Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Need help removing FBI Ransomware virus [Solved]

Started by Stargeneral , Jun 18 2014 08:39 AM

  • This topic is locked This topic is locked

#1
Stargeneral
Posted 18 June 2014 - 08:39 AM

Stargeneral

    Member

  • Member
  • PipPip
  • 41 posts

My computer has comedown with the dreaded FBI ransomware virus. I have been trying for 2 weeks to get rid of it but I keep running into the problem of not being able to open the internet with the programs running. I have 2.5ghz Celeron processor, running windows xp home, and 1gig ram. I run AVG antivirus udated.

I have tried AVG rescue cd and HitmanPro with kickstart to no avail. HitmanPro would not even run because of no internet connection (I am on dial-up internet). I would greatly appreciate any help you could provide.

 

Thanks in advance for your time and help.


Edited by Stargeneral, 18 June 2014 - 08:44 AM.

  • 0

Advertisements

#2
Biscuithd
Posted 18 June 2014 - 08:42 AM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

welcome.gif.pagespeed.ce.jM2aDq5TfO.gif. My name is Biscuithd and I will be assisting you with your Computer issues.

I know how upsetting it can be when one's computer is experiencing problems. I will try to help get things squared away. For a start please make sure that you...

  • Carefully read every post completely before doing anything.
  • If you're not sure, or if something unexpected happens, do NOT continue! Stop and ask!
  • Do not run any other scans or other software on your computer unless asked as it may make this repair more difficult.

Are you able to boot to Safe Mode with Networking?


  • 0

#3
Biscuithd
Posted 18 June 2014 - 10:50 AM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Note that I asked about Safe Mode in Post #2, but I'm going to try and save you a bit of time by posting this information too. If you have or can located a second machine to make a bootable USB drive, then do the following.

 

Scan with Farbar Recovery Scan Tool:

Please download and save Farbar Recovery Scan Tool 64-Bit to a Flash/USB drive.

Note: If the above version of the Farbar Recovery Scan Tool tuns out not to be compatible, merely delete that version and download use this one instead: Farbar Recovery Scan Tool 32-Bit

Then insert the Flash/USB drive into your machine....

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:

  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Use the arrow keys to select the Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account an click Next.

On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst64.exe and press Enter

Note: Replace letter e with the drive letter of your flash drive.

  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste the contents of the aforementioned notepad file in your next reply.

 


  • 0

#4
Stargeneral
Posted 18 June 2014 - 01:03 PM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

I cannot get into any of the three safe modes and the choice Repair Your Computer does not appear as a choice in the advanced options screen. When I try to go into any of the safe modes it starts then comes up with a blue screen and I have to restart the computer. I am working off 2 harddrives in one computer just a matter of which drive i boot to.


  • 0

#5
Biscuithd
Posted 18 June 2014 - 01:13 PM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Since your issue is quite significant, I need to make sure we are each understanding the other. So, let's go through your response.

 

I cannot get into any of the three safe modes and the choice Repair Your Computer does not appear as a choice in the advanced options screen. When I try to go into any of the safe modes it starts then comes up with a blue screen and I have to restart the computer. I am working off 2 harddrives in one computer just a matter of which drive i boot to.

 

So, regardless of which of the 2 hard drives you choose to boot from, you are unable to acheive Safe Mode, correct?

 

Assuming this is correct, have you attempted to create the bootable USB drive as indicated in Step #3?


  • 0

#6
Stargeneral
Posted 18 June 2014 - 01:20 PM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

I can get into safe mode on the unaffected slave drive, which is the one I am using right now, but this one is not affected by the malware. The primary drive is affected and no I can't get into any of the safe modes on that one. I downloaded the program and put in on a usb drive but I did not get the choice of Repair Your Computer on the advanced menu, got about 12 choices not the repair one, on either one of the drives.


Edited by Stargeneral, 18 June 2014 - 01:36 PM.

  • 0

#7
Biscuithd
Posted 18 June 2014 - 01:47 PM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Please don't edit posts as I have no idea what changes you've made. Just add a post and I'll get notified by the G2G system and I'll read it. If you edit it, I don't get notified and rarely see the change.

 

Ok, let's think through this. SInce you can boot to the Slave Drive, can you also "see" the Primary Drive when booted from the Slave Drive? In which case, can you place a copy of FRST on the Prim Drive and perform the scan?


  • 0

#8
Stargeneral
Posted 18 June 2014 - 02:33 PM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

Here is the scan result. There is also an addition file. Do you need that file also?

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-06-2014
Ran by Administrator (administrator) on NANCY-49CB449D3 on 18-06-2014 15:11:42
Running from E:\frst
Platform: Microsoft Windows XP Professional Service Pack 2 (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Processes (Whitelisted) =================

(AVG Technologies CZ, s.r.o.) C:\PROGRA~1\AVG\AVG2014\avgrsx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgcsrvx.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgidsagent.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgwdsvc.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgnsx.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgemcx.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(AVG Technologies CZ, s.r.o.) C:\Program Files\AVG\AVG2014\avgui.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(Analog Devices, Inc.) C:\Program Files\Analog Devices\Core\smax4pnp.exe
() C:\Program Files\Unlocker\UnlockerAssistant.exe
(NetZero, Inc.) C:\Program Files\NetZero\exec.exe
(FreeDownloadManager.ORG) C:\Program Files\Free Download Manager\fdm.exe
(Webshots.com) C:\Program Files\Webshots\webshots.scr
(NetZero, Inc.) C:\Program Files\NetZero\exec.exe
(NetZero, Inc.) C:\Program Files\NetZero\qsacc\X1Exec.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe
(Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [Adobe Reader Speed Launcher] => C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] => C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1404928 2004-10-14] (Analog Devices, Inc.)
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
HKU\S-1-5-21-1060284298-1708537768-682003330-500\...\Run: [NetZero_uoltray] => C:\Program Files\NetZero\exec.exe [1797632 2012-04-26] (NetZero, Inc.)
HKU\S-1-5-21-1060284298-1708537768-682003330-500\...\Run: [Free Download Manager] => C:\Program Files\Free Download Manager\fdm.exe [6983168 2014-05-09] (FreeDownloadManager.ORG)
Startup: C:\Documents and Settings\Administrator\Start Menu\Programs\Startup\Webshots.lnk
ShortcutTarget: Webshots.lnk -> C:\Program Files\Webshots\Launcher.exe ()
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://mysearch.avg.com?cid={287568F1-DA7C-4395-BF67-9BE2FB74C237}&mid=a2d84f34231547d296e86ff2a31eedd5-8908296b01f6d2acd9b8fa8986e94445c352f6be&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-05 23:02:41&v=18.1.0.443&pid=safeguard&sg=&sap=hp
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://my.netzero.ne...ch?r=minisearch
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://my.netzero.ne...ch?r=minisearch
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
URLSearchHook: HKCU - URLSearchHook Class - {37D2CDBF-2AF4-44AA-8113-BD0D2DA3C2B8} - C:\Program Files\NetZero\SearchEnh1.dll (NetZero, Inc.)
SearchScopes: HKCU - DefaultScope {88BA080D-DF1A-45D2-8CE2-8461E30FBFFE} URL = http://search.netzer...y={searchTerms}
SearchScopes: HKCU - {88BA080D-DF1A-45D2-8CE2-8461E30FBFFE} URL = http://search.netzer...y={searchTerms}
SearchScopes: HKCU - {95B7759C-8C7F-4BF1-B163-73684A933233} URL = http://mysearch.avg.com/search?cid={287568F1-DA7C-4395-BF67-9BE2FB74C237}&mid=a2d84f34231547d296e86ff2a31eedd5-8908296b01f6d2acd9b8fa8986e94445c352f6be&lang=en&ds=AVG&coid=avgtbavg&cmpid=&pr=fr&d=2014-06-05 23:02:41&v=18.1.0.443&pid=safeguard&sg=&sap=dsp&q={searchTerms}
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: No Name - {95B7759C-8C7F-4BF1-B163-73684A933233} -  No File
BHO: Free Download Manager - {CC59E0F9-7E43-44FA-9FAA-8377850BF205} - C:\Program Files\Free Download Manager\iefdm2.dll (FreeDownloadManager.ORG)
BHO: NetZero Toolbar Helper - {FE3098B0-04A3-41fd-8CA9-BEA39CB14C87} - C:\Program Files\NetZero\ucreg.dll (NetZero, Inc.)
Toolbar: HKLM - ZeroBar - {F0F8ECBE-D460-4B34-B007-56A92E8F84A7} - C:\Program Files\NetZero\Toolbar.dll (NetZero, Inc.)
Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU - ZeroBar - {F0F8ECBE-D460-4B34-B007-56A92E8F84A7} - C:\Program Files\NetZero\Toolbar.dll (NetZero, Inc.)
Toolbar: HKCU - No Name - {E7DF6BFF-55A5-4EB7-A673-4ED3E9456D39} -  No File
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab
Tcpip\..\Interfaces\{5EB32447-0211-418B-A7A9-6BC62889F2CB}: [NameServer]64.136.52.73 64.136.44.73

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\iy48891x.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_125.dll ()
FF Plugin: Adobe Reader - C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Extension: Free Download Manager plugin - C:\Program Files\Free Download Manager\Firefox\Extension [2014-06-06]

========================== Services (Whitelisted) =================

R2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
R2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)

