Jump to content

hyebba

Honorary Members
  • Posts

    56
  • Joined

  • Last visited

Reputation

0 Neutral
  1. Oh, I meant to ask... Is there a possibility I have some spyware that's hiding? If so, is there a trustworthy removal tool I can use? what about a live monitoring tool? Thanks Chamber!
  2. Hi Chamber...I apologize for the delay in responding. My internet connection has been pretty much caput the last couple of days.... As requested, below are the dds files: DDS File DDS (Ver_09-12-01.01) - NTFSx86 Run by Admin at 12:40:30.29 on Sun 12/20/2009 Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_17 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.688 [GMT -5:00] AV: avast! antivirus 4.8.1368 [VPS 091220-0] *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\system32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe C:\Program Files\Java\jre6\bin\jqs.exe svchost.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\Program Files\Java\jre6\bin\jusched.exe C:\WINDOWS\system32\ctfmon.exe C:\WINDOWS\system32\wscntfy.exe C:\Documents and Settings\Admin\Desktop\dds.scr ============== Pseudo HJT Report =============== uInternet Connection Wizard,ShellNext = hxxp://shell.windows.com/fileassoc/0409/xml/redir.asp?Ext=application BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe mRun: [MSConfig] c:\windows\pchealth\helpctr\binaries\MSConfig.exe /auto mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe" mRun: [sunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe" IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe Trusted Zone: microsoft.com\*.windowsupate Trusted Zone: windowsupdate.com DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: {1E71BBEA-F4BC-4EDB-9AD1-0F3BA58B0860} = 208.67.222.222,208.67.220.220 Notify: igfxcui - igfxdev.dll ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\admin\applic~1\mozilla\firefox\profiles\znrrloia.default\ FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\ FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} ---- FIREFOX POLICIES ---- c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); ============= SERVICES / DRIVERS =============== R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-12-7 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-12-7 20560] R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2009-12-7 138680] R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328] S3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2009-12-7 254040] S3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2009-12-7 352920] S3 dlcd_device;dlcd_device;c:\windows\system32\dlcdcoms.exe -service --> c:\windows\system32\dlcdcoms.exe -service [?] =============== Created Last 30 ================ 2009-12-15 19:54:00 73728 ----a-w- c:\windows\system32\javacpl.cpl 2009-12-15 19:54:00 411368 ----a-w- c:\windows\system32\deploytk.dll 2009-12-12 22:53:50 0 d-----w- c:\windows\pss 2009-12-11 22:33:05 0 ----a-w- c:\documents and settings\admin\defogger_reenable 2009-12-11 20:11:16 0 d-sh--w- c:\documents and settings\admin\IECompatCache 2009-12-11 06:35:52 1089593 -c----w- c:\windows\system32\dllcache\ntprint.cat 2009-12-11 06:14:34 0 d-----w- c:\windows\system32\XPSViewer 2009-12-11 06:13:51 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll 2009-12-11 06:13:51 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe 2009-12-11 06:13:51 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll 2009-12-11 06:13:51 575488 ------w- c:\windows\system32\xpsshhdr.dll 2009-12-11 06:13:51 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll 2009-12-11 06:13:51 1676288 ------w- c:\windows\system32\xpssvcs.dll 2009-12-11 06:13:51 117760 ------w- c:\windows\system32\prntvpt.dll 2009-12-11 06:13:50 0 d-----w- C:\935a1f42d14423e912029a9e 2009-12-10 04:39:16 0 d-----w- c:\docume~1\admin\applic~1\Malwarebytes 2009-12-10 04:39:12 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys 2009-12-10 04:39:10 19160 ----a-w- c:\windows\system32\drivers\mbam.sys 2009-12-10 04:39:10 0 d-----w- c:\program files\Malwarebytes' Anti-Malware 2009-12-10 04:39:10 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes 2009-12-08 04:57:28 7680 --sha-w- c:\windows\Thumbs.db 2009-12-07 20:24:50 172032 ----a-w- c:\windows\system32\stacapi.dll 2009-12-07 20:24:49 0 d-----w- c:\program files\SigmaTel 2009-12-07 20:08:10 135168 ----a-w- c:\windows\system32\igfxres.dll 2009-12-07 20:06:03 0 d-----w- c:\program files\Creative 2009-12-07 20:03:59 1372 ----a-r- c:\windows\system32\dlcd.loc 2009-12-07 20:03:19 65536 ----a-r- c:\windows\system32\dlcdcfg.dll 2009-12-07 20:03:17 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys 2009-12-07 20:03:17 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys 2009-12-07 20:03:13 87040 -c--a-w- c:\windows\system32\dllcache\wiafbdrv.dll 2009-12-07 20:03:13 87040 ----a-w- c:\windows\system32\wiafbdrv.dll 2009-12-07 20:02:31 0 d-----w- c:\program files\Dell Photo AIO Printer 944 2009-12-07 20:02:21 0 d-----w- c:\temp\{9F5FBC24-EFE2-4f90-B498-EC0FB7D47D15} 2009-12-07 19:17:46 6272 -c--a-w- c:\windows\system32\dllcache\splitter.sys 2009-12-07 19:17:03 0 d-----w- c:\program files\IDT 2009-12-07 19:16:59 60160 -c--a-w- c:\windows\system32\dllcache\drmk.sys 2009-12-07 19:16:59 60160 ----a-w- c:\windows\system32\drivers\drmk.sys 2009-12-07 19:03:55 0 d-----w- c:\windows\system32\scripting 2009-12-07 19:03:55 0 d-----w- c:\windows\system32\en 2009-12-07 19:03:55 0 d-----w- c:\windows\system32\bits 2009-12-07 19:03:55 0 d-----w- c:\windows\l2schemas 2009-12-07 19:01:03 0 d-----w- c:\windows\network diagnostic 2009-12-07 18:59:25 0 d-----w- c:\windows\system32\ReinstallBackups 2009-12-07 18:49:02 25471 ------w- c:\windows\system32\drivers\watv10nt.sys 2009-12-07 18:49:02 22271 ------w- c:\windows\system32\drivers\watv06nt.sys 2009-12-07 18:49:02 11935 ------w- c:\windows\system32\drivers\wadv11nt.sys 2009-12-07 18:49:02 11871 ------w- c:\windows\system32\drivers\wadv09nt.sys 2009-12-07 18:49:02 11807 ------w- c:\windows\system32\drivers\wadv07nt.sys 2009-12-07 18:49:02 11295 ------w- c:\windows\system32\drivers\wadv08nt.sys 2009-12-07 18:47:14 0 d-sh--w- c:\documents and settings\admin\PrivacIE 2009-12-07 18:46:34 0 d-sh--w- c:\documents and settings\admin\IETldCache 2009-12-07 18:42:07 0 dc-h--w- c:\windows\ie8 2009-12-07 18:32:09 0 d-----w- c:\windows\ServicePackFiles 2009-12-07 17:54:35 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys 2009-12-07 17:54:34 691712 -c----w- c:\windows\system32\dllcache\inetcomm.dll 2009-12-07 17:54:30 333952 -c----w- c:\windows\system32\dllcache\srv.sys 2009-12-07 17:54:10 1315328 -c----w- c:\windows\system32\dllcache\msoe.dll 2009-12-07 17:54:08 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll 2009-12-07 17:48:36 455296 -c----w- c:\windows\system32\dllcache\mrxsmb.sys 2009-12-07 17:39:41 0 d-sh--w- c:\documents and settings\admin\UserData 2009-12-07 17:36:20 0 d-----w- c:\windows\system32\PreInstall 2009-12-07 17:36:00 272128 -c----w- c:\windows\system32\dllcache\bthport.sys 2009-12-07 17:36:00 272128 ------w- c:\windows\system32\drivers\bthport.sys 2009-12-07 17:26:53 0 d-----w- c:\windows\system32\SoftwareDistribution 2009-12-07 17:23:10 256712 ----a-w- c:\windows\system32\PROUnstl.exe 2009-12-07 17:23:10 1904 ------w- c:\windows\system32\SetupBD.din 2009-12-07 17:21:12 0 d-----w- c:\program files\CONEXANT 2009-12-07 17:19:10 0 d-----w- c:\program files\NetWaiting 2009-12-07 16:55:56 0 d-----w- c:\program files\InterActual 2009-12-07 16:55:53 0 d-----w- c:\program files\common files\Sonic Shared 2009-12-07 16:55:48 0 d-----w- c:\program files\Dell 2009-12-07 16:27:03 0 d-----w- c:\program files\RGB 2009-12-07 16:25:38 0 d-----w- c:\program files\GemMaster 2009-12-07 16:15:59 0 d-sh--w- c:\documents and settings\all users\DRM 2009-12-07 16:15:40 0 d--h--w- c:\program files\WindowsUpdate 2009-12-07 16:14:58 0 d-----w- c:\program files\common files\MSSoap 2009-12-07 16:13:12 0 d-----w- c:\program files\Online Services 2009-12-07 16:12:39 0 d-----w- c:\program files\Windows Plus 2009-12-07 16:11:32 0 d-----w- c:\program files\OFF_Messenger 2009-12-07 16:11:29 0 d-----w- c:\program files\MSN Gaming Zone 2009-12-07 16:10:59 0 d-----w- c:\program files\Windows NT 2009-12-07 11:05:50 0 d-----w- c:\program files\common files\ODBC 2009-12-07 11:05:48 0 d-----w- c:\program files\common files\SpeechEngines 2009-12-07 11:05:29 0 d-----r- c:\documents and settings\all users\Documents ==================== Find3M ==================== 2009-12-11 19:51:33 2864 ----a-w- c:\windows\system32\winsock.dll 2009-12-07 20:09:30 776 ----a-w- c:\windows\system32\drivers\sthdae.log 2009-12-07 16:13:33 21640 ----a-w- c:\windows\system32\emptyregdb.dat 2009-10-29 07:45:38 916480 ----a-w- c:\windows\system32\wininet.dll 2009-10-21 05:38:36 75776 ----a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:38:36 25088 ----a-w- c:\windows\system32\httpapi.dll 2009-10-13 10:30:16 270336 ----a-w- c:\windows\system32\oakley.dll 2009-10-12 13:38:19 149504 ----a-w- c:\windows\system32\rastls.dll 2009-10-12 13:38:18 79872 ----a-w- c:\windows\system32\raschap.dll 2009-10-09 23:35:44 182784 ----a-w- c:\windows\system32\Ncs2Setp.dll 2009-10-09 23:27:32 768632 ----a-w- c:\windows\system32\ncs2dmix.dll 2009-10-09 23:27:30 547448 ----a-w- c:\windows\system32\accesor.dll 2009-10-09 23:13:04 141944 ----a-w- c:\windows\system32\ncs2instutility.dll 2009-10-09 23:05:46 1677944 ----a-w- c:\windows\system32\ncscolib.dll 2009-09-25 05:48:59 81920 ------w- c:\windows\system32\ieencode.dll ============= FINISH: 12:40:46.07 =============== Attach File UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG. IF REQUESTED, ZIP IT UP & ATTACH IT DDS (Ver_09-12-01.01) Microsoft Windows XP Professional Boot Device: \Device\HarddiskVolume1 Install Date: 12/7/2009 11:20:14 AM System Uptime: 12/20/2009 10:36:41 AM (2 hours ago) Motherboard: Dell Inc. | | 0JC474 Processor: Intel® Pentium® 4 CPU 3.00GHz | Microprocessor | 2992/800mhz ==== Disk Partitions ========================= A: is Removable C: is FIXED (NTFS) - 298 GiB total, 285.596 GiB free. D: is CDROM () E: is CDROM () F: is Removable ==== Disabled Device Manager Items ============= ==== System Restore Points =================== RP1: 12/7/2009 11:25:31 AM - Installed Digital Media Feature Pack for Windows Media Center 2005 RP2: 12/7/2009 11:27:08 AM - Installed Sonic Encoders RP3: 12/7/2009 11:29:12 AM - Installed Windows Media Player 10 KB903157. RP4: 12/7/2009 11:29:29 AM - Installed Windows XP KB891593. RP5: 12/7/2009 11:29:37 AM - Installed Windows XP KB895961. RP6: 12/7/2009 11:29:46 AM - Installed Windows XP KB899337. RP7: 12/7/2009 11:29:54 AM - Installed Windows XP KB912812. RP8: 12/7/2009 11:30:05 AM - Installed Windows XP KB899510. RP9: 12/7/2009 11:30:15 AM - Installed Windows XP KB888795. RP10: 12/7/2009 11:30:24 AM - Installed Windows XP KB902841. RP11: 12/7/2009 11:31:19 AM - Installed Windows XP Media Center Edition 2005 Update Rollup 2. RP12: 12/7/2009 11:55:47 AM - Installed Dell CinePlayer RP13: 12/7/2009 12:19:10 PM - Installed NetWaiting RP14: 12/7/2009 12:23:14 PM - Installed Intel® Network Connections. RP15: 12/7/2009 12:36:16 PM - Software Distribution Service 3.0 RP16: 12/7/2009 1:21:21 PM - Software Distribution Service 3.0 RP17: 12/7/2009 1:30:03 PM - Software Distribution Service 3.0 RP18: 12/7/2009 1:53:39 PM - Software Distribution Service 3.0 RP19: 12/7/2009 2:40:49 PM - Installed CinepPlayer 30 Update RP20: 12/7/2009 3:06:03 PM - Installed Mixer RP21: 12/7/2009 3:06:08 PM - Installed Engine Installer RP22: 12/7/2009 3:06:15 PM - Installed Sound Blaster Audigy ADVANCED MB Demo RP23: 12/7/2009 3:25:07 PM - Installed SigmaTel Audio RP24: 12/8/2009 7:16:52 PM - System Checkpoint RP25: 12/9/2009 9:00:13 AM - Software Distribution Service 3.0 RP26: 12/10/2009 9:00:14 AM - Software Distribution Service 3.0 RP27: 12/11/2009 1:12:23 AM - Software Distribution Service 3.0 RP28: 12/11/2009 9:00:14 AM - Software Distribution Service 3.0 RP29: 12/12/2009 12:47:03 PM - System Checkpoint RP30: 12/13/2009 1:56:01 PM - System Checkpoint RP31: 12/14/2009 11:43:32 AM - Installed Adobe Reader 9.2. RP32: 12/15/2009 12:24:50 PM - System Checkpoint RP33: 12/15/2009 2:53:43 PM - Installed Java 6 Update 17 RP34: 12/16/2009 6:21:11 PM - System Checkpoint RP35: 12/17/2009 6:55:17 PM - System Checkpoint RP36: 12/18/2009 8:13:49 PM - System Checkpoint RP37: 12/19/2009 8:15:53 PM - System Checkpoint ==== Installed Programs ====================== Acrobat.com Adobe AIR Adobe Flash Player 10 ActiveX Adobe Flash Player 10 Plugin Adobe Reader 9.2 avast! Antivirus Conexant D850 56K V.9x DFVc Modem Dell CinePlayer Dell Driver Download Manager Dell Photo AIO Printer 944 FileZilla Client 3.3.0.1 Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595) Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484) Hotfix for Windows Media Player 10 (KB903157) Hotfix for Windows XP (KB952287) Hotfix for Windows XP (KB954550-v5) Hotfix for Windows XP (KB961118) Hotfix for Windows XP (KB976098-v2) Intel® Graphics Media Accelerator Driver Intel® Network Connections 14.7.23.0 Java 6 Update 17 Malwarebytes' Anti-Malware Microsoft .NET Framework 1.1 Microsoft .NET Framework 1.1 Security Update (KB953297) Microsoft .NET Framework 2.0 Service Pack 2 Microsoft .NET Framework 3.0 Service Pack 2 Microsoft .NET Framework 3.5 SP1 Mixer Mozilla Firefox (3.5.6) MSN NetWaiting Security Update for Windows Internet Explorer 8 (KB971961) Security Update for Windows Internet Explorer 8 (KB974455) Security Update for Windows Internet Explorer 8 (KB976325) Security Update for Windows Media Player (KB952069) Security Update for Windows Media Player (KB954155) Security Update for Windows Media Player (KB968816) Security Update for Windows Media Player (KB973540) Security Update for Windows XP (KB923561) Security Update for Windows XP (KB923789) Security Update for Windows XP (KB941569) Security Update for Windows XP (KB946648) Security Update for Windows XP (KB950762) Security Update for Windows XP (KB950974) Security Update for Windows XP (KB951066) Security Update for Windows XP (KB951376-v2) Security Update for Windows XP (KB951748) Security Update for Windows XP (KB952004) Security Update for Windows XP (KB952954) Security Update for Windows XP (KB955069) Security Update for Windows XP (KB956572) Security Update for Windows XP (KB956744) Security Update for Windows XP (KB956802) Security Update for Windows XP (KB956803) Security Update for Windows XP (KB956844) Security Update for Windows XP (KB957097) Security Update for Windows XP (KB958644) Security Update for Windows XP (KB958687) Security Update for Windows XP (KB958869) Security Update for Windows XP (KB959426) Security Update for Windows XP (KB960225) Security Update for Windows XP (KB960803) Security Update for Windows XP (KB960859) Security Update for Windows XP (KB961371-v2) Security Update for Windows XP (KB961501) Security Update for Windows XP (KB969059) Security Update for Windows XP (KB969947) Security Update for Windows XP (KB970238) Security Update for Windows XP (KB970430) Security Update for Windows XP (KB971486) Security Update for Windows XP (KB971557) Security Update for Windows XP (KB971633) Security Update for Windows XP (KB971657) Security Update for Windows XP (KB973354) Security Update for Windows XP (KB973507) Security Update for Windows XP (KB973525) Security Update for Windows XP (KB973869) Security Update for Windows XP (KB973904) Security Update for Windows XP (KB974112) Security Update for Windows XP (KB974318) Security Update for Windows XP (KB974392) Security Update for Windows XP (KB974455) Security Update for Windows XP (KB974571) Security Update for Windows XP (KB975025) Security Update for Windows XP (KB975467) SigmaTel Audio Sonic Encoders Sound Blaster Audigy ADVANCED MB Demo Update for Microsoft .NET Framework 3.5 SP1 (KB963707) Update for Windows Internet Explorer 8 (KB975364) Update for Windows Media Player 10 (KB913800) Update for Windows XP (KB951978) Update for Windows XP (KB967715) Update for Windows XP (KB968389) Update for Windows XP (KB971737) Update for Windows XP (KB973687) Update for Windows XP (KB973815) Update Rollup 2 for Windows XP Media Center Edition 2005 WebFldrs XP Windows Genuine Advantage Validation Tool (KB892130) Windows Internet Explorer 8 Windows Media Format Runtime Windows XP Media Center Edition 2005 KB908250 Windows XP Media Center Edition 2005 KB973768 Windows XP Service Pack 3 ==== Event Viewer Messages From Past Week ======== 12/19/2009 8:33:35 PM, error: Service Control Manager [7034] - The Java Quick Starter service terminated unexpectedly. It has done this 1 time(s). 12/15/2009 2:46:01 PM, error: Service Control Manager [7023] - The IPSEC Services service terminated with the following error: The authentication service is unknown. 12/15/2009 2:45:52 PM, error: Dhcp [1002] - The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). 12/15/2009 2:44:43 PM, error: Service Control Manager [7034] - The dlcd_device service terminated unexpectedly. It has done this 1 time(s). ==== End Of File ===========================
  3. Hi! I did recently reformat my computer (about two weeks ago) I completed all the tasks you gave me. The Kapersky did not have a report. It did run a complete scan, I guess since it didn't find any infections there's just no report?? I'm wondering if that last scan by MB that caught those four infections may have gotten the system clean. Thank you for your continued help. It is so very appreciated. Heather
  4. Last Log File - Extras.txt OTL Extras logfile created on: 12/14/2009 10:16:16 AM - Run 1 OTL by OldTimer - Version 3.1.17.0 Folder = C:\Documents and Settings\Heather\Desktop Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1014.08 Mb Total Physical Memory | 615.89 Mb Available Physical Memory | 60.73% Memory free 2.38 Gb Paging File | 2.05 Gb Available in Paging File | 86.17% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 298.08 Gb Total Space | 284.96 Gb Free Space | 95.60% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: MAINADMINCOMP Current User Name: Heather Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Extra Registry (SafeList) ========== ========== File Associations ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) ========== Shell Spawning ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) ========== Security Center Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007 ========== Authorized Applications List ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Mozilla Firefox -- (Mozilla Corporation) ========== HKEY_LOCAL_MACHINE Uninstall List ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3F92ABBB-6BBF-11D5-B229-002078017FBF}" = NetWaiting "{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}" = Dell CinePlayer "{4449B83C-1257-4355-8F3E-71280E922B5F}" = Intel® Network Connections 14.7.23.0 "{8A708DD8-A5E6-11D4-A706-000629E95E20}" = Intel® Graphics Media Accelerator Driver "{9941F0AA-B903-4AF4-A055-83A9815CC011}" = Sonic Encoders "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}" = SigmaTel Audio "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{E2883E8F-472F-4fb0-9522-AC9BF37916A7}" = Adobe Download Manager "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "avast!" = avast! Antivirus "CNXT_MODEM_PCI_VEN_14F1&DEV_2F20&SUBSYS_200F14F1" = Conexant D850 56K V.9x DFVc Modem "CTMBDemo" = Sound Blaster Audigy ADVANCED MB Demo "Dell Photo AIO Printer 944" = Dell Photo AIO Printer 944 "FileZilla Client" = FileZilla Client 3.3.0.1 "ie8" = Windows Internet Explorer 8 "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "MIXERLITE" = Mixer "Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5) "MSNINST" = MSN "Windows Media Format Runtime" = Windows Media Format Runtime "Windows XP Service Pack" = Windows XP Service Pack 3 ========== Last 10 Event Log Errors ========== [ Antivirus Events ] Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestGetFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestS: chest s_RestoreFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestRestoreFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestGetFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestS: chest s_RestoreFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestRestoreFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = Error in aswChestC: chestGetFile Error 32. Error - 12/11/2009 3:51:33 PM | Computer Name = MAINADMINCOMP | Source = avast! | ID = 33554522 Description = aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. [ Application Events ] Error - 12/7/2009 12:14:01 PM | Computer Name = MAINADMINCOMP | Source = ASP.NET 1.0.3705.6018 | ID = 1031 Description = Error - 12/7/2009 2:18:09 PM | Computer Name = MAINADMINCOMP | Source = Application Hang | ID = 1002 Description = Hanging application IEXPLORE.EXE, version 6.0.2900.2180, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 12/7/2009 2:18:12 PM | Computer Name = MAINADMINCOMP | Source = Application Hang | ID = 1001 Description = Fault bucket 126637809. Error - 12/7/2009 3:53:06 PM | Computer Name = MAINADMINCOMP | Source = Application Error | ID = 1000 Description = Faulting application iexplore.exe, version 8.0.6001.18702, faulting module ntdll.dll, version 5.1.2600.5755, fault address 0x00028c0b. Error - 12/7/2009 3:53:08 PM | Computer Name = MAINADMINCOMP | Source = Application Error | ID = 1001 Description = Fault bucket 1228238494. Error - 12/7/2009 4:43:42 PM | Computer Name = MAINADMINCOMP | Source = Application Hang | ID = 1002 Description = Hanging application filezilla.exe, version 3.3.0.1, hang module hungapp, version 0.0.0.0, hang address 0x00000000. Error - 12/7/2009 4:43:45 PM | Computer Name = MAINADMINCOMP | Source = Application Hang | ID = 1001 Description = Fault bucket 1562395260. [ System Events ] Error - 12/12/2009 5:34:00 PM | Computer Name = MAINADMINCOMP | Source = Dhcp | ID = 1002 Description = The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). Error - 12/12/2009 6:57:52 PM | Computer Name = MAINADMINCOMP | Source = Dhcp | ID = 1002 Description = The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). Error - 12/12/2009 6:57:57 PM | Computer Name = MAINADMINCOMP | Source = Service Control Manager | ID = 7023 Description = The IPSEC Services service terminated with the following error: %%1747 Error - 12/12/2009 11:25:25 PM | Computer Name = MAINADMINCOMP | Source = Dhcp | ID = 1002 Description = The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). Error - 12/12/2009 11:28:35 PM | Computer Name = MAINADMINCOMP | Source = Dhcp | ID = 1002 Description = The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). Error - 12/13/2009 12:01:49 AM | Computer Name = MAINADMINCOMP | Source = Dhcp | ID = 1002 Description = The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). Error - 12/13/2009 12:01:54 AM | Computer Name = MAINADMINCOMP | Source = Service Control Manager | ID = 7023 Description = The IPSEC Services service terminated with the following error: %%1747 Error - 12/13/2009 12:01:55 AM | Computer Name = MAINADMINCOMP | Source = Service Control Manager | ID = 7026 Description = The following boot-start or system-start driver(s) failed to load: PCIIde Error - 12/13/2009 12:02:08 AM | Computer Name = MAINADMINCOMP | Source = sr | ID = 1 Description = The System Restore filter encountered the unexpected error '0xC0000001' while processing the file '' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume. Error - 12/13/2009 12:45:46 AM | Computer Name = MAINADMINCOMP | Source = Dhcp | ID = 1002 Description = The IP address lease 192.168.251.199 for the Network Card with network address 00167636F2DA has been denied by the DHCP server 192.168.251.1 (The DHCP Server sent a DHCPNACK message). < End of report >
