Home » Viren, Trojaner & Malware Forum » Ich habe ein trojaner den ich net weg kriege !!! » Themenansicht
Ich habe ein trojaner den ich net weg kriege !!! |
||
|---|---|---|
| #0
| ||
|
29.12.2008, 11:45
Member
Beiträge: 29 |
#1
Ich habe ein Trojaner names TR/Spy.Flux.A den ich nicht weg kriege mit avira !!! kan mir da einer helfen ?
|
|
 
|
|
|
|
29.12.2008, 12:28
Moderator
Beiträge: 7805 |
||
|
|
|
|
|
29.12.2008, 13:11
Member
Themenstarter Beiträge: 29 |
#3
c:\WINDOWS\system32\win.com
|
|
|
|
|
|
|
29.12.2008, 15:18
Moderator
Beiträge: 7805 |
#4
Dann bitte die Punkte 2-5 von http://board.protecus.de/t23188.htm abarbeiten und die Ergebnisse posten.
__________ MfG Ralf SEO-Spam Hunter |
|
|
|
|
|
|
29.12.2008, 17:46
Member
Themenstarter Beiträge: 29 |
#5
ergebnis von Combofix ComboFix 08-12-28.04 - Administrator 2008-12-29 17:29:37.3 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1031.18.2943.2129 [GMT 1:00] ausgeführt von:: c:\dokumente und einstellungen\Administrator\Desktop\ComboFix.exe * Neuer Wiederherstellungspunkt wurde erstellt . (((((((((((((((((((((((((((((((((((( Weitere Löschungen )))))))))))))))))))))))))))))))))))))))))))))))) . c:\dokumente und einstellungen\Administrator\Startmenü\Programme\PlayMP3z\Run PlayMP3z.lnk c:\dokumente und einstellungen\Administrator\Startmen\Programme\PlayMP3z c:\windows\system32\28463 c:\windows\system32\28463\AKV.exe c:\windows\system32\28463\GWBH.001 c:\windows\system32\28463\GWBH.002 c:\windows\system32\28463\GWBH.005 c:\windows\system32\28463\GWBH.006 c:\windows\system32\28463\GWBH.007 . ---- Previous Run ------- . c:\dokumente und einstellungen\Administrator\Favoriten\Download programs.url c:\dokumente und einstellungen\Administrator\Favoriten\Games.url c:\dokumente und einstellungen\Administrator\Favoriten\Translator.url c:\dokumente und einstellungen\Administrator\Favoriten\Videos.url c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Download programs.url c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Games.url c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Translator.url c:\dokumente und einstellungen\Administrator\Startmenü\Programme\Videos.url C:\install.exe . ((((((((((((((((((((((((((((((((((((((( Treiber/Dienste ))))))))))))))))))))))))))))))))))))))))))))))))) . -------\Legacy_OREANS32 -------\Service_oreans32 ((((((((((((((((((((((( Dateien erstellt von 2008-11-28 bis 2008-12-29 )))))))))))))))))))))))))))))) . 2008-12-28 17:38 . 2008-12-28 17:38 <DIR> d-------- c:\programme\City Interactive 2008-12-26 23:21 . 2008-12-26 23:21 <DIR> d-------- c:\windows\uninstall\KnuddelsBot 2008-12-26 23:21 . 2008-12-26 23:27 <DIR> d-------- c:\programme\KnuddelsBot 2008-12-25 16:25 . 2008-12-25 16:26 <DIR> d-------- c:\programme\Oberon Media 2008-12-25 16:25 . 2008-12-25 16:25 <DIR> d-------- c:\programme\Gemeinsame Dateien\Oberon Media 2008-12-24 10:01 . 2008-12-24 10:01 <DIR> d-------- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\fretsonfire 2008-12-24 10:00 . 2008-12-24 10:01 <DIR> d-------- c:\programme\Frets on Fire 2008-12-22 22:14 . 2008-12-22 22:25 <DIR> d-------- c:\windows\system32\Adobe 2008-12-22 19:39 . 2008-12-29 15:41 <DIR> d-------- c:\programme\ICQ6.5 2008-12-22 11:04 . 2008-12-22 11:04 <DIR> d-------- c:\dokumente und einstellungen\All Users\Anwendungsdaten\Adobe Systems 2008-12-22 10:59 . 2008-12-22 10:59 <DIR> d-------- c:\programme\Gemeinsame Dateien\Adobe Systems Shared 2008-12-22 10:48 . 2008-12-22 10:48 <DIR> d-------- c:\programme\PHPNukeDE 2008-12-22 10:48 . 2008-12-22 10:48 <DIR> d-------- c:\programme\Conduit 2008-12-20 20:12 . 2008-12-20 20:12 <DIR> d-------- c:\programme\NCSoft 2008-12-20 13:34 . 2008-12-29 15:34 <DIR> d-------- c:\programme\HomepageTemplate 2008-12-18 19:45 . 2008-12-18 19:57 <DIR> d-------- C:\DVDVideoSoft 2008-12-18 19:44 . 2008-12-18 19:45 <DIR> d-------- c:\programme\Gemeinsame Dateien\DVDVideoSoft 2008-12-18 19:44 . 2008-12-18 19:44 <DIR> d-------- c:\programme\DVDVideoSoft 2008-12-17 14:29 . 2008-12-20 19:41 <DIR> d-------- c:\dokumente und einstellungen\LocalService\Anwendungsdaten\TeamViewer 2008-12-16 19:46 . 2008-12-16 19:46 <DIR> d-------- c:\windows\system32\config\systemprofile\Anwendungsdaten\TeamViewer 2008-12-16 19:46 . 2008-12-16 19:46 <DIR> d-------- c:\programme\TeamViewer 2008-12-14 15:46 . 2008-12-14 15:46 <DIR> d-------- c:\programme\No-IP 2008-12-14 14:36 . 2008-12-14 14:57 <DIR> d-------- C:\AppServ 2008-12-14 14:22 . 2008-12-14 14:24 <DIR> d-------- c:\programme\LuaEdit 2008-12-13 23:16 . 2008-12-13 23:16 <DIR> d-------- c:\programme\FlyFF PServer SDK 2008-12-12 17:35 . 2008-12-12 17:37 <DIR> d-------- C:\xampp 2008-12-12 17:21 . 2008-12-13 21:50 <DIR> d-------- c:\programme\PremiumSoft 2008-12-09 09:17 . 2008-12-09 09:17 0 --a------ c:\windows\system32\msexcr.ini 2008-12-08 21:23 . 2008-12-08 21:23 <DIR> d-------- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\McLoad 2008-12-07 13:30 . 2008-12-07 13:30 <DIR> d-------- c:\programme\ICQ6Toolbar 2008-12-07 13:30 . 2008-12-07 13:30 <DIR> d-------- c:\dokumente und einstellungen\All Users\Anwendungsdaten\ICQ 2008-12-05 20:35 . 2008-12-05 20:35 <DIR> d-------- c:\programme\NEXON 2008-12-05 14:57 . 2008-12-05 14:57 <DIR> d-------- c:\temp\MTGOInstall 2008-12-05 14:57 . 2008-12-20 09:18 <DIR> d-------- C:\Temp 2008-12-05 14:53 . 2008-12-05 20:29 <DIR> d-------- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Wizards of the Coast 2008-12-05 14:52 . 2008-12-05 20:29 <DIR> d-------- c:\programme\Wizards of the Coast 2008-12-04 21:04 . 2008-12-04 21:18 <DIR> d-------- c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Teeworlds 2008-12-04 17:04 . 2008-12-04 17:04 <DIR> d-------- C:\left 4 dead . (((((((((((((((((((((((((((((((((((( Find3M Bericht )))))))))))))))))))))))))))))))))))))))))))))))))))))) . 2008-12-29 16:36 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Skype 2008-12-29 16:35 --------- d-----w c:\programme\lg_fwupdate 2008-12-29 16:35 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\OpenOffice.org2 2008-12-29 16:35 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Hamachi 2008-12-29 14:34 --------- d-----w c:\programme\Steam 2008-12-29 14:29 --------- d--h--w c:\programme\InstallShield Installation Information 2008-12-28 20:45 --------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\AntiVir PersonalEdition Classic 2008-12-26 12:21 --------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\TrackMania 2008-12-26 08:58 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\teamspeak2 2008-12-25 15:25 --------- d---a-w c:\dokumente und einstellungen\All Users\Anwendungsdaten\TEMP 2008-12-23 09:07 --------- d-----w c:\programme\World of Warcraft 2008-12-22 10:00 --------- d-----w c:\programme\Gemeinsame Dateien\Adobe 2008-12-20 19:11 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\GetRightToGo 2008-12-20 11:33 2,199,873 ----a-w c:\programme\Co4GM-v2.0.1.rar 2008-12-14 10:27 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\TeamViewer 2008-12-07 12:29 --------- d-----w c:\programme\ICQ6 2008-12-05 19:30 --------- d-----w c:\programme\Cheat Engine 2008-11-27 21:58 --------- d-----w c:\programme\ICQToolbar 2008-11-21 18:41 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Dreamlords 2008-11-21 18:40 --------- d-----w c:\programme\OpenAL 2008-11-20 06:10 --------- d-----w c:\programme\gPotato.eu 2008-11-15 08:02 --------- d-----w c:\programme\MobMapUpdater 2008-11-15 08:02 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\MobMapUpdater 2008-11-13 18:41 --------- d-----w c:\dokumente und einstellungen\All Users\Anwendungsdaten\Blizzard 2008-11-13 09:36 --------- d-----w c:\programme\Gemeinsame Dateien\Blizzard Entertainment 2008-11-08 17:06 --------- d-----w c:\dokumente und einstellungen\Administrator\Anwendungsdaten\LimeWire 2008-11-06 21:53 --------- d-----w c:\programme\Google 2008-11-02 20:26 --------- d-----w c:\programme\Gameforge4D 2008-11-01 17:21 30 ----a-w c:\dokumente und einstellungen\Administrator\jagex_runescape_preferences.dat 2008-10-30 21:43 --------- d-----w c:\programme\GatheringRO 2008-09-25 18:19 92,064 ----a-w c:\dokumente und einstellungen\Administrator\mqdmmdm.sys 2008-09-25 18:19 9,232 ----a-w c:\dokumente und einstellungen\Administrator\mqdmmdfl.sys 2008-09-25 18:19 79,328 ----a-w c:\dokumente und einstellungen\Administrator\mqdmserd.sys 2008-09-25 18:19 66,656 ----a-w c:\dokumente und einstellungen\Administrator\mqdmbus.sys 2008-09-25 18:19 6,208 ----a-w c:\dokumente und einstellungen\Administrator\mqdmcmnt.sys 2008-09-25 18:19 5,936 ----a-w c:\dokumente und einstellungen\Administrator\mqdmwhnt.sys 2008-09-25 18:19 4,048 ----a-w c:\dokumente und einstellungen\Administrator\mqdmcr.sys 2008-09-25 18:19 25,600 ----a-w c:\dokumente und einstellungen\Administrator\usbsermptxp.sys 2008-09-25 18:19 22,768 ----a-w c:\dokumente und einstellungen\Administrator\usbsermpt.sys 2007-02-24 14:04 164 ----a-w c:\programme\Launcher.cfg 2007-02-24 14:02 106,496 ----a-w c:\programme\hl2.exe 2004-10-01 13:00 40,960 ----a-w c:\programme\Uninstall_CDS.exe 2004-07-22 09:51 3,432,656 ----a-w c:\programme\ManagedDX.CAB 2004-07-19 21:58 1,156,363 ----a-w c:\programme\BDANT.cab 2004-07-19 21:53 976,020 ----a-w c:\programme\BDAXP.cab 2004-07-09 13:17 13,265,040 ----a-w c:\programme\dxnt.cab 2004-07-09 08:13 703,080 ----a-w c:\programme\BDA.cab 2004-07-09 08:13 15,493,481 ----a-w c:\programme\DirectX.cab 2004-07-09 03:08 472,576 ----a-w c:\programme\dxsetup.exe 2004-07-09 03:08 2,242,560 ----a-w c:\programme\dsetup32.dll 2004-07-09 02:03 62,976 ----a-w c:\programme\DSETUP.dll 2008-09-05 20:44 56 --sh--r c:\windows\system32\ACFE7F9364.sys 2008-09-05 20:44 952 --sha-w c:\windows\system32\KGyGaAvL.sys 2008-07-01 12:06 477 --sha-w c:\windows\system32\system_res\klog.dat . ((((((((((((((((((((((((((((( snapshot@2008-07-07_14.53.21.06 ))))))))))))))))))))))))))))))))))))))))) . + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB938464\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB938464\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB938464\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB938464\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB938464\update\updspapi.dll + 2008-05-02 13:30:48 83,968 ----a-w c:\windows\$hf_mig$\KB946648\SP2QFE\msgsc.dll + 2008-05-02 14:01:49 83,968 ----a-w c:\windows\$hf_mig$\KB946648\SP3GDR\msgsc.dll + 2008-05-02 13:42:20 83,968 ----a-w c:\windows\$hf_mig$\KB946648\SP3QFE\msgsc.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB946648\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB946648\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB946648\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB946648\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB946648\update\updspapi.dll + 2008-07-07 20:16:43 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP2QFE\es.dll + 2008-07-07 20:26:58 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP3GDR\es.dll + 2008-07-07 20:23:19 253,952 ----a-w c:\windows\$hf_mig$\KB950974\SP3QFE\es.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB950974\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB950974\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB950974\update\spcustom.dll + 2007-11-30 12:39:08 765,304 ----a-w c:\windows\$hf_mig$\KB950974\update\update.exe + 2007-11-30 12:39:08 388,984 ----a-w c:\windows\$hf_mig$\KB950974\update\updspapi.dll + 2008-04-11 18:40:03 683,520 ----a-w c:\windows\$hf_mig$\KB951066\SP2QFE\inetcomm.dll + 2008-04-11 19:04:24 691,712 ----a-w c:\windows\$hf_mig$\KB951066\SP3GDR\inetcomm.dll + 2008-04-11 22:22:58 691,712 ----a-w c:\windows\$hf_mig$\KB951066\SP3QFE\inetcomm.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB951066\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB951066\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB951066\update\spcustom.dll + 2007-12-03 15:25:25 765,304 ----a-w c:\windows\$hf_mig$\KB951066\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB951066\update\updspapi.dll + 2008-07-14 11:03:00 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP2QFE\tzchange.exe + 2008-07-11 12:42:28 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP3GDR\tzchange.exe + 2008-07-11 12:51:51 62,976 ----a-w c:\windows\$hf_mig$\KB951072-v2\SP3QFE\tzchange.exe + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB951072-v2\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB951072-v2\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB951072-v2\update\spcustom.dll + 2007-11-30 12:39:14 765,304 ----a-w c:\windows\$hf_mig$\KB951072-v2\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB951072-v2\update\updspapi.dll + 2006-08-16 12:13:36 100,352 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\6to4svc.dll + 2008-06-20 10:44:08 138,368 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\afd.sys + 2008-06-20 17:36:12 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\dnsapi.dll + 2008-06-20 17:36:12 247,296 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\mswsock.dll + 2008-06-20 10:44:42 360,960 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip.sys + 2008-06-20 09:32:39 225,920 ----a-w c:\windows\$hf_mig$\KB951748\SP2QFE\tcpip6.sys + 2008-06-20 11:40:08 138,496 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\afd.sys + 2008-06-20 17:46:10 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\dnsapi.dll + 2008-06-20 17:46:10 247,296 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\mswsock.dll + 2008-06-20 11:51:12 361,600 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip.sys + 2008-06-20 11:08:27 225,856 ----a-w c:\windows\$hf_mig$\KB951748\SP3GDR\tcpip6.sys + 2008-06-20 11:48:03 138,496 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\afd.sys + 2008-06-20 17:43:49 147,968 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\dnsapi.dll + 2008-06-20 17:43:49 247,296 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\mswsock.dll + 2008-06-20 11:59:02 361,600 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip.sys + 2008-06-20 11:16:44 225,856 ----a-w c:\windows\$hf_mig$\KB951748\SP3QFE\tcpip6.sys + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB951748\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB951748\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB951748\update\spcustom.dll + 2007-11-30 12:39:08 765,304 ----a-w c:\windows\$hf_mig$\KB951748\update\update.exe + 2007-11-30 12:39:08 388,984 ----a-w c:\windows\$hf_mig$\KB951748\update\updspapi.dll + 2008-05-01 15:04:02 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP2QFE\msadce.dll + 2008-05-01 14:34:52 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP3GDR\msadce.dll + 2008-05-01 14:38:50 331,776 ----a-w c:\windows\$hf_mig$\KB952287\SP3QFE\msadce.dll + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB952287\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB952287\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB952287\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB952287\update\update.exe + 2007-11-30 11:18:35 388,984 ----a-w c:\windows\$hf_mig$\KB952287\update\updspapi.dll + 2008-06-24 16:30:04 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP2QFE\mscms.dll + 2008-06-24 16:42:48 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP3GDR\mscms.dll + 2008-06-24 16:53:23 74,240 ----a-w c:\windows\$hf_mig$\KB952954\SP3QFE\mscms.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB952954\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB952954\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB952954\update\spcustom.dll + 2007-11-30 12:39:14 765,304 ----a-w c:\windows\$hf_mig$\KB952954\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB952954\update\updspapi.dll + 2008-06-23 15:10:11 3,088,384 ----a-w c:\windows\$hf_mig$\KB953838\SP3GDR\mshtml.dll + 2008-06-26 08:12:40 1,499,136 ----a-w c:\windows\$hf_mig$\KB953838\SP3GDR\shdocvw.dll + 2008-06-26 08:12:40 620,544 ----a-w c:\windows\$hf_mig$\KB953838\SP3GDR\urlmon.dll + 2008-06-23 15:10:12 671,744 ----a-w c:\windows\$hf_mig$\KB953838\SP3GDR\wininet.dll + 2008-06-25 04:25:06 3,088,896 ----a-w c:\windows\$hf_mig$\KB953838\SP3QFE\mshtml.dll + 2008-06-26 08:00:06 1,499,136 ----a-w c:\windows\$hf_mig$\KB953838\SP3QFE\shdocvw.dll + 2008-06-26 08:00:06 620,544 ----a-w c:\windows\$hf_mig$\KB953838\SP3QFE\urlmon.dll + 2008-06-23 14:55:04 672,256 ----a-w c:\windows\$hf_mig$\KB953838\SP3QFE\wininet.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB953838\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB953838\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB953838\update\spcustom.dll + 2007-11-30 12:39:08 765,304 ----a-w c:\windows\$hf_mig$\KB953838\update\update.exe + 2007-11-30 12:39:08 388,984 ----a-w c:\windows\$hf_mig$\KB953838\update\updspapi.