi.dll -> [2009/06/12 18:47:55 | 01,077,248 | ---- | C] (Microsoft Corporation)
devmgr.dll -> C:\Windows\SysNative\devmgr.dll -> [2009/06/12 18:47:55 | 00,498,688 | ---- | C] (Microsoft Corporation)
srvnet.sys -> C:\Windows\SysNative\drivers\srvnet.sys -> [2009/06/12 18:47:55 | 00,143,360 | ---- | C] (Microsoft Corporation)
DevicePairingProxy.dll -> C:\Windows\SysNative\DevicePairingProxy.dll -> [2009/06/12 18:47:55 | 00,057,856 | ---- | C] (Microsoft Corporation)
DevicePairingProxy.dll -> C:\Windows\SysWow64\DevicePairingProxy.dll -> [2009/06/12 18:47:55 | 00,054,784 | ---- | C] (Microsoft Corporation)
mstscax.dll -> C:\Windows\SysWow64\mstscax.dll -> [2009/06/12 18:47:54 | 02,066,432 | ---- | C] (Microsoft Corporation)
authui.dll -> C:\Windows\SysWow64\authui.dll -> [2009/06/12 18:47:54 | 01,985,024 | ---- | C] (Microsoft Corporation)
NetProjW.dll -> C:\Windows\SysNative\NetProjW.dll -> [2009/06/12 18:47:54 | 01,098,240 | ---- | C] (Microsoft Corporation)
wcncsvc.dll -> C:\Windows\SysNative\wcncsvc.dll -> [2009/06/12 18:47:54 | 00,581,120 | ---- | C] (Microsoft Corporation)
msctfp.dll -> C:\Windows\SysNative\msctfp.dll -> [2009/06/12 18:47:54 | 00,230,400 | ---- | C] (Microsoft Corporation)
fdBthProxy.dll -> C:\Windows\SysNative\fdBthProxy.dll -> [2009/06/12 18:47:54 | 00,012,288 | ---- | C] (Microsoft Corporation)
msdtctm.dll -> C:\Windows\SysNative\msdtctm.dll -> [2009/06/12 18:47:53 | 01,499,136 | ---- | C] (Microsoft Corporation)
shdocvw.dll -> C:\Windows\SysNative\shdocvw.dll -> [2009/06/12 18:47:53 | 01,195,520 | ---- | C] (Microsoft Corporation)
msrepl40.dll -> C:\Windows\SysWow64\msrepl40.dll -> [2009/06/12 18:47:52 | 00,643,072 | ---- | C] (Microsoft Corporation)
davclnt.dll -> C:\Windows\SysNative\davclnt.dll -> [2009/06/12 18:47:52 | 00,082,432 | ---- | C] (Microsoft Corporation)
win32spl.dll -> C:\Windows\SysNative\win32spl.dll -> [2009/06/12 18:47:51 | 00,660,480 | ---- | C] (Microsoft Corporation)
bthprops.cpl -> C:\Windows\SysWow64\bthprops.cpl -> [2009/06/12 18:47:51 | 00,640,512 | ---- | C] (Microsoft Corporation)
msvcp60.dll -> C:\Windows\SysNative\msvcp60.dll -> [2009/06/12 18:47:51 | 00,598,016 | ---- | C] (Microsoft Corporation)
newdev.dll -> C:\Windows\SysWow64\newdev.dll -> [2009/06/12 18:47:51 | 00,469,504 | ---- | C] (Microsoft Corporation)
w32time.dll -> C:\Windows\SysNative\w32time.dll -> [2009/06/12 18:47:51 | 00,372,736 | ---- | C] (Microsoft Corporation)
PresentationHost.exe -> C:\Windows\SysNative\PresentationHost.exe -> [2009/06/12 18:47:51 | 00,354,640 | ---- | C] (Microsoft Corporation)
PresentationHost.exe -> C:\Windows\SysWow64\PresentationHost.exe -> [2009/06/12 18:47:51 | 00,323,952 | ---- | C] (Microsoft Corporation)
rsaenh.dll -> C:\Windows\SysNative\rsaenh.dll -> [2009/06/12 18:47:51 | 00,289,768 | ---- | C] (Microsoft Corporation)
spoolsv.exe -> C:\Windows\SysNative\spoolsv.exe -> [2009/06/12 18:47:51 | 00,268,288 | ---- | C] (Microsoft Corporation)
WebClnt.dll -> C:\Windows\SysNative\WebClnt.dll -> [2009/06/12 18:47:51 | 00,218,624 | ---- | C] (Microsoft Corporation)
Classpnp.sys -> C:\Windows\SysNative\drivers\Classpnp.sys -> [2009/06/12 18:47:51 | 00,164,840 | ---- | C] (Microsoft Corporation)
certutil.exe -> C:\Windows\SysNative\certutil.exe -> [2009/06/12 18:47:50 | 01,060,864 | ---- | C] (Microsoft Corporation)
propsys.dll -> C:\Windows\SysWow64\propsys.dll -> [2009/06/12 18:47:50 | 00,754,688 | ---- | C] (Microsoft Corporation)
certmgr.dll -> C:\Windows\SysNative\certmgr.dll -> [2009/06/12 18:47:49 | 01,748,992 | ---- | C] (Microsoft Corporation)
crypt32.dll -> C:\Windows\SysWow64\crypt32.dll -> [2009/06/12 18:47:49 | 00,978,944 | ---- | C] (Microsoft Corporation)
gpsvc.dll -> C:\Windows\SysNative\gpsvc.dll -> [2009/06/12 18:47:49 | 00,719,360 | ---- | C] (Microsoft Corporation)
SLCommDlg.dll -> C:\Windows\SysNative\SLCommDlg.dll -> [2009/06/12 18:47:49 | 00,631,296 | ---- | C] (Microsoft Corporation)
dot3.tmf -> C:\Windows\SysNative\dot3.tmf -> [2009/06/12 18:47:49 | 00,471,992 | ---- | C] ()
netbt.sys -> C:\Windows\SysNative\drivers\netbt.sys -> [2009/06/12 18:47:49 | 00,248,320 | ---- | C] (Microsoft Corporation)
eudcedit.exe -> C:\Windows\SysWow64\eudcedit.exe -> [2009/06/12 18:47:49 | 00,205,824 | ---- | C] (Microsoft Corporation)
iasrecst.dll -> C:\Windows\SysWow64\iasrecst.dll -> [2009/06/12 18:47:49 | 00,119,296 | ---- | C] (Microsoft Corporation)
PresentationCFFRasterizerNative_v0300.dll -> C:\Windows\SysWow64\PresentationCFFRasterizerNative_v0300.dll -> [2009/06/12 18:47:49 | 00,102,816 | ---- | C] (Microsoft Corporation)
explorer.exe -> C:\Windows\SysWow64\explorer.exe -> [2009/06/12 18:47:48 | 02,926,592 | ---- | C] (Microsoft Corporation)
msdtcprx.dll -> C:\Windows\SysNative\msdtcprx.dll -> [2009/06/12 18:47:48 | 00,727,552 | ---- | C] (Microsoft Corporation)
umpnpmgr.dll -> C:\Windows\SysNative\umpnpmgr.dll -> [2009/06/12 18:47:48 | 00,313,344 | ---- | C] (Microsoft Corporation)
setupapi.dll -> C:\Windows\SysWow64\setupapi.dll -> [2009/06/12 18:47:47 | 01,591,296 | ---- | C] (Microsoft Corporation)
mspbde40.dll -> C:\Windows\SysWow64\mspbde40.dll -> [2009/06/12 18:47:47 | 00,368,640 | ---- | C] (Microsoft Corporation)
d3d9.dll -> C:\Windows\SysWow64\d3d9.dll -> [2009/06/12 18:47:46 | 01,788,416 | ---- | C] (Microsoft Corporation)
eaphost.tmf -> C:\Windows\SysNative\eaphost.tmf -> [2009/06/12 18:47:46 | 00,700,507 | ---- | C] ()
rdbss.sys -> C:\Windows\SysNative\drivers\rdbss.sys -> [2009/06/12 18:47:46 | 00,287,744 | ---- | C] (Microsoft Corporation)
PhotoScreensaver.scr -> C:\Windows\SysNative\PhotoScreensaver.scr -> [2009/06/12 18:47:45 | 00,840,704 | ---- | C] (Microsoft Corporation)
swprv.dll -> C:\Windows\SysNative\swprv.dll -> [2009/06/12 18:47:45 | 00,480,768 | ---- | C] (Microsoft Corporation)
SLUI.exe -> C:\Windows\SysNative\SLUI.exe -> [2009/06/12 18:47:45 | 00,385,024 | ---- | C] (Microsoft Corporation)
WMNetMgr.dll -> C:\Windows\SysNative\WMNetMgr.dll -> [2009/06/12 18:47:44 | 01,245,696 | ---- | C] (Microsoft Corporation)
MPSSVC.dll -> C:\Windows\SysNative\MPSSVC.dll -> [2009/06/12 18:47:44 | 00,603,136 | ---- | C] (Microsoft Corporation)
gdi32.dll -> C:\Windows\SysNative\gdi32.dll -> [2009/06/12 18:47:44 | 00,389,632 | ---- | C] (Microsoft Corporation)
msv1_0.dll -> C:\Windows\SysNative\msv1_0.dll -> [2009/06/12 18:47:44 | 00,265,728 | ---- | C] (Microsoft Corporation)
msltus40.dll -> C:\Windows\SysWow64\msltus40.dll -> [2009/06/12 18:47:44 | 00,241,664 | ---- | C] (Microsoft Corporation)
davclnt.dll -> C:\Windows\SysWow64\davclnt.dll -> [2009/06/12 18:47:44 | 00,061,440 | ---- | C] (Microsoft Corporation)
mfc42.dll -> C:\Windows\SysWow64\mfc42.dll -> [2009/06/12 18:47:43 | 01,135,104 | ---- | C] (Microsoft Corporation)
WindowsCodecs.dll -> C:\Windows\SysNative\WindowsCodecs.dll -> [2009/06/12 18:47:43 | 00,841,728 | ---- | C] (Microsoft Corporation)
wmicmiplugin.dll -> C:\Windows\SysNative\wmicmiplugin.dll -> [2009/06/12 18:47:43 | 00,497,152 | ---- | C] (Microsoft Corporation)
ci.dll -> C:\Windows\SysNative\ci.dll -> [2009/06/12 18:47:43 | 00,380,392 | ---- | C] (Microsoft Corporation)
shlwapi.dll -> C:\Windows\SysWow64\shlwapi.dll -> [2009/06/12 18:47:43 | 00,353,280 | ---- | C] (Microsoft Corporation)
StructuredQuerySchema.bin -> C:\Windows\SysWow64\StructuredQuerySchema.bin -> [2009/06/12 18:47:43 | 00,107,612 | ---- | C] ()
StructuredQuerySchema.bin -> C:\Windows\SysNative\StructuredQuerySchema.bin -> [2009/06/12 18:47:43 | 00,107,612 | ---- | C] ()
WMVSDECD.DLL -> C:\Windows\SysNative\WMVSDECD.DLL -> [2009/06/12 18:47:42 | 01,543,680 | ---- | C] (Microsoft Corporation)
browseui.dll -> C:\Windows\SysWow64\browseui.dll -> [2009/06/12 18:47:42 | 01,324,032 | ---- | C] (Microsoft Corporation)
samsrv.dll -> C:\Windows\SysNative\samsrv.dll -> [2009/06/12 18:47:42 | 00,671,744 | ---- | C] (Microsoft Corporation)
msrd3x40.dll -> C:\Windows\SysWow64\msrd3x40.dll -> [2009/06/12 18:47:42 | 00,344,064 | ---- | C] (Microsoft Corporation)
PortableDeviceApi.dll -> C:\Windows\SysNative\PortableDeviceApi.dll -> [2009/06/12 18:47:42 | 00,324,608 | ---- | C] (Microsoft Corporation)
usbhub.sys -> C:\Windows\SysNative\drivers\usbhub.sys -> [2009/06/12 18:47:42 | 00,273,920 | ---- | C] (Microsoft Corporation)
ipsecsnp.dll -> C:\Windows\SysNative\ipsecsnp.dll -> [2009/06/12 18:47:41 | 00,935,424 | ---- | C] (Microsoft Corporation)
dxgkrnl.sys -> C:\Windows\SysNative\drivers\dxgkrnl.sys -> [2009/06/12 18:47:41 | 00,885,248 | ---- | C] (Microsoft Corporation)
sqlsrv32.dll -> C:\Windows\SysNative\sqlsrv32.dll -> [2009/06/12 18:47:41 | 00,581,632 | ---- | C] (Microsoft Corporation)
iassdo.dll -> C:\Windows\SysNative\iassdo.dll -> [2009/06/12 18:47:41 | 00,344,064 | ---- | C] (Microsoft Corporation)
photowiz.dll -> C:\Windows\SysWow64\photowiz.dll -> [2009/06/12 18:47:41 | 00,293,376 | ---- | C] (Microsoft Corporation)
wevtapi.dll -> C:\Windows\SysWow64\wevtapi.dll -> [2009/06/12 18:47:41 | 00,250,368 | ---- | C] (Microsoft Corporation)
nlhtml.dll -> C:\Windows\SysWow64\nlhtml.dll -> [2009/06/12 18:47:41 | 00,136,192 | ---- | C] (Microsoft Corporation)
wercon.exe -> C:\Windows\SysNative\wercon.exe -> [2009/06/12 18:47:40 | 01,394,176 | ---- | C] (Microsoft Corporation)
netapi32.dll -> C:\Windows\SysNative\netapi32.dll -> [2009/06/12 18:47:40 | 00,648,192 | ---- | C] (Microsoft Corporation)
locale.nls -> C:\Windows\SysWow64\locale.nls -> [2009/06/12 18:47:39 | 03,662,128 | ---- | C] ()
locale.nls -> C:\Windows\SysNative\locale.nls -> [2009/06/12 18:47:39 | 03,662,128 | ---- | C] ()
authui.dll -> C:\Windows\SysNative\authui.dll -> [2009/06/12 18:47:39 | 02,272,256 | ---- | C] (Microsoft Corporation)
onex.tmf -> C:\Windows\SysNative\onex.tmf -> [2009/06/12 18:47:39 | 00,395,723 | ---- | C] ()
services.exe -> C:\Windows\SysNative\services.exe -> [2009/06/12 18:47:39 | 00,384,512 | ---- | C] (Microsoft Corporation)
USBSTOR.SYS -> C:\Windows\SysNative\drivers\USBSTOR.SYS -> [2009/06/12 18:47:39 | 00,077,824 | ---- | C] (Microsoft Corporation)
quartz.dll -> C:\Windows\SysWow64\quartz.dll -> [2009/06/12 18:47:38 | 01,314,816 | ---- | C] (Microsoft Corporation)
win32spl.dll -> C:\Windows\SysWow64\win32spl.dll -> [2009/06/12 18:47:38 | 00,443,392 | ---- | C] (Microsoft Corporation)
SLCommDlg.dll -> C:\Windows\SysWow64\SLCommDlg.dll -> [2009/06/12 18:47:37 | 00,582,144 | ---- | C] (Microsoft Corporation)
oleaut32.dll -> C:\Windows\SysWow64\oleaut32.dll -> [2009/06/12 18:47:37 | 00,563,712 | ---- | C] (Microsoft Corporation)
kerberos.dll -> C:\Windows\SysWow64\kerberos.dll -> [2009/06/12 18:47:37 | 00,497,664 | ---- | C] (Microsoft Corporation)
QAGENTRT.DLL -> C:\Windows\SysNative\QAGENTRT.DLL -> [2009/06/12 18:47:37 | 00,409,600 | ---- | C] (Microsoft Corporation)
dnsapi.dll -> C:\Windows\SysNative\dnsapi.dll -> [2009/06/12 18:47:37 | 00,221,696 | ---- | C] (Microsoft Corporation)
WcnNetsh.dll -> C:\Windows\SysWow64\WcnNetsh.dll -> [2009/06/12 18:47:37 | 00,165,376 | ---- | C] (Microsoft Corporation)
netshell.dll -> C:\Windows\SysWow64\netshell.dll -> [2009/06/12 18:47:36 | 03,174,400 | ---- | C] (Microsoft Corporation)
comdlg32.dll -> C:\Windows\SysNative\comdlg32.dll -> [2009/06/12 18:47:36 | 00,549,888 | ---- | C] (Microsoft Corporation)
odbc32.dll -> C:\Windows\SysNative\odbc32.dll -> [2009/06/12 18:47:36 | 00,462,848 | ---- | C] (Microsoft Corporation)
mswsock.dll -> C:\Windows\SysNative\mswsock.dll -> [2009/06/12 18:47:36 | 00,304,128 | ---- | C] (Microsoft Corporation)
msv1_0.dll -> C:\Windows\SysWow64\msv1_0.dll -> [2009/06/12 18:47:36 | 00,215,040 | ---- | C] (Microsoft Corporation)
apds.dll -> C:\Windows\SysWow64\apds.dll -> [2009/06/12 18:47:35 | 01,730,560 | ---- | C] (Microsoft Corporation)
mswstr10.dll -> C:\Windows\SysWow64\mswstr10.dll -> [2009/06/12 18:47:35 | 00,618,496 | ---- | C] (Microsoft Corporation)
winhttp.dll -> C:\Windows\SysWow64\winhttp.dll -> [2009/06/12 18:47:35 | 00,375,808 | ---- | C] (Microsoft Corporation)
ws2_32.dll -> C:\Windows\SysNative\ws2_32.dll -> [2009/06/12 18:47:35 | 00,264,704 | ---- | C] (Microsoft Corporation)
propdefs.dll -> C:\Windows\SysNative\propdefs.dll -> [2009/06/12 18:47:35 | 00,080,896 | ---- | C] (Microsoft Corporation)
msctf.dll -> C:\Windows\SysWow64\msctf.dll -> [2009/06/12 18:47:34 | 00,807,424 | ---- | C] (Microsoft Corporation)
netlogon.dll -> C:\Windows\SysNative\netlogon.dll -> [2009/06/12 18:47:34 | 00,717,312 | ---- | C] (Microsoft Corporation)
mrxdav.sys -> C:\Windows\SysNative\drivers\mrxdav.sys -> [2009/06/12 18:47:34 | 00,139,264 | ---- | C] (Microsoft Corporation)
xmlfilter.dll -> C:\Windows\SysWow64\xmlfilter.dll -> [2009/06/12 18:47:34 | 00,056,320 | ---- | C] (Microsoft Corporation)
WerFaultSecure.exe -> C:\Windows\SysNative\WerFaultSecure.exe -> [2009/06/12 18:47:33 | 01,114,112 | ---- | C] (Microsoft Corporation)
msvcrt.dll -> C:\Windows\SysWow64\msvcrt.dll -> [2009/06/12 18:47:33 | 00,679,936 | ---- | C] (Microsoft Corporation)
eapphost.dll -> C:\Windows\SysNative\eapphost.dll -> [2009/06/12 18:47:33 | 00,261,632 | ---- | C] (Microsoft Corporation)
mfc42u.dll -> C:\Windows\SysWow64\mfc42u.dll -> [2009/06/12 18:47:32 | 01,160,704 | ---- | C] (Microsoft Corporation)
winresume.efi -> C:\Windows\SysNative\winresume.efi -> [2009/06/12 18:47:32 | 00,992,728 | ---- | C] (Microsoft Corporation)
azroles.dll -> C:\Windows\SysNative\azroles.dll -> [2009/06/12 18:47:32 | 00,894,976 | ---- | C] (Microsoft Corporation)
sqlsrv32.dll -> C:\Windows\SysWow64\sqlsrv32.dll -> [2009/06/12 18:47:32 | 00,524,288 | ---- | C] (Microsoft Corporation)
PhotoMetadataHandler.dll -> C:\Windows\SysNative\PhotoMetadataHandler.dll -> [2009/06/12 18:47:32 | 00,470,016 | ---- | C] (Microsoft Corporation)
emdmgmt.dll -> C:\Windows\SysNative\emdmgmt.dll -> [2009/06/12 18:47:32 | 00,399,360 | ---- | C] (Microsoft Corporation)
msrd2x40.dll -> C:\Windows\SysWow64\msrd2x40.dll -> [2009/06/12 18:47:32 | 00,319,488 | ---- | C] (Microsoft Corporation)
newdev.dll -> C:\Windows\SysNative\newdev.dll -> [2009/06/12 18:47:32 | 00,215,552 | ---- | C] (Microsoft Corporation)
MMDevAPI.dll -> C:\Windows\SysNative\MMDevAPI.dll -> [2009/06/12 18:47:32 | 00,203,776 | ---- | C] (Microsoft Corporation)
WinSCard.dll -> C:\Windows\SysNative\WinSCard.dll -> [2009/06/12 18:47:32 | 00,190,464 | ---- | C] (Microsoft Corporation)
eapphost.dll -> C:\Windows\SysWow64\eapphost.dll -> [2009/06/12 18:47:32 | 00,183,808 | ---- | C] (Microsoft Corporation)
FWPKCLNT.SYS -> C:\Windows\SysNative\drivers\FWPKCLNT.SYS -> [2009/06/12 18:47:32 | 00,166,888 | ---- | C] (Microsoft Corporation)
wlanpref.dll -> C:\Windows\SysNative\wlanpref.dll -> [2009/06/12 18:47:31 | 01,792,512 | ---- | C] (Microsoft Corporation)
IPSECSVC.DLL -> C:\Windows\SysNative\IPSECSVC.DLL -> [2009/06/12 18:47:31 | 00,533,504 | ---- | C] (Microsoft Corporation)
odbc32.dll -> C:\Windows\SysWow64\odbc32.dll -> [2009/06/12 18:47:31 | 00,409,600 | ---- | C] (Microsoft Corporation)
wevtutil.exe -> C:\Windows\SysNative\wevtutil.exe -> [2009/06/12 18:47:31 | 00,248,832 | ---- | C] (Microsoft Corporation)
secur32.dll -> C:\Windows\SysWow64\secur32.dll -> [2009/06/12 18:47:31 | 00,077,312 | ---- | C] (Microsoft Corporation)
propdefs.dll -> C:\Windows\SysWow64\propdefs.dll -> [2009/06/12 18:47:31 | 00,071,680 | ---- | C] (Microsoft Corporation)
usp10.dll -> C:\Windows\SysNative\usp10.dll -> [2009/06/12 18:47:30 | 00,621,568 | ---- | C] (Microsoft Corporation)
milcore.dll -> C:\Windows\SysNative\milcore.dll -> [2009/06/12 18:47:29 | 02,570,240 | ---- | C] (Microsoft Corporation)
shdocvw.dll -> C:\Windows\SysWow64\shdocvw.dll -> [2009/06/12 18:47:29 | 01,068,032 | ---- | C] (Microsoft Corporation)
winresume.exe -> C:\Windows\SysNative\winresume.exe -> [2009/06/12 18:47:29 | 00,981,480 | ---- | C] (Microsoft Corporation)
WSDApi.dll -> C:\Windows\SysNative\WSDApi.dll -> [2009/06/12 18:47:29 | 00,441,856 | ---- | C] (Microsoft Corporation)
Wldap32.dll -> C:\Windows\SysNative\Wldap32.dll -> [2009/06/12 18:47:29 | 00,328,704 | ---- | C] (Microsoft Corporation)
msscb.dll -> C:\Windows\SysNative\msscb.dll -> [2009/06/12 18:47:29 | 00,044,544 | ---- | C] (Microsoft Corporation)
mmcndmgr.dll -> C:\Windows\SysWow64\mmcndmgr.dll -> [2009/06/12 18:47:28 | 02,167,808 | ---- | C] (Microsoft Corporation)
dbgeng.dll -> C:\Windows\SysWow64\dbgeng.dll -> [2009/06/12 18:47:28 | 01,856,512 | ---- | C] (Microsoft Corporation)
mcmde.dll -> C:\Windows\SysNative\mcmde.dll -> [2009/06/12 18:47:28 | 01,074,176 | ---- | C] (Microsoft Corporation)
WsmSvc.dll -> C:\Windows\SysWow64\WsmSvc.dll -> [2009/06/12 18:47:28 | 00,747,008 | ---- | C] (Microsoft Corporation)
usp10.dll -> C:\Windows\SysWow64\usp10.dll -> [2009/06/12 18:47:28 | 00,502,272 | ---- | C] (Microsoft Corporation)
msiscsi.sys -> C:\Windows\SysNative\drivers\msiscsi.sys -> [2009/06/12 18:47:28 | 00,215,528 | ---- | C] (Microsoft Corporation)
iasnap.dll -> C:\Windows\SysNative\iasnap.dll -> [2009/06/12 18:47:28 | 00,213,504 | ---- | C] (Microsoft Corporation)
wevtutil.exe -> C:\Windows\SysWow64\wevtutil.exe -> [2009/06/12 18:47:28 | 00,163,840 | ---- | C] (Microsoft Corporation)
mssitlb.dll -> C:\Windows\SysNative\mssitlb.dll -> [2009/06/12 18:47:28 | 00,087,552 | ---- | C] (Microsoft Corporation)
mssitlb.dll -> C:\Windows\SysWow64\mssitlb.dll -> [2009/06/12 18:47:28 | 00,087,040 | ---- | C] (Microsoft Corporation)
gameux.dll -> C:\Windows\SysNative\gameux.dll -> [2009/06/12 18:47:27 | 01,927,680 | ---- | C] (Microsoft Corporation)
wmpmde.dll -> C:\Windows\SysNative\wmpmde.dll -> [2009/06/12 18:47:27 | 01,090,048 | ---- | C] (Microsoft Corporation)
iassam.dll -> C:\Windows\SysNative\iassam.dll -> [2009/06/12 18:47:27 | 00,242,176 | ---- | C] (Microsoft Corporation)
bthserv.dll -> C:\Windows\SysNative\bthserv.dll -> [2009/06/12 18:47:27 | 00,053,760 | ---- | C] (Microsoft Corporation)
rtffilt.dll -> C:\Windows\SysNative\rtffilt.dll -> [2009/06/12 18:47:27 | 00,042,496 | ---- | C] (Microsoft Corporation)
wcnwiz.dll -> C:\Windows\SysWow64\wcnwiz.dll -> [2009/06/12 18:47:26 | 01,533,440 | ---- | C] (Microsoft Corporation)
propsys.dll -> C:\Windows\SysNative\propsys.dll -> [2009/06/12 18:47:26 | 00,923,136 | ---- | C] (Microsoft Corporation)
netlogon.dll -> C:\Windows\SysWow64\netlogon.dll -> [2009/06/12 18:47:26 | 00,592,896 | ---- | C] (Microsoft Corporation)
evr.dll -> C:\Windows\SysWow64\evr.dll -> [2009/06/12 18:47:26 | 00,485,888 | ---- | C] (Microsoft Corporation)
winsrv.dll -> C:\Windows\SysNative\winsrv.dll -> [2009/06/12 18:47:26 | 00,450,560 | ---- | C] (Microsoft Corporation)
devmgr.dll -> C:\Windows\SysWow64\devmgr.dll -> [2009/06/12 18:47:26 | 00,378,368 | ---- | C] (Microsoft Corporation)
schannel.dll -> C:\Windows\SysNative\schannel.dll -> [2009/06/12 18:47:26 | 00,335,360 | ---- | C] (Microsoft Corporation)
schannel.dll -> C:\Windows\SysWow64\schannel.dll -> [2009/06/12 18:47:26 | 00,268,800 | ---- | C] (Microsoft Corporation)
adsldpc.dll -> C:\Windows\SysWow64\adsldpc.dll -> [2009/06/12 18:47:26 | 00,199,168 | ---- | C] (Microsoft Corporation)
drvinst.exe -> C:\Windows\SysWow64\drvinst.exe -> [2009/06/12 18:47:26 | 00,194,048 | ---- | C] (Microsoft Corporation)
srv2.sys -> C:\Windows\SysNative\drivers\srv2.sys -> [2009/06/12 18:47:26 | 00,174,592 | ---- | C] (Microsoft Corporation)
cryptsvc.dll -> C:\Windows\SysNative\cryptsvc.dll -> [2009/06/12 18:47:26 | 00,166,912 | ---- | C] (Microsoft Corporation)
msctfp.dll -> C:\Windows\SysWow64\msctfp.dll -> [2009/06/12 18:47:26 | 00,084,992 | ---- | C] (Microsoft Corporation)
msscb.dll -> C:\Windows\SysWow64\msscb.dll -> [2009/06/12 18:47:26 | 00,035,328 | ---- | C] (Microsoft Corporation)
fdBthProxy.dll -> C:\Windows\SysWow64\fdBthProxy.dll -> [2009/06/12 18:47:26 | 00,009,728 | ---- | C] (Microsoft Corporation)
WMVSDECD.DLL -> C:\Windows\SysWow64\WMVSDECD.DLL -> [2009/06/12 18:47:25 | 01,382,912 | ---- | C] (Microsoft Corporation)
WindowsCodecs.dll -> C:\Windows\SysWow64\WindowsCodecs.dll -> [2009/06/12 18:47:25 | 00,712,704 | ---- | C] (Microsoft Corporation)
mscms.dll -> C:\Windows\SysNative\mscms.dll -> [2009/06/12 18:47:25 | 00,519,680 | ---- | C] (Microsoft Corporation)
vds.exe -> C:\Windows\SysNative\vds.exe -> [2009/06/12 18:47:25 | 00,454,656 | ---- | C] (Microsoft Corporation)
PhotoMetadataHandler.dll -> C:\Windows\SysWow64\PhotoMetadataHandler.dll -> [2009/06/12 18:47:25 | 00,425,472 | ---- | C] (Microsoft Corporation)
winlogon.exe -> C:\Windows\SysNative\winlogon.exe -> [2009/06/12 18:47:25 | 00,405,504 | ---- | C] (Microsoft Corporation)
WSDApi.dll -> C:\Windows\SysWow64\WSDApi.dll -> [2009/06/12 18:47:25 | 00,355,328 | ---- | C] (Microsoft Corporation)
Wldap32.dll -> C:\Windows\SysWow64\Wldap32.dll -> [2009/06/12 18:47:25 | 00,287,744 | ---- | C] (Microsoft Corporation)
services.exe -> C:\Windows\SysWow64\services.exe -> [2009/06/12 18:47:25 | 00,279,552 | ---- | C] (Microsoft Corporation)
volsnap.sys -> C:\Windows\SysNative\drivers\volsnap.sys -> [2009/06/12 18:47:25 | 00,269,288 | ---- | C] (Microsoft Corporation)
taskeng.exe -> C:\Windows\SysNative\taskeng.exe -> [2009/06/12 18:47:25 | 00,265,216 | ---- | C] (Microsoft Corporation)
scrrun.dll -> C:\Windows\SysNative\scrrun.dll -> [2009/06/12 18:47:25 | 00,198,656 | ---- | C] (Microsoft Corporation)
imapi.dll -> C:\Windows\SysNative\imapi.dll -> [2009/06/12 18:47:25 | 00,151,040 | ---- | C] (Microsoft Corporation)
quick.ime -> C:\Windows\SysWow64\quick.ime -> [2009/06/12 18:47:25 | 00,124,928 | ---- | C] (Microsoft Corporation)
qintlgnt.ime -> C:\Windows\SysWow64\qintlgnt.ime -> [2009/06/12 18:47:25 | 00,124,928 | ---- | C] (Microsoft Corporation)
phon.ime -> C:\Windows\SysWow64\phon.ime -> [2009/06/12 18:47:25 | 00,124,928 | ---- | C] (Microsoft Corporation)
cintlgnt.ime -> C:\Windows\SysWow64\cintlgnt.ime -> [2009/06/12 18:47:25 | 00,124,928 | ---- | C] (Microsoft Corporation)
chajei.ime -> C:\Windows\SysWow64\chajei.ime -> [2009/06/12 18:47:25 | 00,124,928 | ---- | C] (Microsoft Corporation)
reg.exe -> C:\Windows\SysNative\reg.exe -> [2009/06/12 18:47:25 | 00,074,240 | ---- | C] (Microsoft Corporation)
partmgr.sys -> C:\Windows\SysNative\drivers\partmgr.sys -> [2009/06/12 18:47:25 | 00,073,176 | ---- | C] (Microsoft Corporation)
fdProxy.dll -> C:\Windows\SysNative\fdProxy.dll -> [2009/06/12 18:47:25 | 00,065,536 | ---- | C] (Microsoft Corporation)
brcpl.dll -> C:\Windows\SysNative\brcpl.dll -> [2009/06/12 18:47:24 | 01,538,560 | ---- | C] (Microsoft Corporation)
wdc.dll -> C:\Windows\SysNative\wdc.dll -> [2009/06/12 18:47:24 | 01,234,432 | ---- | C] (Microsoft Corporation)
stobject.dll -> C:\Windows\SysNative\stobject.dll -> [2009/06/12 18:47:24 | 00,748,544 | ---- | C] (Microsoft Corporation)
adtschema.dll -> C:\Windows\SysWow64\adtschema.dll -> [2009/06/12 18:47:24 | 00,617,984 | ---- | C] (Microsoft Corporation)
adtschema.dll -> C:\Windows\SysNative\adtschema.dll -> [2009/06/12 18:47:24 | 00,617,984 | ---- | C] (Microsoft Corporation)
msdtcprx.dll -> C:\Windows\SysWow64\msdtcprx.dll -> [2009/06/12 18:47:24 | 00,560,640 | ---- | C] (Microsoft Corporation)
comdlg32.dll -> C:\Windows\SysWow64\comdlg32.dll -> [2009/06/12 18:47:24 | 00,450,560 | ---- | C] (Microsoft Corporation)
wcncsvc.dll -> C:\Windows\SysWow64\wcncsvc.dll -> [2009/06/12 18:47:24 | 00,413,696 | ---- | C] (Microsoft Corporation)
msdrm.dll -> C:\Windows\SysWow64\msdrm.dll -> [2009/06/12 18:47:24 | 00,332,288 | ---- | C] (Microsoft Corporation)
certcli.dll -> C:\Windows\SysWow64\certcli.dll -> [2009/06/12 18:47:24 | 00,323,584 | ---- | C] (Microsoft Corporation)
PortableDeviceApi.dll -> C:\Windows\SysWow64\PortableDeviceApi.dll -> [2009/06/12 18:47:24 | 00,241,152 | ---- | C] (Microsoft Corporation)
dhcpcsvc6.dll -> C:\Windows\SysNative\dhcpcsvc6.dll -> [2009/06/12 18:47:24 | 00,163,328 | ---- | C] (Microsoft Corporation)
mimefilt.dll -> C:\Windows\SysWow64\mimefilt.dll -> [2009/06/12 18:47:24 | 00,041,984 | ---- | C] (Microsoft Corporation)
mimefilt.dll -> C:\Windows\SysNative\mimefilt.dll -> [2009/06/12 18:47:24 | 00,038,912 | ---- | C] (Microsoft Corporation)
WMNetMgr.dll -> C:\Windows\SysWow64\WMNetMgr.dll -> [2009/06/12 18:47:23 | 00,996,352 | ---- | C] (Microsoft Corporation)
mswdat10.dll -> C:\Windows\SysWow64\mswdat10.dll -> [2009/06/12 18:47:23 | 00,856,064 | ---- | C] (Microsoft Corporation)
CertEnrollUI.dll -> C:\Windows\SysNative\CertEnrollUI.dll -> [2009/06/12 18:47:23 | 00,810,496 | ---- | C] (Microsoft Corporation)
certutil.exe -> C:\Windows\SysWow64\certutil.exe -> [2009/06/12 18:47:23 | 00,799,744 | ---- | C] (Microsoft Corporation)
ksecdd.sys -> C:\Windows\SysNative\drivers\ksecdd.sys -> [2009/06/12 18:47:23 | 00,514,536 | ---- | C] (Microsoft Corporation)
ipsmsnap.dll -> C:\Windows\SysWow64\ipsmsnap.dll -> [2009/06/12 18:47:23 | 00,396,288 | ---- | C] (Microsoft Corporation)
clfs.sys -> C:\Windows\SysNative\clfs.sys -> [2009/06/12 18:47:23 | 00,361,448 | ---- | C] (Microsoft Corporation)
rasmans.dll -> C:\Windows\SysNative\rasmans.dll -> [2009/06/12 18:47:23 | 00,309,760 | ---- | C] (Microsoft Corporation)
pdh.dll -> C:\Windows\SysNative\pdh.dll -> [2009/06/12 18:47:23 | 00,307,712 | ---- | C] (Microsoft Corporation)
offfilt.dll -> C:\Windows\SysNative\offfilt.dll -> [2009/06/12 18:47:23 | 00,280,064 | ---- | C] (Microsoft Corporation)
taskeng.exe -> C:\Windows\SysWow64\taskeng.exe -> [2009/06/12 18:47:23 | 00,169,984 | ---- | C] (Microsoft Corporation)
dnsapi.dll -> C:\Windows\SysWow64\dnsapi.dll -> [2009/06/12 18:47:23 | 00,168,448 | ---- | C] (Microsoft Corporation)
inetpp.dll -> C:\Windows\SysNative\inetpp.dll -> [2009/06/12 18:47:23 | 00,156,160 | ---- | C] (Microsoft Corporation)
rasl2tp.sys -> C:\Windows\SysNative\drivers\rasl2tp.sys -> [2009/06/12 18:47:23 | 00,124,928 | ---- | C] (Microsoft Corporation)
reg.exe -> C:\Windows\SysWow64\reg.exe -> [2009/06/12 18:47:23 | 00,061,952 | ---- | C] (Microsoft Corporation)
msjter40.dll -> C:\Windows\SysWow64\msjter40.dll -> [2009/06/12 18:47:23 | 00,061,440 | ---- | C] (Microsoft Corporation)
rtffilt.dll -> C:\Windows\SysWow64\rtffilt.dll -> [2009/06/12 18:47:23 | 00,038,400 | ---- | C] (Microsoft Corporation)
PhotoScreensaver.scr -> C:\Windows\SysWow64\PhotoScreensaver.scr -> [2009/06/12 18:47:22 | 00,704,512 | ---- | C] (Microsoft Corporation)
wiaservc.dll -> C:\Windows\SysNative\wiaservc.dll -> [2009/06/12 18:47:22 | 00,572,416 | ---- | C] (Microsoft Corporation)
RelMon.dll -> C:\Windows\SysNative\RelMon.dll -> [2009/06/12 18:47:22 | 00,539,136 | ---- | C] (Microsoft Corporation)
sysmon.ocx -> C:\Windows\SysNative\sysmon.ocx -> [2009/06/12 18:47:22 | 00,475,648 | ---- | C] (Microsoft Corporation)
mtxclu.dll -> C:\Windows\SysNative\mtxclu.dll -> [2009/06/12 18:47:22 | 00,361,984 | ---- | C] (Microsoft Corporation)
winspool.drv -> C:\Windows\SysNative\winspool.drv -> [2009/06/12 18:47:22 | 00,342,016 | ---- | C] (Microsoft Corporation)
scrobj.dll -> C:\Windows\SysNative\scrobj.dll -> [2009/06/12 18:47:22 | 00,227,328 | ---- | C] (Microsoft Corporation)
fundisc.dll -> C:\Windows\SysNative\fundisc.dll -> [2009/06/12 18:47:22 | 00,174,080 | ---- | C] (Microsoft Corporation)
ataport.sys -> C:\Windows\SysNative\drivers\ataport.sys -> [2009/06/12 18:47:22 | 00,123,368 | ---- | C] (Microsoft Corporation)
sysclass.dll -> C:\Windows\SysNative\sysclass.dll -> [2009/06/12 18:47:22 | 00,115,200 | ---- | C] (Microsoft Corporation)
raspptp.sys -> C:\Windows\SysNative\drivers\raspptp.sys -> [2009/06/12 18:47:22 | 00,098,816 | ---- | C] (Microsoft Corporation)
msscntrs.dll -> C:\Windows\SysWow64\msscntrs.dll -> [2009/06/12 18:47:22 | 00,060,416 | ---- | C] (Microsoft Corporation)
msshooks.dll -> C:\Windows\SysWow64\msshooks.dll -> [2009/06/12 18:47:22 | 00,011,776 | ---- | C] (Microsoft Corporation)
msinfo32.exe -> C:\Windows\SysNative\msinfo32.exe -> [2009/06/12 18:47:21 | 00,488,960 | ---- | C] (Microsoft Corporation)
msihnd.dll -> C:\Windows\SysWow64\msihnd.dll -> [2009/06/12 18:47:21 | 00,332,800 | ---- | C] (Microsoft Corporation)
mfplat.dll -> C:\Windows\SysNative\mfplat.dll -> [2009/06/12 18:47:21 | 00,276,992 | ---- | C] (Microsoft Corporation)
rsaenh.dll -> C:\Windows\SysWow64\rsaenh.dll -> [2009/06/12 18:47:21 | 00,241,128 | ---- | C] (Microsoft Corporation)
adsldpc.dll -> C:\Windows\SysNative\adsldpc.dll -> [2009/06/12 18:47:21 | 00,231,936 | ---- | C] (Microsoft Corporation)
pnpsetup.dll -> C:\Windows\SysNative\pnpsetup.dll -> [2009/06/12 18:47:21 | 00,207,872 | ---- | C] (Microsoft Corporation)
ndiswan.sys -> C:\Windows\SysNative\drivers\ndiswan.sys -> [2009/06/12 18:47:21 | 00,169,472 | ---- | C] (Microsoft Corporation)
MMDevAPI.dll -> C:\Windows\SysWow64\MMDevAPI.dll -> [2009/06/12 18:47:21 | 00,150,528 | ---- | C] (Microsoft Corporation)
msstrc.dll -> C:\Windows\SysWow64\msstrc.dll -> [2009/06/12 18:47:21 | 00,043,008 | ---- | C] (Microsoft Corporation)
sethc.exe -> C:\Windows\SysNative\sethc.exe -> [2009/06/12 18:47:20 | 00,776,192 | ---- | C] (Microsoft Corporation)
inetcomm.dll -> C:\Windows\SysWow64\inetcomm.dll -> [2009/06/12 18:47:20 | 00,738,816 | ---- | C] (Microsoft Corporation)
netapi32.dll -> C:\Windows\SysWow64\netapi32.dll -> [2009/06/12 18:47:20 | 00,467,456 | ---- | C] (Microsoft Corporation)
mtxclu.dll -> C:\Windows\SysWow64\mtxclu.dll -> [2009/06/12 18:47:20 | 00,310,272 | ---- | C] (Microsoft Corporation)
usbport.sys -> C:\Windows\SysNative\drivers\usbport.sys -> [2009/06/12 18:47:20 | 00,259,584 | ---- | C] (Microsoft Corporation)
pci.sys -> C:\Windows\SysNative\drivers\pci.sys -> [2009/06/12 18:47:20 | 00,178,664 | ---- | C] (Microsoft Corporation)
cryptsvc.dll -> C:\Windows\SysWow64\cryptsvc.dll -> [2009/06/12 18:47:20 | 00,129,024 | ---- | C] (Microsoft Corporation)
msiexec.exe -> C:\Windows\SysNative\msiexec.exe -> [2009/06/12 18:47:20 | 00,125,440 | ---- | C] (Microsoft Corporation)
dfshim.dll -> C:\Windows\SysWow64\dfshim.dll -> [2009/06/12 18:47:20 | 00,093,512 | ---- | C] (Microsoft Corporation)
rasdiag.dll -> C:\Windows\SysNative\rasdiag.dll -> [2009/06/12 18:47:20 | 00,065,536 | ---- | C] (Microsoft Corporation)
msahci.sys -> C:\Windows\SysNative\drivers\msahci.sys -> [2009/06/12 18:47:20 | 00,029,656 | ---- | C] (Microsoft Corporation)
appwiz.cpl -> C:\Windows\SysNative\appwiz.cpl -> [2009/06/12 18:47:19 | 01,321,472 | ---- | C] (Microsoft Corporation)
autofmt.exe -> C:\Windows\SysNative\autofmt.exe -> [2009/06/12 18:47:19 | 00,722,944 | ---- | C] (Microsoft Corporation)
acpi.sys -> C:\Windows\SysNative\drivers\acpi.sys -> [2009/06/12 18:47:19 | 00,325,608 | ---- | C] (Microsoft Corporation)
wisptis.exe -> C:\Windows\SysNative\wisptis.exe -> [2009/06/12 18:47:19 | 00,287,744 | ---- | C] (Microsoft Corporation)
mrxsmb10.sys -> C:\Windows\SysNative\drivers\mrxsmb10.sys -> [2009/06/12 18:47:19 | 00,273,408 | ---- | C] (Microsoft Corporation)
iasrad.dll -> C:\Windows\SysNative\iasrad.dll -> [2009/06/12 18:47:19 | 00,198,144 | ---- | C] (Microsoft Corporation)
fundisc.dll -> C:\Windows\SysWow64\fundisc.dll -> [2009/06/12 18:47:19 | 00,153,088 | ---- | C] (Microsoft Corporation)
dhcpcsvc6.dll -> C:\Windows\SysWow64\dhcpcsvc6.dll -> [2009/06/12 18:47:19 | 00,130,560 | ---- | C] (Microsoft Corporation)
dfshim.dll -> C:\Windows\SysNative\dfshim.dll -> [2009/06/12 18:47:19 | 00,108,864 | ---- | C] (Microsoft Corporation)

