[kmenchaca78]

My desktop has recently changed to a background saying Windows has detected spyware! i ran a few cleanup programs which fixed it temporarily which then switches back. I am currently running Windows XP Pro x64. HijackThis follows and thanks for you help in advance




Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 13:31:39, on 8/22/2008
Platform: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
C:\Program Files (x86)\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe
C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\acrobat_sl.exe
C:\Program Files (x86)\SanDisk\SanDisk TransferMate\SD Monitor.exe
C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files (x86)\iPod\bin\iPodService.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\PROGRA~2\PRMT6\PRMTED\prmedsvr.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://us.rd.yahoo.c...//www.yahoo.com
F2 - REG:system.ini: UserInit=userinit
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Translator - {FF284F5C-7CF9-4682-8701-D467C1DBB99F} - C:\Program Files (x86)\PRMT6\PRMTIE\prmtie.dll
O3 - Toolbar: bgrqfetx - {892B88A3-DC94-4A1F-A75A-9AA50061A683} - C:\WINDOWS\bgrqfetx.dll (file missing)
O4 - HKLM\..\Run: [Adobe Version Cue CS2] "C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [\Win64.exe] C:\Windows\SysWow64\Win64.exe
O4 - HKLM\..\Run: [\Win65.exe] C:\Windows\SysWow64\Win65.exe
O4 - HKLM\..\Run: [\Win66.exe] C:\Windows\SysWow64\Win66.exe
O4 - HKLM\..\Run: [\Win67.exe] C:\Windows\SysWow64\Win67.exe
O4 - HKLM\..\Run: [\Win6B.exe] C:\Windows\SysWow64\Win6B.exe
O4 - HKLM\..\Run: [Antivirus] "C:\Program Files (x86)\VAV\vav.exe"
O4 - HKLM\..\Run: [SMrhcgltj0e58a] "C:\Program Files (x86)\rhcgltj0e58a\rhcgltj0e58a.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [EDLauncher] C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe
O4 - HKCU\..\Run: [antispy] C:\Program Files (x86)\MalwareBell\malwarebell.exe
O4 - HKCU\..\Run: [\Win64.exe] C:\Windows\system32\Win64.exe
O4 - HKCU\..\Run: [\Win65.exe] C:\Windows\system32\Win65.exe
O4 - HKCU\..\Run: [\Win66.exe] C:\Windows\system32\Win66.exe
O4 - HKCU\..\Run: [\Win67.exe] C:\Windows\system32\Win67.exe
O4 - HKCU\..\Run: [\Win6B.exe] C:\Windows\system32\Win6B.exe
O4 - HKCU\..\Run: [Antivirus] C:\Program Files (x86)\VAV\vav.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Monitor.lnk = C:\Program Files (x86)\SanDisk\SanDisk TransferMate\SD Monitor.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files (x86)\PRMT6\PRMTIE\prmtie5.htm
O9 - Extra 'Tools' menuitem: Translate - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files (x86)\PRMT6\PRMTIE\prmtie5.htm
O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files (x86)\PRMT6\PRMTIE\options.htm
O9 - Extra 'Tools' menuitem: Customize translation options - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files (x86)\PRMT6\PRMTIE\options.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {1DB93715-3B60-43EE-93E6-279BB3E1DF76} (OCXDownloadChecker Control) - http://70.248.161.15...hecker_6110.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1147322599394
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.mi...b?1219104357187
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://atv.disney.go...y/OTOYAX29b.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O16 - DPF: {DBAFE6AD-DC14-45DF-A3F7-F8832289A1CD} (DownloadFile Control) - http://70.248.161.15...adFile_7000.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: fccdeeEt - fccdeeEt.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS2 - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C:\WINDOWS\system32\msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NT LM Security Support Provider (NtLmSsp) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe (file missing)
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe (file missing)
O23 - Service: Security Accounts Manager (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe (file missing)
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe (file missing)

--
End of file - 13119 bytes

Edited by kmenchaca78, 22 August 2008 - 12:56 PM.

[Advertisements]

Hello and welcome to GTG..



Please download Malwarebytes' Anti-Malware from HERE or HERE

Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select "Perform Full Scan", then click Scan.
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

[fenzodahl512]

Hello and welcome to GTG..



Please download Malwarebytes' Anti-Malware from HERE or HERE

Double Click mbam-setup.exe to install the application.

• Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
• If an update is found, it will download and install the latest version.
• Once the program has loaded, select "Perform Full Scan", then click Scan.
• The scan may take some time to finish,so please be patient.
• When the scan is complete, click OK, then Show Results to view the results.
• Make sure that everything is checked, and click Remove Selected.
• When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
• The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
• Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process,if asked to restart the computer,please do so immediately.

[kmenchaca78]

Ok, scan was completed with 41 infections removed.

Here is the log:



Malwarebytes' Anti-Malware 1.25
Database version: 1087
Windows 5.2.3790 Service Pack 2

12:28:20 PM 8/25/2008
mbam-log-08-25-2008 (12-28-20).txt

Scan type: Quick Scan
Objects scanned: 40026
Time elapsed: 5 minute(s), 38 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 11
Registry Values Infected: 11
Registry Data Items Infected: 0
Folders Infected: 12
Files Infected: 7

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\ssv.ssvhelper (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{a2facffe-5638-4190-a610-39ec82c9999c} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{69f6c0ae-0c78-4999-b6d1-62932a265c5d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{e482a951-26ed-4898-a1eb-09a942d95a52} (Trojan.Vundo) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Typelib\{9a68de30-5717-4bb6-a504-bba851bfb08c} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\AppID\{69f6c0ae-0c78-4999-b6d1-62932a265c5d} (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\VAV (Rogue.VistaAntivirus2008) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Software Notifier (Rogue.Multiple) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bgrqfetx.bolb (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\bgrqfetx.toolbar.1 (Trojan.FakeAlert) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Multimedia\WMPlayer\Schemes\f3pss (Adware.MyWebSearch) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win64.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win65.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win66.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win67.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win6b.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win64.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win65.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win66.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win67.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\\win6b.exe (Trojan.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\smrhcgltj0e58a (Trojan.FakeAlert) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files (x86)\PCHealthCenter (Trojan.Fakealert) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun\HKCU (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun\HKCU\RunOnce (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun\HKLM (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun\HKLM\RunOnce (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun\StartMenuAllUsers (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Autorun\StartMenuCurrentUser (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\BrowserObjects (Rogue.Multiple) -> Quarantined and deleted successfully.
C:\Documents and Settings\Administrator\Application Data\rhcgltj0e58a\Quarantine\Packages (Rogue.Multiple) -> Quarantined and deleted successfully.

Files Infected:
C:\Program Files (x86)\PCHealthCenter\0.gif (Trojan.Fakealert) -> Quarantined and deleted successfully.
C:\Program Files (x86)\PCHealthCenter\2.gif (Trojan.Fakealert) -> Quarantined and deleted successfully.
C:\Program Files (x86)\PCHealthCenter\3.gif (Trojan.Fakealert) -> Quarantined and deleted successfully.
C:\Program Files (x86)\PCHealthCenter\5.exe (Trojan.Fakealert) -> Quarantined and deleted successfully.
C:\Program Files (x86)\PCHealthCenter\sc.html (Trojan.Fakealert) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\blphclltj0e58a.scr (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\system32\explorer.exe.Z-missing.txt (Heuristics.Reserved.Word.Exploit) -> Quarantined and deleted successfully.

[fenzodahl512]

Please download OTViewIt to your desktop.

• Close all windows and double click OTViewIt
• Place a tick in the Scan all Users box
• In the File Age drop down box select 90 days
• Click Run Scan and let the program run uninterrupted
• On completion it will produce two logs on the Desktop, post the OTViewIt.txt and Extras.txt logs in your next post.
• Post each log in separate post

[kmenchaca78]

OTViewIt logfile created on: 8/25/2008 6:39:57 PM - Run 1
OTViewIt by OldTimer - Version 1.0.0.12 Folder = E:\lindas pc
Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1022.31 Mb Total Physical Memory | 451.59 Mb Available Physical Memory | 44.17% Memory free
2.43 Gb Paging File | 1.92 Gb Available in Paging File | 78.78% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.88 Gb Total Space | 212.89 Gb Free Space | 91.42% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1.92 Gb Total Space | 0.51 Gb Free Space | 26.46% Space Free | Partition Type: FAT
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: ALL-STAR
Current User Name: Administrator
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users

===== Processes - Non-Microsoft Only =====

[04/04/2005 06:58 PM | 00,163,840 | ---- | M] (Adobe Systems Incorporated) - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
[08/22/2008 01:42 AM | 00,231,704 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgwdsvc.exe
[11/30/2004 10:08 AM | 00,020,543 | ---- | M] (Apache Software Foundation) - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
[02/24/2005 05:19 PM | 00,057,409 | ---- | M] (NVIDIA) - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
[01/04/2007 04:38 PM | 00,024,652 | ---- | M] (Viewpoint Corporation) - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
[02/24/2005 05:23 PM | 00,139,264 | ---- | M] () - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
[11/30/2004 10:08 AM | 00,020,543 | ---- | M] (Apache Software Foundation) - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
[04/04/2005 06:58 PM | 03,502,080 | ---- | M] () - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
[12/20/2004 05:12 PM | 00,131,072 | ---- | M] (NVIDIA Corporation) - C:\Program Files (x86)\NVIDIA Corporation\NvMixer\NvMixerTray.exe
[11/03/2004 12:01 PM | 00,073,728 | ---- | M] (PROMT Ltd.) - C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe
[01/20/2005 07:36 PM | 00,110,592 | ---- | M] (PROMT Ltd.) - C:\Program Files (x86)\PRMT6\PRMTED\prmedsvr.exe
[04/04/2005 06:58 PM | 00,856,064 | ---- | M] (Adobe Sytems Incorporated) - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
[12/14/2004 02:12 AM | 00,483,328 | ---- | M] (Adobe Systems Inc.) - C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Distillr\acrotray.exe
[01/05/2006 11:57 AM | 00,114,688 | ---- | M] (SanDisk) - C:\Program Files (x86)\SanDisk\SanDisk TransferMate\SD Monitor.exe
[06/06/2005 11:46 PM | 00,057,344 | ---- | M] (Adobe Systems Incorporated) - C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
[09/25/2007 02:11 AM | 00,132,496 | ---- | M] (Sun Microsystems, Inc.) - C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
[02/04/2008 03:18 PM | 00,267,048 | ---- | M] (Apple Inc.) - C:\Program Files (x86)\iTunes\iTunesHelper.exe
[08/22/2008 01:42 AM | 01,235,736 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgtray.exe
[06/30/2006 12:41 AM | 00,077,824 | ---- | M] () - C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
[02/04/2008 03:18 PM | 00,504,104 | ---- | M] (Apple Inc.) - C:\Program Files (x86)\iPod\bin\iPodService.exe
[08/25/2008 06:38 PM | 01,299,968 | ---- | M] (OldTimer Tools) - E:\lindas pc\OTViewIt.exe

===== Win32 Services - Non-Microsoft Only =====

(Adobe LM Service) Adobe LM Service [On_Demand | Stopped]
[05/15/2006 11:17 AM | 00,072,704 | ---- | M] (Adobe Systems) - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe

(Adobe Version Cue CS2) Adobe Version Cue CS2 [Auto | Running]
[04/04/2005 06:58 PM | 00,163,840 | ---- | M] (Adobe Systems Incorporated) - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe

(avg8wd) AVG Free8 WatchDog [Auto | Running]
[08/22/2008 01:42 AM | 00,231,704 | ---- | M] (AVG Technologies CZ, s.r.o.) - C:\Program Files\AVG\AVG8\avgwdsvc.exe

(dmadmin) Logical Disk Manager Administrative Service [On_Demand | Stopped]
File not found - %SystemRoot%\System32\dmadmin.exe

(Eventlog) Event Log [Auto | Running]
File not found - %SystemRoot%\system32\services.exe

(ForceWare Intelligent Application Manager (IAM)) ForceWare Intelligent Application Manager (IAM) [Auto | Running]
[02/24/2005 05:23 PM | 00,139,264 | ---- | M] () - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe

(ForcewareWebInterface) Forceware Web Interface [Auto | Running]
[11/30/2004 10:08 AM | 00,020,543 | ---- | M] (Apache Software Foundation) - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe

(HTTPFilter) HTTP SSL [On_Demand | Stopped]
File not found - %SystemRoot%\System32\lsass.exe

(ImapiService) IMAPI CD-Burning COM Service [On_Demand | Stopped]
File not found - C:\WINDOWS\system32\imapi.exe

(iPod Service) iPod Service [On_Demand | Running]
[02/04/2008 03:18 PM | 00,504,104 | ---- | M] (Apple Inc.) - C:\Program Files (x86)\iPod\bin\iPodService.exe

(MSDTC) Distributed Transaction Coordinator [On_Demand | Stopped]
File not found - C:\WINDOWS\system32\msdtc.exe

(Netlogon) Net Logon [On_Demand | Stopped]
File not found - %SystemRoot%\system32\lsass.exe

(nSvcLog) ForceWare user log service [Auto | Running]
[02/24/2005 05:19 PM | 00,057,409 | ---- | M] (NVIDIA) - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe

(NtLmSsp) NT LM Security Support Provider [On_Demand | Stopped]
File not found - %SystemRoot%\system32\lsass.exe

(PlugPlay) Plug and Play [Auto | Running]
File not found - %SystemRoot%\system32\services.exe

(PolicyAgent) IPSEC Services [Auto | Running]
File not found - %SystemRoot%\system32\lsass.exe

(ProtectedStorage) Protected Storage [Auto | Running]
File not found - %SystemRoot%\system32\lsass.exe

(RDSessMgr) Remote Desktop Help Session Manager [On_Demand | Stopped]
File not found - C:\WINDOWS\system32\sessmgr.exe

(SamSs) Security Accounts Manager [Auto | Running]
File not found - %SystemRoot%\system32\lsass.exe

(TlntSvr) Telnet [Disabled | Stopped]
File not found - C:\WINDOWS\system32\tlntsvr.exe

(vds) Virtual Disk Service [On_Demand | Stopped]
File not found - %SystemRoot%\System32\vds.exe

(Viewpoint Manager Service) Viewpoint Manager Service [Auto | Running]
[01/04/2007 04:38 PM | 00,024,652 | ---- | M] (Viewpoint Corporation) - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe

(VSS) Volume Shadow Copy [On_Demand | Stopped]
File not found - %SystemRoot%\System32\vssvc.exe

(WmiApSrv) WMI Performance Adapter [On_Demand | Stopped]
File not found - C:\WINDOWS\system32\wbem\wmiapsrv.exe

===== Driver Services - Non-Microsoft Only =====

(ACPI) Microsoft ACPI Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\ACPI.sys

(aec) Microsoft Kernel Acoustic Echo Canceller [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\aec.sys

(AFD) AFD [System | Running]
File not found - C:\WINDOWS\System32\drivers\afd.sys

(AmdK8) AMD K8 Processor Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\amdk8.sys

(Arp1394) 1394 ARP Client Protocol [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\arp1394.sys

(AsyncMac) RAS Asynchronous Media Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\asyncmac.sys

(atapi) Standard IDE/ESDI Hard Disk Controller [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\atapi.sys

(Atmarpc) ATM ARP Client Protocol [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\atmarpc.sys

(audstub) Audio Stub Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\audstub.sys

(AvgLdx64) AVG Free AVI Loader Driver x64 [System | Running]
File not found - C:\WINDOWS\System32\Drivers\avgldx64.sys

(AvgMfx64) AVG Free On-access Scanner Minifilter Driver x64 [System | Running]
File not found - C:\WINDOWS\System32\Drivers\avgmfx64.sys

(AvgTdiA) AVG8 Network Redirector x64 [Auto | Running]
File not found - C:\WINDOWS\System32\Drivers\avgtdia.sys

(Beep) Beep [System | Running]
File not found -

(CdaC15BA) CdaC15BA [Auto | Running]
File not found - C:\WINDOWS\System32\DRIVERS\CdaC15BA.sys

(CdaD10BA) CdaD10BA [Auto | Running]
File not found - C:\WINDOWS\System32\DRIVERS\CdaD10BA.sys

(Cdfs) Cdfs [Disabled | Running]
File not found -

(Cdrom) CD-ROM Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\cdrom.sys

(crcdisk) CRC Disk Filter Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\crcdisk.sys

(Disk) Disk Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\disk.sys

(dmboot) dmboot [Disabled | Stopped]
File not found - C:\WINDOWS\System32\drivers\dmboot.sys

(dmio) Logical Disk Manager Driver [Boot | Running]
File not found - C:\WINDOWS\System32\drivers\dmio.sys

(dmload) dmload [Boot | Running]
File not found - C:\WINDOWS\System32\drivers\dmload.sys

(Fastfat) Fastfat [Disabled | Running]
File not found -

(Fdc) Floppy Disk Controller Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\fdc.sys

(Fips) Fips [System | Running]
File not found -

(Flpydisk) Floppy Disk Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\flpydisk.sys

(FltMgr) FltMgr [Boot | Running]
File not found - C:\WINDOWS\system32\drivers\fltmgr.sys

(Ftdisk) Volume Manager Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\ftdisk.sys

(GEARAspiWDM) GEARAspiWDM [On_Demand | Stopped]
[09/19/2006 02:44 PM | 00,015,664 | ---- | M] (GEAR Software Inc.) - C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys

(Gpc) Generic Packet Classifier [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\msgpc.sys

(HidUsb) Microsoft HID Class Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\hidusb.sys

(HTTP) HTTP [On_Demand | Running]
File not found - C:\WINDOWS\System32\Drivers\HTTP.sys

(i8042prt) i8042 Keyboard and PS/2 Mouse Port Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\i8042prt.sys

(imapi) CD-Burning Filter Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\imapi.sys

(Ip6Fw) IPv6 Windows Firewall Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\ip6fw.sys

(IpFilterDriver) IP Traffic Filter Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys

(IpInIp) IP in IP Tunnel Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\ipinip.sys

(IpNat) IP Network Address Translator [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\ipnat.sys

(IPSec) IPSEC driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\ipsec.sys

(irda) IrDA Protocol [Auto | Running]
File not found - C:\WINDOWS\System32\DRIVERS\irda.sys

(IRENUM) IR Enumerator Service [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\irenum.sys

(irsir) Microsoft Serial Infrared Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\irsir.sys

(isapnp) PnP ISA/EISA Bus Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\isapnp.sys

(Kbdclass) Keyboard Class Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\kbdclass.sys

(kbdhid) Keyboard HID Driver [System | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\kbdhid.sys

(kmixer) Microsoft Kernel Wave Audio Mixer [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\kmixer.sys

(KSecDD) KSecDD [Boot | Running]
File not found -

(ksthunk) Kernel Streaming WOW64 Thunk Service [On_Demand | Running]
File not found - C:\WINDOWS\System32\drivers\ksthunk.sys

(L8042Kbd) Logitech SetPoint Keyboard Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\L8042Kbd.sys

(L8042mou) Logitech SetPoint PS/2 Mouse Filter Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\L8042mou.Sys

(LBeepKE) LBeepKE [Auto | Stopped]
[06/30/2006 12:54 AM | 00,004,480 | ---- | M] (Logitech, Inc.) - C:\WINDOWS\system32\Drivers\LBeepKE.sys

(LHidKe) Logitech SetPoint HID Mouse Filter Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\LHidKE.Sys

(LHidUsbK) Logitech SetPoint USB Receiver device driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\Drivers\LHidUsbK.Sys

(LMouKE) Logitech SetPoint Mouse Filter Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\LMouKE.Sys

(mnmdd) mnmdd [System | Running]
File not found -

(Mouclass) Mouse Class Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\mouclass.sys

(mouhid) Mouse HID Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\mouhid.sys

(MountMgr) Mount Point Manager [Boot | Running]
File not found -

(MRxDAV) WebDav Client Redirector [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\mrxdav.sys

(MRxSmb) MRxSmb [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\mrxsmb.sys

(Msfs) Msfs [System | Running]
File not found -

(MSKSSRV) Microsoft Streaming Service Proxy [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\MSKSSRV.sys

(MSPCLOCK) Microsoft Streaming Clock Proxy [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\MSPCLOCK.sys

(MSPQM) Microsoft Streaming Quality Manager Proxy [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\MSPQM.sys

(mssmbios) Microsoft System Management BIOS Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\mssmbios.sys

(Mup) Mup [Boot | Running]
File not found -

(NDIS) NDIS System Driver [Boot | Running]
File not found -

(NdisTapi) Remote Access NDIS TAPI Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\ndistapi.sys

(Ndisuio) NDIS Usermode I/O Protocol [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\ndisuio.sys

(NdisWan) Remote Access NDIS WAN Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\ndiswan.sys

(NDProxy) NDIS Proxy [On_Demand | Running]
File not found -

(NetBIOS) NetBIOS Interface [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\netbios.sys

(NetBT) NetBios over Tcpip [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\netbt.sys

(NIC1394) 1394 Net Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\nic1394.sys

(Npfs) Npfs [System | Running]
File not found -

(Ntfs) Ntfs [Disabled | Running]
File not found -

(Null) Null [System | Running]
File not found -

(nv) nv [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\nv4_mini.sys

(nvata64) nvata64 [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\nvata64.sys

(nvax) Service for NVIDIA® nForce™ Audio Enumerator [On_Demand | Running]
File not found - C:\WINDOWS\System32\drivers\nvax64.sys

(NVENETFD) NVIDIA nForce Networking Controller Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\NVENETFD.sys

(nvnetbus) NVIDIA Network Bus Enumerator [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\nvnetbus.sys

(nvnforce) Service for NVIDIA® nForce™ Audio [On_Demand | Running]
File not found - C:\WINDOWS\System32\drivers\nvapu64.sys

(NVTCP) NVIDIA TCP/IP Protocol Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\NVTcp.sys

(ohci1394) VIA OHCI Compliant IEEE 1394 Host Controller [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\ohci1394.sys

(PartMgr) Partition Manager [Boot | Running]
File not found -

(PCI) PCI Bus Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\pci.sys

(PciCon) PciCon [On_Demand | Stopped]
File not found - D:\PciCon64.sys

(PCIIde) PCIIde [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\pciide.sys

(PptpMiniport) WAN Miniport (PPTP) [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\raspptp.sys

(PSched) QoS Packet Scheduler [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\psched.sys

(Ptilink) Direct Parallel Link Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\ptilink.sys

(RasAcd) Remote Access Auto Connection Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\rasacd.sys

(Rasirda) WAN Miniport (IrDA) [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\rasirda.sys

(Rasl2tp) WAN Miniport (L2TP) [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\rasl2tp.sys

(RasPppoe) Remote Access PPPOE Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\raspppoe.sys

(Raspti) Direct Parallel [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\raspti.sys

(Rdbss) Rdbss [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\rdbss.sys

(RDPCDD) RDPCDD [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\RDPCDD.sys

(rdpdr) Terminal Server Device Redirector Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\rdpdr.sys

(redbook) Digital CD Audio Playback Filter Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\redbook.sys

(Secdrv) Security Driver [Auto | Running]
File not found - C:\WINDOWS\System32\DRIVERS\secdrv.sys

(serenum) Serenum Filter Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\serenum.sys

(Serial) Serial port driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\serial.sys

(splitter) Microsoft Kernel Audio Splitter [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\splitter.sys

(sr) System Restore Filter Driver [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\sr.sys

(Srv) Srv [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\srv.sys

(swenum) Software Bus Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\swenum.sys

(swmidi) Microsoft Kernel GS Wavetable Synthesizer [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\drivers\swmidi.sys

(sysaudio) Microsoft Kernel System Audio Device [On_Demand | Running]
File not found - C:\WINDOWS\System32\drivers\sysaudio.sys

(Tcpip) TCP/IP Protocol Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\tcpip.sys

(TermDD) Terminal Device Driver [System | Running]
File not found - C:\WINDOWS\System32\DRIVERS\termdd.sys

(Update) Microcode Update Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\update.sys

(usbccgp) Microsoft USB Generic Parent Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\usbccgp.sys

(usbehci) Microsoft USB 2.0 Enhanced Host Controller Miniport Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\usbehci.sys

(usbhub) USB2 Enabled Hub [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\usbhub.sys

(usbohci) Microsoft USB Open Host Controller Miniport Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\usbohci.sys

(usbprint) Microsoft USB PRINTER Class [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\usbprint.sys

(usbscan) USB Scanner Driver [On_Demand | Stopped]
File not found - C:\WINDOWS\System32\DRIVERS\usbscan.sys

(USBSTOR) USB Mass Storage Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS

(VgaSave) VGA Display Controller. [System | Running]
File not found - C:\WINDOWS\System32\drivers\vga.sys

(VolSnap) Storage volumes [Boot | Running]
File not found - C:\WINDOWS\system32\DRIVERS\volsnap.sys

(Wanarp) Remote Access IP ARP Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\wanarp.sys

(wdmaud) Microsoft WINMM WDM Audio Compatibility Driver [On_Demand | Running]
File not found - C:\WINDOWS\System32\drivers\wdmaud.sys

(WS2IFSL) Windows Socket 2.0 Non-IFS Service Provider Support Environment [System | Running]
File not found - C:\WINDOWS\System32\drivers\ws2ifsl.sys

(yukonx64) NDIS5.1 Miniport Driver for Marvell Yukon Gigabit Ethernet Controller [On_Demand | Running]
File not found - C:\WINDOWS\System32\DRIVERS\yk51x64.sys

===== Run Keys =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"" = File not found
"Acrobat Assistant 7.0" = "C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe" [12/14/2004 02:12 AM | 00,483,328 | ---- | M] (Adobe Systems Inc.)
"Adobe Photo Downloader" = "C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe" [06/06/2005 11:46 PM | 00,057,344 | ---- | M] (Adobe Systems Incorporated)
"Adobe Reader Speed Launcher" = "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe" [10/10/2007 08:51 PM | 00,039,792 | ---- | M] (Adobe Systems Incorporated)
"Adobe Version Cue CS2" = "C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe" [04/04/2005 06:58 PM | 00,856,064 | ---- | M] (Adobe Sytems Incorporated)
"Antivirus" = "C:\Program Files (x86)\VAV\vav.exe" File not found
"AVG8_TRAY" = C:\PROGRA~1\AVG\AVG8\avgtray.exe [08/22/2008 01:42 AM | 01,235,736 | ---- | M] (AVG Technologies CZ, s.r.o.)
"iTunesHelper" = "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [02/04/2008 03:18 PM | 00,267,048 | ---- | M] (Apple Inc.)
"QuickTime Task" = "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [02/01/2008 12:13 AM | 00,385,024 | ---- | M] (Apple Inc.)
"SunJavaUpdateSched" = "C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe" [09/25/2007 02:11 AM | 00,132,496 | ---- | M] (Sun Microsystems, Inc.)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
"Register Homesite+.exe" = "C:\Program Files\Macromedia\HomeSite+\Homesite+.exe" /REGSERVER [08/25/2003 06:24 PM | 02,254,848 | ---- | M] (Macromedia, Inc.)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" = Reg Error: Value load does not exist or could not be read.
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Aim6" = File not found
"EDLauncher" = C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe [11/03/2004 12:01 PM | 00,073,728 | ---- | M] (PROMT Ltd.)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall" = %systemroot%\system32\tscupgrd.exe File not found

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall" = %systemroot%\system32\tscupgrd.exe File not found

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall" = %systemroot%\system32\tscupgrd.exe File not found

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"tscuninstall" = %systemroot%\system32\tscupgrd.exe File not found

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Aim6" = File not found
"EDLauncher" = C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe [11/03/2004 12:01 PM | 00,073,728 | ---- | M] (PROMT Ltd.)

