Member Panel

arthur92710 · 10:11 PM

Firefox wont load pages. again -.-
I had this problem on my desktop a few months ago, it was something with spbotSD.
If I change firefox.exe to firefox1.exe it works fine.

BTW I also got Virtumundo -.-, It seems to have been removed with VirtumundoBeGone.exe

Heres my log, if it help.

Logfile of HijackThis v1.99.1
Scan saved at 5:10:17 PM, on 6/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\LEXPPS.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE
C:\Program Files\FileZilla Server\FileZilla Server.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\lkcitdl.exe
C:\WINDOWS\system32\lkads.exe
C:\WINDOWS\system32\lktsrv.exe
C:\Spy Sweeper\SpySweeper.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Common Files\Ahead\lib\NMBgMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
C:\WINDOWS\system32\nisvcloc.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\iPod\bin\iPodService.exe
c:\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Mozilla Firefox\firefox1.exe
C:\Program Files\HijackThis\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TY...lion&pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = AOL.com - Welcome to AOL
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AOL.com - Welcome to AOL
O3 - Toolbar: Windows Live Toolbar - {BDAD1DAD-C946-4A17-ADC1-64B5B4FF55D0} - C:\Program Files\Windows Live Toolbar\msntb.dll
O4 - HKLM\..\Run: [SpySweeper] "C:\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {4528BBE0-4E08-11D5-AD55-00010333D0AD} - C:\Program Files\Yahoo!\Messenger\yhexbmes0521.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Unknown file in Winsock LSP: c:\program files\bonjour\mdnsnsp.dll
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q105&bd=pavili on&pf=laptop
O16 - DPF: {90051A81-3018-4826-8B38-DD60B6B53F9C} (Snapfish File Upload ActiveX Control) - Costco Photo Center - Account
O16 - DPF: {B38870E4-7ECB-40DA-8C6A-595F0A5519FF} (MsnMessengerSetupDownloadControl Class) - http://messenger.msn.com/download/Ms...Downloader.cab
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} (SproutLauncherCtrl Class) - http://www.shockwave.com/content/fee...utLauncher.cab
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} (PopCapLoader Object) - http://www.popcap.com/games/popcaploader_v6.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{0BD11B69-014E-4F9A-B158-951AB64CBF4F}: NameServer = 167.206.251.129,167.206.251.130
O17 - HKLM\System\CCS\Services\Tcpip\..\{82878719-6801-4876-BC4A-5F23AE1CC456}: NameServer = 167.206.251.129,167.206.251.130
O17 - HKLM\System\CS1\Services\Tcpip\..\{0BD11B69-014E-4F9A-B158-951AB64CBF4F}: NameServer = 167.206.251.129,167.206.251.130
O17 - HKLM\System\CS2\Services\Tcpip\..\{0BD11B69-014E-4F9A-B158-951AB64CBF4F}: NameServer = 167.206.251.129,167.206.251.130
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: ms-help - {314111C7-A502-11D2-BBCA-00C04F8EC294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Settings Manager (ccSetMgr) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
O23 - Service: Google Desktop Manager 5.7.805.16405 (GoogleDesktopManager-051608-133132) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Unknown owner - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe" /h ccCommon (file missing)
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\WINDOWS\system32\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\WINDOWS\system32\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\WINDOWS\system32\lktsrv.exe
O23 - Service: SQL Server (SQLEXPRESS) (MSSQL$SQLEXPRESS) - Unknown owner - c:\Program Files\Microsoft SQL Server\MSSQL.1\MSSQL\Binn\sqlservr.exe" -sSQLEXPRESS (file missing)
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments, Inc. - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NILM License Manager - Macrovision Corporation - C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corp. - C:\WINDOWS\system32\nisvcloc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - Unknown owner - %ProgramFiles%\WinPcap\rpcapd.exe" -d -f "%ProgramFiles%\WinPcap\rpcapd.ini (file missing)
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - c:\Spy Sweeper\WRSSSDK.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe (file missing)

Hengis

Moved to the HJT section.

Pancake

Does Internet Explorer work ok ????

You are using an outdated version of HijackThis. Please uninstall from Add/Remove programs, and delete your current version.

Please download HijackThis to your desktop..
TrendSecure | Download TrendMicro HijackThis
Alternate link
http://download.bleepingcomputer.com...HJTInstall.exe
This program will help us determine if there are any spyware/malware on your computer. Double-click on the file you just downloaded.
Click on the "Unzip" button to install. It will by default install to the directory - C:\Program Files\Trend Micro\HijackThis
Upon install, HijackThis should open for you.
Should it not open, navigate to C:\Program Files\Trend Micro\HijackThis and double click on HijackThis.exe
1. If it gives you an intro screen, just choose 'Do a system scan and save a logfile'.
2. If you don't get the intro screen, just hit Scan and then click on Save log.
3. Post the hijackthis.log file here. Do not fix anything in HijackThis since they may be harmless.

=============================

Ok.Lets download ComboFix.exe. This will give me a better view to the files running and also hidden on your computer and also those in the registry.
Please visit this webpage for download links, and instructions for running ComboFix
When the tool is finished, it will produce a report for you. Please copy and paste the "C:\ComboFix.txt" along with a new 'HijackThis' log so that we can continue to do any further cleaning that your system may require.
Caution: Never run and remove files with Combofix unless supervised by a qualified security analyst who is experienced in the use of Combofix. Mal use can cause serious computer problems
NOTE: Combofix prevents autorun of all CDs, floppies and USB devices to assist with malware removal & increase security. If this is an issue or makes it difficult for you - please let me know.

arthur92710

Heres the new HJL

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:44:56 PM, on 6/11/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
C:\WINDOWS\system32\LEXBCES.EXE
C:\WINDOWS\system32\LEXPPS.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE
C:\Program Files\FileZilla Server\FileZilla Server.exe
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\WINDOWS\system32\lkcitdl.exe
C:\WINDOWS\system32\lkads.exe
C:\WINDOWS\system32\lktsrv.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
C:\WINDOWS\system32\nisvcloc.exe
c:\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
C:\WINDOWS\system32\svchost.exe
C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
C:\Spy Sweeper\SpySweeper.exe
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
c:\Spy Sweeper\WRSSSDK.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Mozilla Firefox\firefox1.exe
C:\Documents and Settings\Administrator\Desktop\HiJackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.redirect.hp.com/svs/rdr?TY...lion&pf=laptop
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = AOL.com - Welcome to AOL
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = AOL.com - Welcome to AOL
O4 - HKLM\..\Run: [SpySweeper] "C:\Spy Sweeper\SpySweeper.exe" /startintray
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [osCheck] "C:\Program Files\Norton AntiVirus\osCheck.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\daemon.exe" -autorun
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O17 - HKLM\System\CCS\Services\Tcpip\..\{0BD11B69-014E-4F9A-B158-951AB64CBF4F}: NameServer = 167.206.251.129,167.206.251.130
O17 - HKLM\System\CCS\Services\Tcpip\..\{82878719-6801-4876-BC4A-5F23AE1CC456}: NameServer = 167.206.251.129,167.206.251.130
O17 - HKLM\System\CS1\Services\Tcpip\..\{0BD11B69-014E-4F9A-B158-951AB64CBF4F}: NameServer = 167.206.251.129,167.206.251.130
O17 - HKLM\System\CS2\Services\Tcpip\..\{0BD11B69-014E-4F9A-B158-951AB64CBF4F}: NameServer = 167.206.251.129,167.206.251.130
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: Ad-Aware 2007 Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware 2007\aawservice.exe
O23 - Service: Apple Mobile Device - Apple, Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Automatic LiveUpdate Scheduler - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Lic NetConnect service (CLTNetCnService) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S30RP1.EXE
O23 - Service: FileZilla Server FTP server (FileZilla Server) - FileZilla Project - C:\Program Files\FileZilla Server\FileZilla Server.exe
O23 - Service: Google Desktop Manager 5.7.805.16405 (GoogleDesktopManager-051608-133132) - Google - C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LexBce Server (LexBceS) - Lexmark International, Inc. - C:\WINDOWS\system32\LEXBCES.EXE
O23 - Service: LiveUpdate - Symantec Corporation - C:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
O23 - Service: LiveUpdate Notice - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Lookout Citadel Server (LkCitadelServer) - National Instruments, Inc. - C:\WINDOWS\system32\lkcitdl.exe
O23 - Service: National Instruments PSP Server Locator (lkClassAds) - National Instruments, Inc. - C:\WINDOWS\system32\lkads.exe
O23 - Service: National Instruments Time Synchronization (lkTimeSync) - National Instruments, Inc. - C:\WINDOWS\system32\lktsrv.exe
O23 - Service: NICSer_WPC54G - Unknown owner - C:\Program Files\Linksys\Wireless-G Notebook Adapter\NICServ.exe
O23 - Service: National Instruments Domain Service (NIDomainService) - National Instruments, Inc. - C:\Program Files\National Instruments\Shared\Security\nidmsrv.exe
O23 - Service: NILM License Manager - Macrovision Corporation - C:\Program Files\National Instruments\Shared\License Manager\Bin\lmgrd.exe
O23 - Service: NI Service Locator (niSvcLoc) - National Instruments Corp. - C:\WINDOWS\system32\nisvcloc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: Webroot Spy Sweeper Engine (svcWRSSSDK) - Webroot Software, Inc. - c:\Spy Sweeper\WRSSSDK.exe
O23 - Service: Symantec Core LC - Unknown owner - C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
O23 - Service: SymWMI Service (SymWSC) - Unknown owner - C:\Program Files\Common Files\Symantec Shared\Security Center\SymWSC.exe (file missing)

--
End of file - 7648 bytes

ComboFix 08-06-10.5 - Administrator 2008-06-11 21:32:05.2 - NTFSx86
Running from: C:\Documents and Settings\Administrator\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\Administrator\Desktop\WindowsXP-KB310994-SP2-Pro-BootDisk-ENU.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

C:\WINDOWS\BM57f45f18.xml
C:\WINDOWS\pskt.ini
C:\WINDOWS\system32\bbJPonnn.ini
C:\WINDOWS\system32\bbJPonnn.ini2
C:\WINDOWS\system32\Cache
C:\WINDOWS\system32\egnytgqp.dll
C:\WINDOWS\system32\fbpaorrg.ini
C:\WINDOWS\system32\fhhjmUvw.ini
C:\WINDOWS\system32\fhhjmUvw.ini2
C:\WINDOWS\system32\fOqAHkkj.ini
C:\WINDOWS\system32\fOqAHkkj.ini2
C:\WINDOWS\system32\grroapbf.dll
C:\WINDOWS\system32\hcsrexvv.dll
C:\WINDOWS\system32\iifcASKe.dll
C:\WINDOWS\system32\jhigtvvy.dll
C:\WINDOWS\system32\jkalwkto.dll
C:\WINDOWS\system32\klyvtyoa.dll
C:\WINDOWS\system32\krsjjkkk.dll
C:\WINDOWS\system32\mcrh.tmp
C:\WINDOWS\system32\ntfigrop.ini
C:\WINDOWS\system32\opfeyxac.dll
C:\WINDOWS\system32\porgiftn.dll
C:\WINDOWS\system32\pqgtynge.ini
C:\WINDOWS\system32\ptnjqvvd.dll
C:\WINDOWS\system32\rkafljwv.dll
C:\WINDOWS\system32\ssqQHyAr.dll
C:\WINDOWS\system32\VFhRCJlm.ini
C:\WINDOWS\system32\VFhRCJlm.ini2
C:\WINDOWS\system32\vwjlfakr.ini
C:\WINDOWS\system32\wsfwbpbv.ini
C:\WINDOWS\system32\yayvULeE.dll

.
((((((((((((((((((((((((( Files Created from 2008-05-12 to 2008-06-12 )))))))))))))))))))))))))))))))
.

2008-06-11 16:09 . 2008-06-11 16:09 80,896 --a------ C:\WINDOWS\system32\vbpbwfsw.dll
2008-06-10 15:11 . 2008-06-10 15:11 <DIR> d-------- C:\VundoFix Backups
2008-06-10 15:03 . 2008-06-10 15:03 605,184 --a------ C:\WINDOWS\system32\nnnoPJbb.dll
2008-06-09 18:29 . 2008-06-10 14:56 294 --a------ C:\WINDOWS\wininit.ini
2008-06-08 13:26 . 2008-06-08 13:27 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Media Player Classic
2008-06-08 13:23 . 2006-09-24 11:11 389,120 --a------ C:\WINDOWS\system32\lameACM.acm
2008-06-08 13:23 . 2007-09-04 12:56 164,352 --a------ C:\WINDOWS\system32\unrar.dll
2008-06-08 13:23 . 2007-09-20 20:52 118,784 --a------ C:\WINDOWS\system32\ac3acm.acm
2008-06-08 13:23 . 2007-10-03 11:03 414 --a------ C:\WINDOWS\system32\lame_acm.xml
2008-06-08 13:22 . 2008-06-08 13:22 <DIR> d-------- C:\Program Files\K-Lite Codec Pack
2008-06-08 13:22 . 2008-01-10 08:15 755,027 --a------ C:\WINDOWS\system32\xvidcore.dll
2008-06-08 13:22 . 2008-01-10 08:16 159,839 --a------ C:\WINDOWS\system32\xvidvfw.dll
2008-06-08 13:22 . 2008-03-28 13:41 7,680 --a------ C:\WINDOWS\system32\ff_vfw.dll
2008-06-08 13:22 . 2007-07-10 12:10 547 --a------ C:\WINDOWS\system32\ff_vfw.dll.manifest
2008-06-08 11:05 . 2008-06-08 11:05 4,236 --a------ C:\WINDOWS\SETUP.LST
2008-06-08 11:05 . 2008-06-08 11:05 303 --a------ C:\WINDOWS\ST6UNST.000
2008-06-08 10:44 . 2008-06-08 10:44 <DIR> d-------- C:\Program Files\Windows Sidebar
2008-06-08 10:41 . 2008-06-08 11:25 123,952 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.SYS
2008-06-08 10:41 . 2008-06-08 11:25 60,800 --a------ C:\WINDOWS\system32\S32EVNT1.DLL
2008-06-08 10:41 . 2008-06-08 11:25 10,671 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.CAT
2008-06-08 10:41 . 2008-06-08 11:25 805 --a------ C:\WINDOWS\system32\drivers\SYMEVENT.INF
2008-06-08 08:40 . 2008-06-08 08:40 59,392 --a------ C:\WINDOWS\system32\geBTNfDU.dll.vir
2008-06-01 20:52 . 2008-06-01 20:52 <DIR> d-------- C:\Program Files\CACE Technologies
2008-06-01 15:53 . 2008-06-01 15:53 <DIR> d-------- C:\Program Files\WinPcap
2008-06-01 15:49 . 2008-06-01 20:59 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\gtk-2.0
2008-06-01 15:22 . 2008-06-01 15:23 <DIR> d-------- C:\Program Files\WinSCP
2008-06-01 15:19 . 2008-06-05 18:47 <DIR> d-------- C:\Program Files\Cain
2008-06-01 15:19 . 2008-06-05 18:34 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Wireshark
2008-06-01 15:05 . 2008-06-01 15:07 <DIR> d-------- C:\Program Files\Wireshark
2008-06-01 12:11 . 2008-02-02 00:11 <DIR> d-a------ C:\aircrack-ng-1.0-beta2-win
2008-06-01 11:12 . 2008-06-01 18:56 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\FileZilla
2008-06-01 11:11 . 2008-06-01 11:11 <DIR> d-------- C:\Program Files\FileZilla FTP Client
2008-06-01 11:02 . 2008-06-01 11:03 <DIR> d-------- C:\Program Files\FileZilla Server
2008-05-30 15:56 . 2008-05-30 16:12 5,497,296 --a------ C:\Kayne West - Stronger.rar
2008-05-29 17:16 . 2008-05-29 17:26 272 --a------ C:\WINDOWS\Wlink83p.ini
2008-05-29 16:59 . 1999-08-30 14:51 9,152 --a------ C:\WINDOWS\system32\drivers\Ticalc.sys
2008-05-29 16:38 . 2008-05-29 16:38 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Megaupload
2008-05-28 20:02 . 2008-05-28 20:02 <DIR> d-------- C:\Program Files\Google
2008-05-26 22:43 . 2008-05-26 22:43 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\AdobeUM
2008-05-26 16:47 . 2008-05-26 16:48 <DIR> d-------- C:\Program Files\GSC
2008-05-26 16:47 . 2008-05-26 16:49 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\GSC
2008-05-24 21:18 . 2008-06-01 20:32 <DIR> d-------- C:\Program Files\Bagatrix
2008-05-24 13:55 . 2008-05-24 13:55 894 --a------ C:\WINDOWS\cw23.cfg
2008-05-24 13:55 . 2008-05-24 13:55 552 --a------ C:\WINDOWS\ew23.cfg
2008-05-24 13:54 . 2008-05-24 13:55 1,082 --a------ C:\WINDOWS\ew23.INI
2008-05-24 13:53 . 2008-05-24 13:55 1,206 --a------ C:\WINDOWS\cw23.INI
2008-05-24 13:44 . 2008-05-24 13:44 <DIR> d-------- C:\Program Files\IAR Systems
2008-05-24 13:44 . 2008-05-24 13:44 <DIR> d-------- C:\Program Files\Common Files\Labcenter Electronics
2008-05-24 13:44 . 2008-05-24 13:44 <DIR> d-------- C:\Program Files\Common Files\IAR Systems
2008-05-24 13:43 . 2008-05-24 13:43 <DIR> d-------- C:\Program Files\Labcenter Electronics
2008-05-24 13:36 . 2008-05-24 13:36 <DIR> d-------- C:\Program Files\DAEMON Tools Lite
2008-05-24 13:30 . 2008-05-24 13:30 717,296 --a------ C:\WINDOWS\system32\drivers\sptd.sys
2008-05-24 13:29 . 2008-05-24 13:29 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\DAEMON Tools
2008-05-23 18:30 . 2008-05-23 18:32 <DIR> d-------- C:\WinAVR-20080512
2008-05-23 18:19 . 2008-05-23 18:19 <DIR> d-------- C:\Program Files\Common Files\Bcgsoft
2008-05-23 18:19 . 2008-05-23 18:19 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\National Instruments
2008-05-23 16:17 . 2008-05-23 16:18 <DIR> d-------- C:\Program Files\HI-TECH Software
2008-05-23 16:11 . 2008-05-23 16:11 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\National Instruments
2008-05-23 16:10 . 2008-05-23 16:10 <DIR> d-------- C:\WINDOWS\system32\cvirte
2008-05-23 16:10 . 2008-05-23 16:17 <DIR> d-------- C:\Program Files\National Instruments
2008-05-23 15:56 . 2008-02-19 15:39 191,424 --a------ C:\WINDOWS\system32\drivers\windrvr6.sys
2008-05-23 15:55 . 2008-05-23 15:55 <DIR> d-------- C:\Program Files\Atmel
2008-05-23 15:55 . 2007-09-17 08:04 3,858,432 --a------ C:\WINDOWS\system32\BCGCBPRO95580.dll
2008-05-23 15:55 . 2007-04-26 13:18 290,904 --a------ C:\WINDOWS\system32\vc6-re200l.dll
2008-05-23 15:55 . 2008-02-19 15:42 143,360 --a------ C:\WINDOWS\system32\wdapi920.dll
2008-05-23 15:55 . 2006-10-18 15:29 102,400 --a------ C:\WINDOWS\system32\wdapi811.dll
2008-05-23 15:55 . 2006-02-07 14:45 73,728 --a------ C:\WINDOWS\system32\RWUXThemeS.dll
2008-05-23 15:54 . 2008-05-23 15:54 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\InstallShield
2008-05-21 19:55 . 2008-05-21 20:00 <DIR> d-------- C:\Program Files\Unlocker
2008-05-21 18:12 . 2008-06-10 17:56 <DIR> d-------- C:\Program Files\uTorrent
2008-05-21 18:12 . 2008-06-11 22:13 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\uTorrent
2008-05-21 18:04 . 2008-05-21 18:28 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Azureus
2008-05-21 18:00 . 2008-05-21 18:00 <DIR> d-------- C:\Documents and Settings\Administrator\Application Data\Webroot
2008-05-12 12:04 . 2008-05-12 12:04 <DIR> d-------- C:\Program Files\iPod
2008-05-12 11:47 . 2008-06-11 22:11 54,156 --ah----- C:\WINDOWS\QTFont.qfn
2008-05-12 11:47 . 2008-05-12 11:47 1,409 --a------ C:\WINDOWS\QTFont.for

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))) ))
.
2008-06-12 01:47 --------- d-----w C:\Program Files\Common Files\Symantec Shared
2008-06-10 02:23 --------- d-----w C:\Program Files\The Learning Company
2008-06-10 02:21 --------- d-----w C:\Program Files\Oberon Media
2008-06-10 02:19 --------- d-----w C:\Program Files\Easy Internet signup
2008-06-09 21:53 --------- d-----w C:\Program Files\SpeedFan
2008-06-08 17:20 --------- d-----w C:\Program Files\DivX
2008-06-08 15:44 --------- d-----w C:\Program Files\Norton AntiVirus
2008-06-08 15:25 --------- d-----w C:\Program Files\Symantec
2008-06-08 15:20 --------- d-----w C:\Documents and Settings\All Users\Application Data\Symantec
2008-05-29 21:16 --------- d-----w C:\Program Files\TI Education
2008-05-26 20:21 --------- d-----w C:\Documents and Settings\Administrator\Application Data\Apple Computer
2008-05-24 17:44 --------- d--h--w C:\Program Files\InstallShield Installation Information
2008-05-24 01:27 --------- d-----w C:\Program Files\iTunes
2008-05-23 20:17 --------- d-----w C:\Program Files\Common Files\Merge Modules
2008-05-21 21:53 --------- d-----w C:\Documents and Settings\Owner\Application Data\Azureus
2008-05-21 20:30 --------- d-----w C:\Program Files\Apple Software Update
2008-05-14 03:06 --------- d-----w C:\Documents and Settings\Owner\Application Data\Apple Computer
2008-05-12 23:55 --------- d-----w C:\Documents and Settings\Owner\Application Data\Ahead
2008-05-12 15:57 --------- d-----w C:\Program Files\QuickTime
2008-05-03 00:07 --------- d-----w C:\Program Files\Sony Setup
2008-05-02 22:37 --------- d-----w C:\Program Files\MegauploadToolbar
2008-05-02 22:37 --------- d-----w C:\Documents and Settings\Owner\Application Data\Megaupload
2008-05-02 22:36 --------- d-----w C:\Program Files\Megaupload
2008-05-02 22:36 --------- d-----w C:\Documents and Settings\Owner\Application Data\MegauploadToolbar
2008-05-02 22:35 --------- d-----w C:\Documents and Settings\Owner\Application Data\InstallShield
2008-04-29 23:32 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-04-29 23:27 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-04-29 03:05 --------- d-----w C:\Program Files\Lavalys
2008-04-28 23:00 --------- d-----w C:\Documents and Settings\All Users\Application Data\Azureus
2008-04-28 22:12 --------- d-----w C:\Program Files\FlashFXP
2008-04-28 22:12 --------- d-----w C:\Documents and Settings\All Users\Application Data\FlashFXP
2008-04-28 21:20 --------- d-----w C:\Program Files\Azureus
2008-04-27 20:27 --------- d-----w C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-04-27 20:26 --------- d-----w C:\Program Files\Lavasoft
2008-04-27 20:24 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-04-27 16:13 692,497 ----a-w C:\WINDOWS\unins000.exe
2008-04-20 14:48 --------- d-----w C:\Program Files\El Cheapo Version 0.84
2008-04-20 01:38 --------- d-----w C:\Documents and Settings\Owner\Application Data\Skype
2008-04-20 01:34 --------- d-----w C:\Program Files\Apache Software Foundation
2007-12-15 14:49 32 ----a-w C:\Documents and Settings\All Users\Application Data\ezsid.dat
2007-03-17 20:12 303,104 ----a-w C:\Program Files\lame_enc.dll
2006-12-20 01:41 32,555 ----a-w C:\Documents and Settings\Owner\elcheapo.exe
2006-01-23 14:32 131,072 ----a-w C:\Program Files\internet explorer\plugins\LV80ActiveXControl.dll
2006-06-07 18:40 132,848 ----a-w C:\Program Files\internet explorer\plugins\LV82ActiveXControl.dll
2005-05-13 21:12 217,073 --sha-r C:\WINDOWS\meta4.exe
2005-10-24 15:13 66,560 --sha-r C:\WINDOWS\MOTA113.exe
2005-10-14 01:27 422,400 --sha-r C:\WINDOWS\x2.64.exe
2005-10-07 23:14 308,224 --sha-r C:\WINDOWS\system32\avisynth.dll
2005-07-14 16:31 27,648 --sha-r C:\WINDOWS\system32\AVSredirect.dll
2005-06-22 02:37 45,568 --sha-r C:\WINDOWS\system32\cygz.dll
2004-01-25 04:00 70,656 --sha-r C:\WINDOWS\system32\i420vfw.dll
2006-04-27 14:24 2,945,024 --sha-r C:\WINDOWS\system32\Smab.dll
2005-02-28 17:16 240,128 --sha-r C:\WINDOWS\system32\x.264.exe
.

((((((((((((((((((((((((((((( snapshot@2008-04-19_23.11.32.60 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-05-23 20:10:36 163,840 ----a-w C:\WINDOWS\assembly\GAC\NationalInstruments.CVI.Re flector\8.0.356.0__f83b88e0aaf4fb33\NationalInstru ments.CVI.Reflector.dll
- 2008-04-20 01:43:57 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2008-06-12 01:47:17 2,048 --s-a-w C:\WINDOWS\bootstat.dat
+ 2005-10-21 00:02:28 163,328 ----a-w C:\WINDOWS\erdnt\subs\ERDNT.EXE
+ 2008-05-23 20:15:30 10,134 ----a-r C:\WINDOWS\Installer\{0168B3E7-393C-4749-B429-FD5B6FD50567}\ARPPRODUCTICON.exe
+ 2008-05-23 20:15:30 45,056 ----a-r C:\WINDOWS\Installer\{0168B3E7-393C-4749-B429-FD5B6FD50567}\NewShortcut1_CAC10082971842228BDF190 AEEF71732.exe
+ 2008-05-12 15:41:13 27,136 ----a-r C:\WINDOWS\Installer\{02DFF6B1-1654-411C-8D7B-FD6052EF016F}\AppleSoftwareUpdateIco.exe
+ 2008-05-23 19:54:22 102,400 ----a-r C:\WINDOWS\Installer\{585776BC-4BD6-4BD2-A19A-1D6CB44A403B}\iTunesIco.exe
+ 2008-05-23 20:15:15 10,134 ----a-r C:\WINDOWS\Installer\{6CAB860B-CB68-462B-AF66-83AEF9BD6ED2}\ARPPRODUCTICON.exe
+ 2008-05-23 20:14:39 10,134 ----a-r C:\WINDOWS\Installer\{CD094AFB-E5B0-4687-A3D2-358E04BCA172}\ARPPRODUCTICON.exe
+ 2008-05-23 20:14:39 57,344 ----a-r C:\WINDOWS\Installer\{CD094AFB-E5B0-4687-A3D2-358E04BCA172}\NewShortcut1_B7E20C58D0FF4465833FB4F ABCF7AC67.exe
+ 2008-05-23 20:14:39 57,344 ----a-r C:\WINDOWS\Installer\{CD094AFB-E5B0-4687-A3D2-358E04BCA172}\UB_SHORTCUT_C9E0EC1DD0D847D5A62909D4 2F018CC0.exe
+ 2008-05-23 20:11:30 14,848 ----a-r C:\WINDOWS\Installer\{D8B7A9C5-7ACE-4F9C-9788-77D08850AB4F}\IconTmpl1.35EFBFF7_DF83_4E85_BE8D_D1 DC5DA472AF.exe
- 2007-09-03 19:42:06 1,038,336 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\Icon0E6AB9FC.exe
+ 2008-04-27 20:26:29 1,038,336 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\Icon0E6AB9FC.exe
- 2007-09-03 19:42:03 178,688 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\Icon0E6AB9FC1.exe
+ 2008-04-27 20:26:29 178,688 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\Icon0E6AB9FC1.exe
+ 2008-04-27 20:26:29 171,008 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\IconDED53B0B.exe
+ 2008-04-27 20:26:29 8,704 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\IconDED53B0B1.exe
+ 2008-06-08 14:41:08 7,406 ----a-r C:\WINDOWS\Installer\{E80F62FF-5D3C-4A19-8409-9721F2928206}\IconE80F62FF.exe
+ 2001-07-14 21:32:24 69,632 ----a-w C:\WINDOWS\setupupd\temp\wsdueng.dll
+ 2004-08-04 13:00:00 43,520 ----a-w C:\WINDOWS\system32\admwprox.dll
+ 2004-08-04 13:00:00 6,144 ----a-w C:\WINDOWS\system32\admxprox.dll
+ 2004-08-04 13:00:00 290,816 ----a-w C:\WINDOWS\system32\adsiis.dll
+ 2001-08-18 02:36:10 5,632 ----a-w C:\WINDOWS\system32\adsiisex.dll
+ 2007-12-06 21:38:48 86,016 ----a-w C:\WINDOWS\system32\airpcap.dll
+ 2004-08-04 13:00:00 10,240 ----a-w C:\WINDOWS\system32\aspperf.dll
- 2004-12-14 16:24:40 466,944 ----a-w C:\WINDOWS\system32\capicom.dll
+ 2007-04-11 18:11:20 511,328 ----a-w C:\WINDOWS\system32\capicom.dll
+ 2004-08-04 13:00:00 56,320 ----a-w C:\WINDOWS\system32\convlog.exe
+ 2006-04-10 14:00:00 348,160 ----a-w C:\WINDOWS\system32\cvi_lvrt.dll
+ 2006-04-10 14:00:00 352,256 ----a-w C:\WINDOWS\system32\cviauto.dll
+ 2006-04-10 14:00:00 102,400 ----a-w C:\WINDOWS\system32\cvidotnetv1.1.4322.dll
+ 2006-04-10 14:00:00 98,304 ----a-w C:\WINDOWS\system32\cvintwrk.dll
+ 2006-04-10 14:00:00 45,056 ----a-w C:\WINDOWS\system32\cvirt.dll
+ 2006-04-10 14:00:00 2,572,288 ----a-w C:\WINDOWS\system32\cvirte.dll
+ 2006-04-10 14:00:00 94,208 ----a-w C:\WINDOWS\system32\cviUSI.dll
+ 2006-04-10 14:00:00 126,976 ----a-w C:\WINDOWS\system32\dataskt.dll
+ 2004-08-04 13:00:00 29,696 ----a-w C:\WINDOWS\system32\dllcache\admexs.dll
+ 2003-03-24 20:52:04 20,540 ----a-w C:\WINDOWS\system32\dllcache\admin.dll
+ 2003-03-24 20:52:04 16,439 ----a-w C:\WINDOWS\system32\dllcache\admin.exe
+ 2004-08-04 13:00:00 43,520 ----a-w C:\WINDOWS\system32\dllcache\admwprox.dll
+ 2004-08-04 13:00:00 6,144 ----a-w C:\WINDOWS\system32\dllcache\admxprox.dll
+ 2004-08-04 13:00:00 49,664 ----a-w C:\WINDOWS\system32\dllcache\adrot.dll
+ 2004-08-04 13:00:00 290,816 ----a-w C:\WINDOWS\system32\dllcache\adsiis51.dll
+ 2004-08-04 13:00:00 108,544 ----a-w C:\WINDOWS\system32\dllcache\appconf.dll
+ 2004-08-04 13:00:00 331,264 ----a-w C:\WINDOWS\system32\dllcache\aqueue.dll
+ 2004-08-04 13:00:00 369,664 ----a-w C:\WINDOWS\system32\dllcache\asp51.dll
+ 2004-08-04 13:00:00 10,240 ----a-w C:\WINDOWS\system32\dllcache\aspperf.dll
+ 2004-08-04 13:00:00 29,184 ----a-w C:\WINDOWS\system32\dllcache\asptxn.dll
+ 2004-08-04 13:00:00 9,216 ----a-w C:\WINDOWS\system32\dllcache\authfilt.dll
+ 2003-03-24 20:52:04 20,540 ----a-w C:\WINDOWS\system32\dllcache\author.dll
+ 2003-03-24 20:52:04 16,439 ----a-w C:\WINDOWS\system32\dllcache\author.exe
+ 2004-08-04 13:00:00 45,568 ----a-w C:\WINDOWS\system32\dllcache\browscap.dll
+ 2003-03-24 20:52:04 188,480 ----a-w C:\WINDOWS\system32\dllcache\cfgwiz.exe
+ 2004-08-04 13:00:00 46,592 ----a-w C:\WINDOWS\system32\dllcache\coadmin.dll
+ 2004-08-04 13:00:00 24,064 ----a-w C:\WINDOWS\system32\dllcache\compfilt.dll
+ 2004-08-04 13:00:00 33,792 ----a-w C:\WINDOWS\system32\dllcache\controt.dll
+ 2004-08-04 13:00:00 56,320 ----a-w C:\WINDOWS\system32\dllcache\convlog.exe
+ 2004-08-04 13:00:00 20,480 ----a-w C:\WINDOWS\system32\dllcache\counters.dll
+ 2004-08-04 13:00:00 42,496 ----a-w C:\WINDOWS\system32\dllcache\davcdata.exe
+ 2001-08-18 02:36:10 5,632 ----a-w C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
+ 2001-08-18 02:36:10 45,056 ----a-w C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
+ 2001-08-18 02:36:16 43,520 ----a-w C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
+ 2001-08-18 02:36:18 65,536 ----a-w C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
+ 2001-08-18 02:36:28 38,912 ----a-w C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
+ 2001-08-18 02:36:54 23,040 ----a-w C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
+ 2001-08-18 02:36:30 57,856 ----a-w C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
+ 2001-08-18 02:36:30 26,112 ----a-w C:\WINDOWS\system32\dllcache\EXCH_seos.dll
+ 2001-08-18 02:36:32 12,288 ----a-w C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
+ 2001-08-18 02:36:32 7,168 ----a-w C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
+ 2004-08-04 13:00:00 14,336 ----a-w C:\WINDOWS\system32\dllcache\exstrace.dll
+ 2004-05-13 04:39:48 184,435 ----a-w C:\WINDOWS\system32\dllcache\fp4amsft.dll
+ 2003-03-24 20:52:04 82,035 ----a-w C:\WINDOWS\system32\dllcache\fp4anscp.dll
+ 2003-03-24 20:52:04 147,513 ----a-w C:\WINDOWS\system32\dllcache\fp4apws.dll
+ 2003-03-24 20:52:04 49,210 ----a-w C:\WINDOWS\system32\dllcache\fp4areg.dll
+ 2003-03-24 20:52:04 102,509 ----a-w C:\WINDOWS\system32\dllcache\fp4atxt.dll
+ 2003-03-24 20:52:04 41,020 ----a-w C:\WINDOWS\system32\dllcache\fp4avnb.dll
+ 2003-03-24 20:52:04 32,826 ----a-w C:\WINDOWS\system32\dllcache\fp4avss.dll
+ 2003-03-24 20:52:04 49,212 ----a-w C:\WINDOWS\system32\dllcache\fp4awebs.dll
+ 2004-05-13 04:39:48 876,653 ----a-w C:\WINDOWS\system32\dllcache\fp4awel.dll
+ 2003-03-24 20:52:04 14,608 ----a-w C:\WINDOWS\system32\dllcache\fp98sadm.exe
+ 2003-03-24 20:52:04 109,328 ----a-w C:\WINDOWS\system32\dllcache\fp98swin.exe
+ 2003-03-24 20:52:04 24,632 ----a-w C:\WINDOWS\system32\dllcache\fpadmcgi.exe
+ 2003-03-24 20:52:04 20,541 ----a-w C:\WINDOWS\system32\dllcache\fpadmdll.dll
+ 2003-03-24 20:52:04 188,494 ----a-w C:\WINDOWS\system32\dllcache\fpcount.exe
+ 2003-03-24 20:52:04 94,208 ----a-w C:\WINDOWS\system32\dllcache\fpencode.dll
+ 2003-03-24 20:52:04 20,541 ----a-w C:\WINDOWS\system32\dllcache\fpexedll.dll
+ 2004-05-13 04:39:48 598,071 ----a-w C:\WINDOWS\system32\dllcache\fpmmc.dll
+ 2003-03-24 20:52:06 208,896 ----a-w C:\WINDOWS\system32\dllcache\fpmmcsat.dll
+ 2003-03-24 20:52:04 20,538 ----a-w C:\WINDOWS\system32\dllcache\fpremadm.exe
+ 2004-08-04 13:00:00 7,680 ----a-w C:\WINDOWS\system32\dllcache\ftpctrs2.dll
+ 2004-08-04 13:00:00 6,144 ----a-w C:\WINDOWS\system32\dllcache\ftpmib.dll
+ 2004-08-04 13:00:00 6,144 ----a-w C:\WINDOWS\system32\dllcache\ftpsapi2.dll
+ 2004-08-04 13:00:00 125,952 ----a-w C:\WINDOWS\system32\dllcache\ftpsv251.dll
+ 2004-08-04 13:00:00 32,256 ----a-w C:\WINDOWS\system32\dllcache\gzip.dll
+ 2004-08-04 13:00:00 268,288 ----a-w C:\WINDOWS\system32\dllcache\httpext.dll
+ 2004-08-04 13:00:00 8,192 ----a-w C:\WINDOWS\system32\dllcache\httpmb51.dll
+ 2004-08-04 13:00:00 61,440 ----a-w C:\WINDOWS\system32\dllcache\httpod51.dll
+ 2004-08-04 13:00:00 25,088 ----a-w C:\WINDOWS\system32\dllcache\iisadmin.dll
+ 2004-08-04 13:00:00 145,408 ----a-w C:\WINDOWS\system32\dllcache\iische51.dll
+ 2004-08-04 13:00:00 60,928 ----a-w C:\WINDOWS\system32\dllcache\iisclex4.dll
+ 2004-08-04 13:00:00 19,456 ----a-w C:\WINDOWS\system32\dllcache\iiscrmap.dll
+ 2004-08-04 13:00:00 68,608 ----a-w C:\WINDOWS\system32\dllcache\iisext51.dll
+ 2004-08-04 13:00:00 7,168 ----a-w C:\WINDOWS\system32\dllcache\iisfecnv.dll
+ 2004-08-04 13:00:00 79,872 ----a-w C:\WINDOWS\system32\dllcache\iislog51.dll
+ 2004-08-04 13:00:00 64,512 ----a-w C:\WINDOWS\system32\dllcache\iismap.dll
+ 2004-08-04 13:00:00 3,584 ----a-w C:\WINDOWS\system32\dllcache\iismui.dll
+ 2004-08-04 13:00:00 14,336 ----a-w C:\WINDOWS\system32\dllcache\iisreset.exe
+ 2004-08-04 13:00:00 5,632 ----a-w C:\WINDOWS\system32\dllcache\iisrstap.dll
+ 2004-08-04 13:00:00 30,720 ----a-w C:\WINDOWS\system32\dllcache\iisrstas.exe
+ 2004-08-04 13:00:00 133,632 ----a-w C:\WINDOWS\system32\dllcache\iisrtl.dll
+ 2004-08-04 13:00:00 6,656 ----a-w C:\WINDOWS\system32\dllcache\iissync.exe
+ 2004-08-04 13:00:00 169,984 ----a-w C:\WINDOWS\system32\dllcache\iisui.dll
+ 2004-08-04 13:00:00 15,872 ----a-w C:\WINDOWS\system32\dllcache\inetin51.exe
+ 2004-08-04 13:00:00 829,440 ----a-w C:\WINDOWS\system32\dllcache\inetmgr.dll
+ 2004-08-04 13:00:00 7,680 ----a-w C:\WINDOWS\system32\dllcache\inetmgr.exe
+ 2004-08-04 13:00:00 19,968 ----a-w C:\WINDOWS\system32\dllcache\inetsloc.dll
+ 2004-08-04 13:00:00 13,312 ----a-w C:\WINDOWS\system32\dllcache\infoadmn.dll
+ 2004-08-04 13:00:00 257,024 ----a-w C:\WINDOWS\system32\dllcache\infocomm.dll
+ 2004-08-04 13:00:00 8,704 ----a-w C:\WINDOWS\system32\dllcache\infoctrs.dll
+ 2004-08-04 13:00:00 7,168 ----a-w C:\WINDOWS\system32\dllcache\isapips.dll
+ 2004-08-04 13:00:00 68,608 ----a-w C:\WINDOWS\system32\dllcache\isatq.dll
+ 2004-08-04 13:00:00 26,624 ----a-w C:\WINDOWS\system32\dllcache\iscomlog.dll
+ 2004-08-04 13:00:00 9,216 ----a-w C:\WINDOWS\system32\dllcache\iwrps.dll
+ 2004-08-04 13:00:00 22,016 ----a-w C:\WINDOWS\system32\dllcache\logscrpt.dll
+ 2004-08-04 13:00:00 13,312 ----a-w C:\WINDOWS\system32\dllcache\lonsint.dll
+ 2004-08-04 13:00:00 37,888 ----a-w C:\WINDOWS\system32\dllcache\md5filt.dll
+ 2004-08-04 13:00:00 26,624 ----a-w C:\WINDOWS\system32\dllcache\mdsync.dll
+ 2004-08-04 13:00:00 85,504 ----a-w C:\WINDOWS\system32\dllcache\metada51.dll
+ 2004-08-04 13:00:00 53,248 ----a-w C:\WINDOWS\system32\dllcache\nextlink.dll
+ 2004-08-04 13:00:00 44,544 ----a-w C:\WINDOWS\system32\dllcache\nsepm.dll
+ 2004-08-04 13:00:00 31,744 ----a-w C:\WINDOWS\system32\dllcache\pagecnt.dll
+ 2004-08-04 13:00:00 20,992 ----a-w C:\WINDOWS\system32\dllcache\permchk.dll
+ 2004-08-04 13:00:00 7,680 ----a-w C:\WINDOWS\system32\dllcache\pwsdata.dll
+ 2004-08-04 13:00:00 4,096 ----a-w C:\WINDOWS\system32\dllcache\rpcref.dll
+ 2004-08-04 13:00:00 9,728 ----a-w C:\WINDOWS\system32\dllcache\rwnh.dll
+ 2004-08-04 13:00:00 221,696 ----a-w C:\WINDOWS\system32\dllcache\seo.dll
+ 2003-03-24 20:52:04 20,536 ----a-w C:\WINDOWS\system32\dllcache\shtml.dll
+ 2003-03-24 20:52:04 16,437 ----a-w C:\WINDOWS\system32\dllcache\shtml.exe
+ 2004-08-04 13:00:00 189,440 ----a-w C:\WINDOWS\system32\dllcache\smtpadm.dll
+ 2004-08-04 13:00:00 10,752 ----a-w C:\WINDOWS\system32\dllcache\smtpapi.dll
+ 2004-08-04 13:00:00 2,134,528 ----a-w C:\WINDOWS\system32\dllcache\smtpsnap.dll
+ 2004-08-04 13:00:00 456,704 ----a-w C:\WINDOWS\system32\dllcache\smtpsvc.dll
+ 2004-08-04 13:00:00 45,056 ----a-w C:\WINDOWS\system32\dllcache\ssinc51.dll
+ 2004-08-04 13:00:00 46,592 ----a-w C:\WINDOWS\system32\dllcache\sspifilt.dll
+ 2004-08-04 13:00:00 16,896 ----a-w C:\WINDOWS\system32\dllcache\status.dll
+ 2004-08-04 13:00:00 8,192 ----a-w C:\WINDOWS\system32\dllcache\staxmem.dll
+ 2004-08-04 13:00:00 46,592 ----a-w C:\WINDOWS\system32\dllcache\svcext51.dll
+ 2003-03-24 20:52:04 32,827 ----a-w C:\WINDOWS\system32\dllcache\tcptest.exe
+ 2003-03-24 20:52:06 16,384 ----a-w C:\WINDOWS\system32\dllcache\tcptsat.dll
+ 2004-08-04 13:00:00 31,232 ----a-w C:\WINDOWS\system32\dllcache\tools.dll
+ 2004-08-04 13:00:00 103,424 ----a-w C:\WINDOWS\system32\dllcache\uihelper.dll
+ 2004-08-04 13:00:00 4,608 ----a-w C:\WINDOWS\system32\dllcache\w3ctrs51.dll
+ 2004-08-04 13:00:00 73,728 ----a-w C:\WINDOWS\system32\dllcache\w3ext.dll
+ 2004-08-04 13:00:00 5,632 ----a-w C:\WINDOWS\system32\dllcache\w3svapi.dll
+ 2004-08-04 13:00:00 363,520 ----a-w C:\WINDOWS\system32\dllcache\w3svc.dll
+ 2004-08-04 13:00:00 76,800 ----a-w C:\WINDOWS\system32\dllcache\wam51.dll
+ 2004-08-04 13:00:00 9,216 ----a-w C:\WINDOWS\system32\dllcache\wamps51.dll
+ 2004-08-04 13:00:00 53,248 ----a-w C:\WINDOWS\system32\dllcache\wamreg51.dll
+ 2004-08-04 13:00:00 7,168 ----a-w C:\WINDOWS\system32\dllcache\wamregps.dll
- 2004-08-04 18:05:20 341,760 ----a-w C:\WINDOWS\system32\drivers\BCMWL5.SYS
+ 2006-10-13 04:26:56 604,928 ----a-w C:\WINDOWS\system32\drivers\BCMWL5.SYS
+ 2008-03-07 01:32:09 23,904 ----a-w C:\WINDOWS\system32\drivers\COH_Mon.sys
+ 2006-07-27 14:00:00 4,096 ----a-w C:\WINDOWS\system32\drivers\cvintdrv.sys
- 2006-09-19 19:44:04 15,664 ----a-w C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
+ 2008-01-29 16:01:28 16,168 ----a-w C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
+ 2008-01-30 01:24:42 34,448 ----a-w C:\WINDOWS\system32\drivers\npf.sys
+ 2007-12-01 03:57:12 279,088 ----a-w C:\WINDOWS\system32\drivers\srtsp.sys
+ 2007-12-01 03:57:12 317,616 ----a-w C:\WINDOWS\system32\drivers\srtspl.sys
+ 2007-12-01 03:57:12 43,696 ----a-w C:\WINDOWS\system32\drivers\srtspx.sys
- 2007-03-28 22:41:12 11,480 ----a-w C:\WINDOWS\system32\drivers\symdns.sys
+ 2007-08-13 20:50:34 13,616 ----a-w C:\WINDOWS\system32\drivers\symdns.sys
- 2007-03-28 22:41:14 171,928 ----a-w C:\WINDOWS\system32\drivers\symfw.sys
+ 2007-08-13 20:50:34 96,432 ----a-w C:\WINDOWS\system32\drivers\symfw.sys
- 2007-03-28 22:41:20 37,016 ----a-w C:\WINDOWS\system32\drivers\symids.sys
+ 2007-08-13 20:50:34 38,576 ----a-w C:\WINDOWS\system32\drivers\symids.sys
+ 2007-08-10 00:27:54 31,280 ----a-w C:\WINDOWS\system32\drivers\SymIM.sys
- 2007-03-28 22:41:18 47,192 ----a-w C:\WINDOWS\system32\drivers\symndis.sys
+ 2007-08-13 20:50:34 37,424 ----a-w C:\WINDOWS\system32\drivers\symndis.sys
+ 2007-08-13 20:50:34 41,008 ----a-w C:\WINDOWS\system32\drivers\symndisv.sys
- 2007-03-28 22:41:24 18,904 ----a-w C:\WINDOWS\system32\drivers\symredrv.sys
+ 2007-08-13 20:50:34 22,320 ----a-w C:\WINDOWS\system32\drivers\symredrv.sys
- 2007-03-28 22:41:26 266,552 ----a-w C:\WINDOWS\system32\drivers\symtdi.sys
+ 2007-08-13 20:50:34 188,464 ----a-w C:\WINDOWS\system32\drivers\symtdi.sys
+ 2007-11-22 19:02:40 348,416 -c--a-w C:\WINDOWS\system32\DRVSTORE\airpcap_F8F04EBB1F252 E3989033C94BEBE5C4197977961\i386\airpcap.sys
+ 2007-08-23 18:49:10 1,092,064 -c--a-w C:\WINDOWS\system32\DRVSTORE\airpcapn_C50D6D1E1D1E 13F17300F01F64F8C331251B91D0\i386\airpcapn.sys
+ 2008-02-19 19:39:44 191,424 -c--a-w C:\WINDOWS\system32\DRVSTORE\windrvr6_99DB507BB0DA 28ABF06DE42538E3ABF657BAB3AB\windrvr6.sys
+ 2004-08-04 13:00:00 14,336 ----a-w C:\WINDOWS\system32\exstrace.dll
+ 2001-08-18 02:36:16 43,520 ----a-w C:\WINDOWS\system32\fcachdll.dll
- 2007-04-05 16:37:55 208,104 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-05-31 22:16:57 212,080 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2004-08-04 13:00:00 7,680 ----a-w C:\WINDOWS\system32\ftpctrs2.dll
+ 2004-08-04 13:00:00 6,144 ----a-w C:\WINDOWS\system32\ftpsapi2.dll
- 2006-10-04 00:47:52 109,360 ----a-w C:\WINDOWS\system32\GEARAspi.dll
+ 2008-01-29 16:02:30 107,368 ----a-w C:\WINDOWS\system32\GEARAspi.dll
+ 1996-04-03 19:33:26 5,248 ----a-w C:\WINDOWS\system32\giveio.sys
+ 2004-08-04 13:00:00 68,608 ----a-w C:\WINDOWS\system32\iisext.dll
+ 2004-08-04 13:00:00 64,512 ----a-w C:\WINDOWS\system32\iismap.dll
+ 2004-08-04 13:00:00 3,584 ----a-w C:\WINDOWS\system32\iismui.dll
+ 2004-08-04 13:00:00 14,336 ----a-w C:\WINDOWS\system32\iisreset.exe
+ 2004-08-04 13:00:00 5,632 ----a-w C:\WINDOWS\system32\iisrstap.dll
+ 2004-08-04 13:00:00 133,632 ----a-w C:\WINDOWS\system32\iisRtl.dll
+ 2004-08-04 13:00:00 19,968 ----a-w C:\WINDOWS\system32\inetsloc.dll
+ 2004-08-04 13:00:00 29,696 ----a-w C:\WINDOWS\system32\inetsrv\admexs.dll
+ 2004-08-04 13:00:00 49,664 ----a-w C:\WINDOWS\system32\inetsrv\ADROT.dll
+ 2004-08-04 13:00:00 108,544 ----a-w C:\WINDOWS\system32\inetsrv\AppConf.dll
+ 2001-08-18 02:36:10 45,056 ----a-w C:\WINDOWS\system32\inetsrv\aqadmin.dll
+ 2004-08-04 13:00:00 331,264 ----a-w C:\WINDOWS\system32\inetsrv\aqueue.dll
+ 2004-08-04 13:00:00 369,664 ----a-w C:\WINDOWS\system32\inetsrv\asp.dll
+ 2004-08-04 13:00:00 29,184 ----a-w C:\WINDOWS\system32\inetsrv\asptxn.dll
+ 2004-08-04 13:00:00 9,216 ----a-w C:\WINDOWS\system32\inetsrv\authfilt.dll
+ 2004-08-04 13:00:00 45,568 ----a-w C:\WINDOWS\system32\inetsrv\browscap.dll
+ 2004-08-04 13:00:00 46,592 ----a-w C:\WINDOWS\system32\inetsrv\coadmin.dll
+ 2004-08-04 13:00:00 24,064 ----a-w C:\WINDOWS\system32\inetsrv\compfilt.dll
+ 2004-08-04 13:00:00 33,792 ----a-w C:\WINDOWS\system32\inetsrv\ContRot.dll
+ 2004-08-04 13:00:00 20,480 ----a-w C:\WINDOWS\system32\inetsrv\counters.dll
+ 2004-08-04 13:00:00 42,496 ----a-w C:\WINDOWS\system32\inetsrv\davcdata.exe
+ 2004-08-04 13:00:00 6,144 ----a-w C:\WINDOWS\system32\inetsrv\ftpmib.dll
+ 2004-08-04 13:00:00 125,952 ----a-w C:\WINDOWS\system32\inetsrv\ftpsvc2.dll
+ 2004-08-04 13:00:00 32,256 ----a-w C:\WINDOWS\system32\inetsrv\gzip.dll
+ 2004-08-04 13:00:00 268,288 ----a-w C:\WINDOWS\system32\inetsrv\httpext.dll
+ 2004-08-04 13:00:00 8,192 ----a-w C:\WINDOWS\system32\inetsrv\httpmib.dll
+ 2004-08-04 13:00:00 61,440 ----a-w C:\WINDOWS\system32\inetsrv\httpodbc.dll
+ 2004-08-04 13:00:00 25,088 ----a-w C:\WINDOWS\system32\inetsrv\iisadmin.dll
+ 2004-08-04 13:00:00 145,408 ----a-w C:\WINDOWS\system32\inetsrv\iischema.dll
+ 2004-08-04 13:00:00 60,928 ----a-w C:\WINDOWS\system32\inetsrv\iisclex4.dll
+ 2004-08-04 13:00:00 19,456 ----a-w C:\WINDOWS\system32\inetsrv\iiscrmap.dll
+ 2004-08-04 13:00:00 7,168 ----a-w C:\WINDOWS\system32\inetsrv\iisfecnv.dll
+ 2004-08-04 13:00:00 79,872 ----a-w C:\WINDOWS\system32\inetsrv\iislog.dll
+ 2004-08-04 13:00:00 30,720 ----a-w C:\WINDOWS\system32\inetsrv\iisrstas.exe
+ 2004-08-04 13:00:00 6,656 ----a-w C:\WINDOWS\system32\inetsrv\iissync.exe
+ 2004-08-04 13:00:00 169,984 ----a-w C:\WINDOWS\system32\inetsrv\iisui.dll
+ 2004-08-04 13:00:00 15,872 ----a-w C:\WINDOWS\system32\inetsrv\inetinfo.exe
+ 2004-08-04 13:00:00 829,440 ----a-w C:\WINDOWS\system32\inetsrv\inetmgr.dll
+ 2004-08-04 13:00:00 7,680 ----a-w C:\WINDOWS\system32\inetsrv\inetmgr.exe
+ 2004-08-04 13:00:00 257,024 ----a-w C:\WINDOWS\system32\inetsrv\infocomm.dll
+ 2004-08-04 13:00:00 7,168 ----a-w C:\WINDOWS\system32\inetsrv\isapips.dll
+ 2004-08-04 13:00:00 68,608 ----a-w C:\WINDOWS\system32\inetsrv\isatq.dll
+ 2004-08-04 13:00:00 26,624 ----a-w C:\WINDOWS\system32\inetsrv\iscomlog.dll
+ 2004-08-04 13:00:00 9,216 ----a-w C:\WINDOWS\system32\inetsrv\iwrps.dll
+ 2004-08-04 13:00:00 22,016 ----a-w C:\WINDOWS\system32\inetsrv\logscrpt.dll
+ 2004-08-04 13:00:00 13,312 ----a-w C:\WINDOWS\system32\inetsrv\lonsint.dll
+ 2001-08-18 02:36:18 65,536 ----a-w C:\WINDOWS\system32\inetsrv\mailmsg.dll
+ 2004-08-04 13:00:00 37,888 ----a-w C:\WINDOWS\system32\inetsrv\md5filt.dll
+ 2004-08-04 13:00:00 26,624 ----a-w C:\WINDOWS\system32\inetsrv\mdsync.dll
+ 2008-06-12 01:51:44 219,942 ----a-w C:\WINDOWS\system32\inetsrv\MetaBase.bin
+ 2004-08-04 13:00:00 85,504 ----a-w C:\WINDOWS\system32\inetsrv\metadata.dll
+ 2004-08-04 13:00:00 53,248 ----a-w C:\WINDOWS\system32\inetsrv\NEXTLINK.dll
+ 2004-08-04 13:00:00 44,544 ----a-w C:\WINDOWS\system32\inetsrv\nsepm.dll
+ 2001-08-18 02:36:28 38,912 ----a-w C:\WINDOWS\system32\inetsrv\ntfsdrv.dll
+ 2004-08-04 13:00:00 31,744 ----a-w C:\WINDOWS\system32\inetsrv\PageCnt.dll
+ 2004-08-04 13:00:00 20,992 ----a-w C:\WINDOWS\system32\inetsrv\PermChk.dll
+ 2004-08-04 13:00:00 7,680 ----a-w C:\WINDOWS\system32\inetsrv\pwsdata.dll
+ 2004-08-04 13:00:00 4,096 ----a-w C:\WINDOWS\system32\inetsrv\rpcref.dll
+ 2001-08-18 02:36:30 57,856 ----a-w C:\WINDOWS\system32\inetsrv\scripto.dll
+ 2004-08-04 13:00:00 221,696 ----a-w C:\WINDOWS\system32\inetsrv\seo.dll
+ 2001-08-18 02:36:30 26,112 ----a-w C:\WINDOWS\system32\inetsrv\seos.dll
+ 2004-08-04 13:00:00 189,440 ----a-w C:\WINDOWS\system32\inetsrv\smtpadm.dll
+ 2004-08-04 13:00:00 2,134,528 ----a-w C:\WINDOWS\system32\inetsrv\smtpsnap.dll
+ 2004-08-04 13:00:00 456,704 ----a-w C:\WINDOWS\system32\inetsrv\smtpsvc.dll
+ 2004-08-04 13:00:00 45,056 ----a-w C:\WINDOWS\system32\inetsrv\ssinc.dll
+ 2004-08-04 13:00:00 46,592 ----a-w C:\WINDOWS\system32\inetsrv\sspifilt.dll
+ 2004-08-04 13:00:00 16,896 ----a-w C:\WINDOWS\system32\inetsrv\status.dll
+ 2004-08-04 13:00:00 46,592 ----a-w C:\WINDOWS\system32\inetsrv\svcext.dll
+ 2004-08-04 13:00:00 31,232 ----a-w C:\WINDOWS\system32\inetsrv\tools.dll
+ 2004-08-04 13:00:00 103,424 ----a-w C:\WINDOWS\system32\inetsrv\uihelper.dll
+ 2004-08-04 13:00:00 73,728 ----a-w C:\WINDOWS\system32\inetsrv\w3ext.dll
+ 2004-08-04 13:00:00 363,520 ----a-w C:\WINDOWS\system32\inetsrv\w3svc.dll
+ 2004-08-04 13:00:00 76,800 ----a-w C:\WINDOWS\system32\inetsrv\wam.dll
+ 2004-08-04 13:00:00 9,216 ----a-w C:\WINDOWS\system32\inetsrv\wamps.dll
+ 2004-08-04 13:00:00 53,248 ----a-w C:\WINDOWS\system32\inetsrv\wamreg.dll
+ 2003-08-21 19:00:58 83,640 ----a-w C:\WINDOWS\system32\Inetsrv6\certobj6.dll
+ 2003-08-21 19:01:00 213,176 ----a-w C:\WINDOWS\system32\Inetsrv6\iisui6.dll
+ 2003-08-21 19:00:58 68,792 ----a-w C:\WINDOWS\system32\Inetsrv6\IISUiObj6.dll
+ 2003-09-04 20:13:22 1,032,376 ----a-w C:\WINDOWS\system32\Inetsrv6\inetmgr6.dll
+ 2003-08-21 19:00:56 112,312 ----a-w C:\WINDOWS\system32\Inetsrv6\uihelper6.dll
+ 1999-01-28 19:44:20 49,152 ----a-w C:\WINDOWS\system32\inetwh32.dll
+ 2004-08-04 13:00:00 13,312 ----a-w C:\WINDOWS\system32\infoadmn.dll
+ 2004-08-04 13:00:00 8,704 ----a-w C:\WINDOWS\system32\infoctrs.dll
+ 2006-04-10 14:00:00 417,792 ----a-w C:\WINDOWS\system32\instrsup.dll
+ 2006-07-25 21:28:02 45,056 ----a-w C:\WINDOWS\system32\lkads.exe
+ 2006-07-25 21:30:26 86,016 ----a-w C:\WINDOWS\system32\lkbrow.dll
+ 2006-06-19 18:01:52 688,190 ----a-w C:\WINDOWS\system32\lkcitdl.exe
+ 2006-07-25 21:30:26 200,704 ----a-w C:\WINDOWS\system32\lkdynam.dll
+ 2006-05-10 19:55:36 753,725 ----a-w C:\WINDOWS\system32\lkhist.dll
+ 2003-04-09 14:25:14 708,678 ----a-w C:\WINDOWS\system32\lkhistdl.dll
+ 2006-05-10 19:55:36 188,478 ----a-w C:\WINDOWS\system32\lkmgrtn.dll
+ 2003-04-09 14:26:32 176,195 ----a-w C:\WINDOWS\system32\lkmxs.dll
+ 2006-07-25 21:30:26 221,184 ----a-w C:\WINDOWS\system32\lkobenv.dll
+ 2006-07-25 21:30:26 69,632 ----a-w C:\WINDOWS\system32\lkproc.dll
+ 2006-07-25 21:30:26 229,376 ----a-w C:\WINDOWS\system32\lkrealt.dll
+ 2006-07-25 21:30:26 147,456 ----a-w C:\WINDOWS\system32\lksec.dll
+ 2006-07-25 21:30:26 319,488 ----a-w C:\WINDOWS\system32\lksock.dll
+ 2006-07-25 21:30:26 77,824 ----a-w C:\WINDOWS\system32\lkstime.dll
+ 2006-07-25 21:28:10 57,344 ----a-w C:\WINDOWS\system32\lktsrv.exe
- 2007-04-13 19:19:52 7,680 ----a-w C:\WINDOWS\system32\lsdelete.exe
+ 2007-12-14 16:32:52 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
- 2003-03-19 10:20:00 1,060,864 ------w C:\WINDOWS\system32\mfc71.dll
+ 2003-03-19 01:20:00

Member Panel

Sponsors and Ads

Join the Team

Live Tag Cloud