 

[seawolves]

mscories.dll -> C:\Windows\SysWow64\mscories.dll -> [2009/06/12 18:47:19 | 00,080,720 | ---- | C] (Microsoft Corporation)
termdd.sys -> C:\Windows\SysNative\drivers\termdd.sys -> [2009/06/12 18:47:19 | 00,062,440 | ---- | C] (Microsoft Corporation)
TsWpfWrp.exe -> C:\Windows\SysWow64\TsWpfWrp.exe -> [2009/06/12 18:47:19 | 00,035,680 | ---- | C] (Microsoft Corporation)
TsWpfWrp.exe -> C:\Windows\SysNative\TsWpfWrp.exe -> [2009/06/12 18:47:19 | 00,034,624 | ---- | C] (Microsoft Corporation)
hidserv.dll -> C:\Windows\SysWow64\hidserv.dll -> [2009/06/12 18:47:19 | 00,026,112 | ---- | C] (Microsoft Corporation)
gameux.dll -> C:\Windows\SysWow64\gameux.dll -> [2009/06/12 18:47:18 | 01,696,768 | ---- | C] (Microsoft Corporation)
cryptui.dll -> C:\Windows\SysNative\cryptui.dll -> [2009/06/12 18:47:18 | 01,035,776 | ---- | C] (Microsoft Corporation)
wdc.dll -> C:\Windows\SysWow64\wdc.dll -> [2009/06/12 18:47:18 | 01,020,928 | ---- | C] (Microsoft Corporation)
printui.dll -> C:\Windows\SysNative\printui.dll -> [2009/06/12 18:47:18 | 00,980,480 | ---- | C] (Microsoft Corporation)
Utilman.exe -> C:\Windows\SysNative\Utilman.exe -> [2009/06/12 18:47:18 | 00,785,920 | ---- | C] (Microsoft Corporation)
termsrv.dll -> C:\Windows\SysNative\termsrv.dll -> [2009/06/12 18:47:18 | 00,547,328 | ---- | C] (Microsoft Corporation)
shsvcs.dll -> C:\Windows\SysWow64\shsvcs.dll -> [2009/06/12 18:47:18 | 00,247,296 | ---- | C] (Microsoft Corporation)
tcpipcfg.dll -> C:\Windows\SysNative\tcpipcfg.dll -> [2009/06/12 18:47:18 | 00,238,080 | ---- | C] (Microsoft Corporation)
osk.exe -> C:\Windows\SysNative\osk.exe -> [2009/06/12 18:47:18 | 00,212,480 | ---- | C] (Microsoft Corporation)
WFP.TMF -> C:\Windows\SysNative\WFP.TMF -> [2009/06/12 18:47:18 | 00,207,968 | ---- | C] ()
AudioSes.dll -> C:\Windows\SysNative\AudioSes.dll -> [2009/06/12 18:47:18 | 00,190,976 | ---- | C] (Microsoft Corporation)
mrxsmb.sys -> C:\Windows\SysNative\drivers\mrxsmb.sys -> [2009/06/12 18:47:18 | 00,135,168 | ---- | C] (Microsoft Corporation)
imapi.dll -> C:\Windows\SysWow64\imapi.dll -> [2009/06/12 18:47:18 | 00,107,520 | ---- | C] (Microsoft Corporation)
SLUINotify.dll -> C:\Windows\SysNative\SLUINotify.dll -> [2009/06/12 18:47:18 | 00,073,216 | ---- | C] (Microsoft Corporation)
msiexec.exe -> C:\Windows\SysWow64\msiexec.exe -> [2009/06/12 18:47:18 | 00,073,216 | ---- | C] (Microsoft Corporation)
iasdatastore.dll -> C:\Windows\SysNative\iasdatastore.dll -> [2009/06/12 18:47:18 | 00,065,536 | ---- | C] (Microsoft Corporation)
connect.dll -> C:\Windows\SysNative\connect.dll -> [2009/06/12 18:47:17 | 01,691,648 | ---- | C] (Microsoft Corporation)
chsbrkr.dll -> C:\Windows\SysWow64\chsbrkr.dll -> [2009/06/12 18:47:17 | 01,671,680 | ---- | C] (Microsoft Corporation)
iassdo.dll -> C:\Windows\SysWow64\iassdo.dll -> [2009/06/12 18:47:17 | 00,252,928 | ---- | C] (Microsoft Corporation)
winmm.dll -> C:\Windows\SysNative\winmm.dll -> [2009/06/12 18:47:17 | 00,211,968 | ---- | C] (Microsoft Corporation)
imm32.dll -> C:\Windows\SysWow64\imm32.dll -> [2009/06/12 18:47:17 | 00,116,224 | ---- | C] (Microsoft Corporation)
Kswdmcap.ax -> C:\Windows\SysWow64\Kswdmcap.ax -> [2009/06/12 18:47:17 | 00,093,696 | ---- | C] (Microsoft Corporation)
pnidui.dll -> C:\Windows\SysNative\pnidui.dll -> [2009/06/12 18:47:16 | 02,024,960 | ---- | C] (Microsoft Corporation)
pnidui.dll -> C:\Windows\SysWow64\pnidui.dll -> [2009/06/12 18:47:16 | 01,823,744 | ---- | C] (Microsoft Corporation)
rdpencom.dll -> C:\Windows\SysNative\rdpencom.dll -> [2009/06/12 18:47:16 | 00,708,608 | ---- | C] (Microsoft Corporation)
autofmt.exe -> C:\Windows\SysWow64\autofmt.exe -> [2009/06/12 18:47:16 | 00,636,416 | ---- | C] (Microsoft Corporation)
dhcpcsvc.dll -> C:\Windows\SysNative\dhcpcsvc.dll -> [2009/06/12 18:47:16 | 00,268,288 | ---- | C] (Microsoft Corporation)
WerFault.exe -> C:\Windows\SysNative\WerFault.exe -> [2009/06/12 18:47:16 | 00,260,608 | ---- | C] (Microsoft Corporation)
ncrypt.dll -> C:\Windows\SysNative\ncrypt.dll -> [2009/06/12 18:47:16 | 00,253,952 | ---- | C] (Microsoft Corporation)
iasads.dll -> C:\Windows\SysNative\iasads.dll -> [2009/06/12 18:47:16 | 00,078,336 | ---- | C] (Microsoft Corporation)
drvinst.exe -> C:\Windows\SysNative\drvinst.exe -> [2009/06/12 18:47:16 | 00,061,440 | ---- | C] (Microsoft Corporation)
crashdmp.sys -> C:\Windows\SysNative\drivers\crashdmp.sys -> [2009/06/12 18:47:16 | 00,039,400 | ---- | C] (Microsoft Corporation)
netcenter.dll -> C:\Windows\SysNative\netcenter.dll -> [2009/06/12 18:47:15 | 02,420,224 | ---- | C] (Microsoft Corporation)
pidgenx.dll -> C:\Windows\SysNative\pidgenx.dll -> [2009/06/12 18:47:15 | 01,093,120 | ---- | C] (Microsoft Corporation)
prnntfy.dll -> C:\Windows\SysNative\prnntfy.dll -> [2009/06/12 18:47:15 | 00,708,608 | ---- | C] (Microsoft Corporation)
dsound.dll -> C:\Windows\SysNative\dsound.dll -> [2009/06/12 18:47:15 | 00,522,752 | ---- | C] (Microsoft Corporation)
volmgrx.sys -> C:\Windows\SysNative\drivers\volmgrx.sys -> [2009/06/12 18:47:15 | 00,408,024 | ---- | C] (Microsoft Corporation)
WindowsCodecsExt.dll -> C:\Windows\SysNative\WindowsCodecsExt.dll -> [2009/06/12 18:47:15 | 00,387,584 | ---- | C] (Microsoft Corporation)
untfs.dll -> C:\Windows\SysNative\untfs.dll -> [2009/06/12 18:47:15 | 00,372,224 | ---- | C] (Microsoft Corporation)
scansetting.dll -> C:\Windows\SysNative\scansetting.dll -> [2009/06/12 18:47:15 | 00,302,080 | ---- | C] (Microsoft Corporation)
pdh.dll -> C:\Windows\SysWow64\pdh.dll -> [2009/06/12 18:47:15 | 00,242,176 | ---- | C] (Microsoft Corporation)
dhcpcsvc.dll -> C:\Windows\SysWow64\dhcpcsvc.dll -> [2009/06/12 18:47:15 | 00,204,288 | ---- | C] (Microsoft Corporation)
scrrun.dll -> C:\Windows\SysWow64\scrrun.dll -> [2009/06/12 18:47:15 | 00,172,032 | ---- | C] (Microsoft Corporation)
diskpart.exe -> C:\Windows\SysNative\diskpart.exe -> [2009/06/12 18:47:15 | 00,149,504 | ---- | C] (Microsoft Corporation)
IPHLPAPI.DLL -> C:\Windows\SysNative\IPHLPAPI.DLL -> [2009/06/12 18:47:15 | 00,126,976 | ---- | C] (Microsoft Corporation)
slmgr.vbs -> C:\Windows\SysWow64\slmgr.vbs -> [2009/06/12 18:47:15 | 00,092,918 | ---- | C] ()
slmgr.vbs -> C:\Windows\SysNative\slmgr.vbs -> [2009/06/12 18:47:15 | 00,092,918 | ---- | C] ()
mup.sys -> C:\Windows\SysNative\drivers\mup.sys -> [2009/06/12 18:47:15 | 00,059,880 | ---- | C] (Microsoft Corporation)
spcmsg.dll -> C:\Windows\SysNative\spcmsg.dll -> [2009/06/12 18:47:15 | 00,014,336 | ---- | C] (Microsoft Corporation)
spcmsg.dll -> C:\Windows\SysWow64\spcmsg.dll -> [2009/06/12 18:47:15 | 00,013,312 | ---- | C] (Microsoft Corporation)
SyncCenter.dll -> C:\Windows\SysWow64\SyncCenter.dll -> [2009/06/12 18:47:14 | 02,205,184 | ---- | C] (Microsoft Corporation)
chsbrkr.dll -> C:\Windows\SysNative\chsbrkr.dll -> [2009/06/12 18:47:14 | 01,676,800 | ---- | C] (Microsoft Corporation)
appwiz.cpl -> C:\Windows\SysWow64\appwiz.cpl -> [2009/06/12 18:47:14 | 01,122,304 | ---- | C] (Microsoft Corporation)
pidgenx.dll -> C:\Windows\SysWow64\pidgenx.dll -> [2009/06/12 18:47:14 | 01,107,968 | ---- | C] (Microsoft Corporation)
mmsys.cpl -> C:\Windows\SysNative\mmsys.cpl -> [2009/06/12 18:47:14 | 01,060,352 | ---- | C] (Microsoft Corporation)
rasdlg.dll -> C:\Windows\SysNative\rasdlg.dll -> [2009/06/12 18:47:14 | 00,911,872 | ---- | C] (Microsoft Corporation)
wmpmde.dll -> C:\Windows\SysWow64\wmpmde.dll -> [2009/06/12 18:47:14 | 00,867,328 | ---- | C] (Microsoft Corporation)
azroles.dll -> C:\Windows\SysWow64\azroles.dll -> [2009/06/12 18:47:14 | 00,757,248 | ---- | C] (Microsoft Corporation)
CertEnrollUI.dll -> C:\Windows\SysWow64\CertEnrollUI.dll -> [2009/06/12 18:47:14 | 00,633,856 | ---- | C] (Microsoft Corporation)
wlansvc.dll -> C:\Windows\SysNative\wlansvc.dll -> [2009/06/12 18:47:14 | 00,616,448 | ---- | C] (Microsoft Corporation)
vdsdyn.dll -> C:\Windows\SysNative\vdsdyn.dll -> [2009/06/12 18:47:14 | 00,571,904 | ---- | C] (Microsoft Corporation)
sysmon.ocx -> C:\Windows\SysWow64\sysmon.ocx -> [2009/06/12 18:47:14 | 00,389,632 | ---- | C] (Microsoft Corporation)
winlogon.exe -> C:\Windows\SysWow64\winlogon.exe -> [2009/06/12 18:47:14 | 00,314,368 | ---- | C] (Microsoft Corporation)
msrpc.sys -> C:\Windows\SysNative\drivers\msrpc.sys -> [2009/06/12 18:47:14 | 00,310,760 | ---- | C] (Microsoft Corporation)
InkEd.dll -> C:\Windows\SysNative\InkEd.dll -> [2009/06/12 18:47:14 | 00,276,480 | ---- | C] (Microsoft Corporation)
winspool.drv -> C:\Windows\SysWow64\winspool.drv -> [2009/06/12 18:47:14 | 00,258,048 | ---- | C] (Microsoft Corporation)
spp.dll -> C:\Windows\SysNative\spp.dll -> [2009/06/12 18:47:14 | 00,188,928 | ---- | C] (Microsoft Corporation)
secproc_ssp_isv.dll -> C:\Windows\SysNative\secproc_ssp_isv.dll -> [2009/06/12 18:47:14 | 00,160,768 | ---- | C] (Microsoft Corporation)
secproc_ssp.dll -> C:\Windows\SysNative\secproc_ssp.dll -> [2009/06/12 18:47:14 | 00,160,768 | ---- | C] (Microsoft Corporation)
SCardSvr.dll -> C:\Windows\SysNative\SCardSvr.dll -> [2009/06/12 18:47:14 | 00,147,968 | ---- | C] (Microsoft Corporation)
userenv.dll -> C:\Windows\SysNative\userenv.dll -> [2009/06/12 18:47:14 | 00,137,216 | ---- | C] (Microsoft Corporation)
mscories.dll -> C:\Windows\SysNative\mscories.dll -> [2009/06/12 18:47:14 | 00,073,024 | ---- | C] (Microsoft Corporation)
ipfltdrv.sys -> C:\Windows\SysNative\drivers\ipfltdrv.sys -> [2009/06/12 18:47:14 | 00,067,584 | ---- | C] (Microsoft Corporation)
certmgr.dll -> C:\Windows\SysWow64\certmgr.dll -> [2009/06/12 18:47:13 | 01,502,720 | ---- | C] (Microsoft Corporation)
comuid.dll -> C:\Windows\SysWow64\comuid.dll -> [2009/06/12 18:47:13 | 00,593,408 | ---- | C] (Microsoft Corporation)
msjetoledb40.dll -> C:\Windows\SysWow64\msjetoledb40.dll -> [2009/06/12 18:47:13 | 00,368,640 | ---- | C] ()
dskquoui.dll -> C:\Windows\SysNative\dskquoui.dll -> [2009/06/12 18:47:13 | 00,237,056 | ---- | C] (Microsoft Corporation)
ncrypt.dll -> C:\Windows\SysWow64\ncrypt.dll -> [2009/06/12 18:47:13 | 00,204,288 | ---- | C] (Microsoft Corporation)
disk.sys -> C:\Windows\SysNative\drivers\disk.sys -> [2009/06/12 18:47:13 | 00,067,032 | ---- | C] (Microsoft Corporation)
inetcomm.dll -> C:\Windows\SysNative\inetcomm.dll -> [2009/06/12 18:47:12 | 00,974,848 | ---- | C] (Microsoft Corporation)
autoconv.exe -> C:\Windows\SysNative\autoconv.exe -> [2009/06/12 18:47:12 | 00,750,592 | ---- | C] (Microsoft Corporation)
sethc.exe -> C:\Windows\SysWow64\sethc.exe -> [2009/06/12 18:47:12 | 00,627,200 | ---- | C] (Microsoft Corporation)
imkr80.ime -> C:\Windows\SysWow64\imkr80.ime -> [2009/06/12 18:47:12 | 00,413,696 | ---- | C] (Microsoft Corporation)
WindowsCodecsExt.dll -> C:\Windows\SysWow64\WindowsCodecsExt.dll -> [2009/06/12 18:47:12 | 00,347,648 | ---- | C] (Microsoft Corporation)
rasapi32.dll -> C:\Windows\SysNative\rasapi32.dll -> [2009/06/12 18:47:12 | 00,337,408 | ---- | C] (Microsoft Corporation)
untfs.dll -> C:\Windows\SysWow64\untfs.dll -> [2009/06/12 18:47:12 | 00,324,096 | ---- | C] (Microsoft Corporation)
taskcomp.dll -> C:\Windows\SysWow64\taskcomp.dll -> [2009/06/12 18:47:12 | 00,270,336 | ---- | C] (Microsoft Corporation)
iassam.dll -> C:\Windows\SysWow64\iassam.dll -> [2009/06/12 18:47:12 | 00,182,272 | ---- | C] (Microsoft Corporation)
scrobj.dll -> C:\Windows\SysWow64\scrobj.dll -> [2009/06/12 18:47:12 | 00,180,224 | ---- | C] (Microsoft Corporation)
spp.dll -> C:\Windows\SysWow64\spp.dll -> [2009/06/12 18:47:12 | 00,142,336 | ---- | C] (Microsoft Corporation)
netiohlp.dll -> C:\Windows\SysNative\netiohlp.dll -> [2009/06/12 18:47:12 | 00,140,800 | ---- | C] (Microsoft Corporation)
secur32.dll -> C:\Windows\SysNative\secur32.dll -> [2009/06/12 18:47:12 | 00,094,720 | ---- | C] (Microsoft Corporation)
iashlpr.dll -> C:\Windows\SysNative\iashlpr.dll -> [2009/06/12 18:47:12 | 00,085,504 | ---- | C] (Microsoft Corporation)
PSHED.DLL -> C:\Windows\SysNative\PSHED.DLL -> [2009/06/12 18:47:12 | 00,055,272 | ---- | C] (Microsoft Corporation)
pciidex.sys -> C:\Windows\SysNative\drivers\pciidex.sys -> [2009/06/12 18:47:12 | 00,049,640 | ---- | C] (Microsoft Corporation)
mssprxy.dll -> C:\Windows\SysNative\mssprxy.dll -> [2009/06/12 18:47:12 | 00,040,448 | ---- | C] (Microsoft Corporation)
rtutils.dll -> C:\Windows\SysWow64\rtutils.dll -> [2009/06/12 18:47:12 | 00,036,352 | ---- | C] (Microsoft Corporation)
kdcom.dll -> C:\Windows\SysNative\kdcom.dll -> [2009/06/12 18:47:12 | 00,019,432 | ---- | C] (Microsoft Corporation)
onex.dll -> C:\Windows\SysNative\onex.dll -> [2009/06/12 18:47:11 | 01,740,288 | ---- | C] (Microsoft Corporation)
autochk.exe -> C:\Windows\SysNative\autochk.exe -> [2009/06/12 18:47:11 | 00,734,720 | ---- | C] (Microsoft Corporation)
autochk.exe -> C:\Windows\SysWow64\autochk.exe -> [2009/06/12 18:47:11 | 00,643,072 | ---- | C] (Microsoft Corporation)
diskraid.exe -> C:\Windows\SysNative\diskraid.exe -> [2009/06/12 18:47:11 | 00,308,224 | ---- | C] (Microsoft Corporation)
rastls.dll -> C:\Windows\SysNative\rastls.dll -> [2009/06/12 18:47:11 | 00,281,088 | ---- | C] (Microsoft Corporation)
ntprint.dll -> C:\Windows\SysNative\ntprint.dll -> [2009/06/12 18:47:11 | 00,257,024 | ---- | C] (Microsoft Corporation)
ntmarta.dll -> C:\Windows\SysNative\ntmarta.dll -> [2009/06/12 18:47:11 | 00,159,232 | ---- | C] (Microsoft Corporation)
ecache.sys -> C:\Windows\SysNative\drivers\ecache.sys -> [2009/06/12 18:47:11 | 00,155,112 | ---- | C] (Microsoft Corporation)
samlib.dll -> C:\Windows\SysNative\samlib.dll -> [2009/06/12 18:47:11 | 00,099,328 | ---- | C] (Microsoft Corporation)
mpr.dll -> C:\Windows\SysNative\mpr.dll -> [2009/06/12 18:47:11 | 00,084,992 | ---- | C] (Microsoft Corporation)
volmgr.sys -> C:\Windows\SysNative\drivers\volmgr.sys -> [2009/06/12 18:47:11 | 00,067,048 | ---- | C] (Microsoft Corporation)
WMVENCOD.DLL -> C:\Windows\SysNative\WMVENCOD.DLL -> [2009/06/12 18:47:10 | 01,891,840 | ---- | C] (Microsoft Corporation)
portcls.sys -> C:\Windows\SysNative\drivers\portcls.sys -> [2009/06/12 18:47:10 | 00,218,112 | ---- | C] (Microsoft Corporation)
iassvcs.dll -> C:\Windows\SysNative\iassvcs.dll -> [2009/06/12 18:47:10 | 00,088,576 | ---- | C] (Microsoft Corporation)
bthenum.sys -> C:\Windows\SysNative\drivers\bthenum.sys -> [2009/06/12 18:47:10 | 00,026,112 | ---- | C] (Microsoft Corporation)
WMVDECOD.DLL -> C:\Windows\SysWow64\WMVDECOD.DLL -> [2009/06/12 18:47:09 | 01,548,288 | ---- | C] (Microsoft Corporation)
PerfCenterCPL.dll -> C:\Windows\SysNative\PerfCenterCPL.dll -> [2009/06/12 18:47:09 | 01,444,352 | ---- | C] (Microsoft Corporation)
printui.dll -> C:\Windows\SysWow64\printui.dll -> [2009/06/12 18:47:09 | 00,869,888 | ---- | C] (Microsoft Corporation)
autoconv.exe -> C:\Windows\SysWow64\autoconv.exe -> [2009/06/12 18:47:09 | 00,656,896 | ---- | C] (Microsoft Corporation)
psisdecd.dll -> C:\Windows\SysNative\psisdecd.dll -> [2009/06/12 18:47:09 | 00,375,808 | ---- | C] (Microsoft Corporation)
scecli.dll -> C:\Windows\SysNative\scecli.dll -> [2009/06/12 18:47:09 | 00,235,520 | ---- | C] (Microsoft Corporation)
profsvc.dll -> C:\Windows\SysNative\profsvc.dll -> [2009/06/12 18:47:09 | 00,178,176 | ---- | C] (Microsoft Corporation)
srvsvc.dll -> C:\Windows\SysNative\srvsvc.dll -> [2009/06/12 18:47:09 | 00,176,640 | ---- | C] (Microsoft Corporation)
rpchttp.dll -> C:\Windows\SysNative\rpchttp.dll -> [2009/06/12 18:47:09 | 00,164,352 | ---- | C] (Microsoft Corporation)
iasnap.dll -> C:\Windows\SysWow64\iasnap.dll -> [2009/06/12 18:47:09 | 00,150,528 | ---- | C] (Microsoft Corporation)
cscript.exe -> C:\Windows\SysWow64\cscript.exe -> [2009/06/12 18:47:09 | 00,135,168 | ---- | C] (Microsoft Corporation)
networkmap.dll -> C:\Windows\SysNative\networkmap.dll -> [2009/06/12 18:47:08 | 03,235,328 | ---- | C] (Microsoft Corporation)
onex.dll -> C:\Windows\SysWow64\onex.dll -> [2009/06/12 18:47:08 | 01,541,120 | ---- | C] (Microsoft Corporation)
themecpl.dll -> C:\Windows\SysNative\themecpl.dll -> [2009/06/12 18:47:08 | 01,301,504 | ---- | C] (Microsoft Corporation)
mspaint.exe -> C:\Windows\SysNative\mspaint.exe -> [2009/06/12 18:47:08 | 00,593,408 | ---- | C] (Microsoft Corporation)
iphlpsvc.dll -> C:\Windows\SysNative\iphlpsvc.dll -> [2009/06/12 18:47:08 | 00,223,744 | ---- | C] (Microsoft Corporation)
mswsock.dll -> C:\Windows\SysWow64\mswsock.dll -> [2009/06/12 18:47:08 | 00,223,232 | ---- | C] (Microsoft Corporation)
regsvc.dll -> C:\Windows\SysNative\regsvc.dll -> [2009/06/12 18:47:08 | 00,206,848 | ---- | C] (Microsoft Corporation)
osk.exe -> C:\Windows\SysWow64\osk.exe -> [2009/06/12 18:47:08 | 00,182,272 | ---- | C] (Microsoft Corporation)
basecsp.dll -> C:\Windows\SysNative\basecsp.dll -> [2009/06/12 18:47:08 | 00,153,064 | ---- | C] (Microsoft Corporation)
wusa.exe -> C:\Windows\SysNative\wusa.exe -> [2009/06/12 18:47:08 | 00,147,968 | ---- | C] (Microsoft Corporation)
basecsp.dll -> C:\Windows\SysWow64\basecsp.dll -> [2009/06/12 18:47:08 | 00,130,024 | ---- | C] (Microsoft Corporation)
powrprof.dll -> C:\Windows\SysNative\powrprof.dll -> [2009/06/12 18:47:08 | 00,123,392 | ---- | C] (Microsoft Corporation)
userenv.dll -> C:\Windows\SysWow64\userenv.dll -> [2009/06/12 18:47:08 | 00,108,544 | ---- | C] (Microsoft Corporation)
dwm.exe -> C:\Windows\SysNative\dwm.exe -> [2009/06/12 18:47:08 | 00,098,304 | ---- | C] (Microsoft Corporation)
audiodg.exe -> C:\Windows\SysWow64\audiodg.exe -> [2009/06/12 18:47:08 | 00,088,576 | ---- | C] (Microsoft Corporation)
iasacct.dll -> C:\Windows\SysNative\iasacct.dll -> [2009/06/12 18:47:08 | 00,072,704 | ---- | C] (Microsoft Corporation)
logman.exe -> C:\Windows\SysNative\logman.exe -> [2009/06/12 18:47:08 | 00,070,144 | ---- | C] (Microsoft Corporation)
Dumpata.sys -> C:\Windows\SysNative\drivers\Dumpata.sys -> [2009/06/12 18:47:08 | 00,029,656 | ---- | C] (Microsoft Corporation)
kdusb.dll -> C:\Windows\SysNative\kdusb.dll -> [2009/06/12 18:47:08 | 00,022,504 | ---- | C] (Microsoft Corporation)
atapi.sys -> C:\Windows\SysNative\drivers\atapi.sys -> [2009/06/12 18:47:08 | 00,020,952 | ---- | C] (Microsoft Corporation)
spldr.sys -> C:\Windows\SysNative\drivers\spldr.sys -> [2009/06/12 18:47:08 | 00,019,432 | ---- | C] (Microsoft Corporation)
wpccpl.dll -> C:\Windows\SysNative\wpccpl.dll -> [2009/06/12 18:47:07 | 01,882,624 | ---- | C] (Microsoft Corporation)
WerFaultSecure.exe -> C:\Windows\SysWow64\WerFaultSecure.exe -> [2009/06/12 18:47:07 | 00,860,160 | ---- | C] (Microsoft Corporation)
Utilman.exe -> C:\Windows\SysWow64\Utilman.exe -> [2009/06/12 18:47:07 | 00,638,976 | ---- | C] (Microsoft Corporation)
rdpencom.dll -> C:\Windows\SysWow64\rdpencom.dll -> [2009/06/12 18:47:07 | 00,612,864 | ---- | C] (Microsoft Corporation)
stobject.dll -> C:\Windows\SysWow64\stobject.dll -> [2009/06/12 18:47:07 | 00,586,752 | ---- | C] (Microsoft Corporation)
msftedit.dll -> C:\Windows\SysWow64\msftedit.dll -> [2009/06/12 18:47:07 | 00,564,224 | ---- | C] (Microsoft Corporation)
scesrv.dll -> C:\Windows\SysNative\scesrv.dll -> [2009/06/12 18:47:07 | 00,399,360 | ---- | C] (Microsoft Corporation)
mscms.dll -> C:\Windows\SysWow64\mscms.dll -> [2009/06/12 18:47:07 | 00,391,680 | ---- | C] (Microsoft Corporation)
RelMon.dll -> C:\Windows\SysWow64\RelMon.dll -> [2009/06/12 18:47:07 | 00,340,992 | ---- | C] (Microsoft Corporation)