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"load" =
"run" = Reg Error: Value run does not exist or could not be read.

===== Startup Folders =====

[Administrator Startup Folder - C:\Documents and Settings\Administrator\Start Menu\Programs\Startup]

[All Users Startup Folder - C:\Documents and Settings\All Users\Start Menu\Programs\Startup]
[06/13/2007 10:34 PM | 00,025,214 | R--- | M] () - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Acrobat Speed Launcher.lnk = C:\WINDOWS\Installer\{AC76BA86-1033-0000-7760-000000000002}\SC_Acrobat.exe
[03/16/2005 07:16 PM | 00,113,664 | ---- | M] (Adobe Systems, Inc.) - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
[06/30/2006 12:36 AM | 00,878,080 | ---- | M] (Logitech Inc.) - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Logitech SetPoint.lnk = C:\Program Files\Logitech\SetPoint\SetPoint.exe
[01/05/2006 11:57 AM | 00,114,688 | ---- | M] (SanDisk) - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Monitor.lnk = C:\Program Files (x86)\SanDisk\SanDisk TransferMate\SD Monitor.exe
[12/08/2005 10:03 AM | 00,811,008 | ---- | M] (Intuit Inc.) - C:\Documents and Settings\All Users\Start Menu\Programs\Startup\QuickBooks Update Agent.lnk = C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe

[Default User Startup Folder - C:\Documents and Settings\Default User\Start Menu\Programs\Startup]

===== BHO's =====

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
HKLM CLSID: (AcroIEHlprObj Class) - [12/14/2004 01:56 AM | 00,063,136 | ---- | M] (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
HKLM CLSID: (AVG Safe Search) - [08/22/2008 01:42 AM | 00,455,960 | ---- | M] (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG8\avgssie.dll

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
HKLM CLSID: (SSVHelper Class) - [09/25/2007 02:11 AM | 00,501,136 | ---- | M] (Sun Microsystems, Inc.) C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll

===== Toolbars =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12/14/2004 02:13 AM | 00,225,280 | ---- | M] (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{892B88A3-DC94-4A1F-A75A-9AA50061A683}"
HKLM CLSID: (bgrqfetx) - File not found C:\WINDOWS\bgrqfetx.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar]
"{FF284F5C-7CF9-4682-8701-D467C1DBB99F}"
HKLM CLSID: (Translator) - [01/12/2005 12:32 PM | 00,434,176 | ---- | M] (PROMT Ltd.) C:\Program Files (x86)\PRMT6\PRMTIE\prmtie.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]

"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12/14/2004 02:13 AM | 00,225,280 | ---- | M] (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]

"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12/14/2004 02:13 AM | 00,225,280 | ---- | M] (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll

"{EF99BD32-C1FB-11D2-892F-0090271D4F88}"
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser]

"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12/14/2004 02:13 AM | 00,225,280 | ---- | M] (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]

"{47833539-D0C5-4125-9FA8-0819E2EAAC93}"
HKLM CLSID: (Adobe PDF) - [12/14/2004 02:13 AM | 00,225,280 | ---- | M] (Adobe Systems Incorporated) C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll

"{EF99BD32-C1FB-11D2-892F-0090271D4F88}"
HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened.

===== Policies =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"ForceActiveDesktopOn" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
"dontdisplaylastusername" = 0
"legalnoticecaption" =
"legalnoticetext" =
"scforceoption" = 0
"shutdownwithoutlogon" = 1
"undockwithoutlogon" = 1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
Unable to open key or key not present!


[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
Unable to open key or key not present!


[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
Unable to open key or key not present!


[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]
Unable to open key or key not present!


[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer]
"NoDriveTypeAutoRun" = 145

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer\Run]

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System]

===== Desktop Components =====

===== Shared Task Scheduler =====

===== AppInit_Dlls =====

===== Lsa Authentication Packages =====

===== Lsa Security Packages =====

===== Authorized Applications List =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = C:\WINDOWS\system32\sessmgr.exe File not found
"C:\Program Files (x86)\MSN Messenger\msnmsgr.exe" = C:\Program Files (x86)\MSN Messenger\msnmsgr.exe File not found
"C:\Program Files (x86)\MSN Messenger\livecall.exe" = C:\Program Files (x86)\MSN Messenger\livecall.exe File not found

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\system32\sessmgr.exe" = C:\WINDOWS\system32\sessmgr.exe File not found
"C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe" = C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe [11/30/2004 10:08 AM | 00,020,543 | ---- | M] (Apache Software Foundation)
"C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe" = C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe [04/04/2005 06:58 PM | 00,163,840 | ---- | M] (Adobe Systems Incorporated)
"C:\Program Files (x86)\MSN Messenger\msnmsgr.exe" = C:\Program Files (x86)\MSN Messenger\msnmsgr.exe File not found
"C:\Program Files (x86)\MSN Messenger\livecall.exe" = C:\Program Files (x86)\MSN Messenger\livecall.exe File not found
"C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files (x86)\Yahoo!\Messenger\YahooMessenger.exe File not found
"C:\Program Files (x86)\Yahoo!\Messenger\YServer.exe" = C:\Program Files (x86)\Yahoo!\Messenger\YServer.exe File not found
"C:\Program Files (x86)\iTunes\iTunes.exe" = C:\Program Files (x86)\iTunes\iTunes.exe [02/04/2008 03:18 PM | 19,926,824 | ---- | M] (Apple Inc.)
"C:\Program Files (x86)\TurboTax\Home & Business 2007\32bit\ttax.exe" = C:\Program Files (x86)\TurboTax\Home & Business 2007\32bit\ttax.exe [03/05/2008 11:29 PM | 10,343,712 | ---- | M] (Intuit, Inc.)
"C:\Program Files (x86)\TurboTax\Home & Business 2007\32bit\updatemgr.exe" = C:\Program Files (x86)\TurboTax\Home & Business 2007\32bit\updatemgr.exe [10/22/2007 06:56 PM | 03,597,600 | ---- | M] (Intuit, Inc.)
"C:\Program Files (x86)\Common Files\AOL\Loader\aolload.exe" = C:\Program Files (x86)\Common Files\AOL\Loader\aolload.exe [11/03/2006 02:17 AM | 00,010,800 | ---- | M] (AOL LLC)
"C:\Program Files (x86)\AIM6\aim6.exe" = C:\Program Files (x86)\AIM6\aim6.exe [06/19/2008 12:51 PM | 00,050,528 | ---- | M] (AOL LLC)
"C:\Program Files\AVG\AVG8\avgupd.exe" = C:\Program Files\AVG\AVG8\avgupd.exe [08/22/2008 01:42 AM | 00,641,304 | ---- | M] (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG8\avgnsa.exe" = C:\Program Files\AVG\AVG8\avgnsa.exe [08/22/2008 01:42 AM | 00,877,848 | ---- | M] (AVG Technologies CZ, s.r.o.)

===== HKLM Winlogon Settings =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell]
"Explorer.exe" - [02/18/2007 11:05 AM | 01,053,184 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\explorer.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\System]
"lsass.exe" - File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit]
"C:\WINDOWS\system32\userinit.exe" - [02/18/2007 11:05 AM | 00,026,112 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost]
"%SystemRoot%\system32\logonui.exe" - [02/18/2007 11:05 AM | 00,516,096 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet]
"rundll32 shell32" - [11/08/2007 12:55 AM | 08,360,448 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll
"Control_RunDLL "sysdm.cpl"" - [02/18/2007 11:05 AM | 00,301,568 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl

===== User's Winlogon Settings =====

===== Winlogon Notify Settings =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\fccdeeEt]
"DllName" = File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
"DllName" = File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
"DllName" = File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
"DllName" = File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
"DllName" = File not found

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
"DllName" = File not found

===== Safeboot Options =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
"AlternateShell" = cmd.exe

===== Disabled MsConfig Items =====
Unable to open key or key not present!


===== DNS Name Servers =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{00EBBE09-3E9B-4016-9B22-6D0520641A74}]
Servers: | Description: 1394 Net Adapter

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{348D7A33-E7E3-4E61-B679-514853B044A5}]
Servers: | Description:

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\{739C7507-F20A-43D9-AF81-F7003C1486FD}]
Servers: | Description: Marvell Yukon 88E8001/8003/8010 PCI Gigabit Ethernet Controller

===== CDRom AutoRun Settings =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom]
"AutoRun" = 1

===== Autorun Files on Drives =====

AUTOEXEC.BAT []
[05/09/2006 04:10 AM | 00,000,000 | ---- | M] () C:\AUTOEXEC.BAT [ NTFS ]

autorun.inf [[autorun] | open=PortableVault.exe | icon=..\Vault\Memorex.ico | | action=Portable Vault | [email protected] | ]
[03/08/2007 05:25 PM | 00,000,112 | ---- | M] () E:\autorun.inf [ FAT ]

===== MountPoints2 =====

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023608c3-1279-11db-b9b2-000129d4c51c}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023608c3-1279-11db-b9b2-000129d4c51c}\Shell\Autoplay]
"MUIVerb" = C:\WINDOWS\system32\shell32.dll [11/08/2007 12:55 AM | 08,360,448 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{023608c3-1279-11db-b9b2-000129d4c51c}\Shell\Autoplay\DropTarget]
"CLSID" = {f26a669a-bcbb-4e37-abf9-7325da15f931}

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{101ef1c2-6fda-11dd-9ae4-000129d4c51c}\Shell]
"" = Open

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{101ef1c2-6fda-11dd-9ae4-000129d4c51c}\Shell\Autoplay]
"MUIVerb" = C:\WINDOWS\system32\shell32.dll [11/08/2007 12:55 AM | 08,360,448 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{101ef1c2-6fda-11dd-9ae4-000129d4c51c}\Shell\Autoplay\DropTarget]
"CLSID" = {f26a669a-bcbb-4e37-abf9-7325da15f931}

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{101ef1c2-6fda-11dd-9ae4-000129d4c51c}\Shell\AutoRun]
"Extended" =

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{101ef1c2-6fda-11dd-9ae4-000129d4c51c}\Shell\AutoRun\command]
"" = E:\PortableVault.exe [03/12/2007 01:10 PM | 01,446,592 | ---- | M] (Migo Software)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84a39cc3-b849-11db-831d-000129d4c51c}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84a39cc3-b849-11db-831d-000129d4c51c}\Shell\Autoplay]
"MUIVerb" = C:\WINDOWS\system32\shell32.dll [11/08/2007 12:55 AM | 08,360,448 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84a39cc3-b849-11db-831d-000129d4c51c}\Shell\Autoplay\DropTarget]
"CLSID" = {f26a669a-bcbb-4e37-abf9-7325da15f931}

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84a39cc8-b849-11db-831d-000129d4c51c}\Shell]
"" = None

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84a39cc8-b849-11db-831d-000129d4c51c}\Shell\Autoplay]
"MUIVerb" = C:\WINDOWS\system32\shell32.dll [11/08/2007 12:55 AM | 08,360,448 | ---- | M] (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{84a39cc8-b849-11db-831d-000129d4c51c}\Shell\Autoplay\DropTarget]
"CLSID" = {f26a669a-bcbb-4e37-abf9-7325da15f931}

===== Hosts File =====

HOSTS File = (259164 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts
First 25 entries...
127.0.0.1 localhost
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.1001-search.info
127.0.0.1 1001-search.info
127.0.0.1 www.100888290cs.com
127.0.0.1 100888290cs.com
127.0.0.1 www.100sexlinks.com
127.0.0.1 100sexlinks.com
127.0.0.1 www.10sek.com
127.0.0.1 10sek.com
127.0.0.1 www.123topsearch.com
127.0.0.1 123topsearch.com
127.0.0.1 www.132.com
127.0.0.1 132.com
127.0.0.1 www.136136.net
127.0.0.1 136136.net



[Files/Folders - Created Within 90 days]
[06/27/2008 01:56 PM | 00,000,369 | -H-- | C] () - C:\IPH.PH
[08/19/2008 07:00 PM | 01,463,521 | ---- | C] () - C:\SDFix.exe
[08/21/2008 06:50 PM | ---D | C] - C:\SDFix
[08/24/2008 07:22 PM | ---D | C] - C:\smitrem
[08/25/2008 11:47 AM | -H-D | C] - C:\$AVG8.VAULT$
[08/17/2008 03:01 PM | 00,017,144 | ---- | C] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbam.sys
[08/17/2008 03:01 PM | 00,038,472 | ---- | C] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2 C:\WINDOWS\System32\*.tmp files]
[01/09/2006 10:36 AM | 00,040,960 | ---- | C] () - C:\WINDOWS\System32\swsc.exe
[04/27/2006 05:49 PM | 00,288,417 | ---- | C] (S!Ri) - C:\WINDOWS\System32\SrchSTS.exe
[05/29/2008 09:35 AM | 00,086,528 | ---- | C] (S!Ri.URZ) - C:\WINDOWS\System32\VACFix.exe
[06/05/2003 09:13 PM | 00,053,248 | ---- | C] (http://www.beyondlogic.org) - C:\WINDOWS\System32\Process.exe
[06/13/2008 09:46 AM | ---D | C] - C:\WINDOWS\System32\en
[07/31/2004 06:50 PM | 00,051,200 | ---- | C] () - C:\WINDOWS\System32\dumphive.exe
[08/14/2008 09:52 PM | 00,082,432 | ---- | C] (S!Ri.URZ) - C:\WINDOWS\System32\IEDFix.C.exe
[08/18/2008 07:17 PM | 00,000,000 | ---- | C] () - C:\WINDOWS\System32\config.nt
[08/18/2008 12:19 PM | 00,082,432 | ---- | C] (S!Ri.URZ) - C:\WINDOWS\System32\404Fix.exe
[08/21/2008 11:41 PM | 00,087,552 | ---- | C] (S!Ri.URZ) - C:\WINDOWS\System32\AntiXPVSTFix.exe
[08/24/2008 07:24 PM | 00,003,420 | ---- | C] () - C:\WINDOWS\System32\tmp.reg
[08/29/2006 07:43 PM | 00,135,168 | ---- | C] (SteelWerX) - C:\WINDOWS\System32\swreg.exe
[09/06/2007 12:22 AM | 00,289,144 | ---- | C] (S!Ri) - C:\WINDOWS\System32\VCCLSID.exe
[10/04/2007 12:36 AM | 00,025,600 | ---- | C] () - C:\WINDOWS\System32\WS2Fix.exe
[12/01/2006 06:20 AM | 00,079,360 | ---- | C] (SteelWerX) - C:\WINDOWS\System32\swxcacls.exe
[2 C:\WINDOWS\*.tmp files]
[02/18/2007 10:46 AM | 01,099,264 | ---- | C] () - C:\WINDOWS\adfs.msp
[06/13/2008 09:38 AM | ---D | C] - C:\WINDOWS\PolicyBackup
[06/13/2008 09:40 AM | -H-D | C] - C:\WINDOWS\$NtServicePackUninstall$
[06/13/2008 09:46 AM | ---D | C] - C:\WINDOWS\adfs
[06/13/2008 09:46 AM | ---D | C] - C:\WINDOWS\ServicePackFiles
[08/18/2008 08:09 PM | 00,000,152 | ---- | C] () - C:\WINDOWS\wininit.ini
[08/22/2008 09:32 PM | 00,000,000 | ---- | C] () - C:\WINDOWS\nsreg.dat
[08/25/2008 06:40 PM | ---D | C] - C:\WINDOWS\temp
[06/27/2008 01:56 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\acccore
[06/27/2008 01:56 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\AOL
[06/27/2008 01:56 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Viewpoint
[06/27/2008 01:57 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\AOL OCP
[08/21/2008 06:39 PM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
[08/22/2008 01:48 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\avg8
[08/25/2008 11:21 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Malwarebytes
[06/27/2008 01:57 PM | ---D | C] - C:\Documents and Settings\Administrator\Application Data\acccore
[08/22/2008 09:32 PM | ---D | C] - C:\Documents and Settings\Administrator\Application Data\Mozilla
[08/25/2008 11:22 AM | ---D | C] - C:\Documents and Settings\Administrator\Application Data\Malwarebytes
[06/27/2008 01:56 PM | ---D | C] - C:\Documents and Settings\Administrator\Local Settings\Application Data\AOL
[06/27/2008 01:56 PM | ---D | C] - C:\Documents and Settings\Administrator\Local Settings\Application Data\AOL OCP
[08/22/2008 09:32 PM | ---D | C] - C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[06/21/2008 02:35 PM | 00,000,974 | ---- | C] () - C:\Documents and Settings\Administrator\My Documents\My Sharing Folders.lnk
[07/01/2008 01:44 PM | ---D | C] - C:\Documents and Settings\Administrator\My Documents\AIMLogger
[08/25/2008 11:20 AM | ---D | C] - C:\Documents and Settings\Administrator\My Documents\anit-virus downloads
[06/13/2008 09:47 AM | 00,000,099 | -HS- | C] () - C:\Documents and Settings\All Users\Desktop\desktop.ini
[08/22/2008 01:42 AM | 00,001,491 | ---- | C] () - C:\Documents and Settings\All Users\Desktop\AVG 8.0.lnk
[08/22/2008 09:32 PM | 00,001,586 | ---- | C] () - C:\Documents and Settings\All Users\Desktop\Internet Explorer.lnk
[06/30/2008 10:20 PM | ---D | C] - C:\Documents and Settings\Administrator\Desktop\itunes library
[08/25/2008 03:08 PM | ---D | C] - C:\Documents and Settings\Administrator\Desktop\shortcuts
[06/27/2008 01:56 PM | ---D | C] - C:\Program Files (x86)\Common Files\AOL
[06/27/2008 01:56 PM | ---D | C] - C:\Program Files (x86)\AIM6
[06/27/2008 01:56 PM | ---D | C] - C:\Program Files (x86)\Viewpoint
[08/21/2008 06:39 PM | ---D | C] - C:\Program Files (x86)\Spybot - Search & Destroy
[08/21/2008 07:58 PM | ---D | C] - C:\Program Files (x86)\AVG

[Files/Folders - Modified Within 90 days]
[06/13/2008 09:41 AM | 00,297,072 | RHS- | M] () - C:\ntldr
[06/27/2008 01:56 PM | 00,000,369 | -H-- | M] () - C:\IPH.PH
[08/19/2008 07:00 PM | 01,463,521 | ---- | M] () - C:\SDFix.exe
[08/21/2008 06:50 PM | ---D | M] - C:\SDFix
[08/21/2008 07:14 PM | -HSD | M] - C:\System Volume Information
[08/21/2008 07:58 PM | -H-D | M] - C:\Config.Msi
[08/22/2008 09:32 PM | ---D | M] - C:\WINDOWS
[08/24/2008 07:22 PM | ---D | M] - C:\smitrem
[08/25/2008 11:21 AM | R--D | M] - C:\Program Files
[08/25/2008 11:47 AM | -H-D | M] - C:\$AVG8.VAULT$
[08/25/2008 12:28 PM | R--D | M] - C:\Program Files (x86)
[08/17/2008 03:01 PM | 00,017,144 | ---- | M] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbam.sys
[08/17/2008 03:01 PM | 00,038,472 | ---- | M] (Malwarebytes Corporation) - C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2 C:\WINDOWS\System32\*.tmp files]
[05/29/2008 09:35 AM | 00,086,528 | ---- | M] (S!Ri.URZ) - C:\WINDOWS\System32\VACFix.exe
[06/13/2008 09:41 AM | ---D | M] - C:\WINDOWS\System32\ias
[06/13/2008 09:43 AM | ---D | M] - C:\WINDOWS\System32\usmt
[06/13/2008 09:46 AM | ---D | M] - C:\WINDOWS\System32\en
[06/13/2008 09:46 AM | ---D | M] - C:\WINDOWS\System32\inetsrv
[06/15/2008 07:46 PM | ---D | M] - C:\WINDOWS\System32\wbem
[08/14/2008 09:52 PM | 00,082,432 | ---- | M] (S!Ri.URZ) - C:\WINDOWS\System32\IEDFix.C.exe
[08/18/2008 07:17 PM | 00,000,000 | ---- | M] () - C:\WINDOWS\System32\config.nt
[08/18/2008 12:19 PM | 00,082,432 | ---- | M] (S!Ri.URZ) - C:\WINDOWS\System32\404Fix.exe
[08/21/2008 11:41 PM | 00,087,552 | ---- | M] (S!Ri.URZ) - C:\WINDOWS\System32\AntiXPVSTFix.exe
[08/24/2008 07:24 PM | 00,003,420 | ---- | M] () - C:\WINDOWS\System32\tmp.reg
[08/25/2008 11:21 AM | ---D | M] - C:\WINDOWS\System32\Drivers
[2 C:\WINDOWS\*.tmp files]
[06/13/2008 09:38 AM | ---D | M] - C:\WINDOWS\PolicyBackup
[06/13/2008 09:40 AM | -H-D | M] - C:\WINDOWS\$NtServicePackUninstall$
[06/13/2008 09:43 AM | ---D | M] - C:\WINDOWS\ime
[06/13/2008 09:43 AM | ---D | M] - C:\WINDOWS\ime (x86)
[06/13/2008 09:43 AM | ---D | M] - C:\WINDOWS\srchasst
[06/13/2008 09:46 AM | ---D | M] - C:\WINDOWS\adfs
[06/13/2008 09:46 AM | ---D | M] - C:\WINDOWS\Help
[06/13/2008 09:46 AM | ---D | M] - C:\WINDOWS\ServicePackFiles
[06/13/2008 09:46 AM | R-SD | M] - C:\WINDOWS\assembly
[06/13/2008 09:48 AM | ---D | M] - C:\WINDOWS\msagent
[06/13/2008 11:11 AM | ---D | M] - C:\WINDOWS\security
[06/15/2008 07:46 PM | ---D | M] - C:\WINDOWS\AppPatch
[06/15/2008 07:46 PM | ---D | M] - C:\WINDOWS\msagent64
[06/15/2008 07:46 PM | R-SD | M] - C:\WINDOWS\Fonts
[06/21/2008 02:34 PM | ---D | M] - C:\WINDOWS\Lhsp
[08/13/2008 12:02 AM | 00,000,970 | ---- | M] () - C:\WINDOWS\imsins.BAK
[08/13/2008 12:02 AM | -H-D | M] - C:\WINDOWS\$hf_mig$
[08/18/2008 06:28 PM | -H-D | M] - C:\WINDOWS\inf
[08/18/2008 07:03 PM | ---D | M] - C:\WINDOWS\SoftwareDistribution
[08/18/2008 07:10 PM | 00,000,150 | ---- | M] () - C:\WINDOWS\SYSTEM.INI
[08/18/2008 08:09 PM | 00,000,152 | ---- | M] () - C:\WINDOWS\wininit.ini
[08/18/2008 08:09 PM | --SD | M] - C:\WINDOWS\Downloaded Program Files
[08/19/2008 06:47 PM | ---D | M] - C:\WINDOWS\twain_32
[08/19/2008 07:41 PM | ---D | M] - C:\WINDOWS\Minidump
[08/21/2008 07:58 PM | ---D | M] - C:\WINDOWS\WinSxS
[08/22/2008 09:32 PM | 00,000,000 | ---- | M] () - C:\WINDOWS\nsreg.dat
[08/25/2008 05:45 PM | 00,002,048 | --S- | M] () - C:\WINDOWS\bootstat.dat
[08/25/2008 05:49 PM | ---D | M] - C:\WINDOWS\system32
[08/25/2008 06:39 PM | ---D | M] - C:\WINDOWS\Prefetch
[08/25/2008 06:40 PM | ---D | M] - C:\WINDOWS\temp
[08/25/2008 11:20 AM | -HSD | M] - C:\WINDOWS\Installer
[08/25/2008 12:28 PM | ---D | M] - C:\WINDOWS\SysWOW64
[08/11/2008 04:54 PM | 00,000,296 | ---- | M] () - C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[08/25/2008 05:45 PM | 00,000,006 | -H-- | M] () - C:\WINDOWS\tasks\SA.DAT
[06/21/2008 02:34 PM | ---D | M] - C:\Documents and Settings�

[kmenchaca78]

OTViewIt Extras logfile created on: 8/25/2008 6:39:57 PM - Run 1
OTViewIt by OldTimer - Version 1.0.0.12 Folder = E:\lindas pc
Windows Server 2003 Service Pack 2 (Version = 5.2.3790) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1022.31 Mb Total Physical Memory | 451.59 Mb Available Physical Memory | 44.17% Memory free
2.43 Gb Paging File | 1.92 Gb Available in Paging File | 78.78% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072;

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 232.88 Gb Total Space | 212.89 Gb Free Space | 91.42% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
Drive E: | 1.92 Gb Total Space | 0.51 Gb Free Space | 26.46% Space Free | Partition Type: FAT
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

===== File Associations =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.bat [@ = batfile] - File not found -
.cmd [@ = cmdfile] - File not found -
.com [@ = comfile] - File not found -
.exe [@ = exefile] - File not found -
.pif [@ = piffile] - File not found -
.scr [@ = scrfile] - File not found -

===== Uninstall List =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0134A1A1-C283-4A47-91A1-92F19F960372}" = Adobe Creative Suite 2
"{021C4C4F-C93C-4425-BFFD-C2D16776BFAE}" = Visual C++ 8.0 Runtime Setup Package (x64)
"{02DFB3FD-CF52-4183-8BCA-2A127D4888F4}" = iTunes
"{0837A661-FEC3-48B3-876C-91E7D32048A9}" = Macromedia Dreamweaver 8
"{0B33B738-AD79-4E32-90C5-E67BFB10BBFF}" = AiO_Scan
"{184EB198-1DBA-46DB-B728-7A5FC13D5C2B}_is1" = Yahoo! Photos Print-at-Home Tool
"{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"{236BB7C4-4419-42FD-0409-1E257A25E34D}" = Adobe Photoshop CS2
"{2BD5C305-1B27-4D41-B690-7A61172D2FEB}" = Macromedia Flash 8
"{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}" = Logitech SetPoint
"{3248F0A8-6813-11D6-A77B-00B0D0150100}" = J2SE Runtime Environment 5.0 Update 10
"{3248F0A8-6813-11D6-A77B-00B0D0160010}" = Java™ SE Runtime Environment 6 Update 1
"{3248F0A8-6813-11D6-A77B-00B0D0160030}" = Java™ 6 Update 3
"{37477865-A3F1-4772-AD43-AAFC6BCFF99F}" = MSXML 4.0 SP2 (KB927978)
"{46548E80-0409-0000-7E8A-45000F855001}" = Adobe GoLive CS2
"{4B9535BF-CC90-4158-AF32-CAF57A8820CA}" = Macromedia Contribute 3.11
"{4BDFD2CE-6329-42E4-9801-9B3D1F10D79B}" = Adobe® Photoshop® Album Starter Edition 3.0
"{4C24A8C1-7CFA-4650-AF15-732F5BD7B46D}" = Macromedia Fireworks 8
"{5546CDB5-2CE2-498B-B059-5B3BF81FC41F}" = Macromedia Extension Manager
"{601C6E14-DF1E-4113-A8C8-F9DB90CB0D88}" = SanDisk TransferMate
"{69B02159-7622-4DBB-B9EE-F933039830AD}" = QuickBooks Pro 2006
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{786C5747-1033-0000-B58E-000000000001}" = Adobe Stock Photos 1.0
"{7DAEC492-75C6-4E09-9FD9-EF4D222C8F82}" = Socrates Media Product Browser
"{7F4C8163-F259-49A0-A018-2857A90578BC}" = Adobe InDesign CS2
"{8A5E927D-C33D-4352-B961-C04C738D0C89}" = @promt Office 7 ESSE
"{8BF2C401-02CE-424D-BC26-6C4F9FB446B6}" = Macromedia Flash 8 Video Encoder
"{8D3562E7-C795-4B5D-A091-6DAA3FF0DF3B}" = Macromedia HomeSite+
"{8EDBA74D-0686-4C99-BFDD-F894678E5B39}" = Adobe Common File Installer
"{90280409-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional with FrontPage
"{91057632-CA70-413C-B628-2D3CDBBB906B}" = Macromedia Flash Player 8 Plugin
"{AC76BA86-1033-0000-7760-000000000002}" = Adobe Acrobat 7.0 Professional
"{AC76BA86-7AD7-1033-7B44-A81000000003}" = Adobe Reader 8.1.1
"{ADBE46EE-54E0-4610-B436-D7E93D829100}" = Adobe Version Cue CS2
"{B2F5D08C-7E79-4FCD-AAF4-57AD35FF0601}" = Adobe Illustrator CS2
"{B4FEA924-630D-11D4-B78E-005004566E4D}" = ViewSonic Monitor Drivers
"{B74D4E10-1033-0000-0000-000000000001}" = Adobe Bridge 1.0
"{B74F042E-E1B9-4A5B-8D46-387BB172F0A4}" = Apple Software Update
"{BFD96B89-B769-4CD6-B11E-E79FFD46F067}" = QuickTime
"{C04E32E0-0416-434D-AFB9-6969D703A9EF}" = MSXML 4.0 SP2 (KB936181)
"{C49DAA9C-5BA8-459A-8244-E57B69DF0F04}" = Suite Specific
"{C6812939-B117-48E6-A3BA-1709C14A3C8C}" = Scan
"{C9618743-1A5C-461E-91C4-E013A3D70F3C}" = Adobe® Photoshop® Album Starter Edition 3.0.1
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D7A6C517-11F2-419F-B5BB-27772B939698}" = NvMixer
"{E9787678-1033-0000-8E67-000000000001}" = Adobe Help Center 1.0
"3DGroove" = OTOY
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Shockwave Player" = Adobe Shockwave Player
"Adobe SVG Viewer" = Adobe SVG Viewer 3.0
"AIM_6" = AIM 6
"AVG8Uninstall" = AVG 8.0
"HijackThis" = HijackThis 2.0.2
"InstallShield_{1F6423DE-7959-4178-80E0-023C7EAA5347}" = NVIDIA ForceWare Network Access Manager
"KB928365.T1_3ToU569_3" = Security Update for Microsoft .NET Framework 2.0 (x64) (KB928365)
"M928366" = Microsoft .NET Framework 1.1 Hotfix (KB928366)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Mozilla Firefox (3.0.1)" = Mozilla Firefox (3.0.1)
"ST6UNST #1" = OSHA Compliance Made Simple
"TurboTax Home & Business 2007" = TurboTax Home & Business 2007
"ViewpointMediaPlayer" = Viewpoint Media Player
"Yahoo! Photos Easy Upload Tool" = Yahoo! Photos Easy Upload Tool

===== Uninstall List =====

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

===== Uninstall List =====


===== Uninstall List =====


===== Uninstall List =====


===== Uninstall List =====


===== Uninstall List =====

[HKEY_USERS\S-1-5-21-546561001-3092227586-539885925-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

===== Winsock2 Catalogs =====

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\]
Protocol_Catalog9\Catalog_Entries\000000000001 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000002 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000003 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000004 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000005 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000006 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000007 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000008 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000009 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000010 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000011 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000012 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll
Protocol_Catalog9\Catalog_Entries\000000000013 - [02/24/2005 05:24 PM | 00,118,784 | ---- | M] (NVIDIA) C:\WINDOWS\system32\nvappfilter.dll

===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Defaults =====


===== Protocol Handlers =====

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\]

linkscanner:{F274614C-63F8-47D5-A4D1-FBDDE494F8D1} [HKLM - XPLPPFilter Class]
[08/21/2008 07:59 PM | 00,079,128 | ---- | M] (AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG8\avgpp.dll
msdaipp: [HKLM - No CLSID value]

===== Protocol Filters =====

< End of report >

[fenzodahl512]

Hi.. Somehow your OTViewIt.txt log has been cut-off.. can you please find and attach that log instead of post it?.. Thanks

[kmenchaca78]

Sure, here it is.

Attached Files

•  OTViewIt.Txt   107.32KB   100 downloads

[fenzodahl512]

Please download the OTMoveIt2 by OldTimer.

• Save it to your desktop.
• Please double-click OTMoveIt2.exe to run it. (Vista users, please right click on OTMoveit2.exe and select "Run as an Administrator")
• Let the Unregister Dll's and Ocx's remain ticked and Zip Files After Moves remain unticked..
• Copy the file paths below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):
  
  

  [kill explorer]
  C:\WINDOWS\bgrqfetx.dll
  C:\Windows\system32\Win6?.exe
  C:\Windows\SysWow64\Win6?.exe
  C:\Program Files (x86)\VAV
  E:\autorun.inf
  HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar\\{892B88A3-DC94-4A1F-A75A-9AA50061A683}
  EmptyTemp
  purity
  [start explorer]

• Return to OTMoveIt2, right click in the "Paste List of Files/Folders to Move" window (under the light Yellow bar) and choose Paste.
• Click the red Moveit! button.
• A log of files and folders moved will be created in the c:\_OTMoveIt\MovedFiles folder in the form of Date and Time (mmddyyyy_hhmmss.log). Please open this log in Notepad and post its contents in your next reply.
• Close OTMoveIt2

If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes.

If above OTMoveIt2 link above is broken, please use this link instead..





NEXT


Please download DirLook by jpshortstuff from HERE.

• Double-click DirLook.exe to run it.
• Ensure that Show Hidden Files/Folders and BBCode Ouput are both checked.
• Copy the content of the following codebox into the main textfield:
  
  

  C:\Windows\SysWow64

• Click the DirLook button to start the scan.
• When finished, a notepad window will open with the results of the scan. Please post this log in your next reply. (Note: The log can also be found at C:\dl_log.txt)

Note: Scanning may take longer for large folders.



Please post me these logs in your next reply..

1. OTMoveIt2
2. DirLook
3. A fresh HijackThis log (after DirLook step)

[kmenchaca78]

Ok here is what you requested.


Unable to kill explorer.exe
File/Folder C:\WINDOWS\bgrqfetx.dll not found.
< C:\Windows\system32\Win6?.exe >
File/Folder C:\Windows\system32\Win6?.exe not found.
< C:\Windows\SysWow64\Win6?.exe >
File/Folder C:\Windows\SysWow64\Win6?.exe not found.
File/Folder C:\Program Files (x86)\VAV not found.
E:\autorun.inf moved successfully.
< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar\\{892B88A3-DC94-4A1F-A75A-9AA50061A683} >
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar\\{892B88A3-DC94-4A1F-A75A-9AA50061A683} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{892B88A3-DC94-4A1F-A75A-9AA50061A683}\ deleted successfully.
< EmptyTemp >
File delete failed. C:\WINDOWS\temp\ib2 scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\ib3 scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\ib4 scheduled to be deleted on reboot.
File delete failed. C:\WINDOWS\temp\hsperfdata_SYSTEM\1116 scheduled to be deleted on reboot.
Temp folders emptied.
IE temp folders emptied.
< purity >
Explorer started successfully

OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 08252008_215159

Files moved on Reboot...
File C:\WINDOWS\temp\ib2 not found!
File C:\WINDOWS\temp\ib3 not found!
File C:\WINDOWS\temp\ib4 not found!
File C:\WINDOWS\temp\hsperfdata_SYSTEM\1116 not found!

[kmenchaca78]

DirLook.exe by jpshortstuff
Log created at 23:33:56 on Mon 08/25/2008

==============================

Contents of "C:\Windows\SysWow64" (inc. hidden/system files/folders)

---FOLDERS---

1025 (created: 05/08/2006 10:55 PM) d--------
1028 (created: 05/08/2006 10:55 PM) d--------
1031 (created: 05/08/2006 10:55 PM) d--------
1033 (created: 05/08/2006 10:58 PM) d--------
1037 (created: 05/08/2006 10:55 PM) d--------
1041 (created: 05/08/2006 10:55 PM) d--------
1042 (created: 05/08/2006 10:55 PM) d--------
1054 (created: 05/08/2006 10:55 PM) d--------
2052 (created: 05/08/2006 10:55 PM) d--------
3076 (created: 05/08/2006 10:55 PM) d--------
Adobe (created: 05/15/2006 11:23 AM) d--------
Com (created: 05/09/2006 04:06 AM) d--------
Drivers (created: 08/25/2008 11:21 AM) d--------
en (created: 06/13/2008 09:46 AM) d--------
en-US (created: 02/18/2007 01:00 AM) d--------
export (created: 05/08/2006 10:55 PM) d--------
ias (created: 06/13/2008 09:41 AM) d--------
ime (created: 05/09/2006 04:10 AM) d--------
inetsrv (created: 06/13/2008 09:46 AM) d--------
InstallShield (created: 05/09/2006 04:08 AM) d--------
Macromed (created: 02/19/2008 01:21 PM) d--------
mui (created: 05/08/2006 10:55 PM) d--------
SoftwareDistribution (created: 06/03/2007 07:31 PM) d--------
spool (created: 05/15/2006 11:28 AM) d--------
URTTemp (created: 05/15/2006 12:09 PM) d--------
usmt (created: 06/13/2008 09:43 AM) d--------
wbem (created: 06/15/2008 07:46 PM) d--------

---FILES---

_nvidia_xxx_.log (0 bytes, created: 08/25/2008 09:57 PM) --a------
404Fix.exe (82432 bytes, created: 08/18/2008 12:19 PM) --a------
6to4svc.dll (99840 bytes, created: 02/18/2007 11:05 AM) --a------
aaaamon.dll (35328 bytes, created: 03/25/2005 07:00 AM) --a------
access.cpl (69120 bytes, created: 02/18/2007 11:05 AM) --a------
acctres.dll (64512 bytes, created: 03/25/2005 07:00 AM) --a------
accwiz.exe (186368 bytes, created: 03/25/2005 07:00 AM) --a------
acelpdec.ax (61952 bytes, created: 03/25/2005 07:00 AM) --a------
acledit.dll (137728 bytes, created: 02/18/2007 11:05 AM) --a------
aclui.dll (120320 bytes, created: 02/18/2007 11:05 AM) --a------
activeds.dll (200192 bytes, created: 02/18/2007 11:05 AM) --a------
activeds.tlb (111616 bytes, created: 03/25/2005 07:00 AM) --a------
actmovie.exe (4608 bytes, created: 02/18/2007 11:05 AM) --a------
actxprxy.dll (98816 bytes, created: 02/18/2007 11:05 AM) --a------
admparse.dll (71680 bytes, created: 11/07/2006 04:26 AM) --a------
AdobePDF.dll (22016 bytes, created: 12/14/2004 02:12 AM) --a------
adptif.dll (28672 bytes, created: 03/25/2005 07:00 AM) --a------
adsldp.dll (178688 bytes, created: 02/18/2007 11:05 AM) --a------
adsldpc.dll (153088 bytes, created: 02/18/2007 11:05 AM) --a------
adsmsext.dll (69632 bytes, created: 02/18/2007 11:05 AM) --a------
adsnt.dll (277504 bytes, created: 02/18/2007 11:05 AM) --a------
advapi32.dll (618496 bytes, created: 02/18/2007 11:05 AM) --a------
advpack.dll (124928 bytes, created: 06/27/2008 03:13 PM) --a------
advpack.dll.mui (10240 bytes, created: 11/07/2006 04:25 AM) ---------
aelupsvc.dll (26624 bytes, created: 03/25/2005 07:00 AM) --a------
ahui.exe (41984 bytes, created: 03/25/2005 07:00 AM) --a------
alg.exe (45056 bytes, created: 03/25/2005 07:00 AM) --a------
amcompat.tlb (16832 bytes, created: 05/09/2006 04:10 AM) --a------
amstream.dll (72704 bytes, created: 02/18/2007 11:05 AM) --a------
AntiXPVSTFix.exe (87552 bytes, created: 08/21/2008 11:41 PM) --a------
apcups.dll (113152 bytes, created: 02/18/2007 11:05 AM) --a------
append.exe (12498 bytes, created: 03/25/2005 07:00 AM) --a------
apphelp.dll (148992 bytes, created: 02/18/2007 11:05 AM) --a------
appmgmts.dll (175104 bytes, created: 02/18/2007 11:05 AM) --a------
appmgr.dll (300544 bytes, created: 02/18/2007 11:05 AM) --a------
appwiz.cpl (479744 bytes, created: 02/18/2007 11:05 AM) --a------
arp.exe (20992 bytes, created: 02/18/2007 11:05 AM) --a------
asctrls.ocx (91648 bytes, created: 03/25/2005 07:00 AM) --a------
asferror.dll (8192 bytes, created: 02/18/2007 11:05 AM) --a------
asr_pfu.exe (33280 bytes, created: 03/25/2005 07:00 AM) --a------
asycfilt.dll (65536 bytes, created: 02/18/2007 11:05 AM) --a------
at.exe (25088 bytes, created: 03/25/2005 07:00 AM) --a------
ATHPRXY.DLL (32768 bytes, created: 01/22/2001 03:25 AM) --a------
atkctrs.dll (13824 bytes, created: 03/25/2005 07:00 AM) --a------
atl.dll (62976 bytes, created: 02/18/2007 11:05 AM) --a------
ATL70.DLL (84992 bytes, created: 01/05/2002 07:18 AM) --a------
atl71.dll (89088 bytes, created: 03/18/2003 09:05 PM) -ra------
atmadm.exe (11264 bytes, created: 03/25/2005 07:00 AM) --a------
atmlib.dll (30720 bytes, created: 03/25/2005 07:00 AM) --a------
atmpvcno.dll (39936 bytes, created: 03/25/2005 07:00 AM) --a------
attrib.exe (11776 bytes, created: 03/25/2005 07:00 AM) --a------
audiodev.dll (479232 bytes, created: 02/18/2007 11:05 AM) --a------
audiosrv.dll (41472 bytes, created: 03/25/2005 07:00 AM) --a------
auditusr.exe (14336 bytes, created: 03/25/2005 07:00 AM) --a------
authz.dll (70656 bytes, created: 02/18/2007 11:05 AM) --a------
autochk.exe (594944 bytes, created: 02/18/2007 11:05 AM) --a------
autoconv.exe (608256 bytes, created: 02/18/2007 11:05 AM) --a------
autodisc.dll (61952 bytes, created: 03/25/2005 07:00 AM) --a------
AUTOEXEC.TMP (1688 bytes, created: 03/25/2005 07:00 AM) --a------
autofmt.exe (586752 bytes, created: 02/18/2007 11:05 AM) --a------
autolfn.exe (10240 bytes, created: 03/25/2005 07:00 AM) --a------
avicap.dll (69584 bytes, created: 03/25/2005 07:00 AM) --a------
avicap32.dll (68608 bytes, created: 03/25/2005 07:00 AM) --a------
avifil32.dll (86016 bytes, created: 03/25/2005 07:00 AM) --a------
avifile.dll (109456 bytes, created: 03/25/2005 07:00 AM) --a------
azroles.dll (233472 bytes, created: 02/18/2007 11:05 AM) --a------
azroleui.dll (323584 bytes, created: 02/18/2007 11:05 AM) --a------
batmeter.dll (32256 bytes, created: 02/18/2007 11:05 AM) --a------
BCGCBPRO674.dll (2166837 bytes, created: 10/28/2004 12:12 PM) --a------
bidispl.dll (15872 bytes, created: 03/25/2005 07:00 AM) --a------
bitsprx2.dll (8192 bytes, created: 02/18/2007 11:05 AM) --a------
bitsprx3.dll (7168 bytes, created: 02/18/2007 11:05 AM) --a------
blackbox.dll (285696 bytes, created: 02/18/2007 11:05 AM) --a------
bopomofo.uce (22984 bytes, created: 03/25/2005 07:00 AM) --a------
browselc.dll (63488 bytes, created: 03/25/2005 07:00 AM) --a------
browser.dll (78336 bytes, created: 02/18/2007 11:05 AM) --a------
browseui.dll (1033216 bytes, created: 02/18/2007 11:05 AM) --a------
browsewm.dll (80896 bytes, created: 03/25/2005 07:00 AM) --a------
BSZIP.DLL (50688 bytes, created: 10/27/2000 05:23 PM) --a------
bthprops.cpl (112128 bytes, created: 02/18/2007 11:05 AM) --a------
c_037.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10000.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10006.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10007.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10010.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10017.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10029.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10079.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10081.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_10082.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1026.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1250.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1251.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1252.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1253.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1254.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1255.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1256.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1257.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_1258.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_20127.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_20261.nls (139810 bytes, created: 03/25/2005 07:00 AM) --a------
c_20866.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_20905.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_21866.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28591.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28592.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28593.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
C_28594.NLS (66082 bytes, created: 03/25/2005 07:00 AM) --a------
C_28595.NLS (66082 bytes, created: 03/25/2005 07:00 AM) --a------
C_28597.NLS (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28598.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28599.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28603.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_28605.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_437.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_500.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_737.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_775.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_850.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_852.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_855.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_857.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_860.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_861.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_863.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_865.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_866.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_869.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_874.nls (66594 bytes, created: 03/25/2005 07:00 AM) --a------
c_875.nls (66082 bytes, created: 03/25/2005 07:00 AM) --a------
c_932.nls (162850 bytes, created: 03/25/2005 07:00 AM) --a------
c_936.nls (196642 bytes, created: 03/25/2005 07:00 AM) --a------
c_949.nls (196642 bytes, created: 03/25/2005 07:00 AM) --a------
c_950.nls (196642 bytes, created: 03/25/2005 07:00 AM) --a------
c_eucdb.dll (4096 bytes, created: 03/25/2005 07:00 AM) --a------
c_g18030.dll (218624 bytes, created: 03/25/2005 07:00 AM) --a------
c_is2022.dll (7168 bytes, created: 03/25/2005 07:00 AM) --a------
c_iscii.dll (10752 bytes, created: 03/25/2005 07:00 AM) --a------
c_snadb.dll (4096 bytes, created: 03/25/2005 07:00 AM) --a------
cabinet.dll (88576 bytes, created: 02/18/2007 11:05 AM) --a------
cabview.dll (84480 bytes, created: 02/18/2007 11:05 AM) --a------
cacls.exe (23552 bytes, created: 02/18/2007 11:05 AM) --a------
calc.exe (115712 bytes, created: 03/25/2005 07:00 AM) --a------
camocx.dll (52224 bytes, created: 02/18/2007 11:05 AM) --a------
CapabilityTable.exe (466944 bytes, created: 05/27/2005 05:26 PM) --a------
cards.dll (360960 bytes, created: 03/25/2005 07:00 AM) --a------
catsrv.dll (272896 bytes, created: 02/18/2007 11:05 AM) --a------
catsrvps.dll (20480 bytes, created: 02/18/2007 11:05 AM) --a------
catsrvut.dll (616448 bytes, created: 02/18/2007 11:05 AM) --a------
ccfgnt.dll (29696 bytes, created: 03/25/2005 07:00 AM) --a------
cdfview.dll (151552 bytes, created: 02/18/2007 11:05 AM) --a------
cdintf250.dll (1650688 bytes, created: 08/23/2005 12:54 PM) --a------
cdosys.dll (2098688 bytes, created: 02/18/2007 11:05 AM) --a------
cdplayer.exe.manifest (749 bytes, created: 05/09/2006 04:09 AM) -rah-----
certcli.dll (233984 bytes, created: 02/18/2007 11:05 AM) --a------
certmgr.dll (480768 bytes, created: 02/18/2007 11:05 AM) --a------
cewmdm.dll (222720 bytes, created: 02/18/2007 11:05 AM) --a------
CFFileProxy.dll (143360 bytes, created: 08/25/2003 06:18 PM) --a------
CFFtp.dll (69632 bytes, created: 08/25/2003 06:16 PM) --a------
cfgmgr32.dll (17920 bytes, created: 03/25/2005 07:00 AM) --a------
cfmlvalidator.dll (1507328 bytes, created: 07/19/2001 01:23 PM) --a------
cfmsg.dll (40960 bytes, created: 06/14/2000 03:55 PM) --a------
CfRds.dll (110592 bytes, created: 08/25/2003 06:17 PM) --a------
CFRegExp.dll (69632 bytes, created: 08/25/2003 06:17 PM) --a------
CFSDebug.dll (69632 bytes, created: 08/25/2003 06:17 PM) --a------
CfShellFtpRds.dll (270336 bytes, created: 08/25/2003 06:19 PM) --a------
CFSourceControl.ocx (94208 bytes, created: 08/25/2003 06:19 PM) --a------
cfssvradmin.dll (446464 bytes, created: 08/25/2003 06:17 PM) --a------
cfvalidator.dll (487424 bytes, created: 08/25/2003 06:20 PM) --a------
charmap.exe (85504 bytes, created: 03/25/2005 07:00 AM) --a------
chkdsk.exe (13824 bytes, created: 02/18/2007 11:05 AM) --a------
chkntfs.exe (12288 bytes, created: 03/25/2005 07:00 AM) --a------
choice.exe (35840 bytes, created: 03/25/2005 07:00 AM) --a------
ciadmin.dll (173568 bytes, created: 02/18/2007 11:05 AM) --a------
cic.dll (148480 bytes, created: 02/18/2007 11:12 AM) --a------
cidaemon.exe (9728 bytes, created: 03/25/2005 07:00 AM) --a------
ciodm.dll (70144 bytes, created: 02/18/2007 11:05 AM) --a------
cipher.exe (57856 bytes, created: 02/18/2007 11:05 AM) --a------
circ3.ocx (25088 bytes, created: 01/16/2001 01:14 PM) --a------
cisvc.exe (6656 bytes, created: 03/25/2005 07:00 AM) --a------
ckcnv.exe (8704 bytes, created: 03/25/2005 07:00 AM) --a------
clb.dll (11776 bytes, created: 03/25/2005 07:00 AM) --a------
clbcatex.dll (104448 bytes, created: 02/18/2007 11:05 AM) --a------
clbcatq.dll (510976 bytes, created: 02/18/2007 11:05 AM) --a------
cleanmgr.exe (64512 bytes, created: 02/18/2007 11:05 AM) --a------
cliconfg.dll (77824 bytes, created: 03/25/2005 07:00 AM) --a------
cliconfg.exe (20480 bytes, created: 03/25/2005 07:00 AM) --a------
cliconfg.rll (24576 bytes, created: 03/25/2005 07:00 AM) --a------
clip.exe (26624 bytes, created: 03/25/2005 07:00 AM) --a------
clipbrd.exe (101376 bytes, created: 03/25/2005 07:00 AM) --a------
clipsrv.exe (32256 bytes, created: 03/25/2005 07:00 AM) --a------
clusapi.dll (60928 bytes, created: 02/18/2007 11:05 AM) --a------
cmcfg32.dll (16896 bytes, created: 03/25/2005 07:00 AM) --a------
cmd.exe (389120 bytes, created: 02/18/2007 11:05 AM) --a------
cmdial32.dll (360960 bytes, created: 02/18/2007 11:05 AM) --a------
cmdkey.exe (14848 bytes, created: 03/25/2005 07:00 AM) --a------
cmdl32.exe (48640 bytes, created: 03/25/2005 07:00 AM) --a------
cmmgr32.hlp (61178 bytes, created: 03/25/2005 07:00 AM) --a------
cmmon32.exe (39936 bytes, created: 03/25/2005 07:00 AM) --a------
cmpbk32.dll (16384 bytes, created: 03/25/2005 07:00 AM) --a------
cmsetACL.dll (15360 bytes, created: 03/25/2005 07:00 AM) --a------
cmstp.exe (68608 bytes, created: 03/25/2005 07:00 AM) --a------
cmutil.dll (43520 bytes, created: 03/25/2005 07:00 AM) --a------
cnbjmon.dll (47616 bytes, created: 03/25/2005 07:00 AM) --a------
cnetcfg.dll (32768 bytes, created: 03/25/2005 07:00 AM) --a------
cnvfat.dll (29184 bytes, created: 03/25/2005 07:00 AM) --a------
colbact.dll (58368 bytes, created: 02/18/2007 11:05 AM) --a------
comaddin.dll (30720 bytes, created: 02/18/2007 11:05 AM) --a------
comadmin.dll (181760 bytes, created: 02/18/2007 11:05 AM) --a------
comcat.dll (4608 bytes, created: 03/25/2005 07:00 AM) --a------
comctl32.dll (599040 bytes, created: 02/18/2007 11:05 AM) --a------
comctl32.ocx (608448 bytes, created: 05/22/2000 04:58 PM) --a------
comdlg32.dll (273408 bytes, created: 02/18/2007 11:05 AM) --a------
comdlg32.ocx (140488 bytes, created: 05/22/2000 04:58 PM) --a------
commdlg.dll (32816 bytes, created: 03/25/2005 07:00 AM) --a------
comp.exe (16384 bytes, created: 03/25/2005 07:00 AM) --a------
compact.exe (18944 bytes, created: 03/25/2005 07:00 AM) --a------
compatui.dll (264192 bytes, created: 02/18/2007 11:05 AM) --a------
compobj.dll (27792 bytes, created: 03/25/2005 07:00 AM) --a------
compstui.dll (225280 bytes, created: 03/25/2005 07:00 AM) --a------
comres.dll (797184 bytes, created: 02/18/2007 11:05 AM) --a------
comsnap.dll (192512 bytes, created: 03/25/2005 07:00 AM) --a------
comsvcs.dll (1295872 bytes, created: 02/18/2007 11:05 AM) --a------
comuid.dll (593408 bytes, created: 02/18/2007 11:05 AM) --a------
config.nt (0 bytes, created: 08/18/2008 07:17 PM) --a------
CONFIG.TMP (2577 bytes, created: 03/25/2005 07:00 AM) --a------
confmsp.dll (360960 bytes, created: 02/18/2007 11:05 AM) --a------
conime.exe (26624 bytes, created: 03/25/2005 07:00 AM) --a------
console.dll (67584 bytes, created: 03/25/2005 07:00 AM) --a------
control.exe (10240 bytes, created: 03/25/2005 07:00 AM) --a------
convert.exe (16384 bytes, created: 03/25/2005 07:00 AM) --a------
corpol.dll (36352 bytes, created: 02/18/2007 11:05 AM) --a------
credui.dll (165888 bytes, created: 02/18/2007 11:05 AM) --a------
crtdll.dll (149019 bytes, created: 03/25/2005 07:00 AM) --a------
crypt32.dll (595456 bytes, created: 02/18/2007 11:05 AM) --a------
cryptdlg.dll (72704 bytes, created: 03/25/2005 07:00 AM) --a------
cryptdll.dll (33280 bytes, created: 02/18/2007 11:05 AM) --a------
cryptext.dll (56320 bytes, created: 02/18/2007 11:05 AM) --a------
cryptnet.dll (62464 bytes, created: 02/18/2007 11:05 AM) --a------
cryptsvc.dll (56320 bytes, created: 02/18/2007 11:05 AM) --a------
cryptui.dll (506880 bytes, created: 02/18/2007 11:05 AM) --a------
cscdll.dll (101888 bytes, created: 02/18/2007 11:05 AM) --a------
cscript.exe (98304 bytes, created: 02/18/2007 11:05 AM) --a------
cscui.dll (326656 bytes, created: 02/18/2007 11:05 AM) --a------
csseqchk.dll (73728 bytes, created: 03/25/2005 07:00 AM) --a------
ctfmon.exe (15360 bytes, created: 03/25/2005 07:00 AM) --a------
ctl3d32.dll (27136 bytes, created: 03/25/2005 07:00 AM) --a------
ctl3dv2.dll (27200 bytes, created: 03/25/2005 07:00 AM) --a------
ctype.nls (8386 bytes, created: 03/25/2005 07:00 AM) --a------
d3d8.dll (1042432 bytes, created: 02/18/2007 11:05 AM) --a------
d3d8thk.dll (8192 bytes, created: 03/25/2005 07:00 AM) --a------
d3d9.dll (1690624 bytes, created: 02/18/2007 11:05 AM) --a------
d3dim.dll (378880 bytes, created: 02/18/2007 11:05 AM) --a------
d3dim700.dll (835584 bytes, created: 03/25/2005 07:00 AM) --a------
d3dpmesh.dll (36864 bytes, created: 03/25/2005 07:00 AM) --a------
d3dramp.dll (590848 bytes, created: 03/25/2005 07:00 AM) --a------
d3drm.dll (351744 bytes, created: 03/25/2005 07:00 AM) --a------
d3dxof.dll (48128 bytes, created: 03/25/2005 07:00 AM) --a------
danim.dll (1058304 bytes, created: 02/18/2007 11:05 AM) --a------
dataclen.dll (54272 bytes, created: 03/25/2005 07:00 AM) --a------
datime.dll (165376 bytes, created: 02/18/2007 11:05 AM) --a------
davclnt.dll (26112 bytes, created: 02/18/2007 11:05 AM) --a------
daxctle.ocx (144384 bytes, created: 03/25/2005 07:00 AM) --a------
dbgeng.dll (1061376 bytes, created: 02/18/2007 11:05 AM) --a------
dbghelp.dll (665600 bytes, created: 03/25/2005 07:00 AM) --a------
dbmsrpcn.dll (24576 bytes, created: 03/25/2005 07:00 AM) --a------
dbnetlib.dll (114688 bytes, created: 02/18/2007 11:05 AM) --a------
dbnmpntw.dll (28672 bytes, created: 02/18/2007 11:05 AM) --a------
dciman32.dll (8704 bytes, created: 03/25/2005 07:00 AM) --a------
ddeml.dll (39424 bytes, created: 03/25/2005 07:00 AM) --a------
ddeshare.exe (28672 bytes, created: 03/25/2005 07:00 AM) --a------
ddraw.dll (283136 bytes, created: 03/25/2005 07:00 AM) --a------
ddrawex.dll (28160 bytes, created: 03/25/2005 07:00 AM) --a------
desk.cpl (126976 bytes, created: 02/18/2007 11:05 AM) --a------
deskadp.dll (15872 bytes, created: 03/25/2005 07:00 AM) --a------
deskmon.dll (17920 bytes, created: 03/25/2005 07:00 AM) --a------
deskperf.dll (21504 bytes, created: 02/18/2007 11:05 AM) --a------
devenum.dll (61440 bytes, created: 02/18/2007 11:05 AM) --a------
dfshim.dll (83456 bytes, created: 09/23/2005 07:28 AM) --a------
dfsshlex.dll (29184 bytes, created: 03/25/2005 07:00 AM) --a------
dgnet.dll (100352 bytes, created: 03/25/2005 07:00 AM) --a------
dhcpcsvc.dll (117248 bytes, created: 02/18/2007 11:05 AM) --a------
dhcpmon.dll (386048 bytes, created: 02/18/2007 11:05 AM) --a------
dhcpsapi.dll (78848 bytes, created: 03/25/2005 07:00 AM) --a------
diactfrm.dll (415744 bytes, created: 02/18/2007 11:05 AM) --a------
diantz.exe (86528 bytes, created: 03/25/2005 07:00 AM) --a------
digest.dll (71680 bytes, created: 02/18/2007 11:05 AM) --a------
dimap.dll (42496 bytes, created: 03/25/2005 07:00 AM) --a------
dimsntfy.dll (19456 bytes, created: 02/18/2007 11:05 AM) --a------
dimsroam.dll (40448 bytes, created: 02/18/2007 11:05 AM) --a------
dinput.dll (159744 bytes, created: 02/18/2007 11:05 AM) --a------
dinput8.dll (182272 bytes, created: 03/25/2005 07:00 AM) --a------
diskcopy.dll (1505280 bytes, created: 02/18/2007 11:05 AM) --a------
diskperf.exe (19456 bytes, created: 03/25/2005 07:00 AM) --a------
diskraid.exe (399360 bytes, created: 02/18/2007 11:12 AM) ---------
dispex.dll (28672 bytes, created: 02/18/2007 11:05 AM) --a------
dllhost.exe (5632 bytes, created: 02/18/2007 11:05 AM) --a------
dllhst3g.exe (5632 bytes, created: 02/18/2007 11:05 AM) --a------
dmband.dll (28672 bytes, created: 03/25/2005 07:00 AM) --a------
dmcompos.dll (61952 bytes, created: 03/25/2005 07:00 AM) --a------
dmime.dll (181760 bytes, created: 02/18/2007 11:05 AM) --a------
dmloader.dll (36352 bytes, created: 02/18/2007 11:05 AM) --a------
dmocx.dll (19456 bytes, created: 03/25/2005 07:00 AM) --a------
dmscript.dll (82432 bytes, created: 03/25/2005 07:00 AM) --a------
dmstyle.dll (105984 bytes, created: 03/25/2005 07:00 AM) --a------
dmsynth.dll (103424 bytes, created: 03/25/2005 07:00 AM) --a------
dmusic.dll (104448 bytes, created: 02/18/2007 11:05 AM) --a------
dnsapi.dll (160768 bytes, created: 06/21/2008 03:07 PM) --a------
dnsrslvr.dll (45568 bytes, created: 02/19/2008 03:30 AM) --a------
docprop.dll (46592 bytes, created: 03/25/2005 07:00 AM) --a------
docprop2.dll (49152 bytes, created: 02/18/2007 11:05 AM) --a------
doskey.exe (10752 bytes, created: 03/25/2005 07:00 AM) --a------
dplay.dll (33040 bytes, created: 03/25/2005 07:00 AM) --a------
dplaysvr.exe (31744 bytes, created: 03/25/2005 07:00 AM) --a------
dplayx.dll (230400 bytes, created: 02/18/2007 11:05 AM) --a------
dpmodemx.dll (23552 bytes, created: 03/25/2005 07:00 AM) --a------
dpnaddr.dll (3584 bytes, created: 02/18/2007 11:05 AM) --a------
dpnet.dll (376320 bytes, created: 02/18/2007 11:05 AM) --a------
dpnhpast.dll (4096 bytes, created: 02/18/2007 11:05 AM) --a------
dpnhupnp.dll (60928 bytes, created: 02/18/2007 11:05 AM) --a------
dpnlobby.dll (3584 bytes, created: 02/18/2007 11:05 AM) --a------
dpnsvr.exe (17920 bytes, created: 02/18/2007 11:05 AM) --a------
dpvacm.dll (22016 bytes, created: 02/18/2007 11:05 AM) --a------
dpvoice.dll (212480 bytes, created: 02/18/2007 11:05 AM) --a------
dpvsetup.exe (83968 bytes, created: 02/18/2007 11:05 AM) --a------
dpvvox.dll (116736 bytes, created: 02/18/2007 11:05 AM) --a------
dpwsockx.dll (57344 bytes, created: 02/18/2007 11:05 AM) --a------
driverquery.exe (70656 bytes, created: 02/18/2007 11:05 AM) --a------
drmclien.dll (246784 bytes, created: 02/18/2007 11:05 AM) --a------
drmstor.dll (82944 bytes, created: 02/18/2007 11:05 AM) --a------
drmupgds.exe (163184 bytes, created: 02/18/2007 11:05 AM) --a------
drmv2clt.dll (510320 bytes, created: 02/18/2007 11:05 AM) --a------
drprov.dll (14336 bytes, created: 03/25/2005 07:00 AM) --a------
drwtsn32.exe (49152 bytes, created: 02/18/2007 11:05 AM) --a------
ds32gt.dll (16384 bytes, created: 03/25/2005 07:00 AM) --a------
dsauth.dll (26624 bytes, created: 02/18/2007 11:05 AM) --a------
dsdmo.dll (182272 bytes, created: 03/25/2005 07:00 AM) --a------
dsdmoprp.dll (75776 bytes, created: 03/25/2005 07:00 AM) --a------
dskquota.dll (93184 bytes, created: 02/18/2007 11:05 AM) --a------
dskquoui.dll (156160 bytes, created: 02/18/2007 11:05 AM) --a------
dsound.dll (360960 bytes, created: 02/18/2007 11:05 AM) --a------
dsound3d.dll (1294848 bytes, created: 03/25/2005 07:00 AM) --a------
dsprop.dll (153600 bytes, created: 02/18/2007 11:05 AM) --a------
dsquery.dll (248832 bytes, created: 02/18/2007 11:05 AM) --a------
dssec.dll (44032 bytes, created: 03/25/2005 07:00 AM) --a------
dssenh.dll (147288 bytes, created: 02/18/2007 11:05 AM) --a------
dsuiext.dll (119808 bytes, created: 02/18/2007 11:05 AM) --a------
dswave.dll (19456 bytes, created: 03/25/2005 07:00 AM) --a------
dumphive.exe (51200 bytes, created: 07/31/2004 06:50 PM) --a------
dumprep.exe (15872 bytes, created: 03/25/2005 07:00 AM) --a------
duser.dll (302080 bytes, created: 02/18/2007 11:05 AM) --a------
dvdplay.exe (55808 bytes, created: 03/25/2005 07:00 AM) --a------
dvdupgrd.exe (17920 bytes, created: 03/25/2005 07:00 AM) --a------
dwwin.exe (186936 bytes, created: 03/25/2005 07:00 AM) --a------
dx7vb.dll (621056 bytes, created: 02/18/2007 11:05 AM) --a------
dx8vb.dll (1225216 bytes, created: 02/18/2007 11:05 AM) --a------
dxdiag.exe (1024000 bytes, created: 03/25/2005 07:00 AM) --a------
dxdiagn.dll (1765376 bytes, created: 02/18/2007 11:05 AM) --a------
dxmasf.dll (498742 bytes, created: 08/22/2006 05:05 AM) --a------
dxtmsft.dll (347136 bytes, created: 06/27/2008 03:13 PM) --a------
dxtrans.dll (214528 bytes, created: 06/27/2008 03:13 PM) --a------
efsadu.dll (29696 bytes, created: 03/25/2005 07:00 AM) --a------
els.dll (198144 bytes, created: 02/18/2007 11:05 AM) --a------
encapi.dll (20480 bytes, created: 03/25/2005 07:00 AM) --a------
encdec.dll (396288 bytes, created: 02/18/2007 11:05 AM) --a------
es.dll (247296 bytes, created: 04/30/2008 04:49 AM) --a------
esent.dll (1044480 bytes, created: 02/18/2007 11:05 AM) --a------
esent97.dll (1114896 bytes, created: 03/25/2005 07:00 AM) --a------
esentprf.dll (19968 bytes, created: 03/25/2005 07:00 AM) --a------
esentutl.exe (46592 bytes, created: 03/25/2005 07:00 AM) --a------
eudcedit.exe (197120 bytes, created: 02/18/2007 11:05 AM) --a------
eula.txt (49704 bytes, created: 03/25/2005 07:00 AM) --a------
eventcreate.exe (58368 bytes, created: 03/25/2005 07:00 AM) --a------
eventtriggers.exe (118272 bytes, created: 02/18/2007 11:05 AM) --a------
eventvwr.exe (9728 bytes, created: 03/25/2005 07:00 AM) --a------
eventvwr.msc (56678 bytes, created: 03/25/2005 07:00 AM) --a------
expand.exe (16384 bytes, created: 03/25/2005 07:00 AM) --a------
explorer.exe (1053184 bytes, created: 02/18/2007 11:05 AM) --a------
expsrv.dll (380957 bytes, created: 02/18/2007 11:05 AM) --a------
extmgr.dll (133120 bytes, created: 06/27/2008 03:13 PM) --a------
extrac32.exe (43520 bytes, created: 03/25/2005 07:00 AM) --a------
faultrep.dll (86528 bytes, created: 03/25/2005 07:00 AM) --a------
fc.exe (15872 bytes, created: 03/25/2005 07:00 AM) --a------
fde.dll (126464 bytes, created: 02/18/2007 11:05 AM) --a------
fdeploy.dll (79360 bytes, created: 02/18/2007 11:05 AM) --a------
feclient.dll (21504 bytes, created: 03/25/2005 07:00 AM) --a------
filemgmt.dll (343552 bytes, created: 03/25/2005 07:00 AM) --a------
FileOps.exe (16384 bytes, created: 08/16/2004 07:40 PM) --a------
find.exe (10240 bytes, created: 03/25/2005 07:00 AM) --a------
findstr.exe (27648 bytes, created: 03/25/2005 07:00 AM) --a------
finger.exe (9728 bytes, created: 03/25/2005 07:00 AM) --a------
fixmapi.exe (3584 bytes, created: 03/25/2005 07:00 AM) --a------
fldrclnr.dll (89088 bytes, created: 02/18/2007 11:05 AM) --a------
fltlib.dll (17408 bytes, created: 03/25/2005 07:00 AM) --a------
fltmc.exe (23040 bytes, created: 03/25/2005 07:00 AM) --a------
FM20.DLL (1129232 bytes, created: 10/17/1999 07:01 PM) --a------
FM20ENU.DLL (26384 bytes, created: 10/17/1999 07:01 PM) --a------
fmifs.dll (19968 bytes, created: 02/18/2007 11:05 AM) --a------
fontext.dll (382976 bytes, created: 02/18/2007 11:05 AM) --a------
fontsub.dll (81408 bytes, created: 02/18/2007 11:05 AM) --a------
fontview.exe (20480 bytes, created: 03/25/2005 07:00 AM) --a------
forfiles.exe (48640 bytes, created: 03/25/2005 07:00 AM) --a------
format.com (29696 bytes, created: 03/25/2005 07:00 AM) --a------
freecell.exe (56320 bytes, created: 03/25/2005 07:00 AM) --a------
freedisk.exe (38400 bytes, created: 03/25/2005 07:00 AM) --a------
fsusd.dll (89600 bytes, created: 02/18/2007 11:05 AM) --a------
fsutil.exe (64512 bytes, created: 02/18/2007 11:05 AM) --a------
ftp.exe (46080 bytes, created: 02/18/2007 11:05 AM) --a------
ftppro32.dll (506368 bytes, created: 08/23/2001 07:22 PM) --a------
ftsrch.dll (179200 bytes, created: 03/25/2005 07:00 AM) --a------
fwcfg.dll (65536 bytes, created: 02/18/2007 11:05 AM) --a------
g711codc.ax (45568 bytes, created: 03/25/2005 07:00 AM) --a------
gb2312.uce (24006 bytes, created: 03/25/2005 07:00 AM) --a------
gcdef.dll (80896 bytes, created: 02/18/2007 11:05 AM) --a------
gdi.exe (24576 bytes, created: 03/25/2005 07:00 AM) --a------