==================== Drivers (Whitelisted) ====================

R1 Avgdiskx; C:\WINDOWS\System32\DRIVERS\avgdiskx.sys [122136 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSDriver; C:\WINDOWS\System32\DRIVERS\avgidsdriverx.sys [198936 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 AVGIDSHX; C:\WINDOWS\System32\DRIVERS\avgidshx.sys [149784 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 AVGIDSShim; C:\WINDOWS\System32\DRIVERS\avgidsshimx.sys [21272 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgldx86; C:\WINDOWS\System32\DRIVERS\avgldx86.sys [192280 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avglogx; C:\WINDOWS\System32\DRIVERS\avglogx.sys [237848 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgmfx86; C:\WINDOWS\System32\DRIVERS\avgmfx86.sys [107288 2014-05-13] (AVG Technologies CZ, s.r.o.)
R0 Avgrkx86; C:\WINDOWS\System32\DRIVERS\avgrkx86.sys [27416 2014-05-13] (AVG Technologies CZ, s.r.o.)
R1 Avgtdix; C:\WINDOWS\System32\DRIVERS\avgtdix.sys [210200 2014-05-13] (AVG Technologies CZ, s.r.o.)
S0 cercsr6; C:\WINDOWS\system32\Drivers\cercsr6.sys [39904 2005-03-21] (Adaptec, Inc.) [File not signed]
R3 IntelC51; C:\WINDOWS\System32\DRIVERS\IntelC51.sys [1233525 2004-03-06] (Intel Corporation)
R3 IntelC52; C:\WINDOWS\System32\DRIVERS\IntelC52.sys [647929 2004-03-06] (Intel Corporation)
R3 IntelC53; C:\WINDOWS\System32\DRIVERS\IntelC53.sys [61157 2004-06-16] (Intel Corporation)
R3 mohfilt; C:\WINDOWS\System32\DRIVERS\mohfilt.sys [37048 2004-03-06] (Intel Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [27440 2004-08-04] ()
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
U1 WS2IFSL;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-18 15:11 - 2014-06-18 15:11 - 00000000 ____D () C:\FRST
2014-06-18 08:31 - 2014-06-18 08:31 - 00090112 _____ () C:\WINDOWS\Minidump\Mini061814-01.dmp
2014-06-16 13:05 - 2014-06-16 13:05 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Help
2014-06-16 13:05 - 2014-06-16 13:05 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Help
2014-06-16 02:48 - 2014-06-16 02:48 - 00090112 _____ () C:\WINDOWS\Minidump\Mini061614-01.dmp
2014-06-16 01:16 - 2014-06-17 19:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-06-16 00:46 - 2014-06-16 00:46 - 00000000 ____D () C:\hold
2014-06-15 16:37 - 2014-06-15 16:37 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\WinRAR
2014-06-15 07:45 - 2014-06-15 07:44 - 00000748 _____ () C:\Documents and Settings\Administrator\Desktop\Microsoft Word.lnk
2014-06-15 07:36 - 2014-06-15 07:44 - 00000748 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Word.lnk
2014-06-15 07:36 - 2014-06-15 07:36 - 00035262 _____ () C:\WINDOWS\Administrator.acl
2014-06-15 07:35 - 2014-06-15 07:43 - 00069632 _____ () C:\WINDOWS\system32\system.mdw
2014-06-15 07:35 - 2014-06-15 07:43 - 00000837 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Access.lnk
2014-06-15 07:35 - 2014-06-15 07:43 - 00000736 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Excel.lnk
2014-06-15 07:35 - 2014-06-15 07:43 - 00000611 _____ () C:\WINDOWS\ODBC.INI
2014-06-15 07:35 - 2014-06-15 07:35 - 00069632 _____ () C:\WINDOWS\system32\SYSTEM1X.MDW
2014-06-15 07:35 - 2014-06-15 07:35 - 00000022 _____ () C:\WINDOWS\exchng.ini
2014-06-15 07:34 - 2014-06-15 07:34 - 00000000 ____D () C:\WINDOWS\forms
2014-06-15 07:34 - 2014-06-15 07:34 - 00000000 ____D () C:\Program Files\Windows Messaging
2014-06-15 07:32 - 2014-06-15 07:42 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-15 07:21 - 2014-06-15 07:21 - 00000000 __RHD () C:\MSOCache
2014-06-15 01:51 - 2014-06-15 01:53 - 00000000 ____D () C:\Program Files\Unlocker
2014-06-15 01:51 - 2014-06-15 01:51 - 00000000 ____D () C:\Documents and Settings\Administrator\Start Menu\Programs\Unlocker
2014-06-13 14:59 - 2014-06-18 08:23 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Audacity
2014-06-13 14:25 - 2014-06-13 14:59 - 00000000 ____D () C:\Program Files\Audacity
2014-06-13 14:25 - 2014-06-13 14:25 - 00000688 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Audacity.lnk
2014-06-13 14:25 - 2014-06-13 14:25 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\Audacity.lnk
2014-06-13 02:13 - 2014-06-13 02:13 - 00000000 ____D () C:\Program Files\Lame For Audacity
2014-06-13 02:12 - 2014-06-13 02:12 - 00000000 ____D () C:\Program Files\Ffmpeg For Audacity
2014-06-09 23:52 - 2014-06-17 12:34 - 00000000 ____D () C:\Documents and Settings\Administrator\My Documents\Webshots Data
2014-06-09 23:52 - 2014-06-09 23:52 - 00000636 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Webshots Desktop.lnk
2014-06-09 23:52 - 2014-06-09 23:52 - 00000630 _____ () C:\Documents and Settings\Administrator\Desktop\Webshots Desktop.lnk
2014-06-09 23:52 - 2014-06-09 23:52 - 00000000 ____D () C:\Program Files\Webshots
2014-06-09 23:52 - 2014-06-09 23:52 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Webshots
2014-06-09 23:52 - 2006-01-25 16:12 - 00036864 _____ () C:\WINDOWS\system32\WSVersionATX.ocx
2014-06-09 23:13 - 2014-06-09 23:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\agi
2014-06-09 17:53 - 2014-06-09 17:58 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla
2014-06-09 17:53 - 2014-06-09 17:53 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-09 17:53 - 2014-06-09 17:53 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2014-06-09 17:53 - 2014-06-09 17:53 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-09 17:53 - 2014-06-09 17:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Mozilla
2014-06-09 17:53 - 2014-06-09 17:53 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
2014-06-09 17:52 - 2014-06-18 14:32 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-09 15:56 - 2014-06-13 22:48 - 00027648 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-09 13:24 - 2014-06-09 13:25 - 00000000 ____D () C:\WINDOWS\pss
2014-06-08 21:28 - 2014-06-18 14:39 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-08 21:28 - 2014-06-12 13:12 - 00699056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-06-08 21:28 - 2014-06-12 13:12 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-08 21:28 - 2014-06-08 21:28 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Macromedia
2014-06-08 09:30 - 2014-06-08 09:30 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\AVG2014
2014-06-08 09:26 - 2014-06-08 09:26 - 00000702 _____ () C:\Documents and Settings\All Users\Desktop\AVG 2014.lnk
2014-06-08 09:24 - 2014-06-12 19:57 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2014
2014-06-08 07:36 - 2014-06-08 07:36 - 00090112 _____ () C:\WINDOWS\Minidump\Mini060814-01.dmp
2014-06-08 02:02 - 2014-06-08 02:02 - 00000000 __SHD () C:\Documents and Settings\LocalService\IETldCache
2014-06-07 23:01 - 2014-06-07 23:01 - 00000000 __SHD () C:\Documents and Settings\Administrator\PrivacIE
2014-06-07 23:00 - 2014-06-07 23:00 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-06-07 22:50 - 2014-06-07 23:00 - 00007481 _____ () C:\WINDOWS\spupdsvc.log
2014-06-07 22:50 - 2014-06-07 22:59 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-06-07 22:48 - 2014-06-07 22:49 - 00026310 _____ () C:\WINDOWS\updspapi.log
2014-06-07 22:48 - 2009-01-07 18:21 - 00026144 _____ (Microsoft Corporation) C:\WINDOWS\system32\spupdsvc.exe
2014-06-07 22:48 - 2009-01-07 18:20 - 00016928 ____N (Microsoft Corporation) C:\WINDOWS\system32\spmsg.dll
2014-06-07 22:46 - 2014-06-07 22:51 - 00000000 __HDC () C:\WINDOWS\ie8
2014-06-07 22:45 - 2014-06-07 22:52 - 00060151 _____ () C:\WINDOWS\ie8.log
2014-06-07 22:40 - 2014-06-07 22:58 - 00030718 _____ () C:\WINDOWS\ie8_main.log
2014-06-07 21:51 - 2014-06-07 21:51 - 00090112 _____ () C:\WINDOWS\Minidump\Mini060714-02.dmp
2014-06-07 21:46 - 2014-06-18 08:31 - 00000000 ____D () C:\WINDOWS\Minidump
2014-06-07 21:46 - 2014-06-07 21:46 - 00090112 _____ () C:\WINDOWS\Minidump\Mini060714-01.dmp
2014-06-07 17:12 - 2004-08-03 23:07 - 00006400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\splitter.sys
2014-06-07 17:12 - 2004-08-03 23:07 - 00006400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\splitter.sys
2014-06-07 17:11 - 2014-06-07 17:11 - 00000000 ____D () C:\Program Files\Analog Devices
2014-06-07 17:11 - 2004-08-03 23:15 - 00145792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\portcls.sys
2014-06-07 17:11 - 2004-08-03 23:15 - 00145792 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\portcls.sys
2014-06-07 17:11 - 2004-08-03 23:15 - 00082944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wdmaud.sys
2014-06-07 17:11 - 2004-08-03 23:15 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wdmaud.sys
2014-06-07 17:11 - 2004-08-03 23:15 - 00060800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sysaudio.sys
2014-06-07 17:11 - 2004-08-03 23:15 - 00060800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sysaudio.sys
2014-06-07 17:11 - 2004-08-03 23:08 - 00060288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmk.sys
2014-06-07 17:11 - 2004-08-03 23:08 - 00060288 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmk.sys
2014-06-07 17:11 - 2004-08-03 23:07 - 00171776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kmixer.sys
2014-06-07 17:11 - 2004-08-03 23:07 - 00171776 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\kmixer.sys
2014-06-07 17:11 - 2004-08-03 23:07 - 00052864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dmusic.sys
2014-06-07 17:11 - 2004-08-03 23:07 - 00052864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\DMusic.sys
2014-06-07 17:11 - 2004-08-03 23:07 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\drmkaud.sys
2014-06-07 17:11 - 2004-08-03 23:07 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\drmkaud.sys
2014-06-07 17:11 - 2004-08-03 22:39 - 00142464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aec.sys
2014-06-07 17:11 - 2004-08-03 22:39 - 00142464 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\aec.sys
2014-06-07 17:11 - 2001-08-17 14:00 - 00054272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swmidi.sys
2014-06-07 17:11 - 2001-08-17 14:00 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\swmidi.sys
2014-06-07 11:52 - 2014-06-08 21:28 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Adobe
2014-06-07 11:49 - 2014-06-07 11:52 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
2014-06-07 11:48 - 2014-06-07 11:48 - 00001729 _____ () C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
2014-06-07 11:48 - 2014-06-07 11:48 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-06-07 11:48 - 2014-06-07 11:48 - 00000000 ____D () C:\Program Files\Adobe
2014-06-07 11:46 - 2014-06-07 11:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2014-06-07 02:58 - 2014-06-07 02:58 - 00000000 ___SD () C:\Documents and Settings\Administrator\UserData
2014-06-06 14:26 - 2014-06-06 14:26 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-06 14:26 - 2014-06-06 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
2014-06-06 14:26 - 2014-06-06 14:26 - 00000000 ____D () C:\Documents and Settings\Administrator\Start Menu\Programs\WinRAR
2014-06-06 14:16 - 2014-06-18 13:36 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Free Download Manager
2014-06-06 14:16 - 2014-06-11 19:40 - 00000000 ____D () C:\Program Files\Free Download Manager
2014-06-06 14:16 - 2014-06-11 19:38 - 00000742 _____ () C:\Documents and Settings\Administrator\Desktop\Free Download Manager.lnk
2014-06-06 14:16 - 2014-06-11 19:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Free Download Manager
2014-06-05 23:02 - 2014-06-08 09:29 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-06-05 23:02 - 2014-06-05 23:02 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\TuneUp Software
2014-06-05 23:01 - 2014-06-08 09:30 - 00000000 ____D () C:\Program Files\AVG SafeGuard toolbar
2014-06-05 23:01 - 2014-06-05 23:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG Secure Search
2014-06-05 22:39 - 2014-06-08 09:30 - 00000000 ___HD () C:\$AVG
2014-06-05 22:38 - 2014-06-08 09:39 - 00000000 ____D () C:\Program Files\AVG
2014-06-05 19:42 - 2014-06-18 13:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-06-05 19:42 - 2014-06-05 19:42 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\MFAData
2014-06-05 19:23 - 2014-06-06 14:10 - 00001670 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Quick Help.lnk
2014-06-05 19:23 - 2014-06-06 14:10 - 00001595 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\NetZero Internet.lnk
2014-06-05 19:23 - 2014-06-06 14:10 - 00001589 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Internet.lnk
2014-06-05 19:23 - 2014-06-06 14:10 - 00000000 ____D () C:\Program Files\NetZero
2014-06-05 19:23 - 2014-06-06 14:10 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\NetZero Internet
2014-06-05 19:23 - 2014-06-05 19:23 - 00000000 ____D () C:\Program Files\Connection Wizard
2014-06-05 19:22 - 2005-04-05 20:18 - 00135168 _____ (Intel Corporation) C:\WINDOWS\system32\igfxres.dll
2014-06-05 19:19 - 2004-08-04 00:56 - 00130048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksproxy.ax
2014-06-05 19:19 - 2004-08-04 00:56 - 00130048 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksproxy.ax
2014-06-05 19:19 - 2004-08-04 00:56 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksuser.dll
2014-06-05 19:19 - 2004-08-04 00:56 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\ksuser.dll
2014-06-05 19:19 - 2004-08-03 22:58 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mskssrv.sys
2014-06-05 19:19 - 2004-08-03 22:58 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSKSSRV.sys
2014-06-05 19:19 - 2004-08-03 22:58 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspclock.sys
2014-06-05 19:19 - 2004-08-03 22:58 - 00005376 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPCLOCK.sys
2014-06-05 19:19 - 2004-08-03 22:58 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspqm.sys
2014-06-05 19:19 - 2004-08-03 22:58 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MSPQM.sys
2014-06-05 19:19 - 2001-08-17 13:57 - 00016128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\modemcsa.sys
2014-06-05 19:19 - 2001-08-17 13:57 - 00016128 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\MODEMCSA.sys
2014-06-05 19:14 - 2014-06-15 19:18 - 00015920 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-06-05 19:12 - 2005-03-22 18:08 - 00260224 _____ (Analog Devices, Inc.) C:\WINDOWS\system32\Drivers\smwdm.sys
2014-06-05 19:12 - 2004-10-05 22:10 - 00023040 _____ (Windows ® 2000 DDK provider) C:\WINDOWS\system32\PostProc.dll
2014-06-05 19:12 - 2004-09-23 13:55 - 00311296 _____ (Analog Devices Incorporated) C:\WINDOWS\system32\Edcrypt.dll
2014-06-05 19:12 - 2004-09-17 15:02 - 00732928 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\Drivers\senfilt.sys
2014-06-05 19:12 - 2001-09-19 18:47 - 00765952 _____ (Sensaura Ltd) C:\WINDOWS\system\crlds3d.dll
2014-06-05 19:09 - 2014-05-19 17:05 - 00000104 __RSH () C:\WINDOWS\system32\780B9A934A.sys
2014-06-05 19:09 - 2013-12-16 20:28 - 01406976 _____ () C:\WINDOWS\system32\ac3filter.ax
2014-06-05 19:09 - 2013-12-16 20:28 - 01021440 _____ () C:\WINDOWS\system32\ac3filter_intl.dll
2014-06-05 19:09 - 2013-12-16 20:28 - 00097792 _____ () C:\WINDOWS\system32\ac3config.exe
2014-06-05 19:09 - 2008-04-13 19:11 - 00136192 _____ (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll
2014-06-05 19:09 - 2004-08-04 06:00 - 00044370 _____ () C:\WINDOWS\system32\acode.tbl
2014-06-05 19:09 - 2004-08-04 06:00 - 00044370 _____ () C:\WINDOWS\system32\a234.tbl
2014-06-05 19:09 - 2004-08-04 06:00 - 00001460 _____ () C:\WINDOWS\system32\a15.tbl
2014-06-05 19:06 - 2014-06-08 17:31 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Avg2014
2014-06-05 19:06 - 2012-11-06 01:20 - 00875472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msvcr110.dll
2014-06-05 18:55 - 2004-08-03 23:08 - 00026496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbstor.sys
2014-06-05 18:55 - 2004-08-03 23:08 - 00026496 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\USBSTOR.SYS
2014-06-05 18:44 - 2014-06-05 18:44 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NetZero
2014-06-05 18:40 - 2014-06-18 15:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2014-06-05 18:40 - 2014-06-18 13:55 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-05 18:40 - 2014-06-18 13:51 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-06-05 18:40 - 2014-06-18 13:49 - 00032626 _____ () C:\WINDOWS\SchedLgU.Txt
2014-06-05 18:40 - 2014-06-16 00:41 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-06-05 18:40 - 2014-06-07 23:00 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
2014-06-05 18:40 - 2014-06-07 23:00 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2014-06-05 18:40 - 2014-06-07 17:54 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
2014-06-05 18:40 - 2014-06-05 18:40 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2014-06-05 18:40 - 2014-06-05 18:40 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
2014-06-05 18:40 - 2014-06-05 18:40 - 00000020 ___SH () C:\Documents and Settings\LocalService\ntuser.ini
2014-06-05 18:40 - 2014-06-05 18:40 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-06-05 18:40 - 2014-06-05 18:40 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2014-06-05 18:40 - 2014-06-05 18:36 - 00001599 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk
2014-06-05 18:39 - 2014-06-05 18:39 - 00000020 ___SH () C:\Documents and Settings\NetworkService\ntuser.ini
2014-06-05 18:39 - 2014-06-05 18:39 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-06-05 18:39 - 2014-06-05 18:39 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Temp
2014-06-05 18:38 - 2004-08-04 07:00 - 01875968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.lex
2014-06-05 18:38 - 2004-08-04 07:00 - 00571392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlgnt.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00482304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlgnt.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00456704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsvc.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00455168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintsetp.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00426041 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\voicepad.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00363520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svc.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00358400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpincl.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00259072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpcl.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smi2smir.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00229439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\multibox.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00221696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seo.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00188416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpsmir.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\thawbrkr.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00175104 ____C () C:\WINDOWS\system32\dllcache\pintlcsa.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winzm.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winsp.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winpy.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00143422 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\softkey.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxviceo.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtstocom.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00103424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uihelper.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00101376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusbusd.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.sys
2014-06-05 18:38 - 2004-08-04 07:00 - 00092032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00086073 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\voicesub.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00085504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\metada51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00083748 ____C () C:\WINDOWS\system32\dllcache\prcp.nls
2014-06-05 18:38 - 2004-08-04 07:00 - 00083748 ____C () C:\WINDOWS\system32\dllcache\prc.nls
2014-06-05 18:38 - 2004-08-04 07:00 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia330.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia001.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00079360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winar30.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00079360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phon.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quick.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wam51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00076288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniime.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ext.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00070144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlphr.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00069120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wingb.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmigrate.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winime.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00065024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unicdime.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlcsd.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamreg51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nextlink.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00048256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w32.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\svcext51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sspifilt.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ssinc51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsepm.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlphr.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00041600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiregmv.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00040448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpthrd.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm9aw.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00037888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\md5filt.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00036927 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs411.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmp.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb6w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma3w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pagecnt.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.sys
2014-06-05 18:38 - 2004-08-04 07:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tools.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm87w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm81w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8cw.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00028288 ____C () C:\WINDOWS\system32\dllcache\xjis.nls
2014-06-05 18:38 - 2004-08-04 07:00 - 00026624 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw330ext.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm93w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm92w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mdsync.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm90w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8dw.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8aw.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm89w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\romanime.ime
2014-06-05 18:38 - 2004-08-04 07:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm59w.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rw001ext.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lpdsvc.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logscrpt.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00021896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdipx.sys
2014-06-05 18:38 - 2004-08-04 07:00 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\permchk.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00020736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ramdisk.sys
2014-06-05 18:38 - 2004-08-04 07:00 - 00019464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdspx.sys
2014-06-05 18:38 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\simptcp.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lprmon.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\status.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quser.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsm.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs404.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs804.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\register.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsprof.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs412.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lonsint.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00013192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdasync.sys
2014-06-05 18:38 - 2004-08-04 07:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxmcro.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00010752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpapi.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmigrate.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpstup.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rwnh.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\query.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamps51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmptrap.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pwsdata.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migregdb.exe
2014-06-05 18:38 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpmib.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxgl.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svapi.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smimsgif.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsy.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ctrs51.dll
2014-06-05 18:38 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcref.dll
2014-06-05 18:38 - 2001-08-17 22:36 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
2014-06-05 18:38 - 2001-08-17 22:36 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
2014-06-05 18:38 - 2001-08-17 22:36 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
2014-06-05 18:38 - 2001-08-17 22:36 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll
2014-06-05 18:38 - 2001-08-17 22:36 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
2014-06-05 18:38 - 2001-08-17 22:36 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
2014-06-05 18:38 - 2001-08-17 22:36 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 13463552 ____C () C:\WINDOWS\system32\dllcache\hwxjpn.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 10129408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxkor.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 10096640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxcht.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 02134528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsnap.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 01677824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chsbrkr.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 01158818 ____C () C:\WINDOWS\system32\dllcache\korwbrkr.lex
2014-06-05 18:37 - 2004-08-04 07:00 - 00838144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtbrkr.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00811064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjp81k.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00716856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpcus.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00562176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsst.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00514587 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\edb500.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00480256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintsetp.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00471102 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskdic.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00452096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsapi.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00400384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsxp32.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00397312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxstiff.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00369664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asp51.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00368696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpcic.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00340023 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjp81.ime