tapisrv.dll -> C:\Windows\SysNative\tapisrv.dll -> [2009/06/12 18:47:07 | 00,318,976 | ---- | C] (Microsoft Corporation)
wow64win.dll -> C:\Windows\SysNative\wow64win.dll -> [2009/06/12 18:47:07 | 00,301,568 | ---- | C] (Microsoft Corporation)
shsvcs.dll -> C:\Windows\SysNative\shsvcs.dll -> [2009/06/12 18:47:07 | 00,301,568 | ---- | C] (Microsoft Corporation)
diskraid.exe -> C:\Windows\SysWow64\diskraid.exe -> [2009/06/12 18:47:07 | 00,230,912 | ---- | C] (Microsoft Corporation)
WerFault.exe -> C:\Windows\SysWow64\WerFault.exe -> [2009/06/12 18:47:07 | 00,217,088 | ---- | C] (Microsoft Corporation)
mfplat.dll -> C:\Windows\SysWow64\mfplat.dll -> [2009/06/12 18:47:07 | 00,208,896 | ---- | C] (Microsoft Corporation)
SndVol.exe -> C:\Windows\SysWow64\SndVol.exe -> [2009/06/12 18:47:07 | 00,197,632 | ---- | C] (Microsoft Corporation)
offfilt.dll -> C:\Windows\SysWow64\offfilt.dll -> [2009/06/12 18:47:07 | 00,194,560 | ---- | C] (Microsoft Corporation)
winmm.dll -> C:\Windows\SysWow64\winmm.dll -> [2009/06/12 18:47:07 | 00,189,952 | ---- | C] (Microsoft Corporation)
ks.sys -> C:\Windows\SysNative\drivers\ks.sys -> [2009/06/12 18:47:07 | 00,188,416 | ---- | C] (Microsoft Corporation)
exfat.sys -> C:\Windows\SysNative\drivers\exfat.sys -> [2009/06/12 18:47:07 | 00,187,904 | ---- | C] (Microsoft Corporation)
Faultrep.dll -> C:\Windows\SysNative\Faultrep.dll -> [2009/06/12 18:47:07 | 00,176,640 | ---- | C] (Microsoft Corporation)
apphelp.dll -> C:\Windows\SysWow64\apphelp.dll -> [2009/06/12 18:47:07 | 00,171,008 | ---- | C] (Microsoft Corporation)
secproc_ssp_isv.dll -> C:\Windows\SysWow64\secproc_ssp_isv.dll -> [2009/06/12 18:47:07 | 00,152,576 | ---- | C] (Microsoft Corporation)
secproc_ssp.dll -> C:\Windows\SysWow64\secproc_ssp.dll -> [2009/06/12 18:47:07 | 00,152,064 | ---- | C] (Microsoft Corporation)
authz.dll -> C:\Windows\SysNative\authz.dll -> [2009/06/12 18:47:07 | 00,143,360 | ---- | C] (Microsoft Corporation)
mstlsapi.dll -> C:\Windows\SysNative\mstlsapi.dll -> [2009/06/12 18:47:07 | 00,139,264 | ---- | C] (Microsoft Corporation)
dnsrslvr.dll -> C:\Windows\SysNative\dnsrslvr.dll -> [2009/06/12 18:47:07 | 00,117,760 | ---- | C] (Microsoft Corporation)
WinSCard.dll -> C:\Windows\SysWow64\WinSCard.dll -> [2009/06/12 18:47:07 | 00,115,712 | ---- | C] (Microsoft Corporation)
wsepno.dll -> C:\Windows\SysNative\wsepno.dll -> [2009/06/12 18:47:07 | 00,024,064 | ---- | C] (Microsoft Corporation)
usercpl.dll -> C:\Windows\SysNative\usercpl.dll -> [2009/06/12 18:47:06 | 01,279,488 | ---- | C] (Microsoft Corporation)
wer.dll -> C:\Windows\SysNative\wer.dll -> [2009/06/12 18:47:06 | 01,110,528 | ---- | C] (Microsoft Corporation)
systemcpl.dll -> C:\Windows\SysNative\systemcpl.dll -> [2009/06/12 18:47:06 | 00,995,328 | ---- | C] (Microsoft Corporation)
cryptui.dll -> C:\Windows\SysWow64\cryptui.dll -> [2009/06/12 18:47:06 | 00,971,264 | ---- | C] (Microsoft Corporation)
timedate.cpl -> C:\Windows\SysNative\timedate.cpl -> [2009/06/12 18:47:06 | 00,881,152 | ---- | C] (Microsoft Corporation)
ipsecsnp.dll -> C:\Windows\SysWow64\ipsecsnp.dll -> [2009/06/12 18:47:06 | 00,759,296 | ---- | C] (Microsoft Corporation)
prnntfy.dll -> C:\Windows\SysWow64\prnntfy.dll -> [2009/06/12 18:47:06 | 00,551,936 | ---- | C] (Microsoft Corporation)
dsound.dll -> C:\Windows\SysWow64\dsound.dll -> [2009/06/12 18:47:06 | 00,444,416 | ---- | C] (Microsoft Corporation)
AudioEng.dll -> C:\Windows\SysWow64\AudioEng.dll -> [2009/06/12 18:47:06 | 00,396,800 | ---- | C] (Microsoft Corporation)
zipfldr.dll -> C:\Windows\SysNative\zipfldr.dll -> [2009/06/12 18:47:06 | 00,387,072 | ---- | C] (Microsoft Corporation)
wow64.dll -> C:\Windows\SysNative\wow64.dll -> [2009/06/12 18:47:06 | 00,234,496 | ---- | C] (Microsoft Corporation)
wscntfy.dll -> C:\Windows\SysWow64\wscntfy.dll -> [2009/06/12 18:47:06 | 00,223,744 | ---- | C] (Microsoft Corporation)
dot3svc.dll -> C:\Windows\SysNative\dot3svc.dll -> [2009/06/12 18:47:06 | 00,208,896 | ---- | C] (Microsoft Corporation)
pnpsetup.dll -> C:\Windows\SysWow64\pnpsetup.dll -> [2009/06/12 18:47:06 | 00,181,760 | ---- | C] (Microsoft Corporation)
msnetobj.dll -> C:\Windows\SysWow64\msnetobj.dll -> [2009/06/12 18:47:06 | 00,179,712 | ---- | C] (Microsoft Corporation)
wscript.exe -> C:\Windows\SysWow64\wscript.exe -> [2009/06/12 18:47:06 | 00,155,648 | ---- | C] (Microsoft Corporation)
wshom.ocx -> C:\Windows\SysNative\wshom.ocx -> [2009/06/12 18:47:06 | 00,144,384 | ---- | C] (Microsoft Corporation)
odbccp32.dll -> C:\Windows\SysNative\odbccp32.dll -> [2009/06/12 18:47:06 | 00,126,976 | ---- | C] (Microsoft Corporation)
Kswdmcap.ax -> C:\Windows\SysNative\Kswdmcap.ax -> [2009/06/12 18:47:06 | 00,115,200 | ---- | C] (Microsoft Corporation)
odbccp32.dll -> C:\Windows\SysWow64\odbccp32.dll -> [2009/06/12 18:47:06 | 00,114,688 | ---- | C] (Microsoft Corporation)
console.dll -> C:\Windows\SysNative\console.dll -> [2009/06/12 18:47:06 | 00,104,448 | ---- | C] (Microsoft Corporation)
ulib.dll -> C:\Windows\SysWow64\ulib.dll -> [2009/06/12 18:47:06 | 00,099,840 | ---- | C] (Microsoft Corporation)
IPHLPAPI.DLL -> C:\Windows\SysWow64\IPHLPAPI.DLL -> [2009/06/12 18:47:06 | 00,091,648 | ---- | C] (Microsoft Corporation)
rastapi.dll -> C:\Windows\SysNative\rastapi.dll -> [2009/06/12 18:47:06 | 00,081,408 | ---- | C] (Microsoft Corporation)
adsmsext.dll -> C:\Windows\SysWow64\adsmsext.dll -> [2009/06/12 18:47:06 | 00,075,264 | ---- | C] (Microsoft Corporation)
rastapi.dll -> C:\Windows\SysWow64\rastapi.dll -> [2009/06/12 18:47:06 | 00,069,632 | ---- | C] (Microsoft Corporation)
wsnmp32.dll -> C:\Windows\SysNative\wsnmp32.dll -> [2009/06/12 18:47:06 | 00,061,952 | ---- | C] (Microsoft Corporation)
iasdatastore.dll -> C:\Windows\SysWow64\iasdatastore.dll -> [2009/06/12 18:47:06 | 00,047,104 | ---- | C] (Microsoft Corporation)
TSTheme.exe -> C:\Windows\SysNative\TSTheme.exe -> [2009/06/12 18:47:06 | 00,045,568 | ---- | C] (Microsoft Corporation)
fdProxy.dll -> C:\Windows\SysWow64\fdProxy.dll -> [2009/06/12 18:47:06 | 00,024,064 | ---- | C] (Microsoft Corporation)
WMVENCOD.DLL -> C:\Windows\SysWow64\WMVENCOD.DLL -> [2009/06/12 18:47:05 | 01,575,936 | ---- | C] (Microsoft Corporation)
powercpl.dll -> C:\Windows\SysNative\powercpl.dll -> [2009/06/12 18:47:05 | 00,898,560 | ---- | C] (Microsoft Corporation)
wpcao.dll -> C:\Windows\SysNative\wpcao.dll -> [2009/06/12 18:47:05 | 00,690,688 | ---- | C] (Microsoft Corporation)
themeui.dll -> C:\Windows\SysNative\themeui.dll -> [2009/06/12 18:47:05 | 00,688,640 | ---- | C] (Microsoft Corporation)
autoplay.dll -> C:\Windows\SysNative\autoplay.dll -> [2009/06/12 18:47:05 | 00,667,648 | ---- | C] (Microsoft Corporation)
vdsdyn.dll -> C:\Windows\SysWow64\vdsdyn.dll -> [2009/06/12 18:47:05 | 00,507,904 | ---- | C] (Microsoft Corporation)
IKEEXT.DLL -> C:\Windows\SysNative\IKEEXT.DLL -> [2009/06/12 18:47:05 | 00,454,656 | ---- | C] (Microsoft Corporation)
imkr80.ime -> C:\Windows\SysNative\imkr80.ime -> [2009/06/12 18:47:05 | 00,437,248 | ---- | C] (Microsoft Corporation)
wlangpui.dll -> C:\Windows\SysWow64\wlangpui.dll -> [2009/06/12 18:47:05 | 00,399,360 | ---- | C] (Microsoft Corporation)
bcrypt.dll -> C:\Windows\SysNative\bcrypt.dll -> [2009/06/12 18:47:05 | 00,306,688 | ---- | C] (Microsoft Corporation)
rasapi32.dll -> C:\Windows\SysWow64\rasapi32.dll -> [2009/06/12 18:47:05 | 00,286,720 | ---- | C] (Microsoft Corporation)
rastls.dll -> C:\Windows\SysWow64\rastls.dll -> [2009/06/12 18:47:05 | 00,244,224 | ---- | C] (Microsoft Corporation)
ntprint.dll -> C:\Windows\SysWow64\ntprint.dll -> [2009/06/12 18:47:05 | 00,216,064 | ---- | C] (Microsoft Corporation)
wscript.exe -> C:\Windows\SysNative\wscript.exe -> [2009/06/12 18:47:05 | 00,166,912 | ---- | C] (Microsoft Corporation)
diskpart.exe -> C:\Windows\SysWow64\diskpart.exe -> [2009/06/12 18:47:05 | 00,119,808 | ---- | C] (Microsoft Corporation)
mrxsmb20.sys -> C:\Windows\SysNative\drivers\mrxsmb20.sys -> [2009/06/12 18:47:05 | 00,105,984 | ---- | C] (Microsoft Corporation)
netiohlp.dll -> C:\Windows\SysWow64\netiohlp.dll -> [2009/06/12 18:47:05 | 00,104,448 | ---- | C] (Microsoft Corporation)
wlanhlp.dll -> C:\Windows\SysNative\wlanhlp.dll -> [2009/06/12 18:47:05 | 00,097,792 | ---- | C] (Microsoft Corporation)
tdx.sys -> C:\Windows\SysNative\drivers\tdx.sys -> [2009/06/12 18:47:05 | 00,094,720 | ---- | C] (Microsoft Corporation)
newdev.exe -> C:\Windows\SysNative\newdev.exe -> [2009/06/12 18:47:05 | 00,075,776 | ---- | C] (Microsoft Corporation)
gpapi.dll -> C:\Windows\SysWow64\gpapi.dll -> [2009/06/12 18:47:05 | 00,075,264 | ---- | C] (Microsoft Corporation)
iashlpr.dll -> C:\Windows\SysWow64\iashlpr.dll -> [2009/06/12 18:47:05 | 00,070,656 | ---- | C] (Microsoft Corporation)
logman.exe -> C:\Windows\SysWow64\logman.exe -> [2009/06/12 18:47:05 | 00,057,344 | ---- | C] (Microsoft Corporation)
perfdisk.dll -> C:\Windows\SysNative\perfdisk.dll -> [2009/06/12 18:47:05 | 00,035,328 | ---- | C] (Microsoft Corporation)
DeviceEject.exe -> C:\Windows\SysNative\DeviceEject.exe -> [2009/06/12 18:47:05 | 00,026,624 | ---- | C] (Microsoft Corporation)
tsbyuv.dll -> C:\Windows\SysNative\tsbyuv.dll -> [2009/06/12 18:47:05 | 00,014,336 | ---- | C] (Microsoft Corporation)
sud.dll -> C:\Windows\SysNative\sud.dll -> [2009/06/12 18:47:04 | 01,382,912 | ---- | C] (Microsoft Corporation)
slcc.dll -> C:\Windows\SysNative\slcc.dll -> [2009/06/12 18:47:04 | 00,810,496 | ---- | C] (Microsoft Corporation)
pcaui.dll -> C:\Windows\SysNative\pcaui.dll -> [2009/06/12 18:47:04 | 00,617,984 | ---- | C] (Microsoft Corporation)
modemui.dll -> C:\Windows\SysNative\modemui.dll -> [2009/06/12 18:47:04 | 00,302,592 | ---- | C] (Microsoft Corporation)
SmartcardCredentialProvider.dll -> C:\Windows\SysNative\SmartcardCredentialProvider.dll -> [2009/06/12 18:47:04 | 00,161,280 | ---- | C] (Microsoft Corporation)
iasrad.dll -> C:\Windows\SysWow64\iasrad.dll -> [2009/06/12 18:47:04 | 00,158,208 | ---- | C] (Microsoft Corporation)
mscorier.dll -> C:\Windows\SysWow64\mscorier.dll -> [2009/06/12 18:47:04 | 00,155,456 | ---- | C] (Microsoft Corporation)
mscorier.dll -> C:\Windows\SysNative\mscorier.dll -> [2009/06/12 18:47:04 | 00,154,960 | ---- | C] (Microsoft Corporation)
wusa.exe -> C:\Windows\SysWow64\wusa.exe -> [2009/06/12 18:47:04 | 00,140,800 | ---- | C] (Microsoft Corporation)
regapi.dll -> C:\Windows\SysNative\regapi.dll -> [2009/06/12 18:47:04 | 00,089,088 | ---- | C] (Microsoft Corporation)
hdwwiz.exe -> C:\Windows\SysNative\hdwwiz.exe -> [2009/06/12 18:47:04 | 00,080,896 | ---- | C] (Microsoft Corporation)
wshbth.dll -> C:\Windows\SysNative\wshbth.dll -> [2009/06/12 18:47:04 | 00,044,032 | ---- | C] (Microsoft Corporation)
msisip.dll -> C:\Windows\SysNative\msisip.dll -> [2009/06/12 18:47:04 | 00,022,528 | ---- | C] (Microsoft Corporation)
zipfldr.dll -> C:\Windows\SysWow64\zipfldr.dll -> [2009/06/12 18:47:03 | 00,342,528 | ---- | C] (Microsoft Corporation)
ulib.dll -> C:\Windows\SysNative\ulib.dll -> [2009/06/12 18:47:03 | 00,128,000 | ---- | C] (Microsoft Corporation)
wshext.dll -> C:\Windows\SysWow64\wshext.dll -> [2009/06/12 18:47:03 | 00,090,112 | ---- | C] (Microsoft Corporation)
feclient.dll -> C:\Windows\SysNative\feclient.dll -> [2009/06/12 18:47:03 | 00,068,608 | ---- | C] (Microsoft Corporation)
findstr.exe -> C:\Windows\SysWow64\findstr.exe -> [2009/06/12 18:47:03 | 00,060,928 | ---- | C] (Microsoft Corporation)
usbehci.sys -> C:\Windows\SysNative\drivers\usbehci.sys -> [2009/06/12 18:47:03 | 00,049,664 | ---- | C] (Microsoft Corporation)
chtbrkr.dll -> C:\Windows\SysNative\chtbrkr.dll -> [2009/06/12 18:47:02 | 06,100,480 | ---- | C] (Microsoft Corporation)
accessibilitycpl.dll -> C:\Windows\SysNative\accessibilitycpl.dll -> [2009/06/12 18:47:02 | 02,680,832 | ---- | C] (Microsoft Corporation)
netcenter.dll -> C:\Windows\SysWow64\netcenter.dll -> [2009/06/12 18:47:02 | 02,225,664 | ---- | C] (Microsoft Corporation)
mstsc.exe -> C:\Windows\SysNative\mstsc.exe -> [2009/06/12 18:47:02 | 00,731,648 | ---- | C] (Microsoft Corporation)
apphelp.dll -> C:\Windows\SysNative\apphelp.dll -> [2009/06/12 18:47:02 | 00,200,704 | ---- | C] (Microsoft Corporation)
vdsutil.dll -> C:\Windows\SysNative\vdsutil.dll -> [2009/06/12 18:47:02 | 00,157,696 | ---- | C] (Microsoft Corporation)
cscript.exe -> C:\Windows\SysNative\cscript.exe -> [2009/06/12 18:47:02 | 00,147,968 | ---- | C] (Microsoft Corporation)
wshext.dll -> C:\Windows\SysNative\wshext.dll -> [2009/06/12 18:47:02 | 00,101,888 | ---- | C] (Microsoft Corporation)
pacer.sys -> C:\Windows\SysNative\drivers\pacer.sys -> [2009/06/12 18:47:02 | 00,094,208 | ---- | C] (Microsoft Corporation)
themecpl.dll -> C:\Windows\SysWow64\themecpl.dll -> [2009/06/12 18:47:01 | 01,152,000 | ---- | C] (Microsoft Corporation)
wer.dll -> C:\Windows\SysWow64\wer.dll -> [2009/06/12 18:47:01 | 00,876,032 | ---- | C] (Microsoft Corporation)
rasdlg.dll -> C:\Windows\SysWow64\rasdlg.dll -> [2009/06/12 18:47:01 | 00,825,856 | ---- | C] (Microsoft Corporation)
timedate.cpl -> C:\Windows\SysWow64\timedate.cpl -> [2009/06/12 18:47:01 | 00,714,240 | ---- | C] (Microsoft Corporation)
pnpui.dll -> C:\Windows\SysNative\pnpui.dll -> [2009/06/12 18:47:01 | 00,691,712 | ---- | C] (Microsoft Corporation)
riched20.dll -> C:\Windows\SysNative\riched20.dll -> [2009/06/12 18:47:01 | 00,606,208 | ---- | C] (Microsoft Corporation)
ncryptui.dll -> C:\Windows\SysNative\ncryptui.dll -> [2009/06/12 18:47:01 | 00,589,312 | ---- | C] (Microsoft Corporation)
rasppp.dll -> C:\Windows\SysNative\rasppp.dll -> [2009/06/12 18:47:01 | 00,306,176 | ---- | C] (Microsoft Corporation)
udfs.sys -> C:\Windows\SysNative\drivers\udfs.sys -> [2009/06/12 18:47:01 | 00,299,008 | ---- | C] (Microsoft Corporation)
scansetting.dll -> C:\Windows\SysWow64\scansetting.dll -> [2009/06/12 18:47:01 | 00,245,760 | ---- | C] (Microsoft Corporation)
tcpmon.dll -> C:\Windows\SysNative\tcpmon.dll -> [2009/06/12 18:47:01 | 00,168,960 | ---- | C] (Microsoft Corporation)
imm32.dll -> C:\Windows\SysNative\imm32.dll -> [2009/06/12 18:47:01 | 00,163,840 | ---- | C] (Microsoft Corporation)
msutb.dll -> C:\Windows\SysWow64\msutb.dll -> [2009/06/12 18:47:01 | 00,163,328 | ---- | C] (Microsoft Corporation)
wshom.ocx -> C:\Windows\SysWow64\wshom.ocx -> [2009/06/12 18:47:01 | 00,135,168 | ---- | C] (Microsoft Corporation)
ntmarta.dll -> C:\Windows\SysWow64\ntmarta.dll -> [2009/06/12 18:47:01 | 00,121,344 | ---- | C] (Microsoft Corporation)
wanarp.sys -> C:\Windows\SysNative\drivers\wanarp.sys -> [2009/06/12 18:47:01 | 00,086,528 | ---- | C] (Microsoft Corporation)
mstlsapi.dll -> C:\Windows\SysWow64\mstlsapi.dll -> [2009/06/12 18:47:01 | 00,084,992 | ---- | C] (Microsoft Corporation)
iassvcs.dll -> C:\Windows\SysWow64\iassvcs.dll -> [2009/06/12 18:47:01 | 00,076,288 | ---- | C] (Microsoft Corporation)
iasads.dll -> C:\Windows\SysWow64\iasads.dll -> [2009/06/12 18:47:01 | 00,057,344 | ---- | C] (Microsoft Corporation)
wsnmp32.dll -> C:\Windows\SysWow64\wsnmp32.dll -> [2009/06/12 18:47:01 | 00,050,688 | ---- | C] (Microsoft Corporation)
dataclen.dll -> C:\Windows\SysNative\dataclen.dll -> [2009/06/12 18:47:01 | 00,048,640 | ---- | C] (Microsoft Corporation)
mssprxy.dll -> C:\Windows\SysWow64\mssprxy.dll -> [2009/06/12 18:47:01 | 00,033,280 | ---- | C] (Microsoft Corporation)
tsbyuv.dll -> C:\Windows\SysWow64\tsbyuv.dll -> [2009/06/12 18:47:01 | 00,012,288 | ---- | C] (Microsoft Corporation)
networkmap.dll -> C:\Windows\SysWow64\networkmap.dll -> [2009/06/12 18:47:00 | 03,072,000 | ---- | C] (Microsoft Corporation)
PerfCenterCPL.dll -> C:\Windows\SysWow64\PerfCenterCPL.dll -> [2009/06/12 18:47:00 | 01,248,768 | ---- | C] (Microsoft Corporation)
slcc.dll -> C:\Windows\SysWow64\slcc.dll -> [2009/06/12 18:47:00 | 00,777,216 | ---- | C] (Microsoft Corporation)
powercpl.dll -> C:\Windows\SysWow64\powercpl.dll -> [2009/06/12 18:47:00 | 00,723,968 | ---- | C] (Microsoft Corporation)
mstsc.exe -> C:\Windows\SysWow64\mstsc.exe -> [2009/06/12 18:47:00 | 00,678,400 | ---- | C] (Microsoft Corporation)
qedit.dll -> C:\Windows\SysNative\qedit.dll -> [2009/06/12 18:47:00 | 00,619,008 | ---- | C] (Microsoft Corporation)
wlangpui.dll -> C:\Windows\SysNative\wlangpui.dll -> [2009/06/12 18:47:00 | 00,489,984 | ---- | C] (Microsoft Corporation)
srcore.dll -> C:\Windows\SysNative\srcore.dll -> [2009/06/12 18:47:00 | 00,474,624 | ---- | C] (Microsoft Corporation)
rasplap.dll -> C:\Windows\SysNative\rasplap.dll -> [2009/06/12 18:47:00 | 00,389,632 | ---- | C] (Microsoft Corporation)
qdvd.dll -> C:\Windows\SysNative\qdvd.dll -> [2009/06/12 18:47:00 | 00,352,256 | ---- | C] (Microsoft Corporation)
SndVolSSO.dll -> C:\Windows\SysNative\SndVolSSO.dll -> [2009/06/12 18:47:00 | 00,177,664 | ---- | C] (Microsoft Corporation)
oleprn.dll -> C:\Windows\SysNative\oleprn.dll -> [2009/06/12 18:47:00 | 00,115,712 | ---- | C] (Microsoft Corporation)
powrprof.dll -> C:\Windows\SysWow64\powrprof.dll -> [2009/06/12 18:47:00 | 00,098,816 | ---- | C] (Microsoft Corporation)
authz.dll -> C:\Windows\SysWow64\authz.dll -> [2009/06/12 18:47:00 | 00,079,872 | ---- | C] (Microsoft Corporation)
newdev.exe -> C:\Windows\SysWow64\newdev.exe -> [2009/06/12 18:47:00 | 00,074,752 | ---- | C] (Microsoft Corporation)
wlanhlp.dll -> C:\Windows\SysWow64\wlanhlp.dll -> [2009/06/12 18:47:00 | 00,068,096 | ---- | C] (Microsoft Corporation)
iasacct.dll -> C:\Windows\SysWow64\iasacct.dll -> [2009/06/12 18:47:00 | 00,058,880 | ---- | C] (Microsoft Corporation)
ifmon.dll -> C:\Windows\SysNative\ifmon.dll -> [2009/06/12 18:47:00 | 00,036,352 | ---- | C] (Microsoft Corporation)
fc.exe -> C:\Windows\SysNative\fc.exe -> [2009/06/12 18:47:00 | 00,024,064 | ---- | C] (Microsoft Corporation)
lpk.dll -> C:\Windows\SysWow64\lpk.dll -> [2009/06/12 18:47:00 | 00,023,552 | ---- | C] (Microsoft Corporation)
kbdhid.sys -> C:\Windows\SysNative\drivers\kbdhid.sys -> [2009/06/12 18:47:00 | 00,022,528 | ---- | C] (Microsoft Corporation)
icardres.dll -> C:\Windows\SysWow64\icardres.dll -> [2009/06/12 18:47:00 | 00,009,048 | ---- | C] (Microsoft Corporation)
icardres.dll -> C:\Windows\SysNative\icardres.dll -> [2009/06/12 18:47:00 | 00,009,048 | ---- | C] (Microsoft Corporation)
accessibilitycpl.dll -> C:\Windows\SysWow64\accessibilitycpl.dll -> [2009/06/12 18:46:59 | 02,515,968 | ---- | C] (Microsoft Corporation)
connect.dll -> C:\Windows\SysWow64\connect.dll -> [2009/06/12 18:46:59 | 01,645,568 | ---- | C] (Microsoft Corporation)
sud.dll -> C:\Windows\SysWow64\sud.dll -> [2009/06/12 18:46:59 | 01,224,192 | ---- | C] (Microsoft Corporation)
systemcpl.dll -> C:\Windows\SysWow64\systemcpl.dll -> [2009/06/12 18:46:59 | 00,842,240 | ---- | C] (Microsoft Corporation)
WMVXENCD.DLL -> C:\Windows\SysNative\WMVXENCD.DLL -> [2009/06/12 18:46:59 | 00,622,592 | ---- | C] (Microsoft Corporation)
themeui.dll -> C:\Windows\SysWow64\themeui.dll -> [2009/06/12 18:46:59 | 00,615,424 | ---- | C] (Microsoft Corporation)
pcaui.dll -> C:\Windows\SysWow64\pcaui.dll -> [2009/06/12 18:46:59 | 00,464,384 | ---- | C] (Microsoft Corporation)
BFE.DLL -> C:\Windows\SysNative\BFE.DLL -> [2009/06/12 18:46:59 | 00,458,240 | ---- | C] (Microsoft Corporation)