gdi32.dll (291328 bytes, created: 02/18/2008 08:33 PM) --a------
gdiplus.dll (1700352 bytes, created: 09/05/2001 09:00 PM) --a------
GEARAspi.dll (109360 bytes, created: 10/03/2006 07:47 PM) --a------
geo.nls (24772 bytes, created: 03/25/2005 07:00 AM) --a------
GeoCodec.dll (425984 bytes, created: 02/03/2005 06:58 PM) --a------
getmac.exe (67072 bytes, created: 03/25/2005 07:00 AM) --a------
gettype.exe (51200 bytes, created: 03/25/2005 07:00 AM) --a------
getuname.dll (605696 bytes, created: 03/25/2005 07:00 AM) --a------
glmf32.dll (308224 bytes, created: 03/25/2005 07:00 AM) --a------
glu32.dll (123392 bytes, created: 02/18/2007 11:05 AM) --a------
gpedit.dll (580608 bytes, created: 02/18/2007 11:05 AM) --a------
gpkcsp.dll (118232 bytes, created: 03/25/2005 07:00 AM) --a------
gpkrsrc.dll (9728 bytes, created: 03/25/2005 07:00 AM) --a------
gpresult.exe (142848 bytes, created: 02/18/2007 11:05 AM) --a------
gptext.dll (235008 bytes, created: 02/18/2007 11:05 AM) --a------
gpupdate.exe (61952 bytes, created: 03/25/2005 07:00 AM) --a------
grpconv.exe (40448 bytes, created: 02/18/2007 11:05 AM) --a------
h323.tsp (265728 bytes, created: 02/18/2007 11:05 AM) --a------
h323msp.dll (621568 bytes, created: 02/18/2007 11:05 AM) --a------
hbaapi.dll (38400 bytes, created: 02/18/2007 11:05 AM) --a------
help.exe (18944 bytes, created: 03/25/2005 07:00 AM) --a------
hh.exe (10752 bytes, created: 02/18/2007 11:05 AM) --a------
hhctrl.ocx (546304 bytes, created: 02/18/2007 11:05 AM) --a------
hhsetup.dll (41472 bytes, created: 02/18/2007 11:05 AM) --a------
hid.dll (18944 bytes, created: 02/18/2007 11:05 AM) --a------
hidphone.tsp (30208 bytes, created: 03/25/2005 07:00 AM) --a------
hlink.dll (72704 bytes, created: 02/18/2007 11:05 AM) --a------
hnetcfg.dll (355328 bytes, created: 02/18/2007 11:05 AM) --a------
hnetmon.dll (16384 bytes, created: 03/25/2005 07:00 AM) --a------
homepage.inf (1644 bytes, created: 03/25/2005 07:00 AM) --a------
hostname.exe (8192 bytes, created: 03/25/2005 07:00 AM) --a------
html.iec (443904 bytes, created: 10/17/2006 01:06 PM) --a------
httpapi.dll (24576 bytes, created: 02/18/2007 11:05 AM) --a------
htui.dll (41472 bytes, created: 03/25/2005 07:00 AM) --a------
iasacct.dll (38912 bytes, created: 03/25/2005 07:00 AM) --a------
iasads.dll (43520 bytes, created: 03/25/2005 07:00 AM) --a------
iashlpr.dll (32256 bytes, created: 03/25/2005 07:00 AM) --a------
iasnap.dll (74240 bytes, created: 02/18/2007 11:05 AM) --a------
iaspolcy.dll (22528 bytes, created: 03/25/2005 07:00 AM) --a------
iasrad.dll (122368 bytes, created: 03/25/2005 07:00 AM) --a------
iasrecst.dll (162816 bytes, created: 03/25/2005 07:00 AM) --a------
iassam.dll (133632 bytes, created: 02/18/2007 11:05 AM) --a------
iassdo.dll (266240 bytes, created: 02/18/2007 11:05 AM) --a------
iassvcs.dll (76288 bytes, created: 02/18/2007 11:05 AM) --a------
icacls.exe (39936 bytes, created: 02/18/2007 11:05 AM) ---------
icardie.dll (63488 bytes, created: 06/27/2008 03:13 PM) ---------
iccvid.dll (78336 bytes, created: 03/25/2005 07:00 AM) --a------
icfgnt5.dll (16384 bytes, created: 03/25/2005 07:00 AM) --a------
icm32.dll (255488 bytes, created: 02/18/2007 11:05 AM) --a------
icmp.dll (4608 bytes, created: 03/25/2005 07:00 AM) --a------
icmui.dll (59392 bytes, created: 03/25/2005 07:00 AM) --a------
icrav03.rat (8798 bytes, created: 09/01/2006 08:44 AM) --a------
icwdial.dll (73728 bytes, created: 03/25/2005 07:00 AM) --a------
icwphbk.dll (65536 bytes, created: 03/25/2005 07:00 AM) --a------
ideograf.uce (60458 bytes, created: 03/25/2005 07:00 AM) --a------
[b]idndl.dll[/b] (26112 bytes, created: 06/29/2006 09:05 AM) ---------
[b]idq.dll[/b] (120832 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ie4uinit.exe[/b] (70656 bytes, created: 06/27/2008 03:13 PM) --a------
[b]IE7Eula.rtf[/b] (74715 bytes, created: 09/23/2006 01:12 PM) ---------
[b]ieakeng.dll[/b] (153088 bytes, created: 06/27/2008 03:13 PM) --a------
[b]ieaksie.dll[/b] (230400 bytes, created: 06/27/2008 03:13 PM) --a------
[b]ieakui.dll[/b] (161792 bytes, created: 06/27/2008 03:13 PM) --a------
[b]ieapfltr.dat[/b] (2455488 bytes, created: 05/07/2007 04:31 PM) ---------
[b]ieapfltr.dll[/b] (383488 bytes, created: 06/27/2008 03:13 PM) --a------
[b]IEDFix.C.exe[/b] (82432 bytes, created: 08/14/2008 09:52 PM) --a------
[b]iedkcs32.dll[/b] (384512 bytes, created: 06/27/2008 03:13 PM) --a------
[b]ieencode.dll[/b] (78336 bytes, created: 10/17/2006 01:06 PM) --a------
[b]ieframe.dll[/b] (6066176 bytes, created: 06/27/2008 03:13 PM) --a------
[b]ieframe.dll.mui[/b] (991232 bytes, created: 01/08/2007 08:07 PM) ---------
[b]iepeers.dll[/b] (191488 bytes, created: 10/17/2006 12:58 PM) --a------
[b]iernonce.dll[/b] (44544 bytes, created: 06/27/2008 03:13 PM) --a------
[b]iertutil.dll[/b] (267776 bytes, created: 06/27/2008 03:13 PM) --a------
[b]iesetup.dll[/b] (55296 bytes, created: 11/07/2006 04:26 AM) --a------
[b]ieudinit.exe[/b] (13824 bytes, created: 06/27/2008 03:13 PM) --a------
[b]ieui.dll[/b] (180736 bytes, created: 10/17/2006 12:36 PM) ---------
[b]ieuinit.inf[/b] (56483 bytes, created: 11/07/2006 04:24 AM) --a------
[b]iexpress.exe[/b] (117248 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ifmon.dll[/b] (137728 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ifsutil.dll[/b] (80896 bytes, created: 02/18/2007 11:05 AM) --a------
[b]igmpagnt.dll[/b] (8192 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ils.dll[/b] (81920 bytes, created: 03/25/2005 07:00 AM) --a------
[b]imaadp32.acm[/b] (15872 bytes, created: 03/25/2005 07:00 AM) --a------
[b]imagehlp.dll[/b] (147968 bytes, created: 02/18/2007 11:05 AM) --a------
[b]imeshare.dll[/b] (22016 bytes, created: 03/25/2005 07:00 AM) --a------
[b]imgutil.dll[/b] (36352 bytes, created: 10/17/2006 12:57 PM) --a------
[b]imm32.dll[/b] (112640 bytes, created: 02/18/2007 11:05 AM) --a------
[b]inetcfg.dll[/b] (274432 bytes, created: 03/25/2005 07:00 AM) --a------
[b]InetClnt.dll[/b] (1721712 bytes, created: 10/22/2007 06:58 PM) ---------
[b]inetcomm.dll[/b] (694784 bytes, created: 07/03/2008 02:14 PM) --a------
[b]inetcpl.cpl[/b] (1831424 bytes, created: 06/27/2008 03:13 PM) --a------
[b]inetcplc.dll[/b] (111104 bytes, created: 03/25/2005 07:00 AM) --a------
[b]inetmib1.dll[/b] (47616 bytes, created: 03/25/2005 07:00 AM) --a------
[b]inetpp.dll[/b] (76288 bytes, created: 02/18/2007 11:05 AM) --a------
[b]inetppui.dll[/b] (15360 bytes, created: 03/25/2005 07:00 AM) --a------
[b]inetres.dll[/b] (48128 bytes, created: 03/25/2005 07:00 AM) --a------
[b]infosoft.dll[/b] (445952 bytes, created: 03/25/2005 07:00 AM) --a------
[b]initpki.dll[/b] (130048 bytes, created: 02/18/2007 11:05 AM) --a------
[b]input.dll[/b] (131584 bytes, created: 03/25/2005 07:00 AM) --a------
[b]inseng.dll[/b] (92672 bytes, created: 11/07/2006 04:26 AM) --a------
[b]instnm.exe[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]intl.cpl[/b] (135168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]inuse.exe[/b] (37376 bytes, created: 03/25/2005 07:00 AM) --a------
[b]iologmsg.dll[/b] (34304 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipconf.tsp[/b] (16896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipconfig.exe[/b] (63488 bytes, created: 02/18/2007 11:05 AM) --a------
[b]iphlpapi.dll[/b] (95232 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ipmontr.dll[/b] (159232 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipnathlp.dll[/b] (343552 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ippromon.dll[/b] (333312 bytes, created: 02/18/2007 11:05 AM) --a------
[b]iprop.dll[/b] (3584 bytes, created: 03/25/2005 07:00 AM) --a------
[b]iprtprio.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]iprtrmgr.dll[/b] (176128 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipsec6.exe[/b] (46080 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipsecsnp.dll[/b] (379904 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ipsecsvc.dll[/b] (188928 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ipsmsnap.dll[/b] (439808 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ipv6mon.dll[/b] (59904 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipxroute.exe[/b] (24576 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ipxsap.dll[/b] (70656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir32_32.dll[/b] (199168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir41_32.ax[/b] (848384 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir41_qc.dll[/b] (120320 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir41_qcx.dll[/b] (338432 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir50_32.dll[/b] (755200 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir50_qc.dll[/b] (200192 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ir50_qcx.dll[/b] (183808 bytes, created: 03/25/2005 07:00 AM) --a------
[b]irprops.cpl[/b] (381440 bytes, created: 02/18/2007 11:05 AM) --a------
[b]isign32.dll[/b] (81920 bytes, created: 02/18/2007 11:05 AM) --a------
[b]isrdbg32.dll[/b] (24576 bytes, created: 03/25/2005 07:00 AM) --a------
[b]itircl.dll[/b] (155136 bytes, created: 02/18/2007 11:05 AM) --a------
[b]itss.dll[/b] (137216 bytes, created: 02/18/2007 11:05 AM) --a------
[b]ixsso.dll[/b] (54272 bytes, created: 02/18/2007 11:05 AM) --a------
[b]iyuv_32.dll[/b] (47616 bytes, created: 03/25/2005 07:00 AM) --a------
[b]java.exe[/b] (135168 bytes, created: 09/24/2007 11:30 PM) --a------
[b]javacpl.cpl[/b] (69632 bytes, created: 09/25/2007 12:31 AM) --a------
[b]javaw.exe[/b] (135168 bytes, created: 09/24/2007 11:30 PM) --a------
[b]javaws.exe[/b] (139264 bytes, created: 09/25/2007 12:31 AM) --a------
[b]jet500.dll[/b] (386560 bytes, created: 02/18/2007 11:05 AM) --a------
[b]jgaw400.dll[/b] (44544 bytes, created: 03/25/2005 07:00 AM) --a------
[b]jgdw400.dll[/b] (163840 bytes, created: 02/18/2007 11:05 AM) --a------
[b]jgmd400.dll[/b] (35840 bytes, created: 03/25/2005 07:00 AM) --a------
[b]jgpl400.dll[/b] (27648 bytes, created: 02/18/2007 11:05 AM) --a------
[b]jgsd400.dll[/b] (45568 bytes, created: 03/25/2005 07:00 AM) --a------
[b]jgsh400.dll[/b] (65536 bytes, created: 03/25/2005 07:00 AM) --a------
[b]jobexec.dll[/b] (47952 bytes, created: 03/25/2005 07:00 AM) --a------
[b]joy.cpl[/b] (69632 bytes, created: 02/18/2007 11:05 AM) --a------
[b]jscript.dll[/b] (491520 bytes, created: 10/17/2006 01:00 PM) --a------
[b]jsproxy.dll[/b] (27648 bytes, created: 06/27/2008 03:13 PM) --a------
[b]jupdate-1.5.0_10-b03.log[/b] (8669 bytes, created: 01/30/2007 03:49 PM) --a------
[b]jupdate-1.6.0_01-b06.log[/b] (4039 bytes, created: 06/03/2007 07:33 PM) --a------
[b]jupdate-1.6.0_03-b05.log[/b] (5399 bytes, created: 02/11/2008 04:04 PM) --a------
[b]kanji_1.uce[/b] (6948 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kanji_2.uce[/b] (8484 bytes, created: 03/25/2005 07:00 AM) --a------
[b]KBDAL.DLL[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdaze.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdazel.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdbe.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdbene.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdbhc.dll[/b] (7168 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdblr.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdbr.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdbu.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdca.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdcan.dll[/b] (8704 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdcr.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdcz.dll[/b] (7680 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdcz1.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdcz2.dll[/b] (7680 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdda.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbddv.dll[/b] (5632 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdes.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdest.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdfc.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdfi.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdfi1.dll[/b] (8192 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdfo.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdfr.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdgae.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdgkl.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdgr.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdgr1.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhe.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhe220.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhe319.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhela2.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhela3.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhept.dll[/b] (8704 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhu.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdhu1.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdic.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdir.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdit.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdit142.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdiultn.dll[/b] (7168 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdkaz.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdkyr.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdla.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdlt.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdlt1.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdlv.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdlv1.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdmac.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdmaori.dll[/b] (6144 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdmlt47.dll[/b] (7168 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdmlt48.dll[/b] (7168 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdmon.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdne.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdnec.dll[/b] (7680 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdnepr.dll[/b] (6656 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdno.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdno1.dll[/b] (8192 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdpash.dll[/b] (6656 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdpl.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdpl1.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdpo.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdro.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdru.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdru1.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdsf.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdsg.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdsl.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdsl1.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdsmsfi.dll[/b] (8192 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdsmsno.dll[/b] (8192 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdsp.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdsw.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdtat.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdtuf.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdtuq.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbduk.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdukx.dll[/b] (7680 bytes, created: 02/18/2007 11:05 AM) ---------
[b]kbdur.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdus.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdusl.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdusr.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdusx.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbduzb.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdycc.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kbdycl.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kerberos.dll[/b] (350720 bytes, created: 02/18/2007 11:05 AM) --a------
[b]kernel32.dll[/b] (1009664 bytes, created: 04/18/2007 10:27 AM) --a------
[b]keyboard.drv[/b] (2000 bytes, created: 03/25/2005 07:00 AM) --a------
[b]keymgr.dll[/b] (150016 bytes, created: 03/25/2005 07:00 AM) --a------
[b]kmddsp.tsp[/b] (35328 bytes, created: 03/25/2005 07:00 AM) --a------
[b]korean.uce[/b] (12876 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ksproxy.ax[/b] (130048 bytes, created: 02/18/2007 11:12 AM) --a------
[b]ksuser.dll[/b] (4096 bytes, created: 03/25/2005 07:00 AM) --a------
[b]l_except.nls[/b] (168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]l_intl.nls[/b] (7046 bytes, created: 03/25/2005 07:00 AM) --a------
[b]l3codeca.acm[/b] (290816 bytes, created: 03/25/2005 07:00 AM) --a------
[b]l3codecp.acm[/b] (364544 bytes, created: 02/18/2007 11:05 AM) --a------
[b]l3codecx.ax[/b] (83456 bytes, created: 03/25/2005 07:00 AM) --a------
[b]label.exe[/b] (10240 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lang_cfml.dll[/b] (114688 bytes, created: 07/20/2001 02:23 PM) --a------
[b]langwrbk.dll[/b] (94720 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lanman.drv[/b] (221600 bytes, created: 03/25/2005 07:00 AM) --a------
[b]laprxy.dll[/b] (6656 bytes, created: 02/18/2007 11:05 AM) --a------
[b]licmgr10.dll[/b] (40960 bytes, created: 10/17/2006 01:05 PM) --a------
[b]linkinfo.dll[/b] (19968 bytes, created: 02/18/2007 11:05 AM) --a------
[b]lmhsvc.dll[/b] (19968 bytes, created: 02/18/2007 11:05 AM) --a------
[b]lmrt.dll[/b] (405504 bytes, created: 02/18/2007 11:05 AM) --a------
[b]loadperf.dll[/b] (93696 bytes, created: 03/25/2005 07:00 AM) --a------
[b]locale.nls[/b] (262846 bytes, created: 02/18/2007 11:05 AM) --a------
[b]localsec.dll[/b] (231424 bytes, created: 02/18/2007 11:05 AM) --a------
[b]localui.dll[/b] (11776 bytes, created: 03/25/2005 07:00 AM) --a------
[b]locator.exe[/b] (71680 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lodctr.exe[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]logagent.exe[/b] (96768 bytes, created: 02/18/2007 11:05 AM) --a------
[b]loghours.dll[/b] (53760 bytes, created: 03/25/2005 07:00 AM) --a------
[b]logman.exe[/b] (64000 bytes, created: 03/25/2005 07:00 AM) --a------
[b]logonui.exe[/b] (516096 bytes, created: 02/18/2007 11:05 AM) --a------
[b]lpk.dll[/b] (22016 bytes, created: 02/18/2007 11:05 AM) --a------
[b]lpq.exe[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lpr.exe[/b] (9216 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lprhelp.dll[/b] (10752 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lprmonui.dll[/b] (9728 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lz32.dll[/b] (3072 bytes, created: 03/25/2005 07:00 AM) --a------
[b]lzexpand.dll[/b] (9936 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mag_hook.dll[/b] (10752 bytes, created: 03/25/2005 07:00 AM) --a------
[b]magnify.exe[/b] (72704 bytes, created: 02/18/2007 11:05 AM) --a------
[b]main.cpl[/b] (192512 bytes, created: 02/18/2007 11:05 AM) --a------
[b]makecab.exe[/b] (80896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]MAPI.DLL[/b] (520128 bytes, created: 10/01/1998 12:00 PM) --a------
[b]mapi32.dll[/b] (115200 bytes, created: 03/25/2005 07:00 AM) --a------
[b]MAPISRVR.EXE[/b] (38160 bytes, created: 03/26/1998 12:00 AM) --a------
[b]mapistub.dll[/b] (115200 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mcastmib.dll[/b] (13312 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mcd32.dll[/b] (12288 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mchgrcoi.dll[/b] (5632 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciavi.drv[/b] (73376 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciavi32.dll[/b] (84480 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mcicda.dll[/b] (17920 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciole16.dll[/b] (8192 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciole32.dll[/b] (8192 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciqtz32.dll[/b] (62464 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mciseq.dll[/b] (23040 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciseq.drv[/b] (25264 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciwave.dll[/b] (23552 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mciwave.drv[/b] (28160 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mdhcp.dll[/b] (54784 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mdminst.dll[/b] (118272 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mf3216.dll[/b] (40960 bytes, created: 03/02/2007 01:54 AM) --a------
[b]mfc40.dll[/b] (924432 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mfc40u.dll[/b] (927504 bytes, created: 01/25/2007 05:11 AM) --a------
[b]mfc42.dll[/b] (1160704 bytes, created: 02/18/2007 11:05 AM) --a------
[b]MFC42ENU.DLL[/b] (53248 bytes, created: 06/17/1998 06:08 PM) --a------
[b]mfc42u.dll[/b] (1163776 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mfc70.dll[/b] (974848 bytes, created: 01/05/2002 04:48 AM) --a------
[b]mfc70u.dll[/b] (964608 bytes, created: 01/05/2002 04:36 AM) --a------
[b]mfc71.dll[/b] (1060864 bytes, created: 03/18/2003 11:20 PM) -ra------
[b]MFC71CHS.DLL[/b] (40960 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71CHT.DLL[/b] (45056 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71DEU.DLL[/b] (65536 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71ENU.DLL[/b] (57344 bytes, created: 03/18/2003 10:44 PM) -ra------
[b]MFC71ESP.DLL[/b] (61440 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71FRA.DLL[/b] (61440 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71ITA.DLL[/b] (61440 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71JPN.DLL[/b] (49152 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]MFC71KOR.DLL[/b] (49152 bytes, created: 03/18/2003 08:44 PM) -ra------
[b]mfc71u.dll[/b] (1047552 bytes, created: 03/18/2003 09:12 PM) -ra------
[b]mfcsubs.dll[/b] (23040 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mgmtapi.dll[/b] (15872 bytes, created: 02/18/2007 11:05 AM) --a------
[b]microsoft.managementconsole.dll[/b] (184320 bytes, created: 02/18/2007 11:12 AM) ---------
[b]midimap.dll[/b] (18944 bytes, created: 03/25/2005 07:00 AM) --a------
[b]miglibnt.dll[/b] (82432 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mimefilt.dll[/b] (31232 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mlang.dat[/b] (673088 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mlang.dll[/b] (589824 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mll_hp.dll[/b] (5632 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mll_mtf.dll[/b] (9216 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mll_qic.dll[/b] (7680 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mmc.exe[/b] (1414656 bytes, created: 02/18/2007 11:12 AM) --a------
[b]mmcbase.dll[/b] (176640 bytes, created: 02/18/2007 11:12 AM) --a------
[b]mmcex.dll[/b] (397312 bytes, created: 02/18/2007 11:12 AM) ---------
[b]mmcfxcommon.dll[/b] (106496 bytes, created: 02/18/2007 11:12 AM) ---------
[b]mmcndmgr.dll[/b] (1872896 bytes, created: 02/18/2007 11:12 AM) --a------
[b]mmcperf.exe[/b] (33792 bytes, created: 02/18/2007 11:12 AM) ---------
[b]mmcshext.dll[/b] (61440 bytes, created: 02/18/2007 11:12 AM) --a------
[b]mmfutil.dll[/b] (17920 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mmsys.cpl[/b] (656384 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mmsystem.dll[/b] (68768 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mmutilse.dll[/b] (122880 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mnmdd.dll[/b] (33792 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mnmsrvc.exe[/b] (32768 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mobsync.dll[/b] (185344 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mobsync.exe[/b] (134144 bytes, created: 02/18/2007 11:05 AM) --a------
[b]modemui.dll[/b] (146432 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mon.txt[/b] (114 bytes, created: 05/11/2006 12:08 AM) --a------
[b]more.com[/b] (16384 bytes, created: 03/25/2005 07:00 AM) --a------
[b]moricons.dll[/b] (555008 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mountvol.exe[/b] (12288 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mp43dmod.dll[/b] (311808 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mp4sdmod.dll[/b] (385536 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mpeg2data.ax[/b] (62976 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mpg2splt.ax[/b] (148992 bytes, created: 02/18/2007 11:05 AM) --a------
[b]MPG4C32.DLL[/b] (427520 bytes, created: 06/02/2000 07:48 AM) --a------
[b]mpg4dmod.dll[/b] (241152 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mpg4ds32.ax[/b] (262144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mpnotify.exe[/b] (24576 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mpr.dll[/b] (57856 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mprapi.dll[/b] (90624 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mprddm.dll[/b] (79360 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mprdim.dll[/b] (54272 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mprmsg.dll[/b] (104448 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mprui.dll[/b] (50176 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mqad.dll[/b] (155136 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mqdscli.dll[/b] (49664 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mqoa.dll[/b] (240640 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mqperf.dll[/b] (14336 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mqrt.dll[/b] (180736 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mqsec.dll[/b] (142336 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mqutil.dll[/b] (421888 bytes, created: 02/18/2007 11:05 AM) --a------
[b]mrinfo.exe[/b] (13824 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msaatext.dll[/b] (103936 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msacm.dll[/b] (61168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msacm32.dll[/b] (71168 bytes, created: 02/18/2007 11:05 AM) --a------
[b]msacm32.drv[/b] (22528 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msadds32.ax[/b] (221184 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msadp32.acm[/b] (14848 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msafd.dll[/b] (4608 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msapsspc.dll[/b] (80128 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msasn1.dll[/b] (57344 bytes, created: 02/18/2007 11:05 AM) --a------
[b]msaud32.acm[/b] (294912 bytes, created: 03/25/2005 07:00 AM) --a------
[b]msaudite.dll[/b] (93696 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mscat32.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]mschrt20.ocx[/b] (1009336 bytes, created: 05/22/2000 04:58 PM) --a------
[b]mscms.dll[/b] (77824 bytes, created: 06/25/2008 09:29 PM) --a------
[b]mscomct2.ocx[/b] (647872 bytes, created: 05/22/2000 04:58 PM) --a------