  5. OTL Logs Pt. 3 ========== Files - Modified Within 30 Days ========== [2009/12/14 10:15:30 | 00,538,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Heather\Desktop\OTL.exe [2009/12/13 17:03:56 | 01,048,576 | -H-- | M] () -- C:\Documents and Settings\Heather\NTUSER.DAT [2009/12/12 23:02:30 | 00,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2009/12/12 23:02:30 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2009/12/12 23:02:30 | 00,000,209 | -HS- | M] () -- C:\boot.ini [2009/12/12 23:01:52 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2009/12/12 23:01:47 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2009/12/12 23:01:17 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\Heather\ntuser.ini [2009/12/12 17:57:14 | 03,221,148 | -H-- | M] () -- C:\Documents and Settings\Heather\Local Settings\Application Data\IconCache.db [2009/12/11 15:47:31 | 00,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2009/12/11 14:51:33 | 00,002,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\winsock.dll [2009/12/11 14:51:33 | 00,002,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsock.dll [2009/12/11 12:09:33 | 00,098,256 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009/12/11 01:17:54 | 00,492,378 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2009/12/11 01:17:54 | 00,434,838 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2009/12/11 01:17:54 | 00,068,828 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2009/12/10 09:02:12 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2009/12/09 23:39:15 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2009/12/08 16:21:57 | 00,001,857 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\MSN Installer.lnk [2009/12/07 17:18:18 | 00,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2009/12/07 15:29:04 | 00,001,663 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\FileZilla Client.lnk [2009/12/07 14:16:02 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2009/12/07 14:14:09 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2009/12/07 14:00:48 | 00,250,048 | RHS- | M] () -- C:\ntldr [2009/12/07 12:33:10 | 00,001,709 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk [2009/12/07 12:33:07 | 00,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2009/12/07 11:55:59 | 00,000,056 | ---- | M] () -- C:\WINDOWS\WININIT.INI [2009/12/07 11:21:15 | 00,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2009/12/07 11:20:28 | 00,000,237 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2009/12/07 11:17:14 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2009/12/07 11:17:14 | 00,000,000 | RHS- | M] () -- C:\IO.SYS [2009/12/07 11:17:14 | 00,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2009/12/07 11:17:14 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS [2009/12/07 11:17:14 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2009/12/07 11:17:03 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2009/12/07 11:17:03 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2009/12/07 11:16:54 | 00,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2009/12/07 11:15:50 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2009/12/07 11:15:50 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2009/12/07 11:13:33 | 00,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2009/12/07 11:13:23 | 00,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2009/12/07 11:13:23 | 00,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2009/12/07 06:05:48 | 00,000,231 | ---- | M] () -- C:\WINDOWS\SYSTEM.I~I [2009/12/03 16:14:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2009/12/03 16:13:56 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2009/11/24 18:54:29 | 01,280,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2009/11/24 18:51:09 | 00,093,424 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2009/11/24 18:50:59 | 00,094,160 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2009/11/24 18:50:12 | 00,114,768 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2009/11/24 18:50:00 | 00,020,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2009/11/24 18:49:07 | 00,048,560 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2009/11/24 18:48:57 | 00,023,120 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2009/11/24 18:47:54 | 00,027,408 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2009/11/24 18:47:28 | 00,097,480 | ---- | M] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] ========== Files Created - No Company Name ========== [2009/12/11 15:47:30 | 00,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk [2009/12/09 23:39:15 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk [2009/12/08 16:21:57 | 00,001,857 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\MSN Installer.lnk [2009/12/08 15:41:15 | 00,000,178 | -HS- | C] () -- C:\Documents and Settings\Heather\ntuser.ini [2009/12/08 15:41:14 | 01,048,576 | -H-- | C] () -- C:\Documents and Settings\Heather\NTUSER.DAT [2009/12/07 17:18:18 | 00,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2009/12/07 15:29:04 | 00,001,663 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\FileZilla Client.lnk [2009/12/07 15:03:59 | 00,001,372 | R--- | C] () -- C:\WINDOWS\System32\dlcd.loc [2009/12/07 15:03:19 | 00,065,536 | R--- | C] () -- C:\WINDOWS\System32\dlcdcfg.dll [2009/12/07 15:02:43 | 00,957,526 | ---- | C] () -- C:\WINDOWS\System32\dlcdhelp.hlp [2009/12/07 15:02:43 | 00,159,970 | ---- | C] () -- C:\WINDOWS\System32\dlcddpp.hlp [2009/12/07 15:02:43 | 00,022,885 | ---- | C] () -- C:\WINDOWS\System32\dlcdceip.hlp [2009/12/07 15:02:43 | 00,007,481 | ---- | C] () -- C:\WINDOWS\System32\dlcdhelp.cnt [2009/12/07 15:02:42 | 00,638,976 | ---- | C] () -- C:\WINDOWS\System32\dlcdpmui.dll [2009/12/07 15:02:41 | 00,372,736 | ---- | C] () -- C:\WINDOWS\System32\dlcdih.exe [2009/12/07 15:02:41 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\dlcdins.dll [2009/12/07 15:02:41 | 00,106,496 | ---- | C] () -- C:\WINDOWS\System32\dlcdinsr.dll [2009/12/07 15:02:41 | 00,040,960 | ---- | C] () -- C:\WINDOWS\System32\dlcdvs.dll [2009/12/07 15:02:40 | 00,483,328 | ---- | C] () -- C:\WINDOWS\System32\dlcdlmpm.dll [2009/12/07 15:02:40 | 00,413,696 | ---- | C] () -- C:\WINDOWS\System32\dlcdcomm.dll [2009/12/07 15:02:40 | 00,368,640 | ---- | C] () -- C:\WINDOWS\System32\dlcdcfg.exe [2009/12/07 15:02:40 | 00,114,688 | ---- | C] () -- C:\WINDOWS\System32\dlcdpplc.dll [2009/12/07 15:02:39 | 01,134,592 | ---- | C] () -- C:\WINDOWS\System32\dlcdusb1.dll [2009/12/07 15:02:39 | 00,770,048 | ---- | C] () -- C:\WINDOWS\System32\dlcdhbn3.dll [2009/12/07 15:02:39 | 00,704,512 | ---- | C] () -- C:\WINDOWS\System32\dlcdcomc.dll [2009/12/07 15:02:39 | 00,491,520 | ---- | C] () -- C:\WINDOWS\System32\dlcdcoms.exe [2009/12/07 15:02:39 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\dlcdprox.dll [2009/12/07 15:02:38 | 01,183,744 | ---- | C] () -- C:\WINDOWS\System32\dlcdserv.dll [2009/12/07 15:02:37 | 00,430,080 | ---- | C] () -- C:\WINDOWS\System32\dlcdutil.dll [2009/12/07 15:02:37 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\dlcdcu.dll [2009/12/07 15:02:37 | 00,036,864 | ---- | C] () -- C:\WINDOWS\System32\dlcdcur.dll [2009/12/07 15:02:35 | 00,176,128 | ---- | C] () -- C:\WINDOWS\System32\dlcdinsb.dll [2009/12/07 15:02:35 | 00,086,016 | ---- | C] () -- C:\WINDOWS\System32\dlcdcub.dll [2009/12/07 15:02:34 | 00,131,072 | ---- | C] () -- C:\WINDOWS\System32\dlcdjswr.dll [2009/12/07 13:48:57 | 00,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img [2009/12/07 13:48:47 | 00,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty [2009/12/07 13:48:10 | 00,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod [2009/12/07 12:33:10 | 00,001,709 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\avast! Antivirus.lnk [2009/12/07 12:32:48 | 00,380,928 | ---- | C] () -- C:\WINDOWS\System32\actskin4.ocx [2009/12/07 12:23:10 | 00,001,904 | ---- | C] () -- C:\WINDOWS\System32\SetupBD.din [2009/12/07 12:21:06 | 00,128,398 | ---- | C] () -- C:\WINDOWS\System32\drivers\del200f.cty [2009/12/07 11:55:59 | 00,000,056 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2009/12/07 11:46:36 | 02,259,067 | R--- | C] () -- C:\WINDOWS\System32\2mg4.ecw [2009/12/07 11:46:35 | 00,000,231 | ---- | C] () -- C:\WINDOWS\SYSTEM.I~I [2009/12/07 11:21:15 | 00,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2009/12/07 11:20:21 | 00,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2009/12/07 11:19:56 | 00,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2009/12/07 11:19:31 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2009/12/07 11:19:31 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2009/12/07 11:19:30 | 00,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2009/12/07 11:19:16 | 00,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2009/12/07 11:19:15 | 01,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2009/12/07 11:19:10 | 00,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2009/12/07 11:19:09 | 00,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2009/12/07 11:19:07 | 00,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2009/12/07 11:18:58 | 13,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2009/12/07 11:18:53 | 00,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2009/12/07 11:18:41 | 00,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2009/12/07 11:18:38 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2009/12/07 11:18:38 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2009/12/07 11:18:38 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2009/12/07 11:18:38 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2009/12/07 11:18:38 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2009/12/07 11:18:38 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2009/12/07 11:18:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2009/12/07 11:18:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2009/12/07 11:18:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2009/12/07 11:18:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2009/12/07 11:18:38 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2009/12/07 11:18:37 | 00,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2009/12/07 11:18:37 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2009/12/07 11:18:36 | 00,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2009/12/07 11:18:36 | 00,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2009/12/07 11:18:36 | 00,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2009/12/07 11:18:36 | 00,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2009/12/07 11:18:36 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2009/12/07 11:18:36 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2009/12/07 11:18:36 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2009/12/07 11:18:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2009/12/07 11:18:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2009/12/07 11:18:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2009/12/07 11:18:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2009/12/07 11:18:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2009/12/07 11:18:36 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2009/12/07 11:18:35 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2009/12/07 11:18:35 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2009/12/07 11:18:34 | 00,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2009/12/07 11:18:34 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2009/12/07 11:18:34 | 00,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2009/12/07 11:18:34 | 00,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2009/12/07 11:18:34 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2009/12/07 11:18:34 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2009/12/07 11:18:33 | 00,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2009/12/07 11:17:14 | 00,002,626 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2009/12/07 11:17:14 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2009/12/07 11:17:14 | 00,000,000 | RHS- | C] () -- C:\IO.SYS [2009/12/07 11:17:14 | 00,000,000 | ---- | C] () -- C:\CONFIG.SYS [2009/12/07 11:17:14 | 00,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2009/12/07 11:17:03 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2009/12/07 11:17:03 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2009/12/07 11:17:02 | 00,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2009/12/07 11:15:50 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2009/12/07 11:15:50 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2009/12/07 11:15:45 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2009/12/07 11:15:30 | 04,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2009/12/07 11:15:06 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2009/12/07 11:15:06 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2009/12/07 11:15:02 | 00,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2009/12/07 11:13:33 | 00,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2009/12/07 11:12:39 | 00,011,452 | ---- | C] () -- C:\WINDOWS\System32\mypixdx.chm [2009/12/07 11:11:41 | 10,604,352 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ehcir.ird [2009/12/07 11:11:19 | 00,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp [2009/12/07 11:11:19 | 00,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp [2009/12/07 11:11:19 | 00,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp [2009/12/07 11:11:18 | 00,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2009/12/07 11:11:18 | 00,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp [2009/12/07 11:11:18 | 00,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp [2009/12/07 11:11:18 | 00,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp [2009/12/07 11:11:18 | 00,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp [2009/12/07 11:11:18 | 00,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp [2009/12/07 11:11:18 | 00,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp [2009/12/07 11:11:18 | 00,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2009/12/07 11:11:18 | 00,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp [2009/12/07 11:11:18 | 00,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2009/12/07 11:11:18 | 00,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2009/12/07 11:11:18 | 00,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2009/12/07 11:11:18 | 00,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp [2009/12/07 11:11:17 | 00,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2009/12/07 11:11:17 | 00,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2009/12/07 11:11:17 | 00,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2009/12/07 11:11:16 | 00,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2009/12/07 11:11:16 | 00,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2009/12/07 11:11:15 | 00,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2009/12/07 11:11:11 | 00,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2009/12/07 06:05:54 | 00,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2009/12/07 06:05:49 | 01,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2009/12/07 06:05:49 | 00,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2009/12/07 06:05:48 | 00,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2009/12/07 06:05:48 | 00,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2009/12/07 06:05:46 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2009/12/07 06:05:46 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2009/12/07 06:05:45 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2009/12/07 06:05:45 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2009/12/07 06:05:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2009/12/07 06:05:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2009/12/07 06:05:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2009/12/07 06:05:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2009/12/07 06:05:44 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2009/12/07 06:05:44 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2009/12/07 06:05:44 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2009/12/07 06:05:44 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2009/12/07 06:05:44 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2009/12/07 06:05:44 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2009/12/07 06:05:43 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2009/12/07 06:05:43 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2009/12/07 06:05:43 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2009/12/07 06:05:43 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2009/12/07 06:05:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2009/12/07 06:05:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2009/12/07 06:05:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2009/12/07 06:05:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2009/12/07 06:05:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2009/12/07 06:05:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2009/12/07 06:05:42 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2009/12/07 06:05:42 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2009/12/07 06:05:41 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2009/12/07 06:05:41 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2009/12/07 06:05:41 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2009/12/07 06:05:41 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2009/12/07 06:05:40 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls [2009/12/07 06:05:40 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls [2009/12/07 06:05:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2009/12/07 06:05:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2009/12/07 06:05:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2009/12/07 06:05:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2009/12/07 06:05:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2009/12/07 06:05:40 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2009/12/07 06:05:39 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2009/12/07 06:05:39 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2009/12/07 06:05:37 | 00,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2009/12/07 06:05:28 | 00,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2009/12/07 06:05:28 | 00,077,881 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plus.cat [2009/12/07 06:05:28 | 00,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2009/12/07 06:05:28 | 00,017,916 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sonic.cat [2009/12/07 06:05:28 | 00,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2009/12/07 06:05:28 | 00,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2009/12/07 06:05:28 | 00,007,710 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2009/12/07 06:05:28 | 00,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2009/12/07 06:05:27 | 00,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2009/12/07 06:05:27 | 00,106,147 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2009/12/07 06:04:51 | 00,098,256 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009/12/07 06:04:02 | 00,000,209 | -HS- | C] () -- C:\boot.ini [2009/12/07 06:03:58 | 00,000,237 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2006/12/06 13:39:49 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini [2005/08/05 14:01:54 | 00,239,104 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll ========== LOP Check ========== [2009/12/13 17:05:36 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Heather\Application Data\FileZilla ========== Purity Check ========== ========== Custom Scans ========== < %SYSTEMDRIVE%\*.exe > < %systemroot%\*. /mp /s > < c:\$recycle.bin\*.* /s > < HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs > HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install\\LastSuccessTime: 2009-12-11 14:01:23 < MD5 for: AGP440.SYS > [2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\agp440.sys [2008/04/13 13:36:38 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys < MD5 for: ATAPI.SYS > [2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\atapi.sys [2008/04/13 13:40:30 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2004/08/10 06:00:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys < MD5 for: AUTOCHK.EXE > [2008/04/13 19:12:12 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\ServicePackFiles\i386\autochk.exe [2008/04/13 19:12:12 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\autochk.exe [2008/04/13 19:12:12 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=23043C91A0F9DFB4B9E9F87B680863B4 -- C:\WINDOWS\system32\autochk.exe [2004/08/10 06:00:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\$NtServicePackUninstall$\autochk.exe < MD5 for: BEEP.SYS > [2004/08/10 06:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2004/08/10 06:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys < MD5 for: EVENTLOG.DLL > [2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\eventlog.dll [2008/04/13 19:11:53 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\system32\eventlog.dll [2004/08/10 06:00:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll < MD5 for: EXPLORER.EXE > [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\explorer.exe [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\ServicePackFiles\i386\explorer.exe [2008/04/13 19:12:19 | 01,033,728 | ---- | M] (Microsoft Corporation) MD5=12896823FB95BFB3DC9B46BCAEDC9923 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\explorer.exe [2004/08/10 06:00:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\$NtServicePackUninstall$\explorer.exe < MD5 for: IASTOR.SYS > [2006/05/11 11:30:52 | 00,247,808 | ---- | M] (Intel Corporation) MD5=294110966CEDD127629C5BE48367C8CF -- C:\WINDOWS\dell\iastor\iastor.sys < MD5 for: IMM32.DLL > [2008/04/13 19:11:54 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=0DA85218E92526972A821587E6A8BF8F -- C:\WINDOWS\ServicePackFiles\i386\imm32.dll [2008/04/13 19:11:54 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=0DA85218E92526972A821587E6A8BF8F -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\imm32.dll [2008/04/13 19:11:54 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=0DA85218E92526972A821587E6A8BF8F -- C:\WINDOWS\system32\imm32.dll [2004/08/10 06:00:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\$NtServicePackUninstall$\imm32.dll < MD5 for: KERNEL32.DLL > [2009/03/21 08:54:07 | 00,989,184 | ---- | M] (Microsoft Corporation) MD5=80202858D245FF07DAA1739C57A3E19B -- C:\WINDOWS\$hf_mig$\KB959426\SP2QFE\kernel32.dll [2009/03/21 08:54:07 | 00,989,184 | ---- | M] (Microsoft Corporation) MD5=80202858D245FF07DAA1739C57A3E19B -- C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp2qfe\kernel32.dll [2004/08/10 06:00:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\$NtUninstallKB959426_0$\kernel32.dll [2009/03/21 09:18:57 | 00,986,112 | ---- | M] (Microsoft Corporation) MD5=B6ACAED7588295129791E0E6A2B0FADE -- C:\WINDOWS\$NtServicePackUninstall$\kernel32.dll [2009/03/21 09:18:57 | 00,986,112 | ---- | M] (Microsoft Corporation) MD5=B6ACAED7588295129791E0E6A2B0FADE -- C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp2gdr\kernel32.dll [2009/03/21 09:06:58 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=B921FB870C9AC0D509B2CCABBBBE95F3 -- C:\WINDOWS\$hf_mig$\KB959426\SP3GDR\kernel32.dll [2009/03/21 09:06:58 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=B921FB870C9AC0D509B2CCABBBBE95F3 -- C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp3gdr\kernel32.dll [2009/03/21 09:06:58 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=B921FB870C9AC0D509B2CCABBBBE95F3 -- C:\WINDOWS\system32\dllcache\kernel32.dll [2009/03/21 09:06:58 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=B921FB870C9AC0D509B2CCABBBBE95F3 -- C:\WINDOWS\system32\kernel32.dll [2008/04/13 19:11:56 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=C24B983D211C34DA8FCC1AC38477971D -- C:\WINDOWS\$NtUninstallKB959426$\kernel32.dll [2008/04/13 19:11:56 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=C24B983D211C34DA8FCC1AC38477971D -- C:\WINDOWS\ServicePackFiles\i386\kernel32.dll [2008/04/13 19:11:56 | 00,989,696 | ---- | M] (Microsoft Corporation) MD5=C24B983D211C34DA8FCC1AC38477971D -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\kernel32.dll [2009/03/21 08:59:23 | 00,991,744 | ---- | M] (Microsoft Corporation) MD5=DA11D9D6ECBDF0F93436A4B7C13F7BEC -- C:\WINDOWS\$hf_mig$\KB959426\SP3QFE\kernel32.dll [2009/03/21 08:59:23 | 00,991,744 | ---- | M] (Microsoft Corporation) MD5=DA11D9D6ECBDF0F93436A4B7C13F7BEC -- C:\WINDOWS\SoftwareDistribution\Download\022593ca08eb4cd8e9681a7116f902d9\sp3qfe\kernel32.dll < MD5 for: MSWSOCK.DLL > [2008/06/20 12:41:10 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=097722F235A1FB698BF9234E01B52637 -- C:\WINDOWS\$NtServicePackUninstall$\mswsock.dll [2008/06/20 12:41:10 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=097722F235A1FB698BF9234E01B52637 -- C:\WINDOWS\SoftwareDistribution\Download\ad744bdeedce85bf37a096f34577ff3a\sp2gdr\mswsock.dll [2008/06/20 12:36:11 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=1DFCA7713EA5A70D5D93B436AEA0317A -- C:\WINDOWS\$hf_mig$\KB951748\SP2QFE\mswsock.dll [2008/06/20 12:36:11 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=1DFCA7713EA5A70D5D93B436AEA0317A -- C:\WINDOWS\SoftwareDistribution\Download\ad744bdeedce85bf37a096f34577ff3a\sp2qfe\mswsock.dll [2004/08/10 06:00:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\$NtUninstallKB951748_0$\mswsock.dll [2008/06/20 12:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=832E4DD8964AB7ACC880B2837CB1ED20 -- C:\WINDOWS\$hf_mig$\KB951748\SP3GDR\mswsock.dll [2008/06/20 12:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=832E4DD8964AB7ACC880B2837CB1ED20 -- C:\WINDOWS\SoftwareDistribution\Download\ad744bdeedce85bf37a096f34577ff3a\sp3gdr\mswsock.dll [2008/06/20 12:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=832E4DD8964AB7ACC880B2837CB1ED20 -- C:\WINDOWS\system32\dllcache\mswsock.dll [2008/06/20 12:46:57 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=832E4DD8964AB7ACC880B2837CB1ED20 -- C:\WINDOWS\system32\mswsock.dll [2008/04/13 19:12:01 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=B4138E99236F0F57D4CF49BAE98A0746 -- C:\WINDOWS\$NtUninstallKB951748$\mswsock.dll [2008/04/13 19:12:01 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=B4138E99236F0F57D4CF49BAE98A0746 -- C:\WINDOWS\ServicePackFiles\i386\mswsock.dll [2008/04/13 19:12:01 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=B4138E99236F0F57D4CF49BAE98A0746 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\mswsock.dll [2008/06/20 12:43:05 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=FCEE5FCB99F7C724593365C706D28388 -- C:\WINDOWS\$hf_mig$\KB951748\SP3QFE\mswsock.dll [2008/06/20 12:43:05 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=FCEE5FCB99F7C724593365C706D28388 -- C:\WINDOWS\SoftwareDistribution\Download\ad744bdeedce85bf37a096f34577ff3a\sp3qfe\mswsock.dll < MD5 for: NDIS.SYS > [2008/04/13 14:20:37 | 00,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008/04/13 14:20:37 | 00,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ndis.sys [2008/04/13 14:20:37 | 00,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [2004/08/10 06:00:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys < MD5 for: NETLOGON.DLL > [2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\ServicePackFiles\i386\netlogon.dll [2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\netlogon.dll [2008/04/13 19:12:01 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\system32\netlogon.dll [2009/02/06 13:46:09 | 00,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$hf_mig$\KB968389\SP2QFE\netlogon.dll [2009/02/06 13:46:09 | 00,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$hf_mig$\KB975467\SP2QFE\netlogon.dll [2009/02/06 13:46:09 | 00,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\SoftwareDistribution\Download\78cf8552430e25a8f24bc1e4dfb1970e\sp2qfe\netlogon.dll [2009/02/06 13:46:09 | 00,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\SoftwareDistribution\Download\de81b460c3abcfc5b8494c785a5f3944\sp2qfe\netlogon.dll [2004/08/10 06:00:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtServicePackUninstall$\netlogon.dll < MD5 for: NTFS.SYS > [2008/04/13 14:15:53 | 00,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\ServicePackFiles\i386\ntfs.sys [2008/04/13 14:15:53 | 00,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ntfs.sys [2008/04/13 14:15:53 | 00,574,976 | ---- | M] (Microsoft Corporation) MD5=78A08DD6A8D65E697C18E1DB01C5CDCA -- C:\WINDOWS\system32\drivers\ntfs.sys [2004/08/10 06:00:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\$NtServicePackUninstall$\ntfs.sys < MD5 for: NTMSSVC.DLL > [2008/04/13 19:12:02 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=156F64A3345BD23C600655FB4D10BC08 -- C:\WINDOWS\ServicePackFiles\i386\ntmssvc.dll [2008/04/13 19:12:02 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=156F64A3345BD23C600655FB4D10BC08 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ntmssvc.dll [2008/04/13 19:12:02 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=156F64A3345BD23C600655FB4D10BC08 -- C:\WINDOWS\system32\ntmssvc.dll [2004/08/10 06:00:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\$NtServicePackUninstall$\ntmssvc.dll < MD5 for: NVATABUS.SYS > [2006/03/16 19:51:32 | 00,099,840 | ---- | M] (NVIDIA Corporation) MD5=B7FB72492B753930EC70A0F49D04F12F -- C:\WINDOWS\dell\nvraid\NvAtaBus.sys < MD5 for: PROQUOTA.EXE > [2004/08/10 06:00:00 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=4D9D45A4370E0C2AD00C362B7118E2A4 -- C:\WINDOWS\$NtServicePackUninstall$\proquota.exe [2008/04/13 19:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=F6465A2EEF75468988A4FCF124148FA8 -- C:\WINDOWS\ServicePackFiles\i386\proquota.exe [2008/04/13 19:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=F6465A2EEF75468988A4FCF124148FA8 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\proquota.exe [2008/04/13 19:12:32 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=F6465A2EEF75468988A4FCF124148FA8 -- C:\WINDOWS\system32\proquota.exe < MD5 for: QMGR.DLL > [2004/08/10 06:00:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\$NtServicePackUninstall$\qmgr.dll [2008/04/13 19:12:03 | 00,409,088 | ---- | M] (Microsoft Corporation) MD5=574738F61FCA2935F5265DC4E5691314 -- C:\WINDOWS\ServicePackFiles\i386\qmgr.dll [2008/04/13 19:12:03 | 00,409,088 | ---- | M] (Microsoft Corporation) MD5=574738F61FCA2935F5265DC4E5691314 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\qmgr.dll [2008/04/13 19:12:03 | 00,409,088 | ---- | M] (Microsoft Corporation) MD5=574738F61FCA2935F5265DC4E5691314 -- C:\WINDOWS\system32\bits\qmgr.dll [2008/04/13 19:12:03 | 00,409,088 | ---- | M] (Microsoft Corporation) MD5=574738F61FCA2935F5265DC4E5691314 -- C:\WINDOWS\system32\qmgr.dll < MD5 for: SCECLI.DLL > [2004/08/10 06:00:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\$NtServicePackUninstall$\scecli.dll [2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\ServicePackFiles\i386\scecli.dll [2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\scecli.dll [2008/04/13 19:12:05 | 00,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\system32\scecli.dll < MD5 for: SFCFILES.DLL > [2004/08/10 06:00:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\$NtServicePackUninstall$\sfcfiles.dll [2008/04/13 19:12:05 | 01,614,848 | ---- | M] (Microsoft Corporation) MD5=9DD07AF82244867CA36681EA2D29CE79 -- C:\WINDOWS\ServicePackFiles\i386\sfcfiles.dll [2008/04/13 19:12:05 | 01,614,848 | ---- | M] (Microsoft Corporation) MD5=9DD07AF82244867CA36681EA2D29CE79 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\sfcfiles.dll [2008/04/13 19:12:05 | 01,614,848 | ---- | M] (Microsoft Corporation) MD5=9DD07AF82244867CA36681EA2D29CE79 -- C:\WINDOWS\system32\sfcfiles.dll < MD5 for: SPOOLSV.EXE > [2004/08/10 06:00:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\$NtServicePackUninstall$\spoolsv.exe [2008/04/13 19:12:36 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=D8E14A61ACC1D4A6CD0D38AEBAC7FA3B -- C:\WINDOWS\ServicePackFiles\i386\spoolsv.exe [2008/04/13 19:12:36 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=D8E14A61ACC1D4A6CD0D38AEBAC7FA3B -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\spoolsv.exe [2008/04/13 19:12:36 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=D8E14A61ACC1D4A6CD0D38AEBAC7FA3B -- C:\WINDOWS\system32\spoolsv.exe < MD5 for: SRSVC.DLL > [2008/04/13 19:12:07 | 00,171,008 | ---- | M] (Microsoft Corporation) MD5=3805DF0AC4296A34BA4BF93B346CC378 -- C:\WINDOWS\ServicePackFiles\i386\srsvc.dll [2008/04/13 19:12:07 | 00,171,008 | ---- | M] (Microsoft Corporation) MD5=3805DF0AC4296A34BA4BF93B346CC378 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\srsvc.dll [2008/04/13 19:12:07 | 00,171,008 | ---- | M] (Microsoft Corporation) MD5=3805DF0AC4296A34BA4BF93B346CC378 -- C:\WINDOWS\system32\srsvc.dll [2004/08/10 06:00:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\$NtServicePackUninstall$\srsvc.dll < MD5 for: SVCHOST.EXE > [2008/04/13 19:12:36 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\ServicePackFiles\i386\svchost.exe [2008/04/13 19:12:36 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\svchost.exe [2008/04/13 19:12:36 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=27C6D03BCDB8CFEB96B716F3D8BE3E18 -- C:\WINDOWS\system32\svchost.exe [2004/08/10 06:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\$NtServicePackUninstall$\svchost.exe < MD5 for: TERMSRV.DLL > [2004/08/10 06:00:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\$NtUninstallKB895961$\termsrv.dll [2005/03/10 02:49:51 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=C29A5286E64D97385178452D5F307B98 -- C:\WINDOWS\$NtServicePackUninstall$\termsrv.dll [2008/04/13 19:12:07 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=FF3477C03BE7201C294C35F684B3479F -- C:\WINDOWS\ServicePackFiles\i386\termsrv.dll [2008/04/13 19:12:07 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=FF3477C03BE7201C294C35F684B3479F -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\termsrv.dll [2008/04/13 19:12:07 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=FF3477C03BE7201C294C35F684B3479F -- C:\WINDOWS\system32\termsrv.dll < MD5 for: USERINIT.EXE > [2004/08/10 06:00:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\$NtServicePackUninstall$\userinit.exe [2008/04/13 19:12:38 | 00,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\ServicePackFiles\i386\userinit.exe [2008/04/13 19:12:38 | 00,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\userinit.exe [2008/04/13 19:12:38 | 00,026,112 | ---- | M] (Microsoft Corporation) MD5=A93AEE1928A9D7CE3E16D24EC7380F89 -- C:\WINDOWS\system32\userinit.exe < MD5 for: WS2_32.DLL > [2008/04/13 19:12:10 | 00,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\ServicePackFiles\i386\ws2_32.dll [2008/04/13 19:12:10 | 00,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\ws2_32.dll [2008/04/13 19:12:10 | 00,082,432 | ---- | M] (Microsoft Corporation) MD5=2CCC474EB85CEAA3E1FA1726580A3E5A -- C:\WINDOWS\system32\ws2_32.dll [2004/08/10 06:00:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\$NtServicePackUninstall$\ws2_32.dll < MD5 for: XMLPROV.DLL > [2008/04/13 19:12:11 | 00,129,024 | ---- | M] (Microsoft Corporation) MD5=295D21F14C335B53CB8154E5B1F892B9 -- C:\WINDOWS\ServicePackFiles\i386\xmlprov.dll [2008/04/13 19:12:11 | 00,129,024 | ---- | M] (Microsoft Corporation) MD5=295D21F14C335B53CB8154E5B1F892B9 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\xmlprov.dll [2008/04/13 19:12:11 | 00,129,024 | ---- | M] (Microsoft Corporation) MD5=295D21F14C335B53CB8154E5B1F892B9 -- C:\WINDOWS\system32\xmlprov.dll [2004/08/10 06:00:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\$NtServicePackUninstall$\xmlprov.dll < End of report >
  6. OTL logs Pt. 2 ========== Files/Folders - Created Within 30 Days ========== [2009/12/14 10:15:30 | 00,538,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Heather\Desktop\OTL.exe [2009/12/12 17:53:50 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss [2009/12/11 15:47:27 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2009/12/11 11:41:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Malwarebytes [2009/12/11 01:14:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2009/12/11 01:14:30 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild [2009/12/11 01:14:21 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2009/12/11 01:13:51 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll [2009/12/11 01:13:51 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll [2009/12/11 01:13:51 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe [2009/12/11 01:13:51 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll [2009/12/11 01:13:51 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll [2009/12/11 01:13:51 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll [2009/12/11 01:13:50 | 00,000,000 | ---D | C] -- C:\935a1f42d14423e912029a9e [2009/12/10 17:54:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Receipts [2009/12/09 23:39:12 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2009/12/09 23:39:10 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2009/12/09 23:39:10 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2009/12/09 23:39:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2009/12/09 18:17:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Local Settings\Application Data\Identities [2009/12/09 17:00:18 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Heather\PrivacIE [2009/12/08 16:52:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Programs [2009/12/08 16:52:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Downloads [2009/12/08 16:25:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Macromedia [2009/12/08 16:25:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Adobe [2009/12/08 16:07:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Blogs [2009/12/08 16:02:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\FileZilla [2009/12/08 15:52:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Local Settings\Application Data\Mozilla [2009/12/08 15:52:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Mozilla [2009/12/08 15:42:33 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents\My Videos [2009/12/08 15:41:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Identities [2009/12/08 15:41:23 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents\My Music [2009/12/08 15:41:22 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents\My Pictures [2009/12/08 15:41:18 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Heather\IETldCache [2009/12/08 15:41:14 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Heather\Application Data\Microsoft [2009/12/08 15:41:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Heather\SendTo [2009/12/08 15:41:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Heather\Recent [2009/12/08 15:41:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Heather\Application Data [2009/12/08 15:41:14 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\Start Menu [2009/12/08 15:41:14 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents [2009/12/08 15:41:14 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\Favorites [2009/12/08 15:41:14 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Heather\Cookies [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\Templates [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\PrintHood [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\NetHood [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\Local Settings [2009/12/08 15:41:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Local Settings\Application Data\Microsoft [2009/12/08 15:41:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Desktop [2009/12/07 15:53:32 | 00,000,000 | ---D | C] -- C:\Program Files\NOS [2009/12/07 15:53:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS [2009/12/07 15:29:00 | 00,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2009/12/07 15:24:50 | 00,172,032 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\stacapi.dll [2009/12/07 15:24:49 | 00,000,000 | ---D | C] -- C:\Program Files\SigmaTel [2009/12/07 15:08:10 | 00,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll [2009/12/07 15:06:03 | 00,000,000 | ---D | C] -- C:\Program Files\Creative [2009/12/07 15:03:17 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2009/12/07 15:03:13 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiafbdrv.dll [2009/12/07 15:03:13 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll [2009/12/07 15:02:38 | 00,983,092 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dlcdgf.dll [2009/12/07 15:02:31 | 00,000,000 | ---D | C] -- C:\Program Files\Dell Photo AIO Printer 944 [2009/12/07 15:02:21 | 00,000,000 | ---D | C] -- C:\Temp [2009/12/07 14:17:46 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2009/12/07 14:17:44 | 00,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2009/12/07 14:17:42 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2009/12/07 14:17:39 | 00,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2009/12/07 14:17:37 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2009/12/07 14:17:35 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2009/12/07 14:17:33 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2009/12/07 14:17:31 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2009/12/07 14:17:03 | 00,000,000 | ---D | C] -- C:\Program Files\IDT [2009/12/07 14:17:01 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2009/12/07 14:17:01 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2009/12/07 14:16:59 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2009/12/07 14:16:59 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2009/12/07 14:15:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2009/12/07 14:14:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2009/12/07 14:01:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2009/12/07 13:59:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2009/12/07 13:56:38 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2009/12/07 13:49:02 | 00,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys [2009/12/07 13:49:02 | 00,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys [2009/12/07 13:49:02 | 00,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [2009/12/07 13:49:02 | 00,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [2009/12/07 13:49:02 | 00,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [2009/12/07 13:49:02 | 00,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [2009/12/07 13:48:58 | 00,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys [2009/12/07 13:48:58 | 00,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [2009/12/07 13:48:58 | 00,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys [2009/12/07 13:48:58 | 00,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys [2009/12/07 13:48:58 | 00,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys [2009/12/07 13:48:58 | 00,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [2009/12/07 13:48:57 | 01,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [2009/12/07 13:48:57 | 00,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [2009/12/07 13:48:56 | 01,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2009/12/07 13:48:56 | 00,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2009/12/07 13:48:56 | 00,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2009/12/07 13:48:51 | 01,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys [2009/12/07 13:48:51 | 00,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys [2009/12/07 13:48:51 | 00,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys [2009/12/07 13:48:10 | 00,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2009/12/07 13:48:10 | 00,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2009/12/07 13:48:10 | 00,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2009/12/07 13:48:10 | 00,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2009/12/07 13:48:10 | 00,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2009/12/07 13:48:10 | 00,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2009/12/07 13:48:10 | 00,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2009/12/07 13:48:10 | 00,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2009/12/07 13:48:10 | 00,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2009/12/07 13:48:10 | 00,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2009/12/07 13:48:10 | 00,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2009/12/07 13:48:10 | 00,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2009/12/07 13:48:10 | 00,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2009/12/07 13:48:10 | 00,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2009/12/07 13:48:10 | 00,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2009/12/07 13:48:10 | 00,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2009/12/07 13:48:10 | 00,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2009/12/07 13:48:10 | 00,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2009/12/07 13:48:10 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2009/12/07 13:48:10 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2009/12/07 13:48:10 | 00,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2009/12/07 13:48:10 | 00,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2009/12/07 13:46:50 | 00,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2009/12/07 13:43:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2009/12/07 13:43:13 | 11,069,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2009/12/07 13:43:13 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2009/12/07 13:43:13 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2009/12/07 13:43:13 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2009/12/07 13:43:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2009/12/07 13:42:07 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2009/12/07 13:42:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2009/12/07 13:32:09 | 00,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2009/12/07 13:22:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2009/12/07 12:54:35 | 00,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2009/12/07 12:54:34 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2009/12/07 12:54:30 | 00,333,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys [2009/12/07 12:54:08 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll [2009/12/07 12:53:21 | 00,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2009/12/07 12:53:20 | 02,189,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2009/12/07 12:53:20 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2009/12/07 12:53:19 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2009/12/07 12:53:05 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\kb913800.exe [2009/12/07 12:48:36 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2009/12/07 12:36:32 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2009/12/07 12:36:20 | 00,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2009/12/07 12:36:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2009/12/07 12:36:00 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2009/12/07 12:33:10 | 00,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2009/12/07 12:33:09 | 00,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2009/12/07 12:33:09 | 00,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2009/12/07 12:33:07 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2009/12/07 12:33:07 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [2009/12/07 12:33:07 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2009/12/07 12:33:06 | 00,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2009/12/07 12:33:06 | 00,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2009/12/07 12:32:48 | 01,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2009/12/07 12:32:46 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2009/12/07 12:26:53 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2009/12/07 12:23:16 | 00,000,000 | ---D | C] -- C:\Program Files\Intel [2009/12/07 12:23:10 | 00,256,712 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\PROUnstl.exe [2009/12/07 12:21:22 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MODEMCSA.sys [2009/12/07 12:21:22 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys [2009/12/07 12:21:21 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2009/12/07 12:21:21 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2009/12/07 12:21:21 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2009/12/07 12:21:21 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2009/12/07 12:21:12 | 00,000,000 | ---D | C] -- C:\Program Files\CONEXANT [2009/12/07 12:21:06 | 01,042,432 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_DP.sys [2009/12/07 12:21:06 | 00,680,704 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_CNXT.sys [2009/12/07 12:21:06 | 00,212,224 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSFHWBS2.sys [2009/12/07 12:21:06 | 00,090,112 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2009/12/07 12:21:06 | 00,032,218 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\HSFCI008.dll [2009/12/07 12:21:06 | 00,011,043 | ---- | C] (Conexant) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys [2009/12/07 12:19:10 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2009/12/07 12:19:10 | 00,000,000 | ---D | C] -- C:\Program Files\NetWaiting [2009/12/07 12:18:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2009/12/07 11:55:56 | 00,000,000 | ---D | C] -- C:\Program Files\InterActual [2009/12/07 11:55:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic [2009/12/07 11:55:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared [2009/12/07 11:55:48 | 00,000,000 | ---D | C] -- C:\Program Files\Dell [2009/12/07 11:55:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared [2009/12/07 11:51:45 | 00,000,000 | -HSD | C] -- C:\RECYCLER [2009/12/07 11:46:39 | 00,280,576 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\mixres32.dll [2009/12/07 11:46:39 | 00,050,688 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\audpci40.dll [2009/12/07 11:46:39 | 00,022,016 | R--- | C] (Creative Technology, Ltd.) -- C:\WINDOWS\System32\starter.exe [2009/12/07 11:46:38 | 00,229,888 | R--- | C] (ENSONIQ Corp.) -- C:\WINDOWS\System32\ensmix32.exe [2009/12/07 11:46:38 | 00,010,752 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\ensres32.dll [2009/12/07 11:46:35 | 00,275,264 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\eapci40.sys [2009/12/07 11:46:34 | 00,299,008 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe [2009/12/07 11:31:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2009/12/07 11:30:08 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2009/12/07 11:29:10 | 00,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2009/12/07 11:27:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2009/12/07 11:27:03 | 00,000,000 | ---D | C] -- C:\Program Files\RGB [2009/12/07 11:25:38 | 00,000,000 | ---D | C] -- C:\Program Files\GemMaster [2009/12/07 11:21:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Recorded TV [2009/12/07 11:21:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2009/12/07 11:21:28 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2009/12/07 11:21:28 | 00,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2009/12/07 11:21:12 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2009/12/07 11:21:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2009/12/07 11:20:12 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresja.dll [2009/12/07 11:20:12 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresko.dll [2009/12/07 11:20:11 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresfr.dll [2009/12/07 11:20:11 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresde.dll [2009/12/07 11:20:00 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehreschs.dll [2009/12/07 11:19:54 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2009/12/07 11:19:52 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2009/12/07 11:19:51 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2009/12/07 11:19:51 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2009/12/07 11:19:51 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2009/12/07 11:19:51 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2009/12/07 11:19:50 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2009/12/07 11:19:50 | 00,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2009/12/07 11:19:50 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2009/12/07 11:19:49 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2009/12/07 11:19:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2009/12/07 11:19:48 | 00,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2009/12/07 11:19:48 | 00,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2009/12/07 11:19:48 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2009/12/07 11:19:48 | 00,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2009/12/07 11:19:48 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2009/12/07 11:19:46 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2009/12/07 11:19:46 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2009/12/07 11:19:46 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2009/12/07 11:19:45 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2009/12/07 11:19:45 | 00,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2009/12/07 11:19:45 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2009/12/07 11:19:45 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2009/12/07 11:19:45 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2009/12/07 11:19:44 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2009/12/07 11:19:44 | 00,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2009/12/07 11:19:44 | 00,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2009/12/07 11:19:43 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2009/12/07 11:19:42 