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB953839\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB953839\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB953839\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB953839\update\update.exe + 2007-11-30 11:18:35 388,984 ----a-w c:\windows\$hf_mig$\KB953839\update\updspapi.dll + 2008-09-15 15:13:09 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP2QFE\win32k.sys + 2008-09-15 15:24:02 1,846,528 ----a-w c:\windows\$hf_mig$\KB954211\SP3GDR\win32k.sys + 2008-09-15 15:18:58 1,847,040 ----a-w c:\windows\$hf_mig$\KB954211\SP3QFE\win32k.sys + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB954211\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB954211\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB954211\update\spcustom.dll + 2008-07-09 07:37:08 765,304 ----a-w c:\windows\$hf_mig$\KB954211\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB954211\update\updspapi.dll + 2008-09-04 16:32:51 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP2QFE\msxml3.dll + 2008-09-04 17:15:03 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3GDR\msxml3.dll + 2008-09-04 17:10:27 1,106,944 ----a-w c:\windows\$hf_mig$\KB955069\SP3QFE\msxml3.dll + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB955069\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB955069\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB955069\update\spcustom.dll + 2007-11-30 12:39:14 765,304 ----a-w c:\windows\$hf_mig$\KB955069\update\update.exe + 2008-07-09 12:07:18 388,984 ----a-w c:\windows\$hf_mig$\KB955069\update\updspapi.dll + 2008-08-20 05:08:58 3,088,896 ----a-w c:\windows\$hf_mig$\KB956390\SP3GDR\mshtml.dll + 2008-08-20 05:08:54 1,499,136 ----a-w c:\windows\$hf_mig$\KB956390\SP3GDR\shdocvw.dll + 2008-08-20 05:08:55 620,544 ----a-w c:\windows\$hf_mig$\KB956390\SP3GDR\urlmon.dll + 2008-08-20 05:08:55 671,744 ----a-w c:\windows\$hf_mig$\KB956390\SP3GDR\wininet.dll + 2008-08-20 05:06:50 3,088,896 ----a-w c:\windows\$hf_mig$\KB956390\SP3QFE\mshtml.dll + 2008-08-20 05:06:46 1,499,136 ----a-w c:\windows\$hf_mig$\KB956390\SP3QFE\shdocvw.dll + 2008-08-20 05:06:47 621,056 ----a-w c:\windows\$hf_mig$\KB956390\SP3QFE\urlmon.dll + 2008-08-20 05:06:47 672,256 ----a-w c:\windows\$hf_mig$\KB956390\SP3QFE\wininet.dll + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB956390\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB956390\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB956390\update\spcustom.dll + 2007-11-30 12:39:14 765,304 ----a-w c:\windows\$hf_mig$\KB956390\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB956390\update\updspapi.dll + 2007-11-30 12:39:14 18,808 ----a-w c:\windows\$hf_mig$\KB956391\spmsg.dll + 2007-11-30 12:39:14 234,872 ----a-w c:\windows\$hf_mig$\KB956391\spuninst.exe + 2007-11-30 12:39:14 26,488 ----a-w c:\windows\$hf_mig$\KB956391\update\spcustom.dll + 2007-11-30 12:39:14 765,304 ----a-w c:\windows\$hf_mig$\KB956391\update\update.exe + 2007-11-30 12:39:15 388,984 ----a-w c:\windows\$hf_mig$\KB956391\update\updspapi.dll + 2008-08-14 09:48:52 138,368 ----a-w c:\windows\$hf_mig$\KB956803\SP2QFE\afd.sys + 2008-08-14 10:04:36 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3GDR\afd.sys + 2008-08-14 10:34:26 138,496 ----a-w c:\windows\$hf_mig$\KB956803\SP3QFE\afd.sys + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB956803\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB956803\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB956803\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB956803\update\update.exe + 2007-11-30 11:18:35 388,984 ----a-w c:\windows\$hf_mig$\KB956803\update\updspapi.dll + 2008-08-14 13:35:13 2,145,280 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlmp.exe + 2008-08-14 13:36:00 2,065,280 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrnlpa.exe + 2008-08-14 13:35:12 2,023,424 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntkrpamp.exe + 2008-08-14 13:36:00 2,188,288 ----a-w c:\windows\$hf_mig$\KB956841\SP2QFE\ntoskrnl.exe + 2008-08-14 13:19:42 2,147,840 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlmp.exe + 2008-08-14 13:19:48 2,068,352 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrnlpa.exe + 2008-08-14 13:19:43 2,026,496 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntkrpamp.exe + 2008-08-14 13:19:48 2,191,488 ----a-w c:\windows\$hf_mig$\KB956841\SP3GDR\ntoskrnl.exe + 2008-08-14 13:52:09 2,147,840 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlmp.exe + 2008-08-14 17:22:14 2,068,352 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrnlpa.exe + 2008-08-14 13:52:09 2,026,496 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntkrpamp.exe + 2008-08-14 17:22:14 2,191,488 ----a-w c:\windows\$hf_mig$\KB956841\SP3QFE\ntoskrnl.exe + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB956841\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB956841\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB956841\update\spcustom.dll + 2007-11-30 12:39:14 765,304 ----a-w c:\windows\$hf_mig$\KB956841\update\update.exe + 2008-07-09 07:37:16 388,984 ----a-w c:\windows\$hf_mig$\KB956841\update\updspapi.dll + 2008-08-28 10:35:33 333,056 ----a-w c:\windows\$hf_mig$\KB957095\SP2QFE\srv.sys + 2008-09-08 10:41:42 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3GDR\srv.sys + 2008-09-08 11:37:19 333,824 ----a-w c:\windows\$hf_mig$\KB957095\SP3QFE\srv.sys + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB957095\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB957095\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB957095\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB957095\update\update.exe + 2007-11-30 11:18:35 388,984 ----a-w c:\windows\$hf_mig$\KB957095\update\updspapi.dll + 2008-10-24 11:25:29 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP2QFE\mrxsmb.sys + 2008-10-24 11:21:09 455,296 ----a-w c:\windows\$hf_mig$\KB957097\SP3GDR\mrxsmb.sys + 2008-10-24 11:41:11 455,936 ----a-w c:\windows\$hf_mig$\KB957097\SP3QFE\mrxsmb.sys + 2008-07-08 13:00:44 18,808 ----a-w c:\windows\$hf_mig$\KB957097\spmsg.dll + 2008-07-08 13:00:44 234,872 ----a-w c:\windows\$hf_mig$\KB957097\spuninst.exe + 2008-07-08 13:00:44 26,488 ----a-w c:\windows\$hf_mig$\KB957097\update\spcustom.dll + 2008-07-08 13:00:47 765,304 ----a-w c:\windows\$hf_mig$\KB957097\update\update.exe + 2008-07-08 13:00:56 388,984 ----a-w c:\windows\$hf_mig$\KB957097\update\updspapi.dll + 2008-10-15 16:35:02 337,408 ----a-w c:\windows\$hf_mig$\KB958644\SP3GDR\netapi32.dll + 2008-10-15 16:26:12 339,456 ----a-w c:\windows\$hf_mig$\KB958644\SP3QFE\netapi32.dll + 2007-11-30 11:18:34 18,808 ----a-w c:\windows\$hf_mig$\KB958644\spmsg.dll + 2007-11-30 11:18:34 234,872 ----a-w c:\windows\$hf_mig$\KB958644\spuninst.exe + 2007-11-30 11:18:34 26,488 ----a-w c:\windows\$hf_mig$\KB958644\update\spcustom.dll + 2007-11-30 11:18:35 765,304 ----a-w c:\windows\$hf_mig$\KB958644\update\update.exe + 2007-11-30 11:18:35 388,984 ----a-w c:\windows\$hf_mig$\KB958644\update\updspapi.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB938464$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB938464$\spuninst\updspapi.dll + 2004-08-03 22:57:28 82,944 -c----w c:\windows\$NtUninstallKB946648$\msgsc.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB946648$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB946648$\spuninst\updspapi.dll + 2005-07-26 04:39:46 243,200 -c----w c:\windows\$NtUninstallKB950974$\es.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB950974$\spuninst\spuninst.exe + 2007-11-30 12:39:08 388,984 -c----w c:\windows\$NtUninstallKB950974$\spuninst\updspapi.dll + 2007-08-21 06:16:14 683,520 -c----w c:\windows\$NtUninstallKB951066$\inetcomm.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB951066$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB951066$\spuninst\updspapi.dll + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB951072-v2$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB951072-v2$\spuninst\updspapi.dll + 2007-11-13 11:31:11 60,416 -c----w c:\windows\$NtUninstallKB951072-v2$\tzchange.exe + 2004-08-03 21:14:16 138,496 -c----w c:\windows\$NtUninstallKB951748$\afd.sys + 2008-02-20 05:33:54 148,992 -c----w c:\windows\$NtUninstallKB951748$\dnsapi.dll + 2004-08-03 22:57:30 247,296 -c----w c:\windows\$NtUninstallKB951748$\mswsock.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB951748$\spuninst\spuninst.exe + 2007-11-30 12:39:08 388,984 -c----w c:\windows\$NtUninstallKB951748$\spuninst\updspapi.dll + 2007-10-30 17:20:55 360,064 -c----w c:\windows\$NtUninstallKB951748$\tcpip.sys + 2006-08-16 09:37:30 225,664 -c----w c:\windows\$NtUninstallKB951748$\tcpip6.sys + 2004-08-03 22:57:26 331,776 -c----w c:\windows\$NtUninstallKB952287$\msadce.dll + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB952287$\spuninst\spuninst.exe + 2007-11-30 11:18:35 388,984 -c----w c:\windows\$NtUninstallKB952287$\spuninst\updspapi.dll + 2005-06-29 01:49:39 74,240 -c----w c:\windows\$NtUninstallKB952954$\mscms.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB952954$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB952954$\spuninst\updspapi.dll + 2008-04-21 06:56:20 1,024,000 -c----w c:\windows\$NtUninstallKB953838$\browseui.dll + 2008-04-21 06:56:20 152,064 -c----w c:\windows\$NtUninstallKB953838$\cdfview.dll + 2008-04-21 06:56:21 1,056,256 -c----w c:\windows\$NtUninstallKB953838$\danim.dll + 2008-04-21 06:56:21 357,888 -c----w c:\windows\$NtUninstallKB953838$\dxtmsft.dll + 2008-04-21 06:56:21 205,312 -c----w c:\windows\$NtUninstallKB953838$\dxtrans.dll + 2008-04-21 06:56:21 55,808 -c----w c:\windows\$NtUninstallKB953838$\extmgr.dll + 2008-04-17 10:46:59 18,432 -c----w c:\windows\$NtUninstallKB953838$\iedw.exe + 2008-04-21 06:56:21 251,904 -c----w c:\windows\$NtUninstallKB953838$\iepeers.dll + 2008-04-21 06:56:22 96,768 -c----w c:\windows\$NtUninstallKB953838$\inseng.dll + 2008-04-21 06:56:22 16,384 -c----w c:\windows\$NtUninstallKB953838$\jsproxy.dll + 2008-04-21 06:56:25 3,087,872 -c----w c:\windows\$NtUninstallKB953838$\mshtml.dll + 2008-04-21 06:56:26 449,024 -c----w c:\windows\$NtUninstallKB953838$\mshtmled.dll + 2008-04-21 06:56:26 146,432 -c----w c:\windows\$NtUninstallKB953838$\msrating.dll + 2008-04-21 06:56:26 532,480 -c----w c:\windows\$NtUninstallKB953838$\mstime.dll + 2008-04-21 06:56:26 39,424 -c----w c:\windows\$NtUninstallKB953838$\pngfilt.dll + 2008-04-21 06:56:27 1,499,136 -c----w c:\windows\$NtUninstallKB953838$\shdocvw.dll + 2008-04-21 06:56:28 474,624 -c----w c:\windows\$NtUninstallKB953838$\shlwapi.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB953838$\spuninst\spuninst.exe + 2007-11-30 12:39:08 388,984 -c----w c:\windows\$NtUninstallKB953838$\spuninst\updspapi.dll + 2008-04-21 06:56:29 620,544 -c----w c:\windows\$NtUninstallKB953838$\urlmon.dll + 2008-04-21 06:56:30 672,256 -c----w c:\windows\$NtUninstallKB953838$\wininet.dll + 2008-04-17 11:03:46 374,272 -c----w c:\windows\$NtUninstallKB953838$\xpsp3res.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB953839$\spuninst\spuninst.exe + 2007-11-30 11:18:35 388,984 -c----w c:\windows\$NtUninstallKB953839$\spuninst\updspapi.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB954211$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB954211$\spuninst\updspapi.dll + 2008-03-20 08:03:19 1,845,376 -c----w c:\windows\$NtUninstallKB954211$\win32k.sys + 2007-06-26 06:08:37 1,104,896 -c----w c:\windows\$NtUninstallKB955069$\msxml3.dll + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB955069$\spuninst\spuninst.exe + 2008-07-09 12:07:18 388,984 -c----w c:\windows\$NtUninstallKB955069$\spuninst\updspapi.dll + 2008-06-23 16:14:22 1,024,000 -c----w c:\windows\$NtUninstallKB956390$\browseui.dll + 2008-06-23 16:14:22 152,064 -c----w c:\windows\$NtUninstallKB956390$\cdfview.dll + 2008-06-23 16:14:23 1,056,256 -c----w c:\windows\$NtUninstallKB956390$\danim.dll + 2008-06-23 16:14:24 357,888 -c----w c:\windows\$NtUninstallKB956390$\dxtmsft.dll + 2008-06-23 16:14:24 205,312 -c----w c:\windows\$NtUninstallKB956390$\dxtrans.dll + 2008-06-23 16:14:24 55,808 -c----w c:\windows\$NtUninstallKB956390$\extmgr.dll + 2008-06-23 09:53:58 18,432 -c----w c:\windows\$NtUninstallKB956390$\iedw.exe + 2008-06-23 16:14:24 251,904 -c----w c:\windows\$NtUninstallKB956390$\iepeers.dll + 2008-06-23 16:14:24 96,768 -c----w c:\windows\$NtUninstallKB956390$\inseng.dll + 2008-06-23 16:14:24 16,384 -c----w c:\windows\$NtUninstallKB956390$\jsproxy.dll + 2008-06-23 16:14:28 3,088,384 -c----w c:\windows\$NtUninstallKB956390$\mshtml.dll + 2008-06-23 16:14:28 449,024 -c----w c:\windows\$NtUninstallKB956390$\mshtmled.dll + 2008-06-23 16:14:28 146,432 -c----w c:\windows\$NtUninstallKB956390$\msrating.dll + 2008-06-23 16:14:29 532,480 -c----w c:\windows\$NtUninstallKB956390$\mstime.dll + 2008-06-23 16:14:29 39,424 -c----w c:\windows\$NtUninstallKB956390$\pngfilt.dll + 2008-06-23 16:14:30 1,499,136 -c----w c:\windows\$NtUninstallKB956390$\shdocvw.dll + 2008-06-23 16:14:30 474,624 -c----w c:\windows\$NtUninstallKB956390$\shlwapi.dll + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB956390$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB956390$\spuninst\updspapi.dll + 2008-06-23 16:14:31 620,544 -c----w c:\windows\$NtUninstallKB956390$\urlmon.dll + 2008-06-23 16:14:31 672,768 -c----w c:\windows\$NtUninstallKB956390$\wininet.dll + 2008-07-03 09:42:35 374,272 -c----w c:\windows\$NtUninstallKB956390$\xpsp3res.dll + 2007-11-30 12:39:14 234,872 -c----w c:\windows\$NtUninstallKB956391$\spuninst\spuninst.exe + 2007-11-30 12:39:15 388,984 -c----w c:\windows\$NtUninstallKB956391$\spuninst\updspapi.dll + 2008-06-20 10:44:38 138,368 -c----w c:\windows\$NtUninstallKB956803$\afd.sys + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB956803$\spuninst\spuninst.exe + 2007-11-30 11:18:35 388,984 -c----w c:\windows\$NtUninstallKB956803$\spuninst\updspapi.dll + 2007-02-28 16:02:08 2,138,624 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlmp.exe + 2007-02-28 16:02:05 2,018,304 -c----w c:\windows\$NtUninstallKB956841$\ntkrnlpa.exe + 2007-02-28 16:02:05 2,018,304 -c----w c:\windows\$NtUninstallKB956841$\ntkrpamp.exe + 2007-02-28 16:02:08 2,138,624 -c----w c:\windows\$NtUninstallKB956841$\ntoskrnl.exe + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB956841$\spuninst\spuninst.exe + 2008-07-09 07:37:16 388,984 -c----w c:\windows\$NtUninstallKB956841$\spuninst\updspapi.dll + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB957095$\spuninst\spuninst.exe + 2007-11-30 11:18:35 388,984 -c----w c:\windows\$NtUninstallKB957095$\spuninst\updspapi.dll + 2006-08-14 10:34:41 332,928 -c----w c:\windows\$NtUninstallKB957095$\srv.sys + 2006-05-05 09:41:45 453,120 -c----w c:\windows\$NtUninstallKB957097$\mrxsmb.sys + 2008-07-08 13:00:44 234,872 -c----w c:\windows\$NtUninstallKB957097$\spuninst\spuninst.exe + 2008-07-08 13:00:56 388,984 -c----w c:\windows\$NtUninstallKB957097$\spuninst\updspapi.dll + 2006-08-17 12:41:25 337,408 -c----w c:\windows\$NtUninstallKB958644$\netapi32.dll + 2007-11-30 11:18:34 234,872 -c----w c:\windows\$NtUninstallKB958644$\spuninst\spuninst.exe + 2007-11-30 11:18:35 388,984 -c----w c:\windows\$NtUninstallKB958644$\spuninst\updspapi.dll + 2006-11-02 05:22:52 51,680 -c----w c:\windows\$NtUninstallWdf01005$\spuninst\Kmdfcustom.dll + 2006-10-08 19:51:14 221,488 -c----w c:\windows\$NtUninstallWdf01005$\spuninst\spuninst.exe + 2006-10-08 19:51:14 379,184 -c----w c:\windows\$NtUninstallWdf01005$\spuninst\updspapi.dll + 2008-10-27 16:23:23 100,888 ----a-w c:\windows\.jagex_cache_32\loginapplet\cache--1999123318.dat + 2008-07-10 11:41:36 315,392 ----a-w c:\windows\.jagex_cache_32\runescape\browsercontrol.dll + 2008-11-01 17:21:13 315,392 ----a-w c:\windows\.jagex_cache_32\runescape\jogl.dll + 2008-11-01 17:21:13 20,480 ----a-w c:\windows\.jagex_cache_32\runescape\jogl_awt.dll + 2008-07-12 15:40:37 7,680 ----a-w c:\windows\assembly\GAC\Accessibility\1.0.5000.0__b03f5f7f11d50a3a\Accessibility.dll + 2008-07-12 15:40:32 12,288 ----a-w c:\windows\assembly\GAC\cscompmgd\7.0.5000.0__b03f5f7f11d50a3a\cscompmgd.dll + 2008-07-12 15:40:38 33,792 ----a-w c:\windows\assembly\GAC\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a\CustomMarshalers.dll + 2008-07-13 10:04:35 8,192 ----a-w c:\windows\assembly\GAC\IEExecRemote\1.0.5000.0__b03f5f7f11d50a3a\IEExecRemote.dll + 2008-07-13 10:04:36 32,768 ----a-w c:\windows\assembly\GAC\IEHost\1.0.5000.0__b03f5f7f11d50a3a\IEHost.dll + 2008-07-12 15:40:39 4,608 ----a-w c:\windows\assembly\GAC\IIEHost\1.0.5000.0__b03f5f7f11d50a3a\IIEHost.dll + 2008-07-12 15:40:39 26,112 ----a-w c:\windows\assembly\GAC\ISymWrapper\1.0.5000.0__b03f5f7f11d50a3a\ISymWrapper.dll - 2007-11-24 07:21:09 