[kmenchaca78]

continued....


mscomctl.ocx (1066176 bytes, created: 05/22/2000 04:58 PM) --a------
msconf.dll (73728 bytes, created: 03/25/2005 07:00 AM) --a------
mscoree.dll (271360 bytes, created: 04/13/2007 03:21 AM) --a------
mscorier.dll (150016 bytes, created: 09/23/2005 07:28 AM) --a------
mscories.dll (74240 bytes, created: 09/23/2005 07:28 AM) --a------
mscpx32r.dLL (12288 bytes, created: 03/25/2005 07:00 AM) --a------
mscpxl32.dLL (40960 bytes, created: 03/25/2005 07:00 AM) --a------
msctf.dll (316416 bytes, created: 02/18/2007 11:05 AM) --a------
msctfime.ime (177152 bytes, created: 02/18/2007 11:05 AM) --a------
MSCTFP.dll (70144 bytes, created: 03/25/2005 07:00 AM) --a------
msdadiag.dll (122880 bytes, created: 03/25/2005 07:00 AM) --a------
msdart.dll (106496 bytes, created: 02/18/2007 11:05 AM) --a------
msdatsrc.tlb (12288 bytes, created: 03/25/2005 07:00 AM) --a------
msdmo.dll (14336 bytes, created: 03/25/2005 07:00 AM) --a------
msdtcprx.dll (468992 bytes, created: 02/18/2007 11:05 AM) --a------
msdtcuiu.dll (167424 bytes, created: 02/18/2007 11:05 AM) --a------
msdxm.ocx (844314 bytes, created: 03/25/2005 07:00 AM) --a------
msdxmlc.dll (4126 bytes, created: 03/25/2005 07:00 AM) --a------
msencode.dll (114688 bytes, created: 03/25/2005 07:00 AM) --a------
msexch40.dll (518944 bytes, created: 03/27/2008 01:05 AM) --a------
msexcl40.dll (326432 bytes, created: 03/27/2008 01:05 AM) --a------
msfeeds.dll (459264 bytes, created: 06/27/2008 03:13 PM) ---------
msfeedsbs.dll (52224 bytes, created: 06/27/2008 03:13 PM) ---------
msfeedssync.exe (12288 bytes, created: 10/17/2006 12:58 PM) ---------
msflxgrd.ocx (244416 bytes, created: 05/22/2000 04:58 PM) --a------
msftedit.dll (540160 bytes, created: 11/27/2006 07:25 AM) --a------
msg711.acm (10240 bytes, created: 03/25/2005 07:00 AM) --a------
msg723.acm (122880 bytes, created: 03/25/2005 07:00 AM) --a------
msgina.dll (1208320 bytes, created: 02/18/2007 11:05 AM) --a------
msgsm32.acm (20992 bytes, created: 03/25/2005 07:00 AM) --a------
msh261.drv (188416 bytes, created: 03/25/2005 07:00 AM) --a------
msh263.drv (294912 bytes, created: 03/25/2005 07:00 AM) --a------
mshearts.exe (118272 bytes, created: 03/25/2005 07:00 AM) --a------
mshta.exe (45568 bytes, created: 10/17/2006 12:56 PM) --a------
mshtml.dll (3592192 bytes, created: 06/27/2008 03:13 PM) --a------
mshtml.tlb (1383424 bytes, created: 10/17/2006 12:19 PM) --a------
mshtmled.dll (477696 bytes, created: 06/27/2008 03:13 PM) --a------
mshtmler.dll (48128 bytes, created: 10/17/2006 12:28 PM) --a------
msi.dll (2854400 bytes, created: 03/23/2007 08:35 PM) --a------
msident.dll (49152 bytes, created: 03/25/2005 07:00 AM) --a------
msidle.dll (6656 bytes, created: 03/25/2005 07:00 AM) --a------
msidntld.dll (14848 bytes, created: 03/25/2005 07:00 AM) --a------
msieftp.dll (249344 bytes, created: 02/18/2007 11:05 AM) --a------
msiexec.exe (78848 bytes, created: 02/18/2007 11:05 AM) --a------
msihnd.dll (271360 bytes, created: 02/18/2007 11:05 AM) --a------
msimg32.dll (4608 bytes, created: 03/25/2005 07:00 AM) --a------
msimsg.dll (884736 bytes, created: 03/25/2005 07:00 AM) --a------
msimtf.dll (162816 bytes, created: 02/18/2007 11:05 AM) --a------
msisip.dll (15360 bytes, created: 03/25/2005 07:00 AM) --a------
MSJET35.DLL (1056768 bytes, created: 04/23/1999 10:22 PM) --a------
msjet40.dll (1516568 bytes, created: 03/27/2008 01:05 AM) --a------
msjetoledb40.dll (355112 bytes, created: 03/27/2008 01:05 AM) --a------
MSJINT35.DLL (123664 bytes, created: 04/24/1998 12:00 AM) --a------
msjint40.dll (151583 bytes, created: 02/18/2007 11:05 AM) --a------
MSJTER35.DLL (24848 bytes, created: 04/24/1998 12:00 AM) --a------
msjter40.dll (60192 bytes, created: 03/27/2008 01:05 AM) --a------
msjtes40.dll (248608 bytes, created: 03/27/2008 01:05 AM) --a------
mslbui.dll (30208 bytes, created: 02/18/2007 11:05 AM) --a------
msls31.dll (145408 bytes, created: 02/18/2007 11:05 AM) --a------
msltus40.dll (219936 bytes, created: 03/27/2008 01:05 AM) --a------
msmqtrc.mof (8117 bytes, created: 03/25/2005 07:00 AM) --a------
msnetobj.dll (135168 bytes, created: 02/18/2007 11:05 AM) --a------
msnsspc.dll (319760 bytes, created: 03/25/2005 07:00 AM) --a------
msobjs.dll (44544 bytes, created: 03/25/2005 07:00 AM) --a------
msoeacct.dll (255488 bytes, created: 02/18/2007 11:05 AM) --a------
msoert2.dll (108544 bytes, created: 02/18/2007 11:05 AM) --a------
msorc32r.dll (20480 bytes, created: 03/25/2005 07:00 AM) --a------
msorcl32.dll (143360 bytes, created: 02/18/2007 11:05 AM) --a------
mspaint.exe (343552 bytes, created: 03/25/2005 07:00 AM) --a------
mspatcha.dll (29696 bytes, created: 03/25/2005 07:00 AM) --a------
mspbde40.dll (355104 bytes, created: 03/27/2008 01:05 AM) --a------
mspmsnsv.dll (25088 bytes, created: 02/18/2007 11:05 AM) --a------
mspmsp.dll (171008 bytes, created: 02/18/2007 11:05 AM) --a------
msports.dll (46592 bytes, created: 03/25/2005 07:00 AM) --a------
msprivs.dll (47616 bytes, created: 03/25/2005 07:00 AM) --a------
msr2c.dll (69632 bytes, created: 03/25/2005 07:00 AM) --a------
msr2cenu.dll (7168 bytes, created: 03/25/2005 07:00 AM) --a------
msratelc.dll (60416 bytes, created: 03/25/2005 07:00 AM) --a------
msrating.dll (193024 bytes, created: 06/27/2008 03:13 PM) --a------
msrclr40.dll (73759 bytes, created: 03/25/2005 07:00 AM) --a------
MSRD2X35.DLL (252176 bytes, created: 04/24/1998 12:00 AM) --a------
msrd2x40.dll (432928 bytes, created: 03/27/2008 01:05 AM) --a------
msrd3x40.dll (322336 bytes, created: 03/27/2008 01:05 AM) --a------
MSRDO20.DLL (397312 bytes, created: 05/11/2000 01:06 PM) --a------
msrecr40.dll (28703 bytes, created: 03/25/2005 07:00 AM) --a------
MSREPL35.DLL (430080 bytes, created: 04/23/1999 10:22 PM) --a------
msrepl40.dll (559904 bytes, created: 03/27/2008 01:05 AM) --a------
msrle32.dll (10752 bytes, created: 03/25/2005 07:00 AM) --a------
mssap.dll (169472 bytes, created: 03/25/2005 07:00 AM) --a------
msscds32.ax (69632 bytes, created: 03/25/2005 07:00 AM) --a------
msscp.dll (354816 bytes, created: 02/18/2007 11:05 AM) --a------
msscript.ocx (98304 bytes, created: 02/18/2007 11:05 AM) --a------
mssign32.dll (37888 bytes, created: 03/25/2005 07:00 AM) --a------
mssip32.dll (5120 bytes, created: 03/25/2005 07:00 AM) --a------
MSSTDFMT.DLL (118784 bytes, created: 05/23/2000 09:45 PM) --a------
MSSTKPRP.DLL (94208 bytes, created: 08/09/1998 10:07 AM) --a------
msswch.dll (14848 bytes, created: 03/25/2005 07:00 AM) --a------
msswchx.exe (7680 bytes, created: 03/25/2005 07:00 AM) --a------
mstask.dll (300544 bytes, created: 02/18/2007 11:05 AM) --a------
mstext40.dll (264992 bytes, created: 03/27/2008 01:05 AM) --a------
mstime.dll (671232 bytes, created: 06/27/2008 03:13 PM) --a------
mstinit.exe (12288 bytes, created: 03/25/2005 07:00 AM) --a------
mstlsapi.dll (119808 bytes, created: 02/18/2007 11:05 AM) --a------
mstscax.dll (755200 bytes, created: 02/18/2007 11:05 AM) --a------
msutb.dll (195072 bytes, created: 02/18/2007 11:05 AM) --a------
msv1_0.dll (143360 bytes, created: 02/18/2007 11:05 AM) --a------
msvbvm60.dll (1386496 bytes, created: 03/25/2005 07:00 AM) --a------
msvci70.dll (54784 bytes, created: 01/05/2002 03:38 AM) --a------
msvcirt.dll (56832 bytes, created: 02/18/2007 11:05 AM) --a------
msvcp50.dll (565760 bytes, created: 03/25/2005 07:00 AM) --a------
msvcp60.dll (404480 bytes, created: 03/25/2005 07:00 AM) --a------
msvcp70.dll (487424 bytes, created: 01/05/2002 03:40 AM) --a------
msvcp71.dll (499712 bytes, created: 03/18/2003 10:14 PM) --a------
msvcr70.dll (344064 bytes, created: 01/05/2002 08:37 AM) --a------
msvcr71.dll (348160 bytes, created: 02/21/2003 04:42 AM) --a------
msvcrt.dll (348672 bytes, created: 02/18/2007 11:05 AM) --a------
msvcrt20.dll (253952 bytes, created: 03/25/2005 07:00 AM) --a------
msvcrt40.dll (61440 bytes, created: 03/25/2005 07:00 AM) --a------
msvfw32.dll (119808 bytes, created: 03/25/2005 07:00 AM) --a------
msvidc32.dll (27136 bytes, created: 03/25/2005 07:00 AM) --a------
msvidctl.dll (1563136 bytes, created: 02/18/2007 11:05 AM) --a------
msvideo.dll (126912 bytes, created: 03/25/2005 07:00 AM) --a------
msw3prt.dll (72192 bytes, created: 03/25/2005 07:00 AM) --a------
mswdat10.dll (838432 bytes, created: 03/27/2008 01:05 AM) --a------
mswebdvd.dll (209408 bytes, created: 02/18/2007 11:05 AM) --a------
mswmdm.dll (312320 bytes, created: 02/18/2007 11:05 AM) --a------
mswsock.dll (233472 bytes, created: 06/21/2008 03:07 PM) --a------
mswstr10.dll (621344 bytes, created: 03/27/2008 01:05 AM) --a------
msxbde40.dll (355104 bytes, created: 03/27/2008 01:05 AM) --a------
msxml.dll (506368 bytes, created: 02/18/2007 11:05 AM) --a------
msxml2.dll (700928 bytes, created: 02/18/2007 11:05 AM) --a------
msxml2r.dll (36352 bytes, created: 03/25/2005 07:00 AM) --a------
msxml3.dll (1119232 bytes, created: 05/31/2007 01:26 PM) --a------
msxml3r.dll (44032 bytes, created: 03/25/2005 07:00 AM) --a------
msxml4.dll (1275392 bytes, created: 05/08/2007 03:03 PM) --a------
msxml4r.dll (82432 bytes, created: 04/18/2003 04:29 PM) --a------
msxmlr.dll (26624 bytes, created: 03/25/2005 07:00 AM) --a------
msyuv.dll (16896 bytes, created: 03/25/2005 07:00 AM) --a------
mtstocom.exe (111104 bytes, created: 02/18/2007 11:05 AM) --a------
mtxclu.dll (79360 bytes, created: 02/18/2007 11:05 AM) --a------
mtxdm.dll (20992 bytes, created: 02/18/2007 11:05 AM) --a------
mtxex.dll (4096 bytes, created: 02/18/2007 11:05 AM) --a------
mtxlegih.dll (24064 bytes, created: 03/25/2005 07:00 AM) --a------
mtxoci.dll (111104 bytes, created: 02/18/2007 11:05 AM) --a------
muweb.dll (207736 bytes, created: 07/30/2007 07:18 PM) --a------
mycomput.dll (101376 bytes, created: 03/25/2005 07:00 AM) --a------
mydocs.dll (92160 bytes, created: 02/18/2007 11:05 AM) --a------
narrator.exe (54784 bytes, created: 02/18/2007 11:05 AM) --a------
narrhook.dll (37888 bytes, created: 03/25/2005 07:00 AM) --a------
nbtstat.exe (21504 bytes, created: 03/25/2005 07:00 AM) --a------
ncobjapi.dll (36864 bytes, created: 02/18/2007 11:05 AM) --a------
ncpa.cpl (56832 bytes, created: 02/18/2007 11:05 AM) --a------
ncpa.cpl.manifest (749 bytes, created: 05/09/2006 04:09 AM) -rah-----
nddeapi.dll (17920 bytes, created: 02/18/2007 11:05 AM) --a------
nddeapir.exe (4096 bytes, created: 03/25/2005 07:00 AM) --a------
nddenb32.dll (18944 bytes, created: 02/18/2007 11:05 AM) --a------
ndptsp.tsp (48128 bytes, created: 03/25/2005 07:00 AM) --a------
net.exe (42496 bytes, created: 03/25/2005 07:00 AM) --a------
net.hlp (102434 bytes, created: 03/25/2005 07:00 AM) --a------
net1.exe (127488 bytes, created: 02/18/2007 11:05 AM) --a------
netapi.dll (108464 bytes, created: 03/25/2005 07:00 AM) --a------
netapi32.dll (345088 bytes, created: 02/18/2007 11:05 AM) --a------
netcfgx.dll (781312 bytes, created: 02/18/2007 11:05 AM) --a------
netdde.exe (110080 bytes, created: 02/18/2007 11:05 AM) --a------
netevent.dll (229376 bytes, created: 03/25/2005 07:00 AM) --a------
netfxperf.dll (32768 bytes, created: 02/20/2003 07:16 PM) --a------
neth.dll (253952 bytes, created: 03/25/2005 07:00 AM) --a------
netid.dll (141824 bytes, created: 02/18/2007 11:05 AM) --a------
netlogon.dll (430592 bytes, created: 02/18/2007 11:05 AM) --a------
netman.dll (263680 bytes, created: 02/18/2007 11:05 AM) --a------
netmsg.dll (182272 bytes, created: 03/25/2005 07:00 AM) --a------
netplwiz.dll (875520 bytes, created: 02/18/2007 11:05 AM) --a------
netrap.dll (11776 bytes, created: 03/25/2005 07:00 AM) --a------
netsetup.exe (336384 bytes, created: 02/18/2007 11:05 AM) --a------
netsh.exe (86528 bytes, created: 02/18/2007 11:05 AM) --a------
netshell.dll (1809920 bytes, created: 02/18/2007 11:05 AM) --a------
netstat.exe (36352 bytes, created: 02/18/2007 11:05 AM) --a------
netui0.dll (77312 bytes, created: 03/25/2005 07:00 AM) --a------
netui1.dll (188416 bytes, created: 03/25/2005 07:00 AM) --a------
netui2.dll (326144 bytes, created: 02/18/2007 11:05 AM) --a------
newdev.dll (255488 bytes, created: 02/18/2007 11:05 AM) --a------
nlhtml.dll (98816 bytes, created: 02/18/2007 11:05 AM) --a------
nlsdl.dll (24576 bytes, created: 06/28/2006 06:59 PM) ---------
nmevtmsg.dll (12288 bytes, created: 03/25/2005 07:00 AM) --a------
nmmkcert.dll (28672 bytes, created: 03/25/2005 07:00 AM) --a------
nmp.log (530 bytes, created: 08/25/2008 09:58 PM) --a------
noise.deu (151578 bytes, created: 03/25/2005 07:00 AM) --a------
noise.enu (751 bytes, created: 03/25/2005 07:00 AM) --a------
noise.esn (20774 bytes, created: 03/25/2005 07:00 AM) --a------
noise.fra (49906 bytes, created: 03/25/2005 07:00 AM) --a------
noise.ita (20694 bytes, created: 03/25/2005 07:00 AM) --a------
noise.nld (13256 bytes, created: 03/25/2005 07:00 AM) --a------
noise.sve (14564 bytes, created: 03/25/2005 07:00 AM) --a------
normaliz.dll (23552 bytes, created: 06/29/2006 09:05 AM) ---------
normidna.nls (59342 bytes, created: 06/08/2006 01:06 PM) ---------
normnfc.nls (45794 bytes, created: 06/08/2006 01:06 PM) ---------
normnfd.nls (39284 bytes, created: 06/08/2006 01:06 PM) ---------
normnfkc.nls (66384 bytes, created: 06/08/2006 01:06 PM) ---------
normnfkd.nls (60294 bytes, created: 06/08/2006 01:06 PM) ---------
notepad.exe (68608 bytes, created: 03/25/2005 07:00 AM) --a------
npptools.dll (48640 bytes, created: 03/25/2005 07:00 AM) --a------
NSCMPS.DLL (84480 bytes, created: 06/02/2000 07:51 AM) --a------
nscompat.tlb (23392 bytes, created: 05/09/2006 04:10 AM) --a------
NSERROR.DLL (34240 bytes, created: 06/02/2000 07:51 AM) --a------
nshipsec.dll (393216 bytes, created: 02/18/2007 11:05 AM) --a------
nslookup.exe (86016 bytes, created: 02/18/2007 11:05 AM) --a------
ntdll.dll (766464 bytes, created: 02/18/2007 11:05 AM) --a------
ntdsapi.dll (71680 bytes, created: 02/18/2007 11:05 AM) --a------
ntdsbcli.dll (29696 bytes, created: 02/18/2007 11:05 AM) --a------
ntlanman.dll (44032 bytes, created: 02/18/2007 11:05 AM) --a------
ntlanui.dll (58368 bytes, created: 03/25/2005 07:00 AM) --a------
ntlanui2.dll (15360 bytes, created: 03/25/2005 07:00 AM) --a------
ntlsapi.dll (8192 bytes, created: 03/25/2005 07:00 AM) --a------
ntmarta.dll (121856 bytes, created: 02/18/2007 11:05 AM) --a------
ntmsapi.dll (45056 bytes, created: 02/18/2007 11:05 AM) --a------
ntprint.dll (99840 bytes, created: 02/18/2007 11:05 AM) --a------
ntsd.exe (40960 bytes, created: 02/18/2007 11:05 AM) --a------
ntshrui.dll (142848 bytes, created: 02/18/2007 11:05 AM) --a------
ntvdm64.dll (12800 bytes, created: 03/25/2005 07:00 AM) --a------
nusrmgr.cpl (258560 bytes, created: 02/18/2007 11:05 AM) --a------
nvappfilter.dll (118784 bytes, created: 02/24/2005 05:24 PM) --a------
nvasio.dll (30208 bytes, created: 09/13/2005 11:27 AM) -ra------
nwc.cpl.manifest (749 bytes, created: 05/09/2006 04:09 AM) -rah-----
oakley.dll (352256 bytes, created: 02/18/2007 11:05 AM) --a------
objsel.dll (297472 bytes, created: 03/25/2005 07:00 AM) --a------
occache.dll (102912 bytes, created: 06/27/2008 03:13 PM) --a------
ocmanage.dll (67584 bytes, created: 02/18/2007 11:05 AM) --a------
odbc16gt.dll (26224 bytes, created: 03/25/2005 07:00 AM) --a------
odbc32.dll (245760 bytes, created: 02/18/2007 11:05 AM) --a------
odbc32gt.dll (16384 bytes, created: 03/25/2005 07:00 AM) --a------
odbcad32.exe (32768 bytes, created: 02/18/2007 11:05 AM) --a------
odbcbcp.dll (24576 bytes, created: 02/18/2007 11:05 AM) --a------
odbcconf.dll (139264 bytes, created: 02/18/2007 11:05 AM) --a------
odbcconf.exe (57344 bytes, created: 03/25/2005 07:00 AM) --a------
odbcconf.rsp (4310 bytes, created: 03/25/2005 07:00 AM) --a------
odbccp32.cpl (32768 bytes, created: 03/25/2005 07:00 AM) --a------
odbccp32.dll (102400 bytes, created: 02/18/2007 11:05 AM) --a------
odbccr32.dll (65536 bytes, created: 03/25/2005 07:00 AM) --a------
odbccu32.dll (65536 bytes, created: 03/25/2005 07:00 AM) --a------
odbcint.dll (94208 bytes, created: 03/25/2005 07:00 AM) --a------
odbcji32.dll (53279 bytes, created: 02/18/2007 11:05 AM) --a------
odbcjt32.dll (278559 bytes, created: 02/18/2007 11:05 AM) --a------
odbcp32r.dll (12288 bytes, created: 03/25/2005 07:00 AM) --a------
odbctrac.dll (151552 bytes, created: 02/18/2007 11:05 AM) --a------
oddbse32.dll (20511 bytes, created: 02/18/2007 11:05 AM) --a------
odexl32.dll (20510 bytes, created: 02/18/2007 11:05 AM) --a------
odfox32.dll (20510 bytes, created: 02/18/2007 11:05 AM) --a------
odpdx32.dll (20510 bytes, created: 02/18/2007 11:05 AM) --a------
odtext32.dll (20511 bytes, created: 02/18/2007 11:05 AM) --a------
offfilt.dll (192512 bytes, created: 02/18/2007 11:05 AM) --a------
ole2.dll (42592 bytes, created: 03/25/2005 07:00 AM) --a------
ole2nls.dll (2560 bytes, created: 03/25/2005 07:00 AM) --a------
ole32.dll (1267200 bytes, created: 02/18/2007 11:05 AM) --a------
oleacc.dll (180224 bytes, created: 02/18/2007 11:05 AM) --a------
oleaccrc.dll (16896 bytes, created: 03/25/2005 07:00 AM) --a------
oleaut32.dll (553984 bytes, created: 12/13/2007 04:28 PM) --a------
olecli32.dll (76288 bytes, created: 02/18/2007 11:05 AM) --a------
olecnv32.dll (38912 bytes, created: 02/18/2007 11:05 AM) --a------
oledlg.dll (124416 bytes, created: 02/18/2007 11:05 AM) --a------
oleprn.dll (106496 bytes, created: 02/18/2007 11:05 AM) --a------
olepro32.dll (84480 bytes, created: 02/18/2007 11:05 AM) --a------
olesvr32.dll (24576 bytes, created: 03/25/2005 07:00 AM) --a------
olethk32.dll (74752 bytes, created: 03/25/2005 07:00 AM) --a------
opengl32.dll (714240 bytes, created: 02/18/2007 11:05 AM) --a------
osk.exe (215040 bytes, created: 02/18/2007 11:05 AM) --a------
osuninst.dll (118272 bytes, created: 03/25/2005 07:00 AM) --a------
packager.exe (58368 bytes, created: 03/25/2005 07:00 AM) --a------
panmap.dll (10752 bytes, created: 03/25/2005 07:00 AM) --a------
pathping.exe (15360 bytes, created: 03/25/2005 07:00 AM) --a------
pautoenr.dll (75264 bytes, created: 02/18/2007 11:05 AM) --a------
PCDLIB32.DLL (212480 bytes, created: 12/08/1998 06:53 PM) --a------
pdh.dll (299520 bytes, created: 02/18/2007 11:05 AM) --a------
pentnt.exe (16384 bytes, created: 03/25/2005 07:00 AM) --a------
perfctrs.dll (45568 bytes, created: 02/18/2007 11:05 AM) --a------
perfdisk.dll (28672 bytes, created: 02/18/2007 11:05 AM) --a------
perfmon.exe (17408 bytes, created: 03/25/2005 07:00 AM) --a------
perfnet.dll (19968 bytes, created: 02/18/2007 11:05 AM) --a------
perfos.dll (27136 bytes, created: 02/18/2007 11:05 AM) --a------
perfproc.dll (35840 bytes, created: 02/18/2007 11:05 AM) --a------
PerfStringBackup.INI (500694 bytes, created: 04/16/2008 12:04 AM) --a------
perfts.dll (14336 bytes, created: 02/18/2007 11:05 AM) --a------
photowiz.dll (176640 bytes, created: 02/18/2007 11:05 AM) --a------
pid.dll (33792 bytes, created: 03/25/2005 07:00 AM) --a------
pidgen.dll (29696 bytes, created: 02/18/2007 11:05 AM) --a------
pifmgr.dll (35328 bytes, created: 03/25/2005 07:00 AM) --a------
ping.exe (18432 bytes, created: 03/25/2005 07:00 AM) --a------
pjlmon.dll (15360 bytes, created: 03/25/2005 07:00 AM) --a------
pmspl.dll (46592 bytes, created: 03/25/2005 07:00 AM) --a------
pngfilt.dll (44544 bytes, created: 06/27/2008 03:13 PM) --a------
polstore.dll (129024 bytes, created: 02/18/2007 11:05 AM) --a------
powercfg.cpl (115712 bytes, created: 03/25/2005 07:00 AM) --a------
powercfg.exe (69632 bytes, created: 02/18/2007 11:05 AM) --a------
powrprof.dll (16896 bytes, created: 03/25/2005 07:00 AM) --a------
prflbmsg.dll (17920 bytes, created: 03/25/2005 07:00 AM) --a------
print.exe (9728 bytes, created: 03/25/2005 07:00 AM) --a------
printui.dll (568320 bytes, created: 02/18/2007 11:05 AM) --a------
Process.exe (53248 bytes, created: 06/05/2003 09:13 PM) --a------
proctexe.ocx (84480 bytes, created: 02/18/2007 11:05 AM) --a------
profmap.dll (22528 bytes, created: 02/18/2007 11:05 AM) --a------
progman.exe (109568 bytes, created: 02/18/2007 11:05 AM) --a------
proquota.exe (53248 bytes, created: 02/18/2007 11:05 AM) --a------
proxycfg.exe (9216 bytes, created: 03/25/2005 07:00 AM) --a------
psapi.dll (20480 bytes, created: 02/18/2007 11:05 AM) --a------
psbase.dll (86016 bytes, created: 02/18/2007 11:05 AM) --a------
pschdprf.dll (12288 bytes, created: 03/25/2005 07:00 AM) --a------
psnppagn.dll (24576 bytes, created: 03/25/2005 07:00 AM) --a------
pstorec.dll (45056 bytes, created: 02/18/2007 11:05 AM) --a------
pstorsvc.dll (25088 bytes, created: 02/18/2007 11:05 AM) --a------
qappsrv.exe (18944 bytes, created: 03/25/2005 07:00 AM) --a------
qasf.dll (217088 bytes, created: 02/18/2007 11:05 AM) --a------
qcap.dll (192512 bytes, created: 02/18/2007 11:05 AM) --a------
qdv.dll (279040 bytes, created: 02/18/2007 11:05 AM) --a------
qdvd.dll (385536 bytes, created: 02/18/2007 11:05 AM) --a------
qedit.dll (512512 bytes, created: 02/18/2007 11:05 AM) --a------
qedwipes.dll (733696 bytes, created: 03/25/2005 07:00 AM) --a------
qmgrprxy.dll (19456 bytes, created: 02/18/2007 11:05 AM) --a------
qosname.dll (10240 bytes, created: 03/25/2005 07:00 AM) --a------
qprocess.exe (19968 bytes, created: 03/25/2005 07:00 AM) --a------
quartz.dll (1274880 bytes, created: 04/30/2008 08:08 PM) --a------
query.dll (1432576 bytes, created: 02/18/2007 11:05 AM) --a------
QuickTime.qtp (50500 bytes, created: 10/15/2006 11:37 PM) --a------
QuickTime.qts (57344 bytes, created: 02/01/2008 12:13 AM) --a------
QuickTimeVR.qtx (90112 bytes, created: 02/01/2008 12:13 AM) --a------
qwinsta.exe (24064 bytes, created: 03/25/2005 07:00 AM) --a------
r2brand.dll (289280 bytes, created: 03/25/2005 07:00 AM) --a------
rasadhlp.dll (7680 bytes, created: 02/18/2007 11:05 AM) --a------
rasapi32.dll (246272 bytes, created: 02/18/2007 11:05 AM) --a------
rasauto.dll (91648 bytes, created: 02/18/2007 11:05 AM) --a------
rasautou.exe (12800 bytes, created: 03/25/2005 07:00 AM) --a------
raschap.dll (122368 bytes, created: 02/18/2007 11:05 AM) --a------
rasctrs.dll (13824 bytes, created: 03/25/2005 07:00 AM) --a------
rasdial.exe (14848 bytes, created: 02/18/2007 11:05 AM) --a------
rasdlg.dll (678912 bytes, created: 02/18/2007 11:05 AM) --a------
rasman.dll (62976 bytes, created: 02/18/2007 11:05 AM) --a------
rasmans.dll (181760 bytes, created: 02/18/2007 11:05 AM) --a------
rasmontr.dll (248320 bytes, created: 02/18/2007 11:05 AM) --a------
rasmxs.dll (23552 bytes, created: 03/25/2005 07:00 AM) --a------
rasphone.exe (57344 bytes, created: 02/18/2007 11:05 AM) --a------
rasppp.dll (209920 bytes, created: 02/18/2007 11:05 AM) --a------
rasrad.dll (25088 bytes, created: 02/18/2007 11:05 AM) --a------
rassapi.dll (6656 bytes, created: 03/25/2005 07:00 AM) --a------
rasser.dll (14336 bytes, created: 03/25/2005 07:00 AM) --a------
rastapi.dll (63488 bytes, created: 02/18/2007 11:05 AM) --a------
rastls.dll (185344 bytes, created: 02/18/2007 11:05 AM) --a------
rcp.exe (21504 bytes, created: 03/25/2005 07:00 AM) --a------
RDOCURS.DLL (151552 bytes, created: 04/03/2000 05:52 PM) --a------
rdpsnd.dll (18432 bytes, created: 03/25/2005 07:00 AM) --a------
recover.exe (7168 bytes, created: 03/25/2005 07:00 AM) --a------
reg.exe (80384 bytes, created: 02/18/2007 11:05 AM) --a------
regapi.dll (56320 bytes, created: 02/18/2007 11:05 AM) --a------
regedit.exe (147456 bytes, created: 02/18/2007 11:05 AM) --a------
regedt32.exe (5120 bytes, created: 03/25/2005 07:00 AM) --a------
regsvc.dll (69120 bytes, created: 02/18/2007 11:05 AM) --a------
regsvr32.exe (12800 bytes, created: 03/25/2005 07:00 AM) --a------
regwiz.exe (5120 bytes, created: 03/25/2005 07:00 AM) --a------
regwizc.dll (398848 bytes, created: 03/25/2005 07:00 AM) --a------
relog.exe (35328 bytes, created: 03/25/2005 07:00 AM) --a------
remotesp.tsp (77824 bytes, created: 03/25/2005 07:00 AM) --a------
rend.dll (118784 bytes, created: 03/25/2005 07:00 AM) --a------
replace.exe (13312 bytes, created: 03/25/2005 07:00 AM) --a------
resutils.dll (65024 bytes, created: 03/25/2005 07:00 AM) --a------
rexec.exe (13824 bytes, created: 02/18/2007 11:05 AM) --a------
riched20.dll (452608 bytes, created: 11/27/2006 07:25 AM) --a------
riched32.dll (3584 bytes, created: 03/25/2005 07:00 AM) --a------
RICHTX32.OCX (212240 bytes, created: 03/08/2004 10:00 PM) --a------
rnr20.dll (4096 bytes, created: 03/25/2005 07:00 AM) --a------
route.exe (24064 bytes, created: 03/25/2005 07:00 AM) --a------
routemon.exe (29184 bytes, created: 03/25/2005 07:00 AM) --a------
routetab.dll (8192 bytes, created: 03/25/2005 07:00 AM) --a------
rpcns4.dll (25088 bytes, created: 03/25/2005 07:00 AM) --a------
rpcnsh.dll (10240 bytes, created: 03/25/2005 07:00 AM) --a------
rpcrt4.dll (629248 bytes, created: 07/11/2007 04:32 AM) --a------
rsaci.rat (3167 bytes, created: 03/25/2005 07:00 AM) --a------
rsaenh.dll (213336 bytes, created: 02/18/2007 11:05 AM) --a------
rsh.exe (14848 bytes, created: 02/18/2007 11:05 AM) --a------
rshx32.dll (43520 bytes, created: 02/18/2007 11:05 AM) --a------
rsopprov.exe (67072 bytes, created: 02/18/2007 11:05 AM) --a------
rtcshare.exe (77824 bytes, created: 03/25/2005 07:00 AM) --a------
rtm.dll (107008 bytes, created: 02/18/2007 11:05 AM) --a------
rtutils.dll (35328 bytes, created: 03/25/2005 07:00 AM) --a------
runas.exe (18432 bytes, created: 03/25/2005 07:00 AM) --a------
rundll32.exe (34816 bytes, created: 03/25/2005 07:00 AM) --a------
rundll32.exe.Z-missing.txt (8976 bytes, created: 08/29/2006 01:08 PM) --a------
runonce.exe (18432 bytes, created: 02/18/2007 11:05 AM) --a------
samlib.dll (47104 bytes, created: 02/18/2007 11:05 AM) --a------
SanDisk Screen Saver.scr (180224 bytes, created: 06/08/2005 04:11 PM) --a------
sapi.cpl.manifest (749 bytes, created: 05/09/2006 04:09 AM) -rah-----
savedump.exe (13312 bytes, created: 03/25/2005 07:00 AM) --a------
sbe.dll (276992 bytes, created: 02/18/2007 11:05 AM) --a------
sbeio.dll (159232 bytes, created: 02/18/2007 11:05 AM) --a------
sc.exe (47616 bytes, created: 03/25/2005 07:00 AM) --a------
scarddlg.dll (66560 bytes, created: 03/25/2005 07:00 AM) --a------
scardsvr.exe (90112 bytes, created: 02/18/2007 11:05 AM) --a------
sccbase.dll (195928 bytes, created: 02/18/2007 11:05 AM) --a------
sccsccp.dll (189440 bytes, created: 02/18/2007 11:05 AM) --a------
scecli.dll (188928 bytes, created: 02/18/2007 11:05 AM) --a------
schannel.dll (146944 bytes, created: 04/25/2007 02:45 PM) --a------
schedsvc.dll (202240 bytes, created: 02/18/2007 11:05 AM) --a------
schtasks.exe (152064 bytes, created: 03/25/2005 07:00 AM) --a------
sclgntfy.dll (19968 bytes, created: 03/25/2005 07:00 AM) --a------
SCP32.DLL (15872 bytes, created: 03/24/1998 08:54 PM) --a------
scredir.dll (28672 bytes, created: 02/18/2007 11:05 AM) --a------
scripto.dll (57856 bytes, created: 03/25/2005 07:00 AM) --a------
scriptpw.dll (16896 bytes, created: 03/25/2005 07:00 AM) --a------
scrobj.dll (155648 bytes, created: 02/18/2007 11:05 AM) --a------
scrptutl.dll (14848 bytes, created: 03/25/2005 07:00 AM) --a------
scrrun.dll (151552 bytes, created: 02/18/2007 11:05 AM) --a------
sdbinst.exe (31232 bytes, created: 02/18/2007 11:05 AM) --a------
sdpblb.dll (135680 bytes, created: 03/25/2005 07:00 AM) --a------