2014-06-05 18:37 - 2004-08-04 07:00 - 00331264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aqueue.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00315452 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskf.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00311359 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsv.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00307257 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdct.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00285184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscomex.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00274489 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjputyc.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00268288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpext.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00267776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssvc.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00262200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjputy.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00257024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infocomm.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00246272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxst30.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00233527 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjprw.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00229376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscover.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00218112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_g18030.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00208952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpmig.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00198656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintime.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00196665 ____C () C:\WINDOWS\system32\dllcache\imjpinst.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00195618 ____C () C:\WINDOWS\system32\dllcache\c_10002.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00192512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxswzrd.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00189986 ____C () C:\WINDOWS\system32\dllcache\c_1361.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00189440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpadm.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00187938 ____C () C:\WINDOWS\system32\dllcache\c_20005.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00186402 ____C () C:\WINDOWS\system32\dllcache\c_20001.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00185378 ____C () C:\WINDOWS\system32\dllcache\c_20003.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00180770 ____C () C:\WINDOWS\system32\dllcache\c_20932.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00180258 ____C () C:\WINDOWS\system32\dllcache\c_20004.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00180258 ____C () C:\WINDOWS\system32\dllcache\c_20000.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00177698 ____C () C:\WINDOWS\system32\dllcache\c_20949.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00177698 ____C () C:\WINDOWS\system32\dllcache\c_10003.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_20936.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_20002.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_10008.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00173568 ____C () C:\WINDOWS\system32\dllcache\chtskf.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00162850 ____C () C:\WINDOWS\system32\dllcache\c_10001.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00155705 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdsvr.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00154112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsui.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00145408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iische51.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00143360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclnt.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00134339 ____C () C:\WINDOWS\system32\dllcache\imekr.lex
2014-06-05 18:37 - 2004-08-04 07:00 - 00132608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclntr.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00125952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsv251.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscfgwz.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00108827 ____C () C:\WINDOWS\system32\dllcache\hanja.lex
2014-06-05 18:37 - 2004-08-04 07:00 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\appconf.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00106496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrcic.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00102463 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsm.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00102456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imlang.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00101888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntagnt.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtmbx.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekr61.ime
2014-06-05 18:37 - 2004-08-04 07:00 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntwin.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmbx.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00082172 ____C () C:\WINDOWS\system32\dllcache\bopomofo.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00081976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdct.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iislog51.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00078848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dayi.ime
2014-06-05 18:37 - 2004-08-04 07:00 - 00078336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chajei.ime
2014-06-05 18:37 - 2004-08-04 07:00 - 00072192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscom.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00070656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\korwbrkr.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00066728 ____C () C:\WINDOWS\system32\dllcache\big5.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_864.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_862.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_858.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_720.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_870.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_708.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28596.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_21027.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_21025.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20924.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20880.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20871.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20838.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20833.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20424.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20423.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20420.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20297.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20290.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20285.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20284.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20280.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20278.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20277.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20273.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20269.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20108.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20107.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20106.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20105.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1149.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1148.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1147.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1146.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1145.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1144.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1143.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1142.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1141.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1140.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1047.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10021.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10005.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10004.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpod51.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00060928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisclex4.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imkrinst.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00059392 ____C () C:\WINDOWS\system32\dllcache\imscinst.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00057856 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimgd.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00057399 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cplexe.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00057398 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdadm.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\convlog.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtskdic.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsevent.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00054528 ____C (Philips Semiconductors GmbH) C:\WINDOWS\system32\dllcache\cap7146.sys
2014-06-05 18:37 - 2004-08-04 07:00 - 00049664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adrot.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00047066 ____C () C:\WINDOWS\system32\dllcache\ksc.nls
2014-06-05 18:37 - 2004-08-04 07:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browscap.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00045109 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpuex.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00045056 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunid.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmig.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00042496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\davcdata.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hostmib.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hanjadic.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iprip.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lmmib2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\controt.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gzip.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00031744 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucmd.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsroute.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00029696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admexs.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asptxn.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00027136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsdrv.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iscomlog.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00025856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\et4000.sys
2014-06-05 18:37 - 2004-08-04 07:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisadmin.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00024064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntcmd.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00024064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\compfilt.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsmon.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsext32.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintlgnt.ime
2014-06-05 18:37 - 2004-08-04 07:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\counters.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iiscrmap.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0804.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0412.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0411.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040d.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0404.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0401.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cprofile.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jupiw.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetin51.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgport.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\flattemp.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exstrace.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgusr.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chglogon.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssend.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00010752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_iscii.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aspperf.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\change.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecat.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iwrps.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\authfilt.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoctrs.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsperf.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\staxmem.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpmb51.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecnt.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpctrs2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamregps.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnec95.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdibm02.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isapips.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisfecnv.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\f3ahvoas.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlk41a.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iissync.exe
2014-06-05 18:37 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsres.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_is2022.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth3.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlk41j.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinpun.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdax2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd106n.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101a.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpmib.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftlx041e.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admxprox.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdvntc.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdusa.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdurdu.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth1.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth0.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr1.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintel.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintam.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinmar.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinkan.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinhin.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinguj.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdindev.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdheb.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdfa.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv1.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda3.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda2.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda1.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgeo.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarmw.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarme.dll
2014-06-05 18:37 - 2004-08-04 07:00 - 00003584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismui.dll
2014-06-05 18:37 - 2003-03-24 16:52 - 00618605 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4autl.dll
2014-06-05 18:37 - 2003-03-24 16:52 - 00094208 ____C () C:\WINDOWS\system32\dllcache\fpencode.dll
2014-06-05 18:37 - 2003-03-24 16:52 - 00032827 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptest.exe
2014-06-05 18:37 - 2003-03-24 16:52 - 00024632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmcgi.exe
2014-06-05 18:37 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmdll.dll
2014-06-05 18:37 - 2003-03-24 16:52 - 00020536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.dll
2014-06-05 18:37 - 2003-03-24 16:52 - 00016437 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.exe
2014-06-05 18:37 - 2003-03-24 16:52 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptsat.dll
2014-06-05 18:37 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
2014-06-05 18:37 - 2001-08-17 22:36 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
2014-06-05 18:37 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
2014-06-05 18:36 - 2014-06-05 18:36 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2014-06-05 18:36 - 2014-06-05 18:36 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2014-06-05 18:36 - 2014-06-05 18:36 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2014-06-05 18:36 - 2014-06-05 18:36 - 00002577 _____ () C:\WINDOWS\system32\CONFIG.NT
2014-06-05 18:36 - 2014-06-05 18:36 - 00001607 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00001599 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00001507 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00000792 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Windows Media Player.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00000398 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 __RSH () C:\MSDOS.SYS
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 __RSH () C:\IO.SYS
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\WINDOWS\system32\xircom
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\Program Files\xerox
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\DELL
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 _____ () C:\WINDOWS\control.ini
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 _____ () C:\CONFIG.SYS
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 _____ () C:\AUTOEXEC.BAT
2014-06-05 18:36 - 2004-08-04 07:00 - 00829440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00290816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsiis51.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00275968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certwiz.ocx
2014-06-05 18:36 - 2004-08-04 07:00 - 00169984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisui.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00133632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrtl.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certmap.ocx
2014-06-05 18:36 - 2004-08-04 07:00 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logui.ocx
2014-06-05 18:36 - 2004-08-04 07:00 - 00076288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnfgprts.ocx
2014-06-05 18:36 - 2004-08-04 07:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isatq.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisext51.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00064512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismap.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\coadmin.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admwprox.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00030720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstas.exe
2014-06-05 18:36 - 2004-08-04 07:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetsloc.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisreset.exe
2014-06-05 18:36 - 2004-08-04 07:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoadmn.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.exe
2014-06-05 18:36 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsapi2.dll
2014-06-05 18:36 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstap.dll
2014-06-05 18:36 - 2004-05-13 00:39 - 00876653 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awel.dll
2014-06-05 18:36 - 2004-05-13 00:39 - 00598071 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmc.dll
2014-06-05 18:36 - 2004-05-13 00:39 - 00184435 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4amsft.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00208896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmcsat.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00188494 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpcount.exe
2014-06-05 18:36 - 2003-03-24 16:52 - 00188480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgwiz.exe
2014-06-05 18:36 - 2003-03-24 16:52 - 00147513 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4apws.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00109328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98swin.exe
2014-06-05 18:36 - 2003-03-24 16:52 - 00102509 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4atxt.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00082035 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4anscp.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00049212 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awebs.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00049210 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4areg.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00041020 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avnb.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00032826 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avss.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpexedll.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.dll
2014-06-05 18:36 - 2003-03-24 16:52 - 00020538 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpremadm.exe
2014-06-05 18:36 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.exe
2014-06-05 18:36 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.exe
2014-06-05 18:36 - 2003-03-24 16:52 - 00014608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98sadm.exe
2014-06-05 18:34 - 2014-06-18 14:01 - 00371618 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-05 18:34 - 2014-06-05 18:36 - 00000000 __SHD () C:\Documents and Settings\All Users\DRM
2014-06-05 18:34 - 2014-06-05 18:34 - 00000786 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000488 ___RH () C:\WINDOWS\system32\WindowsLogon.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2014-06-05 18:34 - 2014-06-05 18:34 - 00000000 ___HD () C:\Program Files\WindowsUpdate
2014-06-05 18:33 - 2014-06-05 18:36 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\WINDOWS\srchasst
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\Common Files\Services
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\Common Files\MSSoap
2014-06-05 18:33 - 2009-03-08 04:33 - 00759296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\VGX.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 04399505 ____C () C:\WINDOWS\system32\dllcache\nls302en.lex
2014-06-05 18:33 - 2004-08-04 07:00 - 03166208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgr3en.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 01134592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaueng.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 01134592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00786432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migrate.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00774144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setup_wm.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00725566 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srchui.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00430592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuapi.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00430592 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuapi.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00382464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qmgr.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00382464 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgr.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00368640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpvis.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00364544 ____C (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00235520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssoap1.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00226816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpns.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00183296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaueng1.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00183296 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaueng1.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00165888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauclt1.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00165888 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt1.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00162304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuaucpl.cpl
2014-06-05 18:33 - 2004-08-04 07:00 - 00162304 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuaucpl.cpl
2014-06-05 18:33 - 2004-08-04 07:00 - 00120320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuweb.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00120320 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuweb.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00118784 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg723.acm
2014-06-05 18:33 - 2004-08-04 07:00 - 00112640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wucltui.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00112640 _____ (Microsoft Corporation) C:\WINDOWS\system32\wucltui.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauclt.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00111104 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00099840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helphost.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00098304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpband.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00093184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ieinfo5.ocx
2014-06-05 18:33 - 2004-08-04 07:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmplayer.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwtutor.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwres.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00058434 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srchctls.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00048680 ___SH () C:\WINDOWS\winnt256.bmp
2014-06-05 18:33 - 2004-08-04 07:00 - 00048680 ___SH () C:\WINDOWS\winnt.bmp
2014-06-05 18:33 - 2004-08-04 07:00 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srdiag.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\trialoc.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msinfo32.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wups.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\wups.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\notiflag.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\custsat.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoobe.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wisc10.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mssoapr.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brpinfo.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qmgrprxy.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\qmgrprxy.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isignup.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icfgnt5.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\icfgnt5.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wb32.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmevtmsg.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cb32.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmevtmsg.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atrace.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\atrace.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx2.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx2.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bitsprx3.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\bitsprx3.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wuauserv.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hcappres.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\wuauserv.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2res2.dll
2014-06-05 18:33 - 2004-08-04 07:00 - 00004639 ____C () C:\WINDOWS\system32\dllcache\mplayer2.exe
2014-06-05 18:33 - 2004-08-04 07:00 - 00000984 ____C () C:\WINDOWS\system32\dllcache\srframe.mmf
2014-06-05 18:33 - 2004-08-04 06:00 - 00064512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\acctres.dll
2014-06-05 18:33 - 2004-08-04 06:00 - 00064512 _____ (Microsoft Corporation) C:\WINDOWS\system32\acctres.dll
2014-06-05 18:32 - 2014-06-05 18:40 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-06-05 18:32 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\Outlook Express
2014-06-05 18:32 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\NetMeeting
2014-06-05 18:32 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\Movie Maker
2014-06-05 18:32 - 2014-06-05 18:32 - 00021640 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-06-05 18:32 - 2014-06-05 18:32 - 00001022 _____ () C:\WINDOWS\sessmgr.setup.log
2014-06-05 18:32 - 2014-06-05 18:32 - 00000609 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
2014-06-05 18:32 - 2014-06-05 18:32 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
2014-06-05 18:32 - 2014-06-05 18:32 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-05 18:32 - 2009-03-08 14:09 - 00638816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iexplore.exe