53,248 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll + 2008-12-05 13:57:53 53,248 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll - 2007-11-24 07:21:10 12,800 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll + 2008-12-05 13:57:54 12,800 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll - 2007-11-24 07:21:10 473,600 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll + 2008-12-05 13:57:54 473,600 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll - 2007-11-24 07:21:04 2,676,224 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:48 2,676,224 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:05 2,846,720 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:49 2,846,720 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:05 563,712 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:49 563,712 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:06 567,296 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:50 567,296 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:06 576,000 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:51 576,000 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:07 577,024 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:51 577,024 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:07 577,536 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:52 577,536 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:08 577,536 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-12-05 13:57:54 577,536 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:08 578,560 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-21 18:40:19 578,560 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:10 578,560 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll + 2008-11-21 18:40:21 578,560 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll - 2007-11-24 07:21:10 145,920 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll + 2008-12-05 13:57:54 145,920 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll - 2007-11-24 07:21:11 159,232 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll + 2008-12-05 13:57:55 159,232 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll - 2007-11-24 07:21:11 364,544 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll + 2008-12-05 13:57:55 364,544 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll - 2007-11-24 07:21:11 178,176 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll + 2008-12-05 13:57:55 178,176 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll - 2007-11-24 07:21:09 223,232 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll + 2008-12-05 13:57:52 223,232 ----a-w c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll + 2008-07-13 10:04:45 720,896 ----a-w c:\windows\assembly\GAC\Microsoft.JScript\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.JScript.dll + 2008-07-12 15:40:32 28,672 ----a-w c:\windows\assembly\GAC\Microsoft.VisualBasic.Vsa\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.Vsa.dll + 2008-07-13 10:04:37 299,008 ----a-w c:\windows\assembly\GAC\Microsoft.VisualBasic\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualBasic.dll + 2008-07-12 15:40:33 6,144 ----a-w c:\windows\assembly\GAC\Microsoft.VisualC\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.VisualC.dll + 2008-07-12 15:40:32 11,264 ----a-w c:\windows\assembly\GAC\Microsoft.Vsa.Vb.CodeDOMProcessor\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.Vsa.Vb.CodeDOMProcessor.dll + 2008-07-12 15:40:32 32,768 ----a-w c:\windows\assembly\GAC\Microsoft.Vsa\7.0.5000.0__b03f5f7f11d50a3a\Microsoft.Vsa.dll + 2008-07-12 15:40:32 6,656 ----a-w c:\windows\assembly\GAC\Microsoft_VsaVb\7.0.5000.0__b03f5f7f11d50a3a\Microsoft_VsaVb.dll + 2008-07-12 15:40:39 1,564,672 ----a-w c:\windows\assembly\GAC\mscorcfg\1.0.5000.0__b03f5f7f11d50a3a\mscorcfg.dll + 2008-07-13 10:04:42 32,768 ----a-w c:\windows\assembly\GAC\Regcode\1.0.5000.0__b03f5f7f11d50a3a\RegCode.dll + 2008-07-12 15:40:39 77,824 ----a-w c:\windows\assembly\GAC\System.Configuration.Install\1.0.5000.0__b03f5f7f11d50a3a\System.Configuration.Install.dll + 2008-07-13 10:04:39 303,104 ----a-w c:\windows\assembly\GAC\System.Data.OracleClient\1.0.5000.0__b77a5c561934e089\System.Data.OracleClient.dll + 2008-07-13 10:04:42 1,294,336 ----a-w c:\windows\assembly\GAC\System.Data\1.0.5000.0__b77a5c561934e089\System.Data.dll + 2008-07-13 10:04:35 1,703,936 ----a-w c:\windows\assembly\GAC\System.Design\1.0.5000.0__b03f5f7f11d50a3a\System.Design.dll + 2008-07-13 10:04:44 90,112 ----a-w c:\windows\assembly\GAC\System.DirectoryServices\1.0.5000.0__b03f5f7f11d50a3a\System.DirectoryServices.dll + 2008-07-12 15:40:40 65,536 ----a-w c:\windows\assembly\GAC\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.Design.dll + 2008-07-13 10:04:39 466,944 ----a-w c:\windows\assembly\GAC\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a\System.Drawing.dll + 2008-07-13 10:04:37 241,664 ----a-w c:\windows\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll + 2008-07-13 10:04:37 66,560 ----a-w c:\windows\assembly\GAC\System.EnterpriseServices\1.0.5000.0__b03f5f7f11d50a3a\System.EnterpriseServices.Thunk.dll + 2008-07-13 10:04:41 372,736 ----a-w c:\windows\assembly\GAC\System.Management\1.0.5000.0__b03f5f7f11d50a3a\System.Management.dll + 2008-07-13 10:04:45 241,664 ----a-w c:\windows\assembly\GAC\System.Messaging\1.0.5000.0__b03f5f7f11d50a3a\System.Messaging.dll + 2008-07-13 10:04:40 323,584 ----a-w c:\windows\assembly\GAC\System.Runtime.Remoting\1.0.5000.0__b77a5c561934e089\System.Runtime.Remoting.dll + 2008-07-13 10:04:38 131,072 ----a-w c:\windows\assembly\GAC\System.Runtime.Serialization.Formatters.Soap\1.0.5000.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Formatters.Soap.dll + 2008-07-13 10:04:39 77,824 ----a-w c:\windows\assembly\GAC\System.Security\1.0.5000.0__b03f5f7f11d50a3a\System.Security.dll + 2008-07-13 10:04:43 126,976 ----a-w c:\windows\assembly\GAC\System.ServiceProcess\1.0.5000.0__b03f5f7f11d50a3a\System.ServiceProcess.dll + 2008-07-13 10:04:34 819,200 ----a-w c:\windows\assembly\GAC\System.Web.Mobile\1.0.5000.0__b03f5f7f11d50a3a\System.Web.Mobile.dll + 2008-07-13 10:04:37 57,344 ----a-w c:\windows\assembly\GAC\System.Web.RegularExpressions\1.0.5000.0__b03f5f7f11d50a3a\System.Web.RegularExpressions.dll + 2008-07-13 10:04:36 573,440 ----a-w c:\windows\assembly\GAC\System.Web.Services\1.0.5000.0__b03f5f7f11d50a3a\System.Web.Services.dll + 2008-07-14 10:09:27 1,265,664 ----a-w c:\windows\assembly\GAC\System.Web\1.0.5000.0__b03f5f7f11d50a3a\System.Web.dll + 2008-07-13 10:04:38 2,052,096 ----a-w c:\windows\assembly\GAC\System.Windows.Forms\1.0.5000.0__b77a5c561934e089\System.Windows.Forms.dll + 2008-07-13 10:04:41 1,339,392 ----a-w c:\windows\assembly\GAC\System.Xml\1.0.5000.0__b77a5c561934e089\System.XML.dll + 2008-07-14 10:09:35 1,232,896 ----a-w c:\windows\assembly\GAC\System\1.0.5000.0__b77a5c561934e089\System.dll + 2008-07-14 10:10:55 61,440 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_35eb0632\CustomMarshalers.dll + 2008-07-14 10:12:52 118,784 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\CustomMarshalers\1.0.5000.0__b03f5f7f11d50a3a_79bfccf9\CustomMarshalers.dll + 2008-07-14 10:13:59 8,908,800 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_6071840d\mscorlib.dll + 2008-07-14 10:12:26 3,391,488 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\mscorlib\1.0.5000.0__b77a5c561934e089_a4093aca\mscorlib.dll + 2008-07-14 10:12:09 1,470,464 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_ab1a1fc7\System.Design.dll + 2008-07-14 10:13:40 3,395,584 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Design\1.0.5000.0__b03f5f7f11d50a3a_b6cbb540\System.Design.dll + 2008-07-14 10:11:04 90,112 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_66c5217a\System.Drawing.Design.dll + 2008-07-14 10:12:54 192,512 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing.Design\1.0.5000.0__b03f5f7f11d50a3a_e73c352d\System.Drawing.Design.dll + 2008-07-14 10:12:17 835,584 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_27289fd3\System.Drawing.dll + 2008-07-14 10:13:46 2,244,608 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Drawing\1.0.5000.0__b03f5f7f11d50a3a_9055fa8d\System.Drawing.dll + 2008-07-14 10:11:27 3,018,752 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_66b84fec\System.Windows.Forms.dll + 2008-07-14 10:13:04 7,884,800 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Windows.Forms\1.0.5000.0__b77a5c561934e089_f762cf0b\System.Windows.Forms.dll + 2008-07-14 10:11:52 2,088,960 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_a9629cdb\System.Xml.dll + 2008-07-14 10:13:21 5,513,216 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System.Xml\1.0.5000.0__b77a5c561934e089_cd921081\System.Xml.dll + 2008-07-14 10:10:49 1,966,080 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_255ab6a6\System.dll + 2008-07-14 10:12:49 4,788,224 ----a-w c:\windows\assembly\NativeImages1_v1.1.4322\System\1.0.5000.0__b77a5c561934e089_57144706\System.dll + 2006-06-30 04:00:06 29,616 ----a-w c:\windows\Downloaded Program Files\dwusplay.dll + 2006-06-30 04:00:14 201,648 ----a-w c:\windows\Downloaded Program Files\dwusplay.exe + 2006-09-10 20:40:36 484,272 ----a-w c:\windows\Downloaded Program Files\isusweb.dll + 2008-08-21 15:17:04 271,800 ----a-w c:\windows\Downloaded Program Files\mhelper_e.exe + 2007-06-15 08:02:06 632,392 ----a-w c:\windows\Downloaded Program Files\OberonGameHost.dll - 2006-05-05 09:41:45 453,120 ------w c:\windows\Driver Cache\i386\mrxsmb.sys + 2008-10-24 11:10:42 453,632 ------w c:\windows\Driver Cache\i386\mrxsmb.sys - 2007-02-28 16:02:08 2,138,624 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe + 2008-08-14 13:42:27 2,138,624 ------w c:\windows\Driver Cache\i386\ntkrnlmp.exe - 2007-02-28 16:02:21 2,059,904 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe + 2008-08-14 13:42:30 2,060,032 ------w c:\windows\Driver Cache\i386\ntkrnlpa.exe - 2007-02-28 16:02:05 2,018,304 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe + 2008-08-14 13:42:26 2,018,304 ------w c:\windows\Driver Cache\i386\ntkrpamp.exe - 2007-02-28 16:02:21 2,182,656 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe + 2008-08-14 13:42:30 2,182,656 ------w c:\windows\Driver Cache\i386\ntoskrnl.exe - 2005-10-20 18:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE + 2005-10-20 19:02:28 163,328 ----a-w c:\windows\erdnt\Hiv-backup\ERDNT.EXE - 2005-10-20 18:02:28 163,328 ----a-w c:\windows\erdnt\subs\ERDNT.EXE + 2005-10-20 19:02:28 163,328 ----a-w c:\windows\erdnt\subs\ERDNT.EXE + 2007-03-22 16:07:56 91,488 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\ADDRPARS.DLL + 2007-04-19 11:09:30 167,256 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\IETAG.DLL + 2007-04-19 10:53:52 127,328 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\IMPMAIL.DLL + 2007-04-19 10:53:44 106,336 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\OUTLMIME.DLL + 2007-05-31 11:35:22 6,420,320 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\POWERPNT.EXE + 2007-03-22 16:07:10 41,824 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\RECALL.DLL + 2007-03-22 16:07:54 78,168 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\RM.DLL + 2007-03-22 16:22:02 103,264 ----a-r c:\windows\Installer\$PatchCache$\Managed\7040110900063D11C8EF10054038389C\11.0.8173\TRANSMGR.DLL + 2008-12-22 09:59:17 65,536 ----a-r c:\windows\Installer\{236BB7C4-4419-42FD-0407-2E257A25E34D}\NewShortcut1_236BB7C4441942FD04091E257A25E34D.exe + 2008-09-01 16:06:34 23,558 ----a-r c:\windows\Installer\{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}\_26e91eb.exe + 2008-11-12 11:00:26 32,768 ----a-r c:\windows\Installer\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}\icon.exe - 2008-06-11 21:45:11 593,920 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\accicons.exe + 2008-12-11 21:37:12 593,920 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\accicons.exe - 2008-06-11 21:45:11 12,288 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\cagicon.exe + 2008-12-11 21:37:12 12,288 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\cagicon.exe - 2008-06-11 21:45:11 86,016 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\inficon.exe + 2008-12-11 21:37:12 86,016 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\inficon.exe - 2008-06-11 21:45:11 135,168 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\misc.exe + 2008-12-11 21:37:11 135,168 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\misc.exe - 2008-06-11 21:45:11 11,264 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\mspicons.exe + 2008-12-11 21:37:12 11,264 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\mspicons.exe - 2008-06-11 21:45:11 27,136 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\oisicon.exe + 2008-12-11 21:37:12 27,136 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\oisicon.exe - 2008-06-11 21:45:11 4,096 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\opwicon.exe + 2008-12-11 21:37:12 4,096 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\opwicon.exe - 2008-06-11 21:45:11 794,624 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\outicon.exe + 2008-12-11 21:37:12 794,624 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\outicon.exe - 2008-06-11 21:45:11 249,856 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\pptico.exe + 2008-12-11 21:37:11 249,856 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\pptico.exe - 2008-06-11 21:45:11 61,440 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\pubs.exe + 2008-12-11 21:37:11 61,440 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\pubs.exe - 2008-06-11 21:45:11 23,040 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\unbndico.exe + 2008-12-11 21:37:12 23,040 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\unbndico.exe - 2008-06-11 21:45:10 286,720 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\wordicon.exe + 2008-12-11 21:37:11 286,720 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\wordicon.exe - 2008-06-11 21:45:10 409,600 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\xlicons.exe + 2008-12-11 21:37:11 409,600 ----a-r c:\windows\Installer\{90110407-6000-11D3-8CFE-0150048383C9}\xlicons.exe + 2008-09-01 16:07:26 23,558 ----a-r c:\windows\Installer\{9B34CAC6-738F-4A20-B428-A115C3E3474C}\_18be6784.exe + 2008-09-01 16:07:26 23,558 ----a-r c:\windows\Installer\{9B34CAC6-738F-4A20-B428-A115C3E3474C}\_294823.exe + 2008-09-01 16:07:26 23,558 ----a-r c:\windows\Installer\{9B34CAC6-738F-4A20-B428-A115C3E3474C}\_2cd672ae.exe + 2008-09-01 16:07:26 23,558 ----a-r c:\windows\Installer\{9B34CAC6-738F-4A20-B428-A115C3E3474C}\_4ae13d6c.exe + 2008-09-01 16:07:26 23,558 ----a-r c:\windows\Installer\{9B34CAC6-738F-4A20-B428-A115C3E3474C}\_69525f90.exe + 2008-09-22 07:27:51 126,976 ----a-r c:\windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\_SHCT_Sprint.exe.exe + 2008-09-22 07:27:51 126,976 ----a-r c:\windows\Installer\{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}\ARPPRODUCTICON.exe + 2008-07-31 14:19:18 21,630 ----a-r c:\windows\Installer\{B4D9F24E-C5C2-4B5E-A56D-8E13E0729C64}\_294823.exe + 2008-12-22 09:59:51 65,536 ----a-r c:\windows\Installer\{B74D4E10-6884-0000-0000-000000000101}\AdobeBridge_B74D4E10103300000000000000000001_1.exe + 2008-12-22 09:59:51 65,536 ----a-r c:\windows\Installer\{B74D4E10-6884-0000-0000-000000000101}\BridgeCommonShortcut_B74D4E101033000000000001_1.exe + 2008-12-22 09:59:51 1,904,640 ----a-r c:\windows\Installer\{B74D4E10-6884-0000-0000-000000000101}\ESLaunchShortcut_B74D4E10103300000000000000000001.exe + 2008-12-22 09:59:51 61,440 ----a-r c:\windows\Installer\{B74D4E10-6884-0000-0000-000000000101}\NewShortcut2_B74D4E10103300000000000000000001.exe + 2008-12-22 10:01:53 65,536 ----a-r c:\windows\Installer\{E9787678-119F-4D52-B551-6739B2B22101}\AppLanuchShortcut_E9787678103300008E67000000000001_1.exe + 2008-12-22 10:01:53 65,536 ----a-r c:\windows\Installer\{E9787678-119F-4D52-B551-6739B2B22101}\ProgramMenuShortcut_E9787678103300008E670000000001_1.exe + 2008-07-12 15:38:31 720,896 ----a-w c:\windows\iun6002ev.exe + 2003-02-21 00:59:44 16,896 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\alinkui.dll + 2003-02-21 01:55:06 94,208 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\cscompui.dll + 2003-02-21 01:02:16 131,072 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\vbc7ui.dll + 2003-02-21 03:04:20 155,648 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\1033\Vsavb7rtUI.dll + 2003-02-21 05:24:08 7,680 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Accessibility.dll + 2003-02-21 03:00:36 98,304 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\alink.dll + 2003-02-20 17:19:42 24,576 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_filter.dll + 2007-04-13 19:30:52 258,048 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll + 2003-02-20 17:19:22 40,960 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_rc.dll + 2004-07-14 23:49:18 20,480 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_regiis.exe + 2004-07-14 23:49:26 32,768 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe + 2007-04-13 19:30:52 32,768 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe + 2002-07-29 09:11:50 219,136 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\c_g18030.dll + 2003-02-21 05:24:10 94,208 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\CasPol.exe + 2003-02-21 05:24:32 49,152 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\ConfigWizards.exe + 2007-04-13 18:57:52 81,920 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll + 2004-07-15 09:23:28 49,152 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\csc.exe + 2004-07-15 09:23:44 626,688 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\cscomp.dll + 2003-02-21 05:24:34 12,288 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\cscompmgd.dll + 2003-02-21 05:24:36 33,792 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\CustomMarshalers.dll + 2003-02-21 02:12:24 28,672 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\cvtres.exe + 2003-02-21 08:21:40 524,288 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\diasymreader.dll + 2003-02-20 17:16:32 798,720 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\EventLogMessages.dll + 2004-07-14 22:24:30 282,624 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll + 2003-10-08 12:30:14 81,920 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\gacutil.exe + 2003-02-21 05:24:38 7,680 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExec.exe + 2004-07-15 12:31:00 8,192 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExecRemote.dll + 2004-07-15 12:31:04 32,768 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\IEHost.dll + 2003-02-21 05:24:40 4,608 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\IIEHost.dll + 2004-07-14 22:35:30 196,608 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\ilasm.exe + 2003-02-21 05:24:42 15,872 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\InstallUtil.exe + 2003-02-20 17:22:24 40,960 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\InstallUtilLib.dll + 2003-02-21 05:24:44 26,112 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\ISymWrapper.dll + 2003-02-21 05:24:52 40,960 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\jsc.exe + 2004-07-15 12:28:58 720,896 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.dll + 2004-07-15 12:28:56 299,008 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.dll + 2003-02-21 05:24:54 28,672 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.Vsa.dll + 2003-02-21 05:25:02 6,144 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualC.Dll + 2003-02-21 05:24:58 32,768 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.Vsa.dll + 2003-02-21 05:25:06 11,264 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.Vsa.Vb.CodeDOMProcessor.dll + 2003-02-21 05:25:02 6,656 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft_VsaVb.dll + 2004-07-15 12:28:50 49,152 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPol.exe + 2004-07-15 12:28:50 49,152 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPolWin.exe + 2003-02-21 05:25:06 1,564,672 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorcfg.dll + 2004-07-14 22:32:44 86,016 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbc.dll + 2004-07-14 22:32:46 233,472 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbi.dll + 2007-04-13 18:57:58 86,016 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorie.dll + 2007-04-13 18:56:30 315,392 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll + 2007-04-13 18:58:00 102,400 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll + 2007-04-13 18:50:46 2,142,208 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll + 2003-02-20 16:43:52 131,072 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscormmc.dll + 2003-02-20 17:06:34 65,536 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorpe.dll + 2004-07-14 22:33:22 143,360 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorrc.dll + 2004-07-14 22:33:24 81,920 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsec.dll + 2007-04-13 18:58:02 77,824 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsn.dll + 2007-04-13 18:57:00 2,523,136 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll + 2003-02-20 17:09:24 9,216 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscortim.dll + 2007-04-13 18:57:28 2,514,944 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll + 2003-02-21 02:42:22 348,160 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\msvcr71.dll + 2003-02-20 17:18:34 20,480 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\mtxoci8.dll + 2003-02-20 16:43:36 22,528 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\MUI\0409\mscorsecr.dll + 2007-01-15 14:11:26 73,728 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\netfxupdate.exe + 2003-02-20 17:09:46 73,728 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\ngen.exe + 2004-07-14 22:34:50 94,208 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll + 2003-02-21 05:25:24 28,672 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\RegAsm.exe + 2004-07-15 12:28:48 32,768 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\RegCode.dll + 2003-02-21 05:25:30 12,288 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\RegSvcs.exe + 2004-07-14 23:49:16 258,048 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_aspnet_isapi.dll + 2004-07-14 22:32:22 81,920 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_CORPerfMonExt.dll + 2004-07-14 22:24:30 282,624 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_fusion.dll + 2004-07-14 22:25:06 315,392 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_mscorjit.dll + 2004-07-15 12:29:02 2,138,112 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_mscorlib.dll + 2003-02-20 17:09:18 77,824 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_mscorsn.dll + 2004-07-14 22:26:52 2,510,848 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_mscorsvr.dll + 2004-07-14 22:28:34 2,502,656 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_mscorwks.dll + 2003-02-21 02:42:22 348,160 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_msvcr71.dll + 2004-07-14 22:34:50 94,208 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SHADOW3592\_PerfCounter.dll + 2003-02-20 17:09:34 253,952 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusion.dll + 2003-02-20 17:09:34 122,880 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\shfusres.dll + 2004-07-14 22:35:04 319,488 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\SOS.dll + 2003-02-21 05:26:38 77,824 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Configuration.Install.dll + 2004-07-15 12:32:00 1,294,336 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll + 2004-07-15 12:31:14 303,104 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.OracleClient.dll + 2004-07-15 12:29:02 1,703,936 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll + 2004-07-15 12:28:54 90,112 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.DirectoryServices.dll + 2007-04-13 19:35:38 1,232,896 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll + 2003-02-21 05:26:48 65,536 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.Design.dll + 2004-07-15 12:28:58 466,944 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll + 2004-07-15 12:28:56 241,664 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.dll + 2004-07-14 22:35:12 66,560 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.Thunk.dll + 2004-07-15 12:31:58 372,736 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Management.dll + 2004-07-15 12:31:12 241,664 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Messaging.dll + 2004-07-15 12:28:58 323,584 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Remoting.dll + 2004-07-15 12:31:54 131,072 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll + 2004-07-15 12:28:52 77,824 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll + 2004-07-15 12:28:54 126,976 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.ServiceProcess.dll + 2007-04-13 19:35:46 1,265,664 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll + 2004-07-15 12:28:58 819,200 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Mobile.dll + 2004-07-15 12:28:52 57,344 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.RegularExpressions.dll + 2004-07-15 12:31:16 573,440 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Services.dll + 2004-07-15 12:32:02 2,052,096 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll + 2004-07-15 12:29:00 1,339,392 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll + 2004-06-22 11:51:38 53,248 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe + 2004-07-15 09:23:20 737,280 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\vbc.exe + 2004-07-15 06:15:14 1,032,192 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll + 2004-07-15 00:11:56 31,744 ----a-w c:\windows\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll - 2000-08-31 06:00:00 28,672 ----a-w c:\windows\Nircmd.exe + 2000-08-31 07:00:00 28,672 ----a-w c:\windows\Nircmd.exe + 2008-09-12 15:22:16 473,600 ----a-w c:\windows\ROSE Online Evolution\uninstall.exe + 2008-07-12 15:27:11 451,072 ----a-w c:\windows\San Andreas Mod Installer\uninstall.exe - 2000-08-31 06:00:00 161,792 ----a-w c:\windows\swreg.exe + 2000-08-31 07:00:00 161,792 ----a-w c:\windows\swreg.exe + 2008-11-24 13:35:00 114,688 ----a-w c:\windows\system32\Adobe\Director\np32dsw.dll + 2008-11-24 13:43:36 202,168 ----a-w c:\windows\system32\Adobe\Director\SwDir.dll + 2008-11-24 13:35:38 499,712 ----a-w c:\windows\system32\Adobe\Shockwave 11\Control.dll + 2008-11-24 13:16:06 1,798,144 ----a-w c:\windows\system32\Adobe\Shockwave 11\dirapi.dll + 2008-11-24 13:35:40 9,216 ----a-w c:\windows\system32\Adobe\Shockwave 11\DynaPlayer.dll + 2008-11-24 13:07:38 703,488 ----a-w c:\windows\system32\Adobe\Shockwave 11\gi.dll + 2008-11-24 13:07:38 1,145,896 ----a-w c:\windows\system32\Adobe\Shockwave 11\gt.exe + 2008-11-24 13:07:38 52,288 ----a-w c:\windows\system32\Adobe\Shockwave 11\gtapi.dll + 2008-11-24 13:12:14 892,928 ----a-w c:\windows\system32\Adobe\Shockwave 11\iml32.dll + 2008-11-24 13:34:18 266,240 ----a-w c:\windows\system32\Adobe\Shockwave 11\Plugin.dll + 2008-11-24 13:36:12 446,464 ----a-w c:\windows\system32\Adobe\Shockwave 11\Proj.dll + 2008-11-24 13:43:16 460,216 ----a-w c:\windows\system32\Adobe\Shockwave 11\SwHelper_1103471.exe + 2008-11-24 13:34:04 114,688 ----a-w c:\windows\system32\Adobe\Shockwave 11\SwInit.exe + 2008-11-24 13:34:02 94,208 ----a-w c:\windows\system32\Adobe\Shockwave 11\SwMenu.dll + 2008-11-24 13:07:38 58,736 ----a-w c:\windows\system32\Adobe\Shockwave 11\SYMCCHECKER.DLL + 1999-06-25 09:55:30 149,504 ----a-w c:\windows\system32\Adobe\Shockwave 11\UNWISE.EXE + 2007-06-01 00:01:30 98,304 ----a-w c:\windows\system32\bftowdthunk.dll - 2008-04-21 06:56:20 1,024,000 ----a-w c:\windows\system32\browseui.dll + 2008-10-16 10:22:40 1,024,000 ----a-w c:\windows\system32\browseui.dll - 2008-04-21 06:56:20 152,064 ----a-w c:\windows\system32\cdfview.dll + 2008-10-16 10:22:32 152,064 ----a-w c:\windows\system32\cdfview.dll - 2007-07-30 17:19:20 92,504 ----a-w c:\windows\system32\cdm.dll + 2008-10-16 13:09:44 92,696 ----a-w c:\windows\system32\cdm.dll + 1998-05-04 22:00:00 112,640 ----a-w c:\windows\system32\CMCTLDE.DLL + 1998-07-05 22:00:00 33,792 ----a-w c:\windows\system32\CMDLGDE.DLL - 2007-11-01 12:30:46 107,888 ----a-w c:\windows\system32\CmdLineExt.dll + 2008-07-12 12:47:11 98,304 ----a-w c:\windows\system32\CmdLineExt.dll - 2007-09-17 17:12:27 32,768 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat + 2008-12-22 00:45:00 32,768 ----a-w c:\windows\system32\config\systemprofile\Cookies\index.dat - 2007-09-17 17:11:51 32,768 ----a-w c:\windows\system32\config\systemprofile\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat + 2008-12-22 00:45:00 32,768 ----a-w c:\windows\system32\config\systemprofile\Lokale Einstellungen\Temporary Internet Files\Content.IE5\index.dat - 2007-09-17 17:11:51 32,768 ----a-w c:\windows\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\index.dat + 2008-12-22 00:45:00 32,768 ----a-w c:\windows\system32\config\systemprofile\Lokale Einstellungen\Verlauf\History.IE5\index.dat + 2007-07-19 17:14:42 1,358,192 ----a-w c:\windows\system32\D3DCompiler_35.dll + 2007-10-12 14:14:00 1,374,232 ----a-w c:\windows\system32\D3DCompiler_36.dll + 2008-03-05 14:56:58 1,420,824 ----a-w c:\windows\system32\D3DCompiler_37.dll + 2007-07-19 17:14:42 444,776 ----a-w c:\windows\system32\d3dx10_35.dll + 2007-10-02 08:56:34 444,776 ----a-w c:\windows\system32\d3dx10_36.dll + 2008-02-05 22:07:36 462,864 ----a-w c:\windows\system32\d3dx10_37.dll + 2005-01-22 19:12:36 679,936 ----a-w c:\windows\system32\D3DX81ab.dll + 2007-07-19 17:14:42 3,727,720 ----a-w c:\windows\system32\d3dx9_35.dll + 2007-10-12 14:14:00 3,734,536 ----a-w c:\windows\system32\d3dx9_36.dll + 2008-03-05 14:56:58 3,786,760 ----a-w c:\windows\system32\D3DX9_37.dll - 2008-04-21 06:56:21 1,056,256 ----a-w c:\windows\system32\danim.dll + 2008-10-16 10:22:33 1,056,256 ----a-w c:\windows\system32\danim.dll + 2008-08-14 09:51:43 138,368 -c----w c:\windows\system32\dllcache\afd.sys - 2008-04-21 06:56:20 1,024,000 -c----w c:\windows\system32\dllcache\browseui.dll + 2008-10-16 10:22:40 1,024,000 -c----w c:\windows\system32\dllcache\browseui.dll - 2008-04-21 06:56:20 152,064 -c----w c:\windows\system32\dllcache\cdfview.dll + 2008-10-16 10:22:32 152,064 -c----w c:\windows\system32\dllcache\cdfview.dll - 2007-07-30 17:19:20 92,504 -c--a-w c:\windows\system32\dllcache\cdm.dll + 2008-10-16 13:09:44 92,696 -c--a-w c:\windows\system32\dllcache\cdm.dll - 2008-04-21 06:56:21 1,056,256 -c----w c:\windows\system32\dllcache\danim.dll + 2008-10-16 10:22:33 1,056,256 -c----w c:\windows\system32\dllcache\danim.dll - 2008-02-20 05:33:54 148,992 -c----w c:\windows\system32\dllcache\dnsapi.dll + 2008-06-20 17:39:48 148,992 -c--a-w c:\windows\system32\dllcache\dnsapi.dll - 2008-04-21 06:56:21 357,888 -c----w c:\windows\system32\dllcache\dxtmsft.dll + 2008-10-16 10:22:33 357,888 -c----w c:\windows\system32\dllcache\dxtmsft.dll - 2008-04-21 06:56:21 205,312 -c----w c:\windows\system32\dllcache\dxtrans.dll + 2008-10-16 10:22:33 205,312 -c----w c:\windows\system32\dllcache\dxtrans.dll + 2008-07-07 20:30:55 253,952 -c----w c:\windows\system32\dllcache\es.dll - 2008-04-21 06:56:21 55,808 -c----w c:\windows\system32\dllcache\extmgr.dll + 2008-10-16 10:22:33 55,808 -c----w c:\windows\system32\dllcache\extmgr.dll - 2008-02-20 06:50:29 282,624 -c----w c:\windows\system32\dllcache\gdi32.dll + 2008-10-23 12:59:11 283,648 -c----w c:\windows\system32\dllcache\gdi32.dll - 2008-04-17 10:46:59 18,432 -c--a-w c:\windows\system32\dllcache\iedw.exe + 2008-10-15 14:18:21 18,432 -c--a-w c:\windows\system32\dllcache\iedw.exe - 2008-04-21 06:56:21 251,904 -c----w c:\windows\system32\dllcache\iepeers.dll + 2008-10-16 10:22:34 251,904 -c----w c:\windows\system32\dllcache\iepeers.dll - 2007-08-21 06:16:14 683,520 -c----w c:\windows\system32\dllcache\inetcomm.dll + 2008-04-11 18:50:09 683,520 -c----w c:\windows\system32\dllcache\inetcomm.dll - 2008-04-21 06:56:22 96,768 -c----w c:\windows\system32\dllcache\inseng.dll + 2008-10-16 10:22:34 96,768 -c----w c:\windows\system32\dllcache\inseng.dll - 2008-04-21 06:56:22 16,384 -c----w c:\windows\system32\dllcache\jsproxy.dll + 2008-10-16 10:22:38 16,384 -c----w c:\windows\system32\dllcache\jsproxy.dll - 2005-01-27 23:21:46 96,768 -c--a-w c:\windows\system32\dllcache\logagent.exe + 2008-06-10 04:52:04 96,768 -c--a-w c:\windows\system32\dllcache\logagent.exe - 2006-05-05 09:41:45 453,120 -c----w c:\windows\system32\dllcache\mrxsmb.sys + 2008-10-24 11:10:42 453,632 -c----w c:\windows\system32\dllcache\mrxsmb.sys + 2008-05-01 14:30:33 331,776 -c----w c:\windows\system32\dllcache\msadce.dll + 2008-06-24 16:22:31 74,240 -c----w c:\windows\system32\dllcache\mscms.dll - 2008-04-21 06:56:25 3,087,872 -c----w c:\windows\system32\dllcache\mshtml.dll + 2008-12-12 17:28:34 3,088,384 -c----w c:\windows\system32\dllcache\mshtml.dll - 2008-04-21 06:56:26 449,024 -c----w c:\windows\system32\dllcache\mshtmled.dll + 2008-10-16 10:22:38 449,024 -c----w c:\windows\system32\dllcache\mshtmled.dll - 2008-04-21 06:56:26 146,432 -c----w c:\windows\system32\dllcache\msrating.dll + 2008-10-16 10:22:34 146,432 -c----w c:\windows\system32\dllcache\msrating.dll - 2008-04-21 06:56:26 532,480 -c----w c:\windows\system32\dllcache\mstime.dll + 2008-10-16 10:22:35 532,480 -c----w c:\windows\system32\dllcache\mstime.dll + 2008-06-20 17:39:48 247,296 -c----w c:\windows\system32\dllcache\mswsock.dll - 2007-06-26 06:08:37 1,104,896 -c----w c:\windows\system32\dllcache\msxml3.dll + 2008-09-04 16:43:59 1,106,944 -c----w c:\windows\system32\dllcache\msxml3.dll - 2006-08-17 12:41:25 337,408 -c----w c:\windows\system32\dllcache\netapi32.dll + 2008-10-15 16:54:14 339,456 -c----w c:\windows\system32\dllcache\netapi32.dll - 2007-02-28 16:02:08 2,138,624 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe + 2008-08-14 13:42:27 2,138,624 -c----w c:\windows\system32\dllcache\ntkrnlmp.exe - 2007-02-28 16:02:21 2,059,904 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe + 2008-08-14 13:42:30 2,060,032 -c----w c:\windows\system32\dllcache\ntkrnlpa.exe - 2007-02-28 16:02:05 2,018,304 -c----w c:\windows\system32\dllcache\ntkrpamp.exe + 2008-08-14 13:42:26 2,018,304 -c----w c:\windows\system32\dllcache\ntkrpamp.exe - 2007-02-28 16:02:21 2,182,656 -c----w c:\windows\system32\dllcache\ntoskrnl.exe + 2008-08-14 13:42:30 2,182,656 -c----w c:\windows\system32\dllcache\ntoskrnl.exe - 2007-12-04 23:41:00 7,435,392 -c--a-w c:\windows\system32\dllcache\nv4_mini.sys + 2008-10-07 12:33:00 6,133,856 -c--a-w c:\windows\system32\dllcache\nv4_mini.sys - 2008-04-21 06:56:26 39,424 -c----w c:\windows\system32\dllcache\pngfilt.dll + 2008-10-16 10:22:35 39,424 -c----w c:\windows\system32\dllcache\pngfilt.dll - 2008-04-21 06:56:27 1,499,136 -c----w c:\windows\system32\dllcache\shdocvw.dll + 2008-10-16 10:22:37 1,499,136 -c----w c:\windows\system32\dllcache\shdocvw.dll - 2008-04-21 06:56:28 474,624 -c----w c:\windows\system32\dllcache\shlwapi.dll + 2008-10-16 10:22:39 474,624 -c----w c:\windows\system32\dllcache\shlwapi.dll - 2006-08-14 10:34:41 332,928 -c----w c:\windows\system32\dllcache\srv.sys + 2008-08-28 10:04:17 333,056 -c----w c:\windows\system32\dllcache\srv.sys - 2006-08-24 11:19:40 246,814 -c----w c:\windows\system32\dllcache\strmdll.dll + 2008-10-03 10:15:49 247,326 -c----w c:\windows\system32\dllcache\strmdll.dll - 2007-10-30 17:20:55 360,064 -c----w c:\windows\system32\dllcache\tcpip.sys + 2008-06-20 10:45:13 360,320 -c--a-w c:\windows\system32\dllcache\tcpip.sys - 2006-08-16 09:37:30 225,664 -c----w c:\windows\system32\dllcache\tcpip6.sys + 2008-06-20 09:52:06 225,920 -c--a-w c:\windows\system32\dllcache\tcpip6.sys - 2008-04-21 06:56:29 620,544 -c----w c:\windows\system32\dllcache\urlmon.dll + 2008-10-16 10:22:41 621,056 -c----w c:\windows\system32\dllcache\urlmon.dll + 2004-08-03 20:58:46 15,104 -c--a-w c:\windows\system32\dllcache\usbscan.sys + 2005-11-24 15:42:06 24,192 -c--a-w c:\windows\system32\dllcache\usbser.sys + 2001-08-18 02:54:36 87,040 -c--a-w c:\windows\system32\dllcache\wiafbdrv.dll - 2008-03-20 08:03:19 1,845,376 -c----w c:\windows\system32\dllcache\win32k.sys + 2008-09-15 15:37:15 1,846,144 -c----w c:\windows\system32\dllcache\win32k.sys - 2008-04-21 06:56:30 672,256 -c----w c:\windows\system32\dllcache\wininet.dll + 2008-10-16 10:22:38 673,280 -c----w c:\windows\system32\dllcache\wininet.dll - 2005-01-28 06:53:16 1,027,072 -c--a-w c:\windows\system32\dllcache\wmnetmgr.dll + 2008-06-10 05:28:36 1,028,096 -c--a-w c:\windows\system32\dllcache\WMNetmgr.dll - 2006-12-07 05:29:34 2,374,472 -c--a-w c:\windows\system32\dllcache\wmvcore.dll + 2008-06-10 06:07:24 2,376,760 -c--a-w c:\windows\system32\dllcache\WMVCore.dll - 2007-07-30 17:19:36 549,720 -c--a-w c:\windows\system32\dllcache\wuapi.dll + 2008-10-16 13:12:20 561,688 -c--a-w c:\windows\system32\dllcache\wuapi.dll - 2007-07-30 17:19:16 53,080 -c--a-w c:\windows\system32\dllcache\wuauclt.exe + 2008-10-16 13:09:44 51,224 -c--a-w c:\windows\system32\dllcache\wuauclt.exe - 2007-07-30 17:19:42 1,712,984 -c--a-w c:\windows\system32\dllcache\wuaueng.dll + 2008-10-16 13:13:40 1,809,944 -c--a-w c:\windows\system32\dllcache\wuaueng.dll - 2007-07-30 17:19:32 325,976 -c--a-w c:\windows\system32\dllcache\wucltui.dll + 2008-10-16 13:12:22 323,608 -c--a-w c:\windows\system32\dllcache\wucltui.dll - 2007-07-30 17:18:40 33,624 -c--a-w c:\windows\system32\dllcache\wups.dll + 2008-10-16 13:08:58 34,328 -c--a-w c:\windows\system32\dllcache\wups.dll - 2007-07-30 17:19:46 203,096 -c--a-w c:\windows\system32\dllcache\wuweb.dll + 2008-10-16 13:13:40 202,776 -c--a-w c:\windows\system32\dllcache\wuweb.dll - 2008-02-20 05:33:54 148,992 ----a-w c:\windows\system32\dnsapi.dll + 2008-06-20 17:39:48 148,992 ----a-w c:\windows\system32\dnsapi.dll - 2004-08-03 21:14:16 138,496 ----a-w c:\windows\system32\drivers\afd.sys + 2008-08-14 09:51:43 138,368 ----a-w c:\windows\system32\drivers\afd.sys - 2008-04-26 17:07:12 79,424 ----a-w c:\windows\system32\drivers\avipbb.sys + 2008-11-11 15:39:32 75,072 ----a-w c:\windows\system32\drivers\avipbb.sys - 2008-07-04 17:35:34 25,280 ----a-w c:\windows\system32\drivers\hamachi.sys + 2008-07-31 16:22:01 25,280 ----a-w c:\windows\system32\drivers\hamachi.sys + 2007-06-18 12:18:26 23,680 ----a-w c:\windows\system32\drivers\motmodem.sys - 2006-05-05 09:41:45 453,120 ----a-w c:\windows\system32\drivers\mrxsmb.sys + 2008-10-24 11:10:42 453,632 ----a-w c:\windows\system32\drivers\mrxsmb.sys - 2007-12-04 23:41:00 7,435,392 ----a-w c:\windows\system32\drivers\nv4_mini.sys + 2008-10-07 12:33:00 6,133,856 ----a-w c:\windows\system32\drivers\nv4_mini.sys - 2008-06-15 10:55:20 33,952 ----a-w c:\windows\system32\drivers\oreans32.sys + 2008-09-07 17:26:07 33,824 ----a-w c:\windows\system32\drivers\oreans32.sys - 2008-06-21 09:18:31 22,328 ----a-w c:\windows\system32\drivers\PnkBstrK.sys + 2008-09-20 11:12:34 139,144 ----a-w c:\windows\system32\drivers\PnkBstrK.sys - 2006-08-14 10:34:41 332,928 ----a-w c:\windows\system32\drivers\srv.sys + 2008-08-28 10:04:17 333,056 ----a-w c:\windows\system32\drivers\srv.sys - 2007-10-30 17:20:55 360,064 ----a-w c:\windows\system32\drivers\tcpip.sys + 2008-06-20 10:45:13 360,320 ----a-w c:\windows\system32\drivers\tcpip.sys - 2006-08-16 09:37:30 225,664 ----a-w c:\windows\system32\drivers\tcpip6.sys + 2008-06-20 09:52:06 225,920 ----a-w c:\windows\system32\drivers\tcpip6.sys + 2004-08-03 20:58:46 15,104 ----a-w c:\windows\system32\drivers\usbscan.sys + 2005-11-24 15:42:06 24,192 ----a-w c:\windows\system32\drivers\USBSER.SYS + 2006-11-02 05:22:54 492,000 ------w c:\windows\system32\drivers\wdf01000.sys + 2006-11-02 05:22:52 32,224 ------w c:\windows\system32\drivers\wdfldr.sys + 2006-08-11 06:34:10 6,144 -c--a-w c:\windows\system32\DRVSTORE\M2501at_2F5F7EFE99B5F227AF0764DFDBB083834C1FFEC1\M2501cn.sys + 2006-08-11 06:34:12 90,128 -c--a-w c:\windows\system32\DRVSTORE\M2501at_2F5F7EFE99B5F227AF0764DFDBB083834C1FFEC1\M2501md.sys + 2006-12-06 14:33:50 94,592 -c--a-w c:\windows\system32\DRVSTORE\M2501HCD_B072F3C073A4376B25683AA0AD2B77942B3E843A\M2501HCD.sys + 2006-08-11 06:34:10 6,144 -c--a-w c:\windows\system32\DRVSTORE\M2501md_3F9C70CED7D1F0C5A3749D5A551A3DAA6C9518B6\M2501cn.sys + 2006-08-11 06:34:12 90,128 -c--a-w c:\windows\system32\DRVSTORE\M2501md_3F9C70CED7D1F0C5A3749D5A551A3DAA6C9518B6\M2501md.sys + 2006-08-11 06:34:18 9,360 -c--a-w c:\windows\system32\DRVSTORE\M2501md_3F9C70CED7D1F0C5A3749D5A551A3DAA6C9518B6\M2501mf.sys + 2006-08-11 06:34:22 66,592 -c--a-w c:\windows\system32\DRVSTORE\M2501uc_6ABE1D60E560C01F808EBE80F1BCA5A3D9FDEC66\M2501uc.sys + 2006-08-11 06:34:24 5,808 -c--a-w c:\windows\system32\DRVSTORE\M2501uc_6ABE1D60E560C01F808EBE80F1BCA5A3D9FDEC66\M2501wn.sys + 2007-11-02 12:36:10 18,176 -c--a-w c:\windows\system32\DRVSTORE\motccgp_BE790352925446F864D655FAFE9970C67FAF936A\motccgp.sys + 2007-01-23 17:03:44 7,680 -c--a-w c:\windows\system32\DRVSTORE\motccgp_BE790352925446F864D655FAFE9970C67FAF936A\motccgpfl.sys + 2007-11-02 12:51:28 6,400 -c--a-w c:\windows\system32\DRVSTORE\motccgp_BE790352925446F864D655FAFE9970C67FAF936A\motswch.sys + 2006-11-13 12:45:54 1,419,232 -c--a-w c:\windows\system32\DRVSTORE\motccgp_BE790352925446F864D655FAFE9970C67FAF936A\wdfcoinstaller01005.dll + 2007-06-18 12:18:26 23,680 -c--a-w c:\windows\system32\DRVSTORE\motmodem_6069CEC8E9C5F2AEEF321872E395929E2ECB977C\motmodem.sys + 2006-11-13 12:45:54 1,419,232 -c--a-w c:\windows\system32\DRVSTORE\motmodem_6069CEC8E9C5F2AEEF321872E395929E2ECB977C\wdfcoinstaller01005.dll + 2006-12-13 15:52:50 20,992 -c--a-w c:\windows\system32\DRVSTORE\motmodem_EB300D82ECD3AD9E7DA068DFA2569A01A85B9F9C\motmodem.sys + 2006-11-13 12:45:54 1,419,232 -c--a-w c:\windows\system32\DRVSTORE\motmodem_EB300D82ECD3AD9E7DA068DFA2569A01A85B9F9C\wdfcoinstaller01005.dll + 2006-07-28 05:10:08 6,144 -c--a-w c:\windows\system32\DRVSTORE\motodrv_22341B72FCC8DC598935CF00122CD189BE8E0E3B\mot_ci.dll + 2007-10-10 14:41:50 42,112 -c--a-w c:\windows\system32\DRVSTORE\motodrv_22341B72FCC8DC598935CF00122CD189BE8E0E3B\motodrv.sys + 2007-01-23 19:36:20 6,016 -c--a-w c:\windows\system32\DRVSTORE\motousbnet_F1F6B8D0B008E23D15C7FB6A13B8CAA12F1AA650\motfilt.sys + 2007-11-02 12:41:06 22,272 -c--a-w c:\windows\system32\DRVSTORE\motousbnet_F1F6B8D0B008E23D15C7FB6A13B8CAA12F1AA650\Motousbnet.sys + 2007-11-02 12:51:28 6,400 -c--a-w c:\windows\system32\DRVSTORE\motousbnet_F1F6B8D0B008E23D15C7FB6A13B8CAA12F1AA650\motswch.sys + 2006-11-13 12:45:54 1,419,232 -c--a-w c:\windows\system32\DRVSTORE\motousbnet_F1F6B8D0B008E23D15C7FB6A13B8CAA12F1AA650\wdfcoinstaller01005.dll + 2007-06-18 12:18:26 23,680 -c--a-w c:\windows\system32\DRVSTORE\motport_971CE3EB0BFA971A641FCBEF7FB91FA0762A6404\motport.sys + 2006-11-13 12:45:54 1,419,232 -c--a-w c:\windows\system32\DRVSTORE\motport_971CE3EB0BFA971A641FCBEF7FB91FA0762A6404\wdfcoinstaller01005.dll + 2006-08-11 06:42:36 90,436 -c--a-w c:\windows\system32\DRVSTORE\Netmon-mod_9AD3A142CE55E6AECAA17B567997991448C3690E\Motorola-Netmon-Serial.sys - 2008-04-21 06:56:21 357,888 ----a-w c:\windows\system32\dxtmsft.dll + 2008-10-16 10:22:33 357,888 ----a-w c:\windows\system32\dxtmsft.dll - 2008-04-21 06:56:21 205,312 ----a-w c:\windows\system32\dxtrans.dll + 2008-10-16 10:22:33 205,312 ----a-w c:\windows\system32\dxtrans.dll - 2005-07-26 04:39:46 243,200 ----a-w c:\windows\system32\es.dll + 2008-07-07 20:30:55 253,952 ----a-w c:\windows\system32\es.dll - 2008-04-21 06:56:21 55,808 ------w c:\windows\system32\extmgr.dll + 2008-10-16 10:22:33 55,808 ------w c:\windows\system32\extmgr.dll - 2008-06-12 05:27:08 133,280 ----a-w c:\windows\system32\FNTCACHE.DAT + 2008-12-23 09:02:28 135,664 ----a-w c:\windows\system32\FNTCACHE.DAT + 2004-08-27 12:25:46 78,096 ----a-w c:\windows\system32\GAPI32.dll - 2008-02-20 06:50:29 282,624 ----a-w c:\windows\system32\gdi32.dll + 2008-10-23 12:59:11 283,648 ----a-w c:\windows\system32\gdi32.dll + 2003-05-21 20:50:34 1,700,352 ----a-w c:\windows\system32\GdiPlus.dll - 2004-08-03 20:59:10 131,968 ----a-w c:\windows\system32\HAL.DLL + 2004-08-03 20:59:14 134,400 ----a-w c:\windows\system32\hal.dll - 2008-04-21 06:56:21 251,904 ----a-w c:\windows\system32\iepeers.dll + 2008-10-16 10:22:34 251,904 ----a-w c:\windows\system32\iepeers.dll + 2006-04-24 16:00:52 339,968 ----a-w c:\windows\system32\IMGMAN32.DLL + 2006-04-24 16:00:52 98,345 ----a-w c:\windows\system32\IMHOST32.DLL - 2007-08-21 06:16:14 683,520 ----a-w c:\windows\system32\inetcomm.dll + 2008-04-11 18:50:09 683,520 ----a-w c:\windows\system32\inetcomm.dll - 2008-04-21 06:56:22 96,768 ----a-w c:\windows\system32\inseng.dll + 2008-10-16 10:22:34 96,768 ----a-w c:\windows\system32\inseng.dll - 2008-04-21 06:56:22 16,384 ----a-w c:\windows\system32\jsproxy.dll + 2008-10-16 10:22:38 16,384 ----a-w c:\windows\system32\jsproxy.dll - 2007-12-04 23:41:00 425,984 ----a-w c:\windows\system32\keystone.exe + 2008-10-07 12:33:00 425,984 ----a-w c:\windows\system32\keystone.exe + 2008-05-02 11:07:04 2,076,672 ----a-w c:\windows\system32\libmysql.dll - 2005-01-27 23:21:46 96,768 ----a-w c:\windows\system32\logagent.exe + 2008-06-10 04:52:04 96,768 ----a-w c:\windows\system32\logagent.exe + 2006-08-14 17:17:14 65,536 ----a-w c:\windows\system32\lxctcaps.dll + 2006-09-06 06:19:10 77,824 ----a-w c:\windows\system32\lxctcfg.dll + 2007-03-19 12:58:45 381,872 ----a-w c:\windows\system32\lxctcfg.exe + 2006-05-03 14:31:03 61,440 ----a-w c:\windows\system32\lxctcnv4.dll + 2007-01-18 12:00:47 331,776 ----a-r c:\windows\system32\lxctcoin.dll + 2006-11-06 16:20:48 684,032 ----a-w c:\windows\system32\lxctcomc.dll + 2006-11-06 16:28:08 421,888 ----a-w c:\windows\system32\lxctcomm.dll + 2007-03-19 12:58:47 537,520 ----a-w c:\windows\system32\lxctcoms.exe + 2007-03-09 01:48:34 77,824 ----a-w c:\windows\system32\lxctcu.dll + 2007-03-09 01:48:47 86,016 ----a-w c:\windows\system32\lxctcub.dll + 2007-03-09 06:29:00 36,864 ----a-w c:\windows\system32\lxctcur.dll + 2007-01-10 14:41:58 692,224 ----a-w c:\windows\system32\lxctdrs.dll + 2006-10-18 06:35:04 32,768 ----a-w c:\windows\system32\LXCTFXPU.DLL + 2006-04-25 02:57:02 983,107 ----a-w c:\windows\system32\lxctgf.dll + 2007-03-09 06:28:10 204,800 ----a-w c:\windows\system32\lxctgrd.dll + 2006-11-06 16:07:04 696,320 ----a-w c:\windows\system32\lxcthbn3.dll + 2006-11-06 16:08:02 323,584 ----a-w c:\windows\system32\LXCThcp.dll + 2006-11-06 16:24:44 397,312 ----a-w c:\windows\system32\lxctiesc.dll + 2007-03-19 12:58:50 385,968 ----a-w c:\windows\system32\lxctih.exe + 2006-11-06 16:12:44 413,696 ----a-w c:\windows\system32\lxctinpa.dll + 2007-03-09 01:48:29 176,128 ----a-w c:\windows\system32\lxctins.dll + 2007-03-09 01:48:57 200,704 ----a-w c:\windows\system32\lxctinsb.dll + 2007-03-09 06:29:04 114,688 ----a-w c:\windows\system32\lxctinsr.dll + 2006-11-06 16:25:06 274,432 ----a-w c:\windows\system32\LXCTinst.dll + 2007-03-09 06:28:47 147,456 ----a-w c:\windows\system32\lxctjswr.dll + 2006-11-06 16:26:14 585,728 ----a-w c:\windows\system32\lxctlmpm.dll + 2006-10-18 06:36:02 45,056 ----a-w c:\windows\system32\lxctpmon.dll + 2006-10-18 06:43:08 12,288 ----a-w c:\windows\system32\lxctpmrc.dll + 2006-11-06 16:37:46 643,072 ----a-w c:\windows\system32\lxctpmui.dll + 2006-11-06 16:21:48 94,208 ----a-w c:\windows\system32\lxctpplc.dll + 2006-11-06 16:20:14 163,840 ----a-w c:\windows\system32\lxctprox.dll + 2006-11-06 16:35:50 1,224,704 ----a-w c:\windows\system32\lxctserv.dll + 2006-11-06 16:11:58 991,232 ----a-w c:\windows\system32\lxctusb1.dll + 2007-03-09 01:46:37 462,848 ----a-w c:\windows\system32\lxctutil.dll + 2006-04-25 03:11:18 40,960 ----a-w c:\windows\system32\lxctvs.dll + 2008-03-25 02:32:44 218,496 ----a-r c:\windows\system32\Macromed\Flash\FlashUtil9f.exe - 2007-11-21 00:52:38 2,884,992 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32.dll + 2008-03-25 03:21:18 2,889,088 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32.dll - 2007-11-21 00:52:40 218,496 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe + 2008-03-25 03:21:20 218,496 ----a-w c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe + 2008-07-22 20:27:17 74,137 ----a-w c:\windows\system32\Macromed\Flash\uninstall_activeX.exe - 2008-03-20 12:03:47 70,264 ----a-w c:\windows\system32\Macromed\Flash\uninstall_plugin.exe + 2008-09-12 14:30:54 70,264 ----a-w c:\windows\system32\Macromed\Flash\uninstall_plugin.exe - 2007-04-30 15:11:28 585,728 ----a-w c:\windows\system32\Macromed\Shockwave 10\Control.dll + 2008-12-03 23:59:26 581,632 ----a-w c:\windows\system32\Macromed\Shockwave 10\Control.dll + 2008-12-03 23:59:30 1,490,944 ----a-w c:\windows\system32\Macromed\Shockwave 10\dirapiX.dll - 2007-04-30 14:30:38 24,576 ----a-w c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll + 2008-12-03 23:59:26 24,576 ----a-w c:\windows\system32\Macromed\Shockwave 10\DynaPlayer.dll + 2008-12-03 23:59:30 606,208 ----a-w c:\windows\system32\Macromed\Shockwave 10\iml32X.dll - 2007-04-30 15:11:22 339,968 ------w c:\windows\system32\Macromed\Shockwave 10\Plugin.dll + 2008-12-03 23:59:26 339,968 ----a-w c:\windows\system32\Macromed\Shockwave 10\Plugin.dll - 2007-04-30 15:11:24 483,328 ----a-w c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll + 2008-12-03 23:59:26 475,136 ----a-w c:\windows\system32\Macromed\Shockwave 10\PluginPing.dll - 2007-04-30 15:11:30 180,224 ----a-w c:\windows\system32\Macromed\Shockwave 10\Proj.dll + 2008-12-03 23:59:26 180,224 ----a-w c:\windows\system32\Macromed\Shockwave 10\Proj.dll - 2007-04-30 14:33:00 77,824 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwInit.exe + 2008-12-03 23:59:26 77,824 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwInit.exe + 2008-12-03 23:59:26 86,016 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwMenuX.dll - 2007-04-30 14:33:00 98,304 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll + 2008-12-03 23:59:26 98,304 ----a-w c:\windows\system32\Macromed\Shockwave 