secedit.exe (36352 bytes, created: 03/25/2005 07:00 AM) --a------
seclogon.dll (18432 bytes, created: 02/18/2007 11:05 AM) --a------
secur32.dll (66560 bytes, created: 02/18/2007 11:05 AM) --a------
security.dll (5632 bytes, created: 03/25/2005 07:00 AM) --a------
sendcmsg.dll (31232 bytes, created: 02/18/2007 11:05 AM) --a------
sendmail.dll (56832 bytes, created: 02/18/2007 11:05 AM) --a------
sens.dll (37376 bytes, created: 02/18/2007 11:05 AM) --a------
sensapi.dll (6656 bytes, created: 02/18/2007 11:05 AM) --a------
senscfg.dll (10240 bytes, created: 03/25/2005 07:00 AM) --a------
serialui.dll (16896 bytes, created: 03/25/2005 07:00 AM) --a------
servdeps.dll (57344 bytes, created: 02/18/2007 11:05 AM) --a------
serwvdrv.dll (17408 bytes, created: 03/25/2005 07:00 AM) --a------
sethc.exe (32768 bytes, created: 02/18/2007 11:05 AM) --a------
setup.exe (41472 bytes, created: 03/25/2005 07:00 AM) --a------
setup16.exe (25088 bytes, created: 03/25/2005 07:00 AM) --a------
setupapi.dll (1069568 bytes, created: 02/18/2007 11:05 AM) --a------
setupn.exe (20480 bytes, created: 02/18/2007 11:05 AM) ---------
setx.exe (60416 bytes, created: 03/25/2005 07:00 AM) --a------
sfc.dll (4608 bytes, created: 03/25/2005 07:00 AM) --a------
sfc.exe (10752 bytes, created: 03/25/2005 07:00 AM) --a------
sfc_os.dll (141312 bytes, created: 02/18/2007 11:05 AM) --a------
sfcfiles.dll (2374656 bytes, created: 02/18/2007 11:05 AM) --a------
sfmapi.dll (24576 bytes, created: 03/25/2005 07:00 AM) --a------
shdoclc.dll (602624 bytes, created: 03/25/2005 07:00 AM) --a------
shdocvw.dll (1508352 bytes, created: 02/18/2007 11:05 AM) --a------
shell32.dll (8360448 bytes, created: 11/08/2007 12:55 AM) --a------
shellstyle.dll (434176 bytes, created: 03/25/2005 07:00 AM) --a------
shfolder.dll (25088 bytes, created: 03/25/2005 07:00 AM) --a------
shgina.dll (67072 bytes, created: 02/18/2007 11:05 AM) --a------
shiftjis.uce (16740 bytes, created: 03/25/2005 07:00 AM) --a------
shimeng.dll (48640 bytes, created: 02/18/2007 11:05 AM) --a------
shimgvw.dll (488448 bytes, created: 02/18/2007 11:05 AM) --a------
shlwapi.dll (320000 bytes, created: 02/18/2007 11:05 AM) --a------
shmedia.dll (152064 bytes, created: 02/18/2007 11:05 AM) --a------
shmgrate.exe (38400 bytes, created: 03/25/2005 07:00 AM) --a------
shscrap.dll (27648 bytes, created: 03/25/2005 07:00 AM) --a------
shsvcs.dll (135168 bytes, created: 02/18/2007 11:05 AM) --a------
sigtab.dll (9728 bytes, created: 03/25/2005 07:00 AM) --a------
sigverif.exe (71168 bytes, created: 03/25/2005 07:00 AM) --a------
simpdata.tlb (16384 bytes, created: 03/25/2005 07:00 AM) --a------
sisbkup.dll (17920 bytes, created: 02/18/2007 11:05 AM) --a------
skdll.dll (6656 bytes, created: 03/25/2005 07:00 AM) --a------
skeys.exe (26112 bytes, created: 03/25/2005 07:00 AM) --a------
sl_anet.acm (86016 bytes, created: 03/25/2005 07:00 AM) --a------
slayerxp.dll (25600 bytes, created: 02/18/2007 11:05 AM) --a------
slbcsp.dll (315736 bytes, created: 02/18/2007 11:05 AM) --a------
slbiop.dll (98304 bytes, created: 02/18/2007 11:05 AM) --a------
slbrccsp.dll (14336 bytes, created: 03/25/2005 07:00 AM) --a------
smlogcfg.dll (375808 bytes, created: 02/18/2007 11:05 AM) --a------
smlogsvc.exe (96256 bytes, created: 02/18/2007 11:05 AM) --a------
smss.exe (53760 bytes, created: 02/18/2007 11:05 AM) --a------
snmpapi.dll (19968 bytes, created: 03/25/2005 07:00 AM) --a------
snmpsnap.dll (186880 bytes, created: 02/18/2007 11:05 AM) --a------
softpub.dll (6144 bytes, created: 03/25/2005 07:00 AM) --a------
sol.exe (57856 bytes, created: 03/25/2005 07:00 AM) --a------
sort.exe (25088 bytes, created: 03/25/2005 07:00 AM) --a------
sortkey.nls (262148 bytes, created: 03/25/2005 07:00 AM) --a------
sorttbls.nls (23550 bytes, created: 02/18/2007 11:05 AM) --a------
sound.drv (1744 bytes, created: 03/25/2005 07:00 AM) --a------
spider.exe (541184 bytes, created: 03/25/2005 07:00 AM) --a------
SPR32D30.DLL (737280 bytes, created: 11/15/2000 01:46 PM) --a------
SPR32X30.OCX (999424 bytes, created: 11/15/2000 01:46 PM) --a------
sprestrt.exe (9728 bytes, created: 03/25/2005 07:00 AM) --a------
sqlsodbc.chm (46133 bytes, created: 03/25/2005 07:00 AM) --a------
sqlsrv32.dll (446464 bytes, created: 02/18/2007 11:05 AM) --a------
sqlsrv32.rll (90112 bytes, created: 03/25/2005 07:00 AM) --a------
sqlunirl.dll (180800 bytes, created: 03/25/2005 07:00 AM) --a------
sqlwid.dll (24603 bytes, created: 03/25/2005 07:00 AM) --a------
sqlwoa.dll (49179 bytes, created: 03/25/2005 07:00 AM) --a------
SrchSTS.exe (288417 bytes, created: 04/27/2006 05:49 PM) --a------
srclient.dll (72704 bytes, created: 02/18/2007 11:05 AM) --a------
ss3dfo.scr (696320 bytes, created: 03/25/2005 07:00 AM) --a------
ssdpapi.dll (34816 bytes, created: 03/25/2005 07:00 AM) --a------
ssdpsrv.dll (72192 bytes, created: 02/18/2007 11:05 AM) --a------
ssflwbox.scr (393216 bytes, created: 02/18/2007 11:05 AM) --a------
sslsvc.chm (36557 bytes, created: 08/23/2001 07:22 PM) --a------
SSLSVC.DLL (777728 bytes, created: 08/23/2001 07:22 PM) --a------
sspipes.scr (606208 bytes, created: 02/18/2007 11:05 AM) --a------
sstext3d.scr (679936 bytes, created: 02/18/2007 11:05 AM) --a------
stclient.dll (64000 bytes, created: 02/18/2007 11:05 AM) --a------
stdole2.tlb (16896 bytes, created: 02/18/2007 11:05 AM) --a------
stdole32.tlb (7168 bytes, created: 03/25/2005 07:00 AM) --a------
sti.dll (101376 bytes, created: 02/18/2007 11:05 AM) --a------
sti_ci.dll (141824 bytes, created: 02/18/2007 11:05 AM) --a------
stobject.dll (122880 bytes, created: 02/18/2007 11:05 AM) --a------
storage.dll (4208 bytes, created: 03/25/2005 07:00 AM) --a------
streamci.dll (12288 bytes, created: 03/25/2005 07:00 AM) --a------
strmdll.dll (246814 bytes, created: 08/21/2006 10:52 AM) --a------
strmfilt.dll (86016 bytes, created: 03/25/2005 07:00 AM) --a------
subrange.uce (93702 bytes, created: 03/25/2005 07:00 AM) --a------
subst.exe (10240 bytes, created: 03/25/2005 07:00 AM) --a------
svchost.exe (14848 bytes, created: 02/18/2007 11:05 AM) --a------
[b]svcpack.dll[/b] (7168 bytes, created: 03/25/2005 07:00 AM) --a------
[b]swreg.exe[/b] (135168 bytes, created: 08/29/2006 07:43 PM) --a------
[b]swsc.exe[/b] (40960 bytes, created: 01/09/2006 10:36 AM) --a------
[b]swxcacls.exe[/b] (79360 bytes, created: 12/01/2006 06:20 AM) --a------
[b]sxs.dll[/b] (762368 bytes, created: 02/18/2007 11:05 AM) --a------
[b]syncapp.exe[/b] (54272 bytes, created: 03/25/2005 07:00 AM) --a------
[b]synceng.dll[/b] (57856 bytes, created: 03/25/2005 07:00 AM) --a------
[b]syncui.dll[/b] (192000 bytes, created: 03/25/2005 07:00 AM) --a------
[b]sysdm.cpl[/b] (301568 bytes, created: 02/18/2007 11:05 AM) --a------
[b]sysedit.exe[/b] (18896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]sysinv.dll[/b] (16896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]syskey.exe[/b] (29696 bytes, created: 03/25/2005 07:00 AM) --a------
[b]sysmon.ocx[/b] (259584 bytes, created: 02/18/2007 11:05 AM) --a------
[b]sysocmgr.exe[/b] (107520 bytes, created: 03/25/2005 07:00 AM) --a------
[b]syssetup.dll[/b] (1052160 bytes, created: 02/18/2007 11:05 AM) --a------
[b]systeminfo.exe[/b] (79360 bytes, created: 03/25/2005 07:00 AM) --a------
[b]systray.exe[/b] (3072 bytes, created: 03/25/2005 07:00 AM) --a------
[b]t2embed.dll[/b] (118272 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tabctl32.ocx[/b] (209608 bytes, created: 12/06/2000 01:02 PM) --a------
[b]takeown.exe[/b] (58880 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tapi.dll[/b] (19216 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tapi3.dll[/b] (860672 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tapi32.dll[/b] (183808 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tapiperf.dll[/b] (6144 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tapisrv.dll[/b] (254976 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tapiui.dll[/b] (78848 bytes, created: 03/25/2005 07:00 AM) --a------
[b]taskkill.exe[/b] (84480 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tasklist.exe[/b] (87552 bytes, created: 03/25/2005 07:00 AM) --a------
[b]taskmgr.exe[/b] (168960 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tcmsetup.exe[/b] (13824 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tcpmib.dll[/b] (17920 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tcpmon.dll[/b] (48128 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tcpmonui.dll[/b] (46080 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tcpsvcs.exe[/b] (21504 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tdc.ocx[/b] (66560 bytes, created: 10/17/2006 12:55 PM) --a------
[b]telephon.cpl[/b] (28160 bytes, created: 03/25/2005 07:00 AM) --a------
[b]termmgr.dll[/b] (359936 bytes, created: 02/18/2007 11:05 AM) --a------
[b]themeui.dll[/b] (386560 bytes, created: 02/18/2007 11:05 AM) --a------
[b]THREED32.OCX[/b] (200704 bytes, created: 01/12/1996 12:00 AM) --a------
[b]ticrf.rat[/b] (1988 bytes, created: 09/01/2006 08:44 AM) ---------
[b]timedate.cpl[/b] (94720 bytes, created: 02/18/2007 11:05 AM) --a------
[b]timeout.exe[/b] (28672 bytes, created: 03/25/2005 07:00 AM) --a------
[b]timer.drv[/b] (4048 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tmp.reg[/b] (3420 bytes, created: 08/24/2008 07:24 PM) --a------
[b]tmp.txt[/b] (0 bytes, created: 08/22/2008 12:17 AM) --a------
[b]tourstart.exe[/b] (347136 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tracerpt.exe[/b] (419328 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tracert.exe[/b] (12800 bytes, created: 03/25/2005 07:00 AM) --a------
[b]traffic.dll[/b] (33792 bytes, created: 03/25/2005 07:00 AM) --a------
[b]trkwks.dll[/b] (86528 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tsappcmp.dll[/b] (58880 bytes, created: 02/18/2007 11:05 AM) --a------
[b]tsbyuv.dll[/b] (8192 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tsd32.dll[/b] (16896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tsddd.dll[/b] (10376 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tssoft32.acm[/b] (9728 bytes, created: 03/25/2005 07:00 AM) --a------
[b]twext.dll[/b] (82944 bytes, created: 02/18/2007 11:05 AM) --a------
[b]txflog.dll[/b] (98304 bytes, created: 02/18/2007 11:05 AM) --a------
[b]typeperf.exe[/b] (37376 bytes, created: 03/25/2005 07:00 AM) --a------
[b]tzchange.exe[/b] (64000 bytes, created: 07/15/2008 03:48 PM) ---------
[b]udhisapi.dll[/b] (26112 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ufat.dll[/b] (89088 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ulib.dll[/b] (277504 bytes, created: 02/18/2007 11:05 AM) --a------
[b]umandlg.dll[/b] (34816 bytes, created: 02/18/2007 11:05 AM) --a------
[b]umdmxfrm.dll[/b] (14848 bytes, created: 03/25/2005 07:00 AM) --a------
[b]unicode.nls[/b] (89588 bytes, created: 03/25/2005 07:00 AM) --a------
[b]unimdm.tsp[/b] (207872 bytes, created: 02/18/2007 11:05 AM) --a------
[b]unimdmat.dll[/b] (75264 bytes, created: 02/18/2007 11:05 AM) --a------
[b]uniplat.dll[/b] (13824 bytes, created: 02/18/2007 11:05 AM) --a------
[b]unlodctr.exe[/b] (5632 bytes, created: 03/25/2005 07:00 AM) --a------
[b]untfs.dll[/b] (320000 bytes, created: 02/18/2007 11:05 AM) --a------
[b]upnp.dll[/b] (136704 bytes, created: 02/18/2007 11:05 AM) --a------
[b]upnpcont.exe[/b] (17408 bytes, created: 03/25/2005 07:00 AM) --a------
[b]upnphost.dll[/b] (189952 bytes, created: 02/08/2007 08:51 AM) --a------
[b]upnpui.dll[/b] (243200 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ups.exe[/b] (16896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ureg.dll[/b] (18944 bytes, created: 03/25/2005 07:00 AM) --a------
[b]url.dll[/b] (105984 bytes, created: 06/27/2008 03:13 PM) --a------
[b]urlmon.dll[/b] (1159680 bytes, created: 06/27/2008 03:13 PM) --a------
[b]usbmon.dll[/b] (17408 bytes, created: 02/18/2007 11:05 AM) --a------
[b]user.exe[/b] (4096 bytes, created: 03/25/2005 07:00 AM) --a------
[b]user32.dll[/b] (602624 bytes, created: 03/02/2007 01:54 AM) --a------
[b]userenv.dll[/b] (780800 bytes, created: 02/18/2007 11:05 AM) --a------
[b]userinit.exe[/b] (26112 bytes, created: 02/18/2007 11:05 AM) --a------
[b]usp10.dll[/b] (379904 bytes, created: 02/18/2007 11:05 AM) --a------
[b]usrcntra.dll[/b] (61500 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrcoina.dll[/b] (69699 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrdpa.dll[/b] (77890 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrdtea.dll[/b] (323641 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrfaxa.dll[/b] (86073 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrlbva.dll[/b] (53305 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrmlnka.exe[/b] (77891 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrprbda.exe[/b] (61508 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrrtosa.dll[/b] (77883 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrsdpia.dll[/b] (49211 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrshuta.exe[/b] (69700 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrsvpia.dll[/b] (41019 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrv42a.dll[/b] (102457 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrv80a.dll[/b] (49209 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrvoica.dll[/b] (45116 bytes, created: 03/25/2005 07:00 AM) --a------
[b]usrvpa.dll[/b] (49211 bytes, created: 03/25/2005 07:00 AM) --a------
[b]utildll.dll[/b] (29184 bytes, created: 02/18/2007 11:05 AM) --a------
[b]utilman.exe[/b] (49152 bytes, created: 02/18/2007 11:05 AM) --a------
[b]uwdf.exe[/b] (47104 bytes, created: 03/25/2005 07:00 AM) --a------
[b]uxtheme.dll[/b] (215040 bytes, created: 02/18/2007 11:05 AM) --a------
[b]VACFix.exe[/b] (86528 bytes, created: 05/29/2008 09:35 AM) --a------
[b]VB5DB.DLL[/b] (89360 bytes, created: 06/18/1998 12:00 AM) --a------
[b]VB6STKIT.DLL[/b] (101888 bytes, created: 07/15/2000 12:00 AM) --a------
[b]VBA6.DLL[/b] (1694992 bytes, created: 05/10/1999 12:00 AM) --a------
[b]VBAEN32.OLB[/b] (24848 bytes, created: 03/24/1998 12:44 PM) --a------
[b]VBAEND32.OLB[/b] (24848 bytes, created: 03/24/1998 12:44 PM) --a------
[b]vbajet32.dll[/b] (30749 bytes, created: 03/25/2005 07:00 AM) --a------
[b]VBAME.DLL[/b] (40960 bytes, created: 11/24/1999 05:40 PM) --a------
[b]vbisurf.ax[/b] (30720 bytes, created: 03/25/2005 07:00 AM) --a------
[b]vboxs.dll[/b] (364033 bytes, created: 04/24/2001 01:12 PM) --a------
[b]vbscript.dll[/b] (413696 bytes, created: 10/17/2006 01:00 PM) --a------
[b]VCCLSID.exe[/b] (289144 bytes, created: 09/06/2007 12:22 AM) --a------
[b]vdmdbg.dll[/b] (25600 bytes, created: 03/25/2005 07:00 AM) --a------
[b]vds_ps.dll[/b] (30720 bytes, created: 02/18/2007 11:12 AM) --a------
[b]VEN2232.OLB[/b] (37376 bytes, created: 12/03/1996 01:50 PM) --a------
[b]verclsid.exe[/b] (29184 bytes, created: 02/18/2007 11:05 AM) ---------
[b]verifier.dll[/b] (88576 bytes, created: 03/25/2005 07:00 AM) --a------
[b]verifier.exe[/b] (112640 bytes, created: 03/25/2005 07:00 AM) --a------
[b]version.dll[/b] (18432 bytes, created: 03/25/2005 07:00 AM) --a------
[b]vfpodbc.dll[/b] (20535 bytes, created: 03/25/2005 07:00 AM) --a------
[b]VSFLEX3.OCX[/b] (225280 bytes, created: 01/05/1999 04:30 PM) --a------
[b]vss_ps.dll[/b] (19456 bytes, created: 02/18/2007 11:05 AM) --a------
[b]vssapi.dll[/b] (561664 bytes, created: 02/18/2007 11:05 AM) --a------
[b]vwipxspx.dll[/b] (19968 bytes, created: 03/25/2005 07:00 AM) --a------
[b]vwipxspx.exe[/b] (1129 bytes, created: 03/25/2005 07:00 AM) --a------
[b]w03a2409.dll[/b] (453632 bytes, created: 03/21/2007 08:18 AM) ---------
[b]w32time.dll[/b] (227328 bytes, created: 02/18/2007 11:05 AM) --a------
[b]w32tm.exe[/b] (55296 bytes, created: 03/25/2005 07:00 AM) --a------
[b]w32topl.dll[/b] (27648 bytes, created: 03/25/2005 07:00 AM) --a------
[b]w3ssl.dll[/b] (15360 bytes, created: 03/25/2005 07:00 AM) --a------
[b]waitfor.exe[/b] (38400 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wavemsp.dll[/b] (218624 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wbdbase.deu[/b] (1309184 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wbdbase.enu[/b] (957440 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wbdbase.esn[/b] (750080 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wbdbase.fra[/b] (786944 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wbdbase.ita[/b] (867840 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wbdbase.nld[/b] (1095680 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wbdbase.sve[/b] (937984 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wdfapi.dll[/b] (16384 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wdfmgr.exe[/b] (39424 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wdigest.dll[/b] (76288 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wdmaud.drv[/b] (23552 bytes, created: 03/25/2005 07:00 AM) --a------
[b]webcheck.dll[/b] (233472 bytes, created: 06/27/2008 03:13 PM) --a------
[b]webclnt.dll[/b] (74240 bytes, created: 02/18/2007 11:05 AM) --a------
[b]webhits.dll[/b] (41984 bytes, created: 03/25/2005 07:00 AM) --a------
[b]webvw.dll[/b] (141824 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wextract.exe[/b] (62464 bytes, created: 03/25/2005 07:00 AM) --a------
[b]where.exe[/b] (38400 bytes, created: 03/25/2005 07:00 AM) --a------
[b]whoami.exe[/b] (48640 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wiadefui.dll[/b] (463872 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiadss.dll[/b] (124416 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiarpc.dll[/b] (33280 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiascr.dll[/b] (74240 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wiaservc.dll[/b] (348160 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiasf.ax[/b] (44544 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiashext.dll[/b] (557568 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiavideo.dll[/b] (116224 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wiavusd.dll[/b] (153600 bytes, created: 02/18/2007 11:05 AM) --a------
[b]wifeman.dll[/b] (9216 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winbrand.dll[/b] (551936 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winchat.exe[/b] (36864 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winfax.dll[/b] (16896 bytes, created: 03/25/2005 07:00 AM) --a------
[b]WinFXDocObj.exe[/b] (206336 bytes, created: 10/17/2006 01:05 PM) ---------
[b]winhlp32.exe[/b] (8704 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wininet.dll[/b] (826368 bytes, created: 06/27/2008 03:13 PM) --a------
[b]winipsec.dll[/b] (36864 bytes, created: 02/18/2007 11:05 AM) --a------
[b]winmine.exe[/b] (120320 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winmm.dll[/b] (174080 bytes, created: 02/18/2007 11:05 AM) --a------
[b]winmsd.exe[/b] (12800 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winnls.dll[/b] (5120 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winrnr.dll[/b] (17408 bytes, created: 02/18/2007 11:05 AM) --a------
[b]winscard.dll[/b] (99328 bytes, created: 02/18/2007 11:06 AM) --a------
[b]winshfhc.dll[/b] (4096 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winsock.dll[/b] (2864 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winspool.drv[/b] (150528 bytes, created: 02/18/2007 11:06 AM) --a------
[b]winspool.exe[/b] (2112 bytes, created: 03/25/2005 07:00 AM) --a------
[b]winsta.dll[/b] (56320 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wintrust.dll[/b] (165888 bytes, created: 02/18/2007 11:06 AM) --a------
[b]winver.exe[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wlanmon.dll[/b] (344576 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wldap32.dll[/b] (179712 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wlsnp.dll[/b] (232448 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wlstore.dll[/b] (29184 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmadmod.dll[/b] (359936 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmadmoe.dll[/b] (716288 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmasf.dll[/b] (228864 bytes, created: 10/24/2007 06:17 AM) --a------
[b]wmdmlog.dll[/b] (29184 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmdmps.dll[/b] (37376 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmdrmdev.dll[/b] (331776 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmdrmnet.dll[/b] (282624 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmerrenu.dll[/b] (51200 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmerror.dll[/b] (189952 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmi.dll[/b] (6656 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmidx.dll[/b] (150016 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmiprop.dll[/b] (20992 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmiscmgr.dll[/b] (60928 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmnetmgr.dll[/b] (990208 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmp.dll[/b] (6049792 bytes, created: 06/25/2007 03:35 AM) --a------
[b]wmp.ocx[/b] (20480 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmpasf.dll[/b] (122880 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmpcd.dll[/b] (20480 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmpcore.dll[/b] (20480 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmpdxm.dll[/b] (278528 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmpencen.dll[/b] (1592320 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmploc.dll[/b] (3371008 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmpshell.dll[/b] (106496 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmpsrcwp.dll[/b] (175104 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmpui.dll[/b] (20480 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmsdmod.dll[/b] (771584 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmsdmoe2.dll[/b] (1120256 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmspdmod.dll[/b] (407040 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmspdmoe.dll[/b] (940544 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmstream.dll[/b] (303616 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmv8ds32.ax[/b] (278559 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wmvadvd.dll[/b] (1215488 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmvadve.dll[/b] (1512448 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmvcore.dll[/b] (2330624 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmvdmod.dll[/b] (826368 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmvdmoe2.dll[/b] (1003520 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wmvds32.ax[/b] (258048 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wow32.dll[/b] (5120 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wowexec.exe[/b] (10560 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wowfax.dll[/b] (5120 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wowfaxui.dll[/b] (15360 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wowreg32.exe[/b] (10752 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wpd_ci.dll[/b] (38912 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wpdsp.dll[/b] (327168 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wpnpinst.exe[/b] (31232 bytes, created: 03/25/2005 07:00 AM) --a------
[b]write.exe[/b] (5632 bytes, created: 03/25/2005 07:00 AM) --a------
[b]ws03res.dll[/b] (812544 bytes, created: 02/18/2007 11:06 AM) --a------
[b]ws2_32.dll[/b] (83456 bytes, created: 02/18/2007 11:06 AM) --a------
[b]WS2Fix.exe[/b] (25600 bytes, created: 10/04/2007 12:36 AM) --a------
[b]ws2help.dll[/b] (19968 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wscript.exe[/b] (114688 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wsecedit.dll[/b] (639488 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wshatm.dll[/b] (9728 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wshbth.dll[/b] (111616 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wshcon.dll[/b] (28672 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wshext.dll[/b] (65536 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wship6.dll[/b] (14848 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wshirda.dll[/b] (8704 bytes, created: 03/24/2005 02:58 PM) --a------
[b]wshisn.dll[/b] (12800 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wshnetbs.dll[/b] (8192 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wshom.ocx[/b] (98304 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wshqos.dll[/b] (24576 bytes, created: 03/25/2005 07:00 AM) --a------
[b]WshRm.dll[/b] (11264 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wshtcpip.dll[/b] (18944 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wsnmp32.dll[/b] (44032 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wsock32.dll[/b] (22528 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wstdecod.dll[/b] (50688 bytes, created: 03/25/2005 07:00 AM) --a------
[b]wtsapi32.dll[/b] (19456 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wuapi.dll[/b] (549720 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wuapi.dll.mui[/b] (25944 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wuaucpl.cpl[/b] (216408 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wuaucpl.cpl.manifest[/b] (749 bytes, created: 05/09/2006 04:09 AM) -rah-----
[b]wuaucpl.cpl.mui[/b] (25944 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wuaueng.dll[/b] (1712984 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wuaueng.dll.mui[/b] (20312 bytes, created: 07/30/2007 07:18 PM) --a------
[b]wups.dll[/b] (33624 bytes, created: 07/30/2007 07:18 PM) --a------
[b]wups2.dll[/b] (43352 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wuweb.dll[/b] (203096 bytes, created: 07/30/2007 07:19 PM) --a------
[b]wzcdlg.dll[/b] (392704 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wzcsapi.dll[/b] (43008 bytes, created: 02/18/2007 11:06 AM) --a------
[b]wzcsvc.dll[/b] (489472 bytes, created: 02/18/2007 11:06 AM) --a------
[b]xactsrv.dll[/b] (92160 bytes, created: 02/18/2007 11:06 AM) --a------
[b]xcopy.exe[/b] (30720 bytes, created: 03/25/2005 07:00 AM) --a------
[b]xenroll.dll[/b] (174200 bytes, created: 03/25/2005 07:00 AM) --a------
[b]xml_datagrove.dll[/b] (28672 bytes, created: 07/20/2001 02:23 PM) --a------
[b]xmllite.dll[/b] (121856 bytes, created: 02/18/2007 11:06 AM) --a------
[b]xmlparse.dll[/b] (36864 bytes, created: 06/14/2000 04:22 PM) --a------
[b]xmlprov.dll[/b] (131584 bytes, created: 02/18/2007 11:06 AM) --a------
[b]xmlprovi.dll[/b] (51712 bytes, created: 03/25/2005 07:00 AM) --a------
[b]xmltok.dll[/b] (69632 bytes, created: 06/14/2000 04:22 PM) --a------
[b]xolehlp.dll[/b] (10752 bytes, created: 02/18/2007 11:06 AM) --a------
[b]xpob2res.dll[/b] (438784 bytes, created: 02/18/2007 11:06 AM) --a------
[b]xpsp2res.dll[/b] (2897920 bytes, created: 02/18/2007 11:06 AM) --a------
[b]YCRWin32.dll[/b] (65536 bytes, created: 10/11/2001 12:26 PM) --a------
[b]zipfldr.dll[/b] (341504 bytes, created: 02/18/2007 11:06 AM) --a------

==============================

[b]=EOF=[/b]

[kmenchaca78]

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 11:35:35 PM, on 8/25/2008
Platform: Windows 2003 SP2 (WinNT 5.02.3790)
MSIE: Internet Explorer v7.00 (7.00.6000.16705)
Boot mode: Normal

Running processes:
C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7Debug\mdm.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\data\database\bin\mysqld-nt.exe
C:\Program Files (x86)\NVIDIA Corporation\NvMixer\NVMixerTray.exe
C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe
C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe
C:\PROGRA~2\PRMT6\PRMTED\prmedsvr.exe
C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe
C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe
C:\Program Files (x86)\SanDisk\SanDisk TransferMate\SD Monitor.exe
C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\PROGRA~1\AVG\AVG8\avgtray.exe
C:\Program Files (x86)\iPod\bin\iPodService.exe
C:\Program Files\Logitech\SetPoint\x86\SetPoint32.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://us.rd.yahoo.c...//www.yahoo.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://us.rd.yahoo.c...rch/search.html
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll
O3 - Toolbar: Translator - {FF284F5C-7CF9-4682-8701-D467C1DBB99F} - C:\Program Files (x86)\PRMT6\PRMTIE\prmtie.dll
O4 - HKLM\..\Run: [Adobe Version Cue CS2] "C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\ControlPanel\VersionCueCS2Tray.exe"
O4 - HKLM\..\Run: [Acrobat Assistant 7.0] "C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Distillr\Acrotray.exe"
O4 - HKLM\..\Run: [Adobe Photo Downloader] "C:\Program Files (x86)\Adobe\Photoshop Album Starter Edition\3.0\Apps\apdproxy.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre1.6.0_03\bin\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files (x86)\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [Antivirus] "C:\Program Files (x86)\VAV\vav.exe"
O4 - HKLM\..\Run: [AVG8_TRAY] C:\PROGRA~1\AVG\AVG8\avgtray.exe
O4 - HKCU\..\Run: [EDLauncher] C:\Program Files (x86)\PRMT6\PRMTED\EDLauncher.exe
O4 - HKUS\S-1-5-19\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\RunOnce: [tscuninstall] %systemroot%\system32\tscupgrd.exe (User 'Default user')
O4 - Global Startup: Adobe Acrobat Speed Launcher.lnk = ?
O4 - Global Startup: Adobe Gamma.lnk = C:\Program Files (x86)\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Logitech SetPoint.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files (x86)\Microsoft Office\Office10\OSA.EXE
O4 - Global Startup: Monitor.lnk = C:\Program Files (x86)\SanDisk\SanDisk TransferMate\SD Monitor.exe
O4 - Global Startup: QuickBooks Update Agent.lnk = C:\Program Files (x86)\Common Files\Intuit\QuickBooks\QBUpdate\qbupdate.exe
O8 - Extra context menu item: Convert link target to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert link target to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert selected links to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
O8 - Extra context menu item: Convert selected links to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
O8 - Extra context menu item: Convert selection to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert selection to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIECapture.html
O8 - Extra context menu item: Convert to existing PDF - res://C:\Program Files (x86)\Adobe\Adobe Acrobat 7.0\Acrobat\AcroIEFavClient.dll/AcroIEAppend.html
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office10\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files (x86)\Java\jre1.6.0_03\bin\ssv.dll
O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files (x86)\PRMT6\PRMTIE\prmtie5.htm
O9 - Extra 'Tools' menuitem: Translate - {7A2EFD41-E6B3-11D2-89E3-00E0292EE574} - C:\Program Files (x86)\PRMT6\PRMTIE\prmtie5.htm
O9 - Extra button: (no name) - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files (x86)\PRMT6\PRMTIE\options.htm
O9 - Extra 'Tools' menuitem: Customize translation options - {7A2EFD41-E6B3-11D2-89E3-00E0292EE575} - C:\Program Files (x86)\PRMT6\PRMTIE\options.htm
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {00B71CFB-6864-4346-A978-C0A14556272C} (Checkers Class) - http://messenger.zon...kr.cab31267.cab
O16 - DPF: {1DB93715-3B60-43EE-93E6-279BB3E1DF76} (OCXDownloadChecker Control) - http://70.248.161.15...hecker_6110.cab
O16 - DPF: {20A60F0D-9AFA-4515-A0FD-83BD84642501} (Checkers Class) - http://messenger.zon...kr.cab56986.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.micros...b?1147322599394
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.mi...b?1219104357187
O16 - DPF: {77E32299-629F-43C6-AB77-6A1E6D7663F6} (Groove Control) - http://atv.disney.go...y/OTOYAX29b.cab
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zon...nt.cab31267.cab
O16 - DPF: {C3F79A2B-B9B4-4A66-B012-3EE46475B072} (MessengerStatsClient Class) - http://messenger.zon...nt.cab56907.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.m...ash/swflash.cab
O16 - DPF: {DBAFE6AD-DC14-45DF-A3F7-F8832289A1CD} (DownloadFile Control) - http://70.248.161.15...adFile_7000.cab
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll
O20 - Winlogon Notify: fccdeeEt - fccdeeEt.dll (file missing)
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files (x86)\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Adobe Version Cue CS2 - Adobe Systems Incorporated - C:\Program Files (x86)\Adobe\Adobe Version Cue CS2\bin\VersionCueCS2.exe
O23 - Service: AVG Free8 WatchDog (avg8wd) - AVG Technologies CZ, s.r.o. - C:\PROGRA~1\AVG\AVG8\avgwdsvc.exe
O23 - Service: Logical Disk Manager Administrative Service (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe (file missing)
O23 - Service: Event Log (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe (file missing)
O23 - Service: ForceWare Intelligent Application Manager (IAM) - Unknown owner - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
O23 - Service: Forceware Web Interface (ForcewareWebInterface) - Apache Software Foundation - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe
O23 - Service: HTTP SSL (HTTPFilter) - Unknown owner - C:\WINDOWS\System32\lsass.exe (file missing)
O23 - Service: IMAPI CD-Burning COM Service (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe (file missing)
O23 - Service: iPod Service - Apple Inc. - C:\Program Files (x86)\iPod\bin\iPodService.exe
O23 - Service: Distributed Transaction Coordinator (MSDTC) - Unknown owner - C:\WINDOWS\system32\msdtc.exe (file missing)
O23 - Service: Net Logon (Netlogon) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: ForceWare user log service (nSvcLog) - NVIDIA - C:\Program Files (x86)\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe
O23 - Service: NT LM Security Support Provider (NtLmSsp) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe (file missing)
O23 - Service: IPSEC Services (PolicyAgent) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Protected Storage (ProtectedStorage) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Remote Desktop Help Session Manager (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe (file missing)
O23 - Service: Security Accounts Manager (SamSs) - Unknown owner - C:\WINDOWS\system32\lsass.exe (file missing)
O23 - Service: Virtual Disk Service (vds) - Unknown owner - C:\WINDOWS\System32\vds.exe (file missing)
O23 - Service: Viewpoint Manager Service - Viewpoint Corporation - C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe
O23 - Service: Volume Shadow Copy (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe (file missing)
O23 - Service: WMI Performance Adapter (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe (file missing)

--
End of file - 11840 bytes

[fenzodahl512]

Please re-open HijackThis and click on Do a system scan only. Check the boxes next to all the entries listed below.

O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - (no file)
O4 - HKLM\..\Run: [Antivirus] "C:\Program Files (x86)\VAV\vav.exe"
O20 - Winlogon Notify: fccdeeEt - fccdeeEt.dll (file missing)

Now close all windows other than HijackThis, then click Fix checked. Close HijackThis.



NEXT


Lets run F-Secure online scan for Viruses, Spyware and RootKits:

• Scroll to the bottom of the page and click the Start scanning button. A window will pop up.
• Allow the Active X control to be installed on your computer, then click the Accept button
• Click Full System Scan and allow the components to download and the scan to complete.
• If malware is found, check Submit samples to F-Secure then select Automatic cleaning
• When cleaning has finitished, click Show report (this will open an Internet Explorer window containing the report)
• Highlight and Copy (CTRL + C) the complete report, and Paste (CTRL + V) in a new reply to this post

If Automatic cleaning with Submit samples hangs, click Cancel, then New Scan

• When the cleaning option is presented, Uncheck Submit samples to F-Secure
• Click Automatic cleaning
• When cleaning has finitished, click Show report (this will open an Internet Explorer window containing the report)
• Highlight and Copy (CTRL + C) the complete report, and Paste (CTRL + V) in a new reply to this post

Notes:

• This scan will only work with Internet Explorer
• You must have administrator rights to run this scan
• This scan can take several hours, so please be patient

Please post these logs in your next reply..

1. F-Secure Online Scanner report
2. A fresh HijackThis log (after F-Secure step)
3. Tell me about your computer behaviour..



Regards
fenzodahl512

[fenzodahl512]

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.