2014-06-05 18:32 - 2009-03-08 04:24 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hmmapi.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 04256768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2res.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 03555328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\moviemk.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 02479616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoeres.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 01311232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoe.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 01032192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\conf.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00768512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpctr.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00743936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\helpsvc.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00678400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcomm.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00678400 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcomm.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00561664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobmain.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00561179 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dao360.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00536576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado15.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00504832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00502272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2fxa.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00487424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledb32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00402432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2filt.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00385024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\callcont.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00380416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rstrui.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00376320 ____C () C:\WINDOWS\system32\dllcache\msinfo.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00331776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadce.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00325632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2fxb.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00315392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasql.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00274944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstask.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00274944 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstask.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00274432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mst120.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00274432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetcfg.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00274432 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetcfg.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00252928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoeacct.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00252928 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoeacct.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00249856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab32res.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00239104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srrstr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00239104 _____ (Microsoft Corporation) C:\WINDOWS\system32\srrstr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00233472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaora.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00229376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmas.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00221184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nac.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00217088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sqlxmlx.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn1.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00204800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaps.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00200704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaprst.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00200704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadox.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00190976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\schedsvc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00190976 _____ (Microsoft Corporation) C:\WINDOWS\system32\schedsvc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00188416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmwb.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00188416 _____ (Microsoft Corporation) C:\WINDOWS\system32\msh261.drv
2014-06-05 18:32 - 2004-08-04 07:00 - 00180224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadomd.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00172032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmoldwb.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00172032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwhelp.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00170496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srsvc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00170496 _____ (Microsoft Corporation) C:\WINDOWS\system32\srsvc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00167936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2ae.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00158208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msconfig.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00155648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadds.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00153088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\triedit.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00151552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmft.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00150528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uploadm.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00143360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadco.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00128000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dhtmled.ocx
2014-06-05 18:32 - 2004-08-04 07:00 - 00124800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmgr.sys
2014-06-05 18:32 - 2004-08-04 07:00 - 00124800 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\fltMgr.sys
2014-06-05 18:32 - 2004-08-04 07:00 - 00122368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobcomm.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00118784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdarem.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msoert2.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\msoert2.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00104448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oeimport.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pchshell.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msjro.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00094208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdatl3.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn2.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00084992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabimp.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmchat.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado27.tlb
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado26.tlb
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado25.tlb
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isign32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ils.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\isign32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00081920 _____ (Microsoft Corporation) C:\WINDOWS\system32\ils.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00081408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\directdb.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmcom.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaosp.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdial.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwdial.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00073472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sr.sys
2014-06-05 18:32 - 2004-08-04 07:00 - 00073472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sr.sys
2014-06-05 18:32 - 2004-08-04 07:00 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\setup50.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msconf.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\msconf.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srclient.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00067584 _____ (Microsoft Corporation) C:\WINDOWS\system32\srclient.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oledb32r.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwphbk.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\icwphbk.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rrcm.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado21.tlb
2014-06-05 18:32 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msado20.tlb
2014-06-05 18:32 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcf.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oemig50.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msimn.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mst123.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadrh15.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msador15.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\h323cc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcs.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oobebaln.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00049152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwutil.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetres.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\inetres.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00046080 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wab.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\safrslv.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrslv.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\confmrsl.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\safrcdlg.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\racpldlg.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrcdlg.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\racpldlg.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dcap32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pchsvc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdfmap.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\oemiglib.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00034560 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mnmdd.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00034560 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmdd.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabfind.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mnmsrvc.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdl.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00032768 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\isrdbg32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\mnmsrvc.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00032768 _____ (Intel Corporation) C:\WINDOWS\system32\isrdbg32.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00030720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobshel.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wabmig.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00029696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\safrdm.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00029696 _____ (Microsoft Corporation) C:\WINDOWS\system32\safrdm.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmmkcert.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nmasnt.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\nmmkcert.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxactps.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msader15.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msaddsr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwrmind.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltmc.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00022528 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltMc.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdatt.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcer.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetwiz.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobweb.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hscupd.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iedw.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fltlib.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\fltlib.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msobdl.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasqlr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaremr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaprsr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaorar.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcor.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msadcfr.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstinit.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstinit.exe
2014-06-05 18:32 - 2004-08-04 07:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2ext.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmm2eres.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaurl.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdasc.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaer.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdaenum.dll
2014-06-05 18:32 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdadc.dll
2014-06-05 18:31 - 2014-06-07 17:54 - 00001229 _____ () C:\WINDOWS\wmsetup.log
2014-06-05 18:31 - 2014-06-05 18:35 - 00000000 ____D () C:\WINDOWS\Registration
2014-06-05 18:31 - 2014-06-05 18:31 - 00001986 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk
2014-06-05 18:31 - 2014-06-05 18:31 - 00000133 _____ () C:\WINDOWS\DtcInstall.log
2014-06-05 18:31 - 2014-06-05 18:31 - 00000037 _____ () C:\WINDOWS\vbaddin.ini
2014-06-05 18:31 - 2014-06-05 18:31 - 00000036 _____ () C:\WINDOWS\vb.ini
2014-06-05 18:31 - 2014-06-05 18:31 - 00000000 ____D () C:\Program Files\Online Services
2014-06-05 18:31 - 2014-06-05 18:31 - 00000000 ____D () C:\Program Files\Messenger
2014-06-05 18:31 - 2014-06-05 18:31 - 00000000 ____D () C:\Program Files\ComPlus Applications
2014-06-05 18:31 - 2004-08-04 07:00 - 01817687 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgres.dll
2014-06-05 18:31 - 2004-08-04 07:00 - 00753236 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvseres.dll
2014-06-05 18:31 - 2004-08-04 07:00 - 00082501 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckg.dll
2014-06-05 18:31 - 2004-08-04 07:00 - 00048706 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvse.dll
2014-06-05 18:31 - 2004-08-04 07:00 - 00042577 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgzm.exe
2014-06-05 18:31 - 2004-08-04 07:00 - 00042574 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvsezm.exe
2014-06-05 18:30 - 2014-06-05 18:32 - 00000000 ____D () C:\WINDOWS\system32\Com
2014-06-05 18:30 - 2014-06-05 18:31 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2014-06-05 18:30 - 2014-06-05 18:30 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-05 18:30 - 2014-06-05 18:30 - 00000000 ____D () C:\Program Files\MSN Gaming Zone
2014-06-05 18:30 - 2014-06-05 18:30 - 00000000 ____D () C:\Program Files\MSN
2014-06-05 18:30 - 2004-08-04 07:00 - 02178131 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlres.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 01352192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cimwin32.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 01251840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsvcs.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 01251840 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsvcs.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 01175635 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzres.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 01039955 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnresm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00949248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtctm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00949248 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtctm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00780885 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrres.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00655360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstscax.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00655360 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstscax.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00628224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrvut.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00628224 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvut.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00605696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\getuname.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\getuname.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00540160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comuid.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00540160 _____ (Microsoft Corporation) C:\WINDOWS\system32\comuid.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00539136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dialer.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00538624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spider.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\spider.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00530944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcore.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00501248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clbcatq.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00501248 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatq.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00472064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fastprox.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00437248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvsd.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00425472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcprx.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00425472 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcprx.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00407552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstsc.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00407552 _____ (Microsoft Corporation) C:\WINDOWS\system32\mstsc.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00358912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmic.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00345088 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hypertrm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00343040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspaint.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00295424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\termsrv.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00295424 _____ (Microsoft Corporation) C:\WINDOWS\system32\termsrv.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00281088 ____C (Cinematronics) C:\WINDOWS\system32\dllcache\pinball.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00273920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemess.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00273920 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msiprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00247808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\esscli.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00237056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\provthrd.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00229888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrv.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00229888 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrv.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00227840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avtapi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00227840 _____ (Microsoft Corporation) C:\WINDOWS\system32\avtapi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00218112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprvse.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00217160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnclim.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcomn.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00212992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntevt.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00197120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemupgd.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00196608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiadap.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00196608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcntl.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00195584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comadmin.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00185856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\framedyn.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmprops.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\cmprops.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00183808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\accwiz.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00183808 _____ (Microsoft Corporation) C:\WINDOWS\system32\accwiz.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00178176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00177152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\repdrvfs.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00161280 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtcuiu.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00161280 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtcuiu.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00156672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipcima.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00147968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdchost.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00147968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdchost.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00147456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comsnap.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\comsnap.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmisvc.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00140800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmidcprv.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00140800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sessmgr.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00140800 _____ (Microsoft Corporation) C:\WINDOWS\system32\sessmgr.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00139400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwd.sys
2014-06-05 18:30 - 2004-08-04 07:00 - 00139400 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpwd.sys
2014-06-05 18:30 - 2004-08-04 07:00 - 00138752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndvol32.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00138752 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndvol32.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00132096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipdskq.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viewprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndrec32.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndrec32.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00126976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshearts.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshearts.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00126464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiapsrv.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00123904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mofd.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplay32.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mplay32.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00120320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dsprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmine.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmine.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemtest.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00116224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\updprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00114688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\calc.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00113222 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zoneclim.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00110080 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clbcatex.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00110080 _____ (Microsoft Corporation) C:\WINDOWS\system32\clbcatex.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clipbrd.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipbrd.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00095232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiutils.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00093702 _____ () C:\WINDOWS\system32\subrange.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00093696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscfgwmi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00093696 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscfgwmi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00092672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\policman.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00090112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxoci.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00090112 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxoci.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00089088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiaprpl.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00087176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpwsx.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00087176 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpwsx.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00086528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stdprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00085504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\catsrvps.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00085504 _____ (Microsoft Corporation) C:\WINDOWS\system32\catsrvps.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00082432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrepl.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00082432 _____ (Microsoft Corporation) C:\WINDOWS\system32\comrepl.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00080384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\charmap.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\charmap.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00075264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipicmp.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avwav.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\avwav.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00071680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemcons.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\access.cpl
2014-06-05 18:30 - 2004-08-04 07:00 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\access.cpl
2014-06-05 18:30 - 2004-08-04 07:00 - 00067072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdshost.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00067072 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdshost.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00066113 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvl.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00065978 _____ () C:\WINDOWS\Soap Bubbles.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00065954 _____ () C:\WINDOWS\Prairie Wind.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00065832 _____ () C:\WINDOWS\Santa Fe Stucco.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00063488 _____ () C:\WINDOWS\system32\wmimgmt.msc
2014-06-05 18:30 - 2004-08-04 07:00 - 00062976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipjobj.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00062464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipiprt.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00062464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpclip.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00062464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\colbact.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpclip.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00062464 _____ (Microsoft Corporation) C:\WINDOWS\system32\colbact.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmplprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmimsg.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00060928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmicookr.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00060458 _____ () C:\WINDOWS\system32\ideograf.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00060416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\remotepg.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00060416 _____ (Microsoft Corporation) C:\WINDOWS\system32\remotepg.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemdisp.tlb