thawbrkr.dll -> C:\Windows\SysNative\thawbrkr.dll -> [2009/06/12 18:46:59 | 00,317,440 | ---- | C] (Microsoft Corporation)
raschap.dll -> C:\Windows\SysNative\raschap.dll -> [2009/06/12 18:46:59 | 00,295,936 | ---- | C] (Microsoft Corporation)
scksp.dll -> C:\Windows\SysNative\scksp.dll -> [2009/06/12 18:46:59 | 00,186,880 | ---- | C] (Microsoft Corporation)
samlib.dll -> C:\Windows\SysWow64\samlib.dll -> [2009/06/12 18:46:59 | 00,057,344 | ---- | C] (Microsoft Corporation)
mmci.dll -> C:\Windows\SysWow64\mmci.dll -> [2009/06/12 18:46:59 | 00,052,224 | ---- | C] (Microsoft Corporation)
cmmon32.exe -> C:\Windows\SysNative\cmmon32.exe -> [2009/06/12 18:46:59 | 00,052,224 | ---- | C] (Microsoft Corporation)
npfs.sys -> C:\Windows\SysNative\drivers\npfs.sys -> [2009/06/12 18:46:59 | 00,044,544 | ---- | C] (Microsoft Corporation)
iaspolcy.dll -> C:\Windows\SysNative\iaspolcy.dll -> [2009/06/12 18:46:59 | 00,037,888 | ---- | C] (Microsoft Corporation)
hidserv.dll -> C:\Windows\SysNative\hidserv.dll -> [2009/06/12 18:46:59 | 00,024,064 | ---- | C] (Microsoft Corporation)
wscisvif.dll -> C:\Windows\SysNative\wscisvif.dll -> [2009/06/12 18:46:59 | 00,020,992 | ---- | C] (Microsoft Corporation)
spwinsat.dll -> C:\Windows\SysNative\spwinsat.dll -> [2009/06/12 18:46:59 | 00,013,824 | ---- | C] (Microsoft Corporation)
usercpl.dll -> C:\Windows\SysWow64\usercpl.dll -> [2009/06/12 18:46:58 | 01,123,840 | ---- | C] (Microsoft Corporation)
autoplay.dll -> C:\Windows\SysWow64\autoplay.dll -> [2009/06/12 18:46:58 | 00,516,608 | ---- | C] (Microsoft Corporation)
qdvd.dll -> C:\Windows\SysWow64\qdvd.dll -> [2009/06/12 18:46:58 | 00,497,152 | ---- | C] (Microsoft Corporation)
rtutils.dll -> C:\Windows\SysNative\rtutils.dll -> [2009/06/12 18:46:58 | 00,050,688 | ---- | C] (Microsoft Corporation)
SyncCenter.dll -> C:\Windows\SysNative\SyncCenter.dll -> [2009/06/12 18:46:57 | 02,575,360 | ---- | C] (Microsoft Corporation)
WMPEncEn.dll -> C:\Windows\SysNative\WMPEncEn.dll -> [2009/06/12 18:46:57 | 02,043,904 | ---- | C] (Microsoft Corporation)
wlanpref.dll -> C:\Windows\SysWow64\wlanpref.dll -> [2009/06/12 18:46:57 | 01,671,680 | ---- | C] (Microsoft Corporation)
WMPEncEn.dll -> C:\Windows\SysWow64\WMPEncEn.dll -> [2009/06/12 18:46:57 | 01,642,496 | ---- | C] (Microsoft Corporation)
msftedit.dll -> C:\Windows\SysNative\msftedit.dll -> [2009/06/12 18:46:57 | 00,735,232 | ---- | C] (Microsoft Corporation)
msscp.dll -> C:\Windows\SysNative\msscp.dll -> [2009/06/12 18:46:57 | 00,534,528 | ---- | C] (Microsoft Corporation)
wpcao.dll -> C:\Windows\SysWow64\wpcao.dll -> [2009/06/12 18:46:57 | 00,532,992 | ---- | C] (Microsoft Corporation)
msinfo32.exe -> C:\Windows\SysWow64\msinfo32.exe -> [2009/06/12 18:46:57 | 00,408,064 | ---- | C] (Microsoft Corporation)
wlanmsm.dll -> C:\Windows\SysNative\wlanmsm.dll -> [2009/06/12 18:46:57 | 00,353,792 | ---- | C] (Microsoft Corporation)
mscandui.dll -> C:\Windows\SysNative\mscandui.dll -> [2009/06/12 18:46:57 | 00,289,792 | ---- | C] (Microsoft Corporation)
tapisrv.dll -> C:\Windows\SysWow64\tapisrv.dll -> [2009/06/12 18:46:57 | 00,242,688 | ---- | C] (Microsoft Corporation)
fastfat.sys -> C:\Windows\SysNative\drivers\fastfat.sys -> [2009/06/12 18:46:57 | 00,198,144 | ---- | C] (Microsoft Corporation)
dsprop.dll -> C:\Windows\SysNative\dsprop.dll -> [2009/06/12 18:46:57 | 00,164,864 | ---- | C] (Microsoft Corporation)
scksp.dll -> C:\Windows\SysWow64\scksp.dll -> [2009/06/12 18:46:57 | 00,140,288 | ---- | C] (Microsoft Corporation)
vdsutil.dll -> C:\Windows\SysWow64\vdsutil.dll -> [2009/06/12 18:46:57 | 00,128,000 | ---- | C] (Microsoft Corporation)
rpchttp.dll -> C:\Windows\SysWow64\rpchttp.dll -> [2009/06/12 18:46:57 | 00,127,488 | ---- | C] (Microsoft Corporation)
rdpwsx.dll -> C:\Windows\SysNative\rdpwsx.dll -> [2009/06/12 18:46:57 | 00,117,760 | ---- | C] (Microsoft Corporation)
pintlgnt.ime -> C:\Windows\SysWow64\pintlgnt.ime -> [2009/06/12 18:46:57 | 00,089,088 | ---- | C] (Microsoft Corporation)
smss.exe -> C:\Windows\SysNative\smss.exe -> [2009/06/12 18:46:57 | 00,075,264 | ---- | C] (Microsoft Corporation)
regapi.dll -> C:\Windows\SysWow64\regapi.dll -> [2009/06/12 18:46:57 | 00,067,584 | ---- | C] (Microsoft Corporation)
PnPUnattend.exe -> C:\Windows\SysNative\PnPUnattend.exe -> [2009/06/12 18:46:57 | 00,064,512 | ---- | C] (Microsoft Corporation)
feclient.dll -> C:\Windows\SysWow64\feclient.dll -> [2009/06/12 18:46:57 | 00,054,272 | ---- | C] (Microsoft Corporation)
rekeywiz.exe -> C:\Windows\SysNative\rekeywiz.exe -> [2009/06/12 18:46:57 | 00,051,200 | ---- | C] (Microsoft Corporation)
certprop.dll -> C:\Windows\SysNative\certprop.dll -> [2009/06/12 18:46:57 | 00,049,664 | ---- | C] (Microsoft Corporation)
msimtf.dll -> C:\Windows\SysNative\msimtf.dll -> [2009/06/12 18:46:57 | 00,041,472 | ---- | C] (Microsoft Corporation)
printfilterpipelineprxy.dll -> C:\Windows\SysNative\printfilterpipelineprxy.dll -> [2009/06/12 18:46:57 | 00,035,840 | ---- | C] (Microsoft Corporation)
wscui.cpl -> C:\Windows\SysWow64\wscui.cpl -> [2009/06/12 18:46:56 | 01,689,600 | ---- | C] (Microsoft Corporation)
mmsys.cpl -> C:\Windows\SysWow64\mmsys.cpl -> [2009/06/12 18:46:56 | 01,102,848 | ---- | C] (Microsoft Corporation)
FWPUCLNT.DLL -> C:\Windows\SysNative\FWPUCLNT.DLL -> [2009/06/12 18:46:56 | 00,779,776 | ---- | C] (Microsoft Corporation)
wiaaut.dll -> C:\Windows\SysNative\wiaaut.dll -> [2009/06/12 18:46:56 | 00,669,184 | ---- | C] (Microsoft Corporation)
qedit.dll -> C:\Windows\SysWow64\qedit.dll -> [2009/06/12 18:46:56 | 00,505,344 | ---- | C] (Microsoft Corporation)
ncryptui.dll -> C:\Windows\SysWow64\ncryptui.dll -> [2009/06/12 18:46:56 | 00,445,952 | ---- | C] (Microsoft Corporation)
winhttp.dll -> C:\Windows\SysNative\winhttp.dll -> [2009/06/12 18:46:56 | 00,439,808 | ---- | C] (Microsoft Corporation)
dpapimig.exe -> C:\Windows\SysWow64\dpapimig.exe -> [2009/06/12 18:46:56 | 00,407,040 | ---- | C] (Microsoft Corporation)
unimdm.tsp -> C:\Windows\SysNative\unimdm.tsp -> [2009/06/12 18:46:56 | 00,320,000 | ---- | C] (Microsoft Corporation)
AUDIOKSE.dll -> C:\Windows\SysNative\AUDIOKSE.dll -> [2009/06/12 18:46:56 | 00,313,856 | ---- | C] (Microsoft Corporation)
scesrv.dll -> C:\Windows\SysWow64\scesrv.dll -> [2009/06/12 18:46:56 | 00,306,176 | ---- | C] (Microsoft Corporation)
psisdecd.dll -> C:\Windows\SysWow64\psisdecd.dll -> [2009/06/12 18:46:56 | 00,293,376 | ---- | C] (Microsoft Corporation)
fontext.dll -> C:\Windows\SysNative\fontext.dll -> [2009/06/12 18:46:56 | 00,163,328 | ---- | C] (Microsoft Corporation)
Faultrep.dll -> C:\Windows\SysWow64\Faultrep.dll -> [2009/06/12 18:46:56 | 00,147,456 | ---- | C] (Microsoft Corporation)
AudioSes.dll -> C:\Windows\SysWow64\AudioSes.dll -> [2009/06/12 18:46:56 | 00,115,712 | ---- | C] (Microsoft Corporation)
oleprn.dll -> C:\Windows\SysWow64\oleprn.dll -> [2009/06/12 18:46:56 | 00,097,792 | ---- | C] (Microsoft Corporation)
dot3msm.dll -> C:\Windows\SysNative\dot3msm.dll -> [2009/06/12 18:46:56 | 00,092,160 | ---- | C] (Microsoft Corporation)
dot3msm.dll -> C:\Windows\SysWow64\dot3msm.dll -> [2009/06/12 18:46:56 | 00,075,264 | ---- | C] (Microsoft Corporation)
mpr.dll -> C:\Windows\SysWow64\mpr.dll -> [2009/06/12 18:46:56 | 00,068,608 | ---- | C] (Microsoft Corporation)
rekeywiz.exe -> C:\Windows\SysWow64\rekeywiz.exe -> [2009/06/12 18:46:56 | 00,043,520 | ---- | C] (Microsoft Corporation)
BTHUSB.SYS -> C:\Windows\SysNative\drivers\BTHUSB.SYS -> [2009/06/12 18:46:56 | 00,034,816 | ---- | C] (Microsoft Corporation)
iaspolcy.dll -> C:\Windows\SysWow64\iaspolcy.dll -> [2009/06/12 18:46:56 | 00,033,792 | ---- | C] (Microsoft Corporation)
whealogr.dll -> C:\Windows\SysNative\whealogr.dll -> [2009/06/12 18:46:56 | 00,033,280 | ---- | C] (Microsoft Corporation)
wsdchngr.dll -> C:\Windows\SysNative\wsdchngr.dll -> [2009/06/12 18:46:56 | 00,025,600 | ---- | C] (Microsoft Corporation)
wscisvif.dll -> C:\Windows\SysWow64\wscisvif.dll -> [2009/06/12 18:46:56 | 00,017,920 | ---- | C] (Microsoft Corporation)
spcinstrumentation.man -> C:\Windows\SysWow64\spcinstrumentation.man -> [2009/06/12 18:46:56 | 00,009,239 | ---- | C] ()
spcinstrumentation.man -> C:\Windows\SysNative\spcinstrumentation.man -> [2009/06/12 18:46:56 | 00,009,239 | ---- | C] ()
wscui.cpl -> C:\Windows\SysNative\wscui.cpl -> [2009/06/12 18:46:55 | 01,738,752 | ---- | C] (Microsoft Corporation)
rasgcw.dll -> C:\Windows\SysWow64\rasgcw.dll -> [2009/06/12 18:46:55 | 00,642,560 | ---- | C] (Microsoft Corporation)
wmpeffects.dll -> C:\Windows\SysNative\wmpeffects.dll -> [2009/06/12 18:46:55 | 00,557,056 | ---- | C] (Microsoft Corporation)
certreq.exe -> C:\Windows\SysWow64\certreq.exe -> [2009/06/12 18:46:55 | 00,215,552 | ---- | C] (Microsoft Corporation)
hdwwiz.exe -> C:\Windows\SysWow64\hdwwiz.exe -> [2009/06/12 18:46:55 | 00,080,384 | ---- | C] (Microsoft Corporation)
perfdisk.dll -> C:\Windows\SysWow64\perfdisk.dll -> [2009/06/12 18:46:55 | 00,031,744 | ---- | C] (Microsoft Corporation)
netshell.dll -> C:\Windows\SysNative\netshell.dll -> [2009/06/12 18:46:54 | 03,341,312 | ---- | C] (Microsoft Corporation)
FWPUCLNT.DLL -> C:\Windows\SysWow64\FWPUCLNT.DLL -> [2009/06/12 18:46:54 | 00,595,456 | ---- | C] (Microsoft Corporation)
wmdrmdev.dll -> C:\Windows\SysNative\wmdrmdev.dll -> [2009/06/12 18:46:54 | 00,539,136 | ---- | C] (Microsoft Corporation)
rasplap.dll -> C:\Windows\SysWow64\rasplap.dll -> [2009/06/12 18:46:54 | 00,376,832 | ---- | C] (Microsoft Corporation)
drmmgrtn.dll -> C:\Windows\SysNative\drmmgrtn.dll -> [2009/06/12 18:46:54 | 00,365,568 | ---- | C] (Microsoft Corporation)
certreq.exe -> C:\Windows\SysNative\certreq.exe -> [2009/06/12 18:46:54 | 00,259,072 | ---- | C] (Microsoft Corporation)
msnetobj.dll -> C:\Windows\SysNative\msnetobj.dll -> [2009/06/12 18:46:54 | 00,221,696 | ---- | C] (Microsoft Corporation)
rdpwd.sys -> C:\Windows\SysNative\drivers\rdpwd.sys -> [2009/06/12 18:46:54 | 00,209,920 | ---- | C] (Microsoft Corporation)
scecli.dll -> C:\Windows\SysWow64\scecli.dll -> [2009/06/12 18:46:54 | 00,177,152 | ---- | C] (Microsoft Corporation)
tcpipcfg.dll -> C:\Windows\SysWow64\tcpipcfg.dll -> [2009/06/12 18:46:54 | 00,170,496 | ---- | C] (Microsoft Corporation)
tcpmon.dll -> C:\Windows\SysWow64\tcpmon.dll -> [2009/06/12 18:46:54 | 00,135,168 | ---- | C] (Microsoft Corporation)
SmartcardCredentialProvider.dll -> C:\Windows\SysWow64\SmartcardCredentialProvider.dll -> [2009/06/12 18:46:54 | 00,134,656 | ---- | C] (Microsoft Corporation)
conime.exe -> C:\Windows\SysNative\conime.exe -> [2009/06/12 18:46:54 | 00,086,528 | ---- | C] (Microsoft Corporation)
fdWSD.dll -> C:\Windows\SysWow64\fdWSD.dll -> [2009/06/12 18:46:54 | 00,067,072 | ---- | C] (Microsoft Corporation)
dimsroam.dll -> C:\Windows\SysNative\dimsroam.dll -> [2009/06/12 18:46:54 | 00,064,512 | ---- | C] (Microsoft Corporation)
cmmon32.exe -> C:\Windows\SysWow64\cmmon32.exe -> [2009/06/12 18:46:54 | 00,049,152 | ---- | C] (Microsoft Corporation)
TSTheme.exe -> C:\Windows\SysWow64\TSTheme.exe -> [2009/06/12 18:46:54 | 00,038,400 | ---- | C] (Microsoft Corporation)
PnPutil.exe -> C:\Windows\SysNative\PnPutil.exe -> [2009/06/12 18:46:54 | 00,036,864 | ---- | C] (Microsoft Corporation)
USBCAMD2.sys -> C:\Windows\SysNative\drivers\USBCAMD2.sys -> [2009/06/12 18:46:54 | 00,032,640 | ---- | C] (Microsoft Corporation)
spwinsat.dll -> C:\Windows\SysWow64\spwinsat.dll -> [2009/06/12 18:46:54 | 00,011,776 | ---- | C] (Microsoft Corporation)
MSVidCtl.dll -> C:\Windows\SysNative\MSVidCtl.dll -> [2009/06/12 18:46:53 | 02,535,424 | ---- | C] (Microsoft Corporation)
oobefldr.dll -> C:\Windows\SysNative\oobefldr.dll -> [2009/06/12 18:46:53 | 02,438,656 | ---- | C] (Microsoft Corporation)
MSVidCtl.dll -> C:\Windows\SysWow64\MSVidCtl.dll -> [2009/06/12 18:46:53 | 01,544,704 | ---- | C] (Microsoft Corporation)
MSMPEG2ENC.DLL -> C:\Windows\SysNative\MSMPEG2ENC.DLL -> [2009/06/12 18:46:53 | 00,644,608 | ---- | C] (Microsoft Corporation)
blackbox.dll -> C:\Windows\SysNative\blackbox.dll -> [2009/06/12 18:46:53 | 00,616,448 | ---- | C] (Microsoft Corporation)
wiaaut.dll -> C:\Windows\SysWow64\wiaaut.dll -> [2009/06/12 18:46:53 | 00,547,840 | ---- | C] (Microsoft Corporation)
cmdial32.dll -> C:\Windows\SysNative\cmdial32.dll -> [2009/06/12 18:46:53 | 00,521,216 | ---- | C] (Microsoft Corporation)
cmdial32.dll -> C:\Windows\SysWow64\cmdial32.dll -> [2009/06/12 18:46:53 | 00,481,792 | ---- | C] (Microsoft Corporation)
raschap.dll -> C:\Windows\SysWow64\raschap.dll -> [2009/06/12 18:46:53 | 00,281,088 | ---- | C] (Microsoft Corporation)
unimdm.tsp -> C:\Windows\SysWow64\unimdm.tsp -> [2009/06/12 18:46:53 | 00,280,064 | ---- | C] (Microsoft Corporation)
msutb.dll -> C:\Windows\SysNative\msutb.dll -> [2009/06/12 18:46:53 | 00,227,840 | ---- | C] (Microsoft Corporation)
wlanui.dll -> C:\Windows\SysNative\wlanui.dll -> [2009/06/12 18:46:53 | 00,218,624 | ---- | C] (Microsoft Corporation)
netplwiz.dll -> C:\Windows\SysNative\netplwiz.dll -> [2009/06/12 18:46:53 | 00,197,632 | ---- | C] (Microsoft Corporation)
nwifi.sys -> C:\Windows\SysNative\drivers\nwifi.sys -> [2009/06/12 18:46:53 | 00,187,392 | ---- | C] (Microsoft Corporation)
SndVol.exe -> C:\Windows\SysNative\SndVol.exe -> [2009/06/12 18:46:53 | 00,172,032 | ---- | C] (Microsoft Corporation)
wdmaud.drv -> C:\Windows\SysWow64\wdmaud.drv -> [2009/06/12 18:46:53 | 00,167,424 | ---- | C] (Microsoft Corporation)
fontext.dll -> C:\Windows\SysWow64\fontext.dll -> [2009/06/12 18:46:53 | 00,142,336 | ---- | C] (Microsoft Corporation)
rmcast.sys -> C:\Windows\SysNative\drivers\rmcast.sys -> [2009/06/12 18:46:53 | 00,140,288 | ---- | C] (Microsoft Corporation)
shsetup.dll -> C:\Windows\SysNative\shsetup.dll -> [2009/06/12 18:46:53 | 00,121,856 | ---- | C] (Microsoft Corporation)
MSNP.ax -> C:\Windows\SysNative\MSNP.ax -> [2009/06/12 18:46:53 | 00,101,376 | ---- | C] (Microsoft Corporation)
wlgpclnt.dll -> C:\Windows\SysNative\wlgpclnt.dll -> [2009/06/12 18:46:53 | 00,100,864 | ---- | C] (Microsoft Corporation)
SCardSvr.dll -> C:\Windows\SysWow64\SCardSvr.dll -> [2009/06/12 18:46:53 | 00,095,232 | ---- | C] (Microsoft Corporation)
fdWSD.dll -> C:\Windows\SysNative\fdWSD.dll -> [2009/06/12 18:46:53 | 00,081,408 | ---- | C] (Microsoft Corporation)
rassstp.sys -> C:\Windows\SysNative\drivers\rassstp.sys -> [2009/06/12 18:46:53 | 00,078,336 | ---- | C] (Microsoft Corporation)
wscsvc.dll -> C:\Windows\SysNative\wscsvc.dll -> [2009/06/12 18:46:53 | 00,074,752 | ---- | C] (Microsoft Corporation)
conime.exe -> C:\Windows\SysWow64\conime.exe -> [2009/06/12 18:46:53 | 00,069,120 | ---- | C] (Microsoft Corporation)
cipher.exe -> C:\Windows\SysNative\cipher.exe -> [2009/06/12 18:46:53 | 00,067,584 | ---- | C] (Microsoft Corporation)
watchdog.sys -> C:\Windows\SysNative\drivers\watchdog.sys -> [2009/06/12 18:46:53 | 00,040,448 | ---- | C] (Microsoft Corporation)
tcpipreg.sys -> C:\Windows\SysNative\drivers\tcpipreg.sys -> [2009/06/12 18:46:53 | 00,040,448 | ---- | C] (Microsoft Corporation)
uxsms.dll -> C:\Windows\SysNative\uxsms.dll -> [2009/06/12 18:46:53 | 00,032,768 | ---- | C] (Microsoft Corporation)
whealogr.dll -> C:\Windows\SysWow64\whealogr.dll -> [2009/06/12 18:46:53 | 00,031,232 | ---- | C] (Microsoft Corporation)
MsCtfMonitor.dll -> C:\Windows\SysNative\MsCtfMonitor.dll -> [2009/06/12 18:46:53 | 00,026,112 | ---- | C] (Microsoft Corporation)
chtbrkr.dll -> C:\Windows\SysWow64\chtbrkr.dll -> [2009/06/12 18:46:52 | 06,103,040 | ---- | C] (Microsoft Corporation)
oobefldr.dll -> C:\Windows\SysWow64\oobefldr.dll -> [2009/06/12 18:46:52 | 02,153,472 | ---- | C] (Microsoft Corporation)
WMVDECOD.DLL -> C:\Windows\SysNative\WMVDECOD.DLL -> [2009/06/12 18:46:52 | 01,702,912 | ---- | C] (Microsoft Corporation)
wmdrmsdk.dll -> C:\Windows\SysNative\wmdrmsdk.dll -> [2009/06/12 18:46:52 | 00,688,128 | ---- | C] (Microsoft Corporation)
WMVXENCD.DLL -> C:\Windows\SysWow64\WMVXENCD.DLL -> [2009/06/12 18:46:52 | 00,657,408 | ---- | C] (Microsoft Corporation)
wmdrmsdk.dll -> C:\Windows\SysWow64\wmdrmsdk.dll -> [2009/06/12 18:46:52 | 00,533,504 | ---- | C] (Microsoft Corporation)
shwebsvc.dll -> C:\Windows\SysWow64\shwebsvc.dll -> [2009/06/12 18:46:52 | 00,425,472 | ---- | C] (Microsoft Corporation)
taskcomp.dll -> C:\Windows\SysNative\taskcomp.dll -> [2009/06/12 18:46:52 | 00,409,600 | ---- | C] (Microsoft Corporation)
wlanmsm.dll -> C:\Windows\SysWow64\wlanmsm.dll -> [2009/06/12 18:46:52 | 00,293,376 | ---- | C] (Microsoft Corporation)
modemui.dll -> C:\Windows\SysWow64\modemui.dll -> [2009/06/12 18:46:52 | 00,288,256 | ---- | C] (Microsoft Corporation)
rasppp.dll -> C:\Windows\SysWow64\rasppp.dll -> [2009/06/12 18:46:52 | 00,259,584 | ---- | C] (Microsoft Corporation)
input.dll -> C:\Windows\SysNative\input.dll -> [2009/06/12 18:46:52 | 00,257,024 | ---- | C] (Microsoft Corporation)
mscandui.dll -> C:\Windows\SysWow64\mscandui.dll -> [2009/06/12 18:46:52 | 00,218,624 | ---- | C] (Microsoft Corporation)
rasmontr.dll -> C:\Windows\SysNative\rasmontr.dll -> [2009/06/12 18:46:52 | 00,216,064 | ---- | C] (Microsoft Corporation)
wlanui.dll -> C:\Windows\SysWow64\wlanui.dll -> [2009/06/12 18:46:52 | 00,202,752 | ---- | C] (Microsoft Corporation)
softkbd.dll -> C:\Windows\SysNative\softkbd.dll -> [2009/06/12 18:46:52 | 00,158,208 | ---- | C] (Microsoft Corporation)
rasmontr.dll -> C:\Windows\SysWow64\rasmontr.dll -> [2009/06/12 18:46:52 | 00,155,136 | ---- | C] (Microsoft Corporation)
dsprop.dll -> C:\Windows\SysWow64\dsprop.dll -> [2009/06/12 18:46:52 | 00,137,728 | ---- | C] (Microsoft Corporation)
btpanui.dll -> C:\Windows\SysNative\btpanui.dll -> [2009/06/12 18:46:52 | 00,109,056 | ---- | C] (Microsoft Corporation)
shsetup.dll -> C:\Windows\SysWow64\shsetup.dll -> [2009/06/12 18:46:52 | 00,101,376 | ---- | C] (Microsoft Corporation)
wlgpclnt.dll -> C:\Windows\SysWow64\wlgpclnt.dll -> [2009/06/12 18:46:52 | 00,083,456 | ---- | C] (Microsoft Corporation)
l2nacp.dll -> C:\Windows\SysNative\l2nacp.dll -> [2009/06/12 18:46:52 | 00,056,832 | ---- | C] (Microsoft Corporation)
dimsroam.dll -> C:\Windows\SysWow64\dimsroam.dll -> [2009/06/12 18:46:52 | 00,054,784 | ---- | C] (Microsoft Corporation)
dataclen.dll -> C:\Windows\SysWow64\dataclen.dll -> [2009/06/12 18:46:52 | 00,045,056 | ---- | C] (Microsoft Corporation)
cscapi.dll -> C:\Windows\SysNative\cscapi.dll -> [2009/06/12 18:46:52 | 00,038,400 | ---- | C] (Microsoft Corporation)
Apphlpdm.dll -> C:\Windows\SysNative\Apphlpdm.dll -> [2009/06/12 18:46:52 | 00,032,256 | ---- | C] (Microsoft Corporation)
NcdProp.dll -> C:\Windows\SysNative\NcdProp.dll -> [2009/06/12 18:46:52 | 00,024,064 | ---- | C] (Microsoft Corporation)
networkexplorer.dll -> C:\Windows\SysWow64\networkexplorer.dll -> [2009/06/12 18:46:51 | 02,226,688 | ---- | C] (Microsoft Corporation)
WMADMOD.DLL -> C:\Windows\SysNative\WMADMOD.DLL -> [2009/06/12 18:46:51 | 00,946,176 | ---- | C] (Microsoft Corporation)
blackbox.dll -> C:\Windows\SysWow64\blackbox.dll -> [2009/06/12 18:46:51 | 00,542,720 | ---- | C] (Microsoft Corporation)
wmdrmnet.dll -> C:\Windows\SysNative\wmdrmnet.dll -> [2009/06/12 18:46:51 | 00,428,032 | ---- | C] (Microsoft Corporation)
msscp.dll -> C:\Windows\SysWow64\msscp.dll -> [2009/06/12 18:46:51 | 00,414,208 | ---- | C] (Microsoft Corporation)