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2009/12/07 11:19:41 | 00,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2009/12/07 11:19:41 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2009/12/07 11:19:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2009/12/07 11:19:40 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2009/12/07 11:19:39 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2009/12/07 11:19:39 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2009/12/07 11:19:39 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2009/12/07 11:19:39 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2009/12/07 11:19:39 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2009/12/07 11:19:39 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2009/12/07 11:19:39 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2009/12/07 11:19:39 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2009/12/07 11:19:39 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2009/12/07 11:19:39 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2009/12/07 11:19:39 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2009/12/07 11:19:39 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2009/12/07 11:19:38 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2009/12/07 11:19:38 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2009/12/07 11:19:38 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2009/12/07 11:19:38 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2009/12/07 11:19:38 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2009/12/07 11:19:36 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2009/12/07 11:19:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2009/12/07 11:19:35 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2009/12/07 11:19:35 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2009/12/07 11:19:34 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2009/12/07 11:19:33 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2009/12/07 11:19:33 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2009/12/07 11:19:32 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2009/12/07 11:19:32 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2009/12/07 11:19:32 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2009/12/07 11:19:31 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2009/12/07 11:19:31 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2009/12/07 11:19:30 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2009/12/07 11:19:30 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2009/12/07 11:19:30 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2009/12/07 11:19:30 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2009/12/07 11:19:30 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2009/12/07 11:19:29 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2009/12/07 11:19:29 | 00,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2009/12/07 11:19:29 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2009/12/07 11:19:29 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2009/12/07 11:19:29 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2009/12/07 11:19:29 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2009/12/07 11:19:29 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2009/12/07 11:19:27 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2009/12/07 11:19:27 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2009/12/07 11:19:26 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2009/12/07 11:19:25 | 00,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2009/12/07 11:19:22 | 01,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2009/12/07 11:19:22 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2009/12/07 11:19:18 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2009/12/07 11:19:18 | 00,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2009/12/07 11:19:17 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2009/12/07 11:19:17 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2009/12/07 11:19:16 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2009/12/07 11:19:15 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2009/12/07 11:19:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2009/12/07 11:19:14 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2009/12/07 11:19:14 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2009/12/07 11:19:14 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2009/12/07 11:19:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2009/12/07 11:19:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2009/12/07 11:19:13 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2009/12/07 11:19:13 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2009/12/07 11:19:12 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2009/12/07 11:19:12 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2009/12/07 11:19:12 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2009/12/07 11:19:12 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2009/12/07 11:19:11 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2009/12/07 11:19:11 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2009/12/07 11:19:10 | 00,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2009/12/07 11:19:10 | 00,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2009/12/07 11:19:10 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2009/12/07 11:19:09 | 00,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2009/12/07 11:19:09 | 00,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2009/12/07 11:19:09 | 00,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2009/12/07 11:19:09 | 00,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2009/12/07 11:19:09 | 00,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2009/12/07 11:19:09 | 00,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2009/12/07 11:19:09 | 00,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2009/12/07 11:19:09 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2009/12/07 11:19:09 | 00,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2009/12/07 11:19:08 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2009/12/07 11:19:08 | 00,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2009/12/07 11:19:08 | 00,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2009/12/07 11:19:08 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2009/12/07 11:19:08 | 00,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2009/12/07 11:19:08 | 00,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2009/12/07 11:19:08 | 00,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2009/12/07 11:19:08 | 00,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2009/12/07 11:19:07 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2009/12/07 11:19:07 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2009/12/07 11:19:07 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2009/12/07 11:19:07 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2009/12/07 11:19:07 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2009/12/07 11:19:07 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2009/12/07 11:19:07 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2009/12/07 11:19:06 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2009/12/07 11:19:02 | 10,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2009/12/07 11:18:55 | 10,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2009/12/07 11:18:53 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2009/12/07 11:18:52 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2009/12/07 11:18:51 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2009/12/07 11:18:51 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2009/12/07 11:18:51 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2009/12/07 11:18:50 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2009/12/07 11:18:50 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2009/12/07 11:18:49 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2009/12/07 11:18:49 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2009/12/07 11:18:48 | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2009/12/07 11:18:48 | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2009/12/07 11:18:48 | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2009/12/07 11:18:48 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2009/12/07 11:18:47 | 00,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2009/12/07 11:18:44 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2009/12/07 11:18:44 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2009/12/07 11:18:43 | 00,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2009/12/07 11:18:43 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2009/12/07 11:18:43 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2009/12/07 11:18:43 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2009/12/07 11:18:42 | 00,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2009/12/07 11:18:41 | 00,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2009/12/07 11:18:41 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2009/12/07 11:18:41 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2009/12/07 11:18:41 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2009/12/07 11:18:41 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2009/12/07 11:18:40 | 01,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2009/12/07 11:18:40 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2009/12/07 11:18:40 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2009/12/07 11:18:40 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2009/12/07 11:18:40 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2009/12/07 11:18:40 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2009/12/07 11:18:39 | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2009/12/07 11:18:39 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2009/12/07 11:18:39 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2009/12/07 11:18:34 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2009/12/07 11:18:33 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2009/12/07 11:18:33 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2009/12/07 11:18:32 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2009/12/07 11:18:32 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2009/12/07 11:18:31 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2009/12/07 11:18:31 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2009/12/07 11:18:31 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2009/12/07 11:18:29 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2009/12/07 11:18:29 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2009/12/07 11:18:28 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2009/12/07 11:18:28 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2009/12/07 11:18:24 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2009/12/07 11:18:24 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2009/12/07 11:18:24 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2009/12/07 11:18:23 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2009/12/07 11:18:23 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2009/12/07 11:18:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2009/12/07 11:18:20 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2009/12/07 11:18:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2009/12/07 11:18:17 | 00,000,000 | ---D | C] -- C:\Program Files\xerox [2009/12/07 11:18:17 | 00,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2009/12/07 11:17:36 | 00,000,000 | ---D | C] -- C:\DELL [2009/12/07 11:17:26 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2009/12/07 11:17:24 | 00,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll [2009/12/07 11:16:54 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2009/12/07 11:15:59 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2009/12/07 11:15:50 | 00,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2009/12/07 11:15:50 | 00,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2009/12/07 11:15:40 | 00,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2009/12/07 11:15:24 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2009/12/07 11:15:08 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2009/12/07 11:15:08 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2009/12/07 11:15:08 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2009/12/07 11:15:08 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2009/12/07 11:15:08 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2009/12/07 11:15:08 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2009/12/07 11:15:02 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2009/12/07 11:15:01 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2009/12/07 11:15:01 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2009/12/07 11:15:01 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2009/12/07 11:15:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2009/12/07 11:14:58 | 00,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2009/12/07 11:14:58 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2009/12/07 11:14:58 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2009/12/07 11:14:58 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2009/12/07 11:14:58 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2009/12/07 11:14:58 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2009/12/07 11:14:58 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2009/12/07 11:14:58 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2009/12/07 11:14:58 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2009/12/07 11:14:58 | 00,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2009/12/07 11:14:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2009/12/07 11:14:57 | 00,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2009/12/07 11:14:54 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll [2009/12/07 11:14:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2009/12/07 11:14:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2009/12/07 11:14:52 | 00,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2009/12/07 11:14:52 | 00,819,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2009/12/07 11:14:52 | 00,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2009/12/07 11:14:52 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2009/12/07 11:14:52 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2009/12/07 11:14:51 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2009/12/07 11:14:51 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2009/12/07 11:14:51 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2009/12/07 11:14:51 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2009/12/07 11:14:51 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2009/12/07 11:14:51 | 00,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2009/12/07 11:14:51 | 00,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2009/12/07 11:14:51 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2009/12/07 11:14:51 | 00,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2009/12/07 11:14:51 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2009/12/07 11:14:51 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2009/12/07 11:14:51 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2009/12/07 11:14:50 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2009/12/07 11:14:50 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2009/12/07 11:14:50 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2009/12/07 11:14:44 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2009/12/07 11:14:44 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2009/12/07 11:14:44 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2009/12/07 11:14:44 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2009/12/07 11:14:41 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe [2009/12/07 11:14:40 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2009/12/07 11:14:40 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2009/12/07 11:14:40 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2009/12/07 11:14:40 | 00,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2009/12/07 11:14:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2009/12/07 11:14:39 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2009/12/07 11:14:39 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2009/12/07 11:14:37 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2009/12/07 11:14:37 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2009/12/07 11:14:37 | 00,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2009/12/07 11:14:36 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2009/12/07 11:14:34 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2009/12/07 11:14:34 | 00,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2009/12/07 11:14:33 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2009/12/07 11:14:33 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2009/12/07 11:14:33 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2009/12/07 11:14:33 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2009/12/07 11:14:29 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2009/12/07 11:14:29 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2009/12/07 11:14:29 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2009/12/07 11:14:28 | 00,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2009/12/07 11:14:28 | 00,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2009/12/07 11:14:26 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music [2009/12/07 11:13:53 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2009/12/07 11:13:24 | 00,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2009/12/07 11:13:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\Registration [2009/12/07 11:13:12 | 00,000,000 | ---D | C] -- C:\Program Files\Online Services [2009/12/07 11:12:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2009/12/07 11:12:55 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2009/12/07 11:12:39 | 01,742,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mypixdx.scr [2009/12/07 11:12:39 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Plus [2009/12/07 11:12:37 | 07,093,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\space.scr [2009/12/07 11:12:36 | 04,396,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpgldfsh.scr [2009/12/07 11:12:36 | 03,343,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nature.scr [2009/12/07 11:12:34 | 05,068,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\davinci.scr [2009/12/07 11:12:33 | 00,020,576 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\pxhelp20.sys [2009/12/07 11:12:30 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\igdetect.dll [2009/12/07 11:12:27 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll [2009/12/07 11:12:27 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll [2009/12/07 11:12:27 | 00,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2009/12/07 11:11:47 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehsqse20.dll [2009/12/07 11:11:46 | 00,462,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehsqqp20.dll [2009/12/07 11:11:46 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehsqdb20.dll [2009/12/07 11:11:46 | 00,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdatunepia.dll [2009/12/07 11:11:46 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\medctrro.exe [2009/12/07 11:11:46 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehmsas.exe [2009/12/07 11:11:45 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures [2009/12/07 11:11:41 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiuserxp.dll [2009/12/07 11:11:40 | 03,219,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehshell.exe [2009/12/07 11:11:40 | 01,370,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehchsime.dll [2009/12/07 11:11:40 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehcommon.dll [2009/12/07 11:11:40 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehRec.exe [2009/12/07 11:11:40 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehjpnime.dll [2009/12/07 11:11:40 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehentt.dll [2009/12/07 11:11:39 | 01,863,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehcm.dll [2009/12/07 11:11:39 | 00,492,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehui.dll [2009/12/07 11:11:39 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehdrop.dll [2009/12/07 11:11:39 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehSched.exe [2009/12/07 11:11:39 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehtray.exe [2009/12/07 11:11:39 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehdebug.dll [2009/12/07 11:11:36 | 08,843,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehres.dll [2009/12/07 11:11:35 | 01,349,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehuihlp.dll [2009/12/07 11:11:35 | 00,864,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepg.dll [2009/12/07 11:11:35 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehRecObj.dll [2009/12/07 11:11:35 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiProxy.dll [2009/12/07 11:11:35 | 00,307,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehPlayer.dll [2009/12/07 11:11:35 | 00,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiVidCtl.dll [2009/12/07 11:11:35 | 00,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehglid.dll [2009/12/07 11:11:35 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiPlay.dll [2009/12/07 11:11:35 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\debugsvc.dll [2009/12/07 11:11:35 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepgdat.dll [2009/12/07 11:11:35 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiwmp.dll [2009/12/07 11:11:35 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehCIR.dll [2009/12/07 11:11:35 | 00,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehProxy.dll [2009/12/07 11:11:35 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiExtens.dll [2009/12/07 11:11:35 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepgdec.dll [2009/12/07 11:11:35 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepgnet.dll [2009/12/07 11:11:32 | 01,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2009/12/07 11:11:32 | 00,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2009/12/07 11:11:32 | 00,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2009/12/07 11:11:32 | 00,000,000 | ---D | C] -- C:\Program Files\OFF_Messenger [2009/12/07 11:11:31 | 02,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2009/12/07 11:11:31 | 01,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2009/12/07 11:11:31 | 00,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2009/12/07 11:11:31 | 00,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2009/12/07 11:11:31 | 00,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2009/12/07 11:11:31 | 00,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2009/12/07 11:11:31 | 00,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2009/12/07 11:11:31 | 00,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2009/12/07 11:11:31 | 00,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2009/12/07 11:11:31 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2009/12/07 11:11:31 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2009/12/07 11:11:31 | 00,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2009/12/07 11:11:31 | 00,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2009/12/07 11:11:30 | 01,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2009/12/07 11:11:30 | 00,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2009/12/07 11:11:30 | 00,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2009/12/07 11:11:30 | 00,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2009/12/07 11:11:30 | 00,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2009/12/07 11:11:30 | 00,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2009/12/07 11:11:30 | 00,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2009/12/07 11:11:30 | 00,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2009/12/07 11:11:29 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2009/12/07 11:11:29 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2009/12/07 11:11:29 | 00,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2009/12/07 11:11:23 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2009/12/07 11:11:23 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2009/12/07 11:11:22 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2009/12/07 11:11:22 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2009/12/07 11:11:22 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2009/12/07 11:11:22 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2009/12/07 11:11:22 | 00,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2009/12/07 11:11:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2009/12/07 11:11:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2009/12/07 11:11:22 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2009/12/07 11:11:22 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2009/12/07 11:11:22 | 00,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2009/12/07 11:11:17 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2009/12/07 11:11:17 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2009/12/07 11:11:17 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2009/12/07 11:11:17 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2009/12/07 11:11:17 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2009/12/07 11:11:17 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2009/12/07 11:11:17 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2009/12/07 11:11:17 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2009/12/07 11:11:17 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2009/12/07 