TR/Dldr.FakeAV.A.4

[Snoopy23]

Hallo,
hab letztens von Antivir den im Titel genannten Trojaner gemeldet bekommen, ich versuchte diesen zu loeschen und bin mir jetzt nicht sicher ob ich ihn wirklich los bin... Da ich die letzten 3 Tage etliche andere Viren und co. von diesem Laptop verbannt habe, moechte ich auch gerne wissen ob er nun auch wirklich clean ist oder ich noch mehr Arbeit vor mir habe

Hier mal mein Logfile :

Code:

Logfile of HijackThis v1.99.1
Scan saved at 14:23:13, on 18/08/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\WINDOWS\system32\basfipm.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\ScanSoft\OmniPagePro14.0\Opware14.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\explorer.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\hijackthis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.euro.dell.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Opware14] "C:\Program Files\ScanSoft\OmniPagePro14.0\Opware14.exe"
O4 - HKLM\..\Run: [EPSON Stylus C66 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE /P23 "EPSON Stylus C66 Series" /O6 "USB001" /M "Stylus C66"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe 
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [RavAV] C:\WINDOWS\AdobeR.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKCU\..\Run: [EPSON Stylus C66 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE /P23 "EPSON Stylus C66 Series" /M "Stylus C66" /EF "HKCU"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec Star Downloader - C:\Program Files\Star Downloader\sdie.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{E174686C-9658-430A-8559-F5BC372506A9}: NameServer = 212.27.54.252,212.27.53.252
O18 - Protocol: bw+0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\system32\basfipm.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: JFWService - Freedom Scientific BLV Group, LLC - C:\Program Files\Freedom Scientific\JAWS\6.20\JFW.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Unknown owner - C:\Program Files\Norton AntiVirus\navapsvc.exe (file missing)
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe

Vielen Dank schon mal im Voraus

Snoopy

[Speedy]

hi, läuft das ding überhaupt noch, mit dem vielen installieren und wieder deinstallieren ?

diese datei(en) hier bei virustotal überprüfen lassen, ergebnis (egal wie es aussieht, von der ersten zeile -> inkl dateinamen, bis zur letzten zeile der hash-werte) posten.

C:\WINDOWS\AdobeR.exe

• download von filelist.zip auf deinen desktop.
• entpacke hier die zip datei
• starte nun durch einen doppelklick auf die datei filelist.bat das stapelverarbeitungsprogramm
• dein bevorzugtes textverarbeitungsprogramm wird sich öffnen
• markiere den inhalt und füge in hier im forum in deinem beitrag ein.
• wichtig: logfile im tag [code] posten
• formatiere nun deinen beitrag vor dem speichern, in dem du alle texte, die ein älteres datum besitzen, als die letzten 30 tage, aus der liste löscht.
• das sind alle verzeichnisse, die mit dieser filelist.bat ausgelesen werden.
  1. Verzeichnis von C:\
  2. Verzeichnis von C:\WINDOWS
  3. Verzeichnis von C:\WINDOWS\system
  4. Verzeichnis von C:\WINDOWS\system32 --> von hier bitte alles posten
  5. Verzeichnis von C:\WINDOWS\Prefetch
  6. Verzeichnis von C:\WINDOWS\tasks
  7. Verzeichnis von C:\WINDOWS\Temp
  8. Verzeichnis von C:\DOCUME~1\Name\LOCALS~1\Temp

[Snoopy23]

Also diese Datei finde ich nirgendwo auf dem Rechner, deshalb war es mir auch nicht moeglich sie bei VirusTotal zu pruefen

Hier der Inhalt von filelist :

Code:

----- Root ----------------------------- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\

18/08/2007  17:49                43 filelist.txt
18/08/2007  17:11       536ÿ301ÿ568 hiberfil.sys
18/08/2007  17:11       805ÿ306ÿ368 pagefile.sys
16/08/2007  23:30               216 boot.ini
              18 fichier(s)    1ÿ357ÿ186ÿ427 octets
               0 R‚p(s)  11ÿ400ÿ044ÿ544 octets libres
 
----- Windows -------------------------- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\WINDOWS

18/08/2007  17:12             5ÿ799 WindowsUpdate.log
18/08/2007  17:12                 0 0.log
18/08/2007  17:12             3ÿ722 ModemLog_Conexant D110 MDC V.92 Modem.txt
18/08/2007  17:12               159 wiadebug.log
18/08/2007  17:12                50 wiaservc.log
18/08/2007  17:12                 0 Sti_Trace.log
18/08/2007  17:11               292 SchedLgU.Txt
18/08/2007  17:11             2ÿ048 bootstat.dat
18/08/2007  16:50               154 ntbtlog.txt
16/08/2007  23:30               649 win.ini
16/08/2007  23:30               227 system.ini
              95 fichier(s)        8ÿ697ÿ985 octets
               0 R‚p(s)  11ÿ400ÿ040ÿ448 octets libres
 
----- System  --- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\WINDOWS\system

              25 fichier(s)          931ÿ483 octets
               0 R‚p(s)  11ÿ400ÿ040ÿ448 octets libres
 
----- System 32 (Achtung: Zeitfenster beachten!) --- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\WINDOWS\system32

18/08/2007  17:49             1ÿ498 bpkvxmjq_navps.dat
18/08/2007  17:48             4ÿ517 bpkvxmjq.dat
18/08/2007  17:12             2ÿ206 wpa.dbl
18/08/2007  17:12         2ÿ000ÿ000 HJSMEM.DAT
16/08/2007  16:31           469ÿ826 perfh00C.dat
16/08/2007  16:31            77ÿ004 perfc00C.dat
16/08/2007  16:31           402ÿ300 perfh009.dat
16/08/2007  16:31            63ÿ292 perfc009.dat
16/08/2007  16:31           986ÿ310 PerfStringBackup.INI
15/08/2007  17:17            69ÿ721 SynTPFcs.dll
15/08/2007  17:17            81ÿ920 SynTPCo2.dll
15/08/2007  17:17            94ÿ297 SynTPAPI.dll
15/08/2007  17:17           114ÿ688 SynCtrl.dll
15/08/2007  17:17            82ÿ012 SynCOM.dll
03/08/2007  15:37           265ÿ497 bpkvxmjq_nav.dat
03/08/2007  06:34        16ÿ789ÿ464 MRT.exe
            2067 fichier(s)      411ÿ114ÿ009 octets
               0 R‚p(s)  11ÿ399ÿ839ÿ744 octets libres
 
----- Prefetch ------------------------- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\WINDOWS\Prefetch

18/08/2007  17:49            10ÿ932 FIND.EXE-0EEAD1A7.pf
18/08/2007  17:49            22ÿ954 CMD.EXE-034B0549.pf
18/08/2007  17:41            33ÿ058 NOTEPAD.EXE-2F2D61E1.pf
18/08/2007  17:41            63ÿ676 HIJACKTHIS.EXE-0FDAF2E1.pf
18/08/2007  17:30            91ÿ346 IEXPLORE.EXE-2D97EBE6.pf
18/08/2007  17:13            76ÿ962 WUAUCLT.EXE-1360D60A.pf
18/08/2007  17:13            36ÿ406 SVCHOST.EXE-2D5FBD18.pf
18/08/2007  17:13         1ÿ010ÿ344 NTOSBOOT-B00DFAAD.pf
18/08/2007  14:36            24ÿ146 LOGONUI.EXE-312BE1BF.pf
18/08/2007  14:34            51ÿ082 AVGAS.EXE-02F47B43.pf
18/08/2007  14:34            18ÿ834 VERCLSID.EXE-28F52AD2.pf
18/08/2007  14:34            49ÿ070 GUARD.EXE-1B701525.pf
18/08/2007  14:33            49ÿ664 AVGAS-SETUP-7.5.1.43.EXE-3432B317.pf
18/08/2007  14:32            21ÿ878 CCLEANER.EXE-09CFC2BC.pf
18/08/2007  14:31            21ÿ022 CCSETUP141.EXE-194029D5.pf
18/08/2007  14:28            82ÿ228 WINWORD.EXE-33AEA629.pf
18/08/2007  13:29            70ÿ240 WMIPRVSE.EXE-0D449B4F.pf
18/08/2007  13:29            66ÿ664 MSIEXEC.EXE-330626DC.pf
18/08/2007  13:28            48ÿ324 RUNDLL32.EXE-6DF739B2.pf
18/08/2007  13:28            69ÿ838 DWWIN.EXE-2C373FB7.pf
18/08/2007  13:07            22ÿ926 SNDVOL32.EXE-0EC6FD20.pf
18/08/2007  13:06            76ÿ418 MSNMSGR.EXE-3744B6D8.pf
18/08/2007  13:03            45ÿ322 AD-AWARE2007.EXE-396F5C3C.pf
18/08/2007  13:03            54ÿ520 LSUPDATEMANAGER.EXE-25B83D92.pf
18/08/2007  13:03            37ÿ562 HOSTFILEEDITOR.EXE-30A62C81.pf
18/08/2007  12:43            14ÿ064 AVGNT.EXE-0A29D603.pf
18/08/2007  12:43            50ÿ304 REGSVR32.EXE-396DEA2C.pf
18/08/2007  12:42            42ÿ134 UPDATE.EXE-3742C5C3.pf
18/08/2007  12:42            14ÿ622 PREUPD.EXE-1D5D2007.pf
18/08/2007  12:39            48ÿ126 AVSCAN.EXE-291C145B.pf
18/08/2007  12:38            28ÿ014 AAWSERVICE.EXE-109157C4.pf
18/08/2007  11:42            54ÿ984 AVCENTER.EXE-2F8DD433.pf
18/08/2007  11:39            85ÿ822 SPYBOTSD.EXE-1702AD5F.pf
18/08/2007  11:36            17ÿ066 REGEDIT.EXE-2AE3423E.pf
18/08/2007  11:05            57ÿ640 EXPLORER.EXE-02121B1A.pf
18/08/2007  11:05            20ÿ214 KHANCER.EXE-19971A2C.pf
18/08/2007  11:00            41ÿ288 WMPLAYER.EXE-1ACCF80A.pf
18/08/2007  10:59             8ÿ012 ATIPRBXX.EXE-2DA84FA2.pf
18/08/2007  00:49            28ÿ170 ALBUMDB2.EXE-1F918EF2.pf
18/08/2007  00:49            11ÿ850 FWPRINT.EXE-0FDA240A.pf
18/08/2007  00:49            16ÿ912 MANIFESTENGINE.EXE-1E2BEF82.pf
17/08/2007  23:57            44ÿ640 RUNDLL32.EXE-453420C4.pf
17/08/2007  22:30            23ÿ090 STINGER.EXE-2ADFB21D.pf
17/08/2007  22:24            19ÿ438 RUNDLL32.EXE-4CAF3F5C.pf
17/08/2007  22:24            21ÿ266 CONTROL.EXE-24FBF8B3.pf
17/08/2007  22:23            17ÿ746 RUNDLL32.EXE-3E20222E.pf
17/08/2007  22:17            18ÿ062 GUARDGUI.EXE-1409EC4A.pf
17/08/2007  22:02            44ÿ116 POKERSTARS.EXE-32B46940.pf
17/08/2007  22:02            69ÿ960 POKERSTARSUPDATE.EXE-050D0E2A.pf
17/08/2007  21:45            31ÿ608 SPRITE6.EXE-132ABEA1.pf
17/08/2007  21:44            18ÿ576 LOGIACTION.EXE-02F35391.pf
17/08/2007  21:38           421ÿ410 Layout.ini
17/08/2007  12:44            11ÿ638 WSCNTFY.EXE-0B14C27D.pf
17/08/2007  12:44            48ÿ358 AVGUARD.EXE-08DEFEBD.pf
17/08/2007  12:43            48ÿ962 AVNOTIFY.EXE-1AE4246B.pf
17/08/2007  09:26            12ÿ836 CALC.EXE-02A5B4B1.pf
17/08/2007  01:56            38ÿ406 ETTSENGINE.EXE-1536BB0F.pf
17/08/2007  01:56            45ÿ040 JFW.EXE-1D17A9B4.pf
17/08/2007  00:53            36ÿ692 DIVX PLAYER.EXE-0893EE5B.pf
16/08/2007  23:59            21ÿ172 DW20.EXE-0A0B1C6C.pf
16/08/2007  23:58            36ÿ482 OSE.EXE-2D1D1CBE.pf
16/08/2007  23:57            94ÿ008 CLEANMGR.EXE-31B430FE.pf
16/08/2007  23:57            17ÿ358 IMAPI.EXE-201490BB.pf
16/08/2007  23:37            22ÿ726 TASKMGR.EXE-06144C13.pf
16/08/2007  23:36            19ÿ828 REGEDT32.EXE-3AF50E64.pf
16/08/2007  23:36            19ÿ420 REGEDIT.EXE-31F84D89.pf
16/08/2007  23:30            29ÿ114 MSCONFIG.EXE-1EF1EA0F.pf
16/08/2007  23:23            31ÿ928 CWSHREDDER.EXE-2DCC4047.pf
16/08/2007  23:04            18ÿ116 REGEDIT32.EXE-2F6592BB.pf
16/08/2007  22:58            58ÿ410 ACRORD32.EXE-1CE22EA3.pf
16/08/2007  22:52            15ÿ658 VUNDOFIX.EXE-305ED13E.pf
16/08/2007  19:56            13ÿ454 RUNDLL32.EXE-4FF9832D.pf
16/08/2007  19:38            90ÿ592 HELPSVC.EXE-1C192440.pf
16/08/2007  19:23            65ÿ876 DUMPREP.EXE-0AF2BF67.pf
16/08/2007  16:51            50ÿ980 MSCORSVW.EXE-310BC412.pf
16/08/2007  16:32            19ÿ286 LODCTR.EXE-03F34D45.pf
16/08/2007  16:32            22ÿ670 WMIADAP.EXE-32F99497.pf
16/08/2007  16:32             9ÿ604 NGEN.EXE-20BDC4FB.pf
16/08/2007  16:32            33ÿ784 REGSVCS.EXE-0EADA066.pf
16/08/2007  16:31            23ÿ806 ASPNET_REGIIS.EXE-0240A7FC.pf
16/08/2007  16:31            20ÿ492 MOFCOMP.EXE-266B2314.pf
16/08/2007  16:29             9ÿ996 REGTLIBV12.EXE-010D5E29.pf
16/08/2007  16:25            53ÿ980 NDP20-KB928365-X86.EXE-2D5188C7.pf
16/08/2007  16:24            42ÿ122 ZT8.EXE-14DCE958.pf
16/08/2007  15:23            17ÿ148 RUNDLL32.EXE-55C15F58.pf
16/08/2007  15:07            50ÿ132 MMC.EXE-3B59A269.pf
16/08/2007  14:59            15ÿ080 RUNDLL32.EXE-40424F6F.pf
16/08/2007  11:34            25ÿ032 ZCLIENTM.EXE-1615F4B8.pf
16/08/2007  11:34            17ÿ084 HRTZZM.EXE-2AA35E97.pf
16/08/2007  11:31            14ÿ220 RUNDLL32.EXE-6E8D4657.pf
16/08/2007  02:53            28ÿ820 SETUP_WM.EXE-02751BCA.pf
16/08/2007  02:45            60ÿ836 MMC.EXE-3D339B16.pf
16/08/2007  02:44            27ÿ558 DIVXSM.EXE-052AE590.pf
16/08/2007  02:43            49ÿ778 WMPLAYER.EXE-1ACCF80C.pf
16/08/2007  01:42            20ÿ194 RUNDLL32.EXE-65EDA3BF.pf
16/08/2007  01:03            15ÿ118 POKERSTARSINSTALL[1].EXE-26950D4A.pf
16/08/2007  01:00            27ÿ178 UNINSTALL.EXE-3644BD04.pf
16/08/2007  00:57            21ÿ810 RUNDLL32.EXE-70372209.pf
16/08/2007  00:52            70ÿ058 PARTYGAMING.EXE-17B1F838.pf
16/08/2007  00:52            18ÿ538 SHOWURL1.EXE-251B71EB.pf
16/08/2007  00:52             7ÿ442 PGINSTALL.EXE-093724A3.pf
16/08/2007  00:52             7ÿ192 ICONINIE.EXE-07E55B07.pf
16/08/2007  00:51            24ÿ636 SET4F.TMP-3438B5A4.pf
16/08/2007  00:51             6ÿ182 PARTYPOKERSETUP[1].EXE-336A2986.pf
16/08/2007  00:37            39ÿ034 DFRGNTFS.EXE-38C3807C.pf
15/08/2007  21:59            15ÿ658 DEFRAG.EXE-2858C7E2.pf
15/08/2007  21:37            40ÿ738 IEDW.EXE-0F1DF43F.pf
15/08/2007  20:49            13ÿ002 JHOOKLDR.EXE-12690B03.pf
15/08/2007  14:48           138ÿ804 NDP1.1SP1-KB928366-X86.EXE-062682BB.pf
15/08/2007  14:43            32ÿ298 BPKVXMJQ.EXE-2786E181.pf
15/08/2007  13:31            62ÿ004 WMPLAYER.EXE-1ACCF807.pf
14/08/2007  21:33            29ÿ836 UPDATER.EXE-04B193C6.pf
             112 fichier(s)        5ÿ402ÿ754 octets
               0 R‚p(s)  11ÿ399ÿ913ÿ472 octets libres
 
----- Tasks ---------------------------- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\WINDOWS\tasks

18/08/2007  17:11                 6 SA.DAT
               2 fichier(s)               71 octets
               0 R‚p(s)  11ÿ399ÿ917ÿ568 octets libres
 
----- Windows/Temp ----------------------- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\WINDOWS\Temp

18/08/2007  17:12               409 WGANotify.settings
18/08/2007  17:12                 0 T30DebugLogFile.txt
18/08/2007  17:11               255 WGAErrLog.txt
               3 fichier(s)              664 octets
               0 R‚p(s)  11ÿ399ÿ917ÿ568 octets libres
 
----- Temp ----------------------------- 
 Le volume dans le lecteur C n'a pas de nom.
 Le num‚ro de s‚rie du volume est E83F-84D7

 R‚pertoire de C:\DOCUME~1\HADDAG~1\LOCALS~1\Temp

18/08/2007  17:12               664 LVCOMSX.LOG
               2 fichier(s)           25ÿ277 octets
               0 R‚p(s)  11ÿ399ÿ917ÿ568 octets libres

[Speedy]

hi, mit welchem zeichensatz arbeitest du, da kann man ja nichts entziffern ?

welche zahl durch y ersetzt wird, will ich mir garnicht genauer ansehen.

ist das ein franz. windows ?

ergänze den ordner c:\windows in dem du hier alles postest !

• download combofix von techsupportforum.com auf deinen desktop
• schließe alle anwendungen
• starte das tool mit einem doppelklick auf die datei combofix.exe
• wenn sich dieses fenster geöffnet hat, gib bitte ein y oder Y ein, oder du willst das tool noch nicht laufen lassen, dann gib ein n oder N ein.
  
• wenn du y gewählt hast, beginnt das tool mit der überprüfung, findet es eine bekannte malware, startet es den rechner neu
• das tool erstellt ein logfile, das du unter c:\combofix.txt findest
  poste den inhalt
• Achtung: wenn du den scan gestartet hast, lass das tool arbeiten, das kann bis zu 15 minuten dauern, mach nichts anderes, sonst kann dein desktop unter umständen nur mehr blau bleiben.

[Snoopy23]

Ja sorry, ist der Laptop von nem franzoesischem Kumpel...
Was dieses y soll weiss ich leider auch net

was meinst du denn mit "ergänze den ordner c:\windows in dem du hier alles postest"

mittlerweile bekomme ich leider auch diesen virus hier gemeldet: W.32/Parite

Logfile:

Code:

ComboFix 07-08-14.4 - "HADDAG Hamza" 2007-08-18 21:27:29.1 - NTFSx86 
Microsoft Windows XP ?dition familiale  5.1.2600.2.1252.1.1036.18.213 [GMT 2:00]
 * Created a new restore point

 ADS removed - svchost.exe: deleted 68 bytes in 1 streams. 

(((((((((((((((((((((((((((((((((((((((   Other Deletions   )))))))))))))))))))))))))))))))))))))))))))))))))


C:\DOCUME~1\HADDAG~1\APPLIC~1\..\err.log
C:\DOCUME~1\HADDAG~1\APPLIC~1\..\ravmonlog
C:\WINDOWS\system32\bpkvxmjq.dat
C:\WINDOWS\system32\bpkvxmjq.exe
C:\WINDOWS\system32\bpkvxmjq_nav.dat
C:\WINDOWS\system32\bpkvxmjq_navps.dat
C:\WINDOWS\system32\drivers\fad.sys
C:\WINDOWS\system32\stera.log


(((((((((((((((((((((((((((((((((((((((   Drivers/Services   )))))))))))))))))))))))))))))))))))))))))))))))))


-------\LEGACY_FOPN
-------\LEGACY_FWSVC
-------\LEGACY_VSPF
-------\LEGACY_VSPF_HK


(((((((((((((((((((((((((   Files Created from 2007-07-18 to 2007-08-18  )))))))))))))))))))))))))))))))


2007-08-18 21:26	51,200	--a------	C:\WINDOWS\nircmd.exe
2007-08-18 14:34	10,872	--a------	C:\WINDOWS\system32\drivers\AvgAsCln.sys
2007-08-18 14:32	<REP>	d--------	C:\Program Files\CCleaner
2007-08-16 01:03	<REP>	d--------	C:\Program Files\PokerStars
2007-08-15 17:17	94,297	--a------	C:\WINDOWS\system32\SynTPAPI.dll
2007-08-15 17:17	82,012	--a------	C:\WINDOWS\system32\SynCOM.dll
2007-08-15 17:17	81,920	--a------	C:\WINDOWS\system32\SynTPCo2.dll
2007-08-15 17:17	69,721	--a------	C:\WINDOWS\system32\SynTPFcs.dll
2007-08-15 17:17	193,088	--a------	C:\WINDOWS\system32\drivers\SynTP.sys
2007-08-15 17:17	114,688	--a------	C:\WINDOWS\system32\SynCtrl.dll
2007-08-15 17:17	<REP>	d--------	C:\Program Files\Synaptics
2007-08-15 12:41	<REP>	d--------	C:\DOCUME~1\ALLUSE~1\APPLIC~1\AntiVir PersonalEdition Classic
2007-08-15 12:39	<REP>	d--------	C:\DOCUME~1\ALLUSE~1\APPLIC~1\Lavasoft
2007-08-15 12:38	<REP>	d--------	C:\DOCUME~1\ALLUSE~1\APPLIC~1\Spybot - Search & Destroy


((((((((((((((((((((((((((((((((((((((((   Find3M Report   ))))))))))))))))))))))))))))))))))))))))))))))))))))