 

[seawolves]

rstrui.exe -> C:\Windows\SysNative\rstrui.exe -> [2009/06/12 18:46:51 | 00,339,968 | ---- | C] (Microsoft Corporation)
thawbrkr.dll -> C:\Windows\SysWow64\thawbrkr.dll -> [2009/06/12 18:46:51 | 00,313,344 | ---- | C] (Microsoft Corporation)
wmpeffects.dll -> C:\Windows\SysWow64\wmpeffects.dll -> [2009/06/12 18:46:51 | 00,303,616 | ---- | C] (Microsoft Corporation)
AUDIOKSE.dll -> C:\Windows\SysWow64\AUDIOKSE.dll -> [2009/06/12 18:46:51 | 00,274,944 | ---- | C] (Microsoft Corporation)
mstask.dll -> C:\Windows\SysNative\mstask.dll -> [2009/06/12 18:46:51 | 00,235,008 | ---- | C] (Microsoft Corporation)
mpg2splt.ax -> C:\Windows\SysNative\mpg2splt.ax -> [2009/06/12 18:46:51 | 00,227,328 | ---- | C] (Microsoft Corporation)
wpdwcn.dll -> C:\Windows\SysNative\wpdwcn.dll -> [2009/06/12 18:46:51 | 00,223,232 | ---- | C] (Microsoft Corporation)
InkEd.dll -> C:\Windows\SysWow64\InkEd.dll -> [2009/06/12 18:46:51 | 00,217,600 | ---- | C] (Microsoft Corporation)
mdminst.dll -> C:\Windows\SysNative\mdminst.dll -> [2009/06/12 18:46:51 | 00,215,552 | ---- | C] (Microsoft Corporation)
PortableDeviceTypes.dll -> C:\Windows\SysNative\PortableDeviceTypes.dll -> [2009/06/12 18:46:51 | 00,214,528 | ---- | C] (Microsoft Corporation)
wpdwcn.dll -> C:\Windows\SysWow64\wpdwcn.dll -> [2009/06/12 18:46:51 | 00,203,776 | ---- | C] (Microsoft Corporation)
credui.dll -> C:\Windows\SysNative\credui.dll -> [2009/06/12 18:46:51 | 00,190,976 | ---- | C] (Microsoft Corporation)
netplwiz.dll -> C:\Windows\SysWow64\netplwiz.dll -> [2009/06/12 18:46:51 | 00,180,736 | ---- | C] (Microsoft Corporation)
credui.dll -> C:\Windows\SysWow64\credui.dll -> [2009/06/12 18:46:51 | 00,178,176 | ---- | C] (Microsoft Corporation)
WSDMon.dll -> C:\Windows\SysWow64\WSDMon.dll -> [2009/06/12 18:46:51 | 00,177,664 | ---- | C] (Microsoft Corporation)
wpcsvc.dll -> C:\Windows\SysWow64\wpcsvc.dll -> [2009/06/12 18:46:51 | 00,140,288 | ---- | C] (Microsoft Corporation)
gpresult.exe -> C:\Windows\SysWow64\gpresult.exe -> [2009/06/12 18:46:51 | 00,128,000 | ---- | C] (Microsoft Corporation)
softkbd.dll -> C:\Windows\SysWow64\softkbd.dll -> [2009/06/12 18:46:51 | 00,125,952 | ---- | C] (Microsoft Corporation)
msctfui.dll -> C:\Windows\SysNative\msctfui.dll -> [2009/06/12 18:46:51 | 00,113,664 | ---- | C] (Microsoft Corporation)
logagent.exe -> C:\Windows\SysNative\logagent.exe -> [2009/06/12 18:46:51 | 00,112,640 | ---- | C] (Microsoft Corporation)
adsmsext.dll -> C:\Windows\SysNative\adsmsext.dll -> [2009/06/12 18:46:51 | 00,105,472 | ---- | C] (Microsoft Corporation)
logagent.exe -> C:\Windows\SysWow64\logagent.exe -> [2009/06/12 18:46:51 | 00,094,720 | ---- | C] (Microsoft Corporation)
sendmail.dll -> C:\Windows\SysWow64\sendmail.dll -> [2009/06/12 18:46:51 | 00,069,632 | ---- | C] (Microsoft Corporation)
cipher.exe -> C:\Windows\SysWow64\cipher.exe -> [2009/06/12 18:46:51 | 00,058,368 | ---- | C] (Microsoft Corporation)
cdd.dll -> C:\Windows\SysNative\cdd.dll -> [2009/06/12 18:46:51 | 00,047,104 | ---- | C] (Microsoft Corporation)
deskmon.dll -> C:\Windows\SysNative\deskmon.dll -> [2009/06/12 18:46:51 | 00,046,592 | ---- | C] (Microsoft Corporation)
wscapi.dll -> C:\Windows\SysWow64\wscapi.dll -> [2009/06/12 18:46:51 | 00,033,280 | ---- | C] (Microsoft Corporation)
msimtf.dll -> C:\Windows\SysWow64\msimtf.dll -> [2009/06/12 18:46:51 | 00,031,232 | ---- | C] (Microsoft Corporation)
ifmon.dll -> C:\Windows\SysWow64\ifmon.dll -> [2009/06/12 18:46:51 | 00,029,696 | ---- | C] (Microsoft Corporation)
findstr.exe -> C:\Windows\SysNative\findstr.exe -> [2009/06/12 18:46:51 | 00,029,696 | ---- | C] (Microsoft Corporation)
version.dll -> C:\Windows\SysNative\version.dll -> [2009/06/12 18:46:51 | 00,027,136 | ---- | C] (Microsoft Corporation)
MediaMetadataHandler.dll -> C:\Windows\SysNative\MediaMetadataHandler.dll -> [2009/06/12 18:46:50 | 00,403,456 | ---- | C] (Microsoft Corporation)
MediaMetadataHandler.dll -> C:\Windows\SysWow64\MediaMetadataHandler.dll -> [2009/06/12 18:46:50 | 00,356,864 | ---- | C] (Microsoft Corporation)
WSDMon.dll -> C:\Windows\SysNative\WSDMon.dll -> [2009/06/12 18:46:50 | 00,214,016 | ---- | C] (Microsoft Corporation)
MSAC3ENC.DLL -> C:\Windows\SysNative\MSAC3ENC.DLL -> [2009/06/12 18:46:50 | 00,193,536 | ---- | C] (Microsoft Corporation)
dmsynth.dll -> C:\Windows\SysWow64\dmsynth.dll -> [2009/06/12 18:46:50 | 00,105,472 | ---- | C] (Microsoft Corporation)
olepro32.dll -> C:\Windows\SysWow64\olepro32.dll -> [2009/06/12 18:46:50 | 00,088,576 | ---- | C] (Microsoft Corporation)
msctfui.dll -> C:\Windows\SysWow64\msctfui.dll -> [2009/06/12 18:46:50 | 00,085,504 | ---- | C] (Microsoft Corporation)
rshx32.dll -> C:\Windows\SysNative\rshx32.dll -> [2009/06/12 18:46:50 | 00,053,760 | ---- | C] (Microsoft Corporation)
Apphlpdm.dll -> C:\Windows\SysWow64\Apphlpdm.dll -> [2009/06/12 18:46:50 | 00,028,672 | ---- | C] (Microsoft Corporation)
rasdial.exe -> C:\Windows\SysNative\rasdial.exe -> [2009/06/12 18:46:50 | 00,018,944 | ---- | C] (Microsoft Corporation)
WMSPDMOD.DLL -> C:\Windows\SysNative\WMSPDMOD.DLL -> [2009/06/12 18:46:49 | 00,818,688 | ---- | C] (Microsoft Corporation)
WMADMOD.DLL -> C:\Windows\SysWow64\WMADMOD.DLL -> [2009/06/12 18:46:49 | 00,758,784 | ---- | C] (Microsoft Corporation)
wmdrmdev.dll -> C:\Windows\SysWow64\wmdrmdev.dll -> [2009/06/12 18:46:49 | 00,418,304 | ---- | C] (Microsoft Corporation)
drmmgrtn.dll -> C:\Windows\SysWow64\drmmgrtn.dll -> [2009/06/12 18:46:49 | 00,284,672 | ---- | C] (Microsoft Corporation)
input.dll -> C:\Windows\SysWow64\input.dll -> [2009/06/12 18:46:49 | 00,200,704 | ---- | C] (Microsoft Corporation)
mpg2splt.ax -> C:\Windows\SysWow64\mpg2splt.ax -> [2009/06/12 18:46:49 | 00,177,664 | ---- | C] (Microsoft Corporation)
puiapi.dll -> C:\Windows\SysWow64\puiapi.dll -> [2009/06/12 18:46:49 | 00,166,400 | ---- | C] (Microsoft Corporation)
mprapi.dll -> C:\Windows\SysNative\mprapi.dll -> [2009/06/12 18:46:49 | 00,129,536 | ---- | C] (Microsoft Corporation)
SMBHelperClass.dll -> C:\Windows\SysNative\SMBHelperClass.dll -> [2009/06/12 18:46:49 | 00,116,736 | ---- | C] (Microsoft)
mprapi.dll -> C:\Windows\SysWow64\mprapi.dll -> [2009/06/12 18:46:49 | 00,097,792 | ---- | C] (Microsoft Corporation)
smb.sys -> C:\Windows\SysNative\drivers\smb.sys -> [2009/06/12 18:46:49 | 00,088,064 | ---- | C] (Microsoft Corporation)
fdSSDP.dll -> C:\Windows\SysNative\fdSSDP.dll -> [2009/06/12 18:46:49 | 00,083,968 | ---- | C] (Microsoft Corporation)
FwRemoteSvr.dll -> C:\Windows\SysNative\FwRemoteSvr.dll -> [2009/06/12 18:46:49 | 00,050,176 | ---- | C] (Microsoft Corporation)
deskadp.dll -> C:\Windows\SysNative\deskadp.dll -> [2009/06/12 18:46:49 | 00,049,664 | ---- | C] (Microsoft Corporation)
bthci.dll -> C:\Windows\SysNative\bthci.dll -> [2009/06/12 18:46:49 | 00,046,592 | ---- | C] (Microsoft Corporation)
wshbth.dll -> C:\Windows\SysWow64\wshbth.dll -> [2009/06/12 18:46:49 | 00,034,304 | ---- | C] (Microsoft Corporation)
cscdll.dll -> C:\Windows\SysNative\cscdll.dll -> [2009/06/12 18:46:49 | 00,028,672 | ---- | C] (Microsoft Corporation)
ExplorerFrame.dll -> C:\Windows\SysWow64\ExplorerFrame.dll -> [2009/06/12 18:46:49 | 00,020,992 | ---- | C] (Microsoft Corporation)
version.dll -> C:\Windows\SysWow64\version.dll -> [2009/06/12 18:46:49 | 00,020,480 | ---- | C] (Microsoft Corporation)
fc.exe -> C:\Windows\SysWow64\fc.exe -> [2009/06/12 18:46:49 | 00,019,968 | ---- | C] (Microsoft Corporation)
msisip.dll -> C:\Windows\SysWow64\msisip.dll -> [2009/06/12 18:46:49 | 00,016,384 | ---- | C] (Microsoft Corporation)
networkexplorer.dll -> C:\Windows\SysNative\networkexplorer.dll -> [2009/06/12 18:46:48 | 02,247,168 | ---- | C] (Microsoft Corporation)
wmpps.dll -> C:\Windows\SysNative\wmpps.dll -> [2009/06/12 18:46:48 | 00,434,176 | ---- | C] (Microsoft Corporation)
eapp3hst.dll -> C:\Windows\SysNative\eapp3hst.dll -> [2009/06/12 18:46:48 | 00,291,840 | ---- | C] (Microsoft Corporation)
wscntfy.dll -> C:\Windows\SysNative\wscntfy.dll -> [2009/06/12 18:46:48 | 00,231,424 | ---- | C] (Microsoft Corporation)
wdmaud.drv -> C:\Windows\SysNative\wdmaud.drv -> [2009/06/12 18:46:48 | 00,212,992 | ---- | C] (Microsoft Corporation)
eapp3hst.dll -> C:\Windows\SysWow64\eapp3hst.dll -> [2009/06/12 18:46:48 | 00,187,904 | ---- | C] (Microsoft Corporation)
tintlgnt.ime -> C:\Windows\SysWow64\tintlgnt.ime -> [2009/06/12 18:46:48 | 00,125,952 | ---- | C] (Microsoft Corporation)
PortableDeviceClassExtension.dll -> C:\Windows\SysNative\PortableDeviceClassExtension.dll -> [2009/06/12 18:46:48 | 00,105,472 | ---- | C] (Microsoft Corporation)
dmusic.dll -> C:\Windows\SysWow64\dmusic.dll -> [2009/06/12 18:46:48 | 00,101,888 | ---- | C] (Microsoft Corporation)
dxg.sys -> C:\Windows\SysNative\drivers\dxg.sys -> [2009/06/12 18:46:48 | 00,098,816 | ---- | C] (Microsoft Corporation)
gpapi.dll -> C:\Windows\SysNative\gpapi.dll -> [2009/06/12 18:46:48 | 00,084,480 | ---- | C] (Microsoft Corporation)
MSNP.ax -> C:\Windows\SysWow64\MSNP.ax -> [2009/06/12 18:46:48 | 00,080,896 | ---- | C] (Microsoft Corporation)
PNPXAssoc.dll -> C:\Windows\SysNative\PNPXAssoc.dll -> [2009/06/12 18:46:48 | 00,075,264 | ---- | C] (Microsoft Corporation)
fdSSDP.dll -> C:\Windows\SysWow64\fdSSDP.dll -> [2009/06/12 18:46:48 | 00,068,096 | ---- | C] (Microsoft Corporation)
dot3cfg.dll -> C:\Windows\SysNative\dot3cfg.dll -> [2009/06/12 18:46:48 | 00,062,976 | ---- | C] (Microsoft Corporation)
hidclass.sys -> C:\Windows\SysNative\drivers\hidclass.sys -> [2009/06/12 18:46:48 | 00,049,152 | ---- | C] (Microsoft Corporation)
l2nacp.dll -> C:\Windows\SysWow64\l2nacp.dll -> [2009/06/12 18:46:48 | 00,048,128 | ---- | C] (Microsoft Corporation)
ftp.exe -> C:\Windows\SysNative\ftp.exe -> [2009/06/12 18:46:48 | 00,047,616 | ---- | C] (Microsoft Corporation)
ftp.exe -> C:\Windows\SysWow64\ftp.exe -> [2009/06/12 18:46:48 | 00,041,984 | ---- | C] (Microsoft Corporation)
cscapi.dll -> C:\Windows\SysWow64\cscapi.dll -> [2009/06/12 18:46:48 | 00,031,744 | ---- | C] (Microsoft Corporation)
tdi.sys -> C:\Windows\SysNative\drivers\tdi.sys -> [2009/06/12 18:46:48 | 00,026,112 | ---- | C] (Microsoft Corporation)
msjint40.dll -> C:\Windows\SysWow64\msjint40.dll -> [2009/06/12 18:46:48 | 00,024,576 | ---- | C] (Microsoft Corporation)
MsCtfMonitor.dll -> C:\Windows\SysWow64\MsCtfMonitor.dll -> [2009/06/12 18:46:48 | 00,019,456 | ---- | C] (Microsoft Corporation)
CHxReadingStringIME.dll -> C:\Windows\SysNative\CHxReadingStringIME.dll -> [2009/06/12 18:46:48 | 00,012,800 | ---- | C] (Microsoft Corporation)
MSMPEG2ENC.DLL -> C:\Windows\SysWow64\MSMPEG2ENC.DLL -> [2009/06/12 18:46:47 | 00,506,880 | ---- | C] (Microsoft Corporation)
wmdrmnet.dll -> C:\Windows\SysWow64\wmdrmnet.dll -> [2009/06/12 18:46:47 | 00,347,648 | ---- | C] (Microsoft Corporation)
eappcfg.dll -> C:\Windows\SysNative\eappcfg.dll -> [2009/06/12 18:46:47 | 00,211,456 | ---- | C] (Microsoft Corporation)
mfps.dll -> C:\Windows\SysNative\mfps.dll -> [2009/06/12 18:46:47 | 00,194,560 | ---- | C] (Microsoft Corporation)
SLLUA.exe -> C:\Windows\SysNative\SLLUA.exe -> [2009/06/12 18:46:47 | 00,190,464 | ---- | C] (Microsoft Corporation)
PortableDeviceTypes.dll -> C:\Windows\SysWow64\PortableDeviceTypes.dll -> [2009/06/12 18:46:47 | 00,160,768 | ---- | C] (Microsoft Corporation)
MSAC3ENC.DLL -> C:\Windows\SysWow64\MSAC3ENC.DLL -> [2009/06/12 18:46:47 | 00,160,256 | ---- | C] (Microsoft Corporation)
aaclient.dll -> C:\Windows\SysNative\aaclient.dll -> [2009/06/12 18:46:47 | 00,151,552 | ---- | C] (Microsoft Corporation)
mydocs.dll -> C:\Windows\SysNative\mydocs.dll -> [2009/06/12 18:46:47 | 00,143,360 | ---- | C] (Microsoft Corporation)
aaclient.dll -> C:\Windows\SysWow64\aaclient.dll -> [2009/06/12 18:46:47 | 00,136,192 | ---- | C] (Microsoft Corporation)
eappcfg.dll -> C:\Windows\SysWow64\eappcfg.dll -> [2009/06/12 18:46:47 | 00,135,680 | ---- | C] (Microsoft Corporation)
eappgnui.dll -> C:\Windows\SysNative\eappgnui.dll -> [2009/06/12 18:46:47 | 00,104,448 | ---- | C] (Microsoft Corporation)
mfps.dll -> C:\Windows\SysWow64\mfps.dll -> [2009/06/12 18:46:47 | 00,098,816 | ---- | C] (Microsoft Corporation)
PortableDeviceClassExtension.dll -> C:\Windows\SysWow64\PortableDeviceClassExtension.dll -> [2009/06/12 18:46:47 | 00,094,720 | ---- | C] (Microsoft Corporation)
eappgnui.dll -> C:\Windows\SysWow64\eappgnui.dll -> [2009/06/12 18:46:47 | 00,093,696 | ---- | C] (Microsoft Corporation)
fdWCN.dll -> C:\Windows\SysNative\fdWCN.dll -> [2009/06/12 18:46:47 | 00,089,088 | ---- | C] (Microsoft Corporation)
SMBHelperClass.dll -> C:\Windows\SysWow64\SMBHelperClass.dll -> [2009/06/12 18:46:47 | 00,083,456 | ---- | C] (Microsoft)
nslookup.exe -> C:\Windows\SysWow64\nslookup.exe -> [2009/06/12 18:46:47 | 00,082,944 | ---- | C] (Microsoft Corporation)
fdWCN.dll -> C:\Windows\SysWow64\fdWCN.dll -> [2009/06/12 18:46:47 | 00,069,120 | ---- | C] (Microsoft Corporation)
Storprop.dll -> C:\Windows\SysNative\Storprop.dll -> [2009/06/12 18:46:47 | 00,065,024 | ---- | C] (Microsoft Corporation)
tscupgrd.exe -> C:\Windows\SysWow64\tscupgrd.exe -> [2009/06/12 18:46:47 | 00,063,488 | ---- | C] (Microsoft Corporation)
tscupgrd.exe -> C:\Windows\SysNative\tscupgrd.exe -> [2009/06/12 18:46:47 | 00,062,464 | ---- | C] (Microsoft Corporation)
rrinstaller.exe -> C:\Windows\SysNative\rrinstaller.exe -> [2009/06/12 18:46:47 | 00,060,416 | ---- | C] (Microsoft Corporation)
fdeploy.dll -> C:\Windows\SysWow64\fdeploy.dll -> [2009/06/12 18:46:47 | 00,053,760 | ---- | C] (Microsoft Corporation)
rrinstaller.exe -> C:\Windows\SysWow64\rrinstaller.exe -> [2009/06/12 18:46:47 | 00,053,248 | ---- | C] (Microsoft Corporation)
rasdiag.dll -> C:\Windows\SysWow64\rasdiag.dll -> [2009/06/12 18:46:47 | 00,052,736 | ---- | C] (Microsoft Corporation)
networkitemfactory.dll -> C:\Windows\SysNative\networkitemfactory.dll -> [2009/06/12 18:46:47 | 00,052,224 | ---- | C] (Microsoft Corporation)
hbaapi.dll -> C:\Windows\SysNative\hbaapi.dll -> [2009/06/12 18:46:47 | 00,051,200 | ---- | C] (Microsoft Corporation)
dot3cfg.dll -> C:\Windows\SysWow64\dot3cfg.dll -> [2009/06/12 18:46:47 | 00,049,664 | ---- | C] (Microsoft Corporation)
slcinst.dll -> C:\Windows\SysNative\slcinst.dll -> [2009/06/12 18:46:47 | 00,046,592 | ---- | C] (Microsoft Corporation)
tsgqec.dll -> C:\Windows\SysNative\tsgqec.dll -> [2009/06/12 18:46:47 | 00,045,056 | ---- | C] (Microsoft Corporation)
slcinst.dll -> C:\Windows\SysWow64\slcinst.dll -> [2009/06/12 18:46:47 | 00,042,496 | ---- | C] (Microsoft Corporation)
hbaapi.dll -> C:\Windows\SysWow64\hbaapi.dll -> [2009/06/12 18:46:47 | 00,041,472 | ---- | C] (Microsoft Corporation)
networkitemfactory.dll -> C:\Windows\SysWow64\networkitemfactory.dll -> [2009/06/12 18:46:47 | 00,039,936 | ---- | C] (Microsoft Corporation)
ocsetup.exe -> C:\Windows\SysNative\ocsetup.exe -> [2009/06/12 18:46:47 | 00,038,400 | ---- | C] (Microsoft Corporation)
ocsetup.exe -> C:\Windows\SysWow64\ocsetup.exe -> [2009/06/12 18:46:47 | 00,035,840 | ---- | C] (Microsoft Corporation)
mfpmp.exe -> C:\Windows\SysNative\mfpmp.exe -> [2009/06/12 18:46:47 | 00,034,304 | ---- | C] (Microsoft Corporation)
bthudtask.exe -> C:\Windows\SysWow64\bthudtask.exe -> [2009/06/12 18:46:47 | 00,034,304 | ---- | C] (Microsoft Corporation)
FwRemoteSvr.dll -> C:\Windows\SysWow64\FwRemoteSvr.dll -> [2009/06/12 18:46:47 | 00,028,672 | ---- | C] (Microsoft Corporation)
ipconfig.exe -> C:\Windows\SysWow64\ipconfig.exe -> [2009/06/12 18:46:47 | 00,026,624 | ---- | C] (Microsoft Corporation)
msacm32.drv -> C:\Windows\SysNative\msacm32.drv -> [2009/06/12 18:46:47 | 00,025,600 | ---- | C] (Microsoft Corporation)
cscdll.dll -> C:\Windows\SysWow64\cscdll.dll -> [2009/06/12 18:46:47 | 00,022,016 | ---- | C] (Microsoft Corporation)
wsdchngr.dll -> C:\Windows\SysWow64\wsdchngr.dll -> [2009/06/12 18:46:47 | 00,020,992 | ---- | C] (Microsoft Corporation)
rasdial.exe -> C:\Windows\SysWow64\rasdial.exe -> [2009/06/12 18:46:47 | 00,016,896 | ---- | C] (Microsoft Corporation)
CHxReadingStringIME.dll -> C:\Windows\SysWow64\CHxReadingStringIME.dll -> [2009/06/12 18:46:47 | 00,010,752 | ---- | C] (Microsoft Corporation)
dfsc.sys -> C:\Windows\SysNative\drivers\dfsc.sys -> [2009/06/12 18:46:46 | 00,097,792 | ---- | C] (Microsoft Corporation)
tsgqec.dll -> C:\Windows\SysWow64\tsgqec.dll -> [2009/06/12 18:46:46 | 00,053,248 | ---- | C] (Microsoft Corporation)
cbsra.exe -> C:\Windows\SysNative\cbsra.exe -> [2009/06/12 18:46:46 | 00,047,104 | ---- | C] (Microsoft Corporation)
bitsigd.dll -> C:\Windows\SysNative\bitsigd.dll -> [2009/06/12 18:46:46 | 00,046,592 | ---- | C] (Microsoft Corporation)
wscapi.dll -> C:\Windows\SysNative\wscapi.dll -> [2009/06/12 18:46:46 | 00,040,448 | ---- | C] (Microsoft Corporation)
mfpmp.exe -> C:\Windows\SysWow64\mfpmp.exe -> [2009/06/12 18:46:46 | 00,024,576 | ---- | C] (Microsoft Corporation)
msacm32.drv -> C:\Windows\SysWow64\msacm32.drv -> [2009/06/12 18:46:46 | 00,021,504 | ---- | C] (Microsoft Corporation)
gpupdate.exe -> C:\Windows\SysWow64\gpupdate.exe -> [2009/06/12 18:46:46 | 00,016,896 | ---- | C] (Microsoft Corporation)
mmcico.dll -> C:\Windows\SysWow64\mmcico.dll -> [2009/06/12 18:46:46 | 00,012,800 | ---- | C] (Microsoft Corporation)
bthudtask.exe -> C:\Windows\SysNative\bthudtask.exe -> [2009/06/12 18:46:45 | 00,035,840 | ---- | C] (Microsoft Corporation)
NcdProp.dll -> C:\Windows\SysWow64\NcdProp.dll -> [2009/06/12 18:46:45 | 00,019,968 | ---- | C] (Microsoft Corporation)
iscsilog.dll -> C:\Windows\SysNative\iscsilog.dll -> [2009/06/12 18:46:45 | 00,016,384 | ---- | C] (Microsoft Corporation)
wmpps.dll -> C:\Windows\SysWow64\wmpps.dll -> [2009/06/12 18:46:44 | 00,131,072 | ---- | C] (Microsoft Corporation)
vss_ps.dll -> C:\Windows\SysNative\vss_ps.dll -> [2009/06/12 18:46:44 | 00,060,416 | ---- | C] (Microsoft Corporation)
odbcconf.dll -> C:\Windows\SysNative\odbcconf.dll -> [2009/06/12 18:46:44 | 00,045,056 | ---- | C] (Microsoft Corporation)
RNDISMP.sys -> C:\Windows\SysNative\drivers\RNDISMP.sys -> [2009/06/12 18:46:44 | 00,040,960 | ---- | C] (Microsoft Corporation)
odbcconf.dll -> C:\Windows\SysWow64\odbcconf.dll -> [2009/06/12 18:46:44 | 00,040,960 | ---- | C] (Microsoft Corporation)
winrnr.dll -> C:\Windows\SysWow64\winrnr.dll -> [2009/06/12 18:46:44 | 00,019,968 | ---- | C] (Microsoft Corporation)
usb8023.sys -> C:\Windows\SysNative\drivers\usb8023.sys -> [2009/06/12 18:46:44 | 00,019,456 | ---- | C] (Microsoft Corporation)
vdmdbg.dll -> C:\Windows\SysWow64\vdmdbg.dll -> [2009/06/12 18:46:44 | 00,017,408 | ---- | C] (Microsoft Corporation)
inetppui.dll -> C:\Windows\SysNative\inetppui.dll -> [2009/06/12 18:46:44 | 00,017,408 | ---- | C] (Microsoft Corporation)
slwga.dll -> C:\Windows\SysWow64\slwga.dll -> [2009/06/12 18:46:44 | 00,012,288 | ---- | C] (Microsoft Corporation)
cdrom.sys -> C:\Windows\SysNative\drivers\cdrom.sys -> [2009/06/12 18:46:43 | 00,079,872 | ---- | C] (Microsoft Corporation)
midimap.dll -> C:\Windows\SysNative\midimap.dll -> [2009/06/12 18:46:43 | 00,020,480 | ---- | C] (Microsoft Corporation)
midimap.dll -> C:\Windows\SysWow64\midimap.dll -> [2009/06/12 18:46:43 | 00,017,408 | ---- | C] (Microsoft Corporation)
RacUR.xml -> C:\Windows\SysWow64\RacUR.xml -> [2009/06/12 18:46:43 | 00,009,212 | ---- | C] ()
RacUR.xml -> C:\Windows\SysNative\RacUR.xml -> [2009/06/12 18:46:43 | 00,009,212 | ---- | C] ()
wmploc.DLL -> C:\Windows\SysWow64\wmploc.DLL -> [2009/06/12 18:46:42 | 08,147,456 | ---- | C] (Microsoft Corporation)