11:11:17 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2009/12/07 11:11:16 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2009/12/07 11:11:16 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2009/12/07 11:11:16 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2009/12/07 11:11:16 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2009/12/07 11:11:16 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2009/12/07 11:11:16 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2009/12/07 11:11:16 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2009/12/07 11:11:16 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2009/12/07 11:11:16 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2009/12/07 11:11:16 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2009/12/07 11:11:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2009/12/07 11:11:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2009/12/07 11:11:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2009/12/07 11:11:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2009/12/07 11:11:16 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2009/12/07 11:11:16 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2009/12/07 11:11:16 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2009/12/07 11:11:16 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2009/12/07 11:11:15 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2009/12/07 11:11:15 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2009/12/07 11:11:15 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2009/12/07 11:11:15 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2009/12/07 11:11:15 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2009/12/07 11:11:15 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2009/12/07 11:11:15 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2009/12/07 11:11:15 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2009/12/07 11:11:15 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2009/12/07 11:11:15 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2009/12/07 11:11:15 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2009/12/07 11:11:15 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2009/12/07 11:11:14 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2009/12/07 11:11:14 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2009/12/07 11:11:12 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2009/12/07 11:11:12 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2009/12/07 11:11:12 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2009/12/07 11:11:12 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2009/12/07 11:11:12 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2009/12/07 11:11:12 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2009/12/07 11:11:12 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2009/12/07 11:11:12 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2009/12/07 11:11:12 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2009/12/07 11:11:12 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2009/12/07 11:11:11 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2009/12/07 11:11:11 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2009/12/07 11:11:11 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2009/12/07 11:11:11 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2009/12/07 11:11:11 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2009/12/07 11:11:11 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2009/12/07 11:11:01 | 00,000,000 | ---D | C] -- C:\Program Files\MSN [2009/12/07 11:11:00 | 00,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2009/12/07 11:11:00 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2009/12/07 11:11:00 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2009/12/07 11:11:00 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2009/12/07 11:11:00 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2009/12/07 11:11:00 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2009/12/07 11:10:59 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2009/12/07 11:10:59 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2009/12/07 11:10:59 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2009/12/07 11:10:59 | 00,000,000 | ---D | C] -- C:\Program Files\Windows NT [2009/12/07 11:10:58 | 02,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2009/12/07 11:10:58 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe [2009/12/07 11:10:58 | 00,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe [2009/12/07 11:10:58 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2009/12/07 11:10:58 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2009/12/07 11:10:58 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2009/12/07 11:10:57 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2009/12/07 11:10:57 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2009/12/07 11:10:57 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2009/12/07 11:10:57 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2009/12/07 11:10:57 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2009/12/07 11:10:57 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2009/12/07 11:10:56 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2009/12/07 11:10:56 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2009/12/07 11:10:56 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2009/12/07 11:10:56 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2009/12/07 11:10:56 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2009/12/07 11:10:56 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2009/12/07 11:10:56 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2009/12/07 11:10:56 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2009/12/07 11:10:56 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2009/12/07 11:10:55 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2009/12/07 11:10:55 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2009/12/07 11:10:55 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2009/12/07 11:10:55 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2009/12/07 11:10:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2009/12/07 11:10:54 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2009/12/07 11:10:54 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2009/12/07 11:10:54 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2009/12/07 11:10:54 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2009/12/07 11:10:49 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2009/12/07 11:10:49 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2009/12/07 11:10:49 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2009/12/07 11:10:49 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2009/12/07 11:10:44 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos [2009/12/07 06:06:49 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2009/12/07 06:05:51 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2009/12/07 06:05:50 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2009/12/07 06:05:50 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2009/12/07 06:05:50 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2009/12/07 06:05:48 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2009/12/07 06:05:48 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2009/12/07 06:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2009/12/07 06:05:47 | 00,000,000 | R--D | C] -- C:\Program Files [2009/12/07 06:05:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2009/12/07 06:05:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files [2009/12/07 06:05:45 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2009/12/07 06:05:45 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2009/12/07 06:05:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2009/12/07 06:05:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2009/12/07 06:05:45 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2009/12/07 06:05:45 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2009/12/07 06:05:43 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2009/12/07 06:05:43 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2009/12/07 06:05:43 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2009/12/07 06:05:43 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2009/12/07 06:05:43 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2009/12/07 06:05:43 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2009/12/07 06:05:43 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2009/12/07 06:05:43 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2009/12/07 06:05:43 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2009/12/07 06:05:43 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2009/12/07 06:05:43 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2009/12/07 06:05:43 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2009/12/07 06:05:43 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2009/12/07 06:05:43 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2009/12/07 06:05:42 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2009/12/07 06:05:42 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2009/12/07 06:05:42 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2009/12/07 06:05:42 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2009/12/07 06:05:42 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2009/12/07 06:05:42 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2009/12/07 06:05:42 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2009/12/07 06:05:42 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2009/12/07 06:05:42 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2009/12/07 06:05:42 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2009/12/07 06:05:40 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2009/12/07 06:05:40 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2009/12/07 06:05:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2009/12/07 06:05:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2009/12/07 06:05:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2009/12/07 06:05:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2009/12/07 06:05:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2009/12/07 06:05:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2009/12/07 06:05:39 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2009/12/07 06:05:39 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2009/12/07 06:05:38 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2009/12/07 06:05:38 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2009/12/07 06:05:38 | 00,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2009/12/07 06:05:38 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2009/12/07 06:05:38 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2009/12/07 06:05:38 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2009/12/07 06:05:38 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2009/12/07 06:05:38 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2009/12/07 06:05:38 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2009/12/07 06:05:38 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2009/12/07 06:05:38 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2009/12/07 06:05:38 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2009/12/07 06:05:38 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2009/12/07 06:05:38 | 00,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2009/12/07 06:05:38 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2009/12/07 06:05:38 | 00,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2009/12/07 06:05:38 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2009/12/07 06:05:38 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2009/12/07 06:05:38 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2009/12/07 06:05:37 | 00,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2009/12/07 06:05:37 | 00,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2009/12/07 06:05:37 | 00,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2009/12/07 06:05:37 | 00,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2009/12/07 06:05:37 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2009/12/07 06:05:37 | 00,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2009/12/07 06:05:37 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2009/12/07 06:05:37 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2009/12/07 06:05:37 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2009/12/07 06:05:37 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2009/12/07 06:05:37 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2009/12/07 06:05:37 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2009/12/07 06:05:37 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2009/12/07 06:05:36 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv [2009/12/07 06:05:36 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2009/12/07 06:05:36 | 00,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2009/12/07 06:05:29 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu [2009/12/07 06:05:29 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2009/12/07 06:05:29 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates [2009/12/07 06:05:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites [2009/12/07 06:05:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop [2009/12/07 06:05:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2009/12/07 06:05:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2009/12/07 06:05:11 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2009/12/07 06:05:11 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2009/12/07 06:04:51 | 00,000,000 | -HSD | C] -- C:\System Volume Information [2009/12/07 06:04:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings [2009/12/07 05:58:28 | 00,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2009/12/07 05:58:28 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2009/12/07 05:58:28 | 00,000,000 | R--D | C] -- C:\WINDOWS\Web [2009/12/07 05:58:28 | 00,000,000 | -H-D | C] -- C:\WINDOWS\inf [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Temp [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\system32 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\system [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\security [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Resources [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\repair [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\mui [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\msapps [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\msagent [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Media [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\java [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\ime [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Help [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\ehome [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\dell [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Debug [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Config [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\addins [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  7. OTL logs Pt. 2 ========== Files/Folders - Created Within 30 Days ========== [2009/12/14 10:15:30 | 00,538,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Heather\Desktop\OTL.exe [2009/12/12 17:53:50 | 00,000,000 | ---D | C] -- C:\WINDOWS\pss [2009/12/11 15:47:27 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2009/12/11 11:41:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Malwarebytes [2009/12/11 01:14:34 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2009/12/11 01:14:30 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild [2009/12/11 01:14:21 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2009/12/11 01:13:51 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll [2009/12/11 01:13:51 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll [2009/12/11 01:13:51 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe [2009/12/11 01:13:51 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll [2009/12/11 01:13:51 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll [2009/12/11 01:13:51 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll [2009/12/11 01:13:50 | 00,000,000 | ---D | C] -- C:\935a1f42d14423e912029a9e [2009/12/10 17:54:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Receipts [2009/12/09 23:39:12 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys [2009/12/09 23:39:10 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys [2009/12/09 23:39:10 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware [2009/12/09 23:39:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes [2009/12/09 18:17:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Local Settings\Application Data\Identities [2009/12/09 17:00:18 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Heather\PrivacIE [2009/12/08 16:52:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Programs [2009/12/08 16:52:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Downloads [2009/12/08 16:25:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Macromedia [2009/12/08 16:25:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Adobe [2009/12/08 16:07:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\My Documents\Blogs [2009/12/08 16:02:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\FileZilla [2009/12/08 15:52:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Local Settings\Application Data\Mozilla [2009/12/08 15:52:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Mozilla [2009/12/08 15:42:33 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents\My Videos [2009/12/08 15:41:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Application Data\Identities [2009/12/08 15:41:23 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents\My Music [2009/12/08 15:41:22 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents\My Pictures [2009/12/08 15:41:18 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Heather\IETldCache [2009/12/08 15:41:14 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Heather\Application Data\Microsoft [2009/12/08 15:41:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Heather\SendTo [2009/12/08 15:41:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Heather\Recent [2009/12/08 15:41:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Heather\Application Data [2009/12/08 15:41:14 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\Start Menu [2009/12/08 15:41:14 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\My Documents [2009/12/08 15:41:14 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Heather\Favorites [2009/12/08 15:41:14 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Heather\Cookies [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\Templates [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\PrintHood [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\NetHood [2009/12/08 15:41:14 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Heather\Local Settings [2009/12/08 15:41:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Local Settings\Application Data\Microsoft [2009/12/08 15:41:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Heather\Desktop [2009/12/07 15:53:32 | 00,000,000 | ---D | C] -- C:\Program Files\NOS [2009/12/07 15:53:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NOS [2009/12/07 15:29:00 | 00,000,000 | ---D | C] -- C:\Program Files\FileZilla FTP Client [2009/12/07 15:24:50 | 00,172,032 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\stacapi.dll [2009/12/07 15:24:49 | 00,000,000 | ---D | C] -- C:\Program Files\SigmaTel [2009/12/07 15:08:10 | 00,135,168 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll [2009/12/07 15:06:03 | 00,000,000 | ---D | C] -- C:\Program Files\Creative [2009/12/07 15:03:17 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbscan.sys [2009/12/07 15:03:13 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wiafbdrv.dll [2009/12/07 15:03:13 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll [2009/12/07 15:02:38 | 00,983,092 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dlcdgf.dll [2009/12/07 15:02:31 | 00,000,000 | ---D | C] -- C:\Program Files\Dell Photo AIO Printer 944 [2009/12/07 15:02:21 | 00,000,000 | ---D | C] -- C:\Temp [2009/12/07 14:17:46 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2009/12/07 14:17:44 | 00,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2009/12/07 14:17:42 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2009/12/07 14:17:39 | 00,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2009/12/07 14:17:37 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2009/12/07 14:17:35 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2009/12/07 14:17:33 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2009/12/07 14:17:31 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2009/12/07 14:17:03 | 00,000,000 | ---D | C] -- C:\Program Files\IDT [2009/12/07 14:17:01 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2009/12/07 14:17:01 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2009/12/07 14:16:59 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2009/12/07 14:16:59 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2009/12/07 14:15:53 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft [2009/12/07 14:14:14 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en [2009/12/07 14:03:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2009/12/07 14:01:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2009/12/07 13:59:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2009/12/07 13:56:38 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2009/12/07 13:49:02 | 00,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys [2009/12/07 13:49:02 | 00,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys [2009/12/07 13:49:02 | 00,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys [2009/12/07 13:49:02 | 00,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys [2009/12/07 13:49:02 | 00,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys [2009/12/07 13:49:02 | 00,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys [2009/12/07 13:48:58 | 00,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys [2009/12/07 13:48:58 | 00,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys [2009/12/07 13:48:58 | 00,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys [2009/12/07 13:48:58 | 00,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys [2009/12/07 13:48:58 | 00,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys [2009/12/07 13:48:58 | 00,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys [2009/12/07 13:48:57 | 01,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys [2009/12/07 13:48:57 | 00,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys [2009/12/07 13:48:56 | 01,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys [2009/12/07 13:48:56 | 00,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys [2009/12/07 13:48:56 | 00,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys [2009/12/07 13:48:51 | 01,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys [2009/12/07 13:48:51 | 00,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys [2009/12/07 13:48:51 | 00,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys [2009/12/07 13:48:10 | 00,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys [2009/12/07 13:48:10 | 00,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys [2009/12/07 13:48:10 | 00,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys [2009/12/07 13:48:10 | 00,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys [2009/12/07 13:48:10 | 00,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys [2009/12/07 13:48:10 | 00,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys [2009/12/07 13:48:10 | 00,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys [2009/12/07 13:48:10 | 00,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys [2009/12/07 13:48:10 | 00,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys [2009/12/07 13:48:10 | 00,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys [2009/12/07 13:48:10 | 00,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys [2009/12/07 13:48:10 | 00,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys [2009/12/07 13:48:10 | 00,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys [2009/12/07 13:48:10 | 00,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys [2009/12/07 13:48:10 | 00,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys [2009/12/07 13:48:10 | 00,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys [2009/12/07 13:48:10 | 00,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys [2009/12/07 13:48:10 | 00,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys [2009/12/07 13:48:10 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys [2009/12/07 13:48:10 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys [2009/12/07 13:48:10 | 00,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys [2009/12/07 13:48:10 | 00,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys [2009/12/07 13:46:50 | 00,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2009/12/07 13:43:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2009/12/07 13:43:13 | 11,069,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2009/12/07 13:43:13 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2009/12/07 13:43:13 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2009/12/07 13:43:13 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2009/12/07 13:43:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2009/12/07 13:42:07 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2009/12/07 13:42:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2009/12/07 13:32:09 | 00,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2009/12/07 