2007-08-16 23:51	---------	d--------	C:\Program Files\eMule
2007-08-15 20:41	---------	d--------	C:\Program Files\Tieman Express
2007-08-15 16:38	---------	d--------	C:\Program Files\Smart Panel
2007-06-29 17:40	---------	d--------	C:\DOCUME~1\HADDAG~1\APPLIC~1\U3
2007-06-26 16:12	663040	---------	C:\WINDOWS\system32\dllcache\wininet.dll
2007-06-26 15:56	851968	--a------	C:\WINDOWS\system32\dllcache\vgx.dll
2007-06-26 08:09	1104896	--a------	C:\WINDOWS\system32\msxml3.dll
2007-06-26 08:09	1104896	---------	C:\WINDOWS\system32\dllcache\msxml3.dll
2007-06-24 13:31	---------	d--------	C:\DOCUME~1\HADDAG~1\APPLIC~1\AdobeUM
2007-06-23 14:08	---------	d--------	C:\Program Files\Windows Media Connect 2
2007-06-19 15:32	282112	--a------	C:\WINDOWS\system32\gdi32.dll
2007-06-19 15:32	282112	---------	C:\WINDOWS\system32\dllcache\gdi32.dll
2007-06-14 20:10	96768	--a------	C:\WINDOWS\system32\dllcache\inseng.dll
2007-06-14 20:10	617472	---------	C:\WINDOWS\system32\dllcache\urlmon.dll
2007-06-14 20:10	55808	---------	C:\WINDOWS\system32\dllcache\extmgr.dll
2007-06-14 20:10	532480	--a------	C:\WINDOWS\system32\dllcache\mstime.dll
2007-06-14 20:10	474624	---------	C:\WINDOWS\system32\dllcache\shlwapi.dll
2007-06-14 20:10	449024	---------	C:\WINDOWS\system32\dllcache\mshtmled.dll
2007-06-14 20:10	39424	---------	C:\WINDOWS\system32\dllcache\pngfilt.dll
2007-06-14 20:10	357888	---------	C:\WINDOWS\system32\dllcache\dxtmsft.dll
2007-06-14 20:10	3079680	---------	C:\WINDOWS\system32\dllcache\mshtml.dll
2007-06-14 20:10	251392	---------	C:\WINDOWS\system32\dllcache\iepeers.dll
2007-06-14 20:10	205312	---------	C:\WINDOWS\system32\dllcache\dxtrans.dll
2007-06-14 20:10	16384	--a------	C:\WINDOWS\system32\dllcache\jsproxy.dll
2007-06-14 20:10	152064	---------	C:\WINDOWS\system32\dllcache\cdfview.dll
2007-06-14 20:10	1495040	---------	C:\WINDOWS\system32\dllcache\shdocvw.dll
2007-06-14 20:10	146432	--a------	C:\WINDOWS\system32\dllcache\msrating.dll
2007-06-14 20:10	1056768	--a------	C:\WINDOWS\system32\dllcache\danim.dll
2007-06-14 20:10	1024000	---------	C:\WINDOWS\system32\dllcache\browseui.dll
2007-06-14 16:07	18432	---------	C:\WINDOWS\system32\dllcache\iedw.exe
2007-06-13 15:22	1037312	--a------	C:\WINDOWS\explorer.exe
2007-06-13 15:22	1037312	---------	C:\WINDOWS\system32\dllcache\explorer.exe
2007-06-11 23:51	10834944	--a------	C:\WINDOWS\system32\dllcache\wmp.dll


(((((((((((((((((((((((((((((((((((((   Reg Loading Points   ))))))))))))))))))))))))))))))))))))))))))))))))))
 
 
*Note* empty entries & legit default entries are not shown 

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Apoint"="C:\Program Files\Apoint\Apoint.exe" [2004-09-13 17:33]
"IntelWireless"="C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" [2004-10-30 15:59]
"Dell QuickSet"="C:\Program Files\Dell\QuickSet\quickset.exe" [2005-03-04 12:26]
"Opware14"="C:\Program Files\ScanSoft\OmniPagePro14.0\Opware14.exe" [2004-03-08 19:33]
"EPSON Stylus C66 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.exe" [2003-11-26 09:00]
"LVCOMSX"="C:\WINDOWS\system32\LVCOMSX.EXE" [2004-10-08 11:52]
"LogitechVideoRepair"="C:\Program Files\Logitech\Video\ISStart.exe" [2004-10-08 12:31]
"LogitechVideoTray"="C:\Program Files\Logitech\Video\LogiTray.exe" [2004-10-08 12:24]
"avgnt"="C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" [2007-04-02 10:35]
"SynTPEnh"="C:\Program Files\Synaptics\SynTP\SynTPEnh.exe" [2007-08-15 17:17]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-06-11 11:25]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"EPSON Stylus C66 Series"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.exe" [2003-11-26 09:00]
"LDM"="C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe" [2006-08-31 15:44]
"LogitechSoftwareUpdate"="C:\Program Files\Logitech\Video\ManifestEngine.exe" [2004-10-08 12:06]

C:\Documents and Settings\All Users\Menu D‚marrer\Programmes\D‚marrage\
Lancement rapide d'Adobe Reader.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2005-09-23 22:05:26]
Logitech Desktop Messenger.lnk - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe [2006-08-31 15:44:42]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\system]
"DisableRegistryTools"=0 (0x0)

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\IntelWireless] 
C:\Program Files\Intel\Wireless\Bin\LgNotify.dll 2004-09-07 17:08 110592 C:\Program Files\Intel\Wireless\Bin\LgNotify.dll


[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]
C:\WINDOWS\system32\dla\tfswctrl.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDLauncher]
"C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Error Safe]
"C:\Program Files\Error Safe Free\ers.exe" /min

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Livecom]
"C:\PROGRA~1\Livecom\APPLIC~1\Exe\..\..\Launcher\Exe\SilentLauncher.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
"C:\Program Files\Messenger\msmsgs.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OP14 Reminder]
"C:\Program Files\ScanSoft\OmniPagePro14.0\EregFre\Ereg.exe" -r "C:\Program Files\ScanSoft\OmniPagePro14.0\EregFre\ereg.ini"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\OpScheduler]
"C:\Program Files\ScanSoft\OmniPagePro14.0\OpScheduler.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SSBkgdUpdate]
"C:\Program Files\Fichiers communs\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\UpdateManager]
"C:\Program Files\Fichiers communs\Sonic\Update Manager\sgtray.exe" /r

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOKIT]
C:\PROGRA~1\Wanadoo\Shell.exe appLaunchClientZone.shl|DEFAULT=cnx|PARAM=

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOTASKBARICON]
C:\PROGRA~1\Wanadoo\GestMaj.exe TaskBarIcon.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WOOWATCH]
C:\PROGRA~1\Wanadoo\Watch.exe

R1 Ai2sXP;Ai2sXP;C:\WINDOWS\system32\drivers\Ai2sXP.sys
R1 avgio;avgio;\??\C:\Program Files\AntiVir PersonalEdition Classic\avgio.sys
R1 avipbb;avipbb;C:\WINDOWS\system32\DRIVERS\avipbb.sys
R1 ssmdrv;ssmdrv;C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
R2 BASFND;BASFND;\??\C:\WINDOWS\system32\Drivers\BASFND.sys
R2 Fswsclds;F-Secure Windows Security Center Legacy Detection Service;C:\Program Files\Securitoo\av_fw\fswsclds.exe
R3 avgntflt;avgntflt;\??\C:\Program Files\AntiVir PersonalEdition Classic\avgntflt.sys
R3 GTIPCI21;GTIPCI21;C:\WINDOWS\system32\DRIVERS\gtipci21.sys
R3 IWCA;Intel Wireless Connection Agent Miniport for Win XP;C:\WINDOWS\system32\DRIVERS\iwca.sys
S2 JFWService;JFWService;C:\Program Files\Freedom Scientific\JAWS\6.20\JFW.EXE
S2 Voyager;Voyager;C:\WINDOWS\system32\Drivers\Voyager.sys
S3 FTDIBUS;USB Serial Converter Driver;C:\WINDOWS\system32\drivers\ftdibus.sys
S3 FTSER2K;USB Serial Port Driver;C:\WINDOWS\system32\drivers\ftser2k.sys
S3 SbcpHid;SbcpHid;\??\C:\WINDOWS\system32\Drivers\SbcpHid.sys
S3 ssm_bus;SAMSUNG Mobile USB Device II 1.0 driver (WDM);C:\WINDOWS\system32\DRIVERS\ssm_bus.sys
S3 ssm_mdfl;SAMSUNG Mobile USB Modem II 1.0 Filter;C:\WINDOWS\system32\DRIVERS\ssm_mdfl.sys
S3 ssm_mdm;SAMSUNG Mobile USB Modem II 1.0 Drivers;C:\WINDOWS\system32\DRIVERS\ssm_mdm.sys
S3 USB_RNDIS_51;Broadcom USB Remote NDIS Device Driver;C:\WINDOWS\system32\DRIVERS\usb8023.sys


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\E]
AutoRun\command- E:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
AutoRun\command- F:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{2828412e-b5f3-11db-990a-0012f07657c8}]
AutoRun\command- E:\LaunchU3.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{fdee663f-0306-11dc-995d-001143763d7f}]
AutoRun\command- E:\LaunchU3.exe


**************************************************************************

catchme 0.3.1061 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2007-08-18 21:34:18
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

HKCU\Software\Microsoft\Windows\CurrentVersion\Run
  EPSON Stylus C66 Series = C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE /P23 "EPSON Stylus C66 Series" /M "Stylus C66" /EF "HKCU"??? ???????m???P????????????????a?w?? ?????????????`????????????????????b?w????`???????;???8???????????h??w????`???????z??w`???????????)??|??????? 

scanning hidden files ...

**************************************************************************

Completion time: 2007-08-18 21:38:10 - machine was rebooted
C:\ComboFix-quarantined-files.txt ... 2007-08-18 21:37

	--- E O F ---

[Speedy]

was meinst du denn mit "ergänze den ordner c:\windows in dem du hier alles postest"

von hier hätte ich gerne alles gesehen

R‚pertoire de C:\WINDOWS

18/08/2007 17:12 5ÿ799 WindowsUpdate.log
18/08/2007 17:12 0 0.log
18/08/2007 17:12 3ÿ722 ModemLog_Conexant D110 MDC V.92 Modem.txt
18/08/2007 17:12 159 wiadebug.log
18/08/2007 17:12 50 wiaservc.log
18/08/2007 17:12 0 Sti_Trace.log
18/08/2007 17:11 292 SchedLgU.Txt
18/08/2007 17:11 2ÿ048 bootstat.dat
18/08/2007 16:50 154 ntbtlog.txt
16/08/2007 23:30 649 win.ini
16/08/2007 23:30 227 system.ini
95 fichier(s) 8ÿ697ÿ985 octets
0 R‚p(s) 11ÿ400ÿ040ÿ448 octets libres

und von hier auch

C:\WINDOWS\system32

18/08/2007 17:49 1ÿ498 bpkvxmjq_navps.dat
18/08/2007 17:48 4ÿ517 bpkvxmjq.dat
18/08/2007 17:12 2ÿ206 wpa.dbl
18/08/2007 17:12 2ÿ000ÿ000 HJSMEM.DAT
16/08/2007 16:31 469ÿ826 perfh00C.dat
16/08/2007 16:31 77ÿ004 perfc00C.dat
16/08/2007 16:31 402ÿ300 perfh009.dat
16/08/2007 16:31 63ÿ292 perfc009.dat
16/08/2007 16:31 986ÿ310 PerfStringBackup.INI
15/08/2007 17:17 69ÿ721 SynTPFcs.dll
15/08/2007 17:17 81ÿ920 SynTPCo2.dll
15/08/2007 17:17 94ÿ297 SynTPAPI.dll
15/08/2007 17:17 114ÿ688 SynCtrl.dll
15/08/2007 17:17 82ÿ012 SynCOM.dll
03/08/2007 15:37 265ÿ497 bpkvxmjq_nav.dat
03/08/2007 06:34 16ÿ789ÿ464 MRT.exe
2067 fichier(s) 411ÿ114ÿ009 octets
0 R‚p(s) 11ÿ399ÿ839ÿ744 octets libres

[Snoopy23]

achso ok

Code:

R‚pertoire de C:\WINDOWS

18/08/2007  21:34                 0 0.log
18/08/2007  21:34             4ÿ432 ModemLog_Conexant D110 MDC V.92 Modem.txt
18/08/2007  21:34               159 wiadebug.log
18/08/2007  21:34             8ÿ841 WindowsUpdate.log
18/08/2007  21:33                50 wiaservc.log
18/08/2007  21:33             2ÿ048 bootstat.dat
18/08/2007  21:32               570 SchedLgU.Txt
18/08/2007  17:12                 0 Sti_Trace.log
18/08/2007  16:50               154 ntbtlog.txt
16/08/2007  23:30               649 win.ini
16/08/2007  23:30               227 system.ini
20/07/2007  00:47           109ÿ056 catchme.exe
06/07/2007  14:19             2ÿ548 Ascd_tmp.ini
23/06/2007  14:06           316ÿ640 WMSysPr9.prx
17/06/2007  00:11            51ÿ200 nircmd.exe
13/06/2007  15:22         1ÿ037ÿ312 explorer.exe
10/10/2006  11:16               278 JScript.INI
16/09/2006  12:03             5ÿ788 ModemLog_Bluetooth DUN Modem.txt
16/09/2006  12:03             5ÿ782 ModemLog_Bluetooth Fax Modem.txt
30/08/2006  17:31           118ÿ784 bwUnin-7.2.0.157-8876480SL.exe
22/08/2006  17:41            81ÿ920 bwUnin-6.1.4.68-8876480L.exe
22/08/2006  17:17               272 _delis32.ini
09/08/2006  21:22               243 JKey.INI
09/08/2006  21:21               318 JCONFIG.INI
23/05/2006  01:53         1ÿ068ÿ011 setupapi.log.0.old
17/02/2006  18:57             4ÿ114 ModemLog_Conexant D110 MDC V.9x Modem.txt
23/12/2005  20:23                29 DEBUGSM.INI
20/12/2005  04:21             2ÿ656 desctemp.dat
06/07/2005  15:49                25 CDE P242580EF.ini
27/06/2005  11:43             3ÿ164 macex.ini
19/06/2005  04:54               380 dcmuser.ini
13/06/2005  15:16                25 CDEC66SeriesEuro.ini
10/06/2005  10:46               430 MAXLINK.INI
10/06/2005  10:16                46 Crypkey.ini
08/06/2005  10:07               385 ODBC.INI
08/06/2005  09:45             8ÿ192 REGLOCS.OLD
27/05/2005  01:22            10ÿ752 hh.exe
26/05/2005  17:48                61 smscfg.ini
26/05/2005  17:46               138 wininit.ini
26/05/2005  17:26            49ÿ152 setpwrcg.exe
06/12/2004  02:05            98ÿ358 dla.exe
20/08/2004  12:10         1ÿ198ÿ361 setupapi.del
20/08/2004  11:46           193ÿ507 orun32.isu
20/08/2004  11:46               829 orun32.ini
20/08/2004  11:41           214ÿ187 setupact.del
20/08/2004  11:41           736ÿ553 setuplog.del
20/08/2004  11:37                 0 control.ini
20/08/2004  11:36             4ÿ205 ODBCINST.INI
20/08/2004  11:35               749 WindowsShell.Manifest
20/08/2004  11:35                37 vbaddin.ini
20/08/2004  11:35                36 vb.ini
20/08/2004  11:34                 0 T30DebugLogFile.txt
20/08/2004  11:30                 0 setuperr.del
05/08/2004  13:00            17ÿ362 Rhododendron.bmp
05/08/2004  13:00            26ÿ680 RiviŠre Sumida.bmp
05/08/2004  13:00             1ÿ272 Rosace bleue 16.bmp
05/08/2004  13:00            82ÿ944 clock.avi
05/08/2004  13:00             1ÿ405 msdfmap.ini
05/08/2004  13:00            16ÿ730 Plume.bmp
05/08/2004  13:00             9ÿ522 Zapotec.bmp
05/08/2004  13:00            39ÿ340 wmprfFRA.prx
05/08/2004  13:00            65ÿ832 Mur de Santa Fe.bmp
05/08/2004  13:00               707 _default.pif
05/08/2004  13:00            49ÿ102 winnt256.bmp
05/08/2004  13:00            49ÿ102 winnt.bmp
05/08/2004  13:00                80 explorer.scf
05/08/2004  13:00            17ÿ336 Jour de pˆche.bmp
05/08/2004  13:00           288ÿ256 winhlp32.exe
05/08/2004  13:00           256ÿ768 winhelp.exe
05/08/2004  13:00            65ÿ978 Bulles de savon.bmp
05/08/2004  13:00            18ÿ944 vmmreg32.dll
05/08/2004  13:00           153ÿ088 regedit.exe
05/08/2004  13:00            15ÿ872 TASKMAN.EXE
05/08/2004  13:00            17ÿ062 Tasse … caf‚.bmp
05/08/2004  13:00            94ÿ864 twain.dll
05/08/2004  13:00            50ÿ688 twain_32.dll
05/08/2004  13:00            49ÿ680 twunk_16.exe
05/08/2004  13:00            25ÿ600 twunk_32.exe
05/08/2004  13:00            70ÿ656 NOTEPAD.EXE
05/08/2004  13:00                 2 desktop.ini
05/08/2004  13:00            65ÿ954 Vent de prairie.bmp
05/08/2004  13:00            26ÿ582 Granit vert.bmp
23/03/2004  04:45            28ÿ672 cttib1.dll
30/10/2003  09:14            34ÿ329 O2Remove.EXE
08/10/2003  12:30            22ÿ557 ssil.ini
08/10/2003  12:23           145ÿ920 SSCE5232.DLL
29/01/2003  19:08           787ÿ508 DELL.BMP
07/12/1999  02:03            73ÿ216 ADE.DLL
18/06/1999  22:49           165ÿ888 Ckconfig.exe
15/06/1999  11:31            96ÿ768 SlantAdj.dll
27/04/1999  00:17             3ÿ136 Ade001.bin
12/01/1999  11:39             6ÿ656 delttsul.exe
13/11/1998  14:16           308ÿ224 IsUn040c.exe
03/05/1996  18:21            27ÿ648 Setup_ck.exe
03/05/1996  16:36            18ÿ432 Setup_ck.dll
31/07/1995  14:44           212ÿ480 PCDLIB32.DLL
04/07/1995  19:33            11ÿ776 Ckrfresh.exe
              97 fichier(s)        8ÿ862ÿ271 octets
               0 R‚p(s)  11ÿ302ÿ752ÿ256 octets libres

Code:

 R‚pertoire de C:\WINDOWS\system32

18/08/2007  21:34             2ÿ206 wpa.dbl
18/08/2007  21:34         2ÿ000ÿ000 HJSMEM.DAT
16/08/2007  16:31           469ÿ826 perfh00C.dat
16/08/2007  16:31            77ÿ004 perfc00C.dat
16/08/2007  16:31           402ÿ300 perfh009.dat
16/08/2007  16:31            63ÿ292 perfc009.dat
16/08/2007  16:31           986ÿ310 PerfStringBackup.INI
15/08/2007  17:17            69ÿ721 SynTPFcs.dll
15/08/2007  17:17            81ÿ920 SynTPCo2.dll
15/08/2007  17:17            94ÿ297 SynTPAPI.dll
15/08/2007  17:17           114ÿ688 SynCtrl.dll
15/08/2007  17:17            82ÿ012 SynCOM.dll
03/08/2007  06:34        16ÿ789ÿ464 MRT.exe
22/07/2007  18:39           279ÿ552 swreg.exe
26/06/2007  16:12           663ÿ040 wininet.dll
26/06/2007  08:09         1ÿ104ÿ896 msxml3.dll
23/06/2007  14:13            16ÿ832 amcompat.tlb
23/06/2007  14:13            23ÿ392 nscompat.tlb
19/06/2007  15:32           282ÿ112 gdi32.dll
14/06/2007  20:10           617ÿ472 urlmon.dll
14/06/2007  20:10           474ÿ624 shlwapi.dll
14/06/2007  20:10         3ÿ079ÿ680 mshtml.dll
14/06/2007  20:10         1ÿ495ÿ040 shdocvw.dll
14/06/2007  20:10            39ÿ424 pngfilt.dll
14/06/2007  20:10           532ÿ480 mstime.dll
14/06/2007  20:10           146ÿ432 msrating.dll
14/06/2007  20:10           449ÿ024 mshtmled.dll
14/06/2007  20:10            16ÿ384 jsproxy.dll
14/06/2007  20:10            96ÿ768 inseng.dll
14/06/2007  20:10         1ÿ056ÿ768 danim.dll
14/06/2007  20:10         1ÿ024ÿ000 browseui.dll
14/06/2007  20:10           251ÿ392 iepeers.dll
14/06/2007  20:10            55ÿ808 extmgr.dll
14/06/2007  20:10           205ÿ312 dxtrans.dll
14/06/2007  20:10           357ÿ888 dxtmsft.dll
14/06/2007  20:10           152ÿ064 cdfview.dll
14/06/2007  16:24           121ÿ856 xpsp3res.dll
11/06/2007  23:51        10ÿ834ÿ944 wmp.dll
11/06/2007  10:59           112ÿ584 FNTCACHE.DAT
17/05/2007  13:29           549ÿ376 oleaut32.dll
16/05/2007  17:13           683ÿ520 inetcomm.dll
08/05/2007  15:03         1ÿ275ÿ392 msxml4.dll
25/04/2007  16:22           144ÿ896 schannel.dll
18/04/2007  18:14         2ÿ854ÿ400 msi.dll
16/04/2007  22:47            33ÿ624 wups.dll
16/04/2007  22:47            30ÿ040 wuaucpl.cpl.mui
16/04/2007  22:46            30ÿ040 wuapi.dll.mui
16/04/2007  22:45         1ÿ710ÿ936 wuaueng.dll
16/04/2007  22:45           549ÿ720 wuapi.dll
16/04/2007  22:45           325ÿ976 wucltui.dll
16/04/2007  22:45            21ÿ336 wuaueng.dll.mui
16/04/2007  22:45           216ÿ408 wuaucpl.cpl
16/04/2007  22:45           203ÿ096 wuweb.dll
16/04/2007  22:45            92ÿ504 cdm.dll
16/04/2007  22:45            43ÿ352 wups2.dll
16/04/2007  22:45            53ÿ080 wuauclt.exe
16/04/2007  22:45            38ÿ232 wucltui.dll.mui
16/04/2007  17:53         1ÿ049ÿ600 kernel32.dll
13/04/2007  03:21           271ÿ360 mscoree.dll
27/03/2007  19:03                 4 MediaMAX.~5~
17/03/2007  15:44           293ÿ376 winsrv.dll
09/03/2007  14:56           121ÿ832 TZLog.log
08/03/2007  17:37            40ÿ960 mf3216.dll
08/03/2007  17:37           578ÿ560 user32.dll
08/03/2007  17:33         1ÿ843ÿ712 win32k.sys
28/02/2007  18:02         2ÿ059ÿ648 ntkrnlpa.exe
28/02/2007  18:02         2ÿ182ÿ400 ntoskrnl.exe
24/02/2007  22:59           264ÿ754 wpvmhi_navtmp.dat
05/02/2007  22:19           185ÿ344 upnphost.dll
29/01/2007  10:58            60ÿ416 tzchange.exe
23/01/2007  21:31           546ÿ304 hhctrl.ocx
19/12/2006  23:49           135ÿ168 shsvcs.dll
19/12/2006  23:49         8ÿ509ÿ952 shell32.dll
19/12/2006  20:17           334ÿ336 wiaservc.dll
04/12/2006  16:21           414ÿ720 msscp.dll
01/12/2006  05:20           212ÿ480 swxcacls.exe
29/11/2006  17:21           370ÿ688 swsc.exe
27/11/2006  16:55           433ÿ152 riched20.dll
27/11/2006  16:55           539ÿ136 msftedit.dll
27/11/2006  02:34            49ÿ152 vfind.exe
03/11/2006  10:03         8ÿ292ÿ352 wmploc.dll
03/11/2006  09:59            99ÿ840 wmpshell.dll
03/11/2006  09:58           272ÿ384 wmerror.dll
03/11/2006  09:56             7ÿ680 asferror.dll
02/11/2006  11:52            44ÿ032 wpdshextres.dll
01/11/2006  21:18           927ÿ504 mfc40u.dll
20/10/2006  03:38           716ÿ800 sxs.dll
18/10/2006  21:58             8ÿ704 wdfmgr.exe
18/10/2006  21:58             8ÿ704 uwdf.exe
18/10/2006  21:47         1ÿ543ÿ680 WMVDECOD.dll
18/10/2006  21:47         2ÿ450ÿ944 wmvcore.dll
18/10/2006  21:47           133ÿ632 WPDShServiceObj.dll
18/10/2006  21:47         1ÿ574ÿ912 WMVENCOD.dll
18/10/2006  21:47           603ÿ648 WMSPDMOD.dll
18/10/2006  21:47         1ÿ382ÿ912 WMVSDECD.dll
18/10/2006  21:47         2ÿ450ÿ944 SET7A.tmp
18/10/2006  21:47             4ÿ096 WMVADVE.DLL
18/10/2006  21:47             4ÿ096 WMVADVD.dll
18/10/2006  21:47         1ÿ329ÿ152 WMSPDMOE.dll
18/10/2006  21:47           767ÿ488 WMVSENCD.dll
18/10/2006  21:47           356ÿ352 wpdsp.dll
18/10/2006  21:47         2ÿ603ÿ008 WpdShext.dll
18/10/2006  21:47           656ÿ896 WMVXENCD.dll
18/10/2006  21:47           629ÿ760 wpd_ci.dll
18/10/2006  21:47            35ÿ840 wpdconns.dll
18/10/2006  21:47             4ÿ096 wmvdmod.dll
18/10/2006  21:47           154ÿ624 wpdmtp.dll
18/10/2006  21:47            63ÿ488 wpdmtpus.dll
18/10/2006  21:47             4ÿ096 wmsdmoe2.dll
18/10/2006  21:47             4ÿ096 wmvdmoe2.dll
18/10/2006  21:47             4ÿ096 wmsdmod.dll
18/10/2006  21:47           130ÿ048 wmpps.dll
18/10/2006  21:47           613ÿ376 wmpmde.dll
18/10/2006  21:47         1ÿ661ÿ440 wmpencen.dll
18/10/2006  21:47           295ÿ936 wmpeffects.dll
18/10/2006  21:47           314ÿ880 wmpdxm.dll
18/10/2006  21:47           242ÿ688 wmpasf.dll
18/10/2006  21:47           348ÿ672 wmdrmnet.dll
18/10/2006  21:47           535ÿ040 wmdrmsdk.dll
18/10/2006  21:47           157ÿ184 wmidx.dll
18/10/2006  21:47           204ÿ288 wmpsrcwp.dll
18/10/2006  21:47           937ÿ984 WMNetMgr.dll
18/10/2006  21:47           166ÿ912 PortableDeviceTypes.dll
18/10/2006  21:47         1ÿ117ÿ696 WMADMOE.dll
18/10/2006  21:47             4ÿ096 wdfapi.dll
18/10/2006  21:47           132ÿ096 PortableDeviceWiaCompat.dll
18/10/2006  21:47           101ÿ888 PortableDeviceClassExtension.dll
18/10/2006  21:47            37ÿ376 SET85.tmp
18/10/2006  21:47           284ÿ160 PortableDeviceApi.dll
18/10/2006  21:47           199ÿ168 PortableDeviceWMDRM.dll
18/10/2006  21:47           222ÿ208 SET6E.tmp
18/10/2006  21:47           429ÿ056 wmdrmdev.dll
18/10/2006  21:47            37ÿ376 wmdmps.dll
18/10/2006  21:47            33ÿ792 wmdmlog.dll
18/10/2006  21:47           757ÿ248 WMADMOD.dll
18/10/2006  21:47           211ÿ456 qasf.dll
18/10/2006  21:47           222ÿ208 wmasf.dll
18/10/2006  21:47           321ÿ536 SET83.tmp
18/10/2006  21:47           175ÿ616 SET88.tmp
18/10/2006  21:47           175ÿ616 mspmsp.dll
18/10/2006  21:47           321ÿ536 mswmdm.dll
18/10/2006  21:47           179ÿ712 msnetobj.dll
18/10/2006  21:47            27ÿ136 mspmsnsv.dll
18/10/2006  21:47           317ÿ440 MP4SDECD.dll
18/10/2006  21:47           259ÿ072 MP43DECD.dll
18/10/2006  21:47             4ÿ096 MP4SDMOD.dll
18/10/2006  21:47           212ÿ992 MFPLAT.dll
18/10/2006  21:47             4ÿ096 MPG4DMOD.dll
18/10/2006  21:47            11ÿ264 LAPRXY.dll
18/10/2006  21:47           259ÿ072 MPG4DECD.dll
18/10/2006  21:47             4ÿ096 MP43DMOD.dll
18/10/2006  21:47           229ÿ376 cewmdm.dll
18/10/2006  21:47           991ÿ744 drmv2clt.dll
18/10/2006  21:47           542ÿ720 blackbox.dll
18/10/2006  21:47           276ÿ992 audiodev.dll
18/10/2006  20:05           232ÿ448 l3codecp.acm
18/10/2006  20:03           100ÿ864 logagent.exe
18/10/2006  20:00           249ÿ856 drmupgds.exe
18/10/2006  20:00            17ÿ408 wpdshextautoplay.exe
16/10/2006  18:16           124ÿ928 oledlg.dll
14/10/2006  10:13           981ÿ760 mfc42u.dll
13/10/2006  14:36           145ÿ920 nwprovau.dll
02/10/2006  15:28           312ÿ128 msdelta.dll
28/09/2006  20:13            95ÿ344 WUDFCoinstaller.dll
28/09/2006  18:56           316ÿ416 WUDFx.dll
28/09/2006  18:56           146ÿ432 WudfHost.exe
28/09/2006  18:56           165ÿ376 WudfPlatform.dll
28/09/2006  18:56            55ÿ808 WudfSvc.dll
25/09/2006  17:58            23ÿ856 spupdsvc.exe
25/09/2006  17:58            14ÿ640 spmsg.dll
25/08/2006  17:51           617ÿ472 comctl32.dll
24/08/2006  14:19           246ÿ814 strmdll.dll
24/08/2006  14:17           500ÿ278 dxmasf.dll
22/08/2006  17:50             1ÿ205 lvcoinst.log
21/08/2006  14:26            16ÿ896 fltlib.dll
21/08/2006  11:14            23ÿ040 fltmc.exe
17/08/2006  14:29           132ÿ096 wkssvc.dll
17/08/2006  14:29           728ÿ576 lsasrv.dll
17/08/2006  14:29           332ÿ288 netapi32.dll
16/08/2006  13:59           100ÿ352 6to4svc.dll
21/07/2006  10:27            72ÿ704 hlink.dll
26/06/2006  19:41           148ÿ480 dnsapi.dll
26/06/2006  19:41             8ÿ192 rasadhlp.dll
22/06/2006  12:48           181ÿ248 rasmans.dll
22/06/2006  07:13         1ÿ440ÿ768 query.dll
22/06/2006  07:13            69ÿ120 ciodm.dll
19/06/2006  16:20           702ÿ768 WgaLogon.dll
19/06/2006  16:19           571ÿ184 LegitCheckControl.dll
19/06/2006  16:19           304ÿ944 WgaTray.exe
01/06/2006  20:48           163ÿ840 jgdw400.dll
01/06/2006  20:48            27ÿ648 jgpl400.dll
19/05/2006  15:23            95ÿ744 iphlpapi.dll
19/05/2006  15:23           112ÿ128 dhcpcsvc.dll
18/05/2006  07:31           450ÿ560 jscript.dll
17/03/2006  02:38            28ÿ672 verclsid.exe
01/03/2006  21:43            66ÿ560 mtxclu.dll
01/03/2006  21:43            91ÿ136 mtxoci.dll
01/03/2006  21:43           161ÿ280 msdtcuiu.dll
01/03/2006  21:43            11ÿ776 xolehlp.dll
01/03/2006  21:43           956ÿ416 msdtctm.dll
01/03/2006  21:43           426ÿ496 msdtcprx.dll
04/01/2006  05:35            68ÿ096 webclnt.dll
09/12/2005  23:21            17ÿ134 PCANDIS5.sys
09/12/2005  23:21            81ÿ920 W32N50.dll
07/12/2005  19:05           716ÿ800 divxdec.ax
07/12/2005  19:05           573ÿ952 DivX.dll
07/12/2005  19:05           679ÿ936 divx_xx07.dll
07/12/2005  19:05           679ÿ936 divx_xx0c.dll
07/12/2005  19:05           663ÿ552 divx_xx11.dll
06/12/2005  17:27                85 LuResult.txt
05/12/2005  22:51            10ÿ716 dsm_ja.qm
05/12/2005  22:51            15ÿ331 dsm_de.qm
05/12/2005  22:51            15ÿ172 dsm_fr.qm
23/11/2005  06:00             4ÿ276 divxsm.tlb
23/11/2005  06:00           778ÿ240 DivXsm.exe
27/10/2005  21:37            53ÿ248 dpuGUI10.dll
27/10/2005  21:37            86ÿ016 dpl100.dll
27/10/2005  21:37           593ÿ920 dpuGUI11.dll
27/10/2005  21:37           200ÿ704 dtu100.dll
27/10/2005  21:37           339ÿ968 dpus11.dll
27/10/2005  21:37            57ÿ344 dpv11.dll
27/10/2005  21:37           294ÿ912 dpu10.dll
27/10/2005  21:37           294ÿ912 dpu11.dll
21/10/2005  00:25         1ÿ097ÿ728 esent.dll
17/10/2005  23:21            80ÿ896 fontsub.dll
17/10/2005  23:21           118ÿ272 t2embed.dll
13/10/2005  01:11           118ÿ784 sirenacm.dll
28/09/2005  20:50         1ÿ044ÿ480 libdivx.dll
28/09/2005  20:50           200ÿ704 ssldivx.dll
23/09/2005  07:28            32ÿ768 netfxperf.dll
23/09/2005  07:28           150ÿ016 mscorier.dll
23/09/2005  07:28            74ÿ240 mscories.dll
23/09/2005  07:28            83ÿ456 dfshim.dll
10/09/2005  03:55         2ÿ067ÿ968 cdosys.dll
01/09/2005  03:43            19ÿ968 linkinfo.dll
30/08/2005  05:55         1ÿ293ÿ312 quartz.dll
28/08/2005  20:51               766 Uninstall.ico
23/08/2005  05:39           124ÿ928 umpnpmgr.dll
22/08/2005  20:35           197ÿ632 netman.dll
12/08/2005  23:57         3ÿ596ÿ288 qt-dx331.dll
10/08/2005  00:13           245ÿ408 unicows.dll
10/08/2005  00:12             8ÿ835 dpufr.qm
10/08/2005  00:12             3ÿ162 dtu_fr.qm
10/08/2005  00:12           356ÿ436 DivXMedia.ax
26/07/2005  06:40            37ÿ888 olecnv32.dll
26/07/2005  06:40            75ÿ264 olecli32.dll
26/07/2005  06:40           397ÿ824 rpcss.dll
26/07/2005  06:40           101ÿ376 txflog.dll
26/07/2005  06:40         1ÿ284ÿ608 ole32.dll
26/07/2005  06:39           243ÿ200 es.dll
26/07/2005  06:39           540ÿ160 comuid.dll
26/07/2005  06:39         1ÿ267ÿ200 comsvcs.dll
26/07/2005  06:39            97ÿ792 comrepl.dll
26/07/2005  06:39           498ÿ688 clbcatq.dll
26/07/2005  06:39            60ÿ416 colbact.dll
26/07/2005  06:39           110ÿ080 clbcatex.dll
26/07/2005  06:39           225ÿ792 catsrv.dll
26/07/2005  06:39           625ÿ152 catsrvut.dll
25/07/2005  04:32            36ÿ864 wa4jfw.dll
25/07/2005  03:20            16ÿ470 fsbrldspapi.dll
11/07/2005  15:02             1ÿ887 UTLDEFI.WLL
08/07/2005  18:28           249ÿ344 tapisrv.dll
08/07/2005  18:28            76ÿ800 remotesp.tsp
29/06/2005  03:49            74ÿ240 mscms.dll
29/06/2005  03:49           254ÿ976 icm32.dll
19/06/2005  04:57           127ÿ504 FSVIDICA.DLL
19/06/2005  04:57           127ÿ472 FSVIDRDP.DLL
19/06/2005  04:56           125ÿ128 JAWSVID.DLL
19/06/2005  04:54            57ÿ344 BSUninstall.dll
19/06/2005  04:54            49ÿ152 bypass_gwm.dll
19/06/2005  04:54            53ÿ248 bypass_jfwvid.dll
19/06/2005  04:54            49ÿ152 bypass_dolntdrv.dll
19/06/2005  04:54            49ÿ152 bypass_pca.dll
19/06/2005  04:54            69ÿ632 dcmuser.dll
19/06/2005  04:54            49ÿ152 bypass_idd.dll
15/06/2005  19:50           295ÿ936 kerberos.dll
14/06/2005  16:56               218 mabv0ex.tgz
11/06/2005  01:53            57ÿ856 spoolsv.exe
10/06/2005  10:48             2ÿ240 esnecil.ind
10/06/2005  10:19             2ÿ240 esnecil.nlp
10/06/2005  10:17                 0 rotest.txt
10/06/2005  10:17               344 tts.log
08/06/2005  09:50               239 $winnt$.inf
27/05/2005  04:08           137ÿ216 itss.dll
27/05/2005  04:08           155ÿ136 itircl.dll
27/05/2005  04:08            41ÿ472 hhsetup.dll
26/05/2005  17:48               333 $ncsp$.inf
26/05/2005  17:44               308 results.txt
26/05/2005  17:41             3ÿ050 jupdate-1.4.2_03-b02.log
26/05/2005  17:25               445 OEMINFO.INI
26/05/2005  05:16           195ÿ352 wuaueng1.dll
26/05/2005  05:16           175ÿ896 wuaucpl.cpl.wusetup.3860796.bak
26/05/2005  05:16           125ÿ720 wuauclt.exe.wusetup.3860437.bak
26/05/2005  05:16           175ÿ896 wuauclt1.exe
26/05/2005  05:16         1ÿ343ÿ768 wuaueng.dll.wusetup.3861250.bak
26/05/2005  05:16           198ÿ424 iuengine.dll
11/05/2005  04:30            78ÿ336 telnet.exe
04/05/2005  14:45            15ÿ360 msisip.dll
04/05/2005  14:45           884ÿ736 msimsg.dll
04/05/2005  14:45            78ÿ848 msiexec.exe
04/05/2005  14:45           271ÿ360 msihnd.dll
13/04/2005  13:35            94ÿ208 USafe32.DLL
13/04/2005  13:35            32ÿ768 FieldExUtil.exe
13/04/2005  13:35         4ÿ117ÿ632 RainbowSSD5.39.2.exe
13/04/2005  13:35            33ÿ584 FieldExUtil.chm
08/04/2005  18:19            49ÿ152 btfunc.dll
06/04/2005  10:32           125ÿ128 J.DLL
06/04/2005  10:32           125ÿ128 LEVIKJAWSVID.DLL
29/03/2005  10:13            90ÿ112 Ai2XOR.dll
29/03/2005  10:06            90ÿ112 Zosf.dll
29/03/2005  09:56            15ÿ232 Ai2Ldr.dll
29/03/2005  09:56            43ÿ776 Ai2dXP.dll
29/03/2005  09:55                 1 ai2drv.dat
02/03/2005  20:10            56ÿ832 authz.dll
23/02/2005  16:02            42ÿ858 hsfci014.dll
11/01/2005  21:10           294ÿ912 atiiiexx.dll
11/01/2005  20:37         6ÿ553ÿ600 atioglxx.dll
11/01/2005  20:18           217ÿ088 ati2dvag.dll
11/01/2005  20:18           217ÿ088 dcmc0d0.dll
11/01/2005  20:16           131ÿ072 atipdlxx.dll
11/01/2005  20:16           102ÿ400 Oemdspif.dll
11/01/2005  20:16            65ÿ536 Ati2mdxx.exe
11/01/2005  20:16            30ÿ720 ati2edxx.dll
11/01/2005  20:16            90ÿ112 ati2evxx.dll
11/01/2005  20:16           405ÿ504 ati2evxx.exe
11/01/2005  20:15            81ÿ920 ATIDDC.DLL
11/01/2005  20:15         2ÿ254ÿ560 ati3duag.dll
11/01/2005  20:04           481ÿ920 ativvaxx.dll
11/01/2005  20:01            17ÿ408 atitvo32.dll
11/01/2005  19:59           245ÿ760 ati2cqag.dll
07/12/2004  21:34            96ÿ768 srvsvc.dll
06/12/2004  02:05            61ÿ498 tfswapi.dll
17/11/2004  19:42           354ÿ304 hypertrm.dll
10/11/2004  12:51           122ÿ880 NicConfigSvc.Cpl
01/11/2004  11:33             9ÿ216 dcmkrnl.dll
13/10/2004  20:20            94ÿ235 Vxdif.dll
08/10/2004  14:00           372ÿ736 LVUI2RC.dll
08/10/2004  13:56           204ÿ800 LVUI2.dll
08/10/2004  13:55           204ÿ800 lvcodec2.dll
08/10/2004  13:52           106ÿ496 lvcoinst.dll
08/10/2004  12:52             6ÿ812 lvcoinst.ini
08/10/2004  12:46            53ÿ248 InstMed.exe
08/10/2004  12:23           282ÿ624 camcpl.cpl
08/10/2004  12:23           462ÿ848 LCamCpl.dll
08/10/2004  12:07            86ÿ016 vatee.ax
08/10/2004  12:05           466ÿ944 QCUI2.dll
08/10/2004  12:03            90ÿ112 LQCUI2.dll
08/10/2004  11:55            77ÿ824 LVCOMCX.dll
08/10/2004  11:52           258ÿ048 LVMAENUM.dll
08/10/2004  11:52           221ÿ184 LVCOMSX.EXE
08/10/2004  11:00           215ÿ552 Lvkrn12n.dll
08/10/2004  11:00           856ÿ064 Ltwvc12n.dll
08/10/2004  11:00           628ÿ736 ltocx12n.ocx
08/10/2004  11:00           192ÿ512 ltscr12n.ocx
08/10/2004  11:00           207ÿ872 ltefx12n.dll
08/10/2004  11:00           131ÿ072 ltfil12n.DLL
08/10/2004  11:00           164ÿ864 ltimg12n.dll
08/10/2004  11:00           406ÿ016 ltkrn12n.dll
08/10/2004  11:00           259ÿ072 LTDIS12n.dll
08/10/2004  11:00           141ÿ312 lftif12n.dll
08/10/2004  11:00            78ÿ336 lffax12n.dll
08/10/2004  11:00           328ÿ704 LFCMP12n.DLL
08/10/2004  11:00            30ÿ720 lfbmp12n.dll
07/10/2004  15:39             8ÿ704 SpOrder.dll
21/09/2004  19:18             7ÿ680 btinstall.dll
16/09/2004  00:57                 0 px.ini
07/09/2004  02:01           389ÿ120 pxdrv.dll
24/08/2004  16:06            10ÿ752 PXWMA.dll
24/08/2004  16:05           360ÿ448 Px.dll
24/08/2004  16:04           159ÿ744 pxmas.dll
24/08/2004  16:04           339ÿ968 PxWave.dll
23/08/2004  15:50            32ÿ768 WooDial2000.dll
20/08/2004  15:43            22ÿ486 lrnxp.ico
20/08/2004  15:40             4ÿ627 oembios.dat
20/08/2004  15:40             7ÿ208 oembios.sig
20/08/2004  15:40        13ÿ107ÿ200 oembios.bin
20/08/2004  11:37             3ÿ072 CONFIG.NT
20/08/2004  11:36               488 WindowsLogon.manifest
20/08/2004  11:36               488 logonui.exe.manifest
20/08/2004  11:35               749 ncpa.cpl.manifest
20/08/2004  11:35               749 wuaucpl.cpl.manifest
20/08/2004  11:35               749 sapi.cpl.manifest
20/08/2004  11:35               749 cdplayer.exe.manifest
20/08/2004  11:35               749 nwc.cpl.manifest
20/08/2004  11:35            21ÿ892 emptyregdb.dat
20/08/2004  11:34               620 mapisvc.inf
20/08/2004  11:32                 0 h323log.txt
20/08/2004  11:23               204 mabv0ex.dll
20/08/2004  11:23             1ÿ024 jubah0i.dll
12/08/2004  09:44            16ÿ384 iwca.dll
11/08/2004  02:38           253ÿ688 drmclien.dll
11/08/2004  02:36            95ÿ232 drmstor.dll
10/08/2004  23:05           331ÿ776 wpdmtpdr.dll
10/08/2004  23:05            10ÿ752 wpdtrace.dll
10/08/2004  22:52            20ÿ480 wmpcore.dll
10/08/2004  22:52            20ÿ480 wmpcd.dll
10/08/2004  22:52            20ÿ480 wmpui.dll
10/08/2004  22:52            20ÿ480 wmp.ocx
05/08/2004  13:00            30ÿ208 dplaysvr.exe
05/08/2004  13:00           229ÿ888 dplayx.dll
05/08/2004  13:00            24ÿ064 dpmodemx.dll
05/08/2004  13:00             3ÿ584 dpnaddr.dll
05/08/2004  13:00           375ÿ296 dpnet.dll
05/08/2004  13:00            35ÿ328 dpnhpast.dll
05/08/2004  13:00            60ÿ928 dpnhupnp.dll
05/08/2004  13:00             3ÿ584 dpnlobby.dll
05/08/2004  13:00            62ÿ464 dpnmodem.dll