stream.sys -> C:\Windows\SysNative\drivers\stream.sys -> [2009/06/12 18:46:42 | 00,068,224 | ---- | C] (Microsoft Corporation)
raspppoe.sys -> C:\Windows\SysNative\drivers\raspppoe.sys -> [2009/06/12 18:46:42 | 00,050,176 | ---- | C] (Microsoft Corporation)
Diskdump.sys -> C:\Windows\SysNative\drivers\Diskdump.sys -> [2009/06/12 18:46:42 | 00,019,968 | ---- | C] (Microsoft Corporation)
wow64cpu.dll -> C:\Windows\SysNative\wow64cpu.dll -> [2009/06/12 18:46:42 | 00,017,408 | ---- | C] (Microsoft Corporation)
spwmp.dll -> C:\Windows\SysNative\spwmp.dll -> [2009/06/12 18:46:42 | 00,009,216 | ---- | C] (Microsoft Corporation)
spwmp.dll -> C:\Windows\SysWow64\spwmp.dll -> [2009/06/12 18:46:42 | 00,007,680 | ---- | C] (Microsoft Corporation)
msdxm.ocx -> C:\Windows\SysNative\msdxm.ocx -> [2009/06/12 18:46:42 | 00,005,120 | ---- | C] (Microsoft Corporation)
dxmasf.dll -> C:\Windows\SysNative\dxmasf.dll -> [2009/06/12 18:46:42 | 00,005,120 | ---- | C] (Microsoft Corporation)
msdxm.ocx -> C:\Windows\SysWow64\msdxm.ocx -> [2009/06/12 18:46:42 | 00,004,096 | ---- | C] (Microsoft Corporation)
dxmasf.dll -> C:\Windows\SysWow64\dxmasf.dll -> [2009/06/12 18:46:42 | 00,004,096 | ---- | C] (Microsoft Corporation)
wmploc.DLL -> C:\Windows\SysNative\wmploc.DLL -> [2009/06/12 18:46:41 | 08,147,968 | ---- | C] (Microsoft Corporation)
f3ahvoas.dll -> C:\Windows\SysNative\f3ahvoas.dll -> [2009/06/12 18:46:41 | 00,033,280 | ---- | C] (Microsoft Corporation)
f3ahvoas.dll -> C:\Windows\SysWow64\f3ahvoas.dll -> [2009/06/12 18:46:41 | 00,007,680 | ---- | C] (Microsoft Corporation)
msimsg.dll -> C:\Windows\SysWow64\msimsg.dll -> [2009/06/12 18:46:41 | 00,002,560 | ---- | C] (Microsoft Corporation)
msimsg.dll -> C:\Windows\SysNative\msimsg.dll -> [2009/06/12 18:46:41 | 00,002,560 | ---- | C] (Microsoft Corporation)
mferror.dll -> C:\Windows\SysWow64\mferror.dll -> [2009/06/12 18:46:41 | 00,002,048 | ---- | C] (Microsoft Corporation)
mferror.dll -> C:\Windows\SysNative\mferror.dll -> [2009/06/12 18:46:41 | 00,002,048 | ---- | C] (Microsoft Corporation)
wdscore.dll -> C:\Windows\SysWow64\wdscore.dll -> [2009/06/12 18:46:28 | 00,218,624 | ---- | C] (Microsoft Corporation)
drvstore.dll -> C:\Windows\SysWow64\drvstore.dll -> [2009/06/12 18:46:23 | 00,247,808 | ---- | C] (Microsoft Corporation)
SmiEngine.dll -> C:\Windows\SysNative\SmiEngine.dll -> [2009/06/12 18:45:27 | 00,936,448 | ---- | C] (Microsoft Corporation)
wdscore.dll -> C:\Windows\SysNative\wdscore.dll -> [2009/06/12 18:45:25 | 00,293,888 | ---- | C] (Microsoft Corporation)
PkgMgr.exe -> C:\Windows\SysNative\PkgMgr.exe -> [2009/06/12 18:45:25 | 00,138,752 | ---- | C] (Microsoft Corporation)
drvstore.dll -> C:\Windows\SysNative\drvstore.dll -> [2009/06/12 18:45:19 | 00,315,904 | ---- | C] (Microsoft Corporation)
results.xml -> C:\Windows\SysNative\results.xml -> [2009/06/12 18:23:27 | 00,016,074 | ---- | C] ()
Intel -> C:\Intel -> [2009/06/12 18:15:36 | 00,000,000 | ---D | C]
LightScribe -> C:\Program Files (x86)\Common Files\LightScribe -> [2009/06/12 17:57:12 | 00,000,000 | ---D | C]
SpywareBlaster -> C:\Program Files (x86)\SpywareBlaster -> [2009/06/12 12:15:51 | 00,000,000 | ---D | C]
avgntflt.sys -> C:\Windows\SysNative\drivers\avgntflt.sys -> [2009/06/12 08:03:12 | 00,073,048 | ---- | C] (Avira GmbH)
ssmdrv.sys -> C:\Windows\SysWow64\drivers\ssmdrv.sys -> [2009/06/12 08:03:12 | 00,028,520 | ---- | C] (Avira GmbH)
Avira -> C:\ProgramData\Avira -> [2009/06/12 08:03:11 | 00,000,000 | ---D | C]
Avira -> C:\Program Files (x86)\Avira -> [2009/06/12 08:03:11 | 00,000,000 | ---D | C]
mshtml.tlb -> C:\Windows\SysWow64\mshtml.tlb -> [2009/06/10 00:50:03 | 01,638,912 | ---- | C] (Microsoft Corporation)
mshtml.tlb -> C:\Windows\SysNative\mshtml.tlb -> [2009/06/10 00:50:03 | 01,638,912 | ---- | C] (Microsoft Corporation)
urlmon.dll -> C:\Windows\SysWow64\urlmon.dll -> [2009/06/10 00:50:03 | 01,207,808 | ---- | C] (Microsoft Corporation)
iernonce.dll -> C:\Windows\SysNative\iernonce.dll -> [2009/06/10 00:50:03 | 00,072,192 | ---- | C] (Microsoft Corporation)
ie4uinit.exe -> C:\Windows\SysNative\ie4uinit.exe -> [2009/06/10 00:50:03 | 00,070,656 | ---- | C] (Microsoft Corporation)
iernonce.dll -> C:\Windows\SysWow64\iernonce.dll -> [2009/06/10 00:50:03 | 00,055,808 | ---- | C] (Microsoft Corporation)
iertutil.dll -> C:\Windows\SysNative\iertutil.dll -> [2009/06/10 00:50:02 | 02,332,672 | ---- | C] (Microsoft Corporation)
iertutil.dll -> C:\Windows\SysWow64\iertutil.dll -> [2009/06/10 00:50:02 | 01,985,024 | ---- | C] (Microsoft Corporation)
urlmon.dll -> C:\Windows\SysNative\urlmon.dll -> [2009/06/10 00:50:02 | 01,484,288 | ---- | C] (Microsoft Corporation)
wininet.dll -> C:\Windows\SysNative\wininet.dll -> [2009/06/10 00:50:02 | 01,146,368 | ---- | C] (Microsoft Corporation)
wininet.dll -> C:\Windows\SysWow64\wininet.dll -> [2009/06/10 00:50:02 | 00,915,456 | ---- | C] (Microsoft Corporation)
ieui.dll -> C:\Windows\SysNative\ieui.dll -> [2009/06/10 00:50:02 | 00,219,136 | ---- | C] (Microsoft Corporation)
ie4uinit.exe -> C:\Windows\SysWow64\ie4uinit.exe -> [2009/06/10 00:50:02 | 00,173,056 | ---- | C] (Microsoft Corporation)
ieui.dll -> C:\Windows\SysWow64\ieui.dll -> [2009/06/10 00:50:02 | 00,164,352 | ---- | C] (Microsoft Corporation)
jsproxy.dll -> C:\Windows\SysNative\jsproxy.dll -> [2009/06/10 00:50:02 | 00,031,744 | ---- | C] (Microsoft Corporation)
iedkcs32.dll -> C:\Windows\SysNative\iedkcs32.dll -> [2009/06/10 00:50:01 | 00,457,728 | ---- | C] (Microsoft Corporation)
iedkcs32.dll -> C:\Windows\SysWow64\iedkcs32.dll -> [2009/06/10 00:50:01 | 00,385,536 | ---- | C] (Microsoft Corporation)
iesetup.dll -> C:\Windows\SysNative\iesetup.dll -> [2009/06/10 00:50:01 | 00,077,312 | ---- | C] (Microsoft Corporation)
iesetup.dll -> C:\Windows\SysWow64\iesetup.dll -> [2009/06/10 00:50:01 | 00,071,680 | ---- | C] (Microsoft Corporation)
jsproxy.dll -> C:\Windows\SysWow64\jsproxy.dll -> [2009/06/10 00:50:01 | 00,025,600 | ---- | C] (Microsoft Corporation)
ieframe.dll -> C:\Windows\SysWow64\ieframe.dll -> [2009/06/10 00:50:00 | 11,064,832 | ---- | C] (Microsoft Corporation)
inetcpl.cpl -> C:\Windows\SysNative\inetcpl.cpl -> [2009/06/10 00:50:00 | 01,538,560 | ---- | C] (Microsoft Corporation)
inetcpl.cpl -> C:\Windows\SysWow64\inetcpl.cpl -> [2009/06/10 00:50:00 | 01,469,440 | ---- | C] (Microsoft Corporation)
ieframe.dll -> C:\Windows\SysNative\ieframe.dll -> [2009/06/10 00:49:59 | 12,454,912 | ---- | C] (Microsoft Corporation)
mshtml.dll -> C:\Windows\SysNative\mshtml.dll -> [2009/06/10 00:49:58 | 09,234,432 | ---- | C] (Microsoft Corporation)
mshtml.dll -> C:\Windows\SysWow64\mshtml.dll -> [2009/06/10 00:49:58 | 05,936,128 | ---- | C] (Microsoft Corporation)
advpack.dll -> C:\Windows\SysNative\advpack.dll -> [2009/06/10 00:46:37 | 00,161,792 | ---- | C] (Microsoft Corporation)
advpack.dll -> C:\Windows\SysWow64\advpack.dll -> [2009/06/10 00:46:37 | 00,128,512 | ---- | C] (Microsoft Corporation)
admparse.dll -> C:\Windows\SysNative\admparse.dll -> [2009/06/10 00:46:37 | 00,088,064 | ---- | C] (Microsoft Corporation)
icardie.dll -> C:\Windows\SysNative\icardie.dll -> [2009/06/10 00:46:37 | 00,085,504 | ---- | C] (Microsoft Corporation)
admparse.dll -> C:\Windows\SysWow64\admparse.dll -> [2009/06/10 00:46:37 | 00,072,704 | ---- | C] (Microsoft Corporation)
icardie.dll -> C:\Windows\SysWow64\icardie.dll -> [2009/06/10 00:46:37 | 00,059,904 | ---- | C] (Microsoft Corporation)
corpol.dll -> C:\Windows\SysNative\corpol.dll -> [2009/06/10 00:46:37 | 00,022,528 | ---- | C] (Microsoft Corporation)
msls31.dll -> C:\Windows\SysNative\msls31.dll -> [2009/06/10 00:46:36 | 00,223,232 | ---- | C] (Microsoft Corporation)
ieakeng.dll -> C:\Windows\SysNative\ieakeng.dll -> [2009/06/10 00:46:36 | 00,157,696 | ---- | C] (Microsoft Corporation)
ieakeng.dll -> C:\Windows\SysWow64\ieakeng.dll -> [2009/06/10 00:46:36 | 00,125,952 | ---- | C] (Microsoft Corporation)
tdc.ocx -> C:\Windows\SysNative\tdc.ocx -> [2009/06/10 00:46:36 | 00,077,824 | ---- | C] (Microsoft Corporation)
tdc.ocx -> C:\Windows\SysWow64\tdc.ocx -> [2009/06/10 00:46:36 | 00,066,560 | ---- | C] (Microsoft Corporation)
imgutil.dll -> C:\Windows\SysNative\imgutil.dll -> [2009/06/10 00:46:36 | 00,052,736 | ---- | C] (Microsoft Corporation)
corpol.dll -> C:\Windows\SysWow64\corpol.dll -> [2009/06/10 00:46:36 | 00,018,944 | ---- | C] (Microsoft Corporation)
msfeedssync.exe -> C:\Windows\SysNative\msfeedssync.exe -> [2009/06/10 00:46:36 | 00,012,800 | ---- | C] (Microsoft Corporation)
ieapfltr.dll -> C:\Windows\SysNative\ieapfltr.dll -> [2009/06/10 00:46:35 | 00,481,280 | ---- | C] (Microsoft Corporation)
ieapfltr.dll -> C:\Windows\SysWow64\ieapfltr.dll -> [2009/06/10 00:46:35 | 00,445,952 | ---- | C] (Microsoft Corporation)
msls31.dll -> C:\Windows\SysWow64\msls31.dll -> [2009/06/10 00:46:35 | 00,156,160 | ---- | C] (Microsoft Corporation)
inseng.dll -> C:\Windows\SysNative\inseng.dll -> [2009/06/10 00:46:35 | 00,125,952 | ---- | C] (Microsoft Corporation)
wextract.exe -> C:\Windows\SysNative\wextract.exe -> [2009/06/10 00:46:35 | 00,076,288 | ---- | C] (Microsoft Corporation)
msfeedsbs.dll -> C:\Windows\SysNative\msfeedsbs.dll -> [2009/06/10 00:46:35 | 00,071,680 | ---- | C] (Microsoft Corporation)
wextract.exe -> C:\Windows\SysWow64\wextract.exe -> [2009/06/10 00:46:35 | 00,066,560 | ---- | C] (Microsoft Corporation)
pngfilt.dll -> C:\Windows\SysNative\pngfilt.dll -> [2009/06/10 00:46:35 | 00,063,488 | ---- | C] (Microsoft Corporation)
ieuinit.inf -> C:\Windows\SysWow64\ieuinit.inf -> [2009/06/10 00:46:35 | 00,057,667 | ---- | C] ()
ieuinit.inf -> C:\Windows\SysNative\ieuinit.inf -> [2009/06/10 00:46:35 | 00,057,667 | ---- | C] ()
licmgr10.dll -> C:\Windows\SysNative\licmgr10.dll -> [2009/06/10 00:46:35 | 00,055,808 | ---- | C] (Microsoft Corporation)
msfeedsbs.dll -> C:\Windows\SysWow64\msfeedsbs.dll -> [2009/06/10 00:46:35 | 00,055,296 | ---- | C] (Microsoft Corporation)
pngfilt.dll -> C:\Windows\SysWow64\pngfilt.dll -> [2009/06/10 00:46:35 | 00,046,592 | ---- | C] (Microsoft Corporation)
msfeedssync.exe -> C:\Windows\SysWow64\msfeedssync.exe -> [2009/06/10 00:46:35 | 00,013,312 | ---- | C] (Microsoft Corporation)
msfeeds.dll -> C:\Windows\SysNative\msfeeds.dll -> [2009/06/10 00:46:34 | 00,700,928 | ---- | C] (Microsoft Corporation)
mstime.dll -> C:\Windows\SysWow64\mstime.dll -> [2009/06/10 00:46:34 | 00,611,840 | ---- | C] (Microsoft Corporation)
msfeeds.dll -> C:\Windows\SysWow64\msfeeds.dll -> [2009/06/10 00:46:34 | 00,594,432 | ---- | C] (Microsoft Corporation)
dxtmsft.dll -> C:\Windows\SysNative\dxtmsft.dll -> [2009/06/10 00:46:34 | 00,508,416 | ---- | C] (Microsoft Corporation)
dxtmsft.dll -> C:\Windows\SysWow64\dxtmsft.dll -> [2009/06/10 00:46:34 | 00,348,160 | ---- | C] (Microsoft Corporation)
dxtrans.dll -> C:\Windows\SysNative\dxtrans.dll -> [2009/06/10 00:46:34 | 00,318,464 | ---- | C] (Microsoft Corporation)
dxtrans.dll -> C:\Windows\SysWow64\dxtrans.dll -> [2009/06/10 00:46:34 | 00,216,064 | ---- | C] (Microsoft Corporation)
occache.dll -> C:\Windows\SysNative\occache.dll -> [2009/06/10 00:46:34 | 00,146,432 | ---- | C] (Microsoft Corporation)
imgutil.dll -> C:\Windows\SysWow64\imgutil.dll -> [2009/06/10 00:46:34 | 00,034,816 | ---- | C] (Microsoft Corporation)
mstime.dll -> C:\Windows\SysNative\mstime.dll -> [2009/06/10 00:46:33 | 01,062,912 | ---- | C] (Microsoft Corporation)
iepeers.dll -> C:\Windows\SysNative\iepeers.dll -> [2009/06/10 00:46:33 | 00,252,416 | ---- | C] (Microsoft Corporation)
webcheck.dll -> C:\Windows\SysWow64\webcheck.dll -> [2009/06/10 00:46:33 | 00,236,544 | ---- | C] (Microsoft Corporation)
iepeers.dll -> C:\Windows\SysWow64\iepeers.dll -> [2009/06/10 00:46:33 | 00,183,808 | ---- | C] (Microsoft Corporation)
occache.dll -> C:\Windows\SysWow64\occache.dll -> [2009/06/10 00:46:33 | 00,109,568 | ---- | C] (Microsoft Corporation)
mshtmled.dll -> C:\Windows\SysNative\mshtmled.dll -> [2009/06/10 00:46:33 | 00,096,768 | ---- | C] (Microsoft Corporation)
inseng.dll -> C:\Windows\SysWow64\inseng.dll -> [2009/06/10 00:46:33 | 00,094,720 | ---- | C] (Microsoft Corporation)
mshtmled.dll -> C:\Windows\SysWow64\mshtmled.dll -> [2009/06/10 00:46:33 | 00,066,560 | ---- | C] (Microsoft Corporation)
licmgr10.dll -> C:\Windows\SysWow64\licmgr10.dll -> [2009/06/10 00:46:33 | 00,043,008 | ---- | C] (Microsoft Corporation)
webcheck.dll -> C:\Windows\SysNative\webcheck.dll -> [2009/06/10 00:46:32 | 00,304,640 | ---- | C] (Microsoft Corporation)
ieaksie.dll -> C:\Windows\SysNative\ieaksie.dll -> [2009/06/10 00:46:32 | 00,271,872 | ---- | C] (Microsoft Corporation)
msrating.dll -> C:\Windows\SysNative\msrating.dll -> [2009/06/10 00:46:32 | 00,241,664 | ---- | C] (Microsoft Corporation)
ieaksie.dll -> C:\Windows\SysWow64\ieaksie.dll -> [2009/06/10 00:46:32 | 00,229,376 | ---- | C] (Microsoft Corporation)
msrating.dll -> C:\Windows\SysWow64\msrating.dll -> [2009/06/10 00:46:32 | 00,193,536 | ---- | C] (Microsoft Corporation)
ieakui.dll -> C:\Windows\SysWow64\ieakui.dll -> [2009/06/10 00:46:32 | 00,163,840 | ---- | C] (Microsoft Corporation)
ieakui.dll -> C:\Windows\SysNative\ieakui.dll -> [2009/06/10 00:46:32 | 00,163,840 | ---- | C] (Microsoft Corporation)
ieUnatt.exe -> C:\Windows\SysNative\ieUnatt.exe -> [2009/06/10 00:46:32 | 00,161,792 | ---- | C] (Microsoft Corporation)
iesysprep.dll -> C:\Windows\SysNative\iesysprep.dll -> [2009/06/10 00:46:32 | 00,132,096 | ---- | C] (Microsoft Corporation)
PDMSetup.exe -> C:\Windows\SysNative\PDMSetup.exe -> [2009/06/10 00:46:32 | 00,131,584 | ---- | C] (Microsoft Corporation)
RegisterIEPKEYs.exe -> C:\Windows\SysNative\RegisterIEPKEYs.exe -> [2009/06/10 00:46:32 | 00,129,024 | ---- | C] (Microsoft Corporation)
SetIEInstalledDate.exe -> C:\Windows\SysNative\SetIEInstalledDate.exe -> [2009/06/10 00:46:32 | 00,128,512 | ---- | C] (Microsoft Corporation)
SetDepNx.exe -> C:\Windows\SysNative\SetDepNx.exe -> [2009/06/10 00:46:32 | 00,125,440 | ---- | C] (Microsoft Corporation)
mshta.exe -> C:\Windows\SysNative\mshta.exe -> [2009/06/10 00:46:32 | 00,041,984 | ---- | C] (Microsoft Corporation)
jscript.dll -> C:\Windows\SysNative\jscript.dll -> [2009/06/10 00:46:31 | 00,817,664 | ---- | C] (Microsoft Corporation)
jscript.dll -> C:\Windows\SysWow64\jscript.dll -> [2009/06/10 00:46:31 | 00,726,528 | ---- | C] (Microsoft Corporation)
vbscript.dll -> C:\Windows\SysNative\vbscript.dll -> [2009/06/10 00:46:31 | 00,612,864 | ---- | C] (Microsoft Corporation)
vbscript.dll -> C:\Windows\SysWow64\vbscript.dll -> [2009/06/10 00:46:31 | 00,420,352 | ---- | C] (Microsoft Corporation)
WinFXDocObj.exe -> C:\Windows\SysNative\WinFXDocObj.exe -> [2009/06/10 00:46:31 | 00,278,528 | ---- | C] (Microsoft Corporation)
WinFXDocObj.exe -> C:\Windows\SysWow64\WinFXDocObj.exe -> [2009/06/10 00:46:31 | 00,208,384 | ---- | C] (Microsoft Corporation)
html.iec -> C:\Windows\SysNative\html.iec -> [2009/06/10 00:46:30 | 00,479,744 | ---- | C] (Microsoft Corporation)
html.iec -> C:\Windows\SysWow64\html.iec -> [2009/06/10 00:46:30 | 00,385,024 | ---- | C] (Microsoft Corporation)
iexpress.exe -> C:\Windows\SysWow64\iexpress.exe -> [2009/06/10 00:46:30 | 00,169,472 | ---- | C] (Microsoft Corporation)
url.dll -> C:\Windows\SysNative\url.dll -> [2009/06/10 00:46:30 | 00,108,032 | ---- | C] (Microsoft Corporation)
url.dll -> C:\Windows\SysWow64\url.dll -> [2009/06/10 00:46:30 | 00,105,984 | ---- | C] (Microsoft Corporation)
mshtmler.dll -> C:\Windows\SysWow64\mshtmler.dll -> [2009/06/10 00:46:30 | 00,048,128 | ---- | C] (Microsoft Corporation)
mshtmler.dll -> C:\Windows\SysNative\mshtmler.dll -> [2009/06/10 00:46:30 | 00,048,128 | ---- | C] (Microsoft Corporation)
mshta.exe -> C:\Windows\SysWow64\mshta.exe -> [2009/06/10 00:46:30 | 00,045,568 | ---- | C] (Microsoft Corporation)
ieapfltr.dat -> C:\Windows\SysWow64\ieapfltr.dat -> [2009/06/10 00:46:29 | 03,698,584 | ---- | C] (Microsoft Corporation)
ieapfltr.dat -> C:\Windows\SysNative\ieapfltr.dat -> [2009/06/10 00:46:29 | 03,698,584 | ---- | C] (Microsoft Corporation)
iexpress.exe -> C:\Windows\SysNative\iexpress.exe -> [2009/06/10 00:46:29 | 00,193,536 | ---- | C] (Microsoft Corporation)
ieUnatt.exe -> C:\Windows\SysWow64\ieUnatt.exe -> [2009/06/10 00:46:29 | 00,132,608 | ---- | C] (Microsoft Corporation)
PDMSetup.exe -> C:\Windows\SysWow64\PDMSetup.exe -> [2009/06/10 00:46:29 | 00,109,568 | ---- | C] (Microsoft Corporation)
iesysprep.dll -> C:\Windows\SysWow64\iesysprep.dll -> [2009/06/10 00:46:29 | 00,109,056 | ---- | C] (Microsoft Corporation)
RegisterIEPKEYs.exe -> C:\Windows\SysWow64\RegisterIEPKEYs.exe -> [2009/06/10 00:46:29 | 00,107,520 | ---- | C] (Microsoft Corporation)
SetIEInstalledDate.exe -> C:\Windows\SysWow64\SetIEInstalledDate.exe -> [2009/06/10 00:46:29 | 00,107,008 | ---- | C] (Microsoft Corporation)
SetDepNx.exe -> C:\Windows\SysWow64\SetDepNx.exe -> [2009/06/10 00:46:29 | 00,103,936 | ---- | C] (Microsoft Corporation)
netfxperf.dll -> C:\Windows\SysWow64\netfxperf.dll -> [2009/06/10 00:21:45 | 00,041,984 | ---- | C] (Microsoft Corporation)
netfxperf.dll -> C:\Windows\SysNative\netfxperf.dll -> [2009/06/10 00:21:45 | 00,013,824 | ---- | C] (Microsoft Corporation)
localspl.dll -> C:\Windows\SysNative\localspl.dll -> [2009/06/10 00:14:05 | 00,772,608 | ---- | C] (Microsoft Corporation)
localspl.dll -> C:\Windows\SysWow64\localspl.dll -> [2009/06/10 00:14:05 | 00,623,616 | ---- | C] (Microsoft Corporation)
rpcrt4.dll -> C:\Windows\SysNative\rpcrt4.dll -> [2009/06/10 00:13:38 | 01,305,600 | ---- | C] (Microsoft Corporation)
rpcrt4.dll -> C:\Windows\SysWow64\rpcrt4.dll -> [2009/06/10 00:13:38 | 00,677,376 | ---- | C] (Microsoft Corporation)
win32k.sys -> C:\Windows\SysNative\win32k.sys -> [2009/06/10 00:13:35 | 02,745,344 | ---- | C] (Microsoft Corporation)
Defraggler -> C:\Program Files (x86)\Defraggler -> [2009/06/09 16:34:22 | 00,000,000 | ---D | C]
ERDNT -> C:\Windows\ERDNT -> [2009/06/08 11:19:29 | 00,000,000 | ---D | C]
Trend Micro -> C:\Program Files (x86)\Trend Micro -> [2009/06/08 10:44:11 | 00,000,000 | ---D | C]
$AVG8.VAULT$ -> C:\$AVG8.VAULT$ -> [2009/06/08 08:07:09 | 00,000,000 | -H-D | C]
avg -> C:\Windows\SysWow64\drivers\avg -> [2009/06/08 02:09:08 | 00,000,000 | ---D | C]
avg8 -> C:\ProgramData\avg8 -> [2009/06/08 02:07:00 | 00,000,000 | ---D | C]
Spybot - Search & Destroy -> C:\ProgramData\Spybot - Search & Destroy -> [2009/06/08 01:40:27 | 00,000,000 | ---D | C]
Spybot - Search & Destroy -> C:\Program Files (x86)\Spybot - Search & Destroy -> [2009/06/08 01:40:27 | 00,000,000 | ---D | C]
SUPERAntiSpyware.com -> C:\ProgramData\SUPERAntiSpyware.com -> [2009/06/08 00:36:41 | 00,000,000 | ---D | C]
SUPERAntiSpyware.com -> C:\Users\Jeff\AppData\Roaming\SUPERAntiSpyware.com -> [2009/06/08 00:35:50 | 00,000,000 | ---D | C]
SUPERAntiSpyware -> C:\Program Files (x86)\SUPERAntiSpyware -> [2009/06/08 00:35:50 | 00,000,000 | ---D | C]
Wise Installation Wizard -> C:\Program Files (x86)\Common Files\Wise Installation Wizard -> [2009/06/08 00:35:13 | 00,000,000 | ---D | C]
stwrt64.sys -> C:\Windows\SysNative\drivers\stwrt64.sys -> [2009/06/03 20:43:18 | 00,486,400 | ---- | C] (IDT, Inc.)
stcplx64.dll -> C:\Windows\SysNative\stcplx64.dll -> [2009/06/03 20:43:18 | 00,431,616 | ---- | C] (IDT, Inc.)
tcpmon.ini -> C:\Windows\SysWow64\tcpmon.ini -> [2008/01/20 22:50:05 | 00,060,124 | ---- | C] ()
system.ini -> C:\Windows\system.ini -> [2006/11/02 08:34:27 | 00,000,219 | ---- | C] ()
win.ini -> C:\Windows\win.ini -> [2006/11/02 08:34:27 | 00,000,179 | ---- | C] ()