10\SwOnce.dll + 2006-11-11 20:52:52 454,656 ----a-w c:\windows\system32\mmSQL.dll + 2006-07-28 05:10:08 6,144 ----a-w c:\windows\system32\mot_ci.dll + 1998-07-05 22:00:00 64,512 ----a-w c:\windows\system32\MSCC2DE.DLL + 1998-07-05 22:00:00 158,208 ----a-w c:\windows\system32\MSCMCDE.DLL - 2005-06-29 01:49:39 74,240 ----a-w c:\windows\system32\mscms.dll + 2008-06-24 16:22:31 74,240 ----a-w c:\windows\system32\mscms.dll + 2000-04-03 18:06:48 14,336 ----a-w c:\windows\system32\mscomde.dll + 1998-07-13 22:00:00 51,712 ----a-w c:\windows\system32\MSHFGDE.DLL - 2008-04-21 06:56:25 3,087,872 ----a-w c:\windows\system32\mshtml.dll + 2008-12-12 17:28:34 3,088,384 ----a-w c:\windows\system32\mshtml.dll - 2008-04-21 06:56:26 449,024 ----a-w c:\windows\system32\mshtmled.dll + 2008-10-16 10:22:38 449,024 ----a-w c:\windows\system32\mshtmled.dll - 2008-04-21 06:56:26 146,432 ----a-w c:\windows\system32\msrating.dll + 2008-10-16 10:22:34 146,432 ----a-w c:\windows\system32\msrating.dll - 2008-04-21 06:56:26 532,480 ----a-w c:\windows\system32\mstime.dll + 2008-10-16 10:22:35 532,480 ----a-w c:\windows\system32\mstime.dll - 2004-02-23 18:42:40 1,386,496 ------w c:\windows\system32\msvbvm60.dll + 2008-04-14 05:52:20 1,384,479 ----a-w c:\windows\system32\msvbvm60.dll - 2006-05-21 14:15:28 307,200 ----a-w c:\windows\system32\msvcr70.dll + 2002-01-05 13:37:26 344,064 ----a-w c:\windows\system32\msvcr70.dll - 2004-08-03 22:57:30 247,296 ----a-w c:\windows\system32\mswsock.dll + 2008-06-20 17:39:48 247,296 ----a-w c:\windows\system32\mswsock.dll - 2007-06-26 06:08:37 1,104,896 ----a-w c:\windows\system32\msxml3.dll + 2008-09-04 16:43:59 1,106,944 ----a-w c:\windows\system32\msxml3.dll - 2001-03-08 16:30:00 24,064 ------w c:\windows\system32\msxml3a.dll + 2003-05-21 20:50:38 24,576 ----a-w c:\windows\system32\msxml3a.dll - 2007-05-08 14:03:04 1,275,392 ----a-w c:\windows\system32\msxml4.dll + 2008-09-30 15:43:34 1,286,152 ----a-w c:\windows\system32\msxml4.dll - 2007-05-15 14:43:10 1,320,800 ----a-w c:\windows\system32\msxml6.dll + 2008-08-29 19:06:44 1,350,664 ----a-w c:\windows\system32\msxml6.dll - 2007-07-30 17:19:10 271,224 ----a-w c:\windows\system32\mucltui.dll + 2008-10-16 13:06:48 268,648 ----a-w c:\windows\system32\mucltui.dll + 2003-02-20 16:43:36 4,096 ----a-w c:\windows\system32\mui\0409\mscoreer.dll - 2007-07-30 17:19:04 207,736 ----a-w c:\windows\system32\muweb.dll + 2008-10-16 13:06:48 208,744 ----a-w c:\windows\system32\muweb.dll - 2006-08-17 12:41:25 337,408 ----a-w c:\windows\system32\netapi32.dll + 2008-10-15 16:54:14 339,456 ----a-w c:\windows\system32\netapi32.dll - 2007-02-28 16:02:21 2,059,904 ----a-w c:\windows\system32\ntkrnlpa.exe + 2008-08-14 13:42:26 2,018,304 ----a-w c:\windows\system32\ntkrnlpa.exe - 2007-02-28 16:02:21 2,182,656 ----a-w c:\windows\system32\ntoskrnl.exe + 2008-08-14 13:42:27 2,138,624 ----a-w c:\windows\system32\ntoskrnl.exe - 2007-12-04 23:41:00 5,773,568 ----a-w c:\windows\system32\nv4_disp.dll + 2008-10-07 12:33:00 6,058,112 ----a-w c:\windows\system32\nv4_disp.dll - 2007-12-04 23:41:00 385,024 ----a-w c:\windows\system32\nvapi.dll + 2008-10-07 12:33:00 475,136 ----a-w c:\windows\system32\nvapi.dll - 2007-12-04 23:41:00 442,368 ----a-w c:\windows\system32\nvappbar.exe + 2008-10-07 12:33:00 442,368 ----a-w c:\windows\system32\nvappbar.exe - 2007-12-04 23:41:00 35,328 ----a-w c:\windows\system32\nvcod.dll + 2008-10-07 12:33:00 122,880 ----a-w c:\windows\system32\nvcod.dll - 2007-12-04 23:41:00 35,328 ----a-w c:\windows\system32\nvcodins.dll + 2008-10-07 12:33:00 122,880 ----a-w c:\windows\system32\nvcodins.dll - 2007-12-04 23:41:00 147,456 ----a-w c:\windows\system32\nvcolor.exe + 2008-10-07 12:33:00 143,360 ----a-w c:\windows\system32\nvcolor.exe - 2007-12-04 23:41:00 8,523,776 ----a-w c:\windows\system32\nvcpl.dll + 2008-10-07 12:33:00 13,574,144 ----a-w c:\windows\system32\nvcpl.dll - 2007-12-04 23:41:00 753,664 ----a-w c:\windows\system32\nvcplui.exe + 2008-10-07 12:33:00 797,216 ----a-w c:\windows\system32\nvcplui.exe - 2007-12-04 23:41:00 1,073,152 ----a-w c:\windows\system32\nvcpluir.dll + 2008-10-07 12:33:00 1,108,512 ----a-w c:\windows\system32\nvcpluir.dll - 2007-12-04 23:41:00 1,089,536 ----a-w c:\windows\system32\nvcuda.dll + 2008-10-07 12:33:00 1,368,064 ----a-w c:\windows\system32\nvcuda.dll - 2007-12-04 23:41:00 6,549,504 ----a-w c:\windows\system32\nvdisps.dll + 2008-10-07 12:33:00 3,989,504 ----a-w c:\windows\system32\nvdisps.dll - 2007-12-04 23:41:00 5,611,520 ----a-w c:\windows\system32\nvdispsr.dll + 2008-10-07 12:33:00 5,799,936 ----a-w c:\windows\system32\nvdispsr.dll - 2007-12-04 23:41:00 1,339,392 ----a-w c:\windows\system32\nvdspsch.exe + 2008-10-07 12:33:00 1,339,392 ----a-w c:\windows\system32\nvdspsch.exe - 2007-12-04 23:41:00 3,420,160 ----a-w c:\windows\system32\nvgames.dll + 2008-10-07 12:33:00 3,444,736 ----a-w c:\windows\system32\nvgames.dll - 2007-12-04 23:41:00 3,334,144 ----a-w c:\windows\system32\nvgamesr.dll + 2008-10-07 12:33:00 3,457,024 ----a-w c:\windows\system32\nvgamesr.dll - 2007-12-04 23:41:00 1,474,560 ----a-w c:\windows\system32\nview.dll + 2008-10-07 12:33:00 1,486,848 ----a-w c:\windows\system32\nview.dll - 2007-12-04 23:41:00 229,376 ----a-w c:\windows\system32\nvmccs.dll + 2008-10-07 12:33:00 229,376 ----a-w c:\windows\system32\nvmccs.dll - 2007-12-04 23:41:00 45,056 ----a-w c:\windows\system32\nvmccsrs.dll + 2008-10-07 12:33:00 45,056 ----a-w c:\windows\system32\nvmccsrs.dll - 2007-12-04 23:41:00 188,416 ----a-w c:\windows\system32\nvmccss.dll + 2008-10-07 12:33:00 188,416 ----a-w c:\windows\system32\nvmccss.dll - 2007-12-04 23:41:00 458,752 ----a-w c:\windows\system32\nvmccssr.dll + 2008-10-07 12:33:00 458,752 ----a-w c:\windows\system32\nvmccssr.dll - 2007-12-04 23:41:00 81,920 ----a-w c:\windows\system32\nvmctray.dll + 2008-10-07 12:33:00 86,016 ----a-w c:\windows\system32\nvmctray.dll - 2007-12-04 23:41:00 1,228,800 ----a-w c:\windows\system32\nvmobls.dll + 2008-10-07 12:33:00 1,257,472 ----a-w c:\windows\system32\nvmobls.dll - 2007-12-04 23:41:00 2,854,912 ----a-w c:\windows\system32\nvmoblsr.dll + 2008-10-07 12:33:00 2,854,912 ----a-w c:\windows\system32\nvmoblsr.dll - 2007-12-04 23:41:00 286,720 ----a-w c:\windows\system32\nvnt4cpl.dll + 2008-10-07 12:33:00 286,720 ----a-w c:\windows\system32\nvnt4cpl.dll - 2007-12-04 23:41:00 6,901,760 ----a-w c:\windows\system32\nvoglnt.dll + 2008-10-07 12:33:00 8,826,880 ----a-w c:\windows\system32\nvoglnt.dll - 2007-12-04 23:41:00 327,680 ----a-w c:\windows\system32\nvrsar.dll + 2008-10-07 12:33:00 331,776 ----a-w c:\windows\system32\nvrsar.dll - 2007-12-04 23:41:00 249,856 ----a-w c:\windows\system32\nvrscs.dll + 2008-10-07 12:33:00 245,760 ----a-w c:\windows\system32\nvrscs.dll - 2007-12-04 23:41:00 253,952 ----a-w c:\windows\system32\nvrsda.dll + 2008-10-07 12:33:00 253,952 ----a-w c:\windows\system32\nvrsda.dll - 2007-12-04 23:41:00 278,528 ----a-w c:\windows\system32\nvrsde.dll + 2008-10-07 12:33:00 278,528 ----a-w c:\windows\system32\nvrsde.dll - 2007-12-04 23:41:00 282,624 ----a-w c:\windows\system32\nvrsel.dll + 2008-10-07 12:33:00 282,624 ----a-w c:\windows\system32\nvrsel.dll - 2007-12-04 23:41:00 245,760 ----a-w c:\windows\system32\nvrseng.dll + 2008-10-07 12:33:00 245,760 ----a-w c:\windows\system32\nvrseng.dll - 2007-12-04 23:41:00 282,624 ----a-w c:\windows\system32\nvrses.dll + 2008-10-07 12:33:00 282,624 ----a-w c:\windows\system32\nvrses.dll - 2007-12-04 23:41:00 274,432 ----a-w c:\windows\system32\nvrsesm.dll + 2008-10-07 12:33:00 274,432 ----a-w c:\windows\system32\nvrsesm.dll - 2007-12-04 23:41:00 249,856 ----a-w c:\windows\system32\nvrsfi.dll + 2008-10-07 12:33:00 249,856 ----a-w c:\windows\system32\nvrsfi.dll - 2007-12-04 23:41:00 282,624 ----a-w c:\windows\system32\nvrsfr.dll + 2008-10-07 12:33:00 282,624 ----a-w c:\windows\system32\nvrsfr.dll - 2007-12-04 23:41:00 327,680 ----a-w c:\windows\system32\nvrshe.dll + 2008-10-07 12:33:00 331,776 ----a-w c:\windows\system32\nvrshe.dll - 2007-12-04 23:41:00 258,048 ----a-w c:\windows\system32\nvrshu.dll + 2008-10-07 12:33:00 258,048 ----a-w c:\windows\system32\nvrshu.dll - 2007-12-04 23:41:00 278,528 ----a-w c:\windows\system32\nvrsit.dll + 2008-10-07 12:33:00 278,528 ----a-w c:\windows\system32\nvrsit.dll - 2007-12-04 23:41:00 266,240 ----a-w c:\windows\system32\nvrsja.dll + 2008-10-07 12:33:00 270,336 ----a-w c:\windows\system32\nvrsja.dll - 2007-12-04 23:41:00 258,048 ----a-w c:\windows\system32\nvrsko.dll + 2008-10-07 12:33:00 262,144 ----a-w c:\windows\system32\nvrsko.dll - 2007-12-04 23:41:00 274,432 ----a-w c:\windows\system32\nvrsnl.dll + 2008-10-07 12:33:00 274,432 ----a-w c:\windows\system32\nvrsnl.dll - 2007-12-04 23:41:00 253,952 ----a-w c:\windows\system32\nvrsno.dll + 2008-10-07 12:33:00 253,952 ----a-w c:\windows\system32\nvrsno.dll - 2007-12-04 23:41:00 253,952 ----a-w c:\windows\system32\nvrspl.dll + 2008-10-07 12:33:00 253,952 ----a-w c:\windows\system32\nvrspl.dll - 2007-12-04 23:41:00 274,432 ----a-w c:\windows\system32\nvrspt.dll + 2008-10-07 12:33:00 270,336 ----a-w c:\windows\system32\nvrspt.dll - 2007-12-04 23:41:00 266,240 ----a-w c:\windows\system32\nvrsptb.dll + 2008-10-07 12:33:00 266,240 ----a-w c:\windows\system32\nvrsptb.dll - 2007-12-04 23:41:00 270,336 ----a-w c:\windows\system32\nvrsru.dll + 2008-10-07 12:33:00 266,240 ----a-w c:\windows\system32\nvrsru.dll - 2007-12-04 23:41:00 258,048 ----a-w c:\windows\system32\nvrssk.dll + 2008-10-07 12:33:00 258,048 ----a-w c:\windows\system32\nvrssk.dll - 2007-12-04 23:41:00 258,048 ----a-w c:\windows\system32\nvrssl.dll + 2008-10-07 12:33:00 258,048 ----a-w c:\windows\system32\nvrssl.dll - 2007-12-04 23:41:00 253,952 ----a-w c:\windows\system32\nvrssv.dll + 2008-10-07 12:33:00 253,952 ----a-w c:\windows\system32\nvrssv.dll - 2007-12-04 23:41:00 253,952 ----a-w c:\windows\system32\nvrsth.dll + 2008-10-07 12:33:00 253,952 ----a-w c:\windows\system32\nvrsth.dll - 2007-12-04 23:41:00 258,048 ----a-w c:\windows\system32\nvrstr.dll + 2008-10-07 12:33:00 253,952 ----a-w c:\windows\system32\nvrstr.dll - 2007-12-04 23:41:00 225,280 ----a-w c:\windows\system32\nvrszhc.dll + 2008-10-07 12:33:00 225,280 ----a-w c:\windows\system32\nvrszhc.dll - 2007-12-04 23:41:00 126,976 ----a-w c:\windows\system32\nvrszht.dll + 2008-10-07 12:33:00 122,880 ----a-w c:\windows\system32\nvrszht.dll - 2007-12-04 23:41:00 466,944 ----a-w c:\windows\system32\nvshell.dll + 2008-10-07 12:33:00 466,944 ----a-w c:\windows\system32\nvshell.dll - 2007-12-04 23:41:00 155,716 ----a-w c:\windows\system32\nvsvc32.exe + 2008-10-07 12:33:00 163,908 ----a-w c:\windows\system32\nvsvc32.exe - 2007-12-04 23:41:00 356,352 ----a-w c:\windows\system32\nvudisp.exe + 2008-10-07 12:33:00 453,152 ----a-w c:\windows\system32\nvudisp.exe - 2007-12-05 00:53:08 356,352 ----a-w c:\windows\system32\NVUNINST.EXE + 2008-10-02 09:07:58 453,152 ----a-w c:\windows\system32\NVUNINST.EXE - 2007-12-04 23:41:00 3,710,976 ----a-w c:\windows\system32\nvvitvs.dll + 2008-10-07 12:33:00 3,764,224 ----a-w c:\windows\system32\nvvitvs.dll - 2007-12-04 23:41:00 3,715,072 ----a-w c:\windows\system32\nvvitvsr.dll + 2008-10-07 12:33:00 4,149,248 ----a-w c:\windows\system32\nvvitvsr.dll - 2007-12-04 23:41:00 81,920 ----a-w c:\windows\system32\nvwddi.dll + 2008-10-07 12:33:00 81,920 ----a-w c:\windows\system32\nvwddi.dll - 2007-12-04 23:41:00 1,703,936 ----a-w c:\windows\system32\nvwdmcpl.dll + 2008-10-07 12:33:00 1,703,936 ----a-w c:\windows\system32\nvwdmcpl.dll - 2007-12-04 23:41:00 1,019,904 ----a-w c:\windows\system32\nvwimg.dll + 2008-10-07 12:33:00 1,019,904 ----a-w c:\windows\system32\nvwimg.dll - 2007-12-04 23:41:00 282,624 ----a-w c:\windows\system32\nvwrsar.dll + 2008-10-07 12:33:00 282,624 ----a-w c:\windows\system32\nvwrsar.dll - 2007-12-04 23:41:00 286,720 ----a-w c:\windows\system32\nvwrscs.dll + 2008-10-07 12:33:00 286,720 ----a-w c:\windows\system32\nvwrscs.dll - 2007-12-04 23:41:00 294,912 ----a-w c:\windows\system32\nvwrsda.dll + 2008-10-07 12:33:00 294,912 ----a-w c:\windows\system32\nvwrsda.dll - 2007-12-04 23:41:00 311,296 ----a-w c:\windows\system32\nvwrsde.dll + 2008-10-07 12:33:00 311,296 ----a-w c:\windows\system32\nvwrsde.dll - 2007-12-04 23:41:00 335,872 ----a-w c:\windows\system32\nvwrsel.dll + 2008-10-07 12:33:00 335,872 ----a-w c:\windows\system32\nvwrsel.dll - 2007-12-04 23:41:00 286,720 ----a-w c:\windows\system32\nvwrseng.dll + 2008-10-07 12:33:00 286,720 ----a-w c:\windows\system32\nvwrseng.dll - 2007-12-04 23:41:00 335,872 ----a-w c:\windows\system32\nvwrses.dll + 2008-10-07 12:33:00 335,872 ----a-w c:\windows\system32\nvwrses.dll - 2007-12-04 23:41:00 327,680 ----a-w c:\windows\system32\nvwrsesm.dll + 2008-10-07 12:33:00 327,680 ----a-w c:\windows\system32\nvwrsesm.dll - 2007-12-04 23:41:00 303,104 ----a-w c:\windows\system32\nvwrsfi.dll + 2008-10-07 12:33:00 303,104 ----a-w c:\windows\system32\nvwrsfi.dll - 2007-12-04 23:41:00 327,680 ----a-w c:\windows\system32\nvwrsfr.dll + 2008-10-07 12:33:00 327,680 ----a-w c:\windows\system32\nvwrsfr.dll - 2007-12-04 23:41:00 278,528 ----a-w c:\windows\system32\nvwrshe.dll + 2008-10-07 12:33:00 278,528 ----a-w c:\windows\system32\nvwrshe.dll - 2007-12-04 23:41:00 315,392 ----a-w c:\windows\system32\nvwrshu.dll + 2008-10-07 12:33:00 315,392 ----a-w c:\windows\system32\nvwrshu.dll - 2007-12-04 23:41:00 323,584 ----a-w c:\windows\system32\nvwrsit.dll + 2008-10-07 12:33:00 323,584 ----a-w c:\windows\system32\nvwrsit.dll - 2007-12-04 23:41:00 212,992 ----a-w c:\windows\system32\nvwrsja.dll + 2008-10-07 12:33:00 212,992 ----a-w c:\windows\system32\nvwrsja.dll - 2007-12-04 23:41:00 196,608 ----a-w c:\windows\system32\nvwrsko.dll + 2008-10-07 12:33:00 196,608 ----a-w c:\windows\system32\nvwrsko.dll - 2007-12-04 23:41:00 319,488 ----a-w c:\windows\system32\nvwrsnl.dll + 2008-10-07 12:33:00 319,488 ----a-w c:\windows\system32\nvwrsnl.dll - 2007-12-04 23:41:00 299,008 ----a-w c:\windows\system32\nvwrsno.dll + 2008-10-07 12:33:00 299,008 ----a-w c:\windows\system32\nvwrsno.dll - 2007-12-04 23:41:00 294,912 ----a-w c:\windows\system32\nvwrspl.dll + 2008-10-07 12:33:00 294,912 ----a-w c:\windows\system32\nvwrspl.dll - 2007-12-04 23:41:00 323,584 ----a-w c:\windows\system32\nvwrspt.dll + 2008-10-07 12:33:00 323,584 ----a-w c:\windows\system32\nvwrspt.dll - 2007-12-04 23:41:00 319,488 ----a-w c:\windows\system32\nvwrsptb.dll + 2008-10-07 12:33:00 319,488 ----a-w c:\windows\system32\nvwrsptb.dll - 2007-12-04 23:41:00 315,392 ----a-w c:\windows\system32\nvwrsru.dll + 2008-10-07 12:33:00 315,392 ----a-w c:\windows\system32\nvwrsru.dll - 2007-12-04 23:41:00 299,008 ----a-w c:\windows\system32\nvwrssk.dll + 2008-10-07 12:33:00 299,008 ----a-w c:\windows\system32\nvwrssk.dll - 2007-12-04 23:41:00 303,104 ----a-w c:\windows\system32\nvwrssl.dll + 2008-10-07 12:33:00 303,104 ----a-w c:\windows\system32\nvwrssl.dll - 2007-12-04 23:41:00 294,912 ----a-w c:\windows\system32\nvwrssv.dll + 2008-10-07 12:33:00 294,912 ----a-w c:\windows\system32\nvwrssv.dll - 2007-12-04 23:41:00 290,816 ----a-w c:\windows\system32\nvwrsth.dll + 2008-10-07 12:33:00 290,816 ----a-w c:\windows\system32\nvwrsth.dll - 2007-12-04 23:41:00 303,104 ----a-w c:\windows\system32\nvwrstr.dll + 2008-10-07 12:33:00 303,104 ----a-w c:\windows\system32\nvwrstr.dll - 2007-12-04 23:41:00 163,840 ----a-w c:\windows\system32\nvwrszhc.dll + 2008-10-07 12:33:00 163,840 ----a-w c:\windows\system32\nvwrszhc.dll - 2007-12-04 23:41:00 167,936 ----a-w c:\windows\system32\nvwrszht.dll + 2008-10-07 12:33:00 167,936 ----a-w c:\windows\system32\nvwrszht.dll - 2007-12-04 23:41:00 2,498,560 ----a-w c:\windows\system32\nvwss.dll + 2008-10-07 12:33:00 2,686,976 ----a-w c:\windows\system32\nvwss.dll - 2007-12-04 23:41:00 2,519,040 ----a-w c:\windows\system32\nvwssr.dll + 2008-10-07 12:33:00 2,981,888 ----a-w c:\windows\system32\nvwssr.dll - 2007-12-04 23:41:00 1,626,112 ----a-w c:\windows\system32\nwiz.exe + 2008-10-07 12:33:00 1,630,208 ----a-w c:\windows\system32\nwiz.exe + 2008-11-21 18:40:40 110,592 ----a-w c:\windows\system32\OpenAL32.dll - 2008-07-03 20:58:39 82,160 ----a-w c:\windows\system32\perfc007.dat + 2008-11-14 07:56:20 86,766 ----a-w c:\windows\system32\perfc007.dat - 2008-07-03 20:58:39 69,076 ----a-w c:\windows\system32\perfc009.dat + 2008-11-14 07:56:20 72,902 ----a-w c:\windows\system32\perfc009.dat - 2008-07-03 20:58:39 453,930 ----a-w c:\windows\system32\perfh007.dat + 2008-11-14 07:56:20 464,266 ----a-w c:\windows\system32\perfh007.dat - 2008-07-03 20:58:39 437,102 ----a-w c:\windows\system32\perfh009.dat + 2008-11-14 07:56:20 445,566 ----a-w c:\windows\system32\perfh009.dat - 2008-04-21 06:56:26 39,424 ----a-w c:\windows\system32\pngfilt.dll + 2008-10-16 10:22:35 39,424 ----a-w c:\windows\system32\pngfilt.dll - 2008-06-21 09:18:19 107,832 ----a-w c:\windows\system32\PnkBstrB.exe + 2008-09-20 11:12:27 111,928 ----a-w c:\windows\system32\PnkBstrB.exe + 2008-05-26 11:27:00 97,280 ----a-w c:\windows\system32\prnadmin.dll + 2007-12-04 23:41:00 5,773,568 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nv4_disp.dll + 2007-12-04 23:41:00 7,435,392 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nv4_mini.sys + 2007-12-04 23:41:00 385,024 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvapi.dll + 2007-12-04 23:41:00 35,328 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvcod.dll + 2007-12-04 23:41:00 8,523,776 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvcpl.dll + 2007-12-04 23:41:00 1,089,536 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvcuda.dll + 2007-12-04 23:41:00 6,549,504 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvdisps.dll + 2007-12-04 23:41:00 5,611,520 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvdispsr.dll + 2007-12-04 23:41:00 3,420,160 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvgames.dll + 2007-12-04 23:41:00 3,334,144 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvgamesr.dll + 2007-12-04 23:41:00 229,376 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvmccs.dll + 2007-12-04 23:41:00 188,416 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvmccss.dll + 2007-12-04 23:41:00 458,752 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvmccssr.dll + 2007-12-04 23:41:00 81,920 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvmctray.dll + 2007-12-04 23:41:00 1,228,800 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvmobls.dll + 2007-12-04 23:41:00 2,854,912 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvmoblsr.dll + 2007-12-04 23:41:00 286,720 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvnt4cpl.dll + 2007-12-04 23:41:00 6,901,760 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvoglnt.dll + 2007-12-04 23:41:00 155,716 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvsvc32.exe + 2007-12-04 23:41:00 3,710,976 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvvitvs.dll + 2007-12-04 23:41:00 3,715,072 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvvitvsr.dll + 2007-12-04 23:41:00 81,920 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvwddi.dll + 2007-12-04 23:41:00 2,498,560 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvwss.dll + 2007-12-04 23:41:00 2,519,040 ----a-w c:\windows\system32\ReinstallBackups\0009\DriverFiles\nvwssr.dll + 2005-08-29 22:00:00 771,584 ----a-w c:\windows\system32\RGSS100J.dll + 2005-08-29 22:00:00 778,752 ----a-w c:\windows\system32\RGSS102E.dll + 2005-08-29 22:00:00 781,312 ----a-w c:\windows\system32\RGSS102J.dll - 2008-04-21 06:56:27 1,499,136 ----a-w c:\windows\system32\shdocvw.dll + 2008-10-16 10:22:37 1,499,136 ----a-w c:\windows\system32\shdocvw.dll - 2008-04-21 06:56:28 474,624 ----a-w c:\windows\system32\shlwapi.dll + 2008-10-16 10:22:39 474,624 ----a-w c:\windows\system32\shlwapi.dll + 2008-07-18 20:10:20 36,552 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.784\wups.dll + 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.2.6001.788\wups.dll + 2008-07-18 20:10:40 45,768 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.784\wups2.dll + 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.2.6001.788\wups2.dll - 2007-11-30 11:18:34 18,808 ------w c:\windows\system32\spmsg.dll + 2007-11-30 12:39:14 18,808 ------w c:\windows\system32\spmsg.dll + 2007-03-11 21:39:34 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctasnc.dll + 2006-11-13 01:07:16 45,056 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctbubl.dll + 2006-09-06 06:19:10 77,824 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctcfg.dll + 2007-03-11 21:24:07 380,928 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctcomx.dll + 2007-03-09 01:48:34 77,824 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctcu.dll + 2007-03-09 01:48:47 86,016 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctcub.dll + 2007-03-09 06:29:00 36,864 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctcur.dll + 2007-01-18 01:24:36 164,352 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctdr.dll + 2006-06-09 02:39:54 143,360 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctdrec.dll + 2007-01-18 01:26:13 116,224 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctdrui.dll + 2005-11-21 02:37:44 434,176 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctedf.dll + 2006-11-06 16:18:16 122,880 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctflib.dll + 2006-04-25 02:57:02 983,107 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctgf.dll + 2006-11-06 16:18:18 589,824 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxcthpec.dll + 2006-11-06 16:18:20 602,112 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxcthpeh.dll + 2006-11-06 16:18:22 180,224 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxcthpep.dll + 2007-03-09 01:48:29 176,128 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctins.dll + 2007-03-09 01:48:57 200,704 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctinsb.dll + 2007-03-09 06:29:04 114,688 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctinsr.dll + 2007-03-09 01:46:54 184,320 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctjsw.dll + 2007-03-09 01:49:09 479,232 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctjswb.dll + 2007-03-09 06:28:47 147,456 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctjswr.dll + 2007-03-19 12:58:59 398,256 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctjswx.exe + 2007-03-09 01:48:18 1,228,800 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctlpa.dll + 2007-03-09 01:49:32 3,612,672 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctlpab.dll + 2007-03-09 06:28:50 249,856 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctlpar.dll + 2007-03-11 21:27:30 344,064 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctppx.dll + 2007-03-09 01:48:05 831,488 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctprp.dll + 2007-03-09 01:50:04 3,489,792 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctprpb.dll + 2007-03-09 06:28:58 151,552 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctprpr.dll + 2007-03-09 01:47:04 466,944 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctpsw.dll + 2007-03-09 01:50:17 950,272 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctpswb.dll + 2007-03-09 06:28:54 122,880 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctpswr.dll + 2007-03-19 12:58:57 275,376 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctpswx.exe + 2006-11-21 12:27:56 319,488 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctretv.dll + 2007-03-19 12:58:30 86,960 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctserv.exe + 2006-08-28 06:25:41 241,664 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctsk0.dll + 2006-11-21 12:27:06 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxcttime.dll + 2007-03-19 12:58:42 82,864 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxcttime.exe + 2006-10-26 12:30:17 188,416 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxcttsfw.dll + 2006-11-21 12:27:48 344,064 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctuldr.dll + 2007-03-09 01:48:38 65,536 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctupd.dll + 2007-03-09 01:50:25 126,976 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctupdb.dll + 2007-03-09 06:29:08 94,208 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctupdr.dll + 2007-03-19 12:58:38 82,864 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctupld.exe + 2007-03-09 01:46:37 462,848 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctutil.dll + 2007-03-19 12:58:34 82,864 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctview.exe + 2006-04-25 02:56:49 181,962 ----a-w c:\windows\system32\spool\drivers\w32x86\3\lxctwavs.exe + 2007-03-11 21:39:34 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctasnc.dll + 2006-11-13 01:07:16 45,056 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctbubl.dll + 2006-09-06 06:19:10 77,824 ----a-r c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctcfg.dll + 2007-03-11 21:24:07 380,928 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctcomx.dll + 2007-03-09 01:48:34 77,824 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctcu.dll + 2007-03-09 01:48:47 86,016 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctcub.dll + 2007-03-09 06:29:00 36,864 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctcur.dll + 2007-01-18 01:24:36 164,352 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctdr.dll + 2006-06-09 02:39:54 143,360 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctdrec.dll + 2007-01-18 01:26:13 116,224 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctdrui.dll + 2005-11-21 02:37:44 434,176 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctedf.dll + 2006-11-06 16:18:16 122,880 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctflib.dll + 2006-04-25 02:57:02 983,107 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctgf.dll + 2006-11-06 16:18:18 589,824 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxcthpec.dll + 2006-11-06 16:18:20 602,112 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxcthpeh.dll + 2006-11-06 16:18:22 180,224 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxcthpep.dll + 2007-03-09 01:48:29 176,128 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctins.dll + 2007-03-09 01:48:57 200,704 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctinsb.dll + 2007-03-09 06:29:04 114,688 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctinsr.dll + 2007-03-09 01:46:54 184,320 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctjsw.dll + 2007-03-09 01:49:09 479,232 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctjswb.dll + 2007-03-09 06:28:47 147,456 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctjswr.dll + 2007-03-19 12:58:59 398,256 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctjswx.exe + 2007-03-09 01:48:18 1,228,800 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctlpa.dll + 2007-03-09 01:49:32 3,612,672 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctlpab.dll + 2007-03-09 06:28:50 249,856 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctlpar.dll + 2007-03-11 21:27:30 344,064 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctppx.dll + 2007-03-09 01:48:05 831,488 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctprp.dll + 2007-03-09 01:50:04 3,489,792 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctprpb.dll + 2007-03-09 06:28:58 151,552 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctprpr.dll + 2007-03-09 01:47:04 466,944 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctpsw.dll + 2007-03-09 01:50:17 950,272 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctpswb.dll + 2007-03-09 06:28:54 122,880 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctpswr.dll + 2007-03-19 12:58:57 275,376 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctpswx.exe + 2006-11-21 12:27:56 319,488 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctretv.dll + 2007-03-19 12:58:30 86,960 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctserv.exe + 2006-08-28 06:25:41 241,664 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctsk0.dll + 2006-11-21 12:27:06 106,496 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxcttime.dll + 2007-03-19 12:58:42 82,864 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxcttime.exe + 2006-10-26 12:30:17 188,416 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxcttsfw.dll + 2006-11-21 12:27:48 344,064 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctuldr.dll + 2007-03-09 01:48:38 65,536 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctupd.dll + 2007-03-09 01:50:25 126,976 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctupdb.dll + 2007-03-09 06:29:08 94,208 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctupdr.dll + 2007-03-19 12:58:38 82,864 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctupld.exe + 2007-03-09 01:46:37 462,848 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctutil.dll + 2007-03-19 12:58:34 82,864 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctview.exe + 2006-04-25 02:56:49 181,962 ----a-w c:\windows\system32\spool\drivers\w32x86\lexmark_5400_seriesacb7\lxctwavs.exe + 2004-08-03 22:56:42 619,520 ----a-w c:\windows\system32\spool\drivers\w32x86\unires.dll + 2007-01-18 01:25:06 118,784 ----a-w c:\windows\system32\spool\prtprocs\w32x86\lxctdrpp.dll - 2006-10-16 15:10:58 23,856 ----a-w c:\windows\system32\spupdsvc.exe + 2006-10-08 19:51:14 23,856 ----a-w c:\windows\system32\spupdsvc.exe + 1998-07-05 22:00:00 6,656 ----a-w c:\windows\system32\STDFTDE.DLL - 2006-08-24 11:19:40 246,814 ----a-w c:\windows\system32\strmdll.dll + 2008-10-03 10:15:49 247,326 ----a-w c:\windows\system32\strmdll.dll - 2007-11-13 11:31:11 60,416 ------w c:\windows\system32\tzchange.exe + 2008-10-22 09:47:07 62,976 ------w c:\windows\system32\tzchange.exe + 2005-05-11 01:54:30 258,352 ----a-w c:\windows\system32\unicows.dll - 2008-04-21 06:56:29 620,544 ----a-w c:\windows\system32\urlmon.dll + 2008-10-16 10:22:41 621,056 ----a-w c:\windows\system32\urlmon.dll + 2003-02-21 03:16:08 49,152 ----a-w c:\windows\system32\URTTEMP\regtlib.exe + 2008-08-03 20:19:04 4,722,688 ----a-w c:\windows\system32\vfp9r.dll + 2008-08-03 20:21:58 3,891,200 ----a-w c:\windows\system32\vfp9t.dll + 2006-11-13 12:45:54 1,419,232 ----a-w c:\windows\system32\wdfcoinstaller01005.dll + 2001-08-18 02:54:36 87,040 ----a-w c:\windows\system32\wiafbdrv.dll - 2001-08-18 10:00:00 18,432 ----a-w c:\windows\system32\win.com + 2008-12-29 16:20:53 12,988 ----a-w c:\windows\system32\win.com - 2008-03-20 08:03:19 1,845,376 ----a-w c:\windows\system32\win32k.sys + 2008-09-15 15:37:15 1,846,144 ----a-w c:\windows\system32\win32k.sys - 2008-04-21 06:56:30 672,256 ----a-w c:\windows\system32\wininet.dll + 2008-10-16 10:22:38 673,280 ----a-w c:\windows\system32\wininet.dll - 2005-01-28 06:53:16 1,027,072 ----a-w c:\windows\system32\wmnetmgr.dll + 2008-06-10 05:28:36 1,028,096 ----a-w c:\windows\system32\WMNetmgr.dll - 2006-12-07 05:29:34 2,374,472 ----a-w c:\windows\system32\wmvcore.dll + 2008-06-10 06:07:24 2,376,760 ----a-w c:\windows\system32\WMVCore.dll + 2008-11-21 18:40:40 413,696 ----a-w c:\windows\system32\wrap_oal.dll - 2007-07-30 17:19:36 549,720 ----a-w c:\windows\system32\wuapi.dll + 2008-10-16 13:12:20 561,688 ----a-w c:\windows\system32\wuapi.dll - 2007-07-30 17:19:16 53,080 ----a-w c:\windows\system32\wuauclt.exe + 2008-10-16 13:09:44 51,224 ----a-w c:\windows\system32\wuauclt.exe - 2007-07-30 17:19:42 1,712,984 ----a-w c:\windows\system32\wuaueng.dll + 2008-10-16 13:13:40 1,809,944 ----a-w c:\windows\system32\wuaueng.dll - 2007-07-30 17:19:32 325,976 ----a-w c:\windows\system32\wucltui.dll + 2008-10-16 13:12:22 323,608 ----a-w c:\windows\system32\wucltui.dll - 2007-07-30 17:18:40 33,624 ----a-w c:\windows\system32\wups.dll + 2008-10-16 13:08:58 34,328 ----a-w c:\windows\system32\wups.dll - 2007-07-30 17:19:12 43,352 ----a-w c:\windows\system32\wups2.dll + 2008-10-16 13:09:44 43,544 ----a-w c:\windows\system32\wups2.dll - 2007-07-30 17:19:46 203,096 ----a-w c:\windows\system32\wuweb.dll + 2008-10-16 13:13:40 202,776 ----a-w c:\windows\system32\wuweb.dll - 2007-05-31 18:29:42 18,280 ----a-w c:\windows\system32\x3daudio1_2.dll + 2007-10-22 02:37:16 17,928 ----a-w c:\windows\system32\X3DAudio1_2.dll + 2008-03-05 15:00:06 25,608 ----a-w c:\windows\system32\X3DAudio1_3.dll + 2007-10-22 02:39:54 267,272 ----a-w c:\windows\system32\xactengine2_10.dll - 2007-05-31 18:30:22 266,088 ----a-w c:\windows\system32\xactengine2_8.dll + 2007-06-20 19:46:04 266,088 ----a-w c:\windows\system32\xactengine2_8.dll + 2007-07-19 23:57:12 267,112 ----a-w c:\windows\system32\xactengine2_9.dll + 2008-03-05 15:03:20 238,088 ----a-w c:\windows\system32\xactengine3_0.dll + 2008-03-05 15:03:54 479,752 ----a-w c:\windows\system32\XAudio2_0.dll - 2008-04-17 11:03:46 374,272 ----a-w c:\windows\system32\xpsp3res.dll + 2008-10-15 19:05:28 374,272 ----a-w c:\windows\system32\xpsp3res.dll + 2008-08-04 14:53:37 28,160 ----a-w c:\windows\system32\zlib.dll + 2008-12-29 16:32:07 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_2f0.dat + 2008-12-29 16:35:50 16,384 ----atw c:\windows\Temp\Perflib_Perfdata_b78.dat + 2000-12-08 20:59:38 122,880 ----a-w c:\windows\UnGins.exe + 2008-12-26 22:21:44 417,792 ----a-w c:\windows\uninstall\KnuddelsBot\setup.exe + 2008-09-30 15:42:08 1,286,152 ----a-w c:\windows\WinSxS\x86_Microsoft.MSXML2_6bd6b9abf345378f_4.20.9870.0_x-ww_a32d74cf\msxml4.dll + 2008-09-30 15:45:12 