[code] WinPFind35 logfile created on: 1/28/2008 6:56:46 AM WinPFind35U Version Beta39 Folder = C:\Documents and Settings\alex\Desktop\WinPFind35u Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.11) 2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free 4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092; %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 283.04 Gb Total Space | 17.48 Gb Free Space | 6.17% Space Free | Partition Type: NTFS D: Drive not present or media not loaded Drive E: | 15.04 Gb Total Space | 14.97 Gb Free Space | 99.58% Space Free | Partition Type: NTFS F: Drive not present or media not loaded Computer Name: AP-1578028F8D24 Current User Name: alex Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user [Processes - Non-Microsoft Only] aswupdsv.exe -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 17272 bytes | Modified Date = 12/4/2007 9:36:33 AM | Attr = ] ashserv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 140664 bytes | Modified Date = 12/4/2007 8:00:16 AM | Attr = ] applemobiledeviceservice.exe -> %CommonProgramFiles%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> Apple, Inc. [Ver = 1, 14, 0, 0 | Size = 110592 bytes | Modified Date = 10/31/2007 2:09:16 PM | Attr = ] nsctop.exe -> %ProgramFiles%\Symantec\Symantec System Center\NscTop.exe -> Symantec Corporation [Ver = 10.1.5.5002 | Size = 939200 bytes | Modified Date = 11/16/2006 4:54:32 PM | Attr = ] ntuneservice.exe -> %ProgramFiles%\NVIDIA Corporation\nTune\nTuneService.exe -> NVIDIA [Ver = 5.05.54 | Size = 131072 bytes | Modified Date = 9/4/2007 7:25:44 PM | Attr = ] nvsvc32.exe -> %System32%\nvsvc32.exe -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 155716 bytes | Modified Date = 12/5/2007 1:41:00 AM | Attr = ] reportersvc.exe -> %CommonProgramFiles%\Symantec Shared\Reporting Agents\Win32\ReporterSvc.exe -> Symantec Corporation [Ver = 1.0.207.0 | Size = 1324808 bytes | Modified Date = 9/27/2006 2:17:54 PM | Attr = ] nmsrvc.exe -> %CommonProgramFiles%\Pure Networks Shared\Platform\nmsrvc.exe -> Pure Networks, Inc. [Ver = 4.5.7274.0 | Size = 451896 bytes | Modified Date = 10/1/2007 8:08:18 PM | Attr = ] ashmaisv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 247160 bytes | Modified Date = 12/4/2007 7:59:53 AM | Attr = ] ashwebsv.exe -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 345464 bytes | Modified Date = 12/4/2007 7:59:01 AM | Attr = ] nmctxth.exe -> %CommonProgramFiles%\Pure Networks Shared\Platform\nmctxth.exe -> Pure Networks, Inc. [Ver = 4.5.7274.0 | Size = 451896 bytes | Modified Date = 10/1/2007 8:08:18 PM | Attr = ] nmapp.exe -> %ProgramFiles%\Pure Networks\Network Magic\nmapp.exe -> Pure Networks, Inc. [Ver = 4.5.7228.0 | Size = 451896 bytes | Modified Date = 10/29/2007 10:04:44 PM | Attr = ] daemon.exe -> %ProgramFiles%\DAEMON Tools\daemon.exe -> DT Soft Ltd. [Ver = 4.10.0.0 | Size = 167368 bytes | Modified Date = 12/6/2007 7:06:29 AM | Attr = ] pg2.exe -> %ProgramFiles%\PeerGuardian2\pg2.exe -> Methlabs [Ver = 1, 0, 6, 4 | Size = 1421824 bytes | Modified Date = 9/18/2005 6:40:42 PM | Attr = ] firefox.exe -> %ProgramFiles%\Mozilla Firefox 3 Beta 2\firefox.exe -> Mozilla Corporation [Ver = 1.9b2 | Size = 89600 bytes | Modified Date = 12/12/2007 4:09:56 AM | Attr = ] mirc.exe -> %ProgramFiles%\mIRC\mirc.exe -> mIRC Co. Ltd. [Ver = 6.17 | Size = 2023424 bytes | Modified Date = 12/10/2007 10:54:22 PM | Attr = ] pidgin.exe -> %ProgramFiles%\Pidgin\pidgin.exe -> The Pidgin developer community [Ver = 2.3.1 | Size = 44658 bytes | Modified Date = 12/7/2007 1:53:28 PM | Attr = ] azureus.exe -> %ProgramFiles%\Azureus\Azureus.exe -> Azureus Inc [Ver = 3.0.0.0 | Size = 254976 bytes | Modified Date = 12/3/2007 7:28:42 PM | Attr = ] winpfind35u.exe -> %UserDesktop%\WinPFind35u\WinPFind35U.exe -> OldTimer Tools [Ver = 1.0.0.0 | Size = 308224 bytes | Modified Date = 1/28/2008 12:03:42 AM | Attr = ] [Win32 Services - Non-Microsoft Only] (Adobe LM Service) Adobe LM Service [Win32_Own | On_Demand | Stopped] -> %CommonProgramFiles%\Adobe Systems Shared\Service\Adobelmsvc.exe -> Adobe Systems [Ver = 2.67.010 | Size = 72704 bytes | Modified Date = 12/26/2007 10:34:47 PM | Attr = ] (Apple Mobile Device) Apple Mobile Device [Win32_Own | Auto | Running] -> %CommonProgramFiles%\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -> Apple, Inc. [Ver = 1, 14, 0, 0 | Size = 110592 bytes | Modified Date = 10/31/2007 2:09:16 PM | Attr = ] (aswUpdSv) avast! iAVS4 Control Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\aswUpdSv.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 17272 bytes | Modified Date = 12/4/2007 9:36:33 AM | Attr = ] (avast! Antivirus) avast! Antivirus [Win32_Own | Auto | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashServ.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 140664 bytes | Modified Date = 12/4/2007 8:00:16 AM | Attr = ] (avast! Mail Scanner) avast! Mail Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashMaiSv.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 247160 bytes | Modified Date = 12/4/2007 7:59:53 AM | Attr = ] (avast! Web Scanner) avast! Web Scanner [Win32_Own | On_Demand | Running] -> %ProgramFiles%\Alwil Software\Avast4\ashWebSv.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 345464 bytes | Modified Date = 12/4/2007 7:59:01 AM | Attr = ] (dmadmin) Logical Disk Manager Administrative Service [Win32_Shared | On_Demand | Stopped] -> %System32%\dmadmin.exe -> Microsoft Corp., Veritas Software [Ver = 2600.2180.503.0 | Size = 224768 bytes | Modified Date = 8/3/2004 6:56:50 PM | Attr = ] (iPod Service) iPod Service [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\iPod\bin\iPodService.exe -> Apple Inc. [Ver = 7.6.0.29 | Size = 504104 bytes | Modified Date = 1/15/2008 3:22:44 AM | Attr = ] (nmraapache) Pure Networks Net2Go Service [Win32_Own | On_Demand | Stopped] -> %ProgramFiles%\Pure Networks\Network Magic\WebServer\bin\nmraapache.exe -> Pure Networks, Inc. [Ver = 2.0.54 | Size = 12800 bytes | Modified Date = 10/29/2007 10:03:06 PM | Attr = ] (nmservice) Pure Networks Platform Service [Win32_Own | Auto | Running] -> %CommonProgramFiles%\Pure Networks Shared\Platform\nmsrvc.exe -> Pure Networks, Inc. [Ver = 4.5.7274.0 | Size = 451896 bytes | Modified Date = 10/1/2007 8:08:18 PM | Attr = ] (NSCTOP) Symantec System Center Discovery Service [Win32_Own | Auto | Running] -> %ProgramFiles%\Symantec\Symantec System Center\NscTop.exe -> Symantec Corporation [Ver = 10.1.5.5002 | Size = 939200 bytes | Modified Date = 11/16/2006 4:54:32 PM | Attr = ] (nTuneService) nTune Service [Win32_Own | Auto | Running] -> %ProgramFiles%\NVIDIA Corporation\nTune\nTuneService.exe -> NVIDIA [Ver = 5.05.54 | Size = 131072 bytes | Modified Date = 9/4/2007 7:25:44 PM | Attr = ] (NVSvc) NVIDIA Display Driver Service [Win32_Own | Auto | Running] -> %System32%\nvsvc32.exe -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 155716 bytes | Modified Date = 12/5/2007 1:41:00 AM | Attr = ] (Reporting) Reporting Agents [Win32_Own | Auto | Running] -> %CommonProgramFiles%\Symantec Shared\Reporting Agents\Win32\ReporterSvc.exe -> Symantec Corporation [Ver = 1.0.207.0 | Size = 1324808 bytes | Modified Date = 9/27/2006 2:17:54 PM | Attr = ] [Registry - Non-Microsoft Only] < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> nmapp -> %ProgramFiles%\Pure Networks\Network Magic\nmapp.exe -> Pure Networks, Inc. [Ver = 4.5.7228.0 | Size = 451896 bytes | Modified Date = 10/29/2007 10:04:44 PM | Attr = ] nmctxth -> %CommonProgramFiles%\Pure Networks Shared\Platform\nmctxth.exe -> Pure Networks, Inc. [Ver = 4.5.7274.0 | Size = 451896 bytes | Modified Date = 10/1/2007 8:08:18 PM | Attr = ] NvCplDaemon -> %System32%\nvcpl.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 8523776 bytes | Modified Date = 12/5/2007 1:41:00 AM | Attr = ] < OptionalComponents [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\ -> IMAIL-> Installed = 1 -> MAPI-> Installed = 1 -> MSFS-> Installed = 1 -> < Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> DAEMON Tools -> %ProgramFiles%\DAEMON Tools\daemon.exe -> DT Soft Ltd. [Ver = 4.10.0.0 | Size = 167368 bytes | Modified Date = 12/6/2007 7:06:29 AM | Attr = ] NVIDIA nTune -> %ProgramFiles%\NVIDIA Corporation\nTune\nTuneCmd.exe -> NVIDIA [Ver = 5.05.54 | Size = 81920 bytes | Modified Date = 9/4/2007 7:25:38 PM | Attr = ] PeerGuardian -> %ProgramFiles%\PeerGuardian2\pg2.exe -> Methlabs [Ver = 1, 0, 6, 4 | Size = 1421824 bytes | Modified Date = 9/18/2005 6:40:42 PM | Attr = ] < alex Startup Folder > -> C:\Documents and Settings\alex\Start Menu\Programs\Startup -> < All Users Startup Folder > -> C:\Documents and Settings\All Users\Start Menu\Programs\Startup -> < SecurityProviders [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\\SecurityProviders -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < Winlogon settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> < CurrentVersion Policy Settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveAutoRun -> 67108863 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 255 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{BDEADF00-C265-11D0-BCED-00A0C90AB50F} -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{6DFD7C5C-2451-11d3-A299-00C04F8EF6AF} -> 1073741857 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\NonEnum\\{0DF44EAA-FF21-4412-828E-260A8728E7F1} -> 32 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\dontdisplaylastusername -> 0 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticecaption -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\legalnoticetext -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\shutdownwithoutlogon -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\\undockwithoutlogon -> 1 -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Uninstall\ -> -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\WindowsUpdate\ -> -> < CurrentVersion Policy Settings [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ActiveDesktop\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Associations\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\PlacesBar\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\PlacesBar\\Place0 -> ::{C55C499D-3518-44a1-998E-796AC5FC989D} -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\PlacesBar\\Place1 -> 8 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\PlacesBar\\Place2 -> 0 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\PlacesBar\\Place3 -> 5 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\ComDlg32\PlacesBar\\Place4 -> 17 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\\NoDriveTypeAutoRun -> 145 -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\system\ -> -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\WindowsUpdate\ -> -> < HOSTS File > (27 bytes) -> C:\WINDOWS\System32\drivers\etc\Hosts -> < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Main\\Default_Page_URL -> http://go.microsoft.com/fwlink/?LinkId=69157 -> HKEY_LOCAL_MACHINE\: Main\\Default_Search_URL -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\Local Page -> %SystemRoot%\system32\blank.htm -> HKEY_LOCAL_MACHINE\: Main\\Search Page -> http://go.microsoft.com/fwlink/?LinkId=54896 -> HKEY_LOCAL_MACHINE\: Main\\Start Page -> http://go.microsoft.com/fwlink/?LinkId=69157 -> HKEY_LOCAL_MACHINE\: Search\\CustomizeSearch -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm -> HKEY_LOCAL_MACHINE\: Search\\SearchAssistant -> http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm -> < Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> HKEY_CURRENT_USER\: Main\\Local Page -> C:\WINDOWS\system32\blank.htm -> HKEY_CURRENT_USER\: Main\\Search Page -> http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch -> HKEY_CURRENT_USER\: Main\\Start Page -> http://www.daemonsearch.com/ -> HKEY_CURRENT_USER\: URLSearchHooks\\{EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] HKEY_CURRENT_USER\: ProxyEnable -> 0 -> < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4139 domain(s) found. -> 32 domain(s) and sub-domain(s) not assigned to a zone. < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 77 range(s) found. -> < Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 4138 domain(s) found. -> 32 domain(s) and sub-domain(s) not assigned to a zone. < Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 77 range(s) found. -> < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {02478D38-C3F9-4EFB-9B51-7695ECA05670} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar Helper] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} [HKEY_LOCAL_MACHINE] -> %CommonProgramFiles%\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [Adobe PDF Reader Link Helper] -> Adobe Systems Incorporated [Ver = 8.0.0.2006102200 | Size = 62080 bytes | Modified Date = 10/22/2006 11:08:42 PM | Attr = ] < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> {EF99BD32-C1FB-11D2-892F-0090271D4F88} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Yahoo!\Companion\Installs\cpn\yt.dll [Yahoo! Toolbar] -> Yahoo! Inc. [Ver = 2006, 10, 26, 1 | Size = 440384 bytes | Modified Date = 10/26/2006 10:28:40 AM | Attr = ] < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} [HKEY_LOCAL_MACHINE] -> %ProgramFiles%\Java\jre1.6.0_03\bin\npjpi160_03.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 132496 bytes | Modified Date = 9/25/2007 1:11:34 AM | Attr = ] {08B0E5C0-4FCB-11CF-AAA5-00401C608501}:{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} [HKEY_CURRENT_USER] -> %ProgramFiles%\Java\jre1.6.0_03\bin\ssv.dll [Sun Java Console] -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 501136 bytes | Modified Date = 9/25/2007 1:11:33 AM | Attr = ] < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Microsoft ActiveX Gallery -> PluginsPage -> http://activex.microsoft.com/controls/find.asp?ext=%s&mime=%s -> < DNS Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {044E7349-2BE5-439C-9C93-9662038F02F7} -> (3Com 3C905TX-based Ethernet Adapter (Generic)) -> {213445BA-F902-4839-990D-F34554CD4656} -> (1394 Net Adapter) -> {D81CAD7A-3724-431A-909F-98B450D6D4BD} -> (1394 Net Adapter) -> {DD941EEE-E7E6-43C3-8396-FCD85FA334B0} -> (Intel(R) 82566DC-2 Gigabit Network Connection) -> < Protocol Handlers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\ -> msdaipp: [HKEY_LOCAL_MACHINE] -> Reg Error: Key does not exist or could not be opened.[Reg Error: Value does not exist or could not be read.] -> File not found pure-go:{4746C79A-2042-4332-8650-48966E44ABA8} [HKEY_LOCAL_MACHINE] -> %CommonProgramFiles%\Pure Networks Shared\Platform\puresp3.dll[CPureGoProtoInfo Object] -> Pure Networks, Inc. [Ver = 4.5.7324.0 | Size = 140600 bytes | Modified Date = 11/20/2007 2:18:32 PM | Attr = ] < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75}[HKEY_LOCAL_MACHINE] -> http://www.kaspersky.com/kos/eng/partner/default/kavwebscan_unicode.cab[CKAVWebScan Object] -> {30528230-99f7-4bb4-88d8-fa1d4f56a2ab}[HKEY_LOCAL_MACHINE] -> C:\Program Files\Yahoo!\Common\yinsthelper.dll[YInstStarter Class] -> {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab[Java Plug-in 1.6.0_03] -> {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}[HKEY_LOCAL_MACHINE] -> http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab[Java Plug-in 1.6.0_03] -> [Registry - Additional Scans - Non-Microsoft Only] < Disabled MSConfig Folder Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\ -> C:^Documents and Settings^alex^Start Menu^Programs^Startup^Adobe Gamma.lnk -> %CommonProgramFiles%\Adobe\Calibration\Adobe Gamma Loader.exe -> Adobe Systems, Inc. [Ver = 1, 0, 0, 1 | Size = 113664 bytes | Modified Date = 3/16/2005 7:16:50 PM | Attr = ] < Disabled MSConfig Registry Items [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\ -> Adobe Reader Speed Launcher hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> %ProgramFiles%\Adobe\Reader 8.0\Reader\reader_sl.exe -> Adobe Systems Incorporated [Ver = 8.0.0.0 | Size = 39792 bytes | Modified Date = 10/10/2007 7:51:56 PM | Attr = ] AdVantage hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> %ProgramFiles%\AdVantage\AdVantage.exe -> File not found Comrade.exe hkey=HKCU key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> %ProgramFiles%\GameSpy\Comrade\Comrade.exe -> File not found iTunesHelper hkey=HKLM key=SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> %ProgramFiles%\iTunes\iTunesHelper.exe -> Apple Inc. [Ver = 7.6.0.29 | Size = 267048 bytes | Modified Date = 1/15/2008 3:22:56 AM | Attr = ] [Files/Folders - Created Within 90 days] AUTOEXEC.BAT -> %SystemDrive%\AUTOEXEC.BAT -> [Ver = | Size = 0 bytes | Created Date = 12/10/2007 10:36:49 PM | Attr = ] Backup -> %SystemDrive%\Backup -> [Folder | Created Date = 12/14/2007 10:58:33 PM | Attr = ] boot.ini -> %SystemDrive%\boot.ini -> [Ver = | Size = 211 bytes | Created Date = 12/10/2007 5:17:26 PM | Attr = HS] CONFIG.SYS -> %SystemDrive%\CONFIG.SYS -> [Ver = | Size = 0 bytes | Created Date = 12/10/2007 10:36:49 PM | Attr = ] Deckard -> %SystemDrive%\Deckard -> [Folder | Created Date = 1/27/2008 7:33:43 PM | Attr = ] Documents and Settings -> %SystemDrive%\Documents and Settings -> [Folder | Created Date = 12/10/2007 5:17:59 PM | Attr = ] Intel -> %SystemDrive%\Intel -> [Folder | Created Date = 12/10/2007 11:11:17 PM | Attr = ] IO.SYS -> %SystemDrive%\IO.SYS -> [Ver = | Size = 0 bytes | Created Date = 12/10/2007 10:36:49 PM | Attr = RHS] MSDOS.SYS -> %SystemDrive%\MSDOS.SYS -> [Ver = | Size = 0 bytes | Created Date = 12/10/2007 10:36:49 PM | Attr = RHS] NVIDIA -> %SystemDrive%\NVIDIA -> [Folder | Created Date = 12/23/2007 11:26:53 AM | Attr = ] Program Files -> %ProgramFiles% -> [Folder | Created Date = 12/10/2007 5:19:00 PM | Attr = R ] RECYCLER -> %SystemDrive%\RECYCLER -> [Folder | Created Date = 12/12/2007 11:26:50 PM | Attr = HS] System Volume Information -> %SystemDrive%\System Volume Information -> [Folder | Created Date = 12/10/2007 5:17:59 PM | Attr = HS] WINDOWS -> %SystemRoot% -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] big5.nls -> %System32%\dllcache\big5.nls -> [Ver = | Size = 66728 bytes | Created Date = 12/10/2007 10:37:23 PM | Attr = ] bopomofo.nls -> %System32%\dllcache\bopomofo.nls -> [Ver = | Size = 82172 bytes | Created Date = 12/10/2007 10:37:23 PM | Attr = ] cap7146.sys -> %System32%\dllcache\cap7146.sys -> Philips Semiconductors GmbH [Ver = 1.00 (XPClient.010817-1148) | Size = 54528 bytes | Created Date = 12/10/2007 10:37:28 PM | Attr = ] chtskf.dll -> %System32%\dllcache\chtskf.dll -> [Ver = | Size = 173568 bytes | Created Date = 12/10/2007 10:37:30 PM | Attr = ] c_10001.nls -> %System32%\dllcache\c_10001.nls -> [Ver = | Size = 162850 bytes | Created Date = 12/10/2007 10:37:23 PM | Attr = ] c_10002.nls -> %System32%\dllcache\c_10002.nls -> [Ver = | Size = 195618 bytes | Created Date = 12/10/2007 10:37:23 PM | Attr = ] c_10003.nls -> %System32%\dllcache\c_10003.nls -> [Ver = | Size = 177698 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_10004.nls -> %System32%\dllcache\c_10004.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_10005.nls -> %System32%\dllcache\c_10005.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_10006.nls -> %System32%\dllcache\c_10006.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_10007.nls -> %System32%\dllcache\c_10007.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:56 PM | Attr = ] c_10008.nls -> %System32%\dllcache\c_10008.nls -> [Ver = | Size = 173602 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_10010.nls -> %System32%\dllcache\c_10010.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_10017.nls -> %System32%\dllcache\c_10017.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:56 PM | Attr = ] c_10021.nls -> %System32%\dllcache\c_10021.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_10029.nls -> %System32%\dllcache\c_10029.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_10081.nls -> %System32%\dllcache\c_10081.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:58 PM | Attr = ] c_10082.nls -> %System32%\dllcache\c_10082.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_1047.nls -> %System32%\dllcache\c_1047.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1140.nls -> %System32%\dllcache\c_1140.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1141.nls -> %System32%\dllcache\c_1141.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1142.nls -> %System32%\dllcache\c_1142.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1143.nls -> %System32%\dllcache\c_1143.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1144.nls -> %System32%\dllcache\c_1144.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1145.nls -> %System32%\dllcache\c_1145.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1146.nls -> %System32%\dllcache\c_1146.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1147.nls -> %System32%\dllcache\c_1147.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1148.nls -> %System32%\dllcache\c_1148.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:24 PM | Attr = ] c_1149.nls -> %System32%\dllcache\c_1149.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_1361.nls -> %System32%\dllcache\c_1361.nls -> [Ver = | Size = 189986 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20000.nls -> %System32%\dllcache\c_20000.nls -> [Ver = | Size = 180258 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20001.nls -> %System32%\dllcache\c_20001.nls -> [Ver = | Size = 186402 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20002.nls -> %System32%\dllcache\c_20002.nls -> [Ver = | Size = 173602 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20003.nls -> %System32%\dllcache\c_20003.nls -> [Ver = | Size = 185378 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20004.nls -> %System32%\dllcache\c_20004.nls -> [Ver = | Size = 180258 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20005.nls -> %System32%\dllcache\c_20005.nls -> [Ver = | Size = 187938 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20105.nls -> %System32%\dllcache\c_20105.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20106.nls -> %System32%\dllcache\c_20106.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20107.nls -> %System32%\dllcache\c_20107.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20108.nls -> %System32%\dllcache\c_20108.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:25 PM | Attr = ] c_20127.nls -> %System32%\dllcache\c_20127.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] c_20269.nls -> %System32%\dllcache\c_20269.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20273.nls -> %System32%\dllcache\c_20273.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20277.nls -> %System32%\dllcache\c_20277.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20278.nls -> %System32%\dllcache\c_20278.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20280.nls -> %System32%\dllcache\c_20280.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20284.nls -> %System32%\dllcache\c_20284.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20285.nls -> %System32%\dllcache\c_20285.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20290.nls -> %System32%\dllcache\c_20290.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20297.nls -> %System32%\dllcache\c_20297.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20420.nls -> %System32%\dllcache\c_20420.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20423.nls -> %System32%\dllcache\c_20423.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20424.nls -> %System32%\dllcache\c_20424.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20833.nls -> %System32%\dllcache\c_20833.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20838.nls -> %System32%\dllcache\c_20838.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20871.nls -> %System32%\dllcache\c_20871.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20880.nls -> %System32%\dllcache\c_20880.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:26 PM | Attr = ] c_20924.nls -> %System32%\dllcache\c_20924.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_20932.nls -> %System32%\dllcache\c_20932.nls -> [Ver = | Size = 180770 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_20936.nls -> %System32%\dllcache\c_20936.nls -> [Ver = | Size = 173602 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_20949.nls -> %System32%\dllcache\c_20949.nls -> [Ver = | Size = 177698 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_21025.nls -> %System32%\dllcache\c_21025.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_21027.nls -> %System32%\dllcache\c_21027.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_28594.nls -> %System32%\dllcache\c_28594.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:54 PM | Attr = ] c_28595.nls -> %System32%\dllcache\c_28595.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:56 PM | Attr = ] c_28596.nls -> %System32%\dllcache\c_28596.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_28597.nls -> %System32%\dllcache\c_28597.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_28599.nls -> %System32%\dllcache\c_28599.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:58 PM | Attr = ] c_28603.nls -> %System32%\dllcache\c_28603.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:59 PM | Attr = ] c_708.nls -> %System32%\dllcache\c_708.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_720.nls -> %System32%\dllcache\c_720.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_737.nls -> %System32%\dllcache\c_737.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_852.nls -> %System32%\dllcache\c_852.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_855.nls -> %System32%\dllcache\c_855.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:54 PM | Attr = ] c_857.nls -> %System32%\dllcache\c_857.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:58 PM | Attr = ] c_858.nls -> %System32%\dllcache\c_858.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_862.nls -> %System32%\dllcache\c_862.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_864.nls -> %System32%\dllcache\c_864.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_866.nls -> %System32%\dllcache\c_866.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:54 PM | Attr = ] c_869.nls -> %System32%\dllcache\c_869.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_870.nls -> %System32%\dllcache\c_870.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 10:37:27 PM | Attr = ] c_875.nls -> %System32%\dllcache\c_875.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] dgrpsetu.dll -> %System32%\dllcache\dgrpsetu.dll -> Digi International, Inc. [Ver = 2.3.7 | Size = 176157 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] dgsetup.dll -> %System32%\dllcache\dgsetup.dll -> Digi International [Ver = v3.7.3.0 | Size = 85020 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] eqnclass.dll -> %System32%\dllcache\eqnclass.dll -> Equinox Systems Inc. [Ver = 5.0u(58) | Size = 103424 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] esucmd.dll -> %System32%\dllcache\esucmd.dll -> SEIKO EPSON CORP. [Ver = 1.00 | Size = 31744 bytes | Created Date = 12/10/2007 10:37:34 PM | Attr = ] esuimgd.dll -> %System32%\dllcache\esuimgd.dll -> SEIKO EPSON CORP. [Ver = 1.00 | Size = 57856 bytes | Created Date = 12/10/2007 10:37:35 PM | Attr = ] esunid.dll -> %System32%\dllcache\esunid.dll -> SEIKO EPSON CORP. [Ver = 1.00 | Size = 45056 bytes | Created Date = 12/10/2007 10:37:35 PM | Attr = ] FP4.CAT -> %System32%\dllcache\FP4.CAT -> [Ver = | Size = 31281 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] fpencode.dll -> %System32%\dllcache\fpencode.dll -> [Ver = | Size = 94208 bytes | Created Date = 12/10/2007 10:37:36 PM | Attr = ] hanja.lex -> %System32%\dllcache\hanja.lex -> [Ver = | Size = 108827 bytes | Created Date = 12/10/2007 10:37:39 PM | Attr = ] HPCRDP.CAT -> %System32%\dllcache\HPCRDP.CAT -> [Ver = | Size = 13472 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] htrn_jis.dll -> %System32%\dllcache\htrn_jis.dll -> Hilgraeve, Inc. [Ver = 5.1.2600.0 | Size = 13312 bytes | Created Date = 12/10/2007 10:33:26 PM | Attr = ] hwxjpn.dll -> %System32%\dllcache\hwxjpn.dll -> [Ver = | Size = 13463552 bytes | Created Date = 12/10/2007 10:37:42 PM | Attr = ] IASNT4.CAT -> %System32%\dllcache\IASNT4.CAT -> [Ver = | Size = 8574 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] imekr.lex -> %System32%\dllcache\imekr.lex -> [Ver = | Size = 134339 bytes | Created Date = 12/10/2007 10:37:49 PM | Attr = ] imjpinst.exe -> %System32%\dllcache\imjpinst.exe -> [Ver = | Size = 196665 bytes | Created Date = 12/10/2007 10:37:50 PM | Attr = ] IMS.CAT -> %System32%\dllcache\IMS.CAT -> [Ver = | Size = 13753 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] imscinst.exe -> %System32%\dllcache\imscinst.exe -> [Ver = | Size = 59392 bytes | Created Date = 12/10/2007 10:37:51 PM | Attr = ] isrdbg32.dll -> %System32%\dllcache\isrdbg32.dll -> Intel Corporation [Ver = 0.0 | Size = 32768 bytes | Created Date = 12/10/2007 10:34:43 PM | Attr = ] korwbrkr.lex -> %System32%\dllcache\korwbrkr.lex -> [Ver = | Size = 1158818 bytes | Created Date = 12/10/2007 10:37:56 PM | Attr = ] ksc.nls -> %System32%\dllcache\ksc.nls -> [Ver = | Size = 47066 bytes | Created Date = 12/10/2007 10:37:56 PM | Attr = ] ltts1033.lxa -> %System32%\dllcache\ltts1033.lxa -> [Ver = | Size = 643717 bytes | Created Date = 12/10/2007 5:19:00 PM | Attr = ] MAPIMIG.CAT -> %System32%\dllcache\MAPIMIG.CAT -> [Ver = | Size = 399645 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] mediactr.cat -> %System32%\dllcache\mediactr.cat -> [Ver = | Size = 31965 bytes | Created Date = 12/10/2007 5:18:33 PM | Attr = ] mplayer2.exe -> %System32%\dllcache\mplayer2.exe -> [Ver = | Size = 4639 bytes | Created Date = 12/10/2007 10:34:53 PM | Attr = ] msinfo.dll -> %System32%\dllcache\msinfo.dll -> [Ver = 7, 0, 0, 0 | Size = 376320 bytes | Created Date = 12/10/2007 10:34:45 PM | Attr = ] MSMSGS.CAT -> %System32%\dllcache\MSMSGS.CAT -> [Ver = | Size = 9581 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] msn7.cat -> %System32%\dllcache\msn7.cat -> [Ver = | Size = 24209 bytes | Created Date = 12/10/2007 5:18:33 PM | Attr = ] msn9.cat -> %System32%\dllcache\msn9.cat -> [Ver = | Size = 11651 bytes | Created Date = 12/10/2007 5:18:33 PM | Attr = ] MSTSWEB.CAT -> %System32%\dllcache\MSTSWEB.CAT -> [Ver = | Size = 7245 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] MW770.CAT -> %System32%\dllcache\MW770.CAT -> [Ver = | Size = 37484 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] netfx.cat -> %System32%\dllcache\netfx.cat -> [Ver = | Size = 141702 bytes | Created Date = 12/10/2007 5:18:33 PM | Attr = ] nls302en.lex -> %System32%\dllcache\nls302en.lex -> [Ver = | Size = 4399505 bytes | Created Date = 12/10/2007 10:35:28 PM | Attr = ] NT5.CAT -> %System32%\dllcache\NT5.CAT -> [Ver = | Size = 2012670 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] NT5IIS.CAT -> %System32%\dllcache\NT5IIS.CAT -> [Ver = | Size = 797189 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] NT5INF.CAT -> %System32%\dllcache\NT5INF.CAT -> [Ver = | Size = 502724 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] NTPRINT.CAT -> %System32%\dllcache\NTPRINT.CAT -> [Ver = | Size = 1086058 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] nv4_mini.sys -> %System32%\dllcache\nv4_mini.sys -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 7435392 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] OEMBIOS.CAT -> %System32%\dllcache\OEMBIOS.CAT -> [Ver = | Size = 7382 bytes | Created Date = 12/10/2007 5:18:33 PM | Attr = ] pinball.exe -> %System32%\dllcache\pinball.exe -> Cinematronics [Ver = 5.1.2600.2180 (xpsp_sp2_rtm.040803-2158) | Size = 281088 bytes | Created Date = 12/10/2007 10:33:07 PM | Attr = ] pintlcsa.dll -> %System32%\dllcache\pintlcsa.dll -> [Ver = | Size = 175104 bytes | Created Date = 12/10/2007 10:38:05 PM | Attr = ] prc.nls -> %System32%\dllcache\prc.nls -> [Ver = | Size = 83748 bytes | Created Date = 12/10/2007 10:38:06 PM | Attr = ] prcp.nls -> %System32%\dllcache\prcp.nls -> [Ver = | Size = 83748 bytes | Created Date = 12/10/2007 10:38:06 PM | Attr = ] r1033tts.lxa -> %System32%\dllcache\r1033tts.lxa -> [Ver = | Size = 605050 bytes | Created Date = 12/10/2007 5:19:00 PM | Attr = ] rw330ext.dll -> %System32%\dllcache\rw330ext.dll -> Ricoh Co., Ltd. [Ver = 5, 0, 2419, 1 | Size = 26624 bytes | Created Date = 12/10/2007 10:38:09 PM | Attr = ] rwia001.dll -> %System32%\dllcache\rwia001.dll -> Ricoh Co., Ltd. [Ver = 5, 0, 2419, 1 | Size = 79872 bytes | Created Date = 12/10/2007 10:38:09 PM | Attr = ] rwia330.dll -> %System32%\dllcache\rwia330.dll -> Ricoh Co., Ltd. [Ver = 5, 0, 2419, 1 | Size = 79872 bytes | Created Date = 12/10/2007 10:38:09 PM | Attr = ] sam.sdf -> %System32%\dllcache\sam.sdf -> [Ver = | Size = 888 bytes | Created Date = 12/10/2007 5:19:01 PM | Attr = ] sam.spd -> %System32%\dllcache\sam.spd -> [Ver = | Size = 1685606 bytes | Created Date = 12/10/2007 5:19:01 PM | Attr = ] SP2.CAT -> %System32%\dllcache\SP2.CAT -> [Ver = | Size = 1042903 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] spxcoins.dll -> %System32%\dllcache\spxcoins.dll -> Perle Systems Ltd. [Ver = 1.0.0.0007 | Size = 24661 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] srframe.mmf -> %System32%\dllcache\srframe.mmf -> [Ver = | Size = 984 bytes | Created Date = 12/10/2007 10:35:02 PM | Attr = ] tabletpc.cat -> %System32%\dllcache\tabletpc.cat -> [Ver = | Size = 110116 bytes | Created Date = 12/10/2007 5:18:33 PM | Attr = ] wmerrenu.cat -> %System32%\dllcache\wmerrenu.cat -> [Ver = | Size = 7334 bytes | Created Date = 12/10/2007 5:18:32 PM | Attr = ] xjis.nls -> %System32%\dllcache\xjis.nls -> [Ver = | Size = 28288 bytes | Created Date = 12/10/2007 10:38:25 PM | Attr = ] aavmker4.sys -> %System32%\drivers\aavmker4.sys -> ALWIL Software [Ver = 4.7.1098.0 | Size = 26624 bytes | Created Date = 12/10/2007 10:46:14 PM | Attr = ] aswmon.sys -> %System32%\drivers\aswmon.sys -> ALWIL Software [Ver = 4.7.1098.0 | Size = 93264 bytes | Created Date = 12/10/2007 10:46:13 PM | Attr = ] aswmon2.sys -> %System32%\drivers\aswmon2.sys -> ALWIL Software [Ver = 4.7.1098.0 | Size = 94544 bytes | Created Date = 12/10/2007 10:46:13 PM | Attr = ] aswRdr.sys -> %System32%\drivers\aswRdr.sys -> ALWIL Software [Ver = 4.7.1098.0 | Size = 23152 bytes | Created Date = 12/10/2007 10:46:15 PM | Attr = ] aswTdi.sys -> %System32%\drivers\aswTdi.sys -> ALWIL Software [Ver = 4.7.1098.0 | Size = 42912 bytes | Created Date = 12/10/2007 10:46:15 PM | Attr = ] cdr4_xp.sys -> %System32%\drivers\cdr4_xp.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 9336 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] cdralw2k.sys -> %System32%\drivers\cdralw2k.sys -> Sonic Solutions [Ver = 8.0.0.212 | Size = 9464 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] disdn -> %System32%\drivers\disdn -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] el90xnd5.sys -> %System32%\drivers\el90xnd5.sys -> 3Com Corporation [Ver = 3.60.50.008 | Size = 153631 bytes | Created Date = 12/10/2007 5:20:52 PM | Attr = ] Entech.sys -> %System32%\drivers\Entech.sys -> EnTech Taiwan [Ver = 1.0 | Size = 27672 bytes | Created Date = 12/23/2007 2:11:24 AM | Attr = ] Entech.vxd -> %System32%\drivers\Entech.vxd -> [Ver = | Size = 6173 bytes | Created Date = 12/23/2007 2:11:24 AM | Attr = ] Entech64.sys -> %System32%\drivers\Entech64.sys -> EnTech Taiwan [Ver = 1.0 | Size = 12744 bytes | Created Date = 12/23/2007 2:11:24 AM | Attr = ] etc -> %System32%\drivers\etc -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] hosts.20071221-211305.backup -> %System32%\drivers\etc\hosts.20071221-211305.backup -> [Ver = | Size = 734 bytes | Created Date = 12/21/2007 9:13:05 PM | Attr = ] hosts.20071221-211319.backup -> %System32%\drivers\etc\hosts.20071221-211319.backup -> [Ver = | Size = 221589 bytes | Created Date = 12/21/2007 9:13:19 PM | Attr = R ] imagedrv.sys -> %System32%\drivers\imagedrv.sys -> Ahead Software AG [Ver = 2.27.0.0 built by: WinDDK | Size = 5504 bytes | Created Date = 12/13/2007 9:52:23 PM | Attr = ] imagesrv.sys -> %System32%\drivers\imagesrv.sys -> Ahead Software AG [Ver = 2.27.0.0 built by: WinDDK | Size = 125184 bytes | Created Date = 12/13/2007 9:52:23 PM | Attr = ] lgusbbus.sys -> %System32%\drivers\lgusbbus.sys -> LG Electronics Inc. [Ver = Ver 4.6 | Size = 21344 bytes | Created Date = 1/16/2008 5:41:14 PM | Attr = ] lgusbdiag.sys -> %System32%\drivers\lgusbdiag.sys -> LG Electronics Inc. [Ver = Ver 4.6 | Size = 38144 bytes | Created Date = 1/16/2008 5:41:14 PM | Attr = ] lgusbmodem.sys -> %System32%\drivers\lgusbmodem.sys -> LG Electronics Inc. [Ver = Ver 4.6 | Size = 39036 bytes | Created Date = 1/16/2008 5:41:15 PM | Attr = ] nv4_mini.sys -> %System32%\drivers\nv4_mini.sys -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 7435392 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] PciBus.sys -> %System32%\drivers\PciBus.sys -> [Ver = | Size = 3972 bytes | Created Date = 12/23/2007 2:11:24 AM | Attr = ] pnarp.sys -> %System32%\drivers\pnarp.sys -> Pure Networks, Inc. [Ver = 4.6.7236.0 | Size = 23864 bytes | Created Date = 1/2/2008 6:39:02 PM | Attr = ] purendis.sys -> %System32%\drivers\purendis.sys -> Pure Networks, Inc. [Ver = 4.6.7236.0 | Size = 24888 bytes | Created Date = 1/2/2008 6:39:00 PM | Attr = ] PxHelp20.sys -> %System32%\drivers\PxHelp20.sys -> Sonic Solutions [Ver = 3.00.56a | Size = 43528 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] sptd.sys -> %System32%\drivers\sptd.sys -> [Ver = | Size = 685816 bytes | Created Date = 12/10/2007 11:06:37 PM | Attr = ] tmcomm.sys -> %System32%\drivers\tmcomm.sys -> Trend Micro Inc. [Ver = 1.6.0.1059 | Size = 102664 bytes | Created Date = 1/22/2008 10:54:44 PM | Attr = ] UMDF -> %System32%\drivers\UMDF -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] $winnt$.inf -> %System32%\$winnt$.inf -> [Ver = | Size = 261 bytes | Created Date = 12/10/2007 5:17:23 PM | Attr = ] 1025 -> %System32%\1025 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> 1028 -> %System32%\1028 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1031 -> %System32%\1031 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1033 -> %System32%\1033 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1037 -> %System32%\1037 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1041 -> %System32%\1041 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1042 -> %System32%\1042 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 1054 -> %System32%\1054 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 2052 -> %System32%\2052 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 3076 -> %System32%\3076 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] 3com_dmi -> %System32%\3com_dmi -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] actskin4.ocx -> %System32%\actskin4.ocx -> [Ver = 4, 2, 7, 3 | Size = 380928 bytes | Created Date = 12/10/2007 10:46:08 PM | Attr = ] amcompat.tlb -> %System32%\amcompat.tlb -> [Ver = | Size = 16832 bytes | Created Date = 12/10/2007 10:36:46 PM | Attr = ] aswBoot.exe -> %System32%\aswBoot.exe -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 837496 bytes | Created Date = 12/10/2007 10:46:08 PM | Attr = ] AUTOEXEC.NT -> %System32%\AUTOEXEC.NT -> [Ver = | Size = 1688 bytes | Created Date = 12/10/2007 5:18:49 PM | Attr = ] AvastSS.scr -> %System32%\AvastSS.scr -> ALWIL Software [Ver = 4, 7, 1098, 0 | Size = 95608 bytes | Created Date = 12/10/2007 10:46:14 PM | Attr = ] BD2070N.DAT -> %System32%\BD2070N.DAT -> [Ver = | Size = 34 bytes | Created Date = 12/10/2007 11:20:03 PM | Attr = ] BMXBkpCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXBkpCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 30528 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] BMXCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 30528 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] BMXState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 31056 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] BMXStateBkp-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXStateBkp-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 31056 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] bopomofo.uce -> %System32%\bopomofo.uce -> [Ver = | Size = 22984 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] BRDIAG.HLP -> %System32%\BRDIAG.HLP -> [Ver = | Size = 173868 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] Brdiag2.exe -> %System32%\Brdiag2.exe -> brother Industries, Ltd [Ver = 2.56 | Size = 196608 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BRDIAG2.HLP -> %System32%\BRDIAG2.HLP -> [Ver = | Size = 162057 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BRGSRC16.DLL -> %System32%\BRGSRC16.DLL -> [Ver = | Size = 4608 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BRGSRC32.DLL -> %System32%\BRGSRC32.DLL -> [Ver = | Size = 26624 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] brlm03a.dll -> %System32%\brlm03a.dll -> brother Industries Ltd [Ver = 1, 0, 4, 1 | Size = 24223 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BROSNMP.DLL -> %System32%\BROSNMP.DLL -> [Ver = | Size = 77824 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BRRBTOOL.EXE -> %System32%\BRRBTOOL.EXE -> Brother Industries Ltd [Ver = 1.17 | Size = 73728 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BRVPD95A.DLL -> %System32%\BRVPD95A.DLL -> brother industries, ltd [Ver = 1.03 | Size = 40960 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BRVPDNTA.DLL -> %System32%\BRVPDNTA.DLL -> brother Industries Ltd [Ver = 1, 0, 3, 0 | Size = 36864 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] BrWebIns.dll -> %System32%\BrWebIns.dll -> brother [Ver = 1, 0, 9, 1 | Size = 81920 bytes | Created Date = 12/10/2007 11:18:07 PM | Attr = ] BRWEBUP.EXE -> %System32%\BRWEBUP.EXE -> brother [Ver = 1, 0, 8, 2 | Size = 65536 bytes | Created Date = 12/10/2007 11:18:07 PM | Attr = ] CatRoot -> %System32%\CatRoot -> [Folder | Created Date = 12/10/2007 5:18:24 PM | Attr = ] CatRoot2 -> %System32%\CatRoot2 -> [Folder | Created Date = 12/10/2007 5:18:24 PM | Attr = ] cdplayer.exe.manifest -> %System32%\cdplayer.exe.manifest -> [Ver = | Size = 749 bytes | Created Date = 12/10/2007 10:35:41 PM | Attr = RH ] CmdLineExt.dll -> %System32%\CmdLineExt.dll -> Sony DADC Austria AG. [Ver = 1,1,221,0 | Size = 108144 bytes | Created Date = 12/25/2007 6:58:57 AM | Attr = ] Com -> %System32%\Com -> [Folder | Created Date = 12/10/2007 10:33:02 PM | Attr = ] config -> %System32%\config -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] CONFIG.NT -> %System32%\CONFIG.NT -> [Ver = | Size = 2626 bytes | Created Date = 12/10/2007 10:36:49 PM | Attr = ] CSVer.dll -> %System32%\CSVer.dll -> Windows XP Bundled build C-Centric Single User [Ver = 8, 3, 1, 1010 | Size = 53248 bytes | Created Date = 12/10/2007 11:11:25 PM | Attr = ] CT4MGM.SF2 -> %System32%\CT4MGM.SF2 -> [Ver = | Size = 4174814 bytes | Created Date = 12/10/2007 11:08:49 PM | Attr = ] ctzapxx.ini -> %System32%\ctzapxx.ini -> [Ver = | Size = 191 bytes | Created Date = 12/10/2007 11:08:12 PM | Attr = ] c_10006.nls -> %System32%\c_10006.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_10007.nls -> %System32%\c_10007.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:56 PM | Attr = ] c_10010.nls -> %System32%\c_10010.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_10017.nls -> %System32%\c_10017.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:56 PM | Attr = ] c_10029.nls -> %System32%\c_10029.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_10081.nls -> %System32%\c_10081.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:58 PM | Attr = ] c_10082.nls -> %System32%\c_10082.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_20127.nls -> %System32%\c_20127.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] C_28594.NLS -> %System32%\C_28594.NLS -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:54 PM | Attr = ] C_28595.NLS -> %System32%\C_28595.NLS -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:56 PM | Attr = ] C_28597.NLS -> %System32%\C_28597.NLS -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_28599.nls -> %System32%\c_28599.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:58 PM | Attr = ] c_28603.nls -> %System32%\c_28603.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:59 PM | Attr = ] c_737.nls -> %System32%\c_737.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_852.nls -> %System32%\c_852.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:53 PM | Attr = ] c_855.nls -> %System32%\c_855.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:54 PM | Attr = ] c_857.nls -> %System32%\c_857.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:58 PM | Attr = ] c_866.nls -> %System32%\c_866.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:54 PM | Attr = ] c_869.nls -> %System32%\c_869.nls -> [Ver = | Size = 66594 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] c_875.nls -> %System32%\c_875.nls -> [Ver = | Size = 66082 bytes | Created Date = 12/10/2007 5:18:55 PM | Attr = ] Data -> %System32%\Data -> [Folder | Created Date = 12/10/2007 11:08:12 PM | Attr = ] Defaults -> %System32%\Defaults -> [Folder | Created Date = 12/10/2007 11:08:48 PM | Attr = ] desktop.ini -> %System32%\desktop.ini -> [Ver = | Size = 2 bytes | Created Date = 12/10/2007 10:35:06 PM | Attr = ] dgrpsetu.dll -> %System32%\dgrpsetu.dll -> Digi International, Inc. [Ver = 2.3.7 | Size = 176157 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] dgsetup.dll -> %System32%\dgsetup.dll -> Digi International [Ver = v3.7.3.0 | Size = 85020 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] dhcp -> %System32%\dhcp -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] DirectX -> %System32%\DirectX -> [Folder | Created Date = 12/10/2007 10:35:23 PM | Attr = ] dllcache -> %System32%\dllcache -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = RHS] drivers -> %System32%\drivers -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] DRVSTORE -> %System32%\DRVSTORE -> [Folder | Created Date = 12/10/2007 11:11:25 PM | Attr = ] DVCState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\DVCState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 11564 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] emptyregdb.dat -> %System32%\emptyregdb.dat -> [Ver = | Size = 21640 bytes | Created Date = 12/10/2007 10:34:06 PM | Attr = ] en-us -> %System32%\en-us -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] EqnClass.Dll -> %System32%\EqnClass.Dll -> Equinox Systems Inc. [Ver = 5.0u(58) | Size = 103424 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] export -> %System32%\export -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] ff_vfw.dll -> %System32%\ff_vfw.dll -> [Ver = | Size = 10752 bytes | Created Date = 12/25/2007 8:10:37 PM | Attr = ] ff_vfw.dll.manifest -> %System32%\ff_vfw.dll.manifest -> [Ver = | Size = 547 bytes | Created Date = 12/25/2007 8:10:37 PM | Attr = ] FNTCACHE.DAT -> %System32%\FNTCACHE.DAT -> [Ver = | Size = 89496 bytes | Created Date = 12/10/2007 5:17:59 PM | Attr = ] Futuremark -> %System32%\Futuremark -> [Folder | Created Date = 12/23/2007 2:11:24 AM | Attr = ] gb2312.uce -> %System32%\gb2312.uce -> [Ver = | Size = 24006 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] hticons.dll -> %System32%\hticons.dll -> Hilgraeve, Inc. [Ver = 5.1.2600.0 | Size = 44544 bytes | Created Date = 12/10/2007 10:33:26 PM | Attr = ] hypertrm.dll -> %System32%\hypertrm.dll -> Hilgraeve, Inc. [Ver = 5.1.2600.2563 | Size = 347136 bytes | Created Date = 12/10/2007 10:33:06 PM | Attr = ] ias -> %System32%\ias -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] icrav03.rat -> %System32%\icrav03.rat -> [Ver = | Size = 8798 bytes | Created Date = 12/10/2007 10:33:43 PM | Attr = ] icsxml -> %System32%\icsxml -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] ideograf.uce -> %System32%\ideograf.uce -> [Ver = | Size = 60458 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] IE7Eula.rtf -> %System32%\IE7Eula.rtf -> [Ver = | Size = 74715 bytes | Created Date = 12/10/2007 10:33:43 PM | Attr = ] ImagX7.dll -> %System32%\ImagX7.dll -> Pegasus Imaging Corp. [Ver = 7.0.46.0 | Size = 1568768 bytes | Created Date = 12/13/2007 9:52:11 PM | Attr = ] ImagXpr7.dll -> %System32%\ImagXpr7.dll -> Pegasus Imaging Corp. [Ver = 7.0.46.0 | Size = 476320 bytes | Created Date = 12/13/2007 9:52:11 PM | Attr = ] ImagXR7.dll -> %System32%\ImagXR7.dll -> Pegasus Imaging Corp. [Ver = 7.0.476.0 | Size = 262144 bytes | Created Date = 12/13/2007 9:52:11 PM | Attr = ] ImagXRA7.dll -> %System32%\ImagXRA7.dll -> Pegasus Imaging Corp. [Ver = 7.0.476.0 | Size = 471040 bytes | Created Date = 12/13/2007 9:52:11 PM | Attr = ] IME -> %System32%\IME -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] inetsrv -> %System32%\inetsrv -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] instwdm.ini -> %System32%\instwdm.ini -> [Ver = | Size = 86446 bytes | Created Date = 12/10/2007 11:08:12 PM | Attr = ] isrdbg32.dll -> %System32%\isrdbg32.dll -> Intel Corporation [Ver = 0.0 | Size = 32768 bytes | Created Date = 12/10/2007 10:34:43 PM | Attr = ] java.exe -> %System32%\java.exe -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 135168 bytes | Created Date = 1/27/2008 1:00:34 AM | Attr = ] javacpl.cpl -> %System32%\javacpl.cpl -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 69632 bytes | Created Date = 1/27/2008 1:00:34 AM | Attr = ] javaw.exe -> %System32%\javaw.exe -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 135168 bytes | Created Date = 1/27/2008 1:00:34 AM | Attr = ] javaws.exe -> %System32%\javaws.exe -> Sun Microsystems, Inc. [Ver = 6.0.30.5 | Size = 139264 bytes | Created Date = 1/27/2008 1:00:34 AM | Attr = ] kanji_1.uce -> %System32%\kanji_1.uce -> [Ver = | Size = 6948 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] kanji_2.uce -> %System32%\kanji_2.uce -> [Ver = | Size = 8484 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] Kaspersky Lab -> %System32%\Kaspersky Lab -> [Folder | Created Date = 1/27/2008 7:53:55 PM | Attr = ] keystone.exe -> %System32%\keystone.exe -> [Ver = | Size = 425984 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] korean.uce -> %System32%\korean.uce -> [Ver = | Size = 12876 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] LogFiles -> %System32%\LogFiles -> [Folder | Created Date = 12/14/2007 9:37:20 PM | Attr = ] logonui.exe.manifest -> %System32%\logonui.exe.manifest -> [Ver = | Size = 488 bytes | Created Date = 12/10/2007 10:35:43 PM | Attr = RH ] Macromed -> %System32%\Macromed -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Microsoft -> %System32%\Microsoft -> [Folder | Created Date = 12/10/2007 10:39:20 PM | Attr = S] MsDtc -> %System32%\MsDtc -> [Folder | Created Date = 12/10/2007 10:33:04 PM | Attr = ] msdtcprf.h -> %System32%\msdtcprf.h -> [Ver = | Size = 768 bytes | Created Date = 12/10/2007 10:33:19 PM | Attr = ] msdtcprf.ini -> %System32%\msdtcprf.ini -> [Ver = | Size = 1931 bytes | Created Date = 12/10/2007 10:33:19 PM | Attr = ] mui -> %System32%\mui -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] ncpa.cpl.manifest -> %System32%\ncpa.cpl.manifest -> [Ver = | Size = 749 bytes | Created Date = 12/10/2007 10:35:41 PM | Attr = RH ] NeroCheck.exe -> %System32%\NeroCheck.exe -> Ahead Software Gmbh [Ver = 1, 0, 0, 2 | Size = 155648 bytes | Created Date = 12/13/2007 9:52:11 PM | Attr = ] npp -> %System32%\npp -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] nscompat.tlb -> %System32%\nscompat.tlb -> [Ver = | Size = 23392 bytes | Created Date = 12/10/2007 10:36:46 PM | Attr = ] nv4_disp.dll -> %System32%\nv4_disp.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 5773568 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvapi.dll -> %System32%\nvapi.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 385024 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvappbar.exe -> %System32%\nvappbar.exe -> [Ver = | Size = 442368 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvapps.nvb -> %System32%\nvapps.nvb -> [Ver = | Size = 159458 bytes | Created Date = 12/11/2007 4:52:07 PM | Attr = ] NvApps.xml -> %System32%\NvApps.xml -> [Ver = | Size = 159419 bytes | Created Date = 12/10/2007 10:52:50 PM | Attr = ] nvcod.dll -> %System32%\nvcod.dll -> NVIDIA Corporation [Ver = 1 , 0 , 0 , 35 | Size = 35328 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvcodins.dll -> %System32%\nvcodins.dll -> NVIDIA Corporation [Ver = 1 , 0 , 0 , 35 | Size = 35328 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvcolor.exe -> %System32%\nvcolor.exe -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 147456 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvcpl.dll -> %System32%\nvcpl.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 8523776 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvcuda.dll -> %System32%\nvcuda.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 1089536 bytes | Created Date = 12/5/2007 1:41:00 AM | Attr = ] nvdisp.nvu -> %System32%\nvdisp.nvu -> [Ver = | Size = 17737 bytes | Created Date = 12/11/2007 4:51:45 PM | Attr = ] nvdisps.dll -> %System32%\nvdisps.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 6549504 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvdispsr.dll -> %System32%\nvdispsr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 5611520 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvdspsch.exe -> %System32%\nvdspsch.exe -> [Ver = | Size = 1339392 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvgames.dll -> %System32%\nvgames.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 3420160 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvgamesr.dll -> %System32%\nvgamesr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 3330048 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nview.dll -> %System32%\nview.dll -> [Ver = | Size = 1474560 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmccs.dll -> %System32%\nvmccs.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 229376 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmccsrs.dll -> %System32%\nvmccsrs.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 45056 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmccss.dll -> %System32%\nvmccss.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 188416 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmccssr.dll -> %System32%\nvmccssr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 458752 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmctray.dll -> %System32%\nvmctray.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 81920 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmobls.dll -> %System32%\nvmobls.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 1228800 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvmoblsr.dll -> %System32%\nvmoblsr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 2854912 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvnt4cpl.dll -> %System32%\nvnt4cpl.dll -> [Ver = | Size = 286720 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvoglnt.dll -> %System32%\nvoglnt.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 6901760 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsar.dll -> %System32%\nvrsar.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 327680 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrscs.dll -> %System32%\nvrscs.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 249856 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsda.dll -> %System32%\nvrsda.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 253952 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsde.dll -> %System32%\nvrsde.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 278528 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsel.dll -> %System32%\nvrsel.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 282624 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrseng.dll -> %System32%\nvrseng.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 245760 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrses.dll -> %System32%\nvrses.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 282624 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsesm.dll -> %System32%\nvrsesm.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 274432 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsfi.dll -> %System32%\nvrsfi.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 249856 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsfr.dll -> %System32%\nvrsfr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 282624 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrshe.dll -> %System32%\nvrshe.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 327680 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrshu.dll -> %System32%\nvrshu.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 258048 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsit.dll -> %System32%\nvrsit.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 278528 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsja.dll -> %System32%\nvrsja.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 266240 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsko.dll -> %System32%\nvrsko.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 258048 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsnl.dll -> %System32%\nvrsnl.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 274432 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsno.dll -> %System32%\nvrsno.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 253952 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrspl.dll -> %System32%\nvrspl.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 253952 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrspt.dll -> %System32%\nvrspt.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 274432 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsptb.dll -> %System32%\nvrsptb.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 266240 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsru.dll -> %System32%\nvrsru.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 270336 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrssk.dll -> %System32%\nvrssk.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 258048 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrssl.dll -> %System32%\nvrssl.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 258048 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrssv.dll -> %System32%\nvrssv.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 253952 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrsth.dll -> %System32%\nvrsth.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 253952 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrstr.dll -> %System32%\nvrstr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 258048 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrszhc.dll -> %System32%\nvrszhc.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 225280 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvrszht.dll -> %System32%\nvrszht.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 126976 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvshell.dll -> %System32%\nvshell.dll -> [Ver = | Size = 466944 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvsvc32.exe -> %System32%\nvsvc32.exe -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 155716 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvtuicpl.cpl -> %System32%\nvtuicpl.cpl -> [Ver = | Size = 73728 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvudisp.exe -> %System32%\nvudisp.exe -> NVIDIA Corporation [Ver = 1 , 1 , 1 , 0 | Size = 356352 bytes | Created Date = 12/11/2007 4:51:45 PM | Attr = ] NVUNINST.EXE -> %System32%\NVUNINST.EXE -> NVIDIA Corporation [Ver = 1 , 1 , 1 , 0 | Size = 356352 bytes | Created Date = 12/11/2007 4:51:11 PM | Attr = ] nvvitvs.dll -> %System32%\nvvitvs.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 3710976 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvvitvsr.dll -> %System32%\nvvitvsr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 3715072 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwddi.dll -> %System32%\nvwddi.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 81920 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwdmcpl.dll -> %System32%\nvwdmcpl.dll -> [Ver = | Size = 1703936 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwimg.dll -> %System32%\nvwimg.dll -> [Ver = | Size = 1019904 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsar.dll -> %System32%\nvwrsar.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 282624 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrscs.dll -> %System32%\nvwrscs.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 286720 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsda.dll -> %System32%\nvwrsda.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 294912 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsde.dll -> %System32%\nvwrsde.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 311296 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsel.dll -> %System32%\nvwrsel.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 335872 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrseng.dll -> %System32%\nvwrseng.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 286720 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrses.dll -> %System32%\nvwrses.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 335872 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsesm.dll -> %System32%\nvwrsesm.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 327680 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsfi.dll -> %System32%\nvwrsfi.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 303104 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsfr.dll -> %System32%\nvwrsfr.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 327680 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrshe.dll -> %System32%\nvwrshe.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 278528 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrshu.dll -> %System32%\nvwrshu.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 315392 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsit.dll -> %System32%\nvwrsit.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 323584 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsja.dll -> %System32%\nvwrsja.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 212992 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsko.dll -> %System32%\nvwrsko.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 196608 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsnl.dll -> %System32%\nvwrsnl.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 319488 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsno.dll -> %System32%\nvwrsno.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 299008 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrspl.dll -> %System32%\nvwrspl.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 294912 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrspt.dll -> %System32%\nvwrspt.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 323584 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsptb.dll -> %System32%\nvwrsptb.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 319488 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsru.dll -> %System32%\nvwrsru.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 315392 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrssk.dll -> %System32%\nvwrssk.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 299008 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrssl.dll -> %System32%\nvwrssl.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 303104 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrssv.dll -> %System32%\nvwrssv.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 294912 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrsth.dll -> %System32%\nvwrsth.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 290816 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrstr.dll -> %System32%\nvwrstr.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 303104 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrszhc.dll -> %System32%\nvwrszhc.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 163840 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwrszht.dll -> %System32%\nvwrszht.dll -> NVIDIA Corporation [Ver = 6.14.10.11129 | Size = 167936 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwss.dll -> %System32%\nvwss.dll -> NVIDIA Corporation [Ver = 6.14.11.6921 | Size = 2498560 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nvwssr.dll -> %System32%\nvwssr.dll -> NVIDIA Corporation [Ver = 6.14.11.6906 | Size = 2519040 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] nwc.cpl.manifest -> %System32%\nwc.cpl.manifest -> [Ver = | Size = 749 bytes | Created Date = 12/10/2007 10:35:41 PM | Attr = RH ] nwiz.exe -> %System32%\nwiz.exe -> [Ver = | Size = 1626112 bytes | Created Date = 11/6/2007 8:30:00 PM | Attr = ] oobe -> %System32%\oobe -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] OpenAL32.dll -> %System32%\OpenAL32.dll -> Portions (C) Creative Labs Inc. and NVIDIA Corp. [Ver = 6.14.0357.11 | Size = 86016 bytes | Created Date = 12/10/2007 11:08:18 PM | Attr = ] Pdrvinst.dll -> %System32%\Pdrvinst.dll -> brother [Ver = 1, 2, 4, 0 | Size = 188416 bytes | Created Date = 12/10/2007 11:18:07 PM | Attr = ] PerfStringBackup.INI -> %System32%\PerfStringBackup.INI -> [Ver = | Size = 439552 bytes | Created Date = 12/10/2007 5:19:03 PM | Attr = ] PreInstall -> %System32%\PreInstall -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] pthreadGC2.dll -> %System32%\pthreadGC2.dll -> Open Source Software community project [Ver = 2, 8, 0, 0 | Size = 60273 bytes | Created Date = 12/25/2007 8:10:37 PM | Attr = ] px.dll -> %System32%\px.dll -> Sonic Solutions [Ver = 3.6.36.500 | Size = 547576 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxafs.dll -> %System32%\pxafs.dll -> Sonic Solutions [Ver = 3.6.36.500 | Size = 129784 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxcpya64.exe -> %System32%\pxcpya64.exe -> Sonic Solutions [Ver = 1.00.40a | Size = 64760 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxdrv.dll -> %System32%\pxdrv.dll -> Sonic Solutions [Ver = 1.02.05a | Size = 510712 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxhpinst.exe -> %System32%\pxhpinst.exe -> Sonic Solutions [Ver = 3.00.56a | Size = 72440 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxinsa64.exe -> %System32%\pxinsa64.exe -> Sonic Solutions [Ver = 3.00.56a | Size = 64760 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxmas.dll -> %System32%\pxmas.dll -> Sonic Solutions [Ver = 3.6.36.500 | Size = 187128 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxsfs.dll -> %System32%\pxsfs.dll -> Sonic Solutions [Ver = 3.6.36.500 | Size = 1628920 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] pxwave.dll -> %System32%\pxwave.dll -> Sonic Solutions [Ver = 3.6.36.500 | Size = 379640 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] QuickTime.qts -> %System32%\QuickTime.qts -> Apple Inc. [Ver = 7.4 | Size = 57344 bytes | Created Date = 1/10/2008 3:27:44 PM | Attr = ] QuickTimeVR.qtx -> %System32%\QuickTimeVR.qtx -> Apple Inc. [Ver = 7.4 | Size = 90112 bytes | Created Date = 1/10/2008 3:27:46 PM | Attr = ] ras -> %System32%\ras -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] ReinstallBackups -> %System32%\ReinstallBackups -> [Folder | Created Date = 12/10/2007 11:11:26 PM | Attr = ] Restore -> %System32%\Restore -> [Folder | Created Date = 12/10/2007 10:34:43 PM | Attr = ] sapi.cpl.manifest -> %System32%\sapi.cpl.manifest -> [Ver = | Size = 749 bytes | Created Date = 12/10/2007 10:35:41 PM | Attr = RH ] settings.sfm -> %System32%\settings.sfm -> [Ver = | Size = 1080 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] settingsbkup.sfm -> %System32%\settingsbkup.sfm -> [Ver = | Size = 1080 bytes | Created Date = 12/10/2007 11:53:57 PM | Attr = ] Setup -> %System32%\Setup -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] SetupBD.din -> %System32%\SetupBD.din -> [Ver = | Size = 1904 bytes | Created Date = 12/10/2007 11:12:53 PM | Attr = ] ShellExt -> %System32%\ShellExt -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] shiftjis.uce -> %System32%\shiftjis.uce -> [Ver = | Size = 16740 bytes | Created Date = 12/10/2007 10:33:21 PM | Attr = ] spool -> %System32%\spool -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] spxcoins.dll -> %System32%\spxcoins.dll -> Perle Systems Ltd. [Ver = 1.0.0.0007 | Size = 24661 bytes | Created Date = 12/10/2007 5:18:51 PM | Attr = ] subrange.uce -> %System32%\subrange.uce -> [Ver = | Size = 93702 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] ticrf.rat -> %System32%\ticrf.rat -> [Ver = | Size = 1988 bytes | Created Date = 12/10/2007 10:33:43 PM | Attr = ] tslabels.h -> %System32%\tslabels.h -> [Ver = | Size = 3286 bytes | Created Date = 12/10/2007 10:33:20 PM | Attr = ] tslabels.ini -> %System32%\tslabels.ini -> [Ver = | Size = 13223 bytes | Created Date = 12/10/2007 10:33:20 PM | Attr = ] TwnLib20.dll -> %System32%\TwnLib20.dll -> Pegasus Software [Ver = 2.02.010 | Size = 106496 bytes | Created Date = 12/13/2007 9:52:12 PM | Attr = ] URTTemp -> %System32%\URTTemp -> [Folder | Created Date = 12/14/2007 9:38:15 PM | Attr = ] usmt -> %System32%\usmt -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] usrlogon.cmd -> %System32%\usrlogon.cmd -> [Ver = | Size = 1161 bytes | Created Date = 12/10/2007 10:33:20 PM | Attr = ] VFind.exe -> %System32%\VFind.exe -> [Ver = | Size = 49152 bytes | Created Date = 1/27/2008 1:16:52 AM | Attr = ] vxblock.dll -> %System32%\vxblock.dll -> Sonic Solutions [Ver = 1.00.74a | Size = 39672 bytes | Created Date = 12/13/2007 10:43:00 PM | Attr = ] wbem -> %System32%\wbem -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] WindowsLogon.manifest -> %System32%\WindowsLogon.manifest -> [Ver = | Size = 488 bytes | Created Date = 12/10/2007 10:35:43 PM | Attr = RH ] wins -> %System32%\wins -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] wmimgmt.msc -> %System32%\wmimgmt.msc -> [Ver = | Size = 63488 bytes | Created Date = 12/10/2007 10:33:15 PM | Attr = ] wrap_oal.dll -> %System32%\wrap_oal.dll -> Creative Labs [Ver = 2.0.8.0 | Size = 409600 bytes | Created Date = 12/10/2007 11:08:18 PM | Attr = ] wuaucpl.cpl.manifest -> %System32%\wuaucpl.cpl.manifest -> [Ver = | Size = 749 bytes | Created Date = 12/10/2007 10:35:41 PM | Attr = RH ] xircom -> %System32%\xircom -> [Folder | Created Date = 12/10/2007 10:37:05 PM | Attr = ] $hf_mig$ -> %SystemRoot%\$hf_mig$ -> [Folder | Created Date = 12/11/2007 6:48:15 AM | Attr = H ] 4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> addins -> %SystemRoot%\addins -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] AppPatch -> %SystemRoot%\AppPatch -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] assembly -> %SystemRoot%\assembly -> [Folder | Created Date = 12/14/2007 9:38:16 PM | Attr = R S] Blue Lace 16.bmp -> %SystemRoot%\Blue Lace 16.bmp -> [Ver = | Size = 1272 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Created Date = 12/10/2007 10:38:31 PM | Attr = S] BRDIAG.INI -> %SystemRoot%\BRDIAG.INI -> [Ver = | Size = 40 bytes | Created Date = 12/10/2007 11:18:25 PM | Attr = ] Brownie.ini -> %SystemRoot%\Brownie.ini -> [Ver = | Size = 23 bytes | Created Date = 12/10/2007 11:18:25 PM | Attr = ] BRVIDEO.INI -> %SystemRoot%\BRVIDEO.INI -> [Ver = | Size = 146 bytes | Created Date = 12/10/2007 11:18:25 PM | Attr = ] BRWMARK.INI -> %SystemRoot%\BRWMARK.INI -> [Ver = | Size = 426 bytes | Created Date = 12/10/2007 11:20:03 PM | Attr = ] Coffee Bean.bmp -> %SystemRoot%\Coffee Bean.bmp -> [Ver = | Size = 17062 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] Config -> %SystemRoot%\Config -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Connection Wizard -> %SystemRoot%\Connection Wizard -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] control.ini -> %SystemRoot%\control.ini -> [Ver = | Size = 0 bytes | Created Date = 12/10/2007 10:36:49 PM | Attr = ] CTDCRES.DLL -> %SystemRoot%\CTDCRES.DLL -> Creative Technology Ltd [Ver = 5.12.01.1140-2.07.0070 | Size = 10240 bytes | Created Date = 12/10/2007 11:08:12 PM | Attr = ] CTXFIRES.DLL -> %SystemRoot%\CTXFIRES.DLL -> [Ver = 1, 0, 2, 0 | Size = 3072 bytes | Created Date = 12/10/2007 11:08:12 PM | Attr = ] Cursors -> %SystemRoot%\Cursors -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Debug -> %SystemRoot%\Debug -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] desktop.ini -> %SystemRoot%\desktop.ini -> [Ver = | Size = 2 bytes | Created Date = 12/10/2007 10:35:06 PM | Attr = ] Downloaded Program Files -> %SystemRoot%\Downloaded Program Files -> [Folder | Created Date = 12/10/2007 10:33:43 PM | Attr = S] Driver Cache -> %SystemRoot%\Driver Cache -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] ehome -> %SystemRoot%\ehome -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] erdnt -> %SystemRoot%\erdnt -> [Folder | Created Date = 1/27/2008 1:17:17 AM | Attr = ] FeatherTexture.bmp -> %SystemRoot%\FeatherTexture.bmp -> [Ver = | Size = 16730 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] Fonts -> %SystemRoot%\Fonts -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = R S] ftpcache -> %SystemRoot%\ftpcache -> [Folder | Created Date = 12/11/2007 5:01:08 PM | Attr = HS] game.ini -> %SystemRoot%\game.ini -> [Ver = | Size = 319 bytes | Created Date = 12/11/2007 5:07:34 PM | Attr = ] Gone Fishing.bmp -> %SystemRoot%\Gone Fishing.bmp -> [Ver = | Size = 17336 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] Greenstone.bmp -> %SystemRoot%\Greenstone.bmp -> [Ver = | Size = 26582 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] Help -> %SystemRoot%\Help -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] HL-2070N.INI -> %SystemRoot%\HL-2070N.INI -> [Ver = | Size = 8975 bytes | Created Date = 12/10/2007 11:18:18 PM | Attr = ] ie7updates -> %SystemRoot%\ie7updates -> [Folder | Created Date = 12/11/2007 6:48:15 AM | Attr = ] ime -> %SystemRoot%\ime -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] imsins.BAK -> %SystemRoot%\imsins.BAK -> [Ver = | Size = 1355 bytes | Created Date = 1/9/2008 6:57:24 AM | Attr = ] inf -> %SystemRoot%\inf -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = H ] INRES.DLL -> %SystemRoot%\INRES.DLL -> Creative Technology Limited [Ver = 1, 0, 9, 0 | Size = 11776 bytes | Created Date = 12/10/2007 11:08:12 PM | Attr = ] Installer -> %SystemRoot%\Installer -> [Folder | Created Date = 12/10/2007 5:19:03 PM | Attr = HS] java -> %SystemRoot%\java -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] l2schemas -> %SystemRoot%\l2schemas -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Media -> %SystemRoot%\Media -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Microsoft.NET -> %SystemRoot%\Microsoft.NET -> [Folder | Created Date = 12/14/2007 9:38:15 PM | Attr = ] msagent -> %SystemRoot%\msagent -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] msapps -> %SystemRoot%\msapps -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] mui -> %SystemRoot%\mui -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] NeroDigital.ini -> %SystemRoot%\NeroDigital.ini -> [Ver = | Size = 116 bytes | Created Date = 12/13/2007 10:45:01 PM | Attr = ] Network Diagnostic -> %SystemRoot%\Network Diagnostic -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] nsreg.dat -> %SystemRoot%\nsreg.dat -> [Ver = | Size = 0 bytes | Created Date = 12/10/2007 10:58:41 PM | Attr = ] NV38363148.TMP -> %SystemRoot%\NV38363148.TMP -> [Folder | Created Date = 12/26/2007 6:50:10 PM | Attr = ] nview -> %SystemRoot%\nview -> [Folder | Created Date = 12/10/2007 10:43:17 PM | Attr = ] ODBCINST.INI -> %SystemRoot%\ODBCINST.INI -> [Ver = | Size = 4161 bytes | Created Date = 12/10/2007 5:19:02 PM | Attr = ] Offline Web Pages -> %SystemRoot%\Offline Web Pages -> [Folder | Created Date = 12/10/2007 10:33:43 PM | Attr = ] OPTIONS -> %SystemRoot%\OPTIONS -> [Folder | Created Date = 12/10/2007 11:09:42 PM | Attr = ] pchealth -> %SystemRoot%\pchealth -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] PeerNet -> %SystemRoot%\PeerNet -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] PIF -> %SystemRoot%\PIF -> [Folder | Created Date = 12/13/2007 9:52:05 PM | Attr = H ] Prairie Wind.bmp -> %SystemRoot%\Prairie Wind.bmp -> [Ver = | Size = 65954 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] Prefetch -> %SystemRoot%\Prefetch -> [Folder | Created Date = 12/10/2007 10:39:20 PM | Attr = ] Provisioning -> %SystemRoot%\Provisioning -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] pss -> %SystemRoot%\pss -> [Folder | Created Date = 12/10/2007 11:59:59 PM | Attr = ] QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1409 bytes | Created Date = 12/29/2007 8:58:50 PM | Attr = ] QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Created Date = 12/29/2007 8:58:50 PM | Attr = H ] Registration -> %SystemRoot%\Registration -> [Folder | Created Date = 12/10/2007 10:33:53 PM | Attr = ] REGLOCS.OLD -> %SystemRoot%\REGLOCS.OLD -> [Ver = | Size = 8192 bytes | Created Date = 12/10/2007 10:39:08 PM | Attr = ] repair -> %SystemRoot%\repair -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Resources -> %SystemRoot%\Resources -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Rhododendron.bmp -> %SystemRoot%\Rhododendron.bmp -> [Ver = | Size = 17362 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] River Sumida.bmp -> %SystemRoot%\River Sumida.bmp -> [Ver = | Size = 26680 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] Santa Fe Stucco.bmp -> %SystemRoot%\Santa Fe Stucco.bmp -> [Ver = | Size = 65832 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] security -> %SystemRoot%\security -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Soap Bubbles.bmp -> %SystemRoot%\Soap Bubbles.bmp -> [Ver = | Size = 65978 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] SoftwareDistribution -> %SystemRoot%\SoftwareDistribution -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] srchasst -> %SystemRoot%\srchasst -> [Folder | Created Date = 12/10/2007 10:34:55 PM | Attr = ] Sun -> %SystemRoot%\Sun -> [Folder | Created Date = 1/15/2008 9:45:08 AM | Attr = ] system -> %SystemRoot%\system -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] system32 -> %System32% -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] Tasks -> %SystemRoot%\Tasks -> [Folder | Created Date = 12/10/2007 10:34:58 PM | Attr = S] Temp -> %SystemRoot%\Temp -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] twain_32 -> %SystemRoot%\twain_32 -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] vb.ini -> %SystemRoot%\vb.ini -> [Ver = | Size = 36 bytes | Created Date = 12/10/2007 10:33:57 PM | Attr = ] vbaddin.ini -> %SystemRoot%\vbaddin.ini -> [Ver = | Size = 37 bytes | Created Date = 12/10/2007 10:33:57 PM | Attr = ] wbem -> %SystemRoot%\wbem -> [Folder | Created Date = 12/10/2007 10:33:42 PM | Attr = ] Web -> %SystemRoot%\Web -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = R ] WindowsShell.Manifest -> %SystemRoot%\WindowsShell.Manifest -> [Ver = | Size = 749 bytes | Created Date = 12/10/2007 10:35:41 PM | Attr = RH ] winnt.bmp -> %SystemRoot%\winnt.bmp -> [Ver = | Size = 48680 bytes | Created Date = 12/10/2007 10:35:06 PM | Attr = HS] winnt256.bmp -> %SystemRoot%\winnt256.bmp -> [Ver = | Size = 48680 bytes | Created Date = 12/10/2007 10:35:06 PM | Attr = HS] WinSxS -> %SystemRoot%\WinSxS -> [Folder | Created Date = 12/10/2007 5:14:17 PM | Attr = ] WMSysPr9.prx -> %SystemRoot%\WMSysPr9.prx -> [Ver = | Size = 316640 bytes | Created Date = 12/10/2007 10:36:45 PM | Attr = ] Zapotec.bmp -> %SystemRoot%\Zapotec.bmp -> [Ver = | Size = 9522 bytes | Created Date = 12/10/2007 10:33:22 PM | Attr = ] {00000004-00000000-00000004-00001102-00000004-20021102}.BAK -> %SystemRoot%\{00000004-00000000-00000004-00001102-00000004-20021102}.BAK -> [Ver = | Size = 4958588 bytes | Created Date = 1/7/2008 9:18:11 PM | Attr = ] {00000004-00000000-00000004-00001102-00000004-20021102}.CDF -> %SystemRoot%\{00000004-00000000-00000004-00001102-00000004-20021102}.CDF -> [Ver = | Size = 4958588 bytes | Created Date = 12/10/2007 11:08:41 PM | Attr = ] AppleSoftwareUpdate.job -> %SystemRoot%\tasks\AppleSoftwareUpdate.job -> [Ver = | Size = 284 bytes | Created Date = 12/13/2007 10:01:31 PM | Attr = ] desktop.ini -> %SystemRoot%\tasks\desktop.ini -> [Ver = | Size = 65 bytes | Created Date = 12/10/2007 10:34:58 PM | Attr = ] SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Created Date = 12/10/2007 10:39:20 PM | Attr = H ] [Files/Folders - Modified Within 30 days] boot.ini -> %SystemDrive%\boot.ini -> [Ver = | Size = 211 bytes | Modified Date = 1/27/2008 1:52:45 PM | Attr = HS] Deckard -> %SystemDrive%\Deckard -> [Folder | Modified Date = 1/27/2008 7:33:43 PM | Attr = ] Program Files -> %ProgramFiles% -> [Folder | Modified Date = 1/27/2008 1:54:55 PM | Attr = R ] System Volume Information -> %SystemDrive%\System Volume Information -> [Folder | Modified Date = 1/27/2008 1:56:41 AM | Attr = HS] WINDOWS -> %SystemRoot% -> [Folder | Modified Date = 1/27/2008 9:11:49 PM | Attr = ] etc -> %System32%\drivers\etc -> [Folder | Modified Date = 1/27/2008 1:21:33 AM | Attr = ] hosts -> %System32%\drivers\etc\hosts -> [Ver = | Size = 27 bytes | Modified Date = 1/27/2008 1:21:33 AM | Attr = ] tmcomm.sys -> %System32%\drivers\tmcomm.sys -> Trend Micro Inc. [Ver = 1.6.0.1059 | Size = 102664 bytes | Modified Date = 1/22/2008 10:54:05 PM | Attr = ] BMXBkpCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXBkpCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 30528 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] BMXCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXCtrlState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 30528 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] BMXState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 31056 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] BMXStateBkp-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\BMXStateBkp-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 31056 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] CatRoot2 -> %System32%\CatRoot2 -> [Folder | Modified Date = 1/27/2008 7:33:56 PM | Attr = ] 1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> DirectX -> %System32%\DirectX -> [Folder | Modified Date = 1/6/2008 10:17:57 AM | Attr = ] dllcache -> %System32%\dllcache -> [Folder | Modified Date = 1/21/2008 9:11:14 PM | Attr = RHS] drivers -> %System32%\drivers -> [Folder | Modified Date = 1/27/2008 1:21:33 PM | Attr = ] DRVSTORE -> %System32%\DRVSTORE -> [Folder | Modified Date = 1/2/2008 6:39:02 PM | Attr = ] DVCState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> %System32%\DVCState-{00000004-00000000-00000004-00001102-00000004-20021102}.rfx -> [Ver = | Size = 11564 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] FNTCACHE.DAT -> %System32%\FNTCACHE.DAT -> [Ver = | Size = 89496 bytes | Modified Date = 12/29/2007 10:08:11 PM | Attr = ] Kaspersky Lab -> %System32%\Kaspersky Lab -> [Folder | Modified Date = 1/27/2008 7:53:55 PM | Attr = ] QuickTime.qts -> %System32%\QuickTime.qts -> Apple Inc. [Ver = 7.4 | Size = 57344 bytes | Modified Date = 1/10/2008 3:27:44 PM | Attr = ] QuickTimeVR.qtx -> %System32%\QuickTimeVR.qtx -> Apple Inc. [Ver = 7.4 | Size = 90112 bytes | Modified Date = 1/10/2008 3:27:46 PM | Attr = ] settings.sfm -> %System32%\settings.sfm -> [Ver = | Size = 1080 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] settingsbkup.sfm -> %System32%\settingsbkup.sfm -> [Ver = | Size = 1080 bytes | Modified Date = 1/27/2008 1:50:30 PM | Attr = ] wpa.dbl -> %System32%\wpa.dbl -> [Ver = | Size = 2206 bytes | Modified Date = 1/27/2008 9:12:01 PM | Attr = ] $hf_mig$ -> %SystemRoot%\$hf_mig$ -> [Folder | Modified Date = 1/9/2008 6:57:26 AM | Attr = H ] 4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> bootstat.dat -> %SystemRoot%\bootstat.dat -> [Ver = | Size = 2048 bytes | Modified Date = 1/27/2008 9:11:22 PM | Attr = S] Debug -> %SystemRoot%\Debug -> [Folder | Modified Date = 1/9/2008 6:57:33 AM | Attr = ] Downloaded Program Files -> %SystemRoot%\Downloaded Program Files -> [Folder | Modified Date = 1/27/2008 7:53:56 PM | Attr = S] erdnt -> %SystemRoot%\erdnt -> [Folder | Modified Date = 1/27/2008 1:49:18 AM | Attr = ] imsins.BAK -> %SystemRoot%\imsins.BAK -> [Ver = | Size = 1355 bytes | Modified Date = 1/9/2008 6:57:25 AM | Attr = ] inf -> %SystemRoot%\inf -> [Folder | Modified Date = 1/27/2008 7:53:55 PM | Attr = H ] Installer -> %SystemRoot%\Installer -> [Folder | Modified Date = 1/27/2008 1:55:34 PM | Attr = HS] NeroDigital.ini -> %SystemRoot%\NeroDigital.ini -> [Ver = | Size = 116 bytes | Modified Date = 1/27/2008 10:41:43 PM | Attr = ] pchealth -> %SystemRoot%\pchealth -> [Folder | Modified Date = 1/2/2008 6:51:52 PM | Attr = ] Prefetch -> %SystemRoot%\Prefetch -> [Folder | Modified Date = 1/28/2008 6:56:09 AM | Attr = ] pss -> %SystemRoot%\pss -> [Folder | Modified Date = 1/6/2008 9:09:19 AM | Attr = ] QTFont.for -> %SystemRoot%\QTFont.for -> [Ver = | Size = 1409 bytes | Modified Date = 1/1/2008 3:23:18 PM | Attr = ] QTFont.qfn -> %SystemRoot%\QTFont.qfn -> [Ver = | Size = 54156 bytes | Modified Date = 1/27/2008 1:51:56 PM | Attr = H ] Sun -> %SystemRoot%\Sun -> [Folder | Modified Date = 1/15/2008 9:45:08 AM | Attr = ] system.ini -> %SystemRoot%\system.ini -> [Ver = | Size = 227 bytes | Modified Date = 1/27/2008 1:52:45 PM | Attr = ] system32 -> %System32% -> [Folder | Modified Date = 1/27/2008 7:53:55 PM | Attr = ] Tasks -> %SystemRoot%\Tasks -> [Folder | Modified Date = 1/27/2008 1:19:52 AM | Attr = S] Temp -> %SystemRoot%\Temp -> [Folder | Modified Date = 1/28/2008 6:57:18 AM | Attr = ] win.ini -> %SystemRoot%\win.ini -> [Ver = | Size = 646 bytes | Modified Date = 1/27/2008 1:54:54 PM | Attr = ] {00000004-00000000-00000004-00001102-00000004-20021102}.BAK -> %SystemRoot%\{00000004-00000000-00000004-00001102-00000004-20021102}.BAK -> [Ver = | Size = 4958588 bytes | Modified Date = 1/27/2008 1:50:13 PM | Attr = ] {00000004-00000000-00000004-00001102-00000004-20021102}.CDF -> %SystemRoot%\{00000004-00000000-00000004-00001102-00000004-20021102}.CDF -> [Ver = | Size = 4958588 bytes | Modified Date = 1/27/2008 1:50:13 PM | Attr = ] AppleSoftwareUpdate.job -> %SystemRoot%\tasks\AppleSoftwareUpdate.job -> [Ver = | Size = 284 bytes | Modified Date = 1/25/2008 5:52:01 PM | Attr = ] SA.DAT -> %SystemRoot%\tasks\SA.DAT -> [Ver = | Size = 6 bytes | Modified Date = 1/27/2008 9:11:27 PM | Attr = H ] qmgr0.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr0 -> [Ver = | Size = 4646 bytes | Modified Date = 1/9/2008 5:01:50 AM | Attr = ] qmgr1.dat -> C:\Documents and Settings\All Users\Application Data\Microsoft\Network\Downloader\qmgr1 -> [Ver = | Size = 4232 bytes | Modified Date = 1/9/2008 5:01:50 AM | Attr = ] catchme.exe -> C:\Documents and Settings\alex\Local Settings\Temp\Rootchk\catchme -> [Ver = | Size = 142336 bytes | Modified Date = 12/28/2007 3:23:32 PM | Attr = ] chkdrv.exe -> C:\Documents and Settings\alex\Local Settings\Temp\Rootchk\chkdrv -> [Ver = | Size = 60416 bytes | Modified Date = 8/15/2007 4:31:08 PM | Attr = ] ISADMIN.EXE -> C:\Documents and Settings\alex\Local Settings\Temp\Rootchk\ISADMIN -> [Ver = 6.3.0.0 | Size = 33280 bytes | Modified Date = 8/25/2005 3:52:06 AM | Attr = ] swt-gdip-win32-3347.dll -> C:\Documents and Settings\alex\Local Settings\Temp\swt-gdip-win32-3347.dll -> Eclipse Foundation [Ver = 3.346 | Size = 77824 bytes | Modified Date = 1/27/2008 7:31:49 PM | Attr = ] swt-win32-3347.dll -> C:\Documents and Settings\alex\Local Settings\Temp\swt-win32-3347.dll -> Eclipse Foundation [Ver = 3.346 | Size = 307200 bytes | Modified Date = 1/27/2008 3:06:09 PM | Attr = ] 10 C:\Documents and Settings\alex\Local Settings\Temp\*.tmp files -> C:\Documents and Settings\alex\Local Settings\Temp\*.tmp -> LUSETUP.EXE -> C:\WINDOWS\Temp\GZTMQQNZ\LUSETUP -> [Ver = | Size = 2953128 bytes | Modified Date = 12/13/2006 5:12:00 AM | Attr = ] cba.dll -> C:\WINDOWS\Temp\cba.dll -> LANDesk Software Ltd. [Ver = 6.12.0.142 E | Size = 34600 bytes | Modified Date = 9/27/2006 8:35:04 PM | Attr = ] msgsys.dll -> C:\WINDOWS\Temp\msgsys.dll -> LANDesk Software Ltd. [Ver = 6.12.0.142 E | Size = 46896 bytes | Modified Date = 9/27/2006 8:35:06 PM | Attr = ] msvcp71.dll -> C:\WINDOWS\Temp\msvcp71.dll -> Microsoft Corporation [Ver = 7.10.3077.0 | Size = 499712 bytes | Modified Date = 3/18/2003 9:14:52 PM | Attr = ] msvcr71.dll -> C:\WINDOWS\Temp\msvcr71.dll -> Microsoft Corporation [Ver = 7.10.3052.4 | Size = 348160 bytes | Modified Date = 2/21/2003 5:42:22 AM | Attr = ] nts.dll -> C:\WINDOWS\Temp\nts.dll -> LANDesk Software Ltd. [Ver = 6.12.0.142 E | Size = 83752 bytes | Modified Date = 9/27/2006 8:35:06 PM | Attr = ] pds.dll -> C:\WINDOWS\Temp\pds.dll -> LANDesk Software Ltd. [Ver = 6.12.0.142 E | Size = 83752 bytes | Modified Date = 9/27/2006 8:35:08 PM | Attr = ] ScsComms.dll -> C:\WINDOWS\Temp\ScsComms.dll -> Symantec Corporation [Ver = 10.1.5.5000 | Size = 1028336 bytes | Modified Date = 9/27/2006 8:34:14 PM | Attr = ] Transman.dll -> C:\WINDOWS\Temp\Transman.dll -> Symantec Corporation [Ver = 10.1.5.5000 | Size = 461552 bytes | Modified Date = 9/27/2006 8:34:16 PM | Attr = ] 0a6b9f23e356336cc61530f586d0c66a.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\0a6b9f23e356336cc61530f586d0c66a.dll -> [Ver = | Size = 20585 bytes | Modified Date = 1/27/2008 8:56:05 PM | Attr = R ] 1ff4eae997b1753d848dbbc61d1b4345.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\1ff4eae997b1753d848dbbc61d1b4345.dll -> [Ver = | Size = 28787 bytes | Modified Date = 1/27/2008 8:56:04 PM | Attr = R ] 31aa023220b46a62dd91739a3bf1cad4.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\31aa023220b46a62dd91739a3bf1cad4.dll -> [Ver = | Size = 36981 bytes | Modified Date = 1/27/2008 8:56:04 PM | Attr = R ] 36971e8ed4d19cc0a7051079b039c204.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\36971e8ed4d19cc0a7051079b039c204.dll -> [Ver = | Size = 28789 bytes | Modified Date = 1/27/2008 8:56:04 PM | Attr = R ] 42db37dadb779dbfc5da8bdd7ec61c52.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\42db37dadb779dbfc5da8bdd7ec61c52.dll -> [Ver = | Size = 20571 bytes | Modified Date = 1/27/2008 8:56:03 PM | Attr = R ] 44abde5de65f3f034faac2c132713018.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\44abde5de65f3f034faac2c132713018.dll -> [Ver = | Size = 24671 bytes | Modified Date = 1/27/2008 8:56:03 PM | Attr = R ] 7aace6f21e4c397996b145b7fd777643.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\7aace6f21e4c397996b145b7fd777643.dll -> [Ver = | Size = 77941 bytes | Modified Date = 1/27/2008 8:56:04 PM | Attr = R ] 7acaa276f32e012922082aa697dfa218.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\7acaa276f32e012922082aa697dfa218.dll -> [Ver = | Size = 24675 bytes | Modified Date = 1/27/2008 8:56:03 PM | Attr = R ] 89f4ac43ba2b792785d9d472365e562b.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\89f4ac43ba2b792785d9d472365e562b.dll -> [Ver = | Size = 24665 bytes | Modified Date = 1/27/2008 8:56:05 PM | Attr = R ] 8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> [Ver = | Size = 32873 bytes | Modified Date = 1/27/2008 8:56:04 PM | Attr = R ] b2774d247dfbf0abe8539e577ee59b4c.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1192\b2774d247dfbf0abe8539e577ee59b4c.dll -> [Ver = | Size = 28767 bytes | Modified Date = 1/27/2008 8:56:04 PM | Attr = R ] 0a6b9f23e356336cc61530f586d0c66a.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\0a6b9f23e356336cc61530f586d0c66a.dll -> [Ver = | Size = 20585 bytes | Modified Date = 1/27/2008 8:53:02 PM | Attr = R ] 1ff4eae997b1753d848dbbc61d1b4345.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\1ff4eae997b1753d848dbbc61d1b4345.dll -> [Ver = | Size = 28787 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 31aa023220b46a62dd91739a3bf1cad4.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\31aa023220b46a62dd91739a3bf1cad4.dll -> [Ver = | Size = 36981 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 36971e8ed4d19cc0a7051079b039c204.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\36971e8ed4d19cc0a7051079b039c204.dll -> [Ver = | Size = 28789 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 42db37dadb779dbfc5da8bdd7ec61c52.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\42db37dadb779dbfc5da8bdd7ec61c52.dll -> [Ver = | Size = 20571 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 44abde5de65f3f034faac2c132713018.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\44abde5de65f3f034faac2c132713018.dll -> [Ver = | Size = 24671 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 7aace6f21e4c397996b145b7fd777643.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\7aace6f21e4c397996b145b7fd777643.dll -> [Ver = | Size = 77941 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 7acaa276f32e012922082aa697dfa218.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\7acaa276f32e012922082aa697dfa218.dll -> [Ver = | Size = 24675 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] 89f4ac43ba2b792785d9d472365e562b.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\89f4ac43ba2b792785d9d472365e562b.dll -> [Ver = | Size = 24665 bytes | Modified Date = 1/27/2008 8:53:02 PM | Attr = R ] 8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> [Ver = | Size = 32873 bytes | Modified Date = 1/27/2008 8:53:01 PM | Attr = R ] b2774d247dfbf0abe8539e577ee59b4c.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1528\b2774d247dfbf0abe8539e577ee59b4c.dll -> [Ver = | Size = 28767 bytes | Modified Date = 1/27/2008 8:53:02 PM | Attr = R ] 0a6b9f23e356336cc61530f586d0c66a.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\0a6b9f23e356336cc61530f586d0c66a.dll -> [Ver = | Size = 20585 bytes | Modified Date = 1/27/2008 9:11:44 PM | Attr = R ] 1ff4eae997b1753d848dbbc61d1b4345.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\1ff4eae997b1753d848dbbc61d1b4345.dll -> [Ver = | Size = 28787 bytes | Modified Date = 1/27/2008 9:11:43 PM | Attr = R ] 31aa023220b46a62dd91739a3bf1cad4.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\31aa023220b46a62dd91739a3bf1cad4.dll -> [Ver = | Size = 36981 bytes | Modified Date = 1/27/2008 9:11:43 PM | Attr = R ] 36971e8ed4d19cc0a7051079b039c204.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\36971e8ed4d19cc0a7051079b039c204.dll -> [Ver = | Size = 28789 bytes | Modified Date = 1/27/2008 9:11:43 PM | Attr = R ] 42db37dadb779dbfc5da8bdd7ec61c52.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\42db37dadb779dbfc5da8bdd7ec61c52.dll -> [Ver = | Size = 20571 bytes | Modified Date = 1/27/2008 9:11:42 PM | Attr = R ] 44abde5de65f3f034faac2c132713018.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\44abde5de65f3f034faac2c132713018.dll -> [Ver = | Size = 24671 bytes | Modified Date = 1/27/2008 9:11:42 PM | Attr = R ] 7aace6f21e4c397996b145b7fd777643.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\7aace6f21e4c397996b145b7fd777643.dll -> [Ver = | Size = 77941 bytes | Modified Date = 1/27/2008 9:11:43 PM | Attr = R ] 7acaa276f32e012922082aa697dfa218.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\7acaa276f32e012922082aa697dfa218.dll -> [Ver = | Size = 24675 bytes | Modified Date = 1/27/2008 9:11:42 PM | Attr = R ] 89f4ac43ba2b792785d9d472365e562b.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\89f4ac43ba2b792785d9d472365e562b.dll -> [Ver = | Size = 24665 bytes | Modified Date = 1/27/2008 9:11:44 PM | Attr = R ] 8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> [Ver = | Size = 32873 bytes | Modified Date = 1/27/2008 9:11:42 PM | Attr = R ] b2774d247dfbf0abe8539e577ee59b4c.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-1624\b2774d247dfbf0abe8539e577ee59b4c.dll -> [Ver = | Size = 28767 bytes | Modified Date = 1/27/2008 9:11:43 PM | Attr = R ] 0a6b9f23e356336cc61530f586d0c66a.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\0a6b9f23e356336cc61530f586d0c66a.dll -> [Ver = | Size = 20585 bytes | Modified Date = 1/27/2008 1:55:26 PM | Attr = R ] 1ff4eae997b1753d848dbbc61d1b4345.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\1ff4eae997b1753d848dbbc61d1b4345.dll -> [Ver = | Size = 28787 bytes | Modified Date = 1/27/2008 1:55:25 PM | Attr = R ] 31aa023220b46a62dd91739a3bf1cad4.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\31aa023220b46a62dd91739a3bf1cad4.dll -> [Ver = | Size = 36981 bytes | Modified Date = 1/27/2008 1:55:25 PM | Attr = R ] 36971e8ed4d19cc0a7051079b039c204.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\36971e8ed4d19cc0a7051079b039c204.dll -> [Ver = | Size = 28789 bytes | Modified Date = 1/27/2008 1:55:26 PM | Attr = R ] 42db37dadb779dbfc5da8bdd7ec61c52.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\42db37dadb779dbfc5da8bdd7ec61c52.dll -> [Ver = | Size = 20571 bytes | Modified Date = 1/27/2008 1:55:24 PM | Attr = R ] 44abde5de65f3f034faac2c132713018.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\44abde5de65f3f034faac2c132713018.dll -> [Ver = | Size = 24671 bytes | Modified Date = 1/27/2008 1:55:24 PM | Attr = R ] 7aace6f21e4c397996b145b7fd777643.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\7aace6f21e4c397996b145b7fd777643.dll -> [Ver = | Size = 77941 bytes | Modified Date = 1/27/2008 1:55:24 PM | Attr = R ] 7acaa276f32e012922082aa697dfa218.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\7acaa276f32e012922082aa697dfa218.dll -> [Ver = | Size = 24675 bytes | Modified Date = 1/27/2008 1:55:24 PM | Attr = R ] 89f4ac43ba2b792785d9d472365e562b.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\89f4ac43ba2b792785d9d472365e562b.dll -> [Ver = | Size = 24665 bytes | Modified Date = 1/27/2008 1:55:26 PM | Attr = R ] 8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\8d3b343ab48cfb6b14fa9d0dc35ce9e6.dll -> [Ver = | Size = 32873 bytes | Modified Date = 1/27/2008 1:55:24 PM | Attr = R ] b2774d247dfbf0abe8539e577ee59b4c.dll -> C:\WINDOWS\Temp\pdk-SYSTEM-3184\b2774d247dfbf0abe8539e577ee59b4c.dll -> [Ver = | Size = 28767 bytes | Modified Date = 1/27/2008 1:55:26 PM | Attr = R ] Perflib_Perfdata_4c4.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_4c4 -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 1:16:31 PM | Attr = ] Perflib_Perfdata_5ac.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_5ac -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 8:53:05 PM | Attr = ] Perflib_Perfdata_5c4.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_5c4 -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 9:11:51 PM | Attr = ] Perflib_Perfdata_618.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_618 -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 1:51:38 PM | Attr = ] Perflib_Perfdata_6c0.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_6c0 -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 8:55:37 PM | Attr = ] Perflib_Perfdata_708.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_708 -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 1:16:13 PM | Attr = ] Perflib_Perfdata_718.dat -> C:\WINDOWS\Temp\Perflib_Perfdata_718 -> [Ver = | Size = 16384 bytes | Modified Date = 1/27/2008 1:51:18 PM | Attr = ] [CatchMe Rootkit Scan by GMER] < Windows folder & sub-folders > scanning hidden processes ... IPC error: 2 The system cannot find the file specified. scanning hidden services & system hive ... [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:5e,7e,b0,57,18,31,d8,8b,c5,86,3b,83,92,79,a9,05,16,91,82,e3,43,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,f2,27,bd,bf,4b,bd,dd,61,46,11,04,a1,f2,7d,bb,13,44,.. "khjeh"=hex:cc,a6,34,3d,c8,e8,52,68,9e,67,5f,90,65,a9,97,90,bf,35,6f,65,18,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:3c,29,fb,71,e3,d7,1f,94,5d,f1,f3,50,cf,28,0d,04,aa,83,8c,da,64,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:4c,39,70,ec,d4,21,23,9b,40,c7,51,8e,36,da,f6,16,57,78,56,89,35,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42] "khjeh"=hex:42,7e,5b,2b,6a,d7,3a,58,62,3f,76,3a,21,79,e6,15,06,59,6c,24,75,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43] "khjeh"=hex:42,7e,5b,2b,6a,d7,3a,58,62,3f,76,3a,21,79,e6,15,06,59,6c,24,75,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg] "s1"=dword:2df9c43f "s2"=dword:110480d0 "h0"=dword:00000001 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:5e,7e,b0,57,18,31,d8,8b,c5,86,3b,83,92,79,a9,05,16,91,82,e3,43,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,f2,27,bd,bf,4b,bd,dd,61,46,11,04,a1,f2,7d,bb,13,44,.. "khjeh"=hex:29,bd,b5,5b,2d,b3,02,e3,ae,bf,73,e7,df,7c,f3,6b,4e,1f,01,bb,da,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:3c,29,fb,71,e3,d7,1f,94,5d,f1,f3,50,cf,28,0d,04,aa,83,8c,da,64,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:55,00,bc,17,06,71,b7,71,45,f1,4f,a6,85,61,db,40,34,f3,c6,7b,86,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42] "khjeh"=hex:42,7e,5b,2b,6a,d7,3a,58,62,3f,76,3a,21,79,e6,15,06,59,6c,24,75,.. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43] "khjeh"=hex:42,7e,5b,2b,6a,d7,3a,58,62,3f,76,3a,21,79,e6,15,06,59,6c,24,75,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4] "p0"="C:\Program Files\DAEMON Tools\" "h0"=dword:00000000 "khjeh"=hex:5e,7e,b0,57,18,31,d8,8b,c5,86,3b,83,92,79,a9,05,16,91,82,e3,43,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001] "a0"=hex:20,01,00,00,f2,27,bd,bf,4b,bd,dd,61,46,11,04,a1,f2,7d,bb,13,44,.. "khjeh"=hex:29,bd,b5,5b,2d,b3,02,e3,ae,bf,73,e7,df,7c,f3,6b,4e,1f,01,bb,da,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf40] "khjeh"=hex:20,a0,96,9c,3c,49,86,e7,d6,61,0e,6b,2e,a4,b0,cd,89,e3,69,66,7a,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf41] "khjeh"=hex:8f,83,dd,b6,99,ac,c6,a6,9f,49,73,08,84,7b,41,93,7f,c4,f8,04,3f,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf42] "khjeh"=hex:42,7e,5b,2b,6a,d7,3a,58,62,3f,76,3a,21,79,e6,15,06,59,6c,24,75,.. [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet004\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001\0Jf43] "khjeh"=hex:42,7e,5b,2b,6a,d7,3a,58,62,3f,76,3a,21,79,e6,15,06,59,6c,24,75,.. scanning hidden registry entries ... scanning hidden files ... scan completed successfully hidden processes: 0 hidden services: 0 hidden files: 0 < Document and Settings folder & sub folders > scanning hidden files ... IPC error: 2 The system cannot find the file specified. C:\Documents and Settings\adge\Favorites\MSK Office.url:favicon 302 bytes C:\Documents and Settings\adge\My Documents\My Pictures\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\Desktop\bier garten\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\Desktop\Pics\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\Desktop\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Green.Street.Hooligans[2005]DvDrip[Eng]-aXXo\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\hold\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\Videos\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1988] Underneath The Radar\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1989] Change The Weather\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1993] Dirty Epic_Cowgirl [single] [1994]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1993] Dubnobasswithmyheadman\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1994] Dark & Long\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1996] Pearl's Girl EP [1997]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1996] Second Toughest in The Infants\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1997] Moaner [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1998] Push Upstairs [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1999] Beaucoup Fish\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1999] Bruce Lee [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1999] Darren Emerson Mix\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1999] Jumbo [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1999] King of Snake [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2000] Cowgirl [single remixes]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2000] Everything Everything [Live]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[1995] Born Slippy [single] [1996]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2002] A Hundred Days Off\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2002] Dinosaur Adventure 3D [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2002] Two Months Off [single]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2003] Back to Mine [Underworld]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2003] Born Slippy Nuxx [single remixes]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2003] Peel Session\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2005] JAL to Tokyo EP [2006]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2005] Lovely Broken Thing EP\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2005] Pizza for Eggs EP\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2006] Breaking and Entering [feat Gabriel Yared]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2006] I'm a Big Sister, and I'm a Girl, and I'm a Princess and This Is My Horse EP\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2006] Peggy Sussed [single remixes]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2006] Play Pig [single remixes]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\alex\My Documents\Azureus Downloads\Underworld\[2006] Vanilla Monkey [single remixes]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\Audio Books\Moths Ate My Doctor Who Scarf - BBC7 - iPod Audiobook (Unedited)\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Bob Dylan - Dylan Deluxe Edition (2007-3CD)\Booklet\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Bob Dylan - Dylan Deluxe Edition (2007-3CD)\Disc 1\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Bob Dylan - Dylan Deluxe Edition (2007-3CD)\Disc 2\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Bob Dylan - Dylan Deluxe Edition (2007-3CD)\Disc 3\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Bob Dylan - Dylan Deluxe Edition (2007-3CD)\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Hotel Costes\Hotel.Costes.Vol.1.Cafe.Costes.256kbps-Ada-[tBR]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Hotel Costes\Hotel.Costes.Vol.4.Quatre.256kbps-Ada-[tBR]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Hotel Costes\Hotel.Costes.Vol.6-256kbps-Ada-[tBR]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\(1973) Tom Waits - Closing Time [320kbps]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\(1975) Tom Waits - Nighthawks At The Diner [320kbps]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\(1977) Tom Waits - Foreign Affairs [320kbps]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\(1984) [Bootleg] Tom Waits - On Broadway [320kbps]\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\Tom Waits - Orphans Brawlers, Bawlers, Bastards (2006) - Rock By FEFE2003\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\Tom Waits - Orphans Brawlers, Bawlers, Bastards (2006) - Rock By FEFE2003\Tom Waits - Orphans Brawlers, Bawlers, Bastards (2006) - Rock By FEFE2003\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Music\Tom\Rain Dogs\Thumbs.db:encryptable 0 bytes C:\Documents and Settings\All Users\Documents\My Pictures\Sample Pictures\Thumbs.db:encryptable 0 bytes scan completed successfully hidden files: 145 < End of report > [/code]