13:22:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage [2009/12/07 12:54:35 | 00,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys [2009/12/07 12:54:34 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2009/12/07 12:54:30 | 00,333,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys [2009/12/07 12:54:08 | 00,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll [2009/12/07 12:53:21 | 00,730,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lsasrv.dll [2009/12/07 12:53:20 | 02,189,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe [2009/12/07 12:53:20 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe [2009/12/07 12:53:19 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe [2009/12/07 12:53:05 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\kb913800.exe [2009/12/07 12:48:36 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys [2009/12/07 12:36:32 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$MSI31Uninstall_KB893803v2$ [2009/12/07 12:36:20 | 00,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2009/12/07 12:36:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2009/12/07 12:36:00 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys [2009/12/07 12:33:10 | 00,023,120 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys [2009/12/07 12:33:09 | 00,048,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys [2009/12/07 12:33:09 | 00,027,408 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys [2009/12/07 12:33:07 | 00,114,768 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswSP.sys [2009/12/07 12:33:07 | 00,097,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\AvastSS.scr [2009/12/07 12:33:07 | 00,020,560 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys [2009/12/07 12:33:06 | 00,094,160 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys [2009/12/07 12:33:06 | 00,093,424 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\drivers\aswmon.sys [2009/12/07 12:32:48 | 01,280,480 | ---- | C] (ALWIL Software) -- C:\WINDOWS\System32\aswBoot.exe [2009/12/07 12:32:46 | 00,000,000 | ---D | C] -- C:\Program Files\Alwil Software [2009/12/07 12:26:53 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2009/12/07 12:23:16 | 00,000,000 | ---D | C] -- C:\Program Files\Intel [2009/12/07 12:23:10 | 00,256,712 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\PROUnstl.exe [2009/12/07 12:21:22 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\MODEMCSA.sys [2009/12/07 12:21:22 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys [2009/12/07 12:21:21 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2009/12/07 12:21:21 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2009/12/07 12:21:21 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2009/12/07 12:21:21 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2009/12/07 12:21:12 | 00,000,000 | ---D | C] -- C:\Program Files\CONEXANT [2009/12/07 12:21:06 | 01,042,432 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_DP.sys [2009/12/07 12:21:06 | 00,680,704 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSF_CNXT.sys [2009/12/07 12:21:06 | 00,212,224 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\HSFHWBS2.sys [2009/12/07 12:21:06 | 00,090,112 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll [2009/12/07 12:21:06 | 00,032,218 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\HSFCI008.dll [2009/12/07 12:21:06 | 00,011,043 | ---- | C] (Conexant) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys [2009/12/07 12:19:10 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2009/12/07 12:19:10 | 00,000,000 | ---D | C] -- C:\Program Files\NetWaiting [2009/12/07 12:18:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2009/12/07 11:55:56 | 00,000,000 | ---D | C] -- C:\Program Files\InterActual [2009/12/07 11:55:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic [2009/12/07 11:55:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared [2009/12/07 11:55:48 | 00,000,000 | ---D | C] -- C:\Program Files\Dell [2009/12/07 11:55:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared [2009/12/07 11:51:45 | 00,000,000 | -HSD | C] -- C:\RECYCLER [2009/12/07 11:46:39 | 00,280,576 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\mixres32.dll [2009/12/07 11:46:39 | 00,050,688 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\audpci40.dll [2009/12/07 11:46:39 | 00,022,016 | R--- | C] (Creative Technology, Ltd.) -- C:\WINDOWS\System32\starter.exe [2009/12/07 11:46:38 | 00,229,888 | R--- | C] (ENSONIQ Corp.) -- C:\WINDOWS\System32\ensmix32.exe [2009/12/07 11:46:38 | 00,010,752 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\ensres32.dll [2009/12/07 11:46:35 | 00,275,264 | R--- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\eapci40.sys [2009/12/07 11:46:34 | 00,299,008 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe [2009/12/07 11:31:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2009/12/07 11:30:08 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys [2009/12/07 11:29:10 | 00,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe [2009/12/07 11:27:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2009/12/07 11:27:03 | 00,000,000 | ---D | C] -- C:\Program Files\RGB [2009/12/07 11:25:38 | 00,000,000 | ---D | C] -- C:\Program Files\GemMaster [2009/12/07 11:21:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Recorded TV [2009/12/07 11:21:31 | 00,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2009/12/07 11:21:28 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft [2009/12/07 11:21:28 | 00,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2009/12/07 11:21:12 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft [2009/12/07 11:21:12 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft [2009/12/07 11:20:12 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresja.dll [2009/12/07 11:20:12 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresko.dll [2009/12/07 11:20:11 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresfr.dll [2009/12/07 11:20:11 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehresde.dll [2009/12/07 11:20:00 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehreschs.dll [2009/12/07 11:19:54 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2009/12/07 11:19:52 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2009/12/07 11:19:51 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2009/12/07 11:19:51 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2009/12/07 11:19:51 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2009/12/07 11:19:51 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2009/12/07 11:19:50 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2009/12/07 11:19:50 | 00,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2009/12/07 11:19:50 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2009/12/07 11:19:49 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2009/12/07 11:19:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2009/12/07 11:19:48 | 00,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2009/12/07 11:19:48 | 00,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2009/12/07 11:19:48 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2009/12/07 11:19:48 | 00,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2009/12/07 11:19:48 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2009/12/07 11:19:46 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2009/12/07 11:19:46 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2009/12/07 11:19:46 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2009/12/07 11:19:45 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2009/12/07 11:19:45 | 00,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2009/12/07 11:19:45 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2009/12/07 11:19:45 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2009/12/07 11:19:45 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2009/12/07 11:19:44 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2009/12/07 11:19:44 | 00,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2009/12/07 11:19:44 | 00,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2009/12/07 11:19:43 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2009/12/07 11:19:42 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2009/12/07 11:19:41 | 00,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2009/12/07 11:19:41 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2009/12/07 11:19:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2009/12/07 11:19:40 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2009/12/07 11:19:39 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2009/12/07 11:19:39 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2009/12/07 11:19:39 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2009/12/07 11:19:39 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2009/12/07 11:19:39 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2009/12/07 11:19:39 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2009/12/07 11:19:39 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2009/12/07 11:19:39 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2009/12/07 11:19:39 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2009/12/07 11:19:39 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2009/12/07 11:19:39 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2009/12/07 11:19:39 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2009/12/07 11:19:38 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2009/12/07 11:19:38 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2009/12/07 11:19:38 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2009/12/07 11:19:38 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2009/12/07 11:19:38 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2009/12/07 11:19:36 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2009/12/07 11:19:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2009/12/07 11:19:35 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2009/12/07 11:19:35 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2009/12/07 11:19:34 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2009/12/07 11:19:33 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2009/12/07 11:19:33 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2009/12/07 11:19:32 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2009/12/07 11:19:32 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2009/12/07 11:19:32 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2009/12/07 11:19:31 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2009/12/07 11:19:31 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2009/12/07 11:19:30 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2009/12/07 11:19:30 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2009/12/07 11:19:30 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2009/12/07 11:19:30 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2009/12/07 11:19:30 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2009/12/07 11:19:29 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2009/12/07 11:19:29 | 00,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2009/12/07 11:19:29 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2009/12/07 11:19:29 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2009/12/07 11:19:29 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2009/12/07 11:19:29 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2009/12/07 11:19:29 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2009/12/07 11:19:27 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2009/12/07 11:19:27 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2009/12/07 11:19:26 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2009/12/07 11:19:25 | 00,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2009/12/07 11:19:22 | 01,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2009/12/07 11:19:22 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2009/12/07 11:19:18 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2009/12/07 11:19:18 | 00,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2009/12/07 11:19:17 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2009/12/07 11:19:17 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2009/12/07 11:19:16 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2009/12/07 11:19:15 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2009/12/07 11:19:15 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2009/12/07 11:19:14 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2009/12/07 11:19:14 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2009/12/07 11:19:14 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2009/12/07 11:19:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2009/12/07 11:19:14 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2009/12/07 11:19:14 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2009/12/07 11:19:13 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2009/12/07 11:19:13 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2009/12/07 11:19:13 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2009/12/07 11:19:12 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2009/12/07 11:19:12 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2009/12/07 11:19:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2009/12/07 11:19:12 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2009/12/07 11:19:12 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2009/12/07 11:19:11 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2009/12/07 11:19:11 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2009/12/07 11:19:10 | 00,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2009/12/07 11:19:10 | 00,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2009/12/07 11:19:10 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2009/12/07 11:19:09 | 00,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2009/12/07 11:19:09 | 00,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2009/12/07 11:19:09 | 00,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2009/12/07 11:19:09 | 00,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2009/12/07 11:19:09 | 00,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2009/12/07 11:19:09 | 00,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2009/12/07 11:19:09 | 00,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2009/12/07 11:19:09 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2009/12/07 11:19:09 | 00,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2009/12/07 11:19:08 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2009/12/07 11:19:08 | 00,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2009/12/07 11:19:08 | 00,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2009/12/07 11:19:08 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2009/12/07 11:19:08 | 00,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2009/12/07 11:19:08 | 00,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2009/12/07 11:19:08 | 00,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2009/12/07 11:19:08 | 00,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2009/12/07 11:19:07 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2009/12/07 11:19:07 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2009/12/07 11:19:07 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2009/12/07 11:19:07 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2009/12/07 11:19:07 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2009/12/07 11:19:07 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2009/12/07 11:19:07 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2009/12/07 11:19:06 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2009/12/07 11:19:02 | 10,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2009/12/07 11:18:55 | 10,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2009/12/07 11:18:53 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2009/12/07 11:18:52 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2009/12/07 11:18:51 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2009/12/07 11:18:51 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2009/12/07 11:18:51 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2009/12/07 11:18:50 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2009/12/07 11:18:50 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2009/12/07 11:18:49 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2009/12/07 11:18:49 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2009/12/07 11:18:48 | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2009/12/07 11:18:48 | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2009/12/07 11:18:48 | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2009/12/07 11:18:48 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2009/12/07 11:18:47 | 00,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2009/12/07 11:18:44 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2009/12/07 11:18:44 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2009/12/07 11:18:43 | 00,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2009/12/07 11:18:43 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2009/12/07 11:18:43 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2009/12/07 11:18:43 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2009/12/07 11:18:42 | 00,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2009/12/07 11:18:41 | 00,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2009/12/07 11:18:41 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2009/12/07 11:18:41 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2009/12/07 11:18:41 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2009/12/07 11:18:41 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2009/12/07 11:18:40 | 01,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2009/12/07 11:18:40 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2009/12/07 11:18:40 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2009/12/07 11:18:40 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2009/12/07 11:18:40 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2009/12/07 11:18:40 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2009/12/07 11:18:39 | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2009/12/07 11:18:39 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2009/12/07 11:18:39 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2009/12/07 11:18:34 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2009/12/07 11:18:33 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2009/12/07 11:18:33 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2009/12/07 11:18:32 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2009/12/07 11:18:32 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2009/12/07 11:18:31 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2009/12/07 11:18:31 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2009/12/07 11:18:31 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2009/12/07 11:18:29 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2009/12/07 11:18:29 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2009/12/07 11:18:28 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2009/12/07 11:18:28 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2009/12/07 11:18:24 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2009/12/07 11:18:24 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2009/12/07 11:18:24 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2009/12/07 11:18:23 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2009/12/07 11:18:23 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2009/12/07 11:18:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2009/12/07 11:18:20 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2009/12/07 11:18:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2009/12/07 11:18:17 | 00,000,000 | ---D | C] -- C:\Program Files\xerox [2009/12/07 11:18:17 | 00,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2009/12/07 11:17:36 | 00,000,000 | ---D | C] -- C:\DELL [2009/12/07 11:17:26 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2009/12/07 11:17:24 | 00,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll [2009/12/07 11:16:54 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2009/12/07 11:15:59 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2009/12/07 11:15:50 | 00,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2009/12/07 11:15:50 | 00,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2009/12/07 11:15:40 | 00,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2009/12/07 11:15:24 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2009/12/07 11:15:08 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2009/12/07 11:15:08 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2009/12/07 11:15:08 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2009/12/07 11:15:08 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2009/12/07 11:15:08 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2009/12/07 11:15:08 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2009/12/07 11:15:02 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2009/12/07 11:15:01 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2009/12/07 11:15:01 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2009/12/07 11:15:01 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2009/12/07 11:15:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2009/12/07 11:15:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2009/12/07 11:14:58 | 00,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2009/12/07 11:14:58 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2009/12/07 11:14:58 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2009/12/07 11:14:58 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2009/12/07 11:14:58 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2009/12/07 11:14:58 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2009/12/07 11:14:58 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2009/12/07 11:14:58 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2009/12/07 11:14:58 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2009/12/07 11:14:58 | 00,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2009/12/07 11:14:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2009/12/07 11:14:57 | 00,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2009/12/07 11:14:54 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll [2009/12/07 11:14:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2009/12/07 11:14:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2009/12/07 11:14:52 | 00,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2009/12/07 11:14:52 | 00,819,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2009/12/07 11:14:52 | 00,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2009/12/07 11:14:52 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2009/12/07 11:14:52 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2009/12/07 11:14:51 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2009/12/07 11:14:51 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2009/12/07 11:14:51 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2009/12/07 11:14:51 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2009/12/07 11:14:51 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2009/12/07 11:14:51 | 00,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2009/12/07 11:14:51 | 00,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2009/12/07 11:14:51 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2009/12/07 11:14:51 | 00,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2009/12/07 11:14:51 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2009/12/07 11:14:51 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2009/12/07 11:14:51 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2009/12/07 11:14:50 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2009/12/07 11:14:50 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2009/12/07 11:14:50 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2009/12/07 11:14:44 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2009/12/07 11:14:44 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2009/12/07 11:14:44 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2009/12/07 11:14:44 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2009/12/07 11:14:41 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe [2009/12/07 11:14:40 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2009/12/07 11:14:40 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2009/12/07 11:14:40 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2009/12/07 11:14:40 | 00,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2009/12/07 11:14:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2009/12/07 11:14:39 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2009/12/07 11:14:39 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2009/12/07 11:14:37 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2009/12/07 11:14:37 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2009/12/07 11:14:37 | 00,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2009/12/07 11:14:36 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2009/12/07 11:14:34 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2009/12/07 11:14:34 | 00,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2009/12/07 11:14:33 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2009/12/07 11:14:33 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2009/12/07 11:14:33 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2009/12/07 11:14:33 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2009/12/07 11:14:29 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2009/12/07 11:14:29 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2009/12/07 11:14:29 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2009/12/07 