91,656 ----a-w c:\windows\WinSxS\x86_Microsoft.MSXML2R_6bd6b9abf345378f_4.1.1.0_x-ww_2a41bceb\msxml4r.dll + 2007-11-06 23:19:32 161,784 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.ATL_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_312cf0e9\atl90.dll + 2007-11-06 18:23:58 224,768 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcm90.dll + 2007-11-06 23:19:34 568,832 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcp90.dll + 2007-11-06 23:19:34 655,872 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_d08d0375\msvcr90.dll + 2007-11-06 23:19:38 1,156,600 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfc90.dll + 2007-11-06 23:19:38 1,162,744 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfc90u.dll + 2007-11-06 20:51:08 59,904 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfcm90.dll + 2007-11-06 20:51:08 59,904 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_a173767a\mfcm90u.dll + 2007-11-06 23:19:16 41,472 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90chs.dll + 2007-11-06 23:19:16 41,984 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90cht.dll + 2007-11-06 23:19:28 60,928 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90deu.dll + 2007-11-06 23:19:22 54,272 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90enu.dll + 2007-11-06 23:19:22 59,392 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90esn.dll + 2007-11-06 23:19:22 59,392 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90esp.dll + 2007-11-06 23:19:28 60,416 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90fra.dll + 2007-11-06 23:19:28 59,392 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90ita.dll + 2007-11-06 23:19:16 47,104 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90jpn.dll + 2007-11-06 23:19:16 46,592 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_11f3ea3a\mfc90kor.dll + 2007-11-06 23:19:22 54,272 ----a-w c:\windows\WinSxS\x86_Microsoft.VC90.OpenMP_1fc8b3b9a1e18e3b_9.0.21022.8_x-ww_ecc42bd1\vcomp90.dll + 2008-04-15 17:54:16 1,724,416 ----a-w c:\windows\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.2600.3352_x-ww_81af8e88\GdiPlus.dll . -- Snapshot auf jetziges Datum zurückgesetzt -- . (((((((((((((((((((((((((((( Autostartpunkte der Registrierung )))))))))))))))))))))))))))))))))))))))) . . *Hinweis* leere Einträge & legitime Standardeinträge werden nicht angezeigt. REGEDIT4 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] "{c9508125-4747-4733-b048-e4b82dc9716d}"= "c:\programme\PHPNukeDE\tbPHPN.dll" [2008-11-23 1784856] [HKEY_CLASSES_ROOT\clsid\{c9508125-4747-4733-b048-e4b82dc9716d}] [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{c9508125-4747-4733-b048-e4b82dc9716d}] 2008-11-23 23:03 1784856 --a------ c:\programme\PHPNukeDE\tbPHPN.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{c9508125-4747-4733-b048-e4b82dc9716d}"= "c:\programme\PHPNukeDE\tbPHPN.dll" [2008-11-23 1784856] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{C9508125-4747-4733-B048-E4B82DC9716D}"= "c:\programme\PHPNukeDE\tbPHPN.dll" [2008-11-23 1784856] [HKEY_CLASSES_ROOT\clsid\{c9508125-4747-4733-b048-e4b82dc9716d}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\ctfmon.exe" [2004-08-03 15360] "swg"="c:\programme\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2007-07-30 68856] "Skype"="c:\programme\Skype\Phone\Skype.exe" [2007-08-22 23120680] "Arcor Online"="c:\progra~1\ARCORO~1\Arcor.exe" [2007-05-03 535544] "DAEMON Tools"="c:\programme\DAEMON Tools\daemon.exe" [2007-09-18 171464] "RunSteam"="c:\program files\Steam\Steamstart.exe" [2008-07-16 299095] "ISUSScheduler"="c:\programme\Gemeinsame Dateien\InstallShield\UpdateService\issch.exe" [2006-09-10 86960] "ISUSPM"="c:\programme\Gemeinsame Dateien\InstallShield\UpdateService\isuspm.exe" [2006-09-10 218032] "MMAgent"="c:\programme\Mobile Master\MMAgent.exe" [2008-09-11 1347008] "ICQ"="c:\programme\ICQ6.5\ICQ.exe" [2008-12-17 172792] "MSMSGS"="c:\programme\Messenger\msmsgs.exe" [2004-10-13 1694208] "win.com"="c:\windows\system32\win.com" [2008-12-29 12988] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "*win.com"="c:\windows\system32\win.com" [2008-12-29 12988] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NeroFilterCheck"="c:\windows\system32\NeroCheck.exe" [2001-07-09 155648] "InCD"="c:\programme\Ahead\InCD\InCD.exe" [2006-11-02 1397760] "LGODDFU"="c:\programme\lg_fwupdate\fwupdate.exe" [2005-04-12 229376] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-10-07 13574144] "TalkAndWrite"="c:\dokumente und einstellungen\All Users\Anwendungsdaten\Skype\Plugins\Plugins\1163D2B46CC742E5A3CC9E4157887751\TalkAndWrite.exe" [2007-08-14 2664448] "avgnt"="c:\programme\AntiVir PersonalEdition Classic\avgnt.exe" [2008-07-17 266497] "Adobe Reader Speed Launcher"="c:\programme\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2007-10-10 39792] "D-Link AirPlus G"="c:\programme\D-Link\AirPlus G\AirGCFG.exe" [2005-11-23 1544192] "ANIWZCS2Service"="c:\programme\ANI\ANIWZCS2 Service\WZCSLDR2.exe" [2005-10-19 49152] "SunJavaUpdateSched"="c:\programme\Java\jre6\bin\jusched.exe" [2008-01-05 148888] "TkBellExe"="c:\programme\Gemeinsame Dateien\Real\Update_OB\realsched.exe" [2008-03-25 185896] "ISUSPM Startup"="c:\progra~1\GEMEIN~1\INSTAL~1\UPDATE~1\isuspm.exe" [2006-09-10 218032] "lxctmon.exe"="c:\programme\Lexmark 5400 Series\lxctmon.exe" [2007-03-19 291760] "Lexmark 5400 Series Fax Server"="c:\programme\Lexmark 5400 Series\fm3032.exe" [2007-03-19 304048] "EzPrint"="c:\programme\Lexmark 5400 Series\ezprint.exe" [2007-03-19 82864] "LXCTCATS"="c:\windows\System32\spool\DRIVERS\W32X86\3\LXCTtime.dll" [2006-11-21 106496] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-10-07 86016] "win.com"="c:\windows\system32\win.com" [2008-12-29 12988] "SkyTel"="SkyTel.EXE" [2006-05-16 c:\windows\SkyTel.exe] "nwiz"="nwiz.exe" [2008-10-07 c:\windows\system32\nwiz.exe] "RTHDCPL"="RTHDCPL.EXE" [2006-06-01 c:\windows\RTHDCPL.exe] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] "*win.com"="c:\windows\system32\win.com" [2008-12-29 12988] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\System32\CTFMON.EXE" [2004-08-03 15360] c:\dokumente und einstellungen\Administrator\Startmen\Programme\Autostart\ Adobe Gamma.lnk - c:\programme\Gemeinsame Dateien\Adobe\Calibration\Adobe Gamma Loader.exe [2005-03-16 113664] hamachi.lnk - c:\programme\Hamachi\hamachi.exe [2008-07-31 625952] [HKEY_LOCAL_MACHINE\software\microsoft\security center] "AntiVirusOverride"=dword:00000001 [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "c:\\Programme\\7-Zip\\7zFM.exe"= "c:\\Programme\\AGEIA Technologies\\bin\\TrayIcon.exe"= "c:\\Programme\\AntiVir PersonalEdition Classic\\avcenter.exe"= "c:\\Programme\\DAEMON Tools\\uninst.exe"= "c:\\Programme\\Zattoo\\zattood.exe"= "c:\\Programme\\Zattoo\\Zattoo.exe"= "c:\\Programme\\Windows Live\\Messenger\\msnmsgr.exe"= "c:\\Programme\\DNA\\btdna.exe"= "c:\\Programme\\Hamachi\\hamachi.exe"= "c:\\Programme\\BitTorrent\\bittorrent.exe"= "c:\\Programme\\Softnyx\\WolfTeam\\Wolfteam.bin"= "c:\\Programme\\gPotato.eu\\Street Gears\\StreetGear.exe"= "c:\\WINDOWS\\system32\\lxctcoms.exe"= "c:\\Programme\\Steam\\steamapps\\agaain\\counter-strike source\\hl2.exe"= "c:\\Programme\\Steam\\steamapps\\agaain\\source sdk base\\hl2.exe"= "c:\\Programme\\TmNationsForever\\TmForever.exe"= "c:\\Programme\\Steam\\steamapps\\agaain\\garrysmod\\hl2.exe"= "c:\\Programme\\Steam\\steamapps\\bambam924\\counter-strike source\\hl2.exe"= "c:\\Programme\\Steam\\steamapps\\gamer449\\counter-strike source\\hl2.exe"= "c:\\Programme\\Steam\\steamapps\\gamer449\\half-life 2 deathmatch\\hl2.exe"= "c:\\Programme\\Mozilla Firefox\\firefox.exe"= "c:\\AppServ\\Apache2.2\\bin\\httpd.exe"= "c:\\Programme\\NCsoft\\Exteel (US)\\System\\Exteel.exe"= "c:\\Programme\\Messenger\\msmsgs.exe"= "c:\\Programme\\ICQ6.5\\ICQ.exe"= "c:\\Programme\\Malwarebytes' Anti-Malware\\mbam.exe"= "c:\\Programme\\Skype\\Phone\\Skype.exe"= [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List] "3389:TCP"= 3389:TCP:@xpsp2res.dll,-22009 "29000:TCP"= 29000:TCP:ICP "29100:TCP"= 29100:TCP:nProtect GameGuard "29200:TCP"= 29200:TCP:GameGuard.des "29200:UDP"= 29200:UDP:GameGuard "29100:UDP"= 29100:UDP:BOTS R2 Apache2.2;Apache2.2;"c:\appserv\Apache2.2\bin\httpd.exe" -k runservice [2008-01-17 24635] R2 ICQ Service;ICQ Service;c:\programme\ICQ6Toolbar\ICQ Service.exe [2008-12-07 222456] R2 MpmSvc;MPM MultiPlugMate Service;c:\programme\MPM\MpmSvc.exe [2006-10-23 39936] R2 SVKP;SVKP;\??\c:\windows\system32\SVKP.sys [2007-10-13 2368] R2 TeamViewer4;TeamViewer 4;"c:\programme\TeamViewer\Version4\TeamViewer_Service.exe" -service [2008-12-10 185640] S2 XAMPP;XAMPP Service;c:\xampp\service.exe [2007-12-21 60928] S3 EverestDriver;Lavalys EVEREST Kernel Driver;\??\c:\programme\Lavalys\EVEREST Home Edition\kerneld.wnt [2005-05-16 4736] S3 geebers12;geebers12;\??\c:\dokumente und einstellungen\Administrator\Desktop\Bluffy_Engine__UGH_\Bluffy Engine (UGH)\nvid888.sys [] S3 IlvMoneyDRIVER53;IlvMoneyDRIVER53;\??\c:\arquivos de programas\RadixCheats\Radix Engine 1.0\IlvMoney.sys [2008-05-11 22016] S3 MzBot;MzBot;\??\C:\MzBot.sys [] S3 NTProcDrv;Process creation detector for NT.;\??\c:\dokumente und einstellungen\Administrator\Desktop\[cheat-project.com] RohanBotEn1.0.3 2008-06-13\RohanBotEn1.0.3\NtProcDrv.sys [] S3 PAC207;SoC PC-Camera;c:\windows\system32\DRIVERS\pfc027.sys [2005-04-08 162176] S3 puma1;puma1;\??\c:\dokumente und einstellungen\Administrator\Desktop\Puma - ByFelipeZé\puma.sys [] S3 Revolution1;Revolution1;\??\c:\dokumente und einstellungen\Administrator\Desktop\Revolution_Engine_8.3_ShaK3\SHAK3.sys [] S3 SCREAMINGBDRIVER;Screaming Bee Audio;c:\windows\system32\drivers\ScreamingBAudio.sys [] S3 TSHAK3T1;TSHAK3T1;\??\c:\dokumente und einstellungen\Administrator\Desktop\RE 3.2\RE 3.2\spuce.sys [] S3 Usbfilt;UsbFilt;\??\c:\windows\SYSTEM32\DRIVERS\usbfilt.sys [2007-07-24 26166] S3 XDva039;XDva039;\??\c:\windows\system32\XDva039.sys [] S3 XDva098;XDva098;\??\c:\windows\system32\XDva098.sys [] S3 XDva163;XDva163;\??\c:\windows\system32\XDva163.sys [] S3 XDva168;XDva168;\??\c:\windows\system32\XDva168.sys [] S3 XDva189;XDva189;\??\c:\windows\system32\XDva189.sys [] S3 XDva193;XDva193;\??\c:\windows\system32\XDva193.sys [] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{82A7276B-0B6D-8A3D-3C4C-87A6C480B7A5}] c:\windows\system32\win.com 2 . - - - - Entfernte verwaiste Registrierungseinträge - - - - HKCU-Run-P2kAutostart - (no file) . ------- Zusätzlicher Suchlauf ------- . uStart Page = hxxp://search.conduit.com?SearchSource=10&ctid=CT2102572 uSearch Page = hxxp://www.google.com uSearch Bar = hxxp://www.google.com/ie mDefault_Search_URL = hxxp://www.google.com/ie mStart Page = about:blank mWindow Title = Arcor AG & Co. KG uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s mSearchAssistant = hxxp://www.google.com/ie IE: Nach Microsoft &Excel exportieren - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000 IE: {{d9288080-1baa-4bc4-9cf8-a92d743db949} - c:\dokumente und einstellungen\Administrator\Startmenü\Programme\IMVU\Run IMVU.lnk c:\windows\Downloaded Program Files\OberonGameHost.dll - O16 -: {D0C0F75C-683A-4390-A791-1ACFD5599AB8} hxxp://icq.oberon-media.com/Gameshell/GameHost/1.0/OberonGameHost.cab c:\windows\Downloaded Program Files\OberonGameHost_dbg.inf FF - ProfilePath - c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\5r7p6m8v.default\ FF - prefs.js: browser.search.defaulturl - hxxp://www.yodl.de/href.php?hrefname=FF-splug_google&q= FF - prefs.js: browser.search.selectedEngine - ICQ Search FF - prefs.js: browser.startup.homepage - hxxp://www.wow-europe.com/de/index.xml FF - prefs.js: keyword.URL - hxxp://www.yodl.de/href.php?hrefname=FF-splug_google&q= FF - component: c:\programme\AdVantage\{A89AED22-9133-424c-88E7-C8235C5FF302}\components\MeMedia_FF.dll FF - plugin: c:\dokumente und einstellungen\Administrator\Anwendungsdaten\Mozilla\Firefox\Profiles\5r7p6m8v.default\extensions\iaplayer@instantaction.com\plugins\npiaplayer.dll FF - plugin: c:\program files\Real\RealPlayer\Netscape6\nppl3260.dll FF - plugin: c:\program files\Real\RealPlayer\Netscape6\nprjplug.dll FF - plugin: c:\program files\Real\RealPlayer\Netscape6\nprpjplug.dll FF - plugin: c:\programme\Java\jre6\bin\npdeploytk.dll FF - plugin: c:\programme\Java\jre6\bin\npjava11.dll FF - plugin: c:\programme\Java\jre6\bin\npjava12.dll FF - plugin: c:\programme\Java\jre6\bin\npjava13.dll FF - plugin: c:\programme\Java\jre6\bin\npjava14.dll FF - plugin: c:\programme\Java\jre6\bin\npjava32.dll FF - plugin: c:\programme\Java\jre6\bin\npjpi160_10.dll FF - plugin: c:\programme\Java\jre6\bin\npoji610.dll FF - plugin: c:\programme\Microsoft Silverlight\2.0.31005.0\npctrl.1.0.30716.0.dll FF - plugin: c:\programme\Microsoft Silverlight\2.0.31005.0\npctrl.dll FF - plugin: c:\programme\Mozilla Firefox\plugins\npbittorrent.dll FF - plugin: c:\programme\Mozilla Firefox\plugins\NPHoldemFireLauncher.dll FF - plugin: c:\programme\Mozilla Firefox\plugins\npigl.dll FF - plugin: c:\programme\Mozilla Firefox\plugins\NPMFireLauncher.dll FF - plugin: c:\programme\Mozilla Firefox\plugins\npygw.dll . ************************************************************************** catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2008-12-29 17:34:51 Windows 5.1.2600 Service Pack 2 NTFS Scanne versteckte Prozesse... Scanne versteckte Autostarteinträge... HKLM\Software\Microsoft\Windows\CurrentVersion\Run LXCTCATS = rundll32 c:\windows\System32\spool\DRIVERS\W32X86\3\LXCTtime.dll,_RunDLLEntry@16??????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????? Scanne versteckte Dateien... Scan erfolgreich abgeschlossen versteckte Dateien: 0 ************************************************************************** "ImagePath"="\??\c:\dokumente und einstellungen\Administrator\Desktop\ [cheat-project.com] RohanBotEn1.0.3 2008-06-13\RohanBotEn1.0.3\NtProcDrv.sys" [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\EverestDriver] "ImagePath"="\??\c:\programme\Lavalys\EVEREST Home Edition\kerneld.wnt" [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\mysql] "ImagePath"="c:\appserv\MySQL\bin\mysqld-nt --defaults-file=c:\appserv\MySQL\my.ini mysql" [HKEY_LOCAL_MACHINE\System\ControlSet001\Services\NTProcDrv] "ImagePath"="\??\c:\dokumente und einstellungen\Administrator\Desktop\ . ------------------------ Weitere laufende Prozesse ------------------------ . c:\programme\Ahead\InCD\InCDsrv.exe c:\programme\AntiVir PersonalEdition Classic\sched.exe c:\programme\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe c:\programme\Java\jre6\bin\jqs.exe c:\programme\Gemeinsame Dateien\LightScribe\LSSrvc.exe c:\windows\system32\lxctcoms.exe c:\programme\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe c:\appserv\MySQL\bin\mysqld-nt.exe c:\programme\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe c:\windows\system32\nvsvc32.exe c:\windows\system32\PnkBstrA.exe c:\windows\system32\PAStiSvc.exe c:\windows\system32\wdfmgr.exe c:\programme\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe c:\programme\TeamViewer\Version4\TeamViewer.exe c:\windows\system32\wbem\wmiapsrv.exe c:\programme\Internet Explorer\iexplore.exe c:\windows\system32\rundll32.exe c:\windows\system32\rundll32.exe c:\programme\ArcorOnline\AOButler.exe c:\programme\MultiKeyboard Driver\KbdDrv.exe c:\programme\Mobile Master\MMScan.exe c:\programme\No-IP\DUC20.exe c:\programme\OpenOffice.org 2.2\program\soffice.exe c:\programme\OpenOffice.org 2.2\program\soffice.bin c:\programme\Skype\Plugin Manager\skypePM.exe . ************************************************************************** . Zeit der Fertigstellung: 2008-12-29 17:39:22 - PC wurde neu gestartet [Administrator] ComboFix-quarantined-files.txt 2008-12-29 16:39:19 ComboFix2.txt 2008-07-07 12:53:43 Vor Suchlauf: 37 Verzeichnis(se), 18,136,125,440 Bytes frei Nach Suchlauf: 37 Verzeichnis(se), 18,076,250,112 Bytes frei WindowsXP-KB310994-SP2-Pro-BootDisk-DEU.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /fastdetect /NoExecute=OptIn /usepmtimer 1661 --- E O F --- 2008-12-17 23:02:00 |
|
|
|
|
|
|
29.12.2008, 19:21
Moderator
Beiträge: 7805 |
#6
Hm, da musst du die als infiziert gemeldete win.com durch ein Orginal ersetzen. Antivir sollte die Datei loeschen koennen, wenn du den Ordner System32 scannen laesst. Dann einfach das Orginal in den Ordner system32 entpacken.
Ich hab das Orginal angehaengt Anhang: win.rar __________ MfG Ralf SEO-Spam Hunter |
|
|
|
|
|
Um auf dieses Thema zu ANTWORTEN
bitte erst » hier kostenlos registrieren!!
bitte erst » hier kostenlos registrieren!!
Folgende Themen könnten Dich auch interessieren:
Seite(n): 1
Copyright © 2024, Protecus.de - Protecus Team - Impressum / Mediadaten