[Files/Folders - Modified Within 30 Days]
2 C:\Users\Jeff\AppData\Local\Temp\*.tmp files -> C:\Users\Jeff\AppData\Local\Temp\*.tmp ->
NTUSER.DAT -> C:\Users\Jeff\NTUSER.DAT -> [2009/06/27 23:34:01 | 05,242,880 | -HS- | M] ()
OTS.exe -> C:\Users\Jeff\Desktop\OTS.exe -> [2009/06/27 23:33:26 | 00,510,976 | ---- | M] (OldTimer Tools)
7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 -> [2009/06/27 22:41:55 | 00,003,216 | -H-- | M] ()
7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -> C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 -> [2009/06/27 22:41:55 | 00,003,216 | -H-- | M] ()
qmgr1.dat -> C:\ProgramData\Microsoft\Network\Downloader\qmgr1.dat -> [2009/06/27 14:52:29 | 04,194,304 | ---- | M] ()
qmgr0.dat -> C:\ProgramData\Microsoft\Network\Downloader\qmgr0.dat -> [2009/06/27 14:52:29 | 04,194,304 | ---- | M] ()
bootstat.dat -> C:\Windows\bootstat.dat -> [2009/06/27 14:41:59 | 00,067,584 | --S- | M] ()
PublishedRacMonSWITable.DAT -> C:\ProgramData\Microsoft\RAC\PublishedData\PublishedRacMonSWITable.DAT -> [2009/06/27 00:37:00 | 00,185,168 | ---- | M] ()
PublishedRacMonIndex.DAT -> C:\ProgramData\Microsoft\RAC\PublishedData\PublishedRacMonIndex.DAT -> [2009/06/27 00:37:00 | 00,003,984 | ---- | M] ()
PublishedRacMonAFLTable.DAT -> C:\ProgramData\Microsoft\RAC\PublishedData\PublishedRacMonAFLTable.DAT -> [2009/06/27 00:37:00 | 00,000,552 | ---- | M] ()
PublishedRacMonOSFTable.DAT -> C:\ProgramData\Microsoft\RAC\PublishedData\PublishedRacMonOSFTable.DAT -> [2009/06/27 00:37:00 | 00,000,000 | ---- | M] ()
PublishedRacMonHFLTable.DAT -> C:\ProgramData\Microsoft\RAC\PublishedData\PublishedRacMonHFLTable.DAT -> [2009/06/27 00:37:00 | 00,000,000 | ---- | M] ()
PublishedRacMonCLKTable.DAT -> C:\ProgramData\Microsoft\RAC\PublishedData\PublishedRacMonCLKTable.DAT -> [2009/06/27 00:37:00 | 00,000,000 | ---- | M] ()
index.dat -> C:\Windows\Temp\Temporary Internet Files\Content.IE5\index.dat -> [2009/06/26 05:23:35 | 00,032,768 | -HS- | M] ()
index.dat -> C:\Windows\Temp\History\History.IE5\index.dat -> [2009/06/26 05:23:35 | 00,016,384 | -HS- | M] ()
index.dat -> C:\Windows\Temp\Cookies\index.dat -> [2009/06/26 05:23:35 | 00,016,384 | -HS- | M] ()
perfh009.dat -> C:\Windows\SysNative\perfh009.dat -> [2009/06/25 17:00:11 | 00,595,684 | ---- | M] ()
PerfStringBackup.INI -> C:\Windows\SysNative\PerfStringBackup.INI -> [2009/06/25 17:00:10 | 00,690,960 | ---- | M] ()
perfc009.dat -> C:\Windows\SysNative\perfc009.dat -> [2009/06/25 17:00:10 | 00,101,350 | ---- | M] ()
HPCeeScheduleForJeff.job -> C:\Windows\tasks\HPCeeScheduleForJeff.job -> [2009/06/24 17:27:05 | 00,000,330 | ---- | M] ()
SA.DAT -> C:\Windows\tasks\SA.DAT -> [2009/06/23 23:54:10 | 00,000,006 | -H-- | M] ()
hiberfil.sys -> C:\hiberfil.sys -> [2009/06/23 23:54:00 | 42,228,20352 | -HS- | M] ()
bthservsdp.dat -> C:\Windows\bthservsdp.dat -> [2009/06/23 20:25:46 | 00,000,012 | ---- | M] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms -> C:\Users\Jeff\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TMContainer00000000000000000001.regtrans-ms -> [2009/06/23 20:25:44 | 00,524,288 | -HS- | M] ()
NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf -> C:\Users\Jeff\NTUSER.DAT{c328fef1-6a85-11db-9fbd-cf3689cba3de}.TM.blf -> [2009/06/23 20:25:44 | 00,065,536 | -HS- | M] ()
IconCache.db -> C:\Users\Jeff\AppData\Local\IconCache.db -> [2009/06/23 20:25:40 | 02,379,354 | -H-- | M] ()
oem32.inf -> C:\Windows\SysNative\oem32.inf -> [2009/06/23 17:51:42 | 00,873,310 | ---- | M] ()
hosts -> C:\Windows\SysNative\drivers\etc\hosts -> [2009/06/19 02:36:27 | 00,307,199 | R--- | M] ()
GDIPFONTCACHEV1.DAT -> C:\Users\Jeff\AppData\Local\GDIPFONTCACHEV1.DAT -> [2009/06/14 14:57:16 | 00,075,280 | ---- | M] ()
FNTCACHE.DAT -> C:\Windows\SysNative\FNTCACHE.DAT -> [2009/06/14 14:56:33 | 00,312,496 | ---- | M] ()
hosts.20090619-023627.backup -> C:\Windows\SysNative\drivers\etc\hosts.20090619-023627.backup -> [2009/06/13 21:54:31 | 00,307,184 | R--- | M] ()
IPH.PH -> C:\IPH.PH -> [2009/06/13 17:29:52 | 00,000,741 | -H-- | M] ()
AIM 6.lnk -> C:\Users\Public\Desktop\AIM 6.lnk -> [2009/06/13 17:29:30 | 00,001,810 | ---- | M] ()
results.xml -> C:\Windows\SysNative\results.xml -> [2009/06/12 18:23:27 | 00,016,074 | ---- | M] ()
hosts.20090613-215431.backup -> C:\Windows\SysNative\drivers\etc\hosts.20090613-215431.backup -> [2009/06/11 22:26:03 | 00,307,184 | R--- | M] ()
hosts.20090611-222603.backup -> C:\Windows\SysNative\drivers\etc\hosts.20090611-222603.backup -> [2009/06/11 22:21:16 | 00,307,184 | R--- | M] ()
hosts.20090611-222116.backup -> C:\Windows\SysNative\drivers\etc\hosts.20090611-222116.backup -> [2009/06/11 22:20:58 | 00,307,184 | R--- | M] ()
hosts.20090611-222058.backup -> C:\Windows\SysNative\drivers\etc\hosts.20090611-222058.backup -> [2009/06/08 22:33:25 | 00,307,170 | R--- | M] ()
hosts.20090608-223325.backup -> C:\Windows\SysNative\drivers\etc\hosts.20090608-223325.backup -> [2009/06/08 01:49:31 | 00,307,170 | R--- | M] ()
idtcpl64.cpl -> C:\Windows\SysNative\idtcpl64.cpl -> [2009/06/03 20:43:18 | 12,148,224 | ---- | M] (IDT, Inc.)
stlang64.dll -> C:\Windows\SysNative\stlang64.dll -> [2009/06/03 20:43:18 | 03,562,496 | ---- | M] (IDT, Inc.)
stapo64.dll -> C:\Windows\SysNative\stapo64.dll -> [2009/06/03 20:43:18 | 01,431,040 | ---- | M] (IDT, Inc.)
stapi64.dll -> C:\Windows\SysNative\stapi64.dll -> [2009/06/03 20:43:18 | 00,595,456 | ---- | M] (IDT, Inc.)
idt64mp1.exe -> C:\Windows\SysNative\idt64mp1.exe -> [2009/06/03 20:43:18 | 00,564,224 | ---- | M] (IDT, Inc.)
stwrt64.sys -> C:\Windows\SysNative\drivers\stwrt64.sys -> [2009/06/03 20:43:18 | 00,486,400 | ---- | M] (IDT, Inc.)
sttray64.exe -> C:\Windows\sttray64.exe -> [2009/06/03 20:43:18 | 00,442,368 | ---- | M] (IDT, Inc.)
stcplx64.dll -> C:\Windows\SysNative\stcplx64.dll -> [2009/06/03 20:43:18 | 00,431,616 | ---- | M] (IDT, Inc.)
staco64.dll -> C:\Windows\SysNative\staco64.dll -> [2009/06/03 20:43:18 | 00,209,408 | ---- | M] (IDT, Inc.)
mrt.exe -> C:\Windows\SysNative\mrt.exe -> [2009/06/01 13:16:48 | 25,255,368 | ---- | M] (Microsoft Corporation)
SSUPDATE.EXE -> C:\Users\Jeff\AppData\Local\Temp\SSUPDATE.EXE -> [2009/05/26 10:05:50 | 00,158,960 | ---- | M] (SUPERAntiSpyware.com)
opa12.dat -> C:\ProgramData\Microsoft\OFFICE\DATA\opa12.dat -> [2009/05/10 20:38:46 | 00,008,308 | ---- | M] ()
Jeff.dat -> C:\ProgramData\Microsoft\User Account Pictures\Jeff.dat -> [2009/01/11 19:59:21 | 00,000,000 | ---- | M] ()