2014-06-05 18:30 - 2004-08-04 07:00 - 00059904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\trnsprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtclog.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\licwmi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtclog.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\licwmi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00057409 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtz.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00056832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sol.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sol.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\servdeps.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\servdeps.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\freecell.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\freecell.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00054272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\stclient.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\stclient.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fwdprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00052224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmitimep.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00047104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ncprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmi2xml.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscupgrd.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscupgrd.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00044544 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hticons.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemsvc.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00042575 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrzm.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlzm.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzzm.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmipsess.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00041029 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zcorem.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00040960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpcons.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00040515 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkr.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgbkend.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\cfgbkend.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00036937 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zclientm.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scrcons.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winchat.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\winchat.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\regini.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\regini.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00032339 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniansi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemads.tlb
2014-06-05 18:30 - 2004-08-04 07:00 - 00029760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\znetm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00026680 _____ () C:\WINDOWS\River Sumida.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00026582 _____ () C:\WINDOWS\Greenstone.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comaddin.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\comaddin.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxlegih.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxlegih.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\krnlprov.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00024006 _____ () C:\WINDOWS\system32\gb2312.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00022984 _____ () C:\WINDOWS\system32\bopomofo.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qwinsta.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\qwinsta.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00021896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdtcp.sys
2014-06-05 18:30 - 2004-08-04 07:00 - 00021896 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdtcp.sys
2014-06-05 18:30 - 2004-08-04 07:00 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msg.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\msg.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qprocess.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxdm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\qprocess.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxdm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpsnd.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpsnd.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtsadmin.tlb
2014-06-05 18:30 - 2004-08-04 07:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemprox.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00017408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mmfutil.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00017408 _____ (Microsoft Corporation) C:\WINDOWS\system32\mmfutil.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00017362 _____ () C:\WINDOWS\Rhododendron.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00017336 _____ () C:\WINDOWS\Gone Fishing.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00017062 _____ () C:\WINDOWS\Coffee Bean.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\unsecapp.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsshutdn.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qappsrv.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsshutdn.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\qappsrv.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016740 _____ () C:\WINDOWS\system32\shiftjis.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00016730 _____ () C:\WINDOWS\FeatherTexture.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmgmtr.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tskill.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mofcomp.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avmeter.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\tskill.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\avmeter.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rwinsta.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cdmodem.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\rwinsta.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\cdmodem.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logoff.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\system32\logoff.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsdiscon.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tscon.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shadow.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\tsdiscon.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\tscon.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\shadow.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00013894 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zonelibm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdsaddin.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdsaddin.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmgmt.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00013312 ____C (Hilgraeve, Inc.) C:\WINDOWS\system32\dllcache\htrn_jis.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00013223 _____ () C:\WINDOWS\system32\tslabels.ini
2014-06-05 18:30 - 2004-08-04 07:00 - 00012876 _____ () C:\WINDOWS\system32\korean.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wbemads.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00012040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdpipe.sys
2014-06-05 18:30 - 2004-08-04 07:00 - 00012040 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\tdpipe.sys
2014-06-05 18:30 - 2004-08-04 07:00 - 00011776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xolehlp.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\xolehlp.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icaapi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\icaapi.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\reset.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrepl.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\reset.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00009522 _____ () C:\WINDOWS\Zapotec.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00008484 _____ () C:\WINDOWS\system32\kanji_2.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00006948 _____ () C:\WINDOWS\system32\kanji_1.uce
2014-06-05 18:30 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiapres.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdtc.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\msdtc.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\write.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\write.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dcomcnfg.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\comrereg.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dcomcnfg.exe
2014-06-05 18:30 - 2004-08-04 07:00 - 00004677 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zeeverm.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rdpcfgex.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtxex.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\rdpcfgex.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00004096 _____ (Microsoft Corporation) C:\WINDOWS\system32\mtxex.dll
2014-06-05 18:30 - 2004-08-04 07:00 - 00003286 _____ () C:\WINDOWS\system32\tslabels.h
2014-06-05 18:30 - 2004-08-04 07:00 - 00001931 _____ () C:\WINDOWS\system32\msdtcprf.ini
2014-06-05 18:30 - 2004-08-04 07:00 - 00001272 _____ () C:\WINDOWS\Blue Lace 16.bmp
2014-06-05 18:30 - 2004-08-04 07:00 - 00001161 _____ () C:\WINDOWS\system32\usrlogon.cmd
2014-06-05 18:30 - 2004-08-04 07:00 - 00000768 _____ () C:\WINDOWS\system32\msdtcprf.h
2014-06-05 18:30 - 2004-08-04 01:01 - 00040840 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\termdd.sys
2014-06-05 18:30 - 2004-08-03 23:01 - 00196864 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rdpdr.sys
2014-06-05 18:29 - 2014-06-09 13:23 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2014-06-05 18:29 - 2014-06-05 18:29 - 00000200 _____ () C:\WINDOWS\cmsetacl.log
2014-06-05 13:27 - 2014-06-18 00:26 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-06-05 13:27 - 2014-06-18 00:26 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-06-05 13:27 - 2014-06-05 13:27 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-06-05 13:27 - 2001-08-17 08:59 - 00003072 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\audstub.sys
2014-06-05 13:26 - 2004-08-03 18:01 - 00025856 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbprint.sys
2014-06-05 13:26 - 2004-08-03 17:59 - 00057472 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\redbook.sys
2014-06-05 13:25 - 2004-08-03 19:56 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\usbui.dll
2014-06-05 13:25 - 2004-08-03 17:59 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\intelide.sys
2014-06-05 13:23 - 2014-06-15 07:43 - 00004346 _____ () C:\WINDOWS\ODBCINST.INI
2014-06-05 13:23 - 2014-06-15 07:42 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-05 13:23 - 2014-06-07 22:52 - 00054540 _____ () C:\WINDOWS\iis6.log
2014-06-05 13:23 - 2014-06-07 22:52 - 00017970 _____ () C:\WINDOWS\comsetup.log
2014-06-05 13:23 - 2014-06-07 22:52 - 00013008 _____ () C:\WINDOWS\tsoc.log
2014-06-05 13:23 - 2014-06-07 22:52 - 00009206 _____ () C:\WINDOWS\ntdtcsetup.log
2014-06-05 13:23 - 2014-06-07 22:52 - 00001605 _____ () C:\WINDOWS\tabletoc.log
2014-06-05 13:23 - 2014-06-07 22:52 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-06-05 13:23 - 2014-06-07 22:52 - 00001227 _____ () C:\WINDOWS\ocmsn.log
2014-06-05 13:23 - 2014-06-07 22:51 - 00017721 _____ () C:\WINDOWS\FaxSetup.log
2014-06-05 13:23 - 2014-06-07 22:51 - 00017648 _____ () C:\WINDOWS\ocgen.log
2014-06-05 13:23 - 2014-06-07 22:51 - 00011954 _____ () C:\WINDOWS\msmqinst.log
2014-06-05 13:23 - 2014-06-07 22:51 - 00003873 _____ () C:\WINDOWS\netfxocm.log
2014-06-05 13:23 - 2014-06-07 22:51 - 00001923 _____ () C:\WINDOWS\MedCtrOC.log
2014-06-05 13:23 - 2014-06-07 22:51 - 00001180 _____ () C:\WINDOWS\msgsocm.log
2014-06-05 13:23 - 2014-06-05 19:20 - 00356120 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-05 13:23 - 2014-06-05 18:39 - 00004326 _____ () C:\WINDOWS\imsins.BAK
2014-06-05 13:23 - 2014-06-05 13:27 - 00001570 _____ () C:\WINDOWS\regopt.log
2014-06-05 13:23 - 2014-06-05 13:23 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-06-05 13:23 - 2014-06-05 13:23 - 00000000 ____D () C:\Program Files\Common Files\ODBC
2014-06-05 13:23 - 2004-08-04 07:00 - 01685606 ____C () C:\WINDOWS\system32\dllcache\sam.spd
2014-06-05 13:23 - 2004-08-04 07:00 - 00774144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spttseng.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00741376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapi.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00643717 ____C () C:\WINDOWS\system32\dllcache\ltts1033.lxa
2014-06-05 13:23 - 2004-08-04 07:00 - 00605050 ____C () C:\WINDOWS\system32\dllcache\r1033tts.lxa
2014-06-05 13:23 - 2004-08-04 07:00 - 00176157 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\dgrpsetu.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00176157 _____ (Digi International, Inc.) C:\WINDOWS\system32\dgrpsetu.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00155648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapi.cpl
2014-06-05 13:23 - 2004-08-04 07:00 - 00146432 _____ (Microsoft Corporation) C:\WINDOWS\system\WINSPOOL.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00126912 _____ (Microsoft Corporation) C:\WINDOWS\system\MSVIDEO.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00109456 _____ (Microsoft Corporation) C:\WINDOWS\system\AVIFILE.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00103424 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnclass.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00103424 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\EqnClass.Dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00085020 ____C (Digi International) C:\WINDOWS\system32\dllcache\dgsetup.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00085020 _____ (Digi International) C:\WINDOWS\system32\dgsetup.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00082944 _____ (Microsoft Corporation) C:\WINDOWS\system\OLECLI.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00077824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spcommon.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00073376 _____ (Microsoft Corporation) C:\WINDOWS\system\MCIAVI.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00069584 _____ (Microsoft Corporation) C:\WINDOWS\system\AVICAP.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00069120 _____ (Microsoft Corporation) C:\WINDOWS\NOTEPAD.EXE
2014-06-05 13:23 - 2004-08-04 07:00 - 00068768 _____ (Microsoft Corporation) C:\WINDOWS\system\MMSYSTEM.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_869.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_866.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_857.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_855.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_852.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_737.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 _____ () C:\WINDOWS\system32\c_869.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 _____ () C:\WINDOWS\system32\c_866.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 _____ () C:\WINDOWS\system32\c_857.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 _____ () C:\WINDOWS\system32\c_855.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 _____ () C:\WINDOWS\system32\c_852.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066594 _____ () C:\WINDOWS\system32\c_737.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_875.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28603.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28599.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28597.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28595.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28594.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20127.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10082.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10081.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10029.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10017.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10010.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10007.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10006.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_875.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_28603.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_28599.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\C_28597.NLS
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\C_28595.NLS
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\C_28594.NLS
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_20127.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10082.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10081.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10029.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10017.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10010.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10007.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00066082 _____ () C:\WINDOWS\system32\c_10006.nls
2014-06-05 13:23 - 2004-08-04 07:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spcplui.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00036864 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sapisvr.exe
2014-06-05 13:23 - 2004-08-04 07:00 - 00032816 _____ (Microsoft Corporation) C:\WINDOWS\system\COMMDLG.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system\MCIWAVE.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00025264 _____ (Microsoft Corporation) C:\WINDOWS\system\MCISEQ.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00024661 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxcoins.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00024661 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\spxcoins.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00024064 _____ (Microsoft Corporation) C:\WINDOWS\system\OLESVR.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0408.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040e.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt041f.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0419.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0415.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0405.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system\TAPI.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\taskman.exe
2014-06-05 13:23 - 2004-08-04 07:00 - 00015360 _____ (Microsoft Corporation) C:\WINDOWS\TASKMAN.EXE
2014-06-05 13:23 - 2004-08-04 07:00 - 00013600 _____ (Microsoft Corporation) C:\WINDOWS\system\WFWNET.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irclass.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\irclass.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irenum.sys
2014-06-05 13:23 - 2004-08-04 07:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\Drivers\irenum.sys
2014-06-05 13:23 - 2004-08-04 07:00 - 00009936 _____ (Microsoft Corporation) C:\WINDOWS\system\LZEXPAND.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00009008 _____ (Microsoft Corporation) C:\WINDOWS\system\VER.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\batt.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\batt.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00008192 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhept.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhept.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00007168 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdycl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdsl1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdsl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdpl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhu.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhela3.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz2.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcz1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdcr.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____R (Microsoft Corporation) C:\WINDOWS\system32\KBDAL.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdycl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsl1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdpl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhu.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhela3.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz2.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcz1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdcr.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdal.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtuq.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtuf.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlv1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlv.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhela2.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdgkl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdest.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtuq.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtuf.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlv1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlv.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhela2.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgkl.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdest.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdycc.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbduzb.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdur.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdtat.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdru1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdru.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdro.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdpl1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdmon.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlt1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdlt.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdkyr.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdkaz.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhu1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe319.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe220.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdhe.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdbu.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdblr.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdazel.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____R (Microsoft Corporation) C:\WINDOWS\system32\kbdaze.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdycc.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbduzb.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdur.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdtat.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdru1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdru.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdro.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdpl1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdmon.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlt1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdlt.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkyr.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkaz.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhu1.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe319.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe220.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhe.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdbu.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdblr.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdazel.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdaze.dll
2014-06-05 13:23 - 2004-08-04 07:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system\SHELL.DLL
2014-06-05 13:23 - 2004-08-04 07:00 - 00004048 _____ (Microsoft Corporation) C:\WINDOWS\system\TIMER.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00003360 _____ (Microsoft Corporation) C:\WINDOWS\system\SYSTEM.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00002577 ____N () C:\WINDOWS\system32\CONFIG.TMP
2014-06-05 13:23 - 2004-08-04 07:00 - 00002176 _____ (Microsoft Corporation) C:\WINDOWS\system\VGA.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00002032 _____ (Microsoft Corporation) C:\WINDOWS\system\MOUSE.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00002000 _____ (Microsoft Corporation) C:\WINDOWS\system\KEYBOARD.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00001744 _____ (Microsoft Corporation) C:\WINDOWS\system\SOUND.DRV
2014-06-05 13:23 - 2004-08-04 07:00 - 00001688 _____ () C:\WINDOWS\system32\AUTOEXEC.NT
2014-06-05 13:23 - 2004-08-04 07:00 - 00001152 _____ (Microsoft Corporation) C:\WINDOWS\system\MMTASK.TSK
2014-06-05 13:23 - 2004-08-04 07:00 - 00000888 ____C () C:\WINDOWS\system32\dllcache\sam.sdf
2014-06-05 13:23 - 2004-08-03 19:56 - 00074752 _____ (Microsoft Corporation) C:\WINDOWS\system32\storprop.dll
2014-06-05 13:22 - 2014-06-18 11:25 - 00268210 _____ () C:\WINDOWS\setupapi.log
2014-06-05 13:22 - 2014-06-15 08:12 - 00103032 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-05 13:22 - 2014-06-06 14:10 - 00170557 _____ () C:\WINDOWS\setupact.log
2014-06-05 13:22 - 2014-06-05 13:22 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Temp
2014-06-05 13:22 - 2014-06-05 13:22 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-06-05 13:22 - 2005-03-21 20:48 - 00007710 ____C () C:\WINDOWS\system32\dllcache\OEMBIOS.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 02012670 ____C () C:\WINDOWS\system32\dllcache\NT5.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 01086058 ____R () C:\WINDOWS\SET4.tmp
2014-06-05 13:22 - 2004-08-04 07:00 - 01086058 ____C () C:\WINDOWS\system32\dllcache\NTPRINT.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 01042903 ____R () C:\WINDOWS\SET3.tmp
2014-06-05 13:22 - 2004-08-04 07:00 - 01042903 ____C () C:\WINDOWS\system32\dllcache\SP2.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00797189 ____C () C:\WINDOWS\system32\dllcache\NT5IIS.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00502724 ____C () C:\WINDOWS\system32\dllcache\NT5INF.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00399645 ____C () C:\WINDOWS\system32\dllcache\MAPIMIG.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00141702 ____C () C:\WINDOWS\system32\dllcache\netfx.cat
2014-06-05 13:22 - 2004-08-04 07:00 - 00110116 ____C () C:\WINDOWS\system32\dllcache\tabletpc.cat
2014-06-05 13:22 - 2004-08-04 07:00 - 00037484 ____C () C:\WINDOWS\system32\dllcache\MW770.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00031965 ____C () C:\WINDOWS\system32\dllcache\mediactr.cat
2014-06-05 13:22 - 2004-08-04 07:00 - 00031281 ____C () C:\WINDOWS\system32\dllcache\FP4.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00024209 ____C () C:\WINDOWS\system32\dllcache\msn7.cat
2014-06-05 13:22 - 2004-08-04 07:00 - 00013753 ____R () C:\WINDOWS\SET8.tmp
2014-06-05 13:22 - 2004-08-04 07:00 - 00013753 ____C () C:\WINDOWS\system32\dllcache\IMS.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00013472 ____C () C:\WINDOWS\system32\dllcache\HPCRDP.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00011651 ____C () C:\WINDOWS\system32\dllcache\msn9.cat
2014-06-05 13:22 - 2004-08-04 07:00 - 00009581 ____C () C:\WINDOWS\system32\dllcache\MSMSGS.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00008574 ____C () C:\WINDOWS\system32\dllcache\IASNT4.CAT
2014-06-05 13:22 - 2004-08-04 07:00 - 00007334 ____C () C:\WINDOWS\system32\dllcache\wmerrenu.cat
2014-06-05 13:22 - 2004-08-04 07:00 - 00007245 ____C () C:\WINDOWS\system32\dllcache\MSTSWEB.CAT
2014-06-05 13:21 - 2014-06-15 16:43 - 00000211 ___SH () C:\boot.ini
2014-06-05 13:21 - 2014-06-05 13:21 - 00880640 _____ () C:\WINDOWS\system32\config\system.sav
2014-06-05 13:21 - 2014-06-05 13:21 - 00659456 _____ () C:\WINDOWS\system32\config\software.sav
2014-06-05 13:21 - 2014-06-05 13:21 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-06-05 13:21 - 2014-06-05 13:21 - 00094208 _____ () C:\WINDOWS\system32\config\default.sav
2014-06-05 13:21 - 2014-06-05 13:21 - 00001024 ____H () C:\WINDOWS\system32\config\userdiff.LOG
2014-06-05 13:21 - 2014-06-05 13:21 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
2014-06-05 13:15 - 2014-06-15 07:35 - 00000000 ____D () C:\WINDOWS\Media
2014-06-05 13:15 - 2014-06-15 07:34 - 00000000 ____D () C:\WINDOWS\system
2014-06-05 13:15 - 2014-06-15 07:34 - 00000000 ____D () C:\WINDOWS\Help
2014-06-05 13:15 - 2014-06-05 18:50 - 00000000 ____D () C:\WINDOWS\security
2014-06-05 13:15 - 2014-06-05 18:36 - 00000000 ____D () C:\WINDOWS\ime
2014-06-05 13:15 - 2014-06-05 18:35 - 00000000 ____D () C:\WINDOWS\system32\ias
2014-06-05 13:15 - 2014-06-05 18:34 - 00000000 ___RD () C:\WINDOWS\Web
2014-06-05 13:15 - 2014-06-05 18:32 - 00000000 ____D () C:\WINDOWS\pchealth
2014-06-05 13:15 - 2014-06-05 18:30 - 00000000 ____D () C:\WINDOWS\Cursors
2014-06-05 13:15 - 2014-06-05 18:29 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-06-05 13:15 - 2014-06-05 13:21 - 00000000 ____D () C:\WINDOWS\system32\usmt
2014-06-05 13:15 - 2014-06-05 13:20 - 00000000 ____D () C:\WINDOWS\system32\npp
2014-06-05 13:15 - 2014-06-05 13:20 - 00000000 ____D () C:\WINDOWS\PeerNet
2014-06-05 13:15 - 2014-06-05 13:20 - 00000000 ____D () C:\WINDOWS\mui
2014-06-05 13:15 - 2014-06-05 13:20 - 00000000 ____D () C:\WINDOWS\msagent
2014-06-05 13:15 - 2014-06-05 13:17 - 00000000 ____D () C:\WINDOWS\twain_32
2014-06-05 13:15 - 2014-06-05 13:17 - 00000000 ____D () C:\WINDOWS\system32\ras
2014-06-05 13:15 - 2014-06-05 13:16 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2014-06-05 13:15 - 2014-06-05 13:16 - 00000000 ____D () C:\WINDOWS\system32\1033
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\wins
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\ShellExt
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\mui
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\export
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\Drivers\disdn
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\dhcp
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\3com_dmi
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\3076
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\2052
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1054
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1042
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1041
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1037
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1031
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1028
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1025
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Resources
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\repair
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Provisioning
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\java
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Driver Cache
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\dell
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Connection Wizard
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\addins