05/08/2004  13:00            18ÿ432 dpnsvr.exe
05/08/2004  13:00            61ÿ952 dpnwsock.dll
05/08/2004  13:00            54ÿ032 dpserial.dll
05/08/2004  13:00            66ÿ082 c_500.nls
05/08/2004  13:00            66ÿ594 c_437.nls
05/08/2004  13:00            66ÿ082 c_28605.nls
05/08/2004  13:00            66ÿ082 c_28603.nls
05/08/2004  13:00            66ÿ082 c_28599.nls
05/08/2004  13:00            66ÿ082 c_28598.nls
05/08/2004  13:00            66ÿ082 C_28597.NLS
05/08/2004  13:00            21ÿ504 dpvacm.dll
05/08/2004  13:00           213ÿ504 dpvoice.dll
05/08/2004  13:00            83ÿ456 dpvsetup.exe
05/08/2004  13:00           116ÿ736 dpvvox.dll
05/08/2004  13:00            42ÿ768 dpwsock.dll
05/08/2004  13:00            57ÿ856 dpwsockx.dll
05/08/2004  13:00            33ÿ040 dplay.dll
05/08/2004  13:00            66ÿ594 c_737.nls
05/08/2004  13:00            66ÿ082 C_28595.NLS
05/08/2004  13:00            66ÿ082 C_28594.NLS
05/08/2004  13:00            14ÿ336 drprov.dll
05/08/2004  13:00            28ÿ400 drwatson.exe
05/08/2004  13:00            47ÿ104 drwtsn32.exe
05/08/2004  13:00             4ÿ656 ds16gt.dLL
05/08/2004  13:00            16ÿ384 ds32gt.dll
05/08/2004  13:00            62ÿ976 dsauth.dll
05/08/2004  13:00           181ÿ760 dsdmo.dll
05/08/2004  13:00            72ÿ192 dsdmoprp.dll
05/08/2004  13:00            93ÿ696 dskquota.dll
05/08/2004  13:00           150ÿ016 dskquoui.dll
05/08/2004  13:00            66ÿ082 c_28593.nls
05/08/2004  13:00            66ÿ082 c_28592.nls
05/08/2004  13:00            66ÿ082 c_28591.nls
05/08/2004  13:00           367ÿ616 dsound.dll
05/08/2004  13:00                81 dsound.vxd
05/08/2004  13:00         1ÿ294ÿ336 dsound3d.dll
05/08/2004  13:00           145ÿ408 dsprop.dll
05/08/2004  13:00             4ÿ096 dsprpres.dll
05/08/2004  13:00           240ÿ640 dsquery.dll
05/08/2004  13:00           218ÿ003 dssec.dat
05/08/2004  13:00            52ÿ736 dssec.dll
05/08/2004  13:00           137ÿ216 dssenh.dll
05/08/2004  13:00           113ÿ664 dsuiext.dll
05/08/2004  13:00            19ÿ456 dswave.dll
05/08/2004  13:00            66ÿ082 c_21866.nls
05/08/2004  13:00            66ÿ082 c_20905.nls
05/08/2004  13:00            10ÿ752 dumprep.exe
05/08/2004  13:00           304ÿ128 duser.dll
05/08/2004  13:00            59ÿ392 dvdplay.exe
05/08/2004  13:00            17ÿ920 dvdupgrd.exe
05/08/2004  13:00           180ÿ224 dwwin.exe
05/08/2004  13:00           619ÿ008 dx7vb.dll
05/08/2004  13:00         1ÿ227ÿ264 dx8vb.dll
05/08/2004  13:00         1ÿ298ÿ432 dxdiag.exe
05/08/2004  13:00         2ÿ113ÿ536 dxdiagn.dll
05/08/2004  13:00            66ÿ082 c_20866.nls
05/08/2004  13:00           139ÿ810 c_20261.nls
05/08/2004  13:00            66ÿ082 c_20127.nls
05/08/2004  13:00         2ÿ986ÿ496 xpsp2res.dll
05/08/2004  13:00           197ÿ632 xpsp1res.dll
05/08/2004  13:00           445ÿ440 xpob2res.dll
05/08/2004  13:00             2ÿ233 12520850.cpx
05/08/2004  13:00            71ÿ102 edit.com
05/08/2004  13:00            13ÿ781 edit.hlp
05/08/2004  13:00            13ÿ010 edlin.exe
05/08/2004  13:00           127ÿ213 ega.cpi
05/08/2004  13:00           187ÿ392 els.dll
05/08/2004  13:00            97ÿ792 dpcdll.dll
05/08/2004  13:00            20ÿ480 encapi.dll
05/08/2004  13:00           186ÿ368 encdec.dll
05/08/2004  13:00            50ÿ176 xmlprovi.dll
05/08/2004  13:00           129ÿ536 xmlprov.dll
05/08/2004  13:00           177ÿ784 xenroll.dll
05/08/2004  13:00            30ÿ720 xcopy.exe
05/08/2004  13:00            91ÿ648 xactsrv.dll
05/08/2004  13:00           359ÿ936 wzcsvc.dll
05/08/2004  13:00           103ÿ424 EqnClass.Dll
05/08/2004  13:00            23ÿ040 ersvc.dll
05/08/2004  13:00            66ÿ082 c_1258.nls
05/08/2004  13:00            66ÿ082 c_1257.nls
05/08/2004  13:00         1ÿ114ÿ896 esent97.dll
05/08/2004  13:00            17ÿ408 esentprf.dll
05/08/2004  13:00             6ÿ708 esentprf.hxx
05/08/2004  13:00         1ÿ015ÿ477 esentprf.ini
05/08/2004  13:00            39ÿ424 esentutl.exe
05/08/2004  13:00            51ÿ712 wzcsapi.dll
05/08/2004  13:00           378ÿ880 wzcdlg.dll
05/08/2004  13:00            66ÿ082 c_1256.nls
05/08/2004  13:00            66ÿ082 c_1255.nls
05/08/2004  13:00            26ÿ624 aaaamon.dll
05/08/2004  13:00           195ÿ072 eudcedit.exe
05/08/2004  13:00            42ÿ303 eula.txt
05/08/2004  13:00            33ÿ280 eventcls.dll
05/08/2004  13:00            55ÿ808 eventlog.dll
05/08/2004  13:00             9ÿ216 eventvwr.exe
05/08/2004  13:00            56ÿ286 eventvwr.msc
05/08/2004  13:00             8ÿ424 exe2bin.exe
05/08/2004  13:00            16ÿ896 expand.exe
05/08/2004  13:00           380ÿ957 expsrv.dll
05/08/2004  13:00            66ÿ082 c_1254.nls
05/08/2004  13:00            45ÿ568 extrac32.exe
05/08/2004  13:00           121ÿ856 exts.dll
05/08/2004  13:00            71ÿ680 access.cpl
05/08/2004  13:00               882 fastopen.exe
05/08/2004  13:00            80ÿ896 faultrep.dll
05/08/2004  13:00            14ÿ848 fc.exe
05/08/2004  13:00            21ÿ504 feclient.dll
05/08/2004  13:00            18ÿ432 dmintf.dll
05/08/2004  13:00           181ÿ248 dmime.dll
05/08/2004  13:00           348ÿ160 filemgmt.dll
05/08/2004  13:00             9ÿ216 find.exe
05/08/2004  13:00            29ÿ184 findstr.exe
05/08/2004  13:00            10ÿ240 finger.exe
05/08/2004  13:00            80ÿ384 firewall.cpl
05/08/2004  13:00             3ÿ072 fixmapi.exe
05/08/2004  13:00            88ÿ064 fldrclnr.dll
05/08/2004  13:00            66ÿ082 c_1253.nls
05/08/2004  13:00            66ÿ082 c_1252.nls
05/08/2004  13:00            72ÿ192 acctres.dll
05/08/2004  13:00            32ÿ256 wupdmgr.exe
05/08/2004  13:00            16ÿ384 fmifs.dll
05/08/2004  13:00            66ÿ082 c_1251.nls
05/08/2004  13:00           386ÿ560 fontext.dll
05/08/2004  13:00            66ÿ082 c_1250.nls
05/08/2004  13:00            21ÿ504 fontview.exe
05/08/2004  13:00             7ÿ168 forcedos.exe
05/08/2004  13:00            25ÿ600 format.com
05/08/2004  13:00             9ÿ344 framebuf.dll
05/08/2004  13:00            55ÿ808 freecell.exe
05/08/2004  13:00            66ÿ082 c_1026.nls
05/08/2004  13:00           189ÿ952 accwiz.exe
05/08/2004  13:00            32ÿ409 fsmgmt.msc
05/08/2004  13:00           193ÿ024 fsquirt.exe
05/08/2004  13:00            81ÿ920 fsusd.dll
05/08/2004  13:00            61ÿ952 fsutil.exe
05/08/2004  13:00            66ÿ082 c_10082.nls
05/08/2004  13:00            66ÿ082 c_10081.nls
05/08/2004  13:00            61ÿ952 acelpdec.ax
05/08/2004  13:00            46ÿ080 ftp.exe
05/08/2004  13:00           135ÿ680 acledit.dll
05/08/2004  13:00           177ÿ152 ftsrch.dll
05/08/2004  13:00            60ÿ416 fwcfg.dll
05/08/2004  13:00           452ÿ096 fxsapi.dll
05/08/2004  13:00           113ÿ664 fxscfgwz.dll
05/08/2004  13:00           143ÿ360 fxsclnt.exe
05/08/2004  13:00           141ÿ312 fxsclntR.dll
05/08/2004  13:00            72ÿ192 fxscom.dll
05/08/2004  13:00           285ÿ184 fxscomex.dll
05/08/2004  13:00             1ÿ361 fxscount.h
05/08/2004  13:00           238ÿ592 fxscover.exe
05/08/2004  13:00            27ÿ136 fxsdrv.dll
05/08/2004  13:00            66ÿ048 fxsevent.dll
05/08/2004  13:00            23ÿ552 fxsext32.dll
05/08/2004  13:00            24ÿ064 fxsmon.dll
05/08/2004  13:00             8ÿ704 fxsperf.dll
05/08/2004  13:00             3ÿ712 fxsperf.ini
05/08/2004  13:00             7ÿ168 fxsres.dll
05/08/2004  13:00            31ÿ744 fxsroute.dll
05/08/2004  13:00            11ÿ776 fxssend.exe
05/08/2004  13:00           563ÿ712 fxsst.dll
05/08/2004  13:00           268ÿ800 fxssvc.exe
05/08/2004  13:00           246ÿ272 fxst30.dll
05/08/2004  13:00           397ÿ312 fxstiff.dll
05/08/2004  13:00           156ÿ672 fxsui.dll
05/08/2004  13:00           197ÿ120 fxswzrd.dll
05/08/2004  13:00           400ÿ896 fxsxp32.dll
05/08/2004  13:00            41ÿ472 g711codc.ax
05/08/2004  13:00            24ÿ006 gb2312.uce
05/08/2004  13:00            77ÿ824 gcdef.dll
05/08/2004  13:00            24ÿ576 gdi.exe
05/08/2004  13:00            66ÿ082 c_10079.nls
05/08/2004  13:00            24ÿ772 geo.nls
05/08/2004  13:00           634ÿ880 getuname.dll
05/08/2004  13:00           285ÿ184 glmf32.dll
05/08/2004  13:00           123ÿ904 glu32.dll
05/08/2004  13:00           101ÿ888 gpkcsp.dll
05/08/2004  13:00            10ÿ240 gpkrsrc.dll
05/08/2004  13:00            26ÿ112 graftabl.com
05/08/2004  13:00            19ÿ902 graphics.com
05/08/2004  13:00            21ÿ232 graphics.pro
05/08/2004  13:00            39ÿ424 grpconv.exe
05/08/2004  13:00           266ÿ752 h323.tsp
05/08/2004  13:00            54ÿ080 dosx.exe
05/08/2004  13:00           614ÿ912 h323msp.dll
05/08/2004  13:00           131ÿ968 hal.dll
05/08/2004  13:00             7ÿ168 hccoin.dll
05/08/2004  13:00           157ÿ184 hdwwiz.cpl
05/08/2004  13:00            16ÿ384 help.exe
05/08/2004  13:00            66ÿ082 c_10029.nls
05/08/2004  13:00            66ÿ082 c_10017.nls
05/08/2004  13:00            20ÿ992 hid.dll
05/08/2004  13:00            30ÿ208 hidphone.tsp
05/08/2004  13:00           119ÿ296 aclui.dll
05/08/2004  13:00             4ÿ912 himem.sys
05/08/2004  13:00            66ÿ082 c_10010.nls
05/08/2004  13:00            66ÿ082 c_10007.nls
05/08/2004  13:00           347ÿ648 hnetcfg.dll
05/08/2004  13:00            15ÿ360 hnetmon.dll
05/08/2004  13:00           336ÿ384 hnetwiz.dll
05/08/2004  13:00               929 homepage.inf
05/08/2004  13:00             8ÿ704 hostname.exe
05/08/2004  13:00           146ÿ944 hotplug.dll
05/08/2004  13:00           194ÿ048 activeds.dll
05/08/2004  13:00           134ÿ656 dmdskres.dll
05/08/2004  13:00            44ÿ544 hticons.dll
05/08/2004  13:00           425ÿ472 html.iec
05/08/2004  13:00            24ÿ576 httpapi.dll
05/08/2004  13:00            43ÿ008 htui.dll
05/08/2004  13:00           200ÿ704 dmdskmgr.dll
05/08/2004  13:00           199ÿ680 iac25_32.ax
05/08/2004  13:00           111ÿ104 activeds.tlb
05/08/2004  13:00            23ÿ552 iasacct.dll
05/08/2004  13:00            41ÿ472 iasads.dll
05/08/2004  13:00            32ÿ256 iashlpr.dll
05/08/2004  13:00            62ÿ464 iasnap.dll
05/08/2004  13:00            17ÿ920 iaspolcy.dll
05/08/2004  13:00           119ÿ808 iasrad.dll
05/08/2004  13:00           141ÿ312 iasrecst.dll
05/08/2004  13:00            86ÿ528 iassam.dll
05/08/2004  13:00           253ÿ440 iassdo.dll
05/08/2004  13:00            62ÿ976 iassvcs.dll
05/08/2004  13:00            11ÿ264 icaapi.dll
05/08/2004  13:00            80ÿ384 iccvid.dll
05/08/2004  13:00            16ÿ384 icfgnt5.dll
05/08/2004  13:00            66ÿ082 c_10006.nls
05/08/2004  13:00             3ÿ584 icmp.dll
05/08/2004  13:00            56ÿ320 icmui.dll
05/08/2004  13:00            73ÿ728 icwdial.dll
05/08/2004  13:00            65ÿ536 icwphbk.dll
05/08/2004  13:00            60ÿ458 ideograf.uce
05/08/2004  13:00           121ÿ856 idq.dll
05/08/2004  13:00            34ÿ304 ie4uinit.exe
05/08/2004  13:00           139ÿ264 ieakeng.dll
05/08/2004  13:00           221ÿ696 ieaksie.dll
05/08/2004  13:00           245ÿ760 ieakui.dll
05/08/2004  13:00           323ÿ584 iedkcs32.dll
05/08/2004  13:00            81ÿ920 ieencode.dll
05/08/2004  13:00            66ÿ082 c_10000.nls
05/08/2004  13:00            49ÿ152 iernonce.dll
05/08/2004  13:00            63ÿ488 iesetup.dll
05/08/2004  13:00            46ÿ298 ieuinit.inf
05/08/2004  13:00           114ÿ688 iexpress.exe
05/08/2004  13:00           142ÿ848 ifmon.dll
05/08/2004  13:00            70ÿ656 ifsutil.dll
05/08/2004  13:00             8ÿ192 igmpagnt.dll
05/08/2004  13:00            81ÿ920 ils.dll
05/08/2004  13:00            16ÿ384 imaadp32.acm
05/08/2004  13:00           144ÿ384 imagehlp.dll
05/08/2004  13:00           150ÿ016 imapi.exe
05/08/2004  13:00            36ÿ921 imeshare.dll
05/08/2004  13:00            35ÿ840 imgutil.dll
05/08/2004  13:00           110ÿ080 imm32.dll
05/08/2004  13:00             4ÿ096 actmovie.exe
05/08/2004  13:00           282ÿ624 inetcfg.dll
05/08/2004  13:00            66ÿ082 c_037.nls
05/08/2004  13:00           359ÿ936 inetcpl.cpl
05/08/2004  13:00           121ÿ856 inetcplc.dll
05/08/2004  13:00            33ÿ280 inetmib1.dll
05/08/2004  13:00            75ÿ264 inetpp.dll
05/08/2004  13:00            16ÿ384 inetppui.dll
05/08/2004  13:00            50ÿ688 inetres.dll
05/08/2004  13:00           450ÿ560 infosoft.dll
05/08/2004  13:00           147ÿ456 initpki.dll
05/08/2004  13:00             6ÿ656 wuauserv.dll
05/08/2004  13:00           126ÿ464 input.dll
05/08/2004  13:00             8ÿ386 ctype.nls
05/08/2004  13:00           956ÿ990 instcat.sql
05/08/2004  13:00           273ÿ920 dmdlgs.dll
05/08/2004  13:00           134ÿ144 intl.cpl
05/08/2004  13:00            39ÿ936 iologmsg.dll
05/08/2004  13:00            17ÿ408 ipconf.tsp
05/08/2004  13:00            58ÿ368 ipconfig.exe
05/08/2004  13:00            27ÿ200 ctl3dv2.dll
05/08/2004  13:00           167ÿ424 ipmontr.dll
05/08/2004  13:00           332ÿ800 ipnathlp.dll
05/08/2004  13:00           355ÿ840 ippromon.dll
05/08/2004  13:00             3ÿ584 iprop.dll
05/08/2004  13:00             4ÿ096 iprtprio.dll
05/08/2004  13:00           169ÿ984 iprtrmgr.dll
05/08/2004  13:00            46ÿ080 ipsec6.exe
05/08/2004  13:00           361ÿ472 ipsecsnp.dll
05/08/2004  13:00           184ÿ320 ipsecsvc.dll
05/08/2004  13:00           330ÿ752 dmconfig.dll
05/08/2004  13:00           388ÿ096 ipsmsnap.dll
05/08/2004  13:00            53ÿ760 ipv6.exe
05/08/2004  13:00            59ÿ904 ipv6mon.dll
05/08/2004  13:00            91ÿ648 ipxmontr.dll
05/08/2004  13:00            74ÿ240 ipxpromn.dll
05/08/2004  13:00            21ÿ504 ipxrip.dll
05/08/2004  13:00            24ÿ576 ipxroute.exe
05/08/2004  13:00            39ÿ936 ipxrtmgr.dll
05/08/2004  13:00            66ÿ560 ipxsap.dll
05/08/2004  13:00            20ÿ992 ipxwan.dll
05/08/2004  13:00           199ÿ168 ir32_32.dll
05/08/2004  13:00           848ÿ384 ir41_32.ax
05/08/2004  13:00           120ÿ320 ir41_qc.dll
05/08/2004  13:00           338ÿ432 ir41_qcx.dll
05/08/2004  13:00           755ÿ200 ir50_32.dll
05/08/2004  13:00           200ÿ192 ir50_qc.dll
05/08/2004  13:00           183ÿ808 ir50_qcx.dll
05/08/2004  13:00            13ÿ312 irclass.dll
05/08/2004  13:00           380ÿ928 irprops.cpl
05/08/2004  13:00            86ÿ016 isign32.dll
05/08/2004  13:00            32ÿ768 isrdbg32.dll
05/08/2004  13:00            61ÿ440 dmcompos.dll
05/08/2004  13:00            27ÿ136 ctl3d32.dll
05/08/2004  13:00            15ÿ360 ctfmon.exe
05/08/2004  13:00            28ÿ672 dmband.dll
05/08/2004  13:00           154ÿ624 ivfsrc.ax
05/08/2004  13:00                16 ivyhyt4.dll
05/08/2004  13:00            10ÿ752 doskey.exe
05/08/2004  13:00            54ÿ784 ixsso.dll
05/08/2004  13:00           101ÿ888 actxprxy.dll
05/08/2004  13:00           225ÿ280 dmadmin.exe
05/08/2004  13:00             4ÿ608 dllhst3g.exe
05/08/2004  13:00            61ÿ440 admparse.dll
05/08/2004  13:00            48ÿ640 docprop2.dll
05/08/2004  13:00            26ÿ112 adptif.dll
05/08/2004  13:00           362ÿ496 jet500.dll
05/08/2004  13:00            44ÿ544 jgaw400.dll
05/08/2004  13:00            73ÿ728 csseqchk.dll
05/08/2004  13:00            35ÿ840 jgmd400.dll
05/08/2004  13:00             6ÿ144 csrss.exe
05/08/2004  13:00            45ÿ568 jgsd400.dll
05/08/2004  13:00            65ÿ536 jgsh400.dll
05/08/2004  13:00            49ÿ488 jobexec.dll
05/08/2004  13:00            70ÿ144 joy.cpl
05/08/2004  13:00             5ÿ120 dllhost.exe
05/08/2004  13:00            32ÿ768 csrsrv.dll
05/08/2004  13:00            28ÿ719 jsfr.dll
05/08/2004  13:00           337ÿ920 cscui.dll
05/08/2004  13:00            47ÿ616 docprop.dll
05/08/2004  13:00            66ÿ594 c_850.nls
05/08/2004  13:00             6ÿ948 kanji_1.uce
05/08/2004  13:00             8ÿ484 kanji_2.uce
05/08/2004  13:00            14ÿ841 kb16.com
05/08/2004  13:00             6ÿ656 KBDAL.DLL
05/08/2004  13:00             5ÿ632 kbdaze.dll
05/08/2004  13:00             5ÿ632 kbdazel.dll
05/08/2004  13:00             6ÿ144 kbdbe.dll
05/08/2004  13:00             6ÿ144 kbdbene.dll
05/08/2004  13:00             5ÿ632 kbdblr.dll
05/08/2004  13:00             6ÿ144 kbdbr.dll
05/08/2004  13:00             5ÿ632 kbdbu.dll
05/08/2004  13:00             6ÿ144 kbdca.dll
05/08/2004  13:00             7ÿ680 kbdcan.dll
05/08/2004  13:00             6ÿ656 kbdcr.dll
05/08/2004  13:00             7ÿ168 kbdcz.dll
05/08/2004  13:00             6ÿ656 kbdcz1.dll
05/08/2004  13:00             6ÿ656 kbdcz2.dll
05/08/2004  13:00             6ÿ144 kbdda.dll
05/08/2004  13:00             5ÿ120 kbddv.dll
05/08/2004  13:00             6ÿ144 kbdes.dll
05/08/2004  13:00             6ÿ144 kbdest.dll
05/08/2004  13:00             6ÿ144 kbdfc.dll
05/08/2004  13:00             6ÿ144 kbdfi.dll
05/08/2004  13:00             7ÿ168 kbdfi1.dll
05/08/2004  13:00             6ÿ144 kbdfo.dll
05/08/2004  13:00             6ÿ144 kbdfr.dll
05/08/2004  13:00             5ÿ632 kbdgae.dll
05/08/2004  13:00             6ÿ144 kbdgkl.dll
05/08/2004  13:00             6ÿ144 kbdgr.dll
05/08/2004  13:00             6ÿ144 kbdgr1.dll
05/08/2004  13:00             5ÿ632 kbdhe.dll
05/08/2004  13:00             5ÿ632 kbdhe220.dll
05/08/2004  13:00             5ÿ632 kbdhe319.dll
05/08/2004  13:00             6ÿ144 kbdhela2.dll
05/08/2004  13:00             6ÿ656 kbdhela3.dll
05/08/2004  13:00             8ÿ192 kbdhept.dll
05/08/2004  13:00             6ÿ656 kbdhu.dll
05/08/2004  13:00             5ÿ632 kbdhu1.dll
05/08/2004  13:00             6ÿ144 kbdic.dll
05/08/2004  13:00             6ÿ144 kbdinbe1.dll
05/08/2004  13:00             6ÿ656 kbdinben.dll
05/08/2004  13:00             6ÿ656 kbdinmal.dll
05/08/2004  13:00             5ÿ632 kbdir.dll
05/08/2004  13:00             5ÿ632 kbdit.dll
05/08/2004  13:00             5ÿ632 kbdit142.dll
05/08/2004  13:00             5ÿ632 kbdkaz.dll
05/08/2004  13:00             5ÿ632 kbdkyr.dll
05/08/2004  13:00             6ÿ656 kbdla.dll
05/08/2004  13:00             5ÿ632 kbdlt.dll
05/08/2004  13:00             5ÿ632 kbdlt1.dll
05/08/2004  13:00             6ÿ144 kbdlv.dll
05/08/2004  13:00             6ÿ144 kbdlv1.dll
05/08/2004  13:00             6ÿ144 kbdmac.dll
05/08/2004  13:00             5ÿ632 kbdmaori.dll
05/08/2004  13:00             6ÿ144 kbdmlt47.dll
05/08/2004  13:00             6ÿ144 kbdmlt48.dll
05/08/2004  13:00             5ÿ632 kbdmon.dll
05/08/2004  13:00             6ÿ144 kbdne.dll
05/08/2004  13:00             7ÿ168 kbdnec.dll
05/08/2004  13:00             6ÿ144 kbdno.dll
05/08/2004  13:00             7ÿ168 kbdno1.dll
05/08/2004  13:00             6ÿ656 kbdpl.dll
05/08/2004  13:00             5ÿ632 kbdpl1.dll
05/08/2004  13:00             6ÿ144 kbdpo.dll
05/08/2004  13:00             5ÿ632 kbdro.dll
05/08/2004  13:00             5ÿ632 kbdru.dll
05/08/2004  13:00             5ÿ632 kbdru1.dll
05/08/2004  13:00             6ÿ144 kbdsf.dll
05/08/2004  13:00             6ÿ656 kbdsg.dll
05/08/2004  13:00             6ÿ656 kbdsl.dll
05/08/2004  13:00             6ÿ656 kbdsl1.dll
05/08/2004  13:00             7ÿ680 kbdsmsfi.dll
05/08/2004  13:00             7ÿ680 kbdsmsno.dll
05/08/2004  13:00             6ÿ144 kbdsp.dll
05/08/2004  13:00             6ÿ144 kbdsw.dll
05/08/2004  13:00             5ÿ632 kbdtat.dll
05/08/2004  13:00             6ÿ144 kbdtuf.dll
05/08/2004  13:00             6ÿ144 kbdtuq.dll
05/08/2004  13:00             5ÿ632 kbduk.dll
05/08/2004  13:00             7ÿ168 kbdukx.dll
05/08/2004  13:00             5ÿ632 kbdur.dll
05/08/2004  13:00             5ÿ632 kbdus.dll
05/08/2004  13:00             6ÿ144 kbdusl.dll
05/08/2004  13:00             6ÿ144 kbdusr.dll
05/08/2004  13:00             6ÿ144 kbdusx.dll
05/08/2004  13:00             5ÿ632 kbduzb.dll
05/08/2004  13:00             5ÿ632 kbdycc.dll
05/08/2004  13:00             6ÿ656 kbdycl.dll
05/08/2004  13:00             7ÿ424 kd1394.dll
05/08/2004  13:00             7ÿ040 kdcom.dll
05/08/2004  13:00            98ÿ304 cscript.exe
05/08/2004  13:00           102ÿ912 cscdll.dll
05/08/2004  13:00            42ÿ809 key01.sys
05/08/2004  13:00             2ÿ000 keyboard.drv
05/08/2004  13:00            42ÿ537 keyboard.sys
05/08/2004  13:00           157ÿ184 keymgr.dll
05/08/2004  13:00            33ÿ280 kmddsp.tsp
05/08/2004  13:00            12ÿ876 korean.uce
05/08/2004  13:00            92ÿ608 krnl386.exe
05/08/2004  13:00            66ÿ594 c_852.nls
05/08/2004  13:00           175ÿ616 adsldp.dll
05/08/2004  13:00           143ÿ360 adsldpc.dll
05/08/2004  13:00            68ÿ096 adsmsext.dll
05/08/2004  13:00            18ÿ432 wtsapi32.dll
05/08/2004  13:00           290ÿ816 l3codeca.acm
05/08/2004  13:00           530ÿ432 cryptui.dll
05/08/2004  13:00            83ÿ456 l3codecx.ax
05/08/2004  13:00             9ÿ728 label.exe
05/08/2004  13:00            89ÿ600 langwrbk.dll
05/08/2004  13:00           224ÿ448 lanman.drv
05/08/2004  13:00            60ÿ416 cryptsvc.dll
05/08/2004  13:00            66ÿ594 c_855.nls
05/08/2004  13:00            63ÿ488 cryptnet.dll
05/08/2004  13:00            66ÿ594 c_857.nls
05/08/2004  13:00            66ÿ594 c_860.nls
05/08/2004  13:00            66ÿ594 c_861.nls
05/08/2004  13:00            66ÿ594 c_863.nls
05/08/2004  13:00            66ÿ594 c_865.nls
05/08/2004  13:00            54ÿ784 cryptext.dll
05/08/2004  13:00           424ÿ960 licdll.dll
05/08/2004  13:00            22ÿ528 licmgr10.dll
05/08/2004  13:00            58ÿ880 licwmi.dll
05/08/2004  13:00            30ÿ208 lights.exe
05/08/2004  13:00            33ÿ280 cryptdll.dll
05/08/2004  13:00            13ÿ824 lmhsvc.dll
05/08/2004  13:00           399ÿ872 lmrt.dll
05/08/2004  13:00            26ÿ624 lnkstub.exe
05/08/2004  13:00             1ÿ187 loadfix.com
05/08/2004  13:00           100ÿ352 loadperf.dll
05/08/2004  13:00           249ÿ270 locale.nls
05/08/2004  13:00           228ÿ352 localsec.dll
05/08/2004  13:00           344ÿ576 localspl.dll
05/08/2004  13:00            11ÿ776 localui.dll
05/08/2004  13:00            75ÿ264 locator.exe
05/08/2004  13:00             5ÿ120 lodctr.exe
05/08/2004  13:00            75ÿ776 cryptdlg.dll
05/08/2004  13:00            50ÿ688 loghours.dll
05/08/2004  13:00            61ÿ952 logman.exe
05/08/2004  13:00            15ÿ872 logoff.exe
05/08/2004  13:00           221ÿ696 logon.scr
05/08/2004  13:00           515ÿ584 logonui.exe
05/08/2004  13:00            45ÿ083 dispex.dll
05/08/2004  13:00            22ÿ016 lpk.dll
05/08/2004  13:00             6ÿ144 lpq.exe
05/08/2004  13:00             9ÿ216 lpr.exe
05/08/2004  13:00            10ÿ240 lprhelp.dll
05/08/2004  13:00             9ÿ216 lprmonui.dll
05/08/2004  13:00            19ÿ456 diskperf.exe
05/08/2004  13:00           167ÿ936 diskpart.exe
05/08/2004  13:00           604ÿ672 crypt32.dll
05/08/2004  13:00            13ÿ312 lsass.exe
05/08/2004  13:00            33ÿ311 diskmgmt.msc
05/08/2004  13:00         1ÿ502ÿ208 diskcopy.dll
05/08/2004  13:00             7ÿ168 diskcopy.com
05/08/2004  13:00             9ÿ216 diskcomp.com
05/08/2004  13:00           187ÿ904 dinput8.dll
05/08/2004  13:00           165ÿ376 dinput.dll
05/08/2004  13:00            44ÿ032 dimap.dll
05/08/2004  13:00            68ÿ608 digest.dll
05/08/2004  13:00            51ÿ200 wstdecod.dll
05/08/2004  13:00            41ÿ847 lusrmgr.msc
05/08/2004  13:00            85ÿ504 diantz.exe
05/08/2004  13:00           395ÿ264 diactfrm.dll
05/08/2004  13:00            78ÿ848 dhcpsapi.dll
05/08/2004  13:00           149ÿ019 crtdll.dll
05/08/2004  13:00           401ÿ408 dhcpmon.dll
05/08/2004  13:00            66ÿ594 c_866.nls
05/08/2004  13:00            86ÿ044 dgsetup.dll
05/08/2004  13:00           176ÿ157 dgrpsetu.dll
05/08/2004  13:00           115ÿ200 dgnet.dll
05/08/2004  13:00            28ÿ672 dfsshlex.dll
05/08/2004  13:00             2ÿ560 lz32.dll
05/08/2004  13:00             9ÿ936 lzexpand.dll
05/08/2004  13:00               168 l_except.nls
05/08/2004  13:00             7ÿ046 l_intl.nls
05/08/2004  13:00            45ÿ568 dnsrslvr.dll
05/08/2004  13:00           165ÿ888 credui.dll
05/08/2004  13:00            73ÿ216 magnify.exe
05/08/2004  13:00             8ÿ192 mag_hook.dll
05/08/2004  13:00           189ÿ952 main.cpl
05/08/2004  13:00            85ÿ504 makecab.exe
05/08/2004  13:00           112ÿ128 mapi32.dll
05/08/2004  13:00           112ÿ128 mapistub.dll
05/08/2004  13:00            66ÿ594 c_775.nls
05/08/2004  13:00            14ÿ848 mcastmib.dll
05/08/2004  13:00            10ÿ240 mcd32.dll
05/08/2004  13:00            10ÿ496 mcdsrv32.dll
05/08/2004  13:00             4ÿ608 mchgrcoi.dll
05/08/2004  13:00            73ÿ680 mciavi.drv
05/08/2004  13:00            85ÿ504 mciavi32.dll
05/08/2004  13:00            17ÿ408 mcicda.dll
05/08/2004  13:00             8ÿ192 mciole16.dll
05/08/2004  13:00             7ÿ680 mciole32.dll
05/08/2004  13:00            35ÿ328 mciqtz32.dll
05/08/2004  13:00            23ÿ040 mciseq.dll
05/08/2004  13:00            25ÿ280 mciseq.drv
05/08/2004  13:00            23ÿ552 mciwave.dll
05/08/2004  13:00            28ÿ160 mciwave.drv
05/08/2004  13:00            50ÿ176 mdhcp.dll
05/08/2004  13:00            25ÿ088 wsock32.dll
05/08/2004  13:00           120ÿ320 mdminst.dll
05/08/2004  13:00            42ÿ496 wsnmp32.dll
05/08/2004  13:00           147ÿ968 mdwmdmsp.dll
05/08/2004  13:00            27ÿ097 country.sys
05/08/2004  13:00            39ÿ434 mem.exe
05/08/2004  13:00            35ÿ328 corpol.dll
05/08/2004  13:00           924ÿ432 mfc40.dll
05/08/2004  13:00            45ÿ568 mfc40loc.dll
05/08/2004  13:00            13ÿ824 convert.exe
05/08/2004  13:00         1ÿ028ÿ096 mfc42.dll
05/08/2004  13:00            19ÿ968 wshtcpip.dll
05/08/2004  13:00            57ÿ344 mfc42loc.dll
05/08/2004  13:00             8ÿ192 control.exe
05/08/2004  13:00            11ÿ776 WshRm.dll
05/08/2004  13:00            98ÿ304 wshom.ocx
05/08/2004  13:00             7ÿ168 wshnetbs.dll
05/08/2004  13:00            11ÿ776 wshisn.dll
05/08/2004  13:00            14ÿ336 wship6.dll
05/08/2004  13:00            57ÿ392 wshfr.dll
05/08/2004  13:00            65ÿ536 wshext.dll
05/08/2004  13:00            28ÿ672 wshcon.dll
05/08/2004  13:00           108ÿ032 wshbth.dll
05/08/2004  13:00             9ÿ216 wshatm.dll
05/08/2004  13:00            22ÿ528 mfcsubs.dll
05/08/2004  13:00            67ÿ072 console.dll
05/08/2004  13:00            14ÿ848 mgmtapi.dll
05/08/2004  13:00            46ÿ258 mib.bin
05/08/2004  13:00            18ÿ944 midimap.dll
05/08/2004  13:00            60ÿ928 miglibnt.dll
05/08/2004  13:00            52ÿ736 migpwd.exe
05/08/2004  13:00            18ÿ944 mimefilt.dll
05/08/2004  13:00           673ÿ088 mlang.dat
05/08/2004  13:00           586ÿ240 mlang.dll
05/08/2004  13:00             3ÿ584 mll_hp.dll
05/08/2004  13:00             7ÿ680 mll_mtf.dll
05/08/2004  13:00             5ÿ632 mll_qic.dll
05/08/2004  13:00           816ÿ128 mmc.exe
05/08/2004  13:00            79ÿ872 mmcbase.dll
05/08/2004  13:00         1ÿ198ÿ080 mmcndmgr.dll
05/08/2004  13:00            50ÿ688 mmcshext.dll
05/08/2004  13:00             1ÿ490 mmdriver.inf
05/08/2004  13:00            12ÿ288 mmdrv.dll
05/08/2004  13:00            17ÿ920 mmfutil.dll
05/08/2004  13:00           626ÿ176 mmsys.cpl
05/08/2004  13:00            70ÿ688 mmsystem.dll
05/08/2004  13:00             1ÿ152 mmtask.tsk
05/08/2004  13:00           119ÿ808 mmutilse.dll
05/08/2004  13:00            34ÿ560 mnmdd.dll
05/08/2004  13:00            32ÿ768 mnmsrvc.exe
05/08/2004  13:00           210ÿ432 mobsync.dll
05/08/2004  13:00           144ÿ384 mobsync.exe
05/08/2004  13:00            19ÿ456 mode.com
05/08/2004  13:00           156ÿ160 modemui.dll
05/08/2004  13:00            10ÿ112 modex.dll
05/08/2004  13:00            15ÿ872 more.com
05/08/2004  13:00           216ÿ064 moricons.dll
05/08/2004  13:00             8ÿ192 mountvol.exe
05/08/2004  13:00             2ÿ032 mouse.drv
05/08/2004  13:00            27ÿ648 conime.exe
05/08/2004  13:00           346ÿ112 confmsp.dll
05/08/2004  13:00             3ÿ072 CONFIG.TMP
05/08/2004  13:00            66ÿ594 c_869.nls
05/08/2004  13:00           118ÿ272 mpeg2data.ax
05/08/2004  13:00           148ÿ992 mpg2splt.ax
05/08/2004  13:00           147ÿ456 comsnap.dll
05/08/2004  13:00           851ÿ968 comres.dll
05/08/2004  13:00           262ÿ144 mpg4ds32.ax
05/08/2004  13:00           124ÿ928 mplay32.exe
05/08/2004  13:00            22ÿ016 mpnotify.exe
05/08/2004  13:00            59ÿ904 mpr.dll
05/08/2004  13:00            87ÿ040 mprapi.dll
05/08/2004  13:00            69ÿ120 mprddm.dll
05/08/2004  13:00            49ÿ152 mprdim.dll
05/08/2004  13:00           114ÿ688 mprmsg.dll
05/08/2004  13:00            47ÿ616 mprui.dll
05/08/2004  13:00            14ÿ336 mrinfo.exe
05/08/2004  13:00           230ÿ912 compstui.dll
05/08/2004  13:00           102ÿ912 msaatext.dll
05/08/2004  13:00            61ÿ312 msacm.dll
05/08/2004  13:00            72ÿ192 msacm32.dll
05/08/2004  13:00            20ÿ992 msacm32.drv
05/08/2004  13:00           221ÿ184 msadds32.ax
05/08/2004  13:00            14ÿ848 msadp32.acm
05/08/2004  13:00             3ÿ584 msafd.dll
05/08/2004  13:00            86ÿ016 msapsspc.dll
05/08/2004  13:00            57ÿ344 msasn1.dll
05/08/2004  13:00           294ÿ912 msaud32.acm
05/08/2004  13:00            77ÿ312 msaudite.dll
05/08/2004  13:00             7ÿ168 mscat32.dll
05/08/2004  13:00               817 mscdexnt.exe
05/08/2004  13:00            30ÿ160 compobj.dll
05/08/2004  13:00           148ÿ480 wscui.cpl
05/08/2004  13:00            69ÿ632 msconf.dll
05/08/2004  13:00            37ÿ357 compmgmt.msc
05/08/2004  13:00           253ÿ440 compatUI.dll
05/08/2004  13:00            18ÿ432 compact.exe
05/08/2004  13:00            12ÿ288 mscpx32r.dLL
05/08/2004  13:00            36ÿ864 mscpxl32.dLL
05/08/2004  13:00           294ÿ400 MSCTF.dll
05/08/2004  13:00           177ÿ152 MSCTFIME.IME
05/08/2004  13:00            69ÿ120 MSCTFP.dll
05/08/2004  13:00           118ÿ784 msdadiag.dll
05/08/2004  13:00           151ÿ552 msdart.dll
05/08/2004  13:00            12ÿ288 msdatsrc.tlb
05/08/2004  13:00            15ÿ872 comp.exe
05/08/2004  13:00            14ÿ336 msdmo.dll
05/08/2004  13:00             6ÿ144 msdtc.exe
05/08/2004  13:00            58ÿ880 msdtclog.dll
05/08/2004  13:00               768 msdtcprf.h
05/08/2004  13:00             3ÿ914 msdtcprf.ini
05/08/2004  13:00            33ÿ904 commdlg.dll
05/08/2004  13:00            52ÿ103 command.com
05/08/2004  13:00            10ÿ544 comm.drv
05/08/2004  13:00           848ÿ922 msdxm.ocx
05/08/2004  13:00             4ÿ126 msdxmlc.dll
05/08/2004  13:00            94ÿ282 msencode.dll
05/08/2004  13:00           512ÿ029 msexch40.dll
05/08/2004  13:00           319ÿ517 msexcl40.dll
05/08/2004  13:00           281ÿ088 comdlg32.dll
05/08/2004  13:00            22ÿ528 msg.exe
05/08/2004  13:00             9ÿ216 msg711.acm
05/08/2004  13:00           118ÿ784 msg723.acm
05/08/2004  13:00         1ÿ004ÿ032 msgina.dll
05/08/2004  13:00            19ÿ968 msgsm32.acm
05/08/2004  13:00            33ÿ792 msgsvc.dll
05/08/2004  13:00           188ÿ416 msh261.drv
05/08/2004  13:00            81ÿ408 wscsvc.dll
05/08/2004  13:00           128ÿ000 mshearts.exe
05/08/2004  13:00            29ÿ184 mshta.exe
05/08/2004  13:00             3ÿ584 comcat.dll
05/08/2004  13:00         1ÿ351ÿ168 mshtml.tlb
05/08/2004  13:00            25ÿ600 comaddin.dll
05/08/2004  13:00            57ÿ344 mshtmler.dll
05/08/2004  13:00            26ÿ624 cnvfat.dll
05/08/2004  13:00            51ÿ712 msident.dll
05/08/2004  13:00             6ÿ656 msidle.dll
05/08/2004  13:00            16ÿ896 msidntld.dll
05/08/2004  13:00           252ÿ416 msieftp.dll
05/08/2004  13:00           123ÿ904 dfrgui.dll
05/08/2004  13:00            39ÿ424 dfrgsnap.dll
05/08/2004  13:00             4ÿ608 msimg32.dll
05/08/2004  13:00            55ÿ808 dfrgres.dll
05/08/2004  13:00           159ÿ232 MSIMTF.dll
05/08/2004  13:00           104ÿ960 dfrgntfs.exe
05/08/2004  13:00         1ÿ507ÿ356 msjet40.dll
05/08/2004  13:00           358ÿ976 msjetoledb40.dll
05/08/2004  13:00           184ÿ351 msjint40.dll
05/08/2004  13:00            53ÿ279 msjter40.dll
05/08/2004  13:00           241ÿ693 msjtes40.dll
05/08/2004  13:00            25ÿ600 mslbui.dll
05/08/2004  13:00           146ÿ432 msls31.dll
05/08/2004  13:00           213ÿ023 msltus40.dll
05/08/2004  13:00            32ÿ768 cnetcfg.dll
05/08/2004  13:00           290ÿ816 msnsspc.dll
05/08/2004  13:00            82ÿ432 dfrgfat.exe
05/08/2004  13:00           252ÿ928 msoeacct.dll
05/08/2004  13:00           105ÿ984 msoert2.dll
05/08/2004  13:00            24ÿ576 msorc32r.dll
05/08/2004  13:00           143ÿ360 msorcl32.dll
05/08/2004  13:00           347ÿ648 mspaint.exe
05/08/2004  13:00            30ÿ208 mspatcha.dll
05/08/2004  13:00           348ÿ189 mspbde40.dll
05/08/2004  13:00            50ÿ688 cnbjmon.dll
05/08/2004  13:00            40ÿ960 cmutil.dll
05/08/2004  13:00            43ÿ008 msports.dll
05/08/2004  13:00            61ÿ440 dmview.ocx
05/08/2004  13:00           114ÿ688 wscript.exe
05/08/2004  13:00            69ÿ632 msr2c.dll
05/08/2004  13:00             7ÿ168 msr2cenu.dll
05/08/2004  13:00            65ÿ536 msratelc.dll
05/08/2004  13:00            65ÿ536 cmstp.exe
05/08/2004  13:00            73ÿ802 msrclr40.dll
05/08/2004  13:00           421ÿ919 msrd2x40.dll
05/08/2004  13:00           315ÿ423 msrd3x40.dll
05/08/2004  13:00            13ÿ824 wscntfy.exe
05/08/2004  13:00            28ÿ746 msrecr40.dll
05/08/2004  13:00           552ÿ989 msrepl40.dll
05/08/2004  13:00            11ÿ264 msrle32.dll
05/08/2004  13:00           134ÿ656 mssap.dll
05/08/2004  13:00            69ÿ632 msscds32.ax
05/08/2004  13:00            13ÿ824 cmsetACL.dll
05/08/2004  13:00           102ÿ400 msscript.ocx
05/08/2004  13:00            36ÿ352 mssign32.dll
05/08/2004  13:00             4ÿ608 mssip32.dll
05/08/2004  13:00            82ÿ944 ws2_32.dll
05/08/2004  13:00            19ÿ968 ws2help.dll
05/08/2004  13:00            13ÿ312 msswch.dll
05/08/2004  13:00             6ÿ656 msswchx.exe
05/08/2004  13:00           281ÿ600 mstask.dll
05/08/2004  13:00           258ÿ077 mstext40.dll
05/08/2004  13:00           191ÿ488 cmprops.dll
05/08/2004  13:00            12ÿ288 mstinit.exe
05/08/2004  13:00           115ÿ712 mstlsapi.dll
05/08/2004  13:00           411ÿ648 mstsc.exe
05/08/2004  13:00           655ÿ360 mstscax.dll
05/08/2004  13:00           195ÿ584 msutb.dll
05/08/2004  13:00           129ÿ536 msv1_0.dll
05/08/2004  13:00         1ÿ355ÿ776 msvbvm50.dll
05/08/2004  13:00         1ÿ392ÿ671 msvbvm60.dll
05/08/2004  13:00            54ÿ784 msvcirt.dll
05/08/2004  13:00           565ÿ760 msvcp50.dll
05/08/2004  13:00           413ÿ696 msvcp60.dll
05/08/2004  13:00             5ÿ632 write.exe
05/08/2004  13:00           263ÿ680 adsnt.dll
05/08/2004  13:00           343ÿ040 msvcrt.dll
05/08/2004  13:00           253ÿ952 msvcrt20.dll
05/08/2004  13:00            61ÿ440 msvcrt40.dll
05/08/2004  13:00           121ÿ856 msvfw32.dll
05/08/2004  13:00            25ÿ600 msvidc32.dll
05/08/2004  13:00         1ÿ433ÿ600 msvidctl.dll
05/08/2004  13:00           127ÿ168 msvideo.dll
05/08/2004  13:00            72ÿ704 msw3prt.dll
05/08/2004  13:00           831ÿ519 mswdat10.dll
05/08/2004  13:00           204ÿ800 mswebdvd.dll
05/08/2004  13:00            32ÿ768 wpnpinst.exe
05/08/2004  13:00            14ÿ336 cmpbk32.dll
05/08/2004  13:00           247ÿ808 mswsock.dll
05/08/2004  13:00           614ÿ429 mswstr10.dll
05/08/2004  13:00           348ÿ189 msxbde40.dll
05/08/2004  13:00           506ÿ368 msxml.dll
05/08/2004  13:00           701ÿ440 msxml2.dll
05/08/2004  13:00            43ÿ792 msxml2r.dll
05/08/2004  13:00                64 cmos.ram
05/08/2004  13:00            51ÿ200 msxml3r.dll
05/08/2004  13:00            40ÿ448 cmmon32.exe
05/08/2004  13:00           685ÿ056 advapi32.dll
05/08/2004  13:00            30ÿ720 msxmlr.dll
05/08/2004  13:00            58ÿ880 dmutil.dll
05/08/2004  13:00            72ÿ365 cmmgr32.hlp
05/08/2004  13:00            20ÿ480 mtxdm.dll
05/08/2004  13:00             4ÿ096 mtxex.dll
05/08/2004  13:00            25ÿ088 mtxlegih.dll
05/08/2004  13:00            47ÿ104 cmdl32.exe
05/08/2004  13:00            90ÿ624 mycomput.dll
05/08/2004  13:00            91ÿ648 mydocs.dll
05/08/2004  13:00            55ÿ296 narrator.exe
05/08/2004  13:00            36ÿ352 narrhook.dll
05/08/2004  13:00            21ÿ504 nbtstat.exe
05/08/2004  13:00            36ÿ352 ncobjapi.dll
05/08/2004  13:00            35ÿ840 ncpa.cpl
05/08/2004  13:00           104ÿ448 dmusic.dll
05/08/2004  13:00             7ÿ680 ncxpnt.dll
05/08/2004  13:00            18ÿ432 nddeapi.dll
05/08/2004  13:00             4ÿ096 nddeapir.exe
05/08/2004  13:00            19ÿ456 nddenb32.dll
05/08/2004  13:00            57ÿ344 ndptsp.tsp
05/08/2004  13:00            42ÿ496 net.exe
05/08/2004  13:00           121ÿ876 net.hlp
05/08/2004  13:00           124ÿ928 net1.exe
05/08/2004  13:00           108ÿ512 netapi.dll
05/08/2004  13:00           352ÿ256 cmdial32.dll
05/08/2004  13:00           633ÿ856 netcfgx.dll
05/08/2004  13:00           114ÿ176 netdde.exe
05/08/2004  13:00           251ÿ392 netevent.dll
05/08/2004  13:00           400ÿ896 cmd.exe
05/08/2004  13:00           291ÿ328 neth.dll
05/08/2004  13:00           144ÿ896 netid.dll
05/08/2004  13:00           407ÿ040 netlogon.dll
05/08/2004  13:00            15ÿ872 cmcfg32.dll
05/08/2004  13:00           200ÿ192 netmsg.dll
05/08/2004  13:00           885ÿ248 netplwiz.dll
05/08/2004  13:00            12ÿ288 netrap.dll
05/08/2004  13:00            25ÿ600 netsetup.cpl
05/08/2004  13:00           332ÿ800 netsetup.exe
05/08/2004  13:00            88ÿ576 netsh.exe
05/08/2004  13:00         1ÿ723ÿ904 netshell.dll
05/08/2004  13:00            37ÿ888 netstat.exe
05/08/2004  13:00            83ÿ456 netui0.dll
05/08/2004  13:00           245ÿ760 netui1.dll
05/08/2004  13:00           312ÿ832 netui2.dll
05/08/2004  13:00           251ÿ392 newdev.dll
05/08/2004  13:00            41ÿ131 dfrg.msc
05/08/2004  13:00           103ÿ936 nlhtml.dll
05/08/2004  13:00             7ÿ116 nlsfunc.exe
05/08/2004  13:00            12ÿ288 nmevtmsg.dll
05/08/2004  13:00            28ÿ672 nmmkcert.dll
05/08/2004  13:00             1ÿ696 noise.chs
05/08/2004  13:00             1ÿ696 noise.cht
05/08/2004  13:00               741 noise.dat
05/08/2004  13:00           149ÿ848 noise.deu
05/08/2004  13:00               751 noise.eng
05/08/2004  13:00               751 noise.enu
05/08/2004  13:00            19ÿ684 noise.esn
05/08/2004  13:00            49ÿ196 noise.fra
05/08/2004  13:00            19ÿ618 noise.ita
05/08/2004  13:00            13ÿ256 noise.nld
05/08/2004  13:00            13ÿ730 noise.sve
05/08/2004  13:00               697 noise.tha
05/08/2004  13:00            70ÿ656 notepad.exe
05/08/2004  13:00           101ÿ888 advpack.dll
05/08/2004  13:00            55ÿ296 npptools.dll
05/08/2004  13:00            98ÿ304 ahui.exe
05/08/2004  13:00            57ÿ856 clusapi.dll
05/08/2004  13:00            79ÿ360 nslookup.exe
05/08/2004  13:00           733ÿ184 ntdll.dll
05/08/2004  13:00            27ÿ916 ntdos.sys
05/08/2004  13:00            29ÿ146 ntdos404.sys
05/08/2004  13:00            29ÿ370 ntdos411.sys
05/08/2004  13:00            29ÿ274 ntdos412.sys
05/08/2004  13:00            29ÿ146 ntdos804.sys
05/08/2004  13:00            67ÿ072 ntdsapi.dll
05/08/2004  13:00            48ÿ794 ntimage.gif
05/08/2004  13:00            34ÿ000 ntio.sys
05/08/2004  13:00            34ÿ560 ntio404.sys
05/08/2004  13:00            35ÿ648 ntio411.sys
05/08/2004  13:00            35ÿ424 ntio412.sys
05/08/2004  13:00            34ÿ560 ntio804.sys
05/08/2004  13:00            33ÿ280 clipsrv.exe
05/08/2004  13:00            43ÿ520 ntlanman.dll
05/08/2004  13:00            59ÿ392 ntlanui.dll
05/08/2004  13:00            14ÿ848 ntlanui2.dll
05/08/2004  13:00             8ÿ192 ntlsapi.dll
05/08/2004  13:00           119ÿ808 ntmarta.dll
05/08/2004  13:00            40ÿ960 ntmsapi.dll
05/08/2004  13:00           181ÿ248 ntmsdba.dll
05/08/2004  13:00            45ÿ056 ntmsevt.dll
05/08/2004  13:00           496ÿ640 ntmsmgr.dll
05/08/2004  13:00            25ÿ901 ntmsmgr.msc
05/08/2004  13:00            32ÿ590 ntmsoprq.msc
05/08/2004  13:00           438ÿ272 ntmssvc.dll
05/08/2004  13:00           104ÿ448 clipbrd.exe
05/08/2004  13:00            91ÿ648 ntprint.dll
05/08/2004  13:00            31ÿ744 ntsd.exe
05/08/2004  13:00            36ÿ864 ntsdexts.dll
05/08/2004  13:00           145ÿ920 ntshrui.dll
05/08/2004  13:00           420ÿ864 ntvdm.exe
05/08/2004  13:00            13ÿ312 ntvdmd.dll
05/08/2004  13:00           261ÿ120 nusrmgr.cpl
05/08/2004  13:00             2ÿ151 12520437.cpx
05/08/2004  13:00           103ÿ424 dmsynth.dll
05/08/2004  13:00            28ÿ672 cliconfg.rll
05/08/2004  13:00           267ÿ776 oakley.dll
05/08/2004  13:00           288ÿ768 objsel.dll
05/08/2004  13:00            97ÿ280 occache.dll
05/08/2004  13:00            62ÿ976 ocmanage.dll
05/08/2004  13:00            26ÿ224 odbc16gt.dll
05/08/2004  13:00           249ÿ856 odbc32.dll
05/08/2004  13:00            16ÿ384 odbc32gt.dll
05/08/2004  13:00            32ÿ768 odbcad32.exe
05/08/2004  13:00            24ÿ576 odbcbcp.dll
05/08/2004  13:00           135ÿ168 odbcconf.dll
05/08/2004  13:00            69ÿ632 odbcconf.exe
05/08/2004  13:00             4ÿ310 odbcconf.rsp
05/08/2004  13:00            32ÿ768 odbccp32.cpl
05/08/2004  13:00           106ÿ496 odbccp32.dll
05/08/2004  13:00            65ÿ536 odbccr32.dll
05/08/2004  13:00            65ÿ536 odbccu32.dll
05/08/2004  13:00            98ÿ304 odbcint.dll
05/08/2004  13:00            61ÿ712 odbcji32.dll
05/08/2004  13:00           278ÿ559 odbcjt32.dll
05/08/2004  13:00            12ÿ288 odbcp32r.dll
05/08/2004  13:00           147ÿ456 odbctrac.dll
05/08/2004  13:00            20ÿ511 oddbse32.dll
05/08/2004  13:00            20ÿ510 odexl32.dll
05/08/2004  13:00            20ÿ510 odfox32.dll
05/08/2004  13:00            20ÿ510 odpdx32.dll
05/08/2004  13:00            20ÿ511 odtext32.dll
05/08/2004  13:00           290ÿ816 devmgr.dll
05/08/2004  13:00            32ÿ738 devmgmt.msc
05/08/2004  13:00            59ÿ904 devenum.dll
05/08/2004  13:00                 2 desktop.ini
05/08/2004  13:00            18ÿ944 deskperf.dll
05/08/2004  13:00            16ÿ896 deskmon.dll
05/08/2004  13:00            16ÿ896 deskadp.dll
05/08/2004  13:00           120ÿ832 offfilt.dll
05/08/2004  13:00            39ÿ744 ole2.dll
05/08/2004  13:00           169ÿ520 ole2disp.dll
05/08/2004  13:00           153ÿ008 ole2nls.dll
05/08/2004  13:00            20ÿ480 cliconfg.exe
05/08/2004  13:00           163ÿ328 oleacc.dll
05/08/2004  13:00            18ÿ944 oleaccrc.dll
05/08/2004  13:00            77ÿ824 cliconfg.dll
05/08/2004  13:00            83ÿ456 olecli.dll
05/08/2004  13:00            61ÿ126 cliconf.chm
05/08/2004  13:00            65ÿ536 cleanmgr.exe
05/08/2004  13:00            11ÿ264 clb.dll
05/08/2004  13:00           110ÿ592 oleprn.dll
05/08/2004  13:00            83ÿ456 olepro32.dll
05/08/2004  13:00            24ÿ064 olesvr.dll
05/08/2004  13:00            22ÿ016 olesvr32.dll
05/08/2004  13:00            69ÿ120 olethk32.dll
05/08/2004  13:00           713ÿ728 opengl32.dll
05/08/2004  13:00           216ÿ576 osk.exe
05/08/2004  13:00            68ÿ096 osuninst.dll
05/08/2004  13:00            41ÿ984 osuninst.exe
05/08/2004  13:00           138ÿ240 desk.cpl
05/08/2004  13:00           105ÿ984 dmstyle.dll
05/08/2004  13:00           116ÿ224 p2p.dll
05/08/2004  13:00            86ÿ016 p2pgasvc.dll
05/08/2004  13:00           312ÿ320 p2pgraph.dll
05/08/2004  13:00            88ÿ064 p2pnetsh.dll
05/08/2004  13:00           526ÿ848 p2psvc.dll
05/08/2004  13:00            59ÿ904 packager.exe
05/08/2004  13:00            10ÿ240 panmap.dll
05/08/2004  13:00           157ÿ696 paqsp.dll
05/08/2004  13:00            22ÿ528 pathping.exe
05/08/2004  13:00            44ÿ544 alg.exe
05/08/2004  13:00            65ÿ024 pautoenr.dll
05/08/2004  13:00            17ÿ408 alrsvc.dll
05/08/2004  13:00               114 pcl.sep
05/08/2004  13:00           286ÿ208 pdh.dll
05/08/2004  13:00            15ÿ360 pentnt.exe
05/08/2004  13:00             7ÿ680 ckcnv.exe
05/08/2004  13:00             5ÿ632 cisvc.exe
05/08/2004  13:00               427 perfci.h
05/08/2004  13:00             3ÿ030 perfci.ini
05/08/2004  13:00            42ÿ496 perfctrs.dll
05/08/2004  13:00            28ÿ626 perfd009.dat
05/08/2004  13:00            34ÿ108 perfd00C.dat
05/08/2004  13:00            27ÿ136 perfdisk.dll
05/08/2004  13:00               140 perffilt.h
05/08/2004  13:00             1ÿ293 perffilt.ini
05/08/2004  13:00             8ÿ192 cidaemon.exe
05/08/2004  13:00           109ÿ568 cic.dll
05/08/2004  13:00           272ÿ128 perfi009.dat
05/08/2004  13:00           322ÿ810 perfi00C.dat
05/08/2004  13:00            15ÿ872 perfmon.exe
05/08/2004  13:00            57ÿ862 perfmon.msc
05/08/2004  13:00            17ÿ408 perfnet.dll
05/08/2004  13:00            26ÿ624 perfos.dll
05/08/2004  13:00            35ÿ840 perfproc.dll
05/08/2004  13:00            41ÿ461 ciadv.msc
05/08/2004  13:00            12ÿ288 perfts.dll
05/08/2004  13:00               435 perfwci.h
05/08/2004  13:00             2ÿ994 perfwci.ini
05/08/2004  13:00           172ÿ032 photowiz.dll
05/08/2004  13:00            32ÿ256 wpabaln.exe
05/08/2004  13:00            70ÿ656 amstream.dll
05/08/2004  13:00            35ÿ328 pid.dll
05/08/2004  13:00            24ÿ064 pidgen.dll
05/08/2004  13:00            35ÿ328 pifmgr.dll
05/08/2004  13:00            19ÿ456 ping.exe
05/08/2004  13:00            34ÿ304 ping6.exe
05/08/2004  13:00            15ÿ360 pjlmon.dll
05/08/2004  13:00            30ÿ720 plustab.dll
05/08/2004  13:00            46ÿ592 pmspl.dll
05/08/2004  13:00           166ÿ400 ciadmin.dll
05/08/2004  13:00            48ÿ640 pnrpnsp.dll
05/08/2004  13:00           106ÿ496 polstore.dll
05/08/2004  13:00            11ÿ264 chkntfs.exe
05/08/2004  13:00            11ÿ776 chkdsk.exe
05/08/2004  13:00             7ÿ680 chcp.com
05/08/2004  13:00                75 ChaŒnes.scf
05/08/2004  13:00            80ÿ896 charmap.exe
05/08/2004  13:00           118ÿ272 powercfg.cpl
05/08/2004  13:00            49ÿ152 powercfg.exe
05/08/2004  13:00            17ÿ408 powrprof.dll
05/08/2004  13:00            18ÿ944 prflbmsg.dll
05/08/2004  13:00             9ÿ216 print.exe
05/08/2004  13:00           578ÿ560 printui.dll
05/08/2004  13:00            14ÿ336 wowfaxui.dll
05/08/2004  13:00             3ÿ200 wowfax.dll
05/08/2004  13:00            10ÿ608 wowexec.exe
05/08/2004  13:00            81ÿ920 proctexe.ocx
05/08/2004  13:00               367 prodspec.ini
05/08/2004  13:00            27ÿ648 profmap.dll
05/08/2004  13:00           109ÿ568 progman.exe
05/08/2004  13:00            50ÿ688 proquota.exe
05/08/2004  13:00             9ÿ728 proxycfg.exe
05/08/2004  13:00            23ÿ040 psapi.dll
05/08/2004  13:00            98ÿ816 psbase.dll
05/08/2004  13:00             3ÿ010 pschdcnt.h
05/08/2004  13:00            10ÿ752 pschdprf.dll
05/08/2004  13:00            14ÿ073 pschdprf.ini
05/08/2004  13:00                51 pscript.sep
05/08/2004  13:00             8ÿ192 psnppagn.dll
05/08/2004  13:00            43ÿ520 pstorec.dll
05/08/2004  13:00            34ÿ304 pstorsvc.dll
05/08/2004  13:00             3ÿ862 pubprn.vbs
05/08/2004  13:00           340ÿ480 zipfldr.dll
05/08/2004  13:00            25ÿ088 defrag.exe
05/08/2004  13:00            21ÿ162 debug.exe
05/08/2004  13:00            27ÿ136 ddrawex.dll
05/08/2004  13:00           266ÿ240 ddraw.dll
05/08/2004  13:00            31ÿ744 ddeshare.exe
05/08/2004  13:00            17ÿ408 qappsrv.exe
05/08/2004  13:00            16ÿ896 cfgmgr32.dll
05/08/2004  13:00           192ÿ512 qcap.dll
05/08/2004  13:00            39ÿ424 ddeml.dll
05/08/2004  13:00           279ÿ040 qdv.dll
05/08/2004  13:00           386ÿ048 qdvd.dll
05/08/2004  13:00           563ÿ200 qedit.dll
05/08/2004  13:00           733ÿ696 qedwipes.dll
05/08/2004  13:00           382ÿ464 qmgr.dll
05/08/2004  13:00            18ÿ944 qmgrprxy.dll
05/08/2004  13:00             8ÿ192 qosname.dll
05/08/2004  13:00            20ÿ992 qprocess.exe
05/08/2004  13:00            39ÿ424 cfgbkend.dll
05/08/2004  13:00            41ÿ990 certmgr.msc
05/08/2004  13:00           467ÿ968 certmgr.dll
05/08/2004  13:00            22ÿ528 qwinsta.exe
05/08/2004  13:00            43ÿ520 racpldlg.dll
05/08/2004  13:00             5ÿ120 dcomcnfg.exe
05/08/2004  13:00           200ÿ192 certcli.dll
05/08/2004  13:00           237ÿ056 rasapi32.dll
05/08/2004  13:00            89ÿ088 rasauto.dll
05/08/2004  13:00            11ÿ776 rasautou.exe
05/08/2004  13:00            69ÿ632 raschap.dll
05/08/2004  13:00             1ÿ818 rasctrnm.h
05/08/2004  13:00            12ÿ288 rasctrs.dll
05/08/2004  13:00             6ÿ212 rasctrs.ini
05/08/2004  13:00            11ÿ776 rasdial.exe
05/08/2004  13:00           685ÿ056 rasdlg.dll
05/08/2004  13:00            61ÿ440 rasman.dll
05/08/2004  13:00            24ÿ576 dmserver.dll
05/08/2004  13:00           148ÿ480 rasmontr.dll
05/08/2004  13:00            22ÿ528 rasmxs.dll
05/08/2004  13:00            57ÿ344 rasphone.exe
05/08/2004  13:00           206ÿ336 rasppp.dll
05/08/2004  13:00            23ÿ552 rasrad.dll
05/08/2004  13:00            16ÿ896 rassapi.dll
05/08/2004  13:00            12ÿ800 rasser.dll
05/08/2004  13:00            58ÿ880 rastapi.dll
05/08/2004  13:00           113ÿ152 rastls.dll
05/08/2004  13:00           103ÿ424 rcbdyctl.dll
05/08/2004  13:00            35ÿ840 rcimlby.exe
05/08/2004  13:00            23ÿ040 rcp.exe
05/08/2004  13:00           147ÿ968 rdchost.dll
05/08/2004  13:00             2ÿ736 wowdeb.exe
05/08/2004  13:00             4ÿ608 rdpcfgex.dll
05/08/2004  13:00            62ÿ464 rdpclip.exe
05/08/2004  13:00            92ÿ168 rdpdd.dll
05/08/2004  13:00            19ÿ968 rdpsnd.dll
05/08/2004  13:00            87ÿ176 rdpwsx.dll
05/08/2004  13:00            13ÿ824 rdsaddin.exe
05/08/2004  13:00            67ÿ072 rdshost.exe
05/08/2004  13:00             7ÿ168 recover.exe
05/08/2004  13:00             3ÿ352 redir.exe
05/08/2004  13:00            53ÿ248 reg.exe
05/08/2004  13:00            49ÿ664 regapi.dll
05/08/2004  13:00             3ÿ584 regedt32.exe
05/08/2004  13:00            33ÿ792 regini.exe
05/08/2004  13:00            59ÿ904 regsvc.dll
05/08/2004  13:00            12ÿ288 regsvr32.exe
05/08/2004  13:00             4ÿ608 regwiz.exe
05/08/2004  13:00           405ÿ504 regwizc.dll
05/08/2004  13:00            61ÿ952 remotepg.dll
05/08/2004  13:00            15ÿ872 cdmodem.dll
05/08/2004  13:00           107ÿ520 rend.dll
05/08/2004  13:00            12ÿ800 replace.exe
05/08/2004  13:00            10ÿ240 reset.exe
05/08/2004  13:00            66ÿ594 c_874.nls
05/08/2004  13:00            58ÿ880 resutils.dll
05/08/2004  13:00            14ÿ848 rexec.exe
05/08/2004  13:00            27ÿ648 ccfgnt.dll
05/08/2004  13:00             3ÿ584 riched32.dll
05/08/2004  13:00           265ÿ216 wow32.dll
05/08/2004  13:00             8ÿ704 dciman32.dll
05/08/2004  13:00             3ÿ072 rnr20.dll
05/08/2004  13:00            85ÿ504 catsrvps.dll
05/08/2004  13:00            21ÿ504 route.exe
05/08/2004  13:00            25ÿ600 routemon.exe
05/08/2004  13:00             6ÿ656 routetab.dll
05/08/2004  13:00            22ÿ016 rpcns4.dll
05/08/2004  13:00           581ÿ120 rpcrt4.dll
05/08/2004  13:00           359ÿ936 cards.dll
05/08/2004  13:00             3ÿ271 rsaci.rat
05/08/2004  13:00           152ÿ576 rsaenh.dll
05/08/2004  13:00            15ÿ872 rsh.exe
05/08/2004  13:00            40ÿ960 rshx32.dll
05/08/2004  13:00            53ÿ248 rsm.exe
05/08/2004  13:00            18ÿ944 rsmps.dll
05/08/2004  13:00            24ÿ576 rsmsink.exe
05/08/2004  13:00            49ÿ664 rsmui.exe
05/08/2004  13:00           132ÿ608 rsvp.exe
05/08/2004  13:00            15ÿ937 rsvp.ini
05/08/2004  13:00             3ÿ178 rsvpcnts.h
05/08/2004  13:00            29ÿ696 rsvpmsg.dll
05/08/2004  13:00             9ÿ728 rsvpperf.dll
05/08/2004  13:00            90ÿ112 rsvpsp.dll
05/08/2004  13:00            78ÿ336 rtcshare.exe
05/08/2004  13:00            31ÿ744 rtipxmib.dll
05/08/2004  13:00            98ÿ304 rtm.dll
05/08/2004  13:00            44ÿ032 rtutils.dll
05/08/2004  13:00            17ÿ408 runas.exe
05/08/2004  13:00            33ÿ792 rundll32.exe
05/08/2004  13:00            14ÿ336 runonce.exe
05/08/2004  13:00            16ÿ384 rwinsta.exe
05/08/2004  13:00             9ÿ037 ansi.sys
05/08/2004  13:00            43ÿ520 safrcdlg.dll
05/08/2004  13:00            29ÿ696 safrdm.dll
05/08/2004  13:00            45ÿ568 safrslv.dll
05/08/2004  13:00            64ÿ000 samlib.dll
05/08/2004  13:00           431ÿ104 samsrv.dll
05/08/2004  13:00            82ÿ432 dmscript.dll
05/08/2004  13:00            13ÿ824 savedump.exe
05/08/2004  13:00           270ÿ848 sbe.dll
05/08/2004  13:00           159ÿ232 sbeio.dll
05/08/2004  13:00            31ÿ232 sc.exe
05/08/2004  13:00            71ÿ168 scarddlg.dll
05/08/2004  13:00           118ÿ784 scardssp.dll
05/08/2004  13:00           100ÿ352 scardsvr.exe
05/08/2004  13:00           169ÿ984 sccbase.dll
05/08/2004  13:00           171ÿ520 sccsccp.dll
05/08/2004  13:00           186ÿ368 scecli.dll
05/08/2004  13:00           328ÿ704 scesrv.dll
05/08/2004  13:00           102ÿ912 apcups.dll
05/08/2004  13:00           193ÿ024 schedsvc.dll
05/08/2004  13:00            22ÿ016 sclgntfy.dll
05/08/2004  13:00            24ÿ624 scofr.dll
05/08/2004  13:00            12ÿ642 append.exe
05/08/2004  13:00            26ÿ624 scredir.dll
05/08/2004  13:00             9ÿ216 scrnsave.scr
05/08/2004  13:00           159ÿ744 scrobj.dll
05/08/2004  13:00            24ÿ626 scrrnfr.dll
05/08/2004  13:00           151ÿ552 scrrun.dll
05/08/2004  13:00            78ÿ848 sdbinst.exe
05/08/2004  13:00            29ÿ184 sdhcinst.dll
05/08/2004  13:00           130ÿ048 sdpblb.dll
05/08/2004  13:00            18ÿ944 seclogon.dll
05/08/2004  13:00             4ÿ569 secupd.dat
05/08/2004  13:00             7ÿ208 secupd.sig
05/08/2004  13:00            55ÿ808 secur32.dll
05/08/2004  13:00             5ÿ632 security.dll
05/08/2004  13:00            29ÿ696 sendcmsg.dll
05/08/2004  13:00            55ÿ296 sendmail.dll
05/08/2004  13:00            38ÿ912 sens.dll
05/08/2004  13:00             6ÿ656 sensapi.dll
05/08/2004  13:00            13ÿ824 senscfg.dll
05/08/2004  13:00           126ÿ976 apphelp.dll
05/08/2004  13:00            14ÿ848 serialui.dll
05/08/2004  13:00            56ÿ320 servdeps.dll
05/08/2004  13:00           108ÿ544 services.exe
05/08/2004  13:00            33ÿ075 services.msc
05/08/2004  13:00            14ÿ848 serwvdrv.dll
05/08/2004  13:00           142ÿ336 sessmgr.exe
05/08/2004  13:00           146ÿ432 capesnpn.dll
05/08/2004  13:00            50ÿ688 camocx.dll
05/08/2004  13:00             1ÿ788 Dcache.bin
05/08/2004  13:00           115ÿ200 calc.exe
05/08/2004  13:00            19ÿ456 cacls.exe
05/08/2004  13:00            32ÿ768 sethc.exe
05/08/2004  13:00           240ÿ120 setup.bmp
05/08/2004  13:00            23ÿ040 setup.exe
05/08/2004  13:00         1ÿ003ÿ520 setupapi.dll
05/08/2004  13:00           421ÿ376 setupdll.dll
05/08/2004  13:00            12ÿ067 setver.exe
05/08/2004  13:00             5ÿ120 sfc.dll
05/08/2004  13:00            10ÿ240 sfc.exe
05/08/2004  13:00         1ÿ548ÿ288 sfcfiles.dll
05/08/2004  13:00           142ÿ336 sfc_os.dll
05/08/2004  13:00            23ÿ552 sfmapi.dll
05/08/2004  13:00            15ÿ360 shadow.exe
05/08/2004  13:00               882 share.exe
05/08/2004  13:00           572ÿ416 shdoclc.dll
05/08/2004  13:00           258ÿ048 wmvds32.ax
05/08/2004  13:00             5ÿ120 shell.dll
05/08/2004  13:00            85ÿ504 cabview.dll
05/08/2004  13:00           435ÿ712 shellstyle.dll
05/08/2004  13:00            25ÿ088 shfolder.dll
05/08/2004  13:00            68ÿ096 shgina.dll
05/08/2004  13:00            16ÿ740 shiftjis.uce
05/08/2004  13:00            65ÿ536 shimeng.dll
05/08/2004  13:00           440ÿ320 shimgvw.dll
05/08/2004  13:00            59ÿ904 cabinet.dll
05/08/2004  13:00           153ÿ088 shmedia.dll
05/08/2004  13:00            42ÿ496 shmgrate.exe
05/08/2004  13:00            78ÿ848 shrpubw.exe
05/08/2004  13:00            28ÿ160 shscrap.dll
05/08/2004  13:00            50ÿ688 btpanui.dll
05/08/2004  13:00            20ÿ480 shutdown.exe
05/08/2004  13:00            13ÿ824 sigtab.dll
05/08/2004  13:00            71ÿ168 sigverif.exe
05/08/2004  13:00            16ÿ384 simpdata.tlb
05/08/2004  13:00            28ÿ672 dbnmpntw.dll
05/08/2004  13:00            13ÿ824 sisbkup.dll
05/08/2004  13:00             5ÿ632 skdll.dll
05/08/2004  13:00            26ÿ112 skeys.exe
05/08/2004  13:00            25ÿ600 slayerxp.dll
05/08/2004  13:00           306ÿ176 slbcsp.dll
05/08/2004  13:00            98ÿ304 slbiop.dll
05/08/2004  13:00            16ÿ384 slbrccsp.dll
05/08/2004  13:00            86ÿ016 sl_anet.acm
05/08/2004  13:00             8ÿ192 smbinst.exe
05/08/2004  13:00           370ÿ688 smlogcfg.dll
05/08/2004  13:00            93ÿ184 smlogsvc.exe
05/08/2004  13:00            50ÿ688 smss.exe
05/08/2004  13:00           555ÿ008 appwiz.cpl
05/08/2004  13:00           133ÿ120 sndrec32.exe
05/08/2004  13:00           139ÿ264 sndvol32.exe
05/08/2004  13:00            18ÿ944 snmpapi.dll
05/08/2004  13:00           184ÿ320 snmpsnap.dll
05/08/2004  13:00            19ÿ968 arp.exe
05/08/2004  13:00             5ÿ632 softpub.dll
05/08/2004  13:00            57ÿ344 sol.exe
05/08/2004  13:00            25ÿ088 sort.exe
05/08/2004  13:00           262ÿ148 sortkey.nls
05/08/2004  13:00            22ÿ040 sorttbls.nls
05/08/2004  13:00             1ÿ744 sound.drv
05/08/2004  13:00           539ÿ136 spider.exe
05/08/2004  13:00            30ÿ208 bthserv.dll
05/08/2004  13:00            69ÿ632 spnike.dll
05/08/2004  13:00            11ÿ776 spnpinst.exe
05/08/2004  13:00            74ÿ752 spoolss.dll
05/08/2004  13:00           110ÿ592 bthprops.cpl
05/08/2004  13:00           110ÿ592 dbnetlib.dll
05/08/2004  13:00             9ÿ728 sprestrt.exe
05/08/2004  13:00            70ÿ656 sprio600.dll
05/08/2004  13:00            72ÿ192 sprio800.dll
05/08/2004  13:00            20ÿ992 bthci.dll
05/08/2004  13:00            24ÿ661 spxcoins.dll
05/08/2004  13:00            49ÿ345 sqlsodbc.chm
05/08/2004  13:00           442ÿ368 sqlsrv32.dll
05/08/2004  13:00            98ÿ304 sqlsrv32.rll
05/08/2004  13:00           180ÿ800 sqlunirl.dll
05/08/2004  13:00            24ÿ603 sqlwid.dll
05/08/2004  13:00            49ÿ179 sqlwoa.dll
05/08/2004  13:00            67ÿ584 srclient.dll
05/08/2004  13:00           241ÿ664 srrstr.dll
05/08/2004  13:00           171ÿ008 srsvc.dll
05/08/2004  13:00            24ÿ576 dbmsrpcn.dll
05/08/2004  13:00           708ÿ608 ss3dfo.scr
05/08/2004  13:00            19ÿ968 ssbezier.scr
05/08/2004  13:00            34ÿ816 ssdpapi.dll