[Alternate Data Streams]
@Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:5C321E34
< End of report >
[/code]

 

[seawolves]

Thanks for the help! There was no notice of anything, so I ran a scan like you posted.


GMER 1.0.15.14972 - http://www.gmer.net
Rootkit scan 2009-06-28 00:50:41
Windows 6.0.6002 Service Pack 2


---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\002186e5e78e
Reg HKLM\SYSTEM\ControlSet003\Services\BTHPORT\Parameters\Keys\002186e5e78e

---- EOF - GMER 1.0.15 ----

 

[katana]

Information

REMOVE P2P PROGRAMS

IMPORTANT I notice there are signs of one or more P2P (Person to Person) File Sharing Programs on your computer.

BitTorrent

Please read the Guidelines for P2P Programs where we explain why it's not a good idea to have them.

Note: Even if you are using a "safe" P2P program, it is only the program that is safe. You will be sharing files from uncertified sources, and these are often infected.
The bad guys use P2P filesharing as a major conduit to spread their wares.

Go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red) NOW.


----------------------------------------------------------------------------------------
Step 1

Disable Teatimer
We need to disable Teatimer as it may interfere with the cleaning.
Please do not re-enable it until I give instructions.

First step:

• Right-click the Spybot Icon in the System Tray (looks like a blue/white calendar with a padlock symbol)
• If you have the new version 1.5, Click once on Resident Protection, then Right click the Spybot icon again and make sure Resident Protection is now Unchecked. The Spybot icon in the System tray should now be now colorless.
• If you have Version 1.4, Click on Exit Spybot S&D Resident

Second step, For Either Version :

• Open Spybot S&D
• Click Mode, choose Advanced Mode
• Go To the bottom of the Vertical Panel on the Left, Click Tools
• then, also in left panel, click Resident shows a red/white shield.
• If your firewall raises a question, say OK
• In the Resident protection status frame, Uncheck the box labeled Resident "Tea-Timer"(Protection of over-all system settings) active
• OK any prompts.
• Use File, Exit to terminate Spybot
• Reboot your machine for the changes to take effect.

----------------------------------------------------------------------------------------
Step 2

Malwarebytes' Anti-Malware

Please download Malwarebytes' Anti-Malware to your desktop.

• Double-click mbam-setup.exe and follow the prompts to install the program.
• At the end, be sure a checkmark is placed next to
  • Update Malwarebytes' Anti-Malware
  • and Launch Malwarebytes' Anti-Malware
• then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select Perform full scan, then click Scan.
• When the scan is complete, click OK, then Show Results to view the results.
• Be sure that everything is checked, and click Remove Selected.
• When completed, a log will open in Notepad. please copy and paste the log into your next reply
• If requested, please reboot
  • If you accidently close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

----------------------------------------------------------------------------------------
Step 3

Open OTScanIt. Copy/Paste the information in the quotebox below into the pane where it says "Paste fix here" and then click the Run Fix button.

[Registry - Safe List]
< BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\
YN -> {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} [HKLM] -> Reg Error: Key error. [Reg Error: Key error.]
< Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\
YN -> WebBrowser\\"{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.]
< Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
YN -> "NWEReboot" -> []
< Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\
YN -> igfxcui -> Reg Error: Value error.
< Vista Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications
YY -> \List\\"C:\Program Files (x86)\BitTorrent\bittorrent.exe" -> C:\Program Files (x86)\BitTorrent\bittorrent.exe [C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent]
< Vista Active Application Exception Rules > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules
YN -> {0D605E34-D997-445E-A8D9-9EB690802FFD} -> profile=public | protocol=17 | dir=in | action=allow | name=dna (udp-in) | app=c:\program files (x86)\dna\btdna.exe |
YN -> {96A1DDB3-A7C7-4A09-A571-4DA73A79E337} -> profile=public | protocol=6 | dir=in | action=allow | name=dna (tcp-in) | app=c:\program files (x86)\dna\btdna.exe |
YN -> TCP Query User{C4964FB4-F52E-4BF1-A392-B04A36D726E8}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=public | protocol=6 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
YN -> TCP Query User{D38C264C-8215-4DED-A4BB-563FCAF2CCCA}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=private | protocol=6 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
YN -> UDP Query User{66202482-F822-457A-AC2A-F29417F3FC5E}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=private | protocol=17 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
YN -> UDP Query User{EC489A8E-C637-4295-BCF8-5CE28F07D781}C:\program files (x86)\bittorrent\bittorrent.exe -> profile=public | protocol=17 | dir=in | action=allow | name=bittorrent | app=c:\program files (x86)\bittorrent\bittorrent.exe |
< Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List
YY -> "C:\Program Files (x86)\BitTorrent\bittorrent.exe" -> C:\Program Files (x86)\BitTorrent\bittorrent.exe [C:\Program Files (x86)\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent]
[Alternate Data Streams]
NY -> @Alternate Data Stream - 125 bytes -> C:\ProgramData\Temp:5C321E34

The fix should only take a very short time and then you will be asked if you want to reboot. Choose Yes.
Warning: This fix is for this user only. DO NOT duplicate this fix or you risk damaging your own system
----------------------------------------------------------------------------------------
Logs/Information to Post in Reply
Please post the following logs/Information in your reply

• MalwareBytes Log
• OTScanIt Log
• How are things running now ?

 

[seawolves]

Deleted bittorent. I ran malwarebytes, but don't know where to download OTScanIt. Thanks for the help My laptop works fine, it never lagged or anything, no popups, I get a little paranoid about these things to be safe.

Malwarebytes' Anti-Malware 1.38
Database version: 2347
Windows 6.0.6002 Service Pack 2

6/29/2009 6:56:44 AM
mbam-log-2009-06-29 (06-56-44).txt

Scan type: Full Scan (C:\|D:\|E:\|)
Objects scanned: 256647
Time elapsed: 47 minute(s), 54 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 1
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer\NoActiveDesktopChanges (Hijack.DisplayProperties) -> Bad: (1) Good: (0) -> Quarantined and deleted successfully.

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

 

[katana]

but don't know where to download OTScanIt.

You have already downloaded it in post #2

OTS.exe

 

[seawolves]

You have already downloaded it in post #2

OTS.exe

Thank you! haha :laugh: Brain freeze.

I ran the fix. Here are the results

[Registry - Safe List]
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{604BC32A-9680-40D1-9AC6-E06B23A1BA4C}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\NWEReboot deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\\\List\\"C:\Program Files (x86)\BitTorrent\bittorrent.exe" not found.
C:\Program Files (x86)\BitTorrent\bittorrent.exe moved successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{0D605E34-D997-445E-A8D9-9EB690802FFD} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0D605E34-D997-445E-A8D9-9EB690802FFD}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\{96A1DDB3-A7C7-4A09-A571-4DA73A79E337} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{96A1DDB3-A7C7-4A09-A571-4DA73A79E337}\ not found.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{C4964FB4-F52E-4BF1-A392-B04A36D726E8}C:\program files (x86)\bittorrent\bittorrent.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\TCP Query User{D38C264C-8215-4DED-A4BB-563FCAF2CCCA}C:\program files (x86)\bittorrent\bittorrent.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{66202482-F822-457A-AC2A-F29417F3FC5E}C:\program files (x86)\bittorrent\bittorrent.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules\\UDP Query User{EC489A8E-C637-4295-BCF8-5CE28F07D781}C:\program files (x86)\bittorrent\bittorrent.exe deleted successfully.
Registry value HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List\\C:\Program Files (x86)\BitTorrent\bittorrent.exe deleted successfully.
File C:\Program Files (x86)\BitTorrent\bittorrent.exe not found.
[Alternate Data Streams]
ADS C:\ProgramData\Temp:5C321E34 deleted successfully.
< End of fix log >
OTS by OldTimer - Version 3.0.8.0 fix logfile created on 06292009_081352

 

[katana]

1) I get a little paranoid about these things to be safe.
2) Brain freeze.

1) Nothing wrong with that
2) We all have days like that


Congratulations your logs look clean

Lets tidy up

You can delete any logs we have produced, and empty your Recycle bin.


Uninstall OTScanIt (OTS.exe)

• Open OTScanIt Click Cleanup,
• If a box pops up click YES.

Now then, I usually give a long list of programs and instructions for staying safe .....
but most of them don't apply to 64x machines !!

Here are a few that do ....


----------------------------------------------------------- -----------------------------------------------------------

The following is some info to help you stay safe and clean.


You may already have some of the following programs, but I include the full list for the benefit of all the other people who will be reading this thread in the future.
( Vista users must ensure that any programs are Vista compatible BEFORE installing )

Online Scanners
I would recommend a scan at one or more of the following sites at least once a month.

http://www.pandasecurity.com/activescan
http://www.kaspersky.com/kos/eng/partner/71706/kavwebscan.html

!!! Make sure that all your programs are updated !!!
Secunia Software Inspector does all the work for you, .... see HERE for details

AntiSpyware

• 
  AntiSpyware is not the same thing as Antivirus.
  Different AntiSpyware programs detect different things, so in this case it is recommended that you have more than one.
  You should only have one running all the time, the other/s should be used "on demand" on a regular basis.
  Most of the programs in this list have a free (for Home Users ) and paid versions,
  it is worth paying for one and having "realtime" protection, unless you intend to do a manual scan often.
• Spybot - Search & Destroy <<< A must have program
  • It includes host protection and registry protection
  • A hosts file is a bit like a phone book, it points to the actual numeric address (i.e. the IP address) from the human friendly name of a website. This feature can be used to block malicious websites
• MalwareBytes Anti-malware <<< A New and effective program

Prevention

• Winpatrol
  • An excellent startup manager and then some !!
  • Notifies you if programs are added to startup
  • Allows delayed startup
  • A must have addition

Internet Browsers

• 
  Microsoft has worked hard to make IE.7 a more secure browser, unfortunately whilst it is still the leading browser of choice it will always be under attack from the bad guys.
  Using a different web browser can help stop malware getting on your machine.
  • Make your Internet Explorer more secure - This can be done by following these simple instructions:
    1. From within Internet Explorer click on the Tools menu and then click on Options.
    2. Click once on the Security tab
    3. Click once on the Internet icon so it becomes highlighted.
    4. Click once on the Custom Level button.
       • Change the Download signed ActiveX controls to Prompt
       • Change the Download unsigned ActiveX controls to Disable
       • Change the Initialise and script ActiveX controls not marked as safe to Disable
       • Change the Installation of desktop items to Prompt
       • Change the Launching programs and files in an IFRAME to Prompt
       • Change the Navigate sub-frames across different domains to Prompt
       • When all these settings have been made, click on the OK button.
       • If it prompts you as to whether or not you want to save the settings, press the Yes button.
    5. Next press the Apply button and then the OK to exit the Internet Properties page.
  If you are still using IE6 then either update, or get one of the following.
  • FireFox
    • With many addons available that make customization easy this is a very popular choice
    • NoScript and AdBlockPlus addons are essential
  • Opera
    • Another popular alternative
  • Netscape
    • Another popular alternative
    • Also has Addons available

Cleaning Temporary Internet Files and Tracking Cookies

• 
  Temporary Internet Files are mainly the files that are downloaded when you open a web page.
  Unfortunately, if the site you visit is of a dubious nature or has been hacked, they can also be an entry point for malware.
  It is a good idea to empty the Temporary Internet Files folder on a regular basis.
  
  Tracking Cookies are files that websites use to monitor which sites you visit and how often.
  A lot of Antispyware scanners pick up these tracking cookies and flag them as unwanted.
  CAUTION :- If you delete all your cookies you will lose any autologin information for sites that you visit, and will need your passwords
  
  Also PLEASE read this article.....So How Did I Get Infected In The First Place
  
  The last and most important thing I can tell you is UPDATE.
  If you don't update your security programs (Antivirus, Antispyware even Windows) then you are at risk.
  Malware changes on a day to day basis. You should update every week at the very least.
  
  If you follow this advice then (with a bit of luck) you will never have to hear from me again
  
  
  If you could post back one more time to let me know everything is OK, then I can have this thread archived.
  
  Happy surfing K'

 

[seawolves]

Thank you for your help Katana