==================== One Month Modified Files and Folders =======

2014-06-18 15:13 - 2014-06-05 18:40 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2014-06-18 15:11 - 2014-06-18 15:11 - 00000000 ____D () C:\FRST
2014-06-18 14:39 - 2014-06-08 21:28 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-06-18 14:32 - 2014-06-09 17:52 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-06-18 14:01 - 2014-06-05 18:34 - 00371618 _____ () C:\WINDOWS\WindowsUpdate.log
2014-06-18 13:55 - 2014-06-05 18:40 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-06-18 13:51 - 2014-06-05 18:40 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2014-06-18 13:49 - 2014-06-05 18:40 - 00032626 _____ () C:\WINDOWS\SchedLgU.Txt
2014-06-18 13:36 - 2014-06-06 14:16 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Free Download Manager
2014-06-18 13:26 - 2014-06-05 19:42 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-06-18 11:25 - 2014-06-05 13:22 - 00268210 _____ () C:\WINDOWS\setupapi.log
2014-06-18 08:31 - 2014-06-18 08:31 - 00090112 _____ () C:\WINDOWS\Minidump\Mini061814-01.dmp
2014-06-18 08:31 - 2014-06-07 21:46 - 00000000 ____D () C:\WINDOWS\Minidump
2014-06-18 08:23 - 2014-06-13 14:59 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Audacity
2014-06-18 00:26 - 2014-06-05 13:27 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-06-18 00:26 - 2014-06-05 13:27 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2014-06-17 19:38 - 2014-06-16 01:16 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-06-17 12:34 - 2014-06-09 23:52 - 00000000 ____D () C:\Documents and Settings\Administrator\My Documents\Webshots Data
2014-06-16 13:05 - 2014-06-16 13:05 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Help
2014-06-16 13:05 - 2014-06-16 13:05 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Help
2014-06-16 02:48 - 2014-06-16 02:48 - 00090112 _____ () C:\WINDOWS\Minidump\Mini061614-01.dmp
2014-06-16 00:46 - 2014-06-16 00:46 - 00000000 ____D () C:\hold
2014-06-16 00:41 - 2014-06-05 18:40 - 00000000 ____D () C:\Documents and Settings\Administrator
2014-06-15 19:18 - 2014-06-05 19:14 - 00015920 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2014-06-15 16:43 - 2014-06-05 13:21 - 00000211 ___SH () C:\boot.ini
2014-06-15 16:43 - 2004-08-04 07:00 - 00000573 _____ () C:\WINDOWS\win.ini
2014-06-15 16:43 - 2004-08-04 07:00 - 00000227 _____ () C:\WINDOWS\system.ini
2014-06-15 16:37 - 2014-06-15 16:37 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\WinRAR
2014-06-15 08:12 - 2014-06-05 13:22 - 00103032 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-06-15 07:44 - 2014-06-15 07:45 - 00000748 _____ () C:\Documents and Settings\Administrator\Desktop\Microsoft Word.lnk
2014-06-15 07:44 - 2014-06-15 07:36 - 00000748 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Word.lnk
2014-06-15 07:43 - 2014-06-15 07:35 - 00069632 _____ () C:\WINDOWS\system32\system.mdw
2014-06-15 07:43 - 2014-06-15 07:35 - 00000837 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Access.lnk
2014-06-15 07:43 - 2014-06-15 07:35 - 00000736 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Microsoft Excel.lnk
2014-06-15 07:43 - 2014-06-15 07:35 - 00000611 _____ () C:\WINDOWS\ODBC.INI
2014-06-15 07:43 - 2014-06-05 13:23 - 00004346 _____ () C:\WINDOWS\ODBCINST.INI
2014-06-15 07:42 - 2014-06-15 07:32 - 00000000 ____D () C:\Program Files\Microsoft Office
2014-06-15 07:42 - 2014-06-05 13:23 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
2014-06-15 07:36 - 2014-06-15 07:36 - 00035262 _____ () C:\WINDOWS\Administrator.acl
2014-06-15 07:35 - 2014-06-15 07:35 - 00069632 _____ () C:\WINDOWS\system32\SYSTEM1X.MDW
2014-06-15 07:35 - 2014-06-15 07:35 - 00000022 _____ () C:\WINDOWS\exchng.ini
2014-06-15 07:35 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Media
2014-06-15 07:34 - 2014-06-15 07:34 - 00000000 ____D () C:\WINDOWS\forms
2014-06-15 07:34 - 2014-06-15 07:34 - 00000000 ____D () C:\Program Files\Windows Messaging
2014-06-15 07:34 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system
2014-06-15 07:34 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Help
2014-06-15 07:21 - 2014-06-15 07:21 - 00000000 __RHD () C:\MSOCache
2014-06-15 01:53 - 2014-06-15 01:51 - 00000000 ____D () C:\Program Files\Unlocker
2014-06-15 01:51 - 2014-06-15 01:51 - 00000000 ____D () C:\Documents and Settings\Administrator\Start Menu\Programs\Unlocker
2014-06-13 22:48 - 2014-06-09 15:56 - 00027648 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-13 14:59 - 2014-06-13 14:25 - 00000000 ____D () C:\Program Files\Audacity
2014-06-13 14:25 - 2014-06-13 14:25 - 00000688 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Audacity.lnk
2014-06-13 14:25 - 2014-06-13 14:25 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\Audacity.lnk
2014-06-13 02:13 - 2014-06-13 02:13 - 00000000 ____D () C:\Program Files\Lame For Audacity
2014-06-13 02:12 - 2014-06-13 02:12 - 00000000 ____D () C:\Program Files\Ffmpeg For Audacity
2014-06-12 19:57 - 2014-06-08 09:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG2014
2014-06-12 13:12 - 2014-06-08 21:28 - 00699056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-06-12 13:12 - 2014-06-08 21:28 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-06-11 19:40 - 2014-06-06 14:16 - 00000000 ____D () C:\Program Files\Free Download Manager
2014-06-11 19:38 - 2014-06-06 14:16 - 00000742 _____ () C:\Documents and Settings\Administrator\Desktop\Free Download Manager.lnk
2014-06-11 19:38 - 2014-06-06 14:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Free Download Manager
2014-06-09 23:52 - 2014-06-09 23:52 - 00000636 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Webshots Desktop.lnk
2014-06-09 23:52 - 2014-06-09 23:52 - 00000630 _____ () C:\Documents and Settings\Administrator\Desktop\Webshots Desktop.lnk
2014-06-09 23:52 - 2014-06-09 23:52 - 00000000 ____D () C:\Program Files\Webshots
2014-06-09 23:52 - 2014-06-09 23:52 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Webshots
2014-06-09 23:13 - 2014-06-09 23:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\agi
2014-06-09 17:58 - 2014-06-09 17:53 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla
2014-06-09 17:53 - 2014-06-09 17:53 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
2014-06-09 17:53 - 2014-06-09 17:53 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
2014-06-09 17:53 - 2014-06-09 17:53 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-06-09 17:53 - 2014-06-09 17:53 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Mozilla
2014-06-09 17:53 - 2014-06-09 17:53 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
2014-06-09 13:25 - 2014-06-09 13:24 - 00000000 ____D () C:\WINDOWS\pss
2014-06-09 13:23 - 2014-06-05 18:29 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
2014-06-08 21:28 - 2014-06-08 21:28 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Macromedia
2014-06-08 21:28 - 2014-06-07 11:52 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Adobe
2014-06-08 17:31 - 2014-06-05 19:06 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Avg2014
2014-06-08 09:39 - 2014-06-05 22:38 - 00000000 ____D () C:\Program Files\AVG
2014-06-08 09:30 - 2014-06-08 09:30 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\AVG2014
2014-06-08 09:30 - 2014-06-05 23:01 - 00000000 ____D () C:\Program Files\AVG SafeGuard toolbar
2014-06-08 09:30 - 2014-06-05 22:39 - 00000000 ___HD () C:\$AVG
2014-06-08 09:29 - 2014-06-05 23:02 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVG
2014-06-08 09:26 - 2014-06-08 09:26 - 00000702 _____ () C:\Documents and Settings\All Users\Desktop\AVG 2014.lnk
2014-06-08 07:36 - 2014-06-08 07:36 - 00090112 _____ () C:\WINDOWS\Minidump\Mini060814-01.dmp
2014-06-08 02:02 - 2014-06-08 02:02 - 00000000 __SHD () C:\Documents and Settings\LocalService\IETldCache
2014-06-07 23:01 - 2014-06-07 23:01 - 00000000 __SHD () C:\Documents and Settings\Administrator\PrivacIE
2014-06-07 23:00 - 2014-06-07 23:00 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2014-06-07 23:00 - 2014-06-07 22:50 - 00007481 _____ () C:\WINDOWS\spupdsvc.log
2014-06-07 23:00 - 2014-06-05 18:40 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
2014-06-07 23:00 - 2014-06-05 18:40 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2014-06-07 22:59 - 2014-06-07 22:50 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
2014-06-07 22:58 - 2014-06-07 22:40 - 00030718 _____ () C:\WINDOWS\ie8_main.log
2014-06-07 22:52 - 2014-06-07 22:45 - 00060151 _____ () C:\WINDOWS\ie8.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00054540 _____ () C:\WINDOWS\iis6.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00017970 _____ () C:\WINDOWS\comsetup.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00013008 _____ () C:\WINDOWS\tsoc.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00009206 _____ () C:\WINDOWS\ntdtcsetup.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00001605 _____ () C:\WINDOWS\tabletoc.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00001355 _____ () C:\WINDOWS\imsins.log
2014-06-07 22:52 - 2014-06-05 13:23 - 00001227 _____ () C:\WINDOWS\ocmsn.log
2014-06-07 22:51 - 2014-06-07 22:46 - 00000000 __HDC () C:\WINDOWS\ie8
2014-06-07 22:51 - 2014-06-05 13:23 - 00017721 _____ () C:\WINDOWS\FaxSetup.log
2014-06-07 22:51 - 2014-06-05 13:23 - 00017648 _____ () C:\WINDOWS\ocgen.log
2014-06-07 22:51 - 2014-06-05 13:23 - 00011954 _____ () C:\WINDOWS\msmqinst.log
2014-06-07 22:51 - 2014-06-05 13:23 - 00003873 _____ () C:\WINDOWS\netfxocm.log
2014-06-07 22:51 - 2014-06-05 13:23 - 00001923 _____ () C:\WINDOWS\MedCtrOC.log
2014-06-07 22:51 - 2014-06-05 13:23 - 00001180 _____ () C:\WINDOWS\msgsocm.log
2014-06-07 22:49 - 2014-06-07 22:48 - 00026310 _____ () C:\WINDOWS\updspapi.log
2014-06-07 21:51 - 2014-06-07 21:51 - 00090112 _____ () C:\WINDOWS\Minidump\Mini060714-02.dmp
2014-06-07 21:46 - 2014-06-07 21:46 - 00090112 _____ () C:\WINDOWS\Minidump\Mini060714-01.dmp
2014-06-07 17:54 - 2014-06-05 18:40 - 00000792 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
2014-06-07 17:54 - 2014-06-05 18:31 - 00001229 _____ () C:\WINDOWS\wmsetup.log
2014-06-07 17:11 - 2014-06-07 17:11 - 00000000 ____D () C:\Program Files\Analog Devices
2014-06-07 11:52 - 2014-06-07 11:49 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe
2014-06-07 11:52 - 2014-06-07 11:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe
2014-06-07 11:48 - 2014-06-07 11:48 - 00001729 _____ () C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
2014-06-07 11:48 - 2014-06-07 11:48 - 00000000 ____D () C:\Program Files\Common Files\Adobe
2014-06-07 11:48 - 2014-06-07 11:48 - 00000000 ____D () C:\Program Files\Adobe
2014-06-07 02:58 - 2014-06-07 02:58 - 00000000 ___SD () C:\Documents and Settings\Administrator\UserData
2014-06-06 14:26 - 2014-06-06 14:26 - 00000000 ____D () C:\Program Files\WinRAR
2014-06-06 14:26 - 2014-06-06 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\WinRAR
2014-06-06 14:26 - 2014-06-06 14:26 - 00000000 ____D () C:\Documents and Settings\Administrator\Start Menu\Programs\WinRAR
2014-06-06 14:10 - 2014-06-05 19:23 - 00001670 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Quick Help.lnk
2014-06-06 14:10 - 2014-06-05 19:23 - 00001595 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\NetZero Internet.lnk
2014-06-06 14:10 - 2014-06-05 19:23 - 00001589 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Internet.lnk
2014-06-06 14:10 - 2014-06-05 19:23 - 00000000 ____D () C:\Program Files\NetZero
2014-06-06 14:10 - 2014-06-05 19:23 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\NetZero Internet
2014-06-06 14:10 - 2014-06-05 13:22 - 00170557 _____ () C:\WINDOWS\setupact.log
2014-06-05 23:02 - 2014-06-05 23:02 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\TuneUp Software
2014-06-05 23:01 - 2014-06-05 23:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVG Secure Search
2014-06-05 19:42 - 2014-06-05 19:42 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\MFAData
2014-06-05 19:23 - 2014-06-05 19:23 - 00000000 ____D () C:\Program Files\Connection Wizard
2014-06-05 19:20 - 2014-06-05 13:23 - 00356120 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-06-05 18:50 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\security
2014-06-05 18:44 - 2014-06-05 18:44 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NetZero
2014-06-05 18:40 - 2014-06-05 18:40 - 00008192 _____ () C:\WINDOWS\REGLOCS.OLD
2014-06-05 18:40 - 2014-06-05 18:40 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
2014-06-05 18:40 - 2014-06-05 18:40 - 00000020 ___SH () C:\Documents and Settings\LocalService\ntuser.ini
2014-06-05 18:40 - 2014-06-05 18:40 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-06-05 18:40 - 2014-06-05 18:40 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2014-06-05 18:40 - 2014-06-05 18:32 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-06-05 18:40 - 2004-08-04 07:00 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-06-05 18:39 - 2014-06-05 18:39 - 00000020 ___SH () C:\Documents and Settings\NetworkService\ntuser.ini
2014-06-05 18:39 - 2014-06-05 18:39 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-06-05 18:39 - 2014-06-05 18:39 - 00000000 ____D () C:\Documents and Settings\NetworkService\Local Settings\Temp
2014-06-05 18:39 - 2014-06-05 13:23 - 00004326 _____ () C:\WINDOWS\imsins.BAK
2014-06-05 18:36 - 2014-06-05 18:40 - 00001599 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
2014-06-05 18:36 - 2014-06-05 18:36 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2014-06-05 18:36 - 2014-06-05 18:36 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2014-06-05 18:36 - 2014-06-05 18:36 - 00002577 _____ () C:\WINDOWS\system32\CONFIG.NT
2014-06-05 18:36 - 2014-06-05 18:36 - 00001607 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00001599 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00001507 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00000792 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Windows Media Player.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00000398 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 __RSH () C:\MSDOS.SYS
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 __RSH () C:\IO.SYS
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\WINDOWS\system32\xircom
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\Program Files\xerox
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\Program Files\microsoft frontpage
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 ____D () C:\DELL
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 _____ () C:\WINDOWS\control.ini
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 _____ () C:\CONFIG.SYS
2014-06-05 18:36 - 2014-06-05 18:36 - 00000000 _____ () C:\AUTOEXEC.BAT
2014-06-05 18:36 - 2014-06-05 18:34 - 00000000 __SHD () C:\Documents and Settings\All Users\DRM
2014-06-05 18:36 - 2014-06-05 18:33 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
2014-06-05 18:36 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\ime
2014-06-05 18:35 - 2014-06-05 18:31 - 00000000 ____D () C:\WINDOWS\Registration
2014-06-05 18:35 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\ias
2014-06-05 18:34 - 2014-06-05 18:34 - 00000786 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000488 ___RH () C:\WINDOWS\system32\WindowsLogon.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
2014-06-05 18:34 - 2014-06-05 18:34 - 00000000 ___RD () C:\WINDOWS\Offline Web Pages
2014-06-05 18:34 - 2014-06-05 18:34 - 00000000 ___HD () C:\Program Files\WindowsUpdate
2014-06-05 18:34 - 2014-06-05 13:15 - 00000000 ___RD () C:\WINDOWS\Web
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\WINDOWS\system32\Macromed
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\WINDOWS\srchasst
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\Common Files\Services
2014-06-05 18:33 - 2014-06-05 18:33 - 00000000 ____D () C:\Program Files\Common Files\MSSoap
2014-06-05 18:33 - 2014-06-05 18:32 - 00000000 ____D () C:\Program Files\Outlook Express
2014-06-05 18:33 - 2014-06-05 18:32 - 00000000 ____D () C:\Program Files\NetMeeting
2014-06-05 18:33 - 2014-06-05 18:32 - 00000000 ____D () C:\Program Files\Movie Maker
2014-06-05 18:32 - 2014-06-05 18:32 - 00021640 _____ () C:\WINDOWS\system32\emptyregdb.dat
2014-06-05 18:32 - 2014-06-05 18:32 - 00001022 _____ () C:\WINDOWS\sessmgr.setup.log
2014-06-05 18:32 - 2014-06-05 18:32 - 00000609 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk
2014-06-05 18:32 - 2014-06-05 18:32 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
2014-06-05 18:32 - 2014-06-05 18:32 - 00000000 ____D () C:\Program Files\Common Files\System
2014-06-05 18:32 - 2014-06-05 18:30 - 00000000 ____D () C:\WINDOWS\system32\Com
2014-06-05 18:32 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\pchealth
2014-06-05 18:31 - 2014-06-05 18:31 - 00001986 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\MSN.lnk
2014-06-05 18:31 - 2014-06-05 18:31 - 00000133 _____ () C:\WINDOWS\DtcInstall.log
2014-06-05 18:31 - 2014-06-05 18:31 - 00000037 _____ () C:\WINDOWS\vbaddin.ini
2014-06-05 18:31 - 2014-06-05 18:31 - 00000036 _____ () C:\WINDOWS\vb.ini
2014-06-05 18:31 - 2014-06-05 18:31 - 00000000 ____D () C:\Program Files\Online Services
2014-06-05 18:31 - 2014-06-05 18:31 - 00000000 ____D () C:\Program Files\Messenger
2014-06-05 18:31 - 2014-06-05 18:31 - 00000000 ____D () C:\Program Files\ComPlus Applications
2014-06-05 18:31 - 2014-06-05 18:30 - 00000000 ____D () C:\WINDOWS\system32\MsDtc
2014-06-05 18:30 - 2014-06-05 18:30 - 00000000 ____D () C:\Program Files\Windows NT
2014-06-05 18:30 - 2014-06-05 18:30 - 00000000 ____D () C:\Program Files\MSN Gaming Zone
2014-06-05 18:30 - 2014-06-05 18:30 - 00000000 ____D () C:\Program Files\MSN
2014-06-05 18:30 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Cursors
2014-06-05 18:29 - 2014-06-05 18:29 - 00000200 _____ () C:\WINDOWS\cmsetacl.log
2014-06-05 18:29 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\spool
2014-06-05 13:27 - 2014-06-05 13:27 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log
2014-06-05 13:27 - 2014-06-05 13:23 - 00001570 _____ () C:\WINDOWS\regopt.log
2014-06-05 13:23 - 2014-06-05 13:23 - 00000000 ____D () C:\Program Files\Common Files\SpeechEngines
2014-06-05 13:23 - 2014-06-05 13:23 - 00000000 ____D () C:\Program Files\Common Files\ODBC
2014-06-05 13:22 - 2014-06-05 13:22 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Temp
2014-06-05 13:22 - 2014-06-05 13:22 - 00000000 _____ () C:\WINDOWS\setuperr.log
2014-06-05 13:21 - 2014-06-05 13:21 - 00880640 _____ () C:\WINDOWS\system32\config\system.sav
2014-06-05 13:21 - 2014-06-05 13:21 - 00659456 _____ () C:\WINDOWS\system32\config\software.sav
2014-06-05 13:21 - 2014-06-05 13:21 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
2014-06-05 13:21 - 2014-06-05 13:21 - 00094208 _____ () C:\WINDOWS\system32\config\default.sav
2014-06-05 13:21 - 2014-06-05 13:21 - 00001024 ____H () C:\WINDOWS\system32\config\userdiff.LOG
2014-06-05 13:21 - 2014-06-05 13:21 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
2014-06-05 13:21 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\usmt
2014-06-05 13:20 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\npp
2014-06-05 13:20 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\PeerNet
2014-06-05 13:20 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\mui
2014-06-05 13:20 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\msagent
2014-06-05 13:17 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\twain_32
2014-06-05 13:17 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\ras
2014-06-05 13:16 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\icsxml
2014-06-05 13:16 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1033
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\wins
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\ShellExt
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\mui
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\IME
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\export
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\Drivers\disdn
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\dhcp
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\3com_dmi
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\3076
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\2052
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1054
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1042
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1041
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1037
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1031
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1028
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\system32\1025
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Resources
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\repair
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Provisioning
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\java
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Driver Cache
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\dell
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\Connection Wizard
2014-06-05 13:15 - 2014-06-05 13:15 - 00000000 ____D () C:\WINDOWS\addins
2014-05-19 17:05 - 2014-06-05 19:09 - 00000104 __RSH () C:\WINDOWS\system32\780B9A934A.sys

