2012-08-20, 11:58
I'm new here, I've been using Spybot for almost three years now though.:yes:
I noticed some strange files in my %windir% and I'm worried.
Some samples: dehidfjtpt, baxqskha.dat, ecisfvuhpa.ini, kragnbr.dat.
There are more of these in my windows directory. Spybot didn't find anything

DDS log
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_33
Run by user at 11:41:55 on 2012-08-20
Microsoft Windows XP Home Edition 5.1.2600.3.1253.30.1032.18.2047.1397 [GMT 3:00]
AV: ESET Smart Security 5.2 *Enabled/Updated* {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
FW: ESET Personal firewall *Enabled*
============== Running Processes ===============
C:\WINDOWS\system32\svchost -k DcomLaunch
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\ESET\ESET Smart Security\egui.exe
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Windows Media Player\wmplayer.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\user\Επιφάνεια εργασίας\dds.scr
============== Pseudo HJT Report ===============
BHO: Java(tm) Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Βοηθός εισόδου του Windows Live: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [egui] "c:\program files\eset\eset smart security\egui.exe" /hide /waitservice
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer =
TCP: Interfaces\{D480ADE7-937E-4F2C-82D2-A6D0E7FE1FE0} : DhcpNameServer =
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
================= FIREFOX ===================
FF - ProfilePath - c:\documents and settings\user\application data\mozilla\firefox\profiles\7wgljsqd.default\
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q=
FF - plugin: c:\program files\adobe\reader 10.0\reader\air\nppdf32.dll
FF - plugin: c:\program files\java\jre6\bin\plugin2\npjp2.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_271.dll
FF - plugin: c:\windows\system32\npdeployJava1.dll
FF - plugin: c:\windows\system32\npptools.dll
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: content.notify.interval - 600000
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
============= SERVICES / DRIVERS ===============
R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2011-8-4 120152]
R2 ekrn;ESET Service;c:\program files\eset\eset smart security\ekrn.exe [2012-3-7 913144]
R2 nvUpdatusService;NVIDIA Update Service Daemon;c:\program files\nvidia corporation\nvidia update core\daemonu.exe [2012-6-14 1262400]
R3 NVHDA;Service for NVIDIA High Definition Audio Driver;c:\windows\system32\drivers\nvhda32.sys [2011-6-23 123840]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2012-2-15 158856]
S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2011-6-23 1691480]
S3 GGSAFERDriver;GGSAFER Driver;\??\c:\program files\garena plus\room\safedrv.sys --> c:\program files\garena plus\room\safedrv.sys [?]
S3 MozillaMaintenance;Mozilla Maintenance Service;c:\program files\mozilla maintenance service\maintenanceservice.exe [2012-4-25 113120]
S3 npggsvc;nProtect GameGuard Service;c:\windows\system32\gamemon.des -service --> c:\windows\system32\GameMon.des -service [?]
S3 s1029bus;Sony Ericsson Device 1029 driver (WDM);c:\windows\system32\drivers\s1029bus.sys [2011-6-27 90280]
S3 s1029mdfl;Sony Ericsson Device 1029 USB WMC Modem Filter;c:\windows\system32\drivers\s1029mdfl.sys [2011-6-27 15016]
S3 s1029mdm;Sony Ericsson Device 1029 USB WMC Modem Driver;c:\windows\system32\drivers\s1029mdm.sys [2011-6-27 122280]
S3 s1029mgmt;Sony Ericsson Device 1029 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\s1029mgmt.sys [2011-6-27 115880]
S3 s1029nd5;Sony Ericsson Device 1029 USB Ethernet Emulation (NDIS);c:\windows\system32\drivers\s1029nd5.sys [2011-6-27 26024]
S3 s1029obex;Sony Ericsson Device 1029 USB WMC OBEX Interface;c:\windows\system32\drivers\s1029obex.sys [2011-6-27 111912]
S3 s1029unic;Sony Ericsson Device 1029 USB Ethernet Emulation (WDM);c:\windows\system32\drivers\s1029unic.sys [2011-6-27 116904]
S3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2012-6-5 104792]
S3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\drivers\vboxnetflt.sys --> c:\windows\system32\drivers\VBoxNetFlt.sys [?]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
=============== Created Last 30 ================
2012-08-04 12:55:54 158552 ----a-w- c:\windows\system32\drivers\VBoxDrv.sys
2012-08-04 12:49:30 91992 ----a-w- c:\windows\system32\drivers\VBoxUSBMon.sys
==================== Find3M ====================
2012-08-18 19:18:37 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-08-18 19:18:37 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-07-06 13:58:54 78336 ----a-w- c:\windows\system32\browser.dll
2012-07-04 14:05:12 139784 ----a-w- c:\windows\system32\drivers\rdpwd.sys
2012-07-03 18:26:49 1866368 ----a-w- c:\windows\system32\win32k.sys
2012-07-02 17:39:49 916992 ----a-w- c:\windows\system32\wininet.dll
2012-07-02 17:39:46 43520 ------w- c:\windows\system32\licmgr10.dll
2012-07-02 17:39:46 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-07-02 12:05:43 385024 ------w- c:\windows\system32\html.iec
2012-06-19 09:54:19 73728 ----a-w- c:\windows\system32\javacpl.cpl
2012-06-19 09:54:17 476936 ----a-w- c:\windows\system32\npdeployJava1.dll
2012-06-19 09:54:17 472840 ----a-w- c:\windows\system32\deployJava1.dll
2012-06-14 16:35:24 1074636 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-06-14 16:35:24 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-06-14 16:35:21 1074636 ----a-w- c:\windows\system32\nvdrsdb1.bin
2012-06-05 15:49:57 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-05 15:49:57 1172480 ----a-w- c:\windows\system32\msxml3.dll
2012-06-05 13:33:00 104792 ----a-w- c:\windows\system32\drivers\VBoxNetAdp.sys
2012-06-04 04:32:35 152576 ----a-w- c:\windows\system32\schannel.dll
2012-06-02 12:19:46 24088 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 12:19:46 16408 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 12:19:44 16408 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 12:19:38 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 12:19:24 19480 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-06-02 12:19:02 18672 ----a-w- c:\windows\system32\mucltui.dll.mui
2012-06-02 12:18:58 275696 ----a-w- c:\windows\system32\mucltui.dll
2012-06-02 12:18:58 214256 ----a-w- c:\windows\system32\muweb.dll
2012-05-31 13:21:59 604160 ----a-w- c:\windows\system32\crypt32.dll
============= FINISH: 11:42:14,71 ===============

aswMBR log
aswMBR version Copyright(c) 2011 AVAST Software
Run date: 2012-08-20 11:21:34
11:21:34.125 OS Version: Windows 5.1.2600 Service Pack 3
11:21:34.125 Number of processors: 2 586 0x170A
11:21:34.125 ComputerName: USER-0D3DA03F2E UserName: user
11:21:34.781 Initialize success
11:25:55.171 AVAST engine defs: 12081901
11:26:15.421 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP3T0L0-10
11:26:15.421 Disk 0 Vendor: WDC_WD1200JS-00MHB0 02.01C03 Size: 114473MB BusType: 3
11:26:15.437 Disk 0 MBR read successfully
11:26:15.437 Disk 0 MBR scan
11:26:15.484 Disk 0 Windows XP default MBR code
11:26:15.484 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 114463 MB offset 63
11:26:15.500 Disk 0 scanning sectors +234420480
11:26:15.562 Disk 0 scanning C:\WINDOWS\system32\drivers
11:26:28.734 Service scanning
11:26:49.859 Modules scanning
11:26:55.531 Disk 0 trace - called modules:
11:26:55.546 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:26:55.546 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x89b94ab8]
11:26:55.562 3 CLASSPNP.SYS[f7637fd7] -> nt!IofCallDriver -> \Device\00000067[0x89bb9d70]
11:26:55.562 5 ACPI.sys[f75ad620] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP3T0L0-10[0x89b97d98]
11:26:55.953 AVAST engine scan C:\WINDOWS
11:27:01.375 AVAST engine scan C:\WINDOWS\system32
11:30:06.046 AVAST engine scan C:\WINDOWS\system32\drivers
11:30:19.250 AVAST engine scan C:\Documents and Settings\user
11:38:16.609 AVAST engine scan C:\Documents and Settings\All Users
11:38:46.484 Scan finished successfully
11:39:44.046 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\user\Επιφάνεια εργασίας\MBR.dat"
11:39:44.046 The log file has been saved successfully to "C:\Documents and Settings\user\Επιφάνεια εργασίας\aswMBR.txt"

2012-08-25, 17:31
Hi Scarecrow, welcome to the forum.