11:14:28 | 00,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2009/12/07 11:14:28 | 00,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2009/12/07 11:14:26 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music [2009/12/07 11:13:53 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2009/12/07 11:13:24 | 00,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2009/12/07 11:13:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\Registration [2009/12/07 11:13:12 | 00,000,000 | ---D | C] -- C:\Program Files\Online Services [2009/12/07 11:12:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2009/12/07 11:12:55 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2009/12/07 11:12:39 | 01,742,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mypixdx.scr [2009/12/07 11:12:39 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Plus [2009/12/07 11:12:37 | 07,093,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\space.scr [2009/12/07 11:12:36 | 04,396,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wpgldfsh.scr [2009/12/07 11:12:36 | 03,343,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nature.scr [2009/12/07 11:12:34 | 05,068,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\davinci.scr [2009/12/07 11:12:33 | 00,020,576 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\pxhelp20.sys [2009/12/07 11:12:30 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\igdetect.dll [2009/12/07 11:12:27 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll [2009/12/07 11:12:27 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll [2009/12/07 11:12:27 | 00,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2009/12/07 11:11:47 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehsqse20.dll [2009/12/07 11:11:46 | 00,462,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehsqqp20.dll [2009/12/07 11:11:46 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehsqdb20.dll [2009/12/07 11:11:46 | 00,117,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdatunepia.dll [2009/12/07 11:11:46 | 00,063,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\medctrro.exe [2009/12/07 11:11:46 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehmsas.exe [2009/12/07 11:11:45 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures [2009/12/07 11:11:41 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiuserxp.dll [2009/12/07 11:11:40 | 03,219,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehshell.exe [2009/12/07 11:11:40 | 01,370,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehchsime.dll [2009/12/07 11:11:40 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehcommon.dll [2009/12/07 11:11:40 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehRec.exe [2009/12/07 11:11:40 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehjpnime.dll [2009/12/07 11:11:40 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehentt.dll [2009/12/07 11:11:39 | 01,863,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehcm.dll [2009/12/07 11:11:39 | 00,492,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehui.dll [2009/12/07 11:11:39 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehdrop.dll [2009/12/07 11:11:39 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehSched.exe [2009/12/07 11:11:39 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehtray.exe [2009/12/07 11:11:39 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehdebug.dll [2009/12/07 11:11:36 | 08,843,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehres.dll [2009/12/07 11:11:35 | 01,349,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehuihlp.dll [2009/12/07 11:11:35 | 00,864,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepg.dll [2009/12/07 11:11:35 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehRecObj.dll [2009/12/07 11:11:35 | 00,389,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiProxy.dll [2009/12/07 11:11:35 | 00,307,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehPlayer.dll [2009/12/07 11:11:35 | 00,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiVidCtl.dll [2009/12/07 11:11:35 | 00,269,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehglid.dll [2009/12/07 11:11:35 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiPlay.dll [2009/12/07 11:11:35 | 00,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\debugsvc.dll [2009/12/07 11:11:35 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepgdat.dll [2009/12/07 11:11:35 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiwmp.dll [2009/12/07 11:11:35 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehCIR.dll [2009/12/07 11:11:35 | 00,097,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehProxy.dll [2009/12/07 11:11:35 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehiExtens.dll [2009/12/07 11:11:35 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepgdec.dll [2009/12/07 11:11:35 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ehepgnet.dll [2009/12/07 11:11:32 | 01,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2009/12/07 11:11:32 | 00,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2009/12/07 11:11:32 | 00,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2009/12/07 11:11:32 | 00,000,000 | ---D | C] -- C:\Program Files\OFF_Messenger [2009/12/07 11:11:31 | 02,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2009/12/07 11:11:31 | 01,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2009/12/07 11:11:31 | 00,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2009/12/07 11:11:31 | 00,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2009/12/07 11:11:31 | 00,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2009/12/07 11:11:31 | 00,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2009/12/07 11:11:31 | 00,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2009/12/07 11:11:31 | 00,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2009/12/07 11:11:31 | 00,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2009/12/07 11:11:31 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2009/12/07 11:11:31 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2009/12/07 11:11:31 | 00,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2009/12/07 11:11:31 | 00,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2009/12/07 11:11:30 | 01,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2009/12/07 11:11:30 | 00,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2009/12/07 11:11:30 | 00,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2009/12/07 11:11:30 | 00,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2009/12/07 11:11:30 | 00,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2009/12/07 11:11:30 | 00,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2009/12/07 11:11:30 | 00,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2009/12/07 11:11:30 | 00,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2009/12/07 11:11:29 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2009/12/07 11:11:29 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2009/12/07 11:11:29 | 00,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2009/12/07 11:11:23 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2009/12/07 11:11:23 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2009/12/07 11:11:22 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2009/12/07 11:11:22 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2009/12/07 11:11:22 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2009/12/07 11:11:22 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2009/12/07 11:11:22 | 00,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2009/12/07 11:11:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2009/12/07 11:11:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2009/12/07 11:11:22 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2009/12/07 11:11:22 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2009/12/07 11:11:22 | 00,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2009/12/07 11:11:17 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2009/12/07 11:11:17 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2009/12/07 11:11:17 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2009/12/07 11:11:17 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2009/12/07 11:11:17 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2009/12/07 11:11:17 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2009/12/07 11:11:17 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2009/12/07 11:11:17 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2009/12/07 11:11:17 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2009/12/07 11:11:17 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2009/12/07 11:11:16 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2009/12/07 11:11:16 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2009/12/07 11:11:16 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2009/12/07 11:11:16 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2009/12/07 11:11:16 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2009/12/07 11:11:16 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2009/12/07 11:11:16 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2009/12/07 11:11:16 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2009/12/07 11:11:16 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2009/12/07 11:11:16 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2009/12/07 11:11:16 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2009/12/07 11:11:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2009/12/07 11:11:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2009/12/07 11:11:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2009/12/07 11:11:16 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2009/12/07 11:11:16 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2009/12/07 11:11:16 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2009/12/07 11:11:16 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2009/12/07 11:11:16 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2009/12/07 11:11:16 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2009/12/07 11:11:15 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2009/12/07 11:11:15 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2009/12/07 11:11:15 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2009/12/07 11:11:15 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2009/12/07 11:11:15 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2009/12/07 11:11:15 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2009/12/07 11:11:15 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2009/12/07 11:11:15 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2009/12/07 11:11:15 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2009/12/07 11:11:15 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2009/12/07 11:11:15 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2009/12/07 11:11:15 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2009/12/07 11:11:14 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2009/12/07 11:11:14 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2009/12/07 11:11:12 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2009/12/07 11:11:12 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2009/12/07 11:11:12 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2009/12/07 11:11:12 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2009/12/07 11:11:12 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2009/12/07 11:11:12 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2009/12/07 11:11:12 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2009/12/07 11:11:12 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2009/12/07 11:11:12 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2009/12/07 11:11:12 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2009/12/07 11:11:11 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2009/12/07 11:11:11 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2009/12/07 11:11:11 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2009/12/07 11:11:11 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2009/12/07 11:11:11 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2009/12/07 11:11:11 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2009/12/07 11:11:01 | 00,000,000 | ---D | C] -- C:\Program Files\MSN [2009/12/07 11:11:00 | 00,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2009/12/07 11:11:00 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2009/12/07 11:11:00 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2009/12/07 11:11:00 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2009/12/07 11:11:00 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2009/12/07 11:11:00 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2009/12/07 11:10:59 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2009/12/07 11:10:59 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2009/12/07 11:10:59 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2009/12/07 11:10:59 | 00,000,000 | ---D | C] -- C:\Program Files\Windows NT [2009/12/07 11:10:58 | 02,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll [2009/12/07 11:10:58 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe [2009/12/07 11:10:58 | 00,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe [2009/12/07 11:10:58 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2009/12/07 11:10:58 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2009/12/07 11:10:58 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2009/12/07 11:10:57 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2009/12/07 11:10:57 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2009/12/07 11:10:57 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2009/12/07 11:10:57 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2009/12/07 11:10:57 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2009/12/07 11:10:57 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2009/12/07 11:10:56 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2009/12/07 11:10:56 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2009/12/07 11:10:56 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2009/12/07 11:10:56 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2009/12/07 11:10:56 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2009/12/07 11:10:56 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2009/12/07 11:10:56 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2009/12/07 11:10:56 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2009/12/07 11:10:56 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2009/12/07 11:10:55 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2009/12/07 11:10:55 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2009/12/07 11:10:55 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2009/12/07 11:10:55 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2009/12/07 11:10:55 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2009/12/07 11:10:54 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2009/12/07 11:10:54 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2009/12/07 11:10:54 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2009/12/07 11:10:54 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2009/12/07 11:10:49 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2009/12/07 11:10:49 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2009/12/07 11:10:49 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2009/12/07 11:10:49 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2009/12/07 11:10:44 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos [2009/12/07 06:06:49 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2009/12/07 06:05:51 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2009/12/07 06:05:50 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2009/12/07 06:05:50 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2009/12/07 06:05:50 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2009/12/07 06:05:48 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2009/12/07 06:05:48 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2009/12/07 06:05:48 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2009/12/07 06:05:47 | 00,000,000 | R--D | C] -- C:\Program Files [2009/12/07 06:05:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2009/12/07 06:05:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files [2009/12/07 06:05:45 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2009/12/07 06:05:45 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2009/12/07 06:05:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2009/12/07 06:05:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2009/12/07 06:05:45 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2009/12/07 06:05:45 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2009/12/07 06:05:44 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2009/12/07 06:05:44 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2009/12/07 06:05:43 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2009/12/07 06:05:43 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2009/12/07 06:05:43 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2009/12/07 06:05:43 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2009/12/07 06:05:43 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2009/12/07 06:05:43 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2009/12/07 06:05:43 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2009/12/07 06:05:43 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2009/12/07 06:05:43 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2009/12/07 06:05:43 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2009/12/07 06:05:43 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2009/12/07 06:05:43 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2009/12/07 06:05:43 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2009/12/07 06:05:43 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2009/12/07 06:05:42 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2009/12/07 06:05:42 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2009/12/07 06:05:42 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2009/12/07 06:05:42 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2009/12/07 06:05:42 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2009/12/07 06:05:42 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2009/12/07 06:05:42 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2009/12/07 06:05:42 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2009/12/07 06:05:42 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2009/12/07 06:05:42 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2009/12/07 06:05:40 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2009/12/07 06:05:40 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2009/12/07 06:05:40 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2009/12/07 06:05:40 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2009/12/07 06:05:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2009/12/07 06:05:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll [2009/12/07 06:05:40 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2009/12/07 06:05:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2009/12/07 06:05:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll [2009/12/07 06:05:40 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2009/12/07 06:05:39 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2009/12/07 06:05:39 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2009/12/07 06:05:38 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2009/12/07 06:05:38 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2009/12/07 06:05:38 | 00,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2009/12/07 06:05:38 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2009/12/07 06:05:38 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2009/12/07 06:05:38 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2009/12/07 06:05:38 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2009/12/07 06:05:38 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2009/12/07 06:05:38 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2009/12/07 06:05:38 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2009/12/07 06:05:38 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2009/12/07 06:05:38 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2009/12/07 06:05:38 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2009/12/07 06:05:38 | 00,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2009/12/07 06:05:38 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2009/12/07 06:05:38 | 00,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2009/12/07 06:05:38 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2009/12/07 06:05:38 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2009/12/07 06:05:38 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2009/12/07 06:05:37 | 00,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2009/12/07 06:05:37 | 00,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2009/12/07 06:05:37 | 00,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2009/12/07 06:05:37 | 00,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2009/12/07 06:05:37 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2009/12/07 06:05:37 | 00,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2009/12/07 06:05:37 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2009/12/07 06:05:37 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2009/12/07 06:05:37 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2009/12/07 06:05:37 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2009/12/07 06:05:37 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2009/12/07 06:05:37 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2009/12/07 06:05:37 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2009/12/07 06:05:36 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv [2009/12/07 06:05:36 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2009/12/07 06:05:36 | 00,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2009/12/07 06:05:29 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu [2009/12/07 06:05:29 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents [2009/12/07 06:05:29 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates [2009/12/07 06:05:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites [2009/12/07 06:05:29 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop [2009/12/07 06:05:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2009/12/07 06:05:17 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2009/12/07 06:05:11 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft [2009/12/07 06:05:11 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data [2009/12/07 06:04:51 | 00,000,000 | -HSD | C] -- C:\System Volume Information [2009/12/07 06:04:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings [2009/12/07 05:58:28 | 00,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2009/12/07 05:58:28 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2009/12/07 05:58:28 | 00,000,000 | R--D | C] -- C:\WINDOWS\Web [2009/12/07 05:58:28 | 00,000,000 | -H-D | C] -- C:\WINDOWS\inf [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Temp [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\system32 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\system [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\security [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Resources [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\repair [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\mui [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\msapps [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\msagent [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Media [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\java [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\ime [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Help [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\ehome [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\dell [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Debug [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\Config [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\addins [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2009/12/07 05:58:28 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