Some content of TEMP:
====================
C:\Documents and Settings\Administrator\Local Settings\Temp\exec.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\fp_pl_pfs_installer.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\HitmanPro.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\HitmanPro_x64.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\Kickstarter.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\NullsoftHelper.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\oi_{0B3FE819-7299-4B80-96C8-77AFB1278089}.exe
C:\Documents and Settings\Administrator\Local Settings\Temp\uires.dll
C:\Documents and Settings\Administrator\Local Settings\Temp\UNINSTALL.EXE


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================


  • 0

#9
Biscuithd
Posted 19 June 2014 - 07:18 AM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Many apologies! I have had terrible storms and no power the last day. All is well now, so I will respond with further instructions some time later today.


  • 0

#10
Stargeneral
Posted 19 June 2014 - 08:56 AM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

No problem


  • 0

Advertisements

#11
Biscuithd
Posted 19 June 2014 - 12:55 PM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Hi Stargeneral,

 

Sorry that my plan for running FRST while booting from your slave drive didn't work. It did a fine job of scanning the drive you booted from, but will not scan a different drive. So, we go to plan "B".

We will need to create a CD and additionally use a USB drive

Please print these instruction out so that you know what you are doing when the computer screen is unavailable for viewing

  • Download OTLPENet.exe to your desktop
  • Download Farbar Recovery Scan Tool and save it to a flash drive.
  • Download List Parts and save it to the flash drive also.
  • Ensure that you have a blank CD in the drive
  • Double click OTLPENet.exe and this will then open imgburn to burn the file to CD
  • Reboot your system using the boot CD you just created.
    Note : If you do not know how to set your computer to boot from CD follow the steps here
  • As the CD needs to detect your hardware and load the operating system, I would recommend a nice cup of tea whilst it loads smile.gif
  • Your system should now display a Reatogo desktop
    Note : as you are running from CD it is not exactly speedy
  • Insert the USB with FRST
  • Locate the flash drive with FRST and double click
  • The tool will start to run.
    FRST2.gif
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) on the flash drive. Please copy and paste it to your reply.
  • Next click List Parts and then click Scan
  • It will make a log Results.txt on the flash drive. Please copy and paste it to your reply.

  • 0

#12
Stargeneral
Posted 19 June 2014 - 02:16 PM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

I can't seem to download OP|TLPENet.exe. Keep losing connection with the server and the server does not support download restarting.


  • 0

#13
Stargeneral
Posted 19 June 2014 - 05:39 PM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

Ok went to library and got the file, made cd, and i will be right back after running the other two programs.


  • 0

#14
Stargeneral
Posted 19 June 2014 - 06:04 PM

Stargeneral

    Member

  • Topic Starter
  • Member
  • PipPip
  • 41 posts

Here is the FRST txt file

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-06-2014
Ran by SYSTEM on REATOGO on 19-06-2014 19:46:59
Running from E:\
Platform: Microsoft Windows XP (X86) OS Language: English(US)
Internet Explorer Version 8
Boot Mode: Recovery

The current controlset is ControlSet001
ATTENTION!:=====> If the system is bootable FRST could be run from normal or Safe mode to create a complete log.


The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingc...can-tool/dl/81/
Download link for 64-Bit Version: http://www.bleepingc...can-tool/dl/82/
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo...very-scan-tool/

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [vProt] => C:\Program Files\AVG SafeGuard toolbar\vprot.exe [2561560 2014-05-09] ()
HKLM\...\Run: [SoundMAXPnP] => C:\Program Files\Analog Devices\Core\smax4pnp.exe [1404928 2004-10-14] (Analog Devices, Inc.)
HKLM\...\Run: [GameDrive] => C:\Program Files\FarStone\GameDrive\gdtask.exe [94208 2003-07-06] (FarStone Technology Inc.)
HKLM\...\Run: [AVG_UI] => C:\Program Files\AVG\AVG2014\avgui.exe [5181456 2014-05-13] (AVG Technologies CZ, s.r.o.)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [98304 2006-01-03] (Apple Computer, Inc.)
HKLM\...\Policies\Explorer: [NoCDBurning] 0
HKU\Default User\...\Run: [DellSupport] => C:\Program Files\Dell Support\DSAgnt.exe [332800 2005-05-15] (Gteko Ltd.)
BootExecute: autocheck autochk * C:\PROGRA~1\AVG\AVG2014\avgrsx.exe /sync /restart

========================== Services (Whitelisted) =================

S2 ACDaemon; C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe [104960 2008-02-22] (ArcSoft Inc.)
S2 AOL ACS; C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe [1135728 2004-04-07] (America Online, Inc.)
S2 AVGIDSAgent; C:\Program Files\AVG\AVG2014\avgidsagent.exe [3644432 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 avgwd; C:\Program Files\AVG\AVG2014\avgwdsvc.exe [292424 2014-05-13] (AVG Technologies CZ, s.r.o.)
S2 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [106248 2014-06-17] (SurfRight B.V.)
S2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [154032 2013-01-15] (Sun Microsystems, Inc.)
S2 LexBceS; C:\WINDOWS\system32\LEXBCES.EXE [303104 2003-02-25] (Lexmark International, Inc.)
S4 McComponentHostService; C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe [227232 2010-09-03] (McAfee, Inc.)
S2 MyWebSearchService; C:\Program Files\MyWebSearch\bar\1.bin\MWSSVC.EXE [28739 2008-06-13] (MyWebSearch.com)
S3 NetSvc; C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe [143360 2003-12-17] (Intel® Corporation)
S4 RealNetworks Downloader Resolver Service; C:\Program Files\RealNetworks\RealDownloader\rndlresolversvc.exe [39056 2013-08-14] ()
S2 vToolbarUpdater18.1.5; C:\Program Files\Common Files\AVG Secure Search\vToolbarUpdater\18.1.5\ToolbarUpdater.exe [1801752 2014-05-09] (AVG Secure Search)
S2 AfaService; C:\WINDOWS\system32\afasrv32.exe [X]