To make cleaning this machine easier
Please do not uninstall/install any programs unless asked to
It is more difficult when files/programs are appearing in/disappearing from the logs.
Please do not run any scans other than those requested
Please follow all instructions in the order posted
All logs/reports, etc.. must be posted in Notepad. Please ensure that word wrap is unchecked. In notepad click format, uncheck word wrap if it is checked.
Do not attach any logs/reports, etc.. unless specifically requested to do so.
If you have problems with or do not understand the instructions, Please ask before continuing.
Please stay with this thread until given the All Clear. A absence of symptoms does not mean a clean machine.

Download OTL (http://oldtimer.geekstogo.com/OTL.exe) to your desktop.

Double click on OTL.exe to run it. Make sure all other windows are closed and to let it run uninterrupted.
When the window appears, underneath Output at the top change it to Minimal Output
Under file age change it to 180 days
Check the boxes beside LOP Check and Purity Check.
In the window under Custom Scans/Fixes copy and paste the following

%systemroot%\*. /mp /s
%systemroot%\system32\bak. /s
%ALLUSERSPROFILE%\Start Menu\*.līk /x
%systemroot%\system32\config\systemprofile\*.dat /x
%PROGRAMFILES%\Internet Explorer\*.dat
%APPDATA%\Mikzosoft\Internet Explorer\Quick Launch\*.lnk /x
%PROGRAMFILES%\Common Files\*.*
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
%USERPROFILE%\..|smtmp;true;true;true /FP
%temp%\smtmp\*.* /s >

Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.

Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them all in.

2012-08-27, 00:39
Thanks for answering.:)
I need two or three posts maybe for each log.
Should I proceed or attach them?

2012-08-27, 06:41
Hi Scarecrow,

Split them up into s many post as you need to.

2012-08-27, 21:52
Sorry for being late.
Firstly, I want to mention that my brother installed jDownloader and this installed Babylon toolbar along. I made a system restore to yesterday's restore point created by OTL, uninstalled Babylon completely from Firefox and Control Panel (deleted its folders from AppData too) and reseted all of Firefox preferences containing the word 'babylon'. I guess it's completely removed now.

So, I made a new scan with OTL, I hope I didn't mess things up.
By the way, I can now see some files like .db, AlbumArt and some hidden system files (autoexec.bat, boot.ini etc).

(New) OTL.txt
OTL logfile created on: 27/8/2012 9:30:13 μμ - Run 1
OTL by OldTimer - Version Folder = C:\Documents and Settings\user\Επιφάνεια εργασίας
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000408 | Country: Ελλάδα | Language: ELL | Date Format: d/M/yyyy

2,00 Gb Total Physical Memory | 1,43 Gb Available Physical Memory | 71,49% Memory free
3,85 Gb Paging File | 3,47 Gb Available in Paging File | 90,06% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111,78 Gb Total Space | 13,19 Gb Free Space | 11,80% Space Free | Partition Type: NTFS

Computer Name: USER-0D3DA03F2E | User Name: user | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 180 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\user\Επιφάνεια εργασίας\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
PRC - C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
PRC - C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
PRC - C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

========== Modules (No Company Name) ==========

MOD - C:\Program Files\Mozilla Firefox\mozjs.dll ()
MOD - C:\Program Files\NVIDIA Corporation\nview\nvShell.dll ()
MOD - C:\Program Files\WinRAR\RarExt.dll ()

========== Services (SafeList) ==========

SRV - (AppMgmt) -- %SystemRoot%\System32\appmgmts.dll File not found
SRV - (Steam Client Service) -- C:\Program Files\Common Files\Steam\SteamService.exe (Valve Corporation)
SRV - (MozillaMaintenance) -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe (Mozilla Foundation)
SRV - (nvUpdatusService) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe (NVIDIA Corporation)
SRV - (ekrn) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe (ESET)
SRV - (SkypeUpdate) -- C:\Program Files\Skype\Updater\Updater.exe (Skype Technologies)
SRV - (npggsvc) -- C:\WINDOWS\system32\GameMon.des (INCA Internet Co., Ltd.)

========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (VBoxNetFlt) -- system32\DRIVERS\VBoxNetFlt.sys File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (i2omgmt) -- File not found
DRV - (GGSAFERDriver) -- C:\Program Files\Garena Plus\Room\safedrv.sys File not found
DRV - (Changer) -- File not found
DRV - (VBoxNetAdp) -- C:\WINDOWS\system32\drivers\VBoxNetAdp.sys (Oracle Corporation)
DRV - (NVHDA) -- C:\WINDOWS\system32\drivers\nvhda32.sys (NVIDIA Corporation)
DRV - (epfw) -- C:\WINDOWS\system32\drivers\epfw.sys (ESET)
DRV - (epfwtdi) -- C:\WINDOWS\system32\drivers\epfwtdi.sys (ESET)
DRV - (Epfwndis) -- C:\WINDOWS\system32\drivers\epfwndis.sys (ESET)
DRV - (eamon) -- C:\WINDOWS\system32\drivers\eamon.sys (ESET)
DRV - (ehdrv) -- C:\WINDOWS\system32\drivers\ehdrv.sys (ESET)
DRV - (IntcAzAudAddService) -- C:\WINDOWS\system32\drivers\RtkHDAud.sys (Realtek Semiconductor Corp.)
DRV - (RTLE8023xp) -- C:\WINDOWS\system32\drivers\Rtenicxp.sys (Realtek Semiconductor Corporation )
DRV - (Monfilt) -- C:\WINDOWS\system32\drivers\Monfilt.sys (Creative Technology Ltd.)
DRV - (Ambfilt) -- C:\WINDOWS\system32\drivers\Ambfilt.sys (Creative)
DRV - (s1029unic) -- C:\WINDOWS\system32\drivers\s1029unic.sys (MCCI Corporation)
DRV - (s1029mdm) -- C:\WINDOWS\system32\drivers\s1029mdm.sys (MCCI Corporation)
DRV - (s1029bus) -- C:\WINDOWS\system32\drivers\s1029bus.sys (MCCI Corporation)
DRV - (s1029mdfl) -- C:\WINDOWS\system32\drivers\s1029mdfl.sys (MCCI Corporation)
DRV - (s1029mgmt) -- C:\WINDOWS\system32\drivers\s1029mgmt.sys (MCCI Corporation)
DRV - (s1029obex) -- C:\WINDOWS\system32\drivers\s1029obex.sys (MCCI Corporation)
DRV - (s1029nd5) -- C:\WINDOWS\system32\drivers\s1029nd5.sys (MCCI Corporation)
DRV - (USB_RNDIS) -- C:\WINDOWS\system32\drivers\usb8023k.sys (Microsoft Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "about:home"
FF - prefs.js..keyword.URL: "http://www.google.com/search?ie=UTF-8&oe=UTF-8&sourceid=navclient&gfns=1&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/07/18 16:58:08 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2012/06/07 20:10:02 | 000,000,000 | ---D | M]

[2012/08/09 17:13:09 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Application Data\Mozilla\Extensions
[2012/08/27 20:33:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\7wgljsqd.default\extensions
[2012/05/18 13:07:29 | 000,000,000 | ---D | M] (WOT) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\7wgljsqd.default\extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7}
[2012/03/29 22:04:54 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\7wgljsqd.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d}
[2012/06/11 16:31:28 | 000,012,703 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\7wgljsqd.default\searchplugins\imdb.xml
[2012/06/19 12:54:31 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/19 12:54:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012/06/19 12:54:20 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011/09/25 20:10:04 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\WINDOWS\MICROSOFT.NET\FRAMEWORK\V3.5\WINDOWS PRESENTATION FOUNDATION\DOTNETASSISTANTEXTENSION
[2012/07/18 16:58:08 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/07/18 16:58:01 | 000,001,525 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\amazon-en-GB.xml
[2012/07/18 16:58:01 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/07/18 16:58:01 | 000,000,760 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\eBay-en-GB.xml
[2012/07/18 16:58:01 | 000,001,219 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-el.xml

O1 HOSTS File: ([2011/11/11 16:22:17 | 000,000,944 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab (Java Plug-in 1.6.0_33)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer =
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D480ADE7-937E-4F2C-82D2-A6D0E7FE1FE0}: DhcpNameServer =
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Τρέχουσα αρχική σελίδα) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Ευτυχία.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Ευτυχία.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011/06/23 00:22:42 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{f44e0422-a0d7-11e0-8628-0025228dab40}\Shell - "" = AutoRun
O33 - MountPoints2\{f44e0422-a0d7-11e0-8628-0025228dab40}\Shell\AutoRun\command - "" = E:\Startme.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 180 Days ==========

[2012/08/27 21:28:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Επιφάνεια εργασίας\old
[2012/08/27 21:27:51 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\user\Recent
[2012/08/27 20:42:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Επιφάνεια εργασίας\The Avengers (2012)
[2012/08/27 20:20:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\Babylon
[2012/08/27 00:13:50 | 000,598,528 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\user\Επιφάνεια εργασίας\OTL.exe
[2012/08/24 21:27:33 | 000,352,936 | ---- | C] (Softonic) -- C:\Documents and Settings\user\Επιφάνεια εργασίας\SoftonicDownloader_for_cryptload.exe
[2012/08/22 01:13:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Application Data\WMTools Downloaded Files
[2012/08/20 10:53:02 | 000,000,000 | R--D | C] -- C:\Documents and Settings\user\Start Menu\Προγράμματα\Εργαλεία διαχείρισης
[2012/08/20 10:47:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Επιφάνεια εργασίας\erunt
[2012/08/04 15:55:54 | 000,158,552 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys
[2012/08/04 15:49:30 | 000,091,992 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys
[2012/07/21 00:49:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Application Data\SKIDROW
[2012/07/21 00:15:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Application Data\dxhr
[2012/07/21 00:15:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Application Data\28050
[2012/07/20 13:05:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Application Data\Adobe
[2012/07/20 13:05:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2012/07/20 13:05:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\Adobe
[2012/07/19 19:26:42 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012/07/19 19:26:42 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012/07/06 20:24:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Επιφάνεια εργασίας\The Offspring - Days Go By
[2012/06/25 23:13:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Τα έγγραφά μου\KONAMI
[2012/06/25 23:10:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\KONAMI
[2012/06/25 23:01:40 | 000,000,000 | ---D | C] -- C:\Program Files\KONAMI
[2012/06/25 23:01:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\KONAMI
[2012/06/20 15:34:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2012/06/19 12:54:30 | 000,476,936 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\npdeployJava1.dll
[2012/06/19 12:54:30 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012/06/19 12:54:29 | 000,157,448 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012/06/19 12:54:29 | 000,149,256 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012/06/19 12:54:29 | 000,149,256 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012/06/14 19:36:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2012/06/14 19:36:04 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2012/06/14 19:36:04 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2012/06/14 19:36:04 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2012/06/14 19:36:04 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2012/06/14 19:36:04 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2012/06/14 19:36:04 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2012/06/14 19:36:04 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2012/06/14 19:36:04 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2012/06/14 19:36:04 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2012/06/14 19:36:04 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2012/06/14 19:36:04 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2012/06/14 19:36:04 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2012/06/14 19:36:04 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2012/06/14 19:36:04 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2012/06/14 19:36:04 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2012/06/14 19:36:04 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2012/06/14 19:36:04 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2012/06/14 19:36:04 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2012/06/14 19:36:04 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2012/06/14 19:36:04 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2012/06/14 19:36:04 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2012/06/14 19:36:04 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2012/06/14 19:36:04 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2012/06/14 19:36:04 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2012/06/14 19:36:04 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2012/06/14 19:36:04 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2012/06/14 19:36:04 | 000,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2012/06/14 19:36:04 | 000,143,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2012/06/14 19:36:04 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2012/06/14 19:36:02 | 015,504,192 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2012/06/14 19:36:02 | 000,108,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2012/06/14 19:36:00 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2012/06/14 19:34:44 | 000,876,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdagenco3220103.dll
[2012/06/14 19:33:38 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012/06/14 19:21:41 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012/06/13 12:41:50 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2012/06/07 20:09:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\ESET
[2012/06/07 20:09:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ESET
[2012/06/05 16:33:00 | 000,104,792 | ---- | C] (Oracle Corporation) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys
[2012/06/03 20:57:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\vlc
[2012/06/03 18:49:17 | 000,000,000 | ---D | C] -- C:\Program Files\MonitorDriver
[2012/06/03 18:49:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Application Data\InstallShield
[2012/05/29 13:35:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\QuickTime
[2012/05/29 13:34:44 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2012/05/29 13:34:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2012/05/23 14:52:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Τα έγγραφά μου\Downloads
[2012/05/06 22:14:08 | 004,140,192 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2012/04/25 22:54:26 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/04/25 22:54:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2012/04/18 20:56:30 | 000,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2012/04/18 20:56:30 | 000,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2012/04/16 20:49:45 | 003,804,120 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\GameMon.des
[2012/04/16 20:49:34 | 000,004,774 | ---- | C] (INCA Internet Co., Ltd.) -- C:\WINDOWS\System32\npptNT2.sys
[2012/04/16 20:49:21 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\INCA Shared
[2012/04/12 16:18:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\user\Local Settings\Application Data\Unity
[2012/04/11 18:17:26 | 000,426,184 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/03/03 19:29:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Skype
[2012/03/03 19:29:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 180 Days ==========

[2012/08/27 20:44:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/08/27 20:15:56 | 000,022,636 | ---- | M] () -- C:\Documents and Settings\user\Επιφάνεια εργασίας\3365106_safe-2012-bluray-720p-ac3-x264-chd_45797.rar
[2012/08/27 00:13:54 | 000,598,528 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\user\Επιφάνεια εργασίας\OTL.exe
[2012/08/26 20:33:29 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/08/24 23:35:40 | 000,116,224 | ---- | M] () -- C:\Documents and Settings\user\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/08/24 21:27:47 | 000,352,936 | ---- | M] (Softonic) -- C:\Documents and Settings\user\Επιφάνεια εργασίας\SoftonicDownloader_for_cryptload.exe
[2012/08/21 13:31:02 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/08/18 22:18:37 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/08/18 22:18:37 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/08/15 22:58:04 | 002,337,216 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/07/18 19:33:07 | 000,000,731 | ---- | M] () -- C:\Documents and Settings\user\Επιφάνεια εργασίας\Speccy.lnk
[2012/07/16 15:21:46 | 000,045,194 | ---- | M] () -- C:\Documents and Settings\user\Application Data\room_v3.dat
[2012/07/16 13:19:36 | 000,002,269 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\Skype.lnk
[2012/07/06 16:58:54 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012/07/06 16:58:54 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browser.dll
[2012/07/04 17:05:12 | 000,139,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012/07/03 21:26:49 | 001,866,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys
[2012/07/03 21:26:49 | 001,866,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys
[2012/07/02 23:09:46 | 011,111,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2012/07/02 20:39:49 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll
[2012/07/02 20:39:49 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll
[2012/07/02 20:39:48 | 006,008,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll
[2012/07/02 20:39:48 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll
[2012/07/02 20:39:48 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll
[2012/07/02 20:39:48 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll
[2012/07/02 20:39:48 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll
[2012/07/02 20:39:48 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll
[2012/07/02 20:39:48 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll
[2012/07/02 20:39:46 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl
[2012/07/02 20:39:46 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl
[2012/07/02 20:39:46 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll
[2012/07/02 20:39:46 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2012/07/02 20:39:46 | 000,521,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2012/07/02 20:39:46 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll
[2012/07/02 20:39:46 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2012/07/02 20:39:46 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll
[2012/07/02 20:39:46 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll
[2012/07/02 20:39:46 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll
[2012/07/02 20:39:46 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll
[2012/07/02 20:39:45 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2012/07/02 20:39:44 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll
[2012/07/02 20:39:44 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll
[2012/07/02 20:39:42 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012/07/02 20:39:42 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll
[2012/07/02 20:39:42 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll
[2012/07/02 15:05:57 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe
[2012/07/02 15:05:57 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe
[2012/07/02 15:05:43 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec
[2012/06/21 17:36:11 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2012/06/19 22:29:39 | 000,000,509 | ---- | M] () -- C:\Documents and Settings\user\Application Data\com.richardwang.FluffyApp.plist
[2012/06/19 12:54:19 | 000,157,448 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2012/06/19 12:54:19 | 000,149,256 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2012/06/19 12:54:19 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2012/06/19 12:54:18 | 000,149,256 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2012/06/19 12:54:17 | 000,476,936 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\npdeployJava1.dll
[2012/06/19 12:54:17 | 000,472,840 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2012/06/18 15:18:28 | 000,011,262 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\Folder.jpg
[2012/06/18 15:18:28 | 000,011,262 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{D17BA72A-B84E-403F-8F2E-F61CC007D7F4}_Large.jpg
[2012/06/18 15:18:28 | 000,002,227 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArtSmall.jpg
[2012/06/18 15:18:28 | 000,002,227 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{D17BA72A-B84E-403F-8F2E-F61CC007D7F4}_Small.jpg
[2012/06/14 19:35:24 | 001,074,636 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/06/14 19:35:24 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/06/14 19:35:21 | 001,074,636 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/06/14 19:21:52 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012/06/14 19:20:06 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/06/13 18:35:40 | 000,610,012 | ---- | M] () -- C:\WINDOWS\System32\perfh008.dat
[2012/06/13 18:35:40 | 000,492,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/06/13 18:35:40 | 000,083,262 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/06/13 18:35:39 | 000,111,316 | ---- | M] () -- C:\WINDOWS\System32\perfc008.dat
[2012/06/11 17:00:50 | 000,000,914 | ---- | M] () -- C:\Documents and Settings\user\Επιφάνεια εργασίας\VLC Media Player.lnk
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mpr
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zyadeizbstq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zxlhpcxet
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\zwjvhcytwbc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zvybg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zvxxfsps
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zufsomdnqb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zprns
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zph
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\znubd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zmpm.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zlvlgaoro.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zkvadtmlfi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zgdzvuq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zfxbo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zerryde
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zdo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zbu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zayfbnltwb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yueiza
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yrvdebxgrzt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yruogei.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yqwnxmuqkr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yqjwaqwjrgn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ypwgam
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ypn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ypb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ynbpico.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yjbyky
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yifbtom
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yhvfljhx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yft.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yfddtyco.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yeubbz
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yeqc.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ybnso
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yajdu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xxfxt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xwolbkcl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xuyoohmb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xsdi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xrjnqaxgslz
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xrjmwls.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xratz.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xnrwoffi.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xlaoaq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xkiazoygsu.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xitroqxj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xhliavnncf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xhjvdk
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xhi.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xhepiahgu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xei.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xdu.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xdnu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xbwudob.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xabxrnwognq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wztapis.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wvpmojcpagc.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wuienx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wrfmrz
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wqnbogohpa
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wooq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wnzrlwgymia
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wnwpuad
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wmsxmgb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wmaeoulj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wltgfaapaxg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wlagsxpfnjc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wkaig
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wjd.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wio
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wgfzxqxc.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vylysjgigsp
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vydky
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vxamvnvecd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vwx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vwvpxtf.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vutlo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vtccpjjxhbl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vrt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vpymgh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vlv
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vltbvctcek
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vlhw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vky.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vhuya
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vhgdwwy.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vexcv.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\uuknvmo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\usbsjhq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\upwhfcfpq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\upqsk.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\umblkiu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ukqsipcp
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ujurc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\uilhoi.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ugh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\uaqqwmjt.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\tzhdw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\txkpazbbtc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tvumtdvg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tviuuwtwvs
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tubh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\trpcwzo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\trjhziwhqax
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tqkrkktdw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tparier
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\togl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tmksiwyo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tmiduq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tmhmpisgrjb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tjerrruiu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tgysztaa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tgp.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\teatwcjgoq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\szanch.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\swucw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\swrosmstc.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\svh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\surl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\strlohjio
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sthnpbr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\srceeuuzog
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\slvwlpnaqo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\skjqlknoa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sjfso
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sghtkpu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sfxzlgg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sbm
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rzyxt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rxlxmq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rwwmb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rwumiig
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rvitifkhda.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ruwy.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rtssxvscl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rtsquze.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\rnni.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rnixg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rnaxcorvnpm.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rmkgnn.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rlxrf
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rhrrf
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rfmfahwb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rfbddh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rckntimj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rbw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rbou.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rbc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qzegqoobxiy.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qwdspx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qvt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\quqsl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qswzofzltsi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qqqewpfdl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qqmnchoguw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qpghwlpi.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qogqdj
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qnretzig.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qncintxhpbv
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qmlr
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qldlx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qjhrojfdm
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qhyfrlwcpck
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qheefqe.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\qgqkumwr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qebywplco
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qcyfwezkrw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qcw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qbt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qbdvroefxtf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pwalonerzam
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pvsbacopgo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\puxozpwjj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ptuhkoey
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ptfcgaof.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ptcwmepfq.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\psxulyb.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\psuezqksw.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pqjjgvrcrr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pplmagu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\pnaphwmzlgp
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pgmxllhrgl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pefaimbebk.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pctk
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oylo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oxxpcqneqfk.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\otngpkqlgc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oqljnan
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\opnaypiuh
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oocihv
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\onuhfaqdr.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\omgkwcqmzh
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\olhitsu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\olcfhmx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\okbzdweogsf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ojlw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ohfmfxmgnvd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ogn.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ogknbwh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\odklrkid
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\odieozehykz
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ocduhsoaeky.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\oaap
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nybrohbe
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nvolurg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\noyqt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nlzvfpgxhuw.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\nhs
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\netcd.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ndpxrjvfik.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mzquaye
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mxdvmytw.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mvxgdkyrjxt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mvfhxic
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mrprxeehpe
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mpuqpwyjjoe.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mlfml.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mkyszmt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mimsxzkfsba
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mhymnl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mhefcltipun.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mftkul
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mcrrrdylbyb.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mbpbf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lzjqvgauzfs
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\lyi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lxjydaq.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lwohwwxa
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lvjfqnrfy.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ltm
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ltcbbxm
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lrwldsbcq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\lqrbl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lqpksm
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lptdlhqltgj
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lmti
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lmkwvtfa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lljl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lklnirnii
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\litvwn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\liif.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lhlcj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lervczxc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ldypa
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ldna.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kykkyyjuomq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kxfziwiehxe
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ktkvvqws.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kokjkgnayl.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\knkpjcuzkb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kmgbr
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kkxlvn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kjvgkvsar
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kjj
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\khzpcmbe
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kgqeevfnt.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kfzlj
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kfkegdfzsmf.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kdi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kblu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kagoeryt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kaddzumq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jxvemnjznu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jxqxva.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\junn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jtdznq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jsslx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jresfclof
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\jnpltjziixr
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jmpx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jkne
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jfilvhux
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jclas
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ixrmyzmuf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iuzsgndntd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\itshnv.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ipldozicq
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iobspad
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ikugogpknz
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ikitzfwrlzd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ihxkhtew
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\igy
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\igwyc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ifwyys
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ifvbafbi.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ifh
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iecx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\idzfxu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ibqvywo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iarssnndg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hznd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hxpuo.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\huiqk
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\htzs.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hsxps
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hqwxnfwmq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hoboh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hmzimwaq.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\hihw
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\higwf
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hhxjfatux.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hgu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hgdxppghmnp.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hfbtzuzg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hfaptb.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hbqnkzjqm.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gzswrdxw.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gxveh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gxiglgpq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gwcogj
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gswxesatox.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gswssvrjl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\grgqrvb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gksspjwk.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gjrxn.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gityrsbrb
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\giemuzl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ghgeryzg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ggjxmqh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gecrm.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gck
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gbx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gazeenlg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fyvyvw.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fxhn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fsjfcnvfjr
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fqat.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fnyj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fnwncbqssp.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fkuuzbgv.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fjpkjgod
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fhsongrcc
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fhg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fcibhhrxsu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\fas.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ezafudvoiyt.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\err.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\erauoi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\epvvbcvej
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eng
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eiwxqfsa
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ehe.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\egskehx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\egeegu
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\efwxeovrva
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\edsljcdivuy.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\edovnmlhmu.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\ecisfvuhpa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ebwmf

2012-08-27, 21:59

[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ebeblkboibi
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eafryqglx
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dxrnzku.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dqeavzgp.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dqajfj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dpfrqyaznoo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dmtlsnues.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dizbniz.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\dehidfjtpt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\daflhn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cwr
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ctsn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cqbt.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cprceg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cntaml.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cjsvjsn
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\civwzqm.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cguaohd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cfclssx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cdntf.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cbgvboorrjj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cakqt
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bzyz.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bsmobir.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bmpedqmgmxo
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\blxcchdo.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bloulzqvnrd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bfsdlrscmiv
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\azepwokxctz
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\auqopa
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aso.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\arembuqqlhl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\apluecjxljh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aotnjwxb.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\alpzadzk
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ajfm.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aihwg
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\agd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\afocvlmwd
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\adpgegoatcl
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aclcvmx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\abqj
[2012/06/11 12:40:16 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aaydghedumh
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zzmbkjttcv.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zyowns
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zxykwvw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zxntsmpkns
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zvxuplfqaiv.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zmulmsalvp.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zkgl
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zhbezzk.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\zgtn.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yzvlitevcp
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yztg.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ywjmsytb
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ywcotf.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yfguqg.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ybcwdcj.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\yacxpunyz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xwfjdkdtixu
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xogeiasqdx
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xnaaiqyn
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xivldzk
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\xibfo.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xhxj.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\xbeumyws.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wvmaql.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wtkvqxla.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wriuwbh
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wpushbesv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wpa
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wnwis
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wmcwjfwebcg.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wmcbsqz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wjjkwjxof.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wgjy
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wgekhz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wchut
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\wbyqcoru
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vuzy.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vrb
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vqzkhuu
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vlzenqzgwi
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vgkauki
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vekhfmquvd.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vedcfvtun
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\vcwbqe
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\uykjvcews
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\uvhkeoo.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\urupvqobgah
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\urfoeuqrrvx
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\umckcky
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ujupkolaxz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ujmb
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ujemlvpjgb
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\uivgphjr
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\uhgxcxne.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\udixx.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ubomomrwsdk.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tttpgilubhz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tplabizkfi
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\tnlcyha
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tixbprzs.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\tcu.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sxngztzr
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\swmx.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\srt.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sqrvkkbktxz.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sntlrnm.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\slfzi.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\skcx.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sjzadmi.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sfsz.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\sao
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rzuc.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rybqxma
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rumiqlhw.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rrbddpfknf
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rquw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rpz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rkdkyehqiv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rjzxhrd
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rilkwzwyil.xml
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\riffaw.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rifbww.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\rhw.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\refyhravcw.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qxbus.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qttwzyei.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qsopsnklrnj.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qrpcq.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qqqt.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qbvhrrhf
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qbqeurlah
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\qayekwvmsh
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\pxluctu.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pwlwjlqf
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pwa
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pqognjycvt.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ppmurgqnqi
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pjtdqi.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pjjipw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\phcioojd.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pgsh
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pffkxpns
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pepxq
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pedcjlq.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pdqrcouep
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pcpmvigyknw.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pcnbisr
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pclkwlz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pbzcnzjjax
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\pathdekgnl.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oybbndhpat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oxsta
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ousspnt.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ourtunrnnc
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\otvbczqzr.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\otorwgb.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oqipw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\opn
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oofzxmm.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oofsbkfk.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ooaomuyhvz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\olwz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\olvkvxg
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\olhdsirhbjm.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\oicryjbsxhd.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\odpeuveeirg
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\obfbsckxiuv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nysjggwyrz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nvdkhnrqwn
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ntpp.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nreadmitf
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nqxtrw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\npx
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\npuailglpt.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\nnzey
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\narceunvfsr.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mwzhlh.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mwuwz.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mvhxlyyr.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\msbwl
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mpvauzxwdz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\minowwpnhw.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mfpfkyzrxe
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mflohpswrxl.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mbufohzbd.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\mbcuyqp
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\maynwlp.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\lzuovdq
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lwcnbd.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lvzw.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lrotxpqhol
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lqya.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lnuzijew
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lnm.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lffhqjpt.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lfdwrke
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lepkgvz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\lbial
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kza
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\kragnbr.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kppamcnflm.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\knk.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kkrk.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kjvzwobzke.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kffzqte
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\kcd
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jvpytddxshm.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jvanbm.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jsgzsb
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jscxtijpp.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jhvyfmljeob
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jfuwpyqkkiu
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jes
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jeoc
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jecbuzopv.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jdlshte
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\jazdltqdat.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iyao
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ivz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\iurduaasebj
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ithugwck.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\isnvgwxvzx.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ipdnxhip
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iooy
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\imisiwl.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ilppyukvb.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ikvd.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ifhfyantlzc
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\iduxw.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ict.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hzooveshuhi
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hxokmtz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hwsfdvw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hvbzrysf
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hulemjbpzih.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\htubwk.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\htmhmor
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hrqwp
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hrfumedgw.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hqofa
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hiushfclfla.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\hbduxvmv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gwyphivwam
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gwegf.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gvsgjc
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gtkrjpla
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gsztiwpu
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gqr
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ghdvcccqxcv.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gfgr
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gdsbvd
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\gcgii.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ganwg
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fzzu.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fxwpiwys
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fsopbrrnag
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\frznpwqgbxt
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fonbotjzdzr
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fnxe.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fmlgoxxnn.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\fhagevihj.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\evpk
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eswjlbv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eqartqwjeg
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\epuzw.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\ejxebk
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\eewo.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eesejbzog.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\eebifxejokv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ecqooiby
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dzna
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\dwbwxg
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dows
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dogequdlcho
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dmuuqmc.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dkfd.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\djzobvavx.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dgppwo.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dgckkqqq.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dfswulgomz.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dfdenbmhi
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\detwvkklv.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\defhdp.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\dbsbm
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\daltzc
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cxoab
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ctxnogspj.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\cpznhdhikek
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cixpn
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\cbqynozbpo.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bzkhikmncyf
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\byoqvakieh.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bycuny
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bxqecmpfn.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bulcyfilrrd.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bsxkwl.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bpajjydv
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\betjex.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\baxqskha.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\bacdzugy
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\azuxhafgo.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ayyyufnvi.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\axxvniyw
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\auemdu.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\arsimaqa
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aqluxxpvzxz
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\alswcpnkwg
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\akophcvl
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\akjgqsepny.ini
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ajnzyssdz.dat
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\ahlkupje
[2012/06/11 12:40:15 | 000,000,028 | ---- | M] () -- C:\WINDOWS\System32\aesvs.dat
[2012/06/08 17:25:47 | 008,526,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shell32.dll
[2012/06/05 18:49:57 | 001,372,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012/06/05 18:49:57 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012/06/05 16:33:00 | 000,158,552 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\drivers\VBoxDrv.sys
[2012/06/05 16:33:00 | 000,104,792 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\drivers\VBoxNetAdp.sys
[2012/06/05 16:33:00 | 000,091,992 | ---- | M] (Oracle Corporation) -- C:\WINDOWS\System32\drivers\VBoxUSBMon.sys
[2012/06/04 07:32:35 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schannel.dll
[2012/06/02 15:19:46 | 000,024,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2012/06/02 15:19:44 | 000,016,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2012/06/02 15:19:38 | 000,329,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2012/06/02 15:19:38 | 000,329,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2012/06/02 15:19:38 | 000,219,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2012/06/02 15:19:38 | 000,210,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2012/06/02 15:19:34 | 000,097,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdm.dll
[2012/06/02 15:19:34 | 000,097,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll
[2012/06/02 15:19:34 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2012/06/02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2012/06/02 15:19:34 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2012/06/02 15:19:34 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2012/06/02 15:19:24 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2012/06/02 15:19:24 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2012/06/02 15:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2012/06/02 15:19:02 | 000,018,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2012/06/02 15:18:58 | 000,275,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2012/05/31 16:21:59 | 000,604,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[2012/05/28 21:17:05 | 000,536,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2012/05/18 15:23:34 | 000,002,287 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Skype.lnk
[2012/05/18 15:23:29 | 000,000,756 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Garena Plus.lnk
[2012/05/15 13:18:00 | 018,771,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2012/05/15 13:18:00 | 017,543,168 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2012/05/15 13:18:00 | 014,014,656 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2012/05/15 13:18:00 | 006,012,928 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2012/05/15 13:18:00 | 004,373,248 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2012/05/15 13:18:00 | 002,807,708 | ---- | M] () -- C:\WINDOWS\System32\nvdata.data
[2012/05/15 13:18:00 | 002,530,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2012/05/15 13:18:00 | 002,445,120 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2012/05/15 13:18:00 | 002,359,808 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2012/05/15 13:18:00 | 001,000,768 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2012/05/15 13:18:00 | 000,883,008 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2012/05/15 13:18:00 | 000,065,536 | ---- | M] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2012/05/15 13:18:00 | 000,010,264 | ---- | M] () -- C:\WINDOWS\System32\nvinfo.pb
[2012/05/15 12:43:36 | 000,229,376 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2012/05/15 12:43:35 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2012/05/15 12:43:35 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2012/05/15 12:43:35 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2012/05/15 12:43:35 | 000,126,976 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2012/05/15 12:43:34 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2012/05/15 12:43:34 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2012/05/15 12:43:34 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2012/05/15 12:43:34 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2012/05/15 12:43:34 | 000,266,240 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2012/05/15 12:43:34 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2012/05/15 12:43:33 | 000,335,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2012/05/15 12:43:33 | 000,286,720 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2012/05/15 12:43:33 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2012/05/15 12:43:33 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2012/05/15 12:43:33 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2012/05/15 12:43:33 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2012/05/15 12:43:32 | 000,282,624 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2012/05/15 12:43:31 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2012/05/15 12:43:31 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2012/05/15 12:43:30 | 000,262,144 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2012/05/15 12:43:30 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2012/05/15 12:43:30 | 000,253,952 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2012/05/15 12:43:29 | 000,274,432 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2012/05/15 12:43:29 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2012/05/15 12:43:28 | 000,278,528 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2012/05/15 12:43:28 | 000,270,336 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2012/05/15 12:43:28 | 000,249,856 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2012/05/15 12:40:26 | 000,054,272 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2012/05/15 12:40:02 | 015,504,192 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2012/05/15 12:40:02 | 000,143,680 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2012/05/15 12:40:01 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2012/05/14 12:22:34 | 000,348,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\localspl.dll
[2012/05/06 22:14:08 | 004,140,192 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerInstaller.exe
[2012/05/05 06:14:55 | 002,199,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012/05/05 06:14:55 | 002,076,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2012/05/05 06:14:52 | 002,155,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntoskrnl.exe
[2012/05/05 06:14:52 | 002,155,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012/05/05 06:14:52 | 002,033,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012/05/05 06:14:52 | 002,033,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ntkrnlpa.exe
[2012/04/20 21:00:25 | 000,000,664 | ---- | M] () -- C:\Documents and Settings\user\Application Data\Microsoft\Internet Explorer\Quick Launch\Steam.lnk
[2012/04/18 20:56:30 | 000,094,208 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2012/04/18 20:56:30 | 000,069,632 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2012/04/18 20:08:07 | 000,027,968 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdap32.dll
[2012/04/18 20:08:05 | 000,123,840 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvhda32.sys
[2012/04/18 20:08:02 | 000,876,864 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhdagenco3220103.dll
[2012/04/16 22:21:59 | 000,028,177 | ---- | M] () -- C:\WINDOWS\System32\wbers.dat.dmp
[2012/04/16 22:21:59 | 000,003,641 | ---- | M] () -- C:\WINDOWS\System32\wbers.dat
[2012/04/15 01:08:45 | 000,005,817 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{86CF55C3-43E6-4BCD-AFC9-B0B86522CF8F}_Large.jpg
[2012/04/15 01:08:44 | 000,001,783 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{86CF55C3-43E6-4BCD-AFC9-B0B86522CF8F}_Small.jpg
[2012/04/15 01:08:39 | 000,010,527 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{1772EC26-248E-49FB-B3FB-20100E308811}_Large.jpg
[2012/04/15 01:08:30 | 000,002,461 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{1772EC26-248E-49FB-B3FB-20100E308811}_Small.jpg
[2012/04/15 01:07:58 | 000,009,927 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{8B5FB67F-4646-4FCC-AC4A-5D4E6DB83FD3}_Large.jpg
[2012/04/15 01:07:56 | 000,002,440 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{8B5FB67F-4646-4FCC-AC4A-5D4E6DB83FD3}_Small.jpg
[2012/04/06 18:10:44 | 000,013,329 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{8B2F44A4-B071-4FF1-A8B4-E45823B16E15}_Large.jpg
[2012/04/06 18:10:40 | 000,002,911 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{8B2F44A4-B071-4FF1-A8B4-E45823B16E15}_Small.jpg
[2012/04/06 18:09:35 | 000,010,425 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{A8C08D78-571B-4D63-BCB5-16E1FFCBD0A4}_Large.jpg
[2012/04/06 18:09:30 | 000,002,617 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{A8C08D78-571B-4D63-BCB5-16E1FFCBD0A4}_Small.jpg
[2012/04/06 18:06:43 | 000,009,118 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{40D6B709-FD06-4A8F-A155-4B1DD58A7596}_Large.jpg
[2012/04/06 18:06:43 | 000,002,234 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{40D6B709-FD06-4A8F-A155-4B1DD58A7596}_Small.jpg
[2012/03/31 14:18:47 | 000,013,371 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{3434182F-EB5E-4682-AA55-2B9718EFEED5}_Large.jpg
[2012/03/31 14:18:45 | 000,003,077 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{3434182F-EB5E-4682-AA55-2B9718EFEED5}_Small.jpg
[2012/03/31 14:17:30 | 000,008,929 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{5B874A76-5995-42C2-B12D-7A57BF67302B}_Large.jpg
[2012/03/31 14:17:13 | 000,002,381 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{5B874A76-5995-42C2-B12D-7A57BF67302B}_Small.jpg
[2012/03/31 14:17:04 | 000,014,105 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{DF2076AE-AF42-4645-B162-669509B2C487}_Large.jpg
[2012/03/31 14:17:04 | 000,003,072 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{DF2076AE-AF42-4645-B162-669509B2C487}_Small.jpg
[2012/03/31 13:40:58 | 000,014,679 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{D355EA7B-52B3-45CC-AF1B-818AB2E49F8E}_Large.jpg
[2012/03/31 13:40:54 | 000,003,338 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{D355EA7B-52B3-45CC-AF1B-818AB2E49F8E}_Small.jpg
[2012/03/31 13:39:50 | 000,016,470 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{F9A27B5B-ECF7-4E9F-982C-B58FF0134886}_Large.jpg
[2012/03/31 13:39:50 | 000,003,577 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{F9A27B5B-ECF7-4E9F-982C-B58FF0134886}_Small.jpg
[2012/03/31 13:06:04 | 000,014,104 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{BE8EDE0C-BDD8-4EC8-AEB3-030A75325FB9}_Large.jpg
[2012/03/31 13:05:59 | 000,003,218 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{BE8EDE0C-BDD8-4EC8-AEB3-030A75325FB9}_Small.jpg
[2012/03/31 13:05:42 | 000,009,514 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{2CE54D13-0EED-4EFE-B88A-F9245A53299E}_Large.jpg
[2012/03/31 13:05:41 | 000,002,438 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{2CE54D13-0EED-4EFE-B88A-F9245A53299E}_Small.jpg
[2012/03/22 13:51:49 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Επιφάνεια εργασίας\CCleaner.lnk
[2012/03/19 19:19:35 | 000,010,530 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{90F8F14B-B1C7-4D1C-B7AE-AC8014C0F755}_Large.jpg
[2012/03/19 19:19:35 | 000,002,609 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{90F8F14B-B1C7-4D1C-B7AE-AC8014C0F755}_Small.jpg
[2012/03/19 19:19:04 | 000,008,852 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{3154F5EF-F00E-45B1-BCAF-D3FB210A02E5}_Large.jpg
[2012/03/19 19:19:02 | 000,002,373 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{3154F5EF-F00E-45B1-BCAF-D3FB210A02E5}_Small.jpg
[2012/03/19 19:18:15 | 000,004,858 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{B9E174C9-2F36-442C-BE29-96B15CD31075}_Large.jpg
[2012/03/19 19:17:55 | 000,001,566 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{B9E174C9-2F36-442C-BE29-96B15CD31075}_Small.jpg
[2012/03/19 18:57:26 | 000,013,930 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{48FF47DE-966A-43CB-BE2C-20AC7657FEF3}_Large.jpg
[2012/03/19 18:57:15 | 000,002,520 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{48FF47DE-966A-43CB-BE2C-20AC7657FEF3}_Small.jpg
[2012/03/19 18:56:23 | 000,008,267 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{B7121C03-F84A-461F-B415-236233AC623D}_Large.jpg
[2012/03/19 18:56:06 | 000,002,131 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{B7121C03-F84A-461F-B415-236233AC623D}_Small.jpg
[2012/03/19 18:56:03 | 000,011,111 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{F6CB1BBD-1FF1-463A-82D3-19C84A85C85E}_Large.jpg
[2012/03/19 18:55:54 | 000,002,733 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{F6CB1BBD-1FF1-463A-82D3-19C84A85C85E}_Small.jpg
[2012/03/19 18:55:32 | 000,011,364 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{07C0637F-52F8-4024-BB34-A401A54AD80B}_Large.jpg
[2012/03/19 18:55:26 | 000,002,476 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{07C0637F-52F8-4024-BB34-A401A54AD80B}_Small.jpg
[2012/03/19 18:55:06 | 000,015,483 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{55B7CE8D-20DA-481E-A004-923D0BF10FDF}_Large.jpg
[2012/03/19 18:55:06 | 000,003,276 | -HS- | M] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{55B7CE8D-20DA-481E-A004-923D0BF10FDF}_Small.jpg
[2012/03/14 08:40:04 | 000,148,504 | ---- | M] (ESET) -- C:\WINDOWS\System32\drivers\epfw.sys
[2012/03/14 08:40:04 | 000,061,936 | ---- | M] (ESET) -- C:\WINDOWS\System32\drivers\epfwtdi.sys
[2012/03/14 08:40:04 | 000,040,336 | ---- | M] (ESET) -- C:\WINDOWS\System32\drivers\epfwndis.sys
[2012/03/14 08:40:02 | 000,160,816 | ---- | M] (ESET) -- C:\WINDOWS\System32\drivers\eamon.sys
[2012/03/14 08:40:02 | 000,120,152 | ---- | M] (ESET) -- C:\WINDOWS\System32\drivers\ehdrv.sys
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/08/27 20:15:55 | 000,022,636 | ---- | C] () -- C:\Documents and Settings\user\Επιφάνεια εργασίας\3365106_safe-2012-bluray-720p-ac3-x264-chd_45797.rar
[2012/07/19 19:27:11 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Προγράμματα\Adobe Reader X.lnk
[2012/07/18 19:32:39 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\user\Επιφάνεια εργασίας\Speccy.lnk
[2012/06/18 15:18:29 | 000,011,262 | -HS- | C] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{D17BA72A-B84E-403F-8F2E-F61CC007D7F4}_Large.jpg
[2012/06/18 15:18:29 | 000,002,227 | -HS- | C] () -- C:\Documents and Settings\user\Τα έγγραφά μου\AlbumArt_{D17BA72A-B84E-403F-8F2E-F61CC007D7F4}_Small.jpg
[2012/06/14 19:21:52 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/06/14 19:21:52 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/06/14 19:21:52 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/06/14 19:21:52 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012/06/14 19:18:40 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zyadeizbstq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zxlhpcxet
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\zwjvhcytwbc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zvybg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zvxxfsps
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zufsomdnqb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zprns
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zph
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\znubd
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zmpm.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zlvlgaoro.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zkvadtmlfi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zgdzvuq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zfxbo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zerryde
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zdo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zbu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\zayfbnltwb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yueiza
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yrvdebxgrzt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yruogei.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yqwnxmuqkr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yqjwaqwjrgn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ypwgam
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ypn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ypb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ynbpico.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yjbyky
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yifbtom
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yhvfljhx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yft.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yfddtyco.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yeubbz
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yeqc.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ybnso
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\yajdu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xxfxt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xwolbkcl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xuyoohmb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xsdi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xrjnqaxgslz
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xrjmwls.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xratz.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xnrwoffi.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xlaoaq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xkiazoygsu.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xitroqxj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xhliavnncf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xhjvdk
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xhi.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xhepiahgu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xei.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xdu.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xdnu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xbwudob.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\xabxrnwognq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wztapis.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wvpmojcpagc.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wuienx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wrfmrz
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wqnbogohpa
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wooq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wnzrlwgymia
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wnwpuad
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wmsxmgb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wmaeoulj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wltgfaapaxg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wlagsxpfnjc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wkaig
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wjd.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wio
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\wgfzxqxc.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vylysjgigsp
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vydky
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vxamvnvecd
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vwx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vwvpxtf.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vutlo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vtccpjjxhbl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vrt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vpymgh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vlv
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vltbvctcek
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vlhw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vky.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vhuya
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vhgdwwy.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\vexcv.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\uuknvmo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\usbsjhq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\upwhfcfpq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\upqsk.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\umblkiu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ukqsipcp
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ujurc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\uilhoi.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ugh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\uaqqwmjt.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\tzhdw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\txkpazbbtc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tvumtdvg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tviuuwtwvs
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tubh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\trpcwzo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\trjhziwhqax
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tqkrkktdw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tparier
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\togl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tmksiwyo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tmiduq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tmhmpisgrjb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tjerrruiu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tgysztaa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\tgp.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\teatwcjgoq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\szanch.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\swucw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\swrosmstc.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\svh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\surl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\strlohjio
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\sthnpbr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\srceeuuzog
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\slvwlpnaqo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\skjqlknoa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\sjfso
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\sghtkpu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\sfxzlgg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\sbm
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rzyxt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rxlxmq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rwwmb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rwumiig
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rvitifkhda.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ruwy.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rtssxvscl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rtsquze.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\rnni.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rnixg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rnaxcorvnpm.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rmkgnn.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rlxrf
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rhrrf
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rfmfahwb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rfbddh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rckntimj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rbw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rbou.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\rbc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qzegqoobxiy.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qwdspx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qvt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\quqsl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qswzofzltsi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qqqewpfdl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qqmnchoguw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qpghwlpi.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qogqdj
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qnretzig.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qncintxhpbv
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qmlr
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qldlx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qjhrojfdm
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qhyfrlwcpck
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qheefqe.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\qgqkumwr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qebywplco
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qcyfwezkrw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qcw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qbt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\qbdvroefxtf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pwalonerzam
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pvsbacopgo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\puxozpwjj.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ptuhkoey
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ptfcgaof.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ptcwmepfq.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\psxulyb.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\psuezqksw.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pqjjgvrcrr.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pplmagu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\pnaphwmzlgp
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pgmxllhrgl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pefaimbebk.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\pctk
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\oylo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\oxxpcqneqfk.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\otngpkqlgc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\oqljnan
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\opnaypiuh
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\oocihv
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\onuhfaqdr.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\omgkwcqmzh
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\olhitsu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\olcfhmx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\okbzdweogsf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ojlw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ohfmfxmgnvd
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ogn.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ogknbwh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\odklrkid
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\odieozehykz
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ocduhsoaeky.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\oaap
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\nybrohbe
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\nvolurg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\noyqt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\nlzvfpgxhuw.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\nhs
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\netcd.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ndpxrjvfik.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mzquaye
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mxdvmytw.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mvxgdkyrjxt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mvfhxic
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mrprxeehpe
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mpuqpwyjjoe.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mpr
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mlfml.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mkyszmt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mimsxzkfsba
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mhymnl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mhefcltipun.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mftkul
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mcrrrdylbyb.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\mbpbf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lzjqvgauzfs

2012-08-27, 22:01

[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\lyi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lxjydaq.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lwohwwxa
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lvjfqnrfy.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ltm
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ltcbbxm
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lrwldsbcq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\lqrbl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lqpksm
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lptdlhqltgj
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lmti
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lmkwvtfa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lljl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lklnirnii
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\litvwn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\liif.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lhlcj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\lervczxc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ldypa
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ldna.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kykkyyjuomq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kxfziwiehxe
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ktkvvqws.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kokjkgnayl.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\knkpjcuzkb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kmgbr
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kkxlvn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kjvgkvsar
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kjj
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\khzpcmbe
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kgqeevfnt.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kfzlj
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kfkegdfzsmf.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kdi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kblu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kagoeryt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\kaddzumq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jxvemnjznu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jxqxva.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\junn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jtdznq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jsslx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jresfclof
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\jnpltjziixr
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jmpx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jkne
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jfilvhux
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\jclas
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ixrmyzmuf.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\iuzsgndntd
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\itshnv.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ipldozicq
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\iobspad
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ikugogpknz
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ikitzfwrlzd
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ihxkhtew
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\igy
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\igwyc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ifwyys
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ifvbafbi.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ifh
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\iecx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\idzfxu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ibqvywo.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\iarssnndg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hznd
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hxpuo.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\huiqk
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\htzs.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hsxps
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hqwxnfwmq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hoboh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hmzimwaq.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\hihw
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\higwf
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hhxjfatux.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hgu.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hgdxppghmnp.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hfbtzuzg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hfaptb.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\hbqnkzjqm.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gzswrdxw.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gxveh.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gxiglgpq.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gwcogj
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gswxesatox.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gswssvrjl
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\grgqrvb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gksspjwk.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gjrxn.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gityrsbrb
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\giemuzl.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ghgeryzg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ggjxmqh.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gecrm.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gck
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gbx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\gazeenlg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fyvyvw.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fxhn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fsjfcnvfjr
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fqat.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fnyj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fnwncbqssp.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fkuuzbgv.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fjpkjgod
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fhsongrcc
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fhg
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\fcibhhrxsu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\fas.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ezafudvoiyt.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\err.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\erauoi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\epvvbcvej
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\eng
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\eiwxqfsa
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ehe.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\egskehx.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\egeegu
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\efwxeovrva
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\edsljcdivuy.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\edovnmlhmu.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\ecisfvuhpa.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ebwmf
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ebeblkboibi
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\eafryqglx
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\dxrnzku.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\dqeavzgp.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\dqajfj.ini
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\dpfrqyaznoo
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\dmtlsnues.dat
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\dizbniz.xml
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\dehidfjtpt
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\daflhn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\cwr
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\ctsn
[2012/06/11 12:40:16 | 000,000,028 | ---- | C] () -- C:\WINDOWS\System32\cqbt.ini
Then click the Run Fix button at the top
Let the program run unhindered
Please save the resulting log to be posted in your next reply.