05/08/2004  13:00            71ÿ680 ssdpsrv.dll
05/08/2004  13:00           393ÿ216 ssflwbox.scr
05/08/2004  13:00           640ÿ000 dbghelp.dll
05/08/2004  13:00            20ÿ992 ssmarque.scr
05/08/2004  13:00            47ÿ104 ssmypics.scr
05/08/2004  13:00            18ÿ944 ssmyst.scr
05/08/2004  13:00           610ÿ304 sspipes.scr
05/08/2004  13:00            14ÿ336 ssstars.scr
05/08/2004  13:00           684ÿ032 sstext3d.scr
05/08/2004  13:00           115ÿ712 asctrls.ocx
05/08/2004  13:00            65ÿ024 asycfilt.dll
05/08/2004  13:00            54ÿ272 stclient.dll
05/08/2004  13:00            17ÿ920 stdole2.tlb
05/08/2004  13:00             7ÿ168 stdole32.tlb
05/08/2004  13:00            68ÿ096 sti.dll
05/08/2004  13:00            14ÿ848 stimon.exe
05/08/2004  13:00           138ÿ240 sti_ci.dll
05/08/2004  13:00           122ÿ368 stobject.dll
05/08/2004  13:00             4ÿ208 storage.dll
05/08/2004  13:00           278ÿ559 wmv8ds32.ax
05/08/2004  13:00           303ÿ616 wmstream.dll
05/08/2004  13:00            25ÿ088 at.exe
05/08/2004  13:00            75ÿ776 strmfilt.dll
05/08/2004  13:00            93ÿ702 subrange.uce
05/08/2004  13:00             9ÿ216 subst.exe
05/08/2004  13:00           847ÿ872 dbgeng.dll
05/08/2004  13:00            14ÿ336 svchost.exe
05/08/2004  13:00             6ÿ144 svcpack.dll
05/08/2004  13:00           139ÿ264 swprv.dll
05/08/2004  13:00            78ÿ336 browsewm.dll
05/08/2004  13:00            77ÿ312 browser.dll
05/08/2004  13:00            70ÿ144 browselc.dll
05/08/2004  13:00            22ÿ984 bopomofo.uce
05/08/2004  13:00            51ÿ200 syncapp.exe
05/08/2004  13:00            57ÿ856 synceng.dll
05/08/2004  13:00             5ÿ120 bootvrfy.exe
05/08/2004  13:00            12ÿ288 bootvid.dll
05/08/2004  13:00           197ÿ120 syncui.dll
05/08/2004  13:00             4ÿ608 bootok.exe
05/08/2004  13:00           153ÿ088 daxctle.ocx
05/08/2004  13:00            71ÿ680 blastcln.exe
05/08/2004  13:00           305ÿ152 sysdm.cpl
05/08/2004  13:00            19ÿ216 sysedit.exe
05/08/2004  13:00            15ÿ872 sysinv.dll
05/08/2004  13:00            37ÿ888 syskey.exe
05/08/2004  13:00           220ÿ672 sysmon.ocx
05/08/2004  13:00           107ÿ520 sysocmgr.exe
05/08/2004  13:00             3ÿ214 sysprint.sep
05/08/2004  13:00             3ÿ577 sysprtj.sep
05/08/2004  13:00         1ÿ005ÿ056 syssetup.dll
05/08/2004  13:00             3ÿ360 system.drv
05/08/2004  13:00             3ÿ072 systray.exe
05/08/2004  13:00             7ÿ168 bitsprx3.dll
05/08/2004  13:00            19ÿ200 tapi.dll
05/08/2004  13:00           860ÿ160 tapi3.dll
05/08/2004  13:00           181ÿ760 tapi32.dll
05/08/2004  13:00             5ÿ632 tapiperf.dll
05/08/2004  13:00             8ÿ192 bitsprx2.dll
05/08/2004  13:00            87ÿ040 tapiui.dll
05/08/2004  13:00            15ÿ872 taskman.exe
05/08/2004  13:00           143ÿ360 taskmgr.exe
05/08/2004  13:00            13ÿ312 tcmsetup.exe
05/08/2004  13:00            14ÿ848 tcpmib.dll
05/08/2004  13:00            46ÿ592 tcpmon.dll
05/08/2004  13:00            53ÿ478 tcpmon.ini
05/08/2004  13:00            47ÿ104 tcpmonui.dll
05/08/2004  13:00            19ÿ456 tcpsvcs.exe
05/08/2004  13:00            61ÿ440 tdc.ocx
05/08/2004  13:00            28ÿ160 telephon.cpl
05/08/2004  13:00            25ÿ088 davclnt.dll
05/08/2004  13:00           358ÿ912 termmgr.dll
05/08/2004  13:00           297ÿ984 termsrv.dll
05/08/2004  13:00           152ÿ064 datime.dll
05/08/2004  13:00            17ÿ920 tftp.exe
05/08/2004  13:00           391ÿ168 themeui.dll
05/08/2004  13:00            94ÿ208 timedate.cpl
05/08/2004  13:00             4ÿ096 timer.drv
05/08/2004  13:00            13ÿ888 toolhelp.dll
05/08/2004  13:00           347ÿ136 tourstart.exe
05/08/2004  13:00            13ÿ312 tracert.exe
05/08/2004  13:00            32ÿ256 tracert6.exe
05/08/2004  13:00            31ÿ232 traffic.dll
05/08/2004  13:00            11ÿ264 tree.com
05/08/2004  13:00            90ÿ624 trkwks.dll
05/08/2004  13:00            52ÿ224 tsappcmp.dll
05/08/2004  13:00           115ÿ200 wmsdmoe.dll
05/08/2004  13:00            94ÿ208 tscfgwmi.dll
05/08/2004  13:00            15ÿ360 tscon.exe
05/08/2004  13:00            44ÿ544 tscupgrd.exe
05/08/2004  13:00            15ÿ360 tsd32.dll
05/08/2004  13:00            12ÿ168 tsddd.dll
05/08/2004  13:00            14ÿ848 tsdiscon.exe
05/08/2004  13:00            16ÿ896 tskill.exe
05/08/2004  13:00             3ÿ286 tslabels.h
05/08/2004  13:00            27ÿ768 tslabels.ini
05/08/2004  13:00            17ÿ408 tsshutdn.exe
05/08/2004  13:00             8ÿ192 tssoft32.acm
05/08/2004  13:00             8ÿ191 bios4.rom
05/08/2004  13:00            44ÿ032 twext.dll
05/08/2004  13:00            28ÿ420 bios1.rom
05/08/2004  13:00           177ÿ856 typelib.dll
05/08/2004  13:00            55ÿ296 dataclen.dll
05/08/2004  13:00            17ÿ408 bidispl.dll
05/08/2004  13:00            25ÿ600 udhisapi.dll
05/08/2004  13:00            82ÿ432 ufat.dll
05/08/2004  13:00           311ÿ808 ulib.dll
05/08/2004  13:00            36ÿ864 umandlg.dll
05/08/2004  13:00            13ÿ312 umdmxfrm.dll
05/08/2004  13:00            15ÿ872 dmremote.exe
05/08/2004  13:00             8ÿ704 batt.dll
05/08/2004  13:00            89ÿ588 unicode.nls
05/08/2004  13:00            28ÿ672 batmeter.dll
05/08/2004  13:00           207ÿ872 unimdm.tsp
05/08/2004  13:00            78ÿ848 unimdmat.dll
05/08/2004  13:00            66ÿ082 c_875.nls
05/08/2004  13:00            13ÿ824 uniplat.dll
05/08/2004  13:00             4ÿ096 unlodctr.exe
05/08/2004  13:00           316ÿ416 untfs.dll
05/08/2004  13:00           132ÿ608 upnp.dll
05/08/2004  13:00            16ÿ896 upnpcont.exe
05/08/2004  13:00            47ÿ616 d3dxof.dll
05/08/2004  13:00           240ÿ128 upnpui.dll
05/08/2004  13:00            18ÿ432 ups.exe
05/08/2004  13:00            17ÿ920 ureg.dll
05/08/2004  13:00            37ÿ888 url.dll
05/08/2004  13:00           350ÿ208 d3drm.dll
05/08/2004  13:00           590ÿ336 d3dramp.dll
05/08/2004  13:00            16ÿ896 usbmon.dll
05/08/2004  13:00           221ÿ184 wmpns.dll
05/08/2004  13:00            47ÿ872 user.exe
05/08/2004  13:00            52ÿ736 basesrv.dll
05/08/2004  13:00           731ÿ136 userenv.dll
05/08/2004  13:00            25ÿ088 userinit.exe
05/08/2004  13:00           406ÿ528 usp10.dll
05/08/2004  13:00            61ÿ500 usrcntra.dll
05/08/2004  13:00            69ÿ699 usrcoina.dll
05/08/2004  13:00            77ÿ890 usrdpa.dll
05/08/2004  13:00           323ÿ641 usrdtea.dll
05/08/2004  13:00            86ÿ073 usrfaxa.dll
05/08/2004  13:00            53ÿ305 usrlbva.dll
05/08/2004  13:00             1ÿ263 usrlogon.cmd
05/08/2004  13:00            77ÿ891 usrmlnka.exe
05/08/2004  13:00            61ÿ508 usrprbda.exe
05/08/2004  13:00            77ÿ883 usrrtosa.dll
05/08/2004  13:00            49ÿ211 usrsdpia.dll
05/08/2004  13:00            69ÿ700 usrshuta.exe
05/08/2004  13:00            41ÿ019 usrsvpia.dll
05/08/2004  13:00           102ÿ457 usrv42a.dll
05/08/2004  13:00            49ÿ209 usrv80a.dll
05/08/2004  13:00            45ÿ116 usrvoica.dll
05/08/2004  13:00            49ÿ211 usrvpa.dll
05/08/2004  13:00            26ÿ112 utildll.dll
05/08/2004  13:00            50ÿ176 utilman.exe
05/08/2004  13:00            34ÿ816 d3dpmesh.dll
05/08/2004  13:00            73ÿ216 avwav.dll
05/08/2004  13:00           219ÿ648 uxtheme.dll
05/08/2004  13:00            18ÿ832 v7vga.rom
05/08/2004  13:00           825ÿ344 d3dim700.dll
05/08/2004  13:00           436ÿ224 d3dim.dll
05/08/2004  13:00         1ÿ689ÿ088 d3d9.dll
05/08/2004  13:00             8ÿ192 d3d8thk.dll
05/08/2004  13:00            30ÿ749 vbajet32.dll
05/08/2004  13:00         1ÿ179ÿ648 d3d8.dll
05/08/2004  13:00            30ÿ720 vbisurf.ax
05/08/2004  13:00           417ÿ792 vbscript.dll
05/08/2004  13:00            24ÿ624 vbsfr.dll
05/08/2004  13:00             7ÿ680 vcdex.dll
05/08/2004  13:00            26ÿ112 vdmdbg.dll
05/08/2004  13:00            51ÿ712 vdmredir.dll
05/08/2004  13:00            19ÿ456 dmocx.dll
05/08/2004  13:00             9ÿ104 ver.dll
05/08/2004  13:00           232ÿ960 avtapi.dll
05/08/2004  13:00            13ÿ312 verifier.dll
05/08/2004  13:00           102ÿ912 verifier.exe
05/08/2004  13:00            18ÿ944 version.dll
05/08/2004  13:00            16ÿ384 avmeter.dll
05/08/2004  13:00            20ÿ535 vfpodbc.dll
05/08/2004  13:00            48ÿ128 msprivs.dll
05/08/2004  13:00             9ÿ344 vga.dll
05/08/2004  13:00             2ÿ176 vga.drv
05/08/2004  13:00            51ÿ456 vga256.dll
05/08/2004  13:00            18ÿ176 vga64k.dll
05/08/2004  13:00           196ÿ642 c_950.nls
05/08/2004  13:00             4ÿ608 vjoy.dll
05/08/2004  13:00            35ÿ840 dmloader.dll
05/08/2004  13:00            34ÿ304 vssadmin.exe
05/08/2004  13:00           430ÿ592 vssapi.dll
05/08/2004  13:00           295ÿ424 vssvc.exe
05/08/2004  13:00            16ÿ896 vss_ps.dll
05/08/2004  13:00           196ÿ642 c_949.nls
05/08/2004  13:00           196ÿ642 c_936.nls
05/08/2004  13:00            19ÿ456 wmiprop.dll
05/08/2004  13:00            63ÿ488 wmimgmt.msc
05/08/2004  13:00            14ÿ336 atkctrs.dll
05/08/2004  13:00           109ÿ568 avifile.dll
05/08/2004  13:00           177ÿ664 w32time.dll
05/08/2004  13:00            51ÿ712 w32tm.exe
05/08/2004  13:00            22ÿ016 w32topl.dll
05/08/2004  13:00            15ÿ872 w3ssl.dll
05/08/2004  13:00            85ÿ504 avifil32.dll
05/08/2004  13:00            17ÿ664 watchdog.sys
05/08/2004  13:00           208ÿ896 wavemsp.dll
05/08/2004  13:00            65ÿ489 wbcache.deu
05/08/2004  13:00            65ÿ489 wbcache.enu
05/08/2004  13:00            65ÿ489 wbcache.esn
05/08/2004  13:00            65ÿ489 wbcache.fra
05/08/2004  13:00            65ÿ489 wbcache.ita
05/08/2004  13:00            65ÿ489 wbcache.nld
05/08/2004  13:00            65ÿ489 wbcache.sve
05/08/2004  13:00         1ÿ309ÿ184 wbdbase.deu
05/08/2004  13:00           957ÿ440 wbdbase.enu
05/08/2004  13:00           750ÿ080 wbdbase.esn
05/08/2004  13:00           786ÿ944 wbdbase.fra
05/08/2004  13:00           867ÿ840 wbdbase.ita
05/08/2004  13:00         1ÿ095ÿ680 wbdbase.nld
05/08/2004  13:00           937ÿ984 wbdbase.sve
05/08/2004  13:00            66ÿ048 avicap32.dll
05/08/2004  13:00            70ÿ352 avicap.dll
05/08/2004  13:00            49ÿ152 wdigest.dll
05/08/2004  13:00             4ÿ096 wdl.trm
05/08/2004  13:00             5ÿ632 wmi.dll
05/08/2004  13:00           281ÿ600 webcheck.dll
05/08/2004  13:00            11ÿ264 autolfn.exe
05/08/2004  13:00         1ÿ355ÿ776 webfldrs.msi
05/08/2004  13:00            40ÿ960 webhits.dll
05/08/2004  13:00           136ÿ192 webvw.dll
05/08/2004  13:00            66ÿ560 wextract.exe
05/08/2004  13:00            13ÿ600 wfwnet.drv
05/08/2004  13:00           616ÿ960 autofmt.exe
05/08/2004  13:00             1ÿ896 AUTOEXEC.NT
05/08/2004  13:00           438ÿ784 wiaacmgr.exe
05/08/2004  13:00           465ÿ920 wiadefui.dll
05/08/2004  13:00           124ÿ928 wiadss.dll
05/08/2004  13:00            75ÿ776 wiascr.dll
05/08/2004  13:00            81ÿ408 autodisc.dll
05/08/2004  13:00            40ÿ448 wiasf.ax
05/08/2004  13:00           594ÿ432 wiashext.dll
05/08/2004  13:00           111ÿ104 wiavideo.dll
05/08/2004  13:00           145ÿ408 wiavusd.dll
05/08/2004  13:00             9ÿ216 wifeman.dll
05/08/2004  13:00            18ÿ432 win.com
05/08/2004  13:00           638ÿ976 autoconv.exe
05/08/2004  13:00           102ÿ400 win32spl.dll
05/08/2004  13:00            13ÿ312 win87em.dll
05/08/2004  13:00           938ÿ496 winbrand.dll
05/08/2004  13:00            35ÿ840 winchat.exe
05/08/2004  13:00            37ÿ376 msobjs.dll
05/08/2004  13:00             9ÿ216 winfax.dll
05/08/2004  13:00            37ÿ237 winhelp.hlp
05/08/2004  13:00             8ÿ192 winhlp32.exe
05/08/2004  13:00           351ÿ232 winhttp.dll
05/08/2004  13:00           625ÿ152 autochk.exe
05/08/2004  13:00            32ÿ768 winipsec.dll
05/08/2004  13:00           506ÿ368 winlogon.exe
05/08/2004  13:00           119ÿ808 winmine.exe
05/08/2004  13:00           180ÿ736 winmm.dll
05/08/2004  13:00            11ÿ776 winmsd.exe
05/08/2004  13:00             5ÿ120 winnls.dll
05/08/2004  13:00           773ÿ632 winntbbu.dll
05/08/2004  13:00             2ÿ080 winoldap.mod
05/08/2004  13:00            16ÿ896 winrnr.dll
05/08/2004  13:00           100ÿ352 winscard.dll
05/08/2004  13:00            17ÿ408 winshfhc.dll
05/08/2004  13:00             2ÿ864 winsock.dll
05/08/2004  13:00           146ÿ944 winspool.drv
05/08/2004  13:00             2ÿ112 winspool.exe
05/08/2004  13:00           162ÿ850 c_932.nls
05/08/2004  13:00            53ÿ760 winsta.dll
05/08/2004  13:00            21ÿ504 winstrm.dll
05/08/2004  13:00           176ÿ640 wintrust.dll
05/08/2004  13:00             5ÿ632 winver.exe
05/08/2004  13:00            58ÿ880 atl.dll
05/08/2004  13:00            14ÿ336 auditusr.exe
05/08/2004  13:00           172ÿ544 wldap32.dll
05/08/2004  13:00            94ÿ208 wlnotify.dll
05/08/2004  13:00            42ÿ496 audiosrv.dll
05/08/2004  13:00            11ÿ264 attrib.exe
05/08/2004  13:00            11ÿ264 atrace.dll
05/08/2004  13:00            34ÿ816 atmpvcno.dll
05/08/2004  13:00            30ÿ208 atmlib.dll
05/08/2004  13:00           285ÿ696 atmfd.dll
05/08/2004  13:00            11ÿ264 atmadm.exe
05/08/2004  13:00            60ÿ928 wmerrFRA.dll
04/08/2004  12:00           414ÿ208 ftdiunin.exe
04/08/2004  12:00            48ÿ625 ftserui2.dll
04/08/2004  12:00                92 sv40un2k.ini
04/08/2004  01:55            16ÿ384 ipsink.ax
04/08/2004  01:55            23ÿ552 wdmaud.drv
04/08/2004  01:54            76ÿ800 storprop.dll
04/08/2004  01:54            77ÿ312 usbui.dll
04/08/2004  01:54         4ÿ274ÿ816 nv4_disp.dll
04/08/2004  00:55           130ÿ048 ksproxy.ax
04/08/2004  00:55            28ÿ672 vidcap.ax
04/08/2004  00:55            61ÿ952 kstvtune.ax
04/08/2004  00:55            91ÿ648 kswdmcap.ax
04/08/2004  00:55            43ÿ008 ksxbar.ax
04/08/2004  00:55           294ÿ912 msh263.drv
04/08/2004  00:54            54ÿ784 vfwwdm32.dll
04/08/2004  00:54            17ÿ408 msyuv.dll
04/08/2004  00:54            47ÿ616 iyuv_32.dll
04/08/2004  00:54             4ÿ096 ksuser.dll
04/08/2004  00:54            21ÿ504 hidserv.dll
01/08/2004  01:35         1ÿ654ÿ784 W29MLRES.dll
01/08/2004  01:35           458ÿ752 w29NCPA.dll
31/07/2004  17:33            57ÿ344 Zx7Uninstall.dll
20/07/2004  16:14           192ÿ512 stac97co.dll
20/07/2004  16:14           102ÿ481 STAC97.cpl
02/07/2004  18:33           454ÿ742 PRISMNDI.dll
02/07/2004  18:27           295ÿ001 PRISMSVR.exe
02/07/2004  18:23           385ÿ113 PRISMAPI.dll
29/06/2004  13:21            24ÿ576 BACSCPL.cpl
19/06/2004  02:28            77ÿ824 BInstDll.dll
16/06/2004  21:23            33ÿ818 HSFCI010.dll
28/05/2004  18:37            36ÿ864 BSelList.dll
27/05/2004  16:23           787ÿ356 OEMBKGN1.BMP
27/05/2004  16:23             5ÿ134 OEMLOGO.BMP
27/05/2004  16:23            96ÿ310 DELLWALL.BMP
20/05/2004  02:00            28ÿ672 VXBLOCK.dll
23/04/2004  13:31           233ÿ472 BMAPI.dll
02/04/2004  00:00            64ÿ000 esfw41.bin
02/04/2004  00:00           274ÿ432 esint41.dll
01/04/2004  19:05            77ÿ824 BAsfIpM.exe
23/03/2004  00:17            24ÿ816 mdimon.dll
17/03/2004  13:00            86ÿ016 mdmxsdk.dll
12/03/2004  17:40             5ÿ120 fskutil.dll
12/03/2004  00:13         1ÿ146ÿ320 FM20.DLL
24/02/2004  00:00           176ÿ128 eswia41.dll
19/02/2004  17:22           106ÿ496 cabw32.dll
13/02/2004  17:46            53ÿ248 DellSys.dll
01/02/2004  01:00             5ÿ934 EPPICLocal_FR.cfg
01/02/2004  01:00           413ÿ696 PICSDK.dll
01/02/2004  01:00            30ÿ605 EPPICPrinterDB.dat
01/02/2004  01:00            27ÿ030 EPPICPattern1.dat
01/02/2004  01:00                22 PICSDK.ini
07/01/2004  02:01            49ÿ152 umloader.dll
19/11/2003  18:48            61ÿ555 jpicpl32.cpl
19/11/2003  17:36            28ÿ779 javaw.exe
19/11/2003  17:36            24ÿ681 java.exe
25/09/2003  07:12            76ÿ045 EBPMON24.DLL
31/07/2003  19:46            42ÿ128 FM20FRA.DLL
15/07/2003  19:14            31ÿ744 E_DCINST.DLL
09/06/2003  20:39            29ÿ795 ITIG726.acm
23/05/2003  20:23            40ÿ960 ct32.dll
20/05/2003  08:27            64ÿ000 ECBTEG.DLL
02/05/2003  14:14           466ÿ944 capicom.dll
01/05/2003  10:51           154ÿ308 basfcfg.chm
18/04/2003  17:29            82ÿ432 msxml4r.dll
01/04/2003  10:58             5ÿ260 OUTLPERF.INI
18/03/2003  22:20         1ÿ060ÿ864 MFC71.dll
18/03/2003  22:12         1ÿ047ÿ552 MFC71u.dll
18/03/2003  21:44            49ÿ152 MFC71KOR.DLL
18/03/2003  21:44            57ÿ344 MFC71ENU.DLL
18/03/2003  21:44            61ÿ440 MFC71ITA.DLL
18/03/2003  21:44            40ÿ960 MFC71CHS.DLL
18/03/2003  21:44            45ÿ056 MFC71CHT.DLL
18/03/2003  21:44            61ÿ440 MFC71ESP.DLL
18/03/2003  21:44            49ÿ152 MFC71JPN.DLL
18/03/2003  21:44            65ÿ536 MFC71DEU.DLL
18/03/2003  21:14           499ÿ712 msvcp71.dll
18/03/2003  20:05            89ÿ088 atl71.dll
13/03/2003  16:10            40ÿ960 vxdmdcdlg.dll
21/02/2003  05:42           348ÿ160 msvcr71.dll
14/02/2003  14:33           430ÿ080 ASFConfig.cpl
14/02/2003  14:30            20ÿ480 BASFConfig.exe
07/01/2003  23:05               551 OUTLPERF.H
15/12/2002  02:43            53ÿ248 SMSUnins.dll
15/12/2002  02:43            30ÿ938 s24NCfg.dll
25/11/2002  09:26           119ÿ808 MSSTDFMT.DLL
15/11/2002  00:00           114ÿ688 EpPicPrt.dll
15/11/2002  00:00            65ÿ536 EPPicMgr.dll
03/09/2002  09:48           212ÿ240 richtx32.ocx
21/08/2002  05:13           189ÿ952 WISPTIS.EXE
21/08/2002  05:10           204ÿ800 INKED.DLL
28/06/2002  16:20             5ÿ025 patterns.dat
14/02/2002  04:53             6ÿ345 DevMngr.vxd
21/11/2001  11:36           512ÿ688 XCeedCry.DLL
09/11/2001  18:01            24ÿ064 ativcoxx.dll
26/09/2001  12:55           389ÿ120 ActSkn43.ocx
03/09/2001  08:04               182 EBPPORT4.DAT
23/08/2001  18:47             8ÿ192 streamci.dll
23/08/2001  17:47             8ÿ192 tsbyuv.dll
13/07/2001  16:33         1ÿ081ÿ616 MSCOMCTL.ocx
22/06/2001  05:39             9ÿ949 sentinel.hlp
22/06/2001  05:39            18ÿ432 rnbovdd.dll
22/06/2001  05:39            49ÿ664 snti386.dll
09/05/2001  17:40           309ÿ584 wmv8dmod.dll
09/05/2001  16:50           446ÿ464 wmvdmoe.dll
09/05/2001  16:47           466ÿ944 wmv8dmoe.dll
01/05/2001  17:06            89ÿ088 wmidx.ocx
02/03/2001  20:52             8ÿ704 npwmsdrm.dll
02/03/2001  20:52            15ÿ360 asfsipc.dll
29/06/2000  10:45            52ÿ224 Crypserv.exe
06/06/2000  07:01            34ÿ304 EBPCHP.DLL
11/05/2000  13:06           397ÿ312 MSRDO20.DLL
03/04/2000  17:52           151ÿ552 RDOCURS.DLL
03/02/2000  21:53            24ÿ608 Ckldrv.sys
25/11/1999  02:40            40ÿ960 VBAME.DLL
09/08/1999  23:50                72 epDPE.ini
06/04/1999  17:06             7ÿ680 MSPRPFR.DLL
15/03/1999  12:52            57ÿ344 MFC42FRA.DLL
03/02/1999  15:45            27ÿ100 VBAFR32.OLB
27/01/1999  13:39            65ÿ024 indounin.dll
05/01/1999  17:30           225ÿ280 VSFLEX3.OCX
20/11/1998  13:38           151ÿ552 Npindeo.dll
18/11/1998  15:33           144ÿ384 Iacenc.dll
09/08/1998  19:07            94ÿ208 MSSTKPRP.DLL
24/06/1998  02:00           108ÿ336 MSWINSCK.OCX
25/03/1998  05:54            15ÿ872 SCP32.DLL
24/03/1998  21:44            24ÿ848 VBAEN32.OLB
24/03/1998  21:44            24ÿ848 VBAEND32.OLB
13/06/1997  07:56            56ÿ832 Iyvu9_32.dll
03/12/1996  22:50            37ÿ376 VEN2232.OLB
            2066 fichier(s)      411ÿ339ÿ135 octets
               0 R‚p(s)  11ÿ302ÿ563ÿ840 octets libres

[Speedy]

• verwende alle hier angeführten rootkitscanner nach anleitung. (zuerst downloaden)
• beim ausführen von tools zum aufspüren von rootkits, sollte der rechner vom netz genommen werden und der hintergrundwächter eines malwarescanners deaktiviert sein (es gibt nicht nur antivirenprogramme!). achtung: auch keine anderen aktivitäten ausführen!
• wenn du kaspersky am system hattest, dann sollst du voher die ads, mit diesem tool klstreamremover entfernen, dauert aber ein wenig

bitte dieses tool rootkitrevealer in den ordner C:\Programme\RootkitRevealer downloaden, da es eine gezippte datei ist, hier entpacken wählen, nun das programm durch einen doppelklick auf die datei RootkitRevealer.exe starten und durch drücken des buttons scan die systemüberprüfung beginnen. wenn der scan beendet ist, das logfile unter file -> save im ordner C:\Programme\RootkitRevealer speichern. den inhalt hier posten. p.s. das logfile muss im selben ordner gespeichert werden, aus dem das programm gestartet wird.

download von f-secure-blacklight, in den ordner C:\Programme\F-Secure\ starte das programm durch einen doppelklick auf die datei blbeta.exe, stimme der vereinbarung zu, starte weiter mit scan, wenn der 1.schritt erledigt ist, wähle den button next und bereinige das system von den funden. poste den inhalt des logfile, das als fsbl-0000000000000.txt im selben ordner gespeichert wurde.

download von avg-rootkitß auf deinen desktop. installiere das programm mit einem doppelklick auf die datei AVG_AntiRootkit_1.0.0.13.exe in folgenden ordner C:\Programme\GRISOFT\AVG Anti-Rootkit Beta
starte den rechner neu. beginne die überprüfung durch einen klick auf den button "search for rootkits". wenn der scan beendet ist, wähle "save result to file" und poste das ergenis (wenn etwas gefunden wurde). starte die nächste überprüfung durch drücken des buttons "perform in-deph search". wird etwas gefunden, zuerst speichern und hier posten.

download von bitdefender antirootkitß in den ordner c:\programme\bitdefender
starte das programm mit einem doppelklick auf die datei bitdefender_antirootkit-BETA2.exe
nach er zustimmung zum licenzabkommen startest du den scan, wird was gefunden, hier im forum posten.

wechsle zu sophos, stimme mit folgenden daten >> Vorname; Nachname; E-Mail; Land dem Sophos End-User Licence Agreement for Anti-Rootkit Tool zu.
bestätige die angaben durch drücken des button >> senden <<
nun kannst du die datei >> sarsfx.exe << auf deinen desktop herunterladen
starte die installation mit einem doppelklick auf diese datei, verändere den pfad der installaion nicht !
>>C:\SOPHTEMP<< navigiere nun mit dem explorer in diesen ordner und starte den scanner durch drücken des buttons sargui.exe. schließe nun alle anderen programme, lass alles aktiviert und starte den scan, wenn dieser beendet ist, drücke ok.
navigiere nun zum ordner C:\Dokumente und Einstellungen\*******\Lokale Einstellungen\Temp und öffne mit dem editor diese datei >>sarscan.log<<, poste den inhalt.

download von housecall virusbuster in den ordner C:\programme\housecall\rootkit
entpacke hier die zip datei
starte mit einem doppelklick auf die datei RootkitBuster.exe das programm
wähle scannen, wenn das erledigt ist, poste den inhalt des entstandenen logfiles

download das panda antirootkit tool, scanne und bereinige damit dein system, poste das logfile

[Snoopy23]

So, alle durchgelaufen

Internet war aus, aber Antivir Guard war an (is ja kein malwarescanner, oder?),
dieser hat mir bei einem Durchlauf auch 10 mal hintereinander diesen Virus hier angezeigt : W.32/Parite

Nun zu den Ergebnissen :

Rootkitrevealer

Code:

HKU\.DEFAULT\Control Panel\International	18/08/2007 21:38	0 bytes	Security mismatch.
HKU\.DEFAULT\Control Panel\International\Geo	18/08/2007 21:38	0 bytes	Security mismatch.
HKU\S-1-5-21-1043860446-4258223908-2456348112-1006\Control Panel\International	18/08/2007 21:38	0 bytes	Security mismatch.
HKU\S-1-5-21-1043860446-4258223908-2456348112-1006\Control Panel\International\Geo	18/08/2007 21:38	0 bytes	Security mismatch.
HKU\S-1-5-21-1043860446-4258223908-2456348112-1006\RemoteAccess\InternetProfile	23/05/2006 01:57	9 bytes	Data mismatch between Windows API and raw hive data.
HKU\S-1-5-18\Control Panel\International	18/08/2007 21:38	0 bytes	Security mismatch.
HKU\S-1-5-18\Control Panel\International\Geo	18/08/2007 21:38	0 bytes	Security mismatch.
HKLM\SECURITY\Policy\Secrets\SAC*	21/08/2004 00:57	0 bytes	Key name contains embedded nulls (*)
HKLM\SECURITY\Policy\Secrets\SAI*	21/08/2004 00:57	0 bytes	Key name contains embedded nulls (*)
C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\INFECTED\46f88547.qua	19/08/2007 01:47	240.39 KB	Hidden from Windows API.
C:\Documents and Settings\All Users\Application Data\AntiVir PersonalEdition Classic\INFECTED\46f88574.qua	19/08/2007 01:48	242.38 KB	Hidden from Windows API.
C:\Documents and Settings\HADDAG Hamza\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat.LOG:KAVICHS	18/08/2007 21:33	36 bytes	Hidden from Windows API.
C:\Documents and Settings\HADDAG Hamza\Local Settings\Application Data\Microsoft\Windows\UsrClass.dat:KAVICHS	16/08/2007 15:31	36 bytes	Hidden from Windows API.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183776.exe	22/11/2004 13:00	237.97 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183785.exe	24/01/2005 20:44	238.46 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183786.exe	25/11/2004 13:09	239.97 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183788.exe	25/11/2004 15:28	239.97 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183789.exe	25/11/2004 15:03	228.96 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183790.exe	25/11/2004 14:59	239.97 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183791.exe	25/11/2004 15:24	240.46 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183792.exe	24/01/2005 21:02	228.96 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183793.exe	24/01/2005 21:07	239.96 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183794.exe	24/01/2005 21:14	239.96 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183795.exe	24/01/2005 21:16	228.96 KB	Visible in Windows API, but not in MFT or directory index.
C:\System Volume Information\_restore{EA39A09C-50BA-4996-869B-915C83FE3B53}\RP265\A0183796.exe	24/01/2005 21:49	241.96 KB	Visible in Windows API, but not in MFT or directory index.
C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.dll	16/08/2007 16:29	252.00 KB	Visible in Windows API, but not in MFT or directory index.
C:\WINDOWS\assembly\GAC_32\System.EnterpriseServices\2.0.0.0__b03f5f7f11d50a3a\System.EnterpriseServices.Wrapper.dll	16/08/2007 16:29	111.50 KB	Visible in Windows API, but not in MFT or directory index.

f-secure

Code:

19/07 01:58:09 [Info]: BlackLight Engine 1.0.64 initialized
08/19/07 01:58:09 [Info]: OS: 5.1 build 2600 (Service Pack 2)
08/19/07 01:58:10 [Note]: 7019 4
08/19/07 01:58:10 [Note]: 7005 0
08/19/07 01:58:10 [Note]: 7006 0
08/19/07 01:58:10 [Note]: 7011 1544
08/19/07 01:58:10 [Note]: 7026 0
08/19/07 01:58:11 [Note]: 7026 0
08/19/07 01:58:14 [Note]: FSRAW library version 1.7.1022
08/19/07 02:05:59 [Note]: 7007 0

bei allen anderen wurde nichts gefunden...

hier nochmal kurz mein aktuelles Logfile:

Code:

Logfile of HijackThis v1.99.1
Scan saved at 17:11:19, on 19/08/2007
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Intel\Wireless\Bin\ZcfgSvc.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\WINDOWS\system32\basfipm.exe
C:\WINDOWS\system32\crypserv.exe
C:\Program Files\Securitoo\av_fw\fswsclds.exe
C:\Program Files\Fichiers communs\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\ScanSoft\OmniPagePro14.0\Opware14.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE
C:\WINDOWS\system32\LVCOMSX.EXE
C:\Program Files\Logitech\Video\LogiTray.exe
C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Logitech\Video\FxSvr2.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
C:\Program Files\eMule\emule.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\hijackthis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.fr/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.euro.dell.com/
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Liens
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\system32\dla\tfswshx.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar2.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar2.dll
O4 - HKLM\..\Run: [Apoint] C:\Program Files\Apoint\Apoint.exe
O4 - HKLM\..\Run: [IntelWireless] C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Dell QuickSet] C:\Program Files\Dell\QuickSet\quickset.exe
O4 - HKLM\..\Run: [Opware14] "C:\Program Files\ScanSoft\OmniPagePro14.0\Opware14.exe"
O4 - HKLM\..\Run: [EPSON Stylus C66 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE /P23 "EPSON Stylus C66 Series" /O6 "USB001" /M "Stylus C66"
O4 - HKLM\..\Run: [LVCOMSX] C:\WINDOWS\system32\LVCOMSX.EXE
O4 - HKLM\..\Run: [LogitechVideoRepair] C:\Program Files\Logitech\Video\ISStart.exe 
O4 - HKLM\..\Run: [LogitechVideoTray] C:\Program Files\Logitech\Video\LogiTray.exe
O4 - HKLM\..\Run: [avgnt] "C:\Program Files\AntiVir PersonalEdition Classic\avgnt.exe" /min
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [EPSON Stylus C66 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_S4I0S2.EXE /P23 "EPSON Stylus C66 Series" /M "Stylus C66" /EF "HKCU"
O4 - HKCU\..\Run: [LDM] C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LogitechDesktopMessenger.exe
O4 - HKCU\..\Run: [LogitechSoftwareUpdate] "C:\Program Files\Logitech\Video\ManifestEngine.exe" boot
O4 - Global Startup: Lancement rapide d'Adobe Reader.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Logitech Desktop Messenger.lnk = C:\Program Files\Logitech\Desktop Messenger\8876480\Program\LDMConf.exe
O8 - Extra context menu item: &Traduire à partir de l'anglais - res://c:\program files\google\GoogleToolbar2.dll/cmwordtrans.html
O8 - Extra context menu item: E&xporter vers Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Pages liées - res://c:\program files\google\GoogleToolbar2.dll/cmbacklinks.html
O8 - Extra context menu item: Pages similaires - res://c:\program files\google\GoogleToolbar2.dll/cmsimilar.html
O8 - Extra context menu item: Recherche &Google - res://c:\program files\google\GoogleToolbar2.dll/cmsearch.html
O8 - Extra context menu item: Télécharger avec Star Downloader - C:\Program Files\Star Downloader\sdie.htm
O8 - Extra context menu item: Version de la page actuelle disponible dans le cache Google - res://c:\program files\google\GoogleToolbar2.dll/cmcache.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Console Java (Sun) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: PokerStars - {3AD14F0C-ED16-4e43-B6D8-661B03F6A1EF} - C:\Program Files\PokerStars\PokerStarsUpdate.exe
O9 - Extra button: Recherche - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O17 - HKLM\System\CCS\Services\Tcpip\..\{E174686C-9658-430A-8559-F5BC372506A9}: NameServer = 212.27.54.252,212.27.53.252
O18 - Protocol: bw+0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw+0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw-0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw00s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw10s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw20s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw30s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw40s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw50s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw60s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw70s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw80s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bw90s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwa0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwb0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwc0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwd0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwe0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwf0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwfile-8876480 - {9462A756-7B47-47BC-8C80-C34B9B80B32B} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\GAPlugProtocol-8876480.dll
O18 - Protocol: bwg0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwg0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwh0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwi0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwj0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwk0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwl0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwm0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwn0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwo0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwp0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwq0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwr0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bws0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwt0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwu0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwv0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bww0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwx0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwy0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: bwz0s - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O18 - Protocol: offline-8876480 - {FCFF8CDC-3816-4E19-BDED-522FAEBE234C} - C:\Program Files\Logitech\Desktop Messenger\8876480\Program\BWPlugProtocol-8876480.dll
O20 - Winlogon Notify: IntelWireless - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O21 - SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll
O23 - Service: AntiVir PersonalEdition Classic Scheduler (AntiVirScheduler) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\sched.exe
O23 - Service: AntiVir PersonalEdition Classic Guard (AntiVirService) - Avira GmbH - C:\Program Files\AntiVir PersonalEdition Classic\avguard.exe
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Broadcom ASF IP monitoring service v6.0.4 (BAsfIpM) - Broadcom Corp. - C:\WINDOWS\system32\basfipm.exe
O23 - Service: Crypkey License - Kenonic Controls Ltd. - C:\WINDOWS\SYSTEM32\crypserv.exe
O23 - Service: EvtEng - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: F-Secure Windows Security Center Legacy Detection Service (Fswsclds) - F-Secure Corporation - C:\Program Files\Securitoo\av_fw\fswsclds.exe
O23 - Service: JFWService - Freedom Scientific BLV Group, LLC - C:\Program Files\Freedom Scientific\JAWS\6.20\JFW.EXE
O23 - Service: Service Norton AntiVirus Auto-Protect (navapsvc) - Unknown owner - C:\Program Files\Norton AntiVirus\navapsvc.exe (file missing)
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\NICCONFIGSVC\NICCONFIGSVC.exe
O23 - Service: RegSrvc - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Spectrum24 Event Monitor (S24EventMonitor) - Intel Corporation  - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: WLANKEEPER - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe

[Speedy]

hi

download den parite-reomver von ikarus und malwareremover von microsoft

wechsel in den abgesicherten modus von windows und führe den remover aus,
scanne und bereinige nun mit deinem av-tool das system

in den normalen modus wechseln

• start
• alle programme
• zubehör
• systemprogramme
• systemwiederherstellung
• einen wiederherstellungspunkt erstellen
• start
• explorer
• lokaler datenträger -> rechte maustaste
• eigenschaften -> reiter allgemein
• bereinigen -> reiter weitere optionen
• systemwiederherstellung bereinigen, überprüfen, nun sollte genau 1 wiederherstellungspunkt vorhanden sein.

neuerlich in den abgesicherten modus wechseln, leere den prefetch und deine temp. ordner, auch den quarantäne-ordner deines av-tools
leere den mistkübel

lass nun nochmals den remover und dein av-tool im abgesicherten modus
das system bereinigen.

neustart --> überprüfe dein system mit mind.3 der folgenden onlinescanner (aber nicht 2 x houesecall )

• panda-aktivscan
• housecall für den ie
• housecall für den ff
• kaspersky
• bitdefender
• mcafee
• f-secure
• ca trust
• authentium
• symantec
• arcabit
• pestpatrol ein produkt der ca gruppe
• a-squared
• ewido

poste die ergebnisse.