  8. OTL Log OTL logfile created on: 12/14/2009 10:16:16 AM - Run 1 OTL by OldTimer - Version 3.1.17.0 Folder = C:\Documents and Settings\Heather\Desktop Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1014.08 Mb Total Physical Memory | 615.89 Mb Available Physical Memory | 60.73% Memory free 2.38 Gb Paging File | 2.05 Gb Available in Paging File | 86.17% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 298.08 Gb Total Space | 284.96 Gb Free Space | 95.60% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: MAINADMINCOMP Current User Name: Heather Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Heather\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) PRC - C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) ========== Modules (SafeList) ========== MOD - C:\Documents and Settings\Heather\Desktop\OTL.exe (OldTimer Tools) ========== Win32 Services (SafeList) ========== SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software) SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) SRV - (getPlusHelper) getPlus® -- C:\Program Files\NOS\bin\getPlus_Helper.dll (NOS Microsystems Ltd.) SRV - (dlcd_device) -- C:\WINDOWS\System32\dlcdcoms.exe () ========== Driver Services (SafeList) ========== DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software) DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software) DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software) DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows ® Server 2003 DDK provider) DRV - (E100B) Intel® -- C:\WINDOWS\system32\drivers\e100b325.sys (Intel Corporation) DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.) DRV - (ialm) -- C:\WINDOWS\system32\drivers\ialmnt5.sys (Intel Corporation) DRV - (PxHelp20) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions) DRV - (cercsr6) -- C:\WINDOWS\system32\drivers\cercsr6.sys (Adaptec, Inc.) DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.) DRV - (HSFHWBS2) -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys (Conexant Systems, Inc.) DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.) DRV - (HSF_DP) -- C:\WINDOWS\system32\drivers\HSF_DP.sys (Conexant Systems, Inc.) DRV - (mdmxsdk) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys (Conexant) DRV - (MODEMCSA) -- C:\WINDOWS\system32\drivers\MODEMCSA.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 14 E4 A9 DA 21 7C CA 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/12/11 17:26:19 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/12/11 15:47:28 | 00,000,000 | ---D | M] [2009/12/08 15:52:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Heather\Application Data\Mozilla\Extensions [2009/12/13 19:39:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Heather\Application Data\Mozilla\Firefox\Profiles\5wgfmic7.default\extensions [2009/12/11 15:47:28 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 207.69.188.186 207.69.188.187 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/12/07 11:17:14 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2009/12/07 11:16:35 | 00,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: LanmanServer - File not found NetSvcs: LanmanWorkstation - File not found NetSvcs: Messenger - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - Services: "RasMan" MsConfig - StartUpReg: ctfmon.exe - hkey= - key= - File not found MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 2 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: Netlogon - Service SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: Browser - Service SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: LanmanServer - Service SafeBootNet: LanmanWorkstation - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOS - Service SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Netlogon - Service SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NtLmSsp - Service SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5056b317-8d4c-43ee-8543-b9d1e234b8f4} - Security Update for Windows XP (KB923789) ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player ActiveX: {DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D} - Microsoft .NET Framework 1.1 Security Update (KB953297) ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295) ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {EA29D410-CE41-4953-A862-2DE706A1DAD7} - Microsoft .NET Framework 1.0 Service Pack 3 ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall Drivers32: aux - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: midi - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: mixer - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: wave - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: wave1 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)
  9. OTL Log OTL logfile created on: 12/14/2009 10:16:16 AM - Run 1 OTL by OldTimer - Version 3.1.17.0 Folder = C:\Documents and Settings\Heather\Desktop Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1014.08 Mb Total Physical Memory | 615.89 Mb Available Physical Memory | 60.73% Memory free 2.38 Gb Paging File | 2.05 Gb Available in Paging File | 86.17% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 298.08 Gb Total Space | 284.96 Gb Free Space | 95.60% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: MAINADMINCOMP Current User Name: Heather Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Minimal ========== Processes (SafeList) ========== PRC - C:\Documents and Settings\Heather\Desktop\OTL.exe (OldTimer Tools) PRC - C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) PRC - C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) PRC - C:\WINDOWS\pchealth\helpctr\binaries\msconfig.exe (Microsoft Corporation) PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation) ========== Modules (SafeList) ========== MOD - C:\Documents and Settings\Heather\Desktop\OTL.exe (OldTimer Tools) ========== Win32 Services (SafeList) ========== SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast4\ashServ.exe (ALWIL Software) SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe (ALWIL Software) SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast4\ashWebSv.exe (ALWIL Software) SRV - (aswUpdSv) -- C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe (ALWIL Software) SRV - (getPlusHelper) getPlus® -- C:\Program Files\NOS\bin\getPlus_Helper.dll (NOS Microsystems Ltd.) SRV - (dlcd_device) -- C:\WINDOWS\System32\dlcdcoms.exe () ========== Driver Services (SafeList) ========== DRV - (aswMon2) -- C:\WINDOWS\system32\drivers\aswmon2.sys (ALWIL Software) DRV - (aswSP) -- C:\WINDOWS\system32\drivers\aswSP.sys (ALWIL Software) DRV - (aswFsBlk) -- C:\WINDOWS\system32\drivers\aswFsBlk.sys (ALWIL Software) DRV - (aswTdi) -- C:\WINDOWS\system32\drivers\aswTdi.sys (ALWIL Software) DRV - (aswRdr) -- C:\WINDOWS\system32\drivers\aswRdr.sys (ALWIL Software) DRV - (Aavmker4) -- C:\WINDOWS\system32\drivers\aavmker4.sys (ALWIL Software) DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) DRV - (HDAudBus) -- C:\WINDOWS\system32\drivers\hdaudbus.sys (Windows ® Server 2003 DDK provider) DRV - (E100B) Intel® -- C:\WINDOWS\system32\drivers\e100b325.sys (Intel Corporation) DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.) DRV - (ialm) -- C:\WINDOWS\system32\drivers\ialmnt5.sys (Intel Corporation) DRV - (PxHelp20) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys (Sonic Solutions) DRV - (cercsr6) -- C:\WINDOWS\system32\drivers\cercsr6.sys (Adaptec, Inc.) DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.) DRV - (HSFHWBS2) -- C:\WINDOWS\system32\drivers\HSFHWBS2.sys (Conexant Systems, Inc.) DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.) DRV - (HSF_DP) -- C:\WINDOWS\system32\drivers\HSF_DP.sys (Conexant Systems, Inc.) DRV - (mdmxsdk) -- C:\WINDOWS\system32\drivers\mdmxsdk.sys (Conexant) DRV - (MODEMCSA) -- C:\WINDOWS\system32\drivers\MODEMCSA.sys (Microsoft Corporation) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/ IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-us IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = 14 E4 A9 DA 21 7C CA 01 [binary data] IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/12/11 17:26:19 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/12/11 15:47:28 | 00,000,000 | ---D | M] [2009/12/08 15:52:48 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Heather\Application Data\Mozilla\Extensions [2009/12/13 19:39:22 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Heather\Application Data\Mozilla\Firefox\Profiles\5wgfmic7.default\extensions [2009/12/11 15:47:28 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [avast!] C:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe (Microsoft Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme () O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe File not found O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (get_atlcom Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 207.69.188.186 207.69.188.187 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009/12/07 11:17:14 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs: 6to4 - File not found NetSvcs: Ias - C:\WINDOWS\system32\ias [2009/12/07 11:16:35 | 00,000,000 | ---D | M] NetSvcs: Iprip - File not found NetSvcs: Irmon - File not found NetSvcs: LanmanServer - File not found NetSvcs: LanmanWorkstation - File not found NetSvcs: Messenger - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - Services: "RasMan" MsConfig - StartUpReg: ctfmon.exe - hkey= - key= - File not found MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 2 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: Netlogon - Service SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: Browser - Service SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: LanmanServer - Service SafeBootNet: LanmanWorkstation - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOS - Service SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Netlogon - Service SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NtLmSsp - Service SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML) ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4 ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe ActiveX: {407408d4-94ed-4d86-ab69-a7f649d112ee} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection QuickLaunchShortcut 640 %systemroot%\inf\mcdftreg.inf ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460) ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6 ActiveX: {5056b317-8d4c-43ee-8543-b9d1e234b8f4} - Security Update for Windows XP (KB923789) ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - C:\WINDOWS\system32\ie4uinit.exe -BaseSettings ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - c:\WINDOWS\system32\Rundll32.exe c:\WINDOWS\system32\mscories.dll,Install ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1 ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player ActiveX: {DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D} - Microsoft .NET Framework 1.1 Security Update (KB953297) ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help ActiveX: {E8EA5BD6-D931-4001-ABF6-81BAA500360A} - Microsoft .NET Framework 1.0 Hotfix (KB953295) ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface ActiveX: {EA29D410-CE41-4953-A862-2DE706A1DAD7} - Microsoft .NET Framework 1.0 Service Pack 3 ActiveX: {FDC11A6F-17D1-48f9-9EA3-9051954BAA24} - .NET Framework ActiveX: <{12d0ed0d-0ee0-4f90-8827-78cefb8f4988} - C:\WINDOWS\system32\ieudinit.exe ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF} - "C:\WINDOWS\system32\rundll32.exe" "C:\WINDOWS\system32\iedkcs32.dll",BrandIEActiveSetup SIGNUP ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE ActiveX: KB910393 - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\EasyCDBlock.inf,PerUserInstall Drivers32: aux - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: midi - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: mixer - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation) Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS) Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.) Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.) Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.) Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll () Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation) Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation) Drivers32: wave - C:\WINDOWS\System32\audpci40.dll (Creative Technology Ltd.) Drivers32: wave1 - C:\WINDOWS\System32\serwvdrv.dll (Microsoft Corporation)
  10. HI Chamber and thank you so much for helping me with this. I continued to receive the trojan alerts in Avast with the worm jumping around file to file. I ran MB again and this time it found 4 infections. I have included the latest MB log along with the Avast logs you requested. In the next reply (replies) will be the OTL. Also, while all this was going on, a forced youtube video kept coming up and playing. (I do not go to YouTube). It was an Al Qaeda recruitment video. I would close it out, and within a few moments it would force itself back open again. very strange. thanks again! Logs follow Avast Warning Logs 12/11/2009 11:42:22 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\WINDOWS\system32\msvmcls64.exe" file. 12/11/2009 11:44:43 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\027.exe" file. 12/11/2009 11:45:17 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\104.exe" file. 12/11/2009 11:45:21 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\118.exe" file. 12/11/2009 11:45:23 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\206.exe" file. 12/11/2009 11:45:25 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\278.exe" file. 12/11/2009 11:45:27 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\296.exe" file. 12/11/2009 11:45:28 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\311.exe" file. 12/11/2009 11:45:30 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\450.exe" file. 12/11/2009 11:45:31 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\475.exe" file. 12/11/2009 11:45:33 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\806.exe" file. 12/11/2009 11:45:34 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\880.exe" file. 12/11/2009 11:45:35 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\895.exe" file. 12/11/2009 11:45:36 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temp\972.exe" file. 12/11/2009 11:46:13 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\WXABOPQ3\mm[1].txt" file. 12/11/2009 11:46:51 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Carly\Local Settings\Temp\360.exe" file. 12/11/2009 11:46:56 AM SYSTEM 980 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Carly\Local Settings\Temporary Internet Files\Content.IE5\XZ7QVKTZ\mm[1].txt" file. 12/11/2009 11:54:14 AM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\IUNHN36E\mm[1]" file. 12/11/2009 11:57:43 AM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\IUNHN36E\mm[2]" file. 12/11/2009 11:57:52 AM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\STUV8XYB\mm[2]" file. 12/11/2009 11:58:01 AM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\UROLOXKV\mm[1]" file. 12/11/2009 11:58:11 AM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\WXABOPQ3\mm[2]" file. 12/11/2009 12:01:47 PM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Heather\Local Settings\Temp\104.exe" file. 12/11/2009 12:01:52 PM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Heather\Local Settings\Temp\742.exe" file. 12/11/2009 12:02:09 PM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Heather\Local Settings\Temp\893.exe" file. 12/11/2009 12:02:10 PM Heather 3260 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Heather\Local Settings\Temp\943.exe" file. 12/11/2009 12:23:17 PM Admin 3340 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Heather\Local Settings\Temporary Internet Files\Content.IE5\XZ7QVKTZ\mm[1].txt" file. 12/11/2009 12:31:54 PM Admin 3340 Sign of "Win32:Malware-gen" has been found in "C:\System Volume Information\_restore{D49897D0-22C8-47C4-839B-F6E83D7A847B}\RP28\A0007240.exe" file. 12/11/2009 12:45:26 PM Admin 3340 Sign of "Win32:Malware-gen" has been found in "C:\WINDOWS\system32\trz4EE.tmp" file. 12/11/2009 3:39:18 PM SYSTEM 948 Function setifaceUpdatePackages() has failed. Return code is 0x20000004, dwRes is 20000004. 12/11/2009 5:30:03 PM SYSTEM 948 Sign of "Win32:Malware-gen" has been found in "C:\DOCUME~1\Admin\LOCALS~1\Temp\477.exe" file. 12/11/2009 7:16:29 PM SYSTEM 948 Sign of "Win32:Malware-gen" has been found in "C:\DOCUME~1\Heather\LOCALS~1\Temp\296.exe" file. 12/11/2009 7:36:09 PM SYSTEM 948 Sign of "Win32:Malware-gen" has been found in "C:\DOCUME~1\Admin\LOCALS~1\Temp\957.exe" file. 12/12/2009 11:08:53 AM Heather 2392 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Admin\Local Settings\Temporary Internet Files\Content.IE5\IUNHN36E\mm[1].txt" file. 12/12/2009 11:21:20 AM Heather 2392 Sign of "Win32:Malware-gen" has been found in "C:\Documents and Settings\Heather\Local Settings\Temporary Internet Files\Content.IE5\BSLM1BP6\mm[1].txt" file. 12/12/2009 10:10:08 PM SYSTEM 976 Function setifaceUpdatePackages() has failed. Return code is 0x20000004, dwRes is 20000004. 12/12/2009 11:11:25 PM SYSTEM 984 Function setifaceUpdatePackages() has failed. Return code is 0x20000004, dwRes is 20000004. Avast Error Log 12/11/2009 2:51:33 PM SYSTEM 976 Error in aswChestS: chest s_RestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestRestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestGetFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. 12/11/2009 2:51:33 PM SYSTEM 976 Error in aswChestS: chest s_RestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestRestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestGetFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. 12/11/2009 2:51:33 PM SYSTEM 976 Error in aswChestS: chest s_RestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestRestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestGetFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. 12/11/2009 2:51:33 PM SYSTEM 976 Error in aswChestS: chest s_RestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestRestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestGetFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. 12/11/2009 2:51:33 PM SYSTEM 976 Error in aswChestS: chest s_RestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestRestoreFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 Error in aswChestC: chestGetFile Error 32. 12/11/2009 2:51:33 PM Admin 1640 aswChestInterface - Program error description: CChestListView::ExtractSelectedFiles() chestGetFile() failed: 32. MB Log The two scans I did after this with MB came back clean. Malwarebytes' Anti-Malware 1.42 Database version: 3336 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 12/12/2009 10:59:21 PM mbam-log-2009-12-12 (22-59-21).txt Scan type: Full Scan (C:\|) Objects scanned: 159489 Time elapsed: 25 minute(s), 9 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 1 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 3 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\taskman (Trojan.Agent) -> Quarantined and deleted successfully. Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\Documents and Settings\Heather\Local Settings\Temp\606.exe (Worm.Kolab) -> Quarantined and deleted successfully. C:\Documents and Settings\Heather\Local Settings\Temporary Internet Files\Content.IE5\WIL4H3IA\mm[1].txt (Worm.Kolab) -> Quarantined and deleted successfully. C:\RECYCLER\S-1-5-21-1750296466-7387059091-980520325-7436\windll.exe (Worm.Autorun. -> Delete on reboot. OTL files will be in next post.
  11. Hi. Throughout the day my Avast anitvirus has found multiple instances of the win32:malware-gen worm. Malware bytes has not detected this worm at any time, though. I moved all instances to the chest and deleted, but I still get a random alert on the worm and my system has slowed down noticeably. thank you in advance for your assistance! Here are the logs: MB Log File Malwarebytes' Anti-Malware 1.42 Database version: 3336 Windows 5.1.2600 Service Pack 3 Internet Explorer 8.0.6001.18702 12/11/2009 1:11:22 PM mbam-log-2009-12-11 (13-11-22).txt Scan type: Full Scan (C:\|) Objects scanned: 162760 Time elapsed: 24 minute(s), 16 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 0 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 0 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: (No malicious items detected) Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: (No malicious items detected) DDS files DDS (Ver_09-12-01.01) - NTFSx86 Run by Admin at 17:34:04.25 on Fri 12/11/2009 Internet Explorer: 8.0.6001.18702 Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1014.635 [GMT -5:00] AV: avast! antivirus 4.8.1368 [VPS 091211-0] *On-access scanning enabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D} ============== Running Processes =============== C:\WINDOWS\system32\svchost -k DcomLaunch svchost.exe C:\WINDOWS\system32\svchost.exe -k netsvcs svchost.exe svchost.exe C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe C:\Program Files\Alwil Software\Avast4\ashServ.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\eHome\ehRecvr.exe C:\WINDOWS\eHome\ehSched.exe svchost.exe C:\WINDOWS\system32\svchost.exe -k imgsvc C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe C:\Program Files\Alwil Software\Avast4\ashWebSv.exe C:\WINDOWS\system32\dllhost.exe C:\WINDOWS\Explorer.EXE C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe C:\WINDOWS\system32\ctfmon.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Admin\Desktop\dds.scr ============== Pseudo HJT Report =============== uInternet Connection Wizard,ShellNext = hxxp://shell.windows.com/fileassoc/0409/xml/redir.asp?Ext=application mWinlogon: Taskman=c:\recycler\s-1-5-21-1750296466-7387059091-980520325-7436\windll.exe uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe mRun: [avast!] c:\progra~1\alwils~1\avast4\ashDisp.exe IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe Trusted Zone: microsoft.com\*.windowsupate Trusted Zone: windowsupdate.com DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab TCP: {1E71BBEA-F4BC-4EDB-9AD1-0F3BA58B0860} = 208.67.222.222,208.67.220.220 Notify: igfxcui - igfxdev.dll ================= FIREFOX =================== FF - ProfilePath - c:\docume~1\admin\applic~1\mozilla\firefox\profiles\znrrloia.default\ FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\ ---- FIREFOX POLICIES ---- c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true); ============= SERVICES / DRIVERS =============== R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2009-12-7 114768] R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2009-12-7 20560] R2 avast! Antivirus;avast! Antivirus;c:\program files\alwil software\avast4\ashServ.exe [2009-12-7 138680] R2 McrdSvc;Media Center Extender Service;c:\windows\ehome\mcrdsvc.exe [2005-8-5 99328] R3 avast! Mail Scanner;avast! Mail Scanner;c:\program files\alwil software\avast4\ashMaiSv.exe [2009-12-7 254040] R3 avast! Web Scanner;avast! Web Scanner;c:\program files\alwil software\avast4\ashWebSv.exe [2009-12-7 352920] S3 dlcd_device;dlcd_device;c:\windows\system32\dlcdcoms.exe -service --> c:\windows\system32\dlcdcoms.exe -service [?] =============== Created Last 30 ================ ==================== Find3M ==================== 2009-12-11 19:51:33 2864 ----a-w- c:\windows\system32\winsock.dll 2009-12-07 20:09:30 776 ----a-w- c:\windows\system32\drivers\sthdae.log 2009-12-07 16:13:33 21640 ----a-w- c:\windows\system32\emptyregdb.dat 2009-10-29 07:45:38 916480 ----a-w- c:\windows\system32\wininet.dll 2009-10-21 05:38:36 75776 ----a-w- c:\windows\system32\strmfilt.dll 2009-10-21 05:38:36 25088 ----a-w- c:\windows\system32\httpapi.dll 2009-10-20 16:20:16 265728 ----a-w- c:\windows\system32\drivers\http.sys 2009-10-13 10:30:16 270336 ----a-w- c:\windows\system32\oakley.dll 2009-10-12 13:38:19 149504 ----a-w- c:\windows\system32\rastls.dll 2009-10-12 13:38:18 79872 ----a-w- c:\windows\system32\raschap.dll 2009-10-09 23:35:44 182784 ----a-w- c:\windows\system32\Ncs2Setp.dll 2009-10-09 23:27:32 768632 ----a-w- c:\windows\system32\ncs2dmix.dll 2009-10-09 23:27:30 547448 ----a-w- c:\windows\system32\accesor.dll 2009-10-09 23:13:04 141944 ----a-w- c:\windows\system32\ncs2instutility.dll 2009-10-09 23:05:46 1677944 ----a-w- c:\windows\system32\ncscolib.dll 2009-09-25 05:48:59 81920 ------w- c:\windows\system32\ieencode.dll ============= FINISH: 17:34:25.84 =============== Attach.txt and ark.txt are attached. ark.zip Attach.zip
  12. thanks swagger and strangedays It WAS fixed....it seemed fine for a little bit. Left to pick my daughter up from school, got home, and bammm! Back to doing the same old stuff. Extremely slow or doesn't connect. this has been going on over two weeks now and I have been completely unable to work and am starting to panic.(single mom) I can't really afford to take it in somewhere to have it looked at. could you guys give me some advice or direction on what I should do next? I have to get this fixed and I am stuck as to where to turn. Any help is appreciated. thanks
  13. hey you! Guess what?!?! We finally got it fixed! I knew that you had exhausted most every possible cause of the issues we were having and had faith that you are quite capable and knowledgeable, so I did some more digging on the ISP end. I pointed my browser to the scientific atlantic modem diagnostics site and saw that my transmit power level was spiking above 57 but at no time would fall below 54.7. So even though they were out here for HOURS the other day and said they were fine on their end, I drove up to their office (can't call - VOIP phone) and asked for a real cable dog to come out and check things instead of one of their independent contractors. there was a loose screw on the tap outside. My transmit levels are now around 46 and the computer is sailing along quite nicely! thank you, thank you, thank you for all of the help you provided me! I cannot express my gratitude to you enough...what you guys do is an awesome service to us lost souls. You definitely lead the way for me to get my system optimized to it's fullest. You're rock salt, Exile! Thanks again!
  14. Hi and good morning! I had a few questions that I am still unsure of the answers and was hoping one of you might be able to help me understand a bit better. If you remember, I have a new hard drive (two months old) I'm wondering if something got missed during set up which is causing these problems. AND so many changes have been made to the computer since I began trying to figure out what is wrong that I wonder if I have inadvertently turned something on or off or have otherwise caused these issues. My LAN settings and firewall settings are empty....as in nothing checked, no data showing. Does there need to be info in there to tell the computer how to connect? If so, could someone walk me through that? (the opendns ip's are in there that i entered in yesterday, but that's it.) Could there be some services or processes that should be on or off that are contributing to the issues? When I go to: Windows firewall > Advanced Tab > Network Connection Settings > LAN > Settings > Services there is nothing selected here either. When I'm having packet loss if I hit the repair button, it will force about three packets through and then stops receiving again. (don't know if that means anything at all, it was just something I noticed.) Thanks guys! Talk to you soon.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.