Please post the OTL log.

2012-08-28, 12:01
I checked/unchecked all the needed options for the hidden files, they were invisible at first but after running the fix they became visible again. I noticed that the options I applied were no longer checked. Should I redo the check/uncheck part again?

Here's the requested log:

========== COMMANDS ==========
Restore point Set: OTL Restore Point

OTL by OldTimer - Version log created on 08282012_115352

2012-08-28, 15:44
Hi Scarecrow,

You can rehide them now or when we are finished.

Use OTL like you did before but with this pasted in the Custom Scan/Fix window.

Please post the log.

2012-08-28, 15:54
So, I did something wrong I guess.
I pasted the above code, selected Run Fix but I got an error.
My current OTL settings are: Minimal Output, 30 Days
Purity check and LOP check are not checked.


OTL by OldTimer - Version log created on 08282012_155005

2012-08-29, 07:54
Hi Scarecrow,

Sorry, that was my fault. Copy and paste this for the fix.


2012-08-29, 12:44
Here's the log:

2012-08-30, 03:17
Hi Scarecrow,

Are you having any problems?

2012-08-30, 12:06
They are all gone!
I think the computer is clean now. I will run a scan with ESET and one more with Spybot too. Also, I got a question.
Well, may I ask how were these files created and what was their purpose?

Thank you.

2012-08-30, 15:46
Hi Scarecrow,

It looks like the files were part of a vundo infection. Vundo usually creates ad popups.

Download and save to your desktop Malwarebytes Anti-Malware (http://www.majorgeeks.com/Malwarebytes_Anti-Malware_d5756.html)

Double Click mbam-setup.exe to install the application.
Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Quick Scan", then click Scan.
The scan may take some time to finish,so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediatly.


It is recommended to disable onboard antivirus program and antispyware programs while performing scans so there are no conflicts and it will speed up scan time.
Please don't go surfing while your resident protection is disabled!
Once the scan is finished remember to re-enable your antivirus along with your antispyware programs.

Go here to run an online scannner from
ESET (http://www.eset.eu/online-scanner)

(Note: You can use Internet Explorer or FireFox for this scan. If you use FireFox you will be asked to install an additional component. Please allow this.)

Tick the box next to YES, I accept the Terms of Use.
Click Start
When asked, allow the activex control to install
Disable your Antivirus software. You can usually do this with its Notfication Tray icon near the clock
Click Start
Make sure that the option "Remove found threats" is Unchecked, and the option "Scan unwanted applications" is Checked.
Click Scan.
Wait for the scan to finish.
When the scan completes, click List of found threats
click Export to Text file and save the file to your desktop using a unique name, such as ESETScan.
Include the contents of this report in your next reply

Note - when ESET doesn't find any threats, no report will be created.

Push the back button.
Push Finish
Re-enable your Antivirus software.

Please post back with
MBAM log
ESET log if there was one

2012-08-30, 19:14
I made a quick scan with MBAM, one full scan with ESET Smart Security and one with Spybot (portable (http://portableapps.com/apps/security/spybot_portable)).
ESET online scanner wasn't online for me at that time, it was giving 404 error. Now it's back online, anyway.
Spybot and ESS didn't find anything, MBAM too.

MBAM log:
Malwarebytes Anti-Malware

Database version: v2012.08.30.03

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
user :: USER-0D3DA03F2E [administrator]

30/8/2012 4:48:10 μμ
mbam-log-2012-08-30 (16-48-10).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 199177
Time elapsed: 2 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)


2012-09-01, 17:59
Hi Scarecrow,

I think we can clean up the tools now.

From your desktop, please delete, if present
any notepads/logs that we created


* Create a new restore point

You must be logged on to an administrator account
Go to Start - All Programs - Accessories - System Tools - System Restore.
Click Create a restore point, and then click Next.
In the text box labeled Restore Point Description, type a name for this restore point
click create

* Remove old restore points

Go to Start - All Programs - Accessories - system tools.
Launch the Disk Cleanup tool and let it run.
When it finishes a box with tabs will appear, select the more options tab.
On this tab you will find a section for System Restore.
If you press the Clean Up button for that section, Windows will delete all restore points except for the most recent one.


Open OTL then click the Clean Up button. You may get prompted by your firewall that OTL wants to contact the internet - allow this. A cleanup.txt will be downloaded, a message dialog will ask you if you want to proceed with the cleanup process, click Yes. This will do some clean up tasks and delete some of the tools you have downloaded plus itself.

I suggest you keep MBAM. Keep it updated and use it regularly.

* Updates and Upgrades

Your java is out of date. Click your start button, open Control panel.
Locate the Java icon (it looks like a coffee cup)
double click it to open it
click the Update tab
Click update now
Decline any additional installs that may be offered during the install.

Next, clear the java cache

To clear the Java Plug-in cache: Click Start > Control Panel.
Double-click the Java icon in the control panel.
On the General tab, Click Settings under Temporary Internet Files.
On the Temporary Files Settings screen, Click Delete Files.
check all boxes
Click OK

* Some Recommendations and prevention tips

Basic security consists of 1 antivirus program, 1 resident antispyware program, 1 on demand antispyware program and a firewall. Just add a firewall to what you have.

* If you are behind a router Windows firewall should be fine. Otherwise a 3rd party firewall with outbound monitoring is recommended. If ESET Security includes a firewall you are ok.

If you are neither behind a router or ESET does not include a firewall

Click FIREWALL (http://www.bleepingcomputer.com/forums/tutorial60.html) for links and tutorials to good, free and paid for firewalls. (Note: Zone Alarm is becoming bloatware)

You can use Spybot to install a Custom Hosts file which will block access to known malicious sites.
1-Left-click the "Spybot - Search & Destroy" shortcut to open the program
2-Right-click an item in the list of immunizations and click "Deselect All."
3-Scroll down to the bottom of the list and click the checkbox to the left of "Global (Hosts)" under the "Windows" header.
4-Click "Immunize" on the Spybot toolbar.

-Secure your Internet Explorer

From within Internet Explorer click on the Tools menu and then click on Options.
Click once on the Security tab
Click once on the Internet icon so it becomes highlighted.
Click once on the Custom Level button.
Change the Download signed ActiveX controls to Prompt
Change the Download unsigned ActiveX controls to Disable
Change the Initialize and script ActiveX controls not marked as safe to Disable
Change the Installation of desktop items to Prompt
Change the Launching programs and files in an IFRAME to Prompt
Change the Navigate sub-frames across different domains to Prompt
When all these settings have been made, click on the OK button.
If it prompts you as to whether or not you want to save the settings, press the Yes button.
Next press the Apply button and then the OK to exit the Internet Properties page.

- Keeping your Windows up-to-date is crucial to your computer's security. Please go to the Windows Update Site (http://www.update.microsoft.com/windowsupdate/v6/default.aspx?ln=en-us)(using Internet Explorer) and download and install all critical updates on a regular basis

- Make sure you have reset Automatic Updates to your chosen optionClick your start button > Control Panel > System > Automatic Updates tab

- Keep your antivirus program updated, as well as any other security programs you have.

-More tips and programs can be found HERE (http://forums.whatthetech.com/Preventing_Malware_Tools_Practices_Safe_Computing_t98700.html)

Please post back if you have any problems.

Take care

2012-09-02, 00:15
I updated Java, deleted older versions using JavaRa and cleaned Java's temporary files. Also, I made a new system restore point and cleaned older restore points.
ESET Smart Security includes a firewall, so I will continue using this. About the IE thing, well I never use IE for browsing, I only use it to download Windows updates in case Automatic Updates fail.
Everything is running fine now, I haven't noticed any problems so far.

Finally, I want to thank you for your assistance.

2012-09-02, 20:01
Hi Scarecrow,

Good job. As for IE since you do use it occasionally you may as well make it as secure as possible.

You're welcome. Take care.

2012-09-05, 16:05
Since this issue appears to be resolved ... this Topic has been closed.