==================== Drivers (Whitelisted) ====================

S4 abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
S3 Afc; C:\Windows\System32\drivers\Afc.sys [18688 2006-11-10] (Arcsoft, Inc.)
S2 ASCTRM; C:\Windows\System32\Drivers\ASCTRM.sys [8552 2006-01-03] (Windows ® 2000 DDK provider)
S1 Avgdiskx; C:\Windows\System32\DRIVERS\avgdiskx.sys [122136 2014-05-13] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSDriver; C:\Windows\System32\DRIVERS\avgidsdriverx.sys [198936 2014-05-13] (AVG Technologies CZ, s.r.o.)
S0 AVGIDSHX; C:\Windows\System32\DRIVERS\avgidshx.sys [149784 2014-05-13] (AVG Technologies CZ, s.r.o.)
S1 AVGIDSShim; C:\Windows\System32\DRIVERS\avgidsshimx.sys [21272 2014-05-13] (AVG Technologies CZ, s.r.o.)
S1 Avgldx86; C:\Windows\System32\DRIVERS\avgldx86.sys [192280 2014-05-13] (AVG Technologies CZ, s.r.o.)
S0 Avglogx; C:\Windows\System32\DRIVERS\avglogx.sys [237848 2014-05-13] (AVG Technologies CZ, s.r.o.)
S0 Avgmfx86; C:\Windows\System32\DRIVERS\avgmfx86.sys [107288 2014-05-13] (AVG Technologies CZ, s.r.o.)
S0 Avgrkx86; C:\Windows\System32\DRIVERS\avgrkx86.sys [27416 2014-05-13] (AVG Technologies CZ, s.r.o.)
S1 Avgtdix; C:\Windows\System32\DRIVERS\avgtdix.sys [210200 2014-05-13] (AVG Technologies CZ, s.r.o.)
S1 avgtp; C:\WINDOWS\system32\drivers\avgtpx86.sys [42784 2014-05-09] (AVG Technologies)
S2 drvnddm; C:\Windows\System32\drivers\drvnddm.sys [40480 2004-11-23] (Sonic Solutions)
S1 FNETURPX; C:\Windows\System32\drivers\FNETURPX.SYS [7936 2014-04-13] (FNet Co., Ltd.)
S3 FreshIO; C:\Program Files\FreshDevices\FreshDiagnose\FreshIO.sys [2410 2004-10-26] ()
S1 gdxwdm; C:\Windows\System32\DRIVERS\GDXWDM.sys [59977 2003-06-12] (FarStone Inc.)
S3 IntelC51; C:\Windows\System32\DRIVERS\IntelC51.sys [1233525 2004-03-06] (Intel Corporation)
S3 IntelC52; C:\Windows\System32\DRIVERS\IntelC52.sys [647929 2004-03-06] (Intel Corporation)
S3 IntelC53; C:\Windows\System32\DRIVERS\IntelC53.sys [61157 2004-06-16] (Intel Corporation)
S3 mohfilt; C:\Windows\System32\DRIVERS\mohfilt.sys [37048 2004-03-06] (Intel Corporation)
S1 sscdbhk5; C:\Windows\System32\drivers\sscdbhk5.sys [5627 2004-07-14] (Sonic Solutions)
S1 ssrtln; C:\Windows\System32\drivers\ssrtln.sys [23545 2004-07-14] (Sonic Solutions)
S2 tfsnboio; C:\Windows\System32\dla\tfsnboio.sys [25883 2004-12-06] (Sonic Solutions)
S2 tfsncofs; C:\Windows\System32\dla\tfsncofs.sys [34843 2004-12-06] (Sonic Solutions)
S2 tfsndrct; C:\Windows\System32\dla\tfsndrct.sys [4123 2004-12-06] (Sonic Solutions)
S2 tfsndres; C:\Windows\System32\dla\tfsndres.sys [2239 2004-12-06] (Sonic Solutions)
S2 tfsnifs; C:\Windows\System32\dla\tfsnifs.sys [86586 2004-12-06] (Sonic Solutions)
S2 tfsnopio; C:\Windows\System32\dla\tfsnopio.sys [15227 2004-12-06] (Sonic Solutions)
S2 tfsnpool; C:\Windows\System32\dla\tfsnpool.sys [6363 2004-12-06] (Sonic Solutions)
S2 tfsnudf; C:\Windows\System32\dla\tfsnudf.sys [98714 2004-12-06] (Sonic Solutions)
S2 tfsnudfa; C:\Windows\System32\dla\tfsnudfa.sys [100603 2004-12-06] (Sonic Solutions)
S3 wanatw; C:\Windows\System32\DRIVERS\wanatw4.sys [33588 2003-01-10] (America Online, Inc.)
S3 bvrp_pci; No ImagePath
S5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
S3 TlntSvr;

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-06-18 16:11 - 2014-06-19 19:46 - 00000000 ____D () C:\frst
2014-06-17 22:27 - 2014-06-17 22:27 - 00001610 _____ () C:\Documents and Settings\All Users\Desktop\HitmanPro.lnk
2014-06-17 22:27 - 2014-06-17 22:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-17 22:26 - 2014-06-17 22:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-06-04 00:10 - 2014-06-04 00:10 - 00000713 _____ () C:\Documents and Settings\All Users\Desktop\Vega Strike.lnk
2014-06-04 00:03 - 2014-06-04 00:21 - 00000000 ____D () C:\Program Files\Vega Strike
2014-06-03 21:32 - 2014-06-03 21:32 - 00090112 _____ () C:\Windows\Minidump\Mini060314-01.dmp
2014-06-01 15:47 - 2014-06-01 15:47 - 00090112 _____ () C:\Windows\Minidump\Mini060114-02.dmp
2014-06-01 13:50 - 2014-06-01 13:50 - 00090112 _____ () C:\Windows\Minidump\Mini060114-01.dmp
2014-05-23 01:08 - 2014-05-26 22:12 - 00001670 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Quick Help.lnk

==================== One Month Modified Files and Folders =======

2014-06-19 19:46 - 2014-06-18 16:11 - 00000000 ____D () C:\frst
2014-06-19 16:52 - 2004-08-10 15:08 - 00032398 _____ () C:\Windows\SchedLgU.Txt
2014-06-19 16:52 - 2004-08-10 15:02 - 01861831 _____ () C:\Windows\WindowsUpdate.log
2014-06-19 10:01 - 2013-03-28 00:00 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData
2014-06-19 10:01 - 2006-01-08 13:41 - 00000178 ___SH () C:\Documents and Settings\Nancy Langston\ntuser.ini
2014-06-19 10:01 - 2006-01-08 13:41 - 00000000 ____D () C:\Documents and Settings\Nancy Langston\Local Settings\Temp
2014-06-19 09:58 - 2004-08-10 14:51 - 00002206 _____ () C:\Windows\System32\wpa.dbl
2014-06-19 09:54 - 2010-01-29 10:35 - 00734835 _____ () C:\Windows\setupapi.log
2014-06-17 22:27 - 2014-06-17 22:27 - 00001610 _____ () C:\Documents and Settings\All Users\Desktop\HitmanPro.lnk
2014-06-17 22:27 - 2014-06-17 22:27 - 00000000 ____D () C:\Program Files\HitmanPro
2014-06-17 22:27 - 2004-08-10 15:02 - 00000000 ____D () C:\Windows\System32\Restore
2014-06-17 22:26 - 2014-06-17 22:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\HitmanPro
2014-06-05 15:31 - 2012-08-29 19:25 - 00000000 ____D () C:\Documents and Settings\Nancy Langston\Application Data\Free Download Manager
2014-06-04 00:21 - 2014-06-04 00:03 - 00000000 ____D () C:\Program Files\Vega Strike
2014-06-04 00:10 - 2014-06-04 00:10 - 00000713 _____ () C:\Documents and Settings\All Users\Desktop\Vega Strike.lnk
2014-06-04 00:10 - 2012-05-18 20:48 - 00444952 _____ (Creative Labs) C:\Windows\System32\wrap_oal.dll
2014-06-04 00:10 - 2012-05-18 20:48 - 00109080 _____ (Portions © Creative Labs Inc. and NVIDIA Corp.) C:\Windows\System32\OpenAL32.dll
2014-06-03 22:30 - 2013-12-31 02:04 - 00000000 ____D () C:\Documents and Settings\Nancy Langston\Desktop\Games
2014-06-03 21:32 - 2014-06-03 21:32 - 00090112 _____ () C:\Windows\Minidump\Mini060314-01.dmp
2014-06-03 21:32 - 2006-11-23 19:48 - 00000000 ____D () C:\Windows\Minidump
2014-06-03 19:36 - 2004-08-10 14:59 - 00000159 ____C () C:\Windows\wiadebug.log
2014-06-03 19:36 - 2004-08-10 14:59 - 00000048 ____C () C:\Windows\wiaservc.log
2014-06-02 21:48 - 2004-08-10 15:01 - 00125780 ____C () C:\Windows\wmsetup.log
2014-06-02 01:47 - 2012-06-27 06:27 - 00000000 ____D () C:\Documents and Settings\Nancy Langston\Application Data\Audacity
2014-06-01 16:07 - 2007-01-26 15:30 - 00097792 _____ () C:\Documents and Settings\Nancy Langston\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-06-01 15:47 - 2014-06-01 15:47 - 00090112 _____ () C:\Windows\Minidump\Mini060114-02.dmp
2014-06-01 13:50 - 2014-06-01 13:50 - 00090112 _____ () C:\Windows\Minidump\Mini060114-01.dmp
2014-05-26 22:12 - 2014-05-23 01:08 - 00001670 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Quick Help.lnk
2014-05-26 22:12 - 2014-05-09 20:56 - 00001589 _____ () C:\Documents and Settings\All Users\Desktop\NetZero Internet.lnk
2014-05-26 22:12 - 2011-10-30 01:13 - 00000000 ____D () C:\Program Files\NetZero
2014-05-22 18:37 - 2012-08-29 19:25 - 00000000 ____D () C:\Free Download Manager

Some content of TEMP:
====================
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\CmdLineExt02.dll
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\dlLogic.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\dltr.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\exec.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\NullsoftHelper.dll
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\Tsu4F4A87A4.dll
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\uires.dll
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\verifier.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{013D9DD8-06B8-401E-B647-C69CC66F1D4C}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{0573569C-A58D-4F2B-8011-71B6ECE3C7F3}-35.0.1916.114_34.0.1847.137_chrome_updater.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{38863E87-278A-4E0B-B9FB-02759F537E9D}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{56F7B9B9-0BAC-4D1F-8FC9-B2659556E242}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{7D98C18B-7439-4618-A8BE-8AE0E3E7EC7B}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{92962532-FE87-410D-881C-3BE600D298ED}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{946224C8-068C-43D2-BC4F-0EF5B028D71E}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{A19306CE-DC2A-4236-A955-E99942A45554}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{B1F9B67A-7265-4A32-9850-ED09F5DCD949}-35.0.1916.114_chrome_installer.exe
C:\Documents and Settings\Nancy Langston\Local Settings\Temp\{FEAFA339-D6C6-445B-A7A3-34B8B2D83463}-35.0.1916.114_chrome_installer.exe

==================== Known DLLs (Whitelisted) ============


==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe => MD5 is legit
C:\Windows\System32\winlogon.exe => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\services.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2004-08-10 14:51] - [2012-10-03 00:58] - 0617984 ____A (Microsoft Corporation) 1cf4ff12f6ae7adad82ca4ae55bd8b46

C:\Windows\System32\userinit.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit
C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

==================== Restore Points (XP) =====================

RP: -> 2014-06-17 22:27 - 024576 _restore{202550A8-7A33-4BCA-9586-051D24DDBF8F}\RP1

==================== Memory info ===========================

Percentage of memory in use: 18%
Total physical RAM: 1277.98 MB
Available physical RAM: 1035.79 MB
Total Pagefile: 1113.13 MB
Available Pagefile: 1055.21 MB
Total Virtual: 2047.88 MB
Available Virtual: 1999.79 MB

==================== Drives ================================

Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
Drive c: () (Fixed) (Total:34.21 GB) (Free:15.91 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: () (Fixed) (Total:18.64 GB) (Free:11.3 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive e: (HITMANPRO) (Removable) (Total:3.68 GB) (Free:3.66 GB) FAT32
Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 37 GB) (Disk ID: D0F4738C)
Partition 1: (Not Active) - (Size=31 MB) - (Type=DE)
Partition 2: (Active) - (Size=34 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=3 GB) - (Type=DB)

========================================================
Disk: 1 (MBR Code: Windows XP) (Size: 19 GB) (Disk ID: C78FC78F)
Partition 1: (Active) - (Size=19 GB) - (Type=07 NTFS)

========================================================
Disk: 2 (Size: 4 GB) (Disk ID: C7EE53AE)
Partition 1: (Active) - (Size=4 GB) - (Type=0B)

==================== End Of Log ============================

 

And here is the Result txt log

 

ListParts by Farbar Version: 17-04-2014
Ran by SYSTEM (administrator) on 19-06-2014 at 19:48:42
Windows XP (X86)
Running From: E:\
Language: 0409
************************************************************

========================= Memory info ======================

Percentage of memory in use: 15%
Total physical RAM: 1277.98 MB
Available physical RAM: 1077.29 MB
Total Pagefile: 1113.13 MB
Available Pagefile: 1064.24 MB
Total Virtual: 2047.88 MB
Available Virtual: 2010.1 MB

======================= Partitions =========================

1 Drive b: (RAMDisk) (Fixed) (Total:0.06 GB) (Free:0.06 GB) NTFS
2 Drive c: () (Fixed) (Total:34.21 GB) (Free:15.91 GB) NTFS ==>[Drive with boot components (Windows XP)]
3 Drive d: () (Fixed) (Total:18.64 GB) (Free:11.3 GB) NTFS ==>[Drive with boot components (Windows XP)]
4 Drive e: (HITMANPRO) (Removable) (Total:3.68 GB) (Free:3.66 GB) FAT32
5 Drive x: (ReatogoPE) (CDROM) (Total:0.43 GB) (Free:0 GB) CDFS

  Disk ###  Status      Size     Free     Dyn  Gpt
  --------  ----------  -------  -------  ---  ---
  Disk 0    Online        37 GB      0 B        
  Disk 1    Online        19 GB      0 B        

Partitions of Disk 0:
===============

  Partition ###  Type              Size     Offset
  -------------  ----------------  -------  -------
  Partition 1    OEM                 31 MB    32 KB
  Partition 2    Primary             34 GB    31 MB
  Partition 3    Unknown           3075 MB    34 GB
======================================================================================================

Disk: 0
Partition 1
Type  : DE
Hidden: Yes
Active: No


  • 0

#15
Biscuithd
Posted 20 June 2014 - 09:19 AM

Biscuithd

    Trusted Helper

  • Malware Removal
  • 2,573 posts

Hi Stargeneral,

 

Ok, next steps.

 

Let's boot your slave disk and once that is up and running, I'd like you to run this command

 

run chkdsk c: /r

 

Where c: is the drive indicator for the infected drive. You'll have to look and verify what the actual drive indicator is. It might be d: or something else.

 

If the Infected drive does not boot correctly are the chkdsk, then boot again the Slave drive and run aswMBR on the Infected drive. Make sure you use the programme at this link http://public.avast....erek/aswMBR.htm

 

 


  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP