Malware Removal Help

JasonV · Oct 2, 2010

I made a post in the operating system forums by mistake and they have directed me here for assistance. My original problem was being redirected when clicking on any link in a search engine search. After following the steps outlined in your preparation for malware removal, I have run into a few problems.
MalwareBytes' will not open in neither regular boot nor safe mode. Including after multiple uninstalls and reinstalls.
TFC ran as expected and finished.
OTL caused the computer screen to turn a gray color, requiring a reboot. (This happened three times).

Gmer provided these results:

GMER 1.0.15.15281 - http://www.gmer.net
Rootkit scan 2010-10-02 16:07:55
Windows 5.1.2600 Service Pack 2
Running: 5k4itjnb.exe; Driver: C:\DOCUME~1\Jason\LOCALS~1\Temp\ufldapod.sys

---- Kernel code sections - GMER 1.0.15 ----

.rsrc C:\WINDOWS\system32\DRIVERS\wmiacpi.sys entry point in ".rsrc" section [0xF7AFBC94]
init C:\WINDOWS\system32\drivers\tifm21.sys entry point in "init" section [0xF655EEBF]

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass0 EABFiltr.sys (QLB PS/2 Keyboard filter driver/Hewlett-Packard Development Company, L.P.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 SynTP.sys (Synaptics Touchpad Driver/Synaptics, Inc.)
AttachedDevice \Driver\Kbdclass \Device\KeyboardClass1 EABFiltr.sys (QLB PS/2 Keyboard filter driver/Hewlett-Packard Development Company, L.P.)

Device -> \Driver\atapi \Device\Harddisk0\DR0 86619EC5

---- Files - GMER 1.0.15 ----

File C:\WINDOWS\system32\DRIVERS\wmiacpi.sys suspicious modification
File C:\WINDOWS\system32\drivers\atapi.sys suspicious modification

---- EOF - GMER 1.0.15 ----

Any suggestions would be greatly appreciated.

-Jason

starbuck · Oct 3, 2010

Hi Jason,

OTL caused the computer screen to turn a gray color, requiring a reboot.
Click to expand...

Remove the copy of OTL you have and try downloading and running either of these copies:

http://www.itxassociates.com/OT-Tools/OTL.com

http://www.itxassociates.com/OT-Tools/OTL.scr

If using Firefox:
right click on the link and select 'Save Link/Target As'.
and save it to your 'Desktop'.
Then follow the instructions in the prep guide to get the reports.

JasonV · Oct 3, 2010

Unfortunately neither of those two links fared any better than the link provided in the prep guide.

starbuck · Oct 4, 2010

Ok, let's try this then:

Download Combofix from any of the links below. You must rename it before saving it. Save it to your desktop.

Link 1
Link 2

This is an example, you may rename ComboFix to anything you want.

Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with the running of ComboFix.
For more information read:
How To Temporarily Disable Your Anti-virus, Firewall And Anti-malware Programs

Then:

Double click on Combo-Fix.exe & follow the prompts.

As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

If running Vista, you may not see this screen

Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Click on Yes, to continue scanning for malware.

Note:
Do not mouseclick combofix's window while it's running. That may cause it to stall

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

JasonV · Oct 4, 2010

Successful run.

Combofix.txt results:

ComboFix 10-10-03.03 - Jason 10/04/2010 18:23:43.2.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1022.712 [GMT -4:00]
Running from: c:\documents and settings\Jason\Desktop\MRS\cf.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\system32\DRIVERS\wmiacpi.sys . . . is infected!! . . . Failed to find a valid replacement.
.
((((((((((((((((((((((((( Files Created from 2010-09-04 to 2010-10-04 )))))))))))))))))))))))))))))))
.

2010-10-02 05:08 . 2010-10-02 05:08 -------- d-----w- C:\spoolerlogs
2010-10-01 22:37 . 2010-04-29 19:39 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-01 22:37 . 2010-04-29 19:39 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-10-01 07:09 . 2001-08-17 18:56 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
2010-09-30 15:49 . 2010-09-30 15:49 -------- d-----w- c:\documents and settings\Jason\Local Settings\Application Data\PCHealth
2010-09-30 15:49 . 2010-09-30 15:49 -------- d-----w- c:\documents and settings\NetworkService\Local Settings\Application Data\PCHealth

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-01 01:16 . 2010-03-30 17:35 -------- d-----w- c:\program files\HP Rhapsody
2010-09-30 02:34 . 2010-04-03 10:05 -------- d-----w- c:\documents and settings\Jason\Application Data\uTorrent
2010-09-29 19:31 . 2010-04-20 18:04 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-28 21:24 . 2010-08-22 16:57 -------- d-----w- c:\documents and settings\Jason\Application Data\vlc
2010-09-01 22:59 . 2010-03-30 18:11 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-08-22 16:54 . 2010-08-22 16:53 -------- d-----w- c:\documents and settings\Jason\Application Data\MozillaControl
2010-08-22 16:53 . 2010-03-30 18:36 57672 ----a-w- c:\documents and settings\Jason\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-08-22 16:52 . 2010-08-22 16:52 -------- d-----w- c:\program files\Mozilla ActiveX Control v1.7.12
2010-08-22 16:52 . 2010-08-22 16:52 -------- d-----w- c:\program files\VideoLAN
2010-08-22 15:17 . 2010-08-22 15:17 183132 ----a-w- c:\windows\KARI2 Uninstaller.exe
2010-08-18 04:27 . 2010-08-18 04:27 -------- d-----w- c:\documents and settings\All Users\Application Data\DKOptimize
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"uTorrent"="c:\documents and settings\Jason\Desktop\uTorrent\uTorrent.exe" [2010-09-30 328056]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-10 208952]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-10 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-10 455168]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2005-06-19 729178]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-11-11 344064]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2005-08-01 233534]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"eabconfg.cpl"="c:\program files\HPQ\Quick Launch Buttons\EabServr.exe" [2005-12-22 405504]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2005-12-12 94208]
"SunJavaUpdateSched"="c:\program files\Java\jre1.5.0_06\bin\jusched.exe" [2005-11-10 36975]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2005-12-13 507904]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\NexonUS\\NGM\\NGM.exe"=
"c:\\Documents and Settings\\Jason\\Desktop\\uTorrent\\utorrent.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"57474:TCP"= 57474:TCPando Media Booster
"57474:UDP"= 57474:UDPando Media Booster

R3 HSFHWATI;HSFHWATI;c:\windows\system32\drivers\HSFHWATI.sys [3/30/2010 1:37 PM 231424]
S0 nielprt;Nielsen Patch Service;c:\windows\system32\DRIVERS\nielprt.sys --> c:\windows\system32\DRIVERS\nielprt.sys [?]
S3 NielGfx;Nielsen USB GFX;c:\windows\system32\drivers\nielgfx.sys --> c:\windows\system32\drivers\nielgfx.sys [?]
.
.
------- Supplementary Scan -------
.
DPF: {E87A4CD6-BA5F-4552-BC4F-8EC240A2755C} - hxxp://webcam.oceanwalkshoppes.com/webrec.cab
.

Stealth MBR rootkit/Mebroot/Sinowal detector 0.3.7 by Gmer, http://www.gmer.net

device: opened successfully
user: MBR read successfully
called modules: ntkrnlpa.exe catchme.sys CLASSPNP.SYS disk.sys ACPI.sys hal.dll >>UNKNOWN [0x8660AEC5]<<
kernel: MBR read successfully
detected MBR rootkit hooks:
\Driver\Disk -> CLASSPNP.SYS @ 0xf7686fc3
\Driver\ACPI -> ACPI.sys @ 0xf74e9cb8
\Driver\atapi -> atapi.sys @ 0xf73e17b4
IoDeviceObjectType -> DeleteProcedure -> ntkrnlpa.exe @ 0x80578cb6
ParseProcedure -> ntkrnlpa.exe @ 0x80577918
\Device\Harddisk0\DR0 -> DeleteProcedure -> ntkrnlpa.exe @ 0x80578cb6
ParseProcedure -> ntkrnlpa.exe @ 0x80577918
NDIS: Broadcom 802.11b/g WLAN -> SendCompleteHandler -> NDIS.sys @ 0xf72edba0
PacketIndicateHandler -> NDIS.sys @ 0xf72fab21
SendHandler -> NDIS.sys @ 0xf72d887b
user & kernel MBR OK

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(532)
c:\windows\system32\Ati2evxx.dll
.
Completion time: 2010-10-04 18:34:39
ComboFix-quarantined-files.txt 2010-10-04 22:34
ComboFix2.txt 2010-10-04 22:10

Pre-Run: 68,146,221,056 bytes free
Post-Run: 68,141,514,752 bytes free

- - End Of File - - C6BEEB85F454BC6C7AAC6863E95E1C95

starbuck · Oct 5, 2010

Hi Jason,

Do you have your Windows installation disc if we need it?

P2P Warning
Please note that as long as you're using any form of Peer-to-Peer networking ( Limewire, Bit Torrent etc.) and downloading files from non-documented sources, you can expect infestations of malware to occur.
Once upon a time, P2P file sharing was fairly safe. That is no longer true.
P2P programmes form a direct conduit onto your computer, their security measures are easily circumvented, and Malware writers are increasingly exploiting them to spread their wares onto your computer. Further to that, if your P2P programme is not configured correctly you may be sharing more files than you realise. There have been cases where people's Passwords, Address Books and other personal, private, and financial details have been exposed to the file sharing network by a badly configured programme.

Many of the programmes come bundled with other unwanted programmes, but even the ones free of any bundled software are not safe to use.
When you use them you are downloading software from an unknown source directly onto your computer, bypassing your Firewall and Anti-Virus software. Hardly surprising then that many of these Downloads are being targeted to carry infections.

You may decide to continue P2P sharing, but keep in mind that this practice may be the source of future malware infestation.
If we clean your computer of infection, and you return to us a short time later with an infection contracted by the use of P2P programmes, we may refuse to help you.

Please download MBRCheck.exe to your desktop.

Be sure to disable your security programs

Double click on the downloaded file to run it
.
Vista and Windows 7 users will have to confirm the UAC prompt

A window similar to this should open on your desktop:

.

If you are prompted with options, enter N at the prompt and press Enter

Press Enter again

A .txt file named MBRCheck_mm.dd.yy_hh.mm.ss should appear on your deskop. Please post the contents of that file.

Thanks

JasonV · Oct 5, 2010

I do have the Windows installation disc available.

MBRCheck_10.05.10_13.17.59.txt results:

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows XP Professional
Windows Information: Service Pack 2 (build 2600)
Logical Drives Mask: 0x0000000c

Kernel Drivers (total 126):
0x804D7000 \WINDOWS\system32\ntkrnlpa.exe
0x806CF000 \WINDOWS\system32\hal.dll
0xF7B12000 \WINDOWS\system32\KDCOM.DLL
0xF7A22000 \WINDOWS\system32\BOOTVID.dll
0xF74E3000 ACPI.sys
0xF7B14000 \WINDOWS\system32\DRIVERS\WMILIB.SYS
0xF74D2000 pci.sys
0xF7612000 isapnp.sys
0xF7622000 ohci1394.sys
0xF7632000 \WINDOWS\system32\DRIVERS\1394BUS.SYS
0xF7456000 wdf01000.sys
0xF7642000 \WINDOWS\System32\Drivers\WDFLDR.SYS
0xF7A26000 compbatt.sys
0xF7A2A000 \WINDOWS\system32\DRIVERS\BATTC.SYS
0xF7BDA000 pciide.sys
0xF7892000 \WINDOWS\system32\DRIVERS\PCIIDEX.SYS
0xF7438000 pcmcia.sys
0xF7652000 MountMgr.sys
0xF7419000 ftdisk.sys
0xF7B16000 dmload.sys
0xF73F3000 dmio.sys
0xF7A2E000 ACPIEC.sys
0xF7BDB000 \WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
0xF789A000 PartMgr.sys
0xF7662000 VolSnap.sys
0xF73DB000 atapi.sys
0xF7672000 disk.sys
0xF7682000 \WINDOWS\system32\DRIVERS\CLASSPNP.SYS
0xF73BB000 fltMgr.sys
0xF73A9000 sr.sys
0xF78A2000 PxHelp20.sys
0xF7392000 KSecDD.sys
0xF7305000 Ntfs.sys
0xF72D8000 NDIS.sys
0xF7692000 Serial.sys
0xF72BD000 Mup.sys
0xF76B2000 \SystemRoot\system32\DRIVERS\nic1394.sys
0xF7862000 \SystemRoot\system32\DRIVERS\AmdK8.sys
0xF7AE2000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0xF6FB5000 \SystemRoot\system32\DRIVERS\ati2mtag.sys
0xF6FA1000 \SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
0xF794A000 \SystemRoot\system32\DRIVERS\usbohci.sys
0xF6F7E000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0xF7952000 \SystemRoot\system32\DRIVERS\usbehci.sys
0xF7872000 \SystemRoot\system32\DRIVERS\imapi.sys
0xF7882000 \SystemRoot\system32\DRIVERS\cdrom.sys
0xF76C2000 \SystemRoot\system32\DRIVERS\redbook.sys
0xF6F5B000 \SystemRoot\system32\DRIVERS\ks.sys
0xF76D2000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0xF798A000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0xF6F2C000 \SystemRoot\system32\DRIVERS\SynTP.sys
0xF7B62000 \SystemRoot\system32\DRIVERS\USBD.SYS
0xF7992000 \SystemRoot\system32\DRIVERS\mouclass.sys
0xF7274000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0xF6EC4000 \SystemRoot\system32\DRIVERS\bcmwl5.sys
0xF6E9C000 \SystemRoot\system32\drivers\tifm21.sys
0xF6E8B000 \SystemRoot\system32\DRIVERS\sdbus.sys
0xF6E77000 \SystemRoot\system32\DRIVERS\Rtnicxp.sys
0xF6E21000 \SystemRoot\system32\drivers\camc6hal.sys
0xF76E2000 \SystemRoot\system32\drivers\camc6aud.sys
0xF6DFD000 \SystemRoot\system32\drivers\portcls.sys
0xF76F2000 \SystemRoot\system32\drivers\drmk.sys
0xF6DC4000 \SystemRoot\system32\DRIVERS\HSFHWATI.sys
0xF6CC7000 \SystemRoot\system32\DRIVERS\HSF_DP.sys
0xF6C17000 \SystemRoot\system32\DRIVERS\HSF_CNXT.sys
0xF799A000 \SystemRoot\System32\Drivers\Modem.SYS
0xF7C48000 \SystemRoot\system32\DRIVERS\audstub.sys
0xF7702000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0xF7270000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0xF6C00000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0xF7712000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0xF7722000 \SystemRoot\system32\DRIVERS\raspptp.sys
0xF79A2000 \SystemRoot\system32\DRIVERS\TDI.SYS
0xF6B4F000 \SystemRoot\system32\DRIVERS\psched.sys
0xF7732000 \SystemRoot\system32\DRIVERS\msgpc.sys
0xF79C2000 \SystemRoot\system32\DRIVERS\ptilink.sys
0xF79CA000 \SystemRoot\system32\DRIVERS\raspti.sys
0xF6AF6000 \SystemRoot\system32\DRIVERS\rdpdr.sys
0xF7762000 \SystemRoot\system32\DRIVERS\termdd.sys
0xF7B6A000 \SystemRoot\system32\DRIVERS\swenum.sys
0xF6AC2000 \SystemRoot\system32\DRIVERS\update.sys
0xF7AC6000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0xF7772000 \SystemRoot\System32\Drivers\NDProxy.SYS
0xF77A2000 \SystemRoot\system32\DRIVERS\usbhub.sys
0xF7B8E000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0xF7CEC000 \SystemRoot\System32\Drivers\Null.SYS
0xF7B90000 \SystemRoot\System32\Drivers\Beep.SYS
0xF79FA000 \SystemRoot\System32\drivers\vga.sys
0xF7B92000 \SystemRoot\System32\Drivers\mnmdd.SYS
0xF7B94000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0xF7A02000 \SystemRoot\System32\Drivers\Msfs.SYS
0xF7A0A000 \SystemRoot\System32\Drivers\Npfs.SYS
0xF7278000 \SystemRoot\system32\DRIVERS\rasacd.sys
0xEEA47000 \SystemRoot\system32\DRIVERS\ipsec.sys
0xEE9EF000 \SystemRoot\system32\DRIVERS\tcpip.sys
0xEE9C7000 \SystemRoot\system32\DRIVERS\netbt.sys
0xEE9A5000 \SystemRoot\System32\drivers\afd.sys
0xF77E2000 \SystemRoot\system32\DRIVERS\netbios.sys
0xEE979000 \SystemRoot\system32\DRIVERS\rdbss.sys
0xEE8E2000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0xF7802000 \SystemRoot\System32\Drivers\Fips.SYS
0xEE8C1000 \SystemRoot\system32\DRIVERS\ipnat.sys
0xF7812000 \SystemRoot\system32\DRIVERS\wanarp.sys
0xF7822000 \SystemRoot\system32\DRIVERS\arp1394.sys
0xF7B96000 \??\C:\WINDOWS\system32\drivers\EABFiltr.sys
0xF7842000 \SystemRoot\System32\Drivers\Cdfs.SYS
0xBF800000 \SystemRoot\System32\win32k.sys
0xF6AA6000 \SystemRoot\System32\drivers\Dxapi.sys
0xF78CA000 \SystemRoot\System32\watchdog.sys
0xBF000000 \SystemRoot\System32\drivers\dxg.sys
0xF7CA0000 \SystemRoot\System32\drivers\dxgthk.sys
0xBF012000 \SystemRoot\System32\ati2dvag.dll
0xBF052000 \SystemRoot\System32\ati2cqag.dll
0xBF08C000 \SystemRoot\System32\atikvmag.dll
0xBF0C2000 \SystemRoot\System32\ati3duag.dll
0xBF323000 \SystemRoot\System32\ativvaxx.dll
0xBFFA0000 \SystemRoot\System32\ATMFD.DLL
0xEDC01000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0xB837B000 \SystemRoot\system32\drivers\wdmaud.sys
0xED27F000 \SystemRoot\system32\drivers\sysaudio.sys
0xB8079000 \SystemRoot\system32\DRIVERS\mrxdav.sys
0xB8010000 \SystemRoot\System32\Drivers\HTTP.sys
0xB7F91000 \SystemRoot\system32\DRIVERS\srv.sys
0xB7EE9000 \SystemRoot\system32\DRIVERS\mdmxsdk.sys
0xB74C5000 \SystemRoot\system32\drivers\kmixer.sys
0x7C900000 \WINDOWS\system32\ntdll.dll

Processes (total 48):
0 System Idle Process
4 System
452 C:\WINDOWS\system32\smss.exe
504 csrss.exe
536 C:\WINDOWS\system32\winlogon.exe
580 C:\WINDOWS\system32\services.exe
592 C:\WINDOWS\system32\lsass.exe
748 C:\WINDOWS\system32\ati2evxx.exe
768 C:\WINDOWS\system32\svchost.exe
836 svchost.exe
892 C:\WINDOWS\system32\svchost.exe
948 svchost.exe
1076 svchost.exe
1276 C:\WINDOWS\system32\ati2evxx.exe
1352 C:\WINDOWS\explorer.exe
1640 C:\WINDOWS\ehome\ehtray.exe
1680 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
1740 C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe
1756 C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
1772 C:\Program Files\HPQ\Quick Launch Buttons\eabservr.exe
1788 C:\Program Files\HP\QuickPlay\QPService.exe
1800 C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
1808 C:\Program Files\HPQ\HP Wireless Assistant\HP Wireless Assistant.exe
1972 C:\Program Files\Windows Live\Messenger\msnmsgr.exe
1980 C:\WINDOWS\system32\ctfmon.exe
308 svchost.exe
352 C:\WINDOWS\ehome\ehrecvr.exe
368 C:\WINDOWS\ehome\ehSched.exe
428 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
956 svchost.exe
636 C:\WINDOWS\system32\svchost.exe
1284 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
1668 C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
1696 mcrdsvc.exe
1956 C:\WINDOWS\system32\wuauclt.exe
1780 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
2280 wmiprvse.exe
2372 C:\WINDOWS\system32\wscntfy.exe
2544 C:\WINDOWS\system32\dllhost.exe
2640 alg.exe
3096 C:\WINDOWS\ehome\ehmsas.exe
3124 C:\WINDOWS\system32\svchost.exe
3356 C:\PROGRA~1\HPQ\shared\HPQTOA~1.EXE
3704 C:\Program Files\Internet Explorer\iexplore.exe
3880 C:\Program Files\Internet Explorer\iexplore.exe
3352 C:\WINDOWS\system32\wuauclt.exe
4000 C:\Program Files\Internet Explorer\iexplore.exe
2176 C:\Documents and Settings\Jason\Desktop\MRS\MBRCheck.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00007e00 (NTFS)

PhysicalDrive0 Model Number: TOSHIBAMK1031GAS, Rev: AA204C

Size Device Name MBR Status
--------------------------------------------
93 GB \\.\PhysicalDrive0 Windows XP MBR code detected
SHA1: DA38B874B7713D1B51CBC449F4EF809B0DEC644A

Done!

starbuck · Oct 6, 2010

Hi Jason,

The reports are very confusing.

Combofix is showing that the report was posted from a 2nd run .....
But the time is earlier than the 1st run??
Java is so far out of date, it's unbelievable.
No security programs at all?
Service pack is out of date.... Service pack 2 is no longer supported by MS.

This is all very odd, can you please explain.

Thanks

JasonV · Oct 6, 2010

As for the updates (i.e.: Java, Service packs), this is not my primary computer, I lent it to my roommate and was asked to try and fix the virus problem. Clearly not the most avid updater. There was a version of Symantec installed when I last had the computer. I'm not sure why ComboFix would have run twice. Sorry if that isn't much help.

starbuck · Oct 6, 2010

Hi Jason,

Step 1
You need to install an antivirus program as soon as you can and run a complete scan of the computer:

Avira AntiVir

Avast free

MS Security Essentials ... see note*

Install one of these, update the definitions and then run a full scan. Let it quarantine/delete anything it finds. Let me know if there is anything that it reports but can not remove.

Note*:
Upon installation MS Security Essentials will check that your OS is a legal copy.

Step 2

c:\windows\system32\DRIVERS\wmiacpi.sys . . . is infected!! . . . Failed to find a valid replacement.
Click to expand...

Let's see if we can sort this out.

Try running the System File Checker (SFC) to scan all protected files to verify their versions. If SFC discovers that a critical system file has been damaged, altered or missing, it restores the correct version of the file from the cache folder.
You must be logged on as an administrator or as a member of the Administrators group to run sfc and it may ask you to insert your XP Installation CD ..so have it available.

Use Task Manager (Alt + Ctl + Del)... New Task... and type: sfc /scannow

Make sure that you include a space between the c and /.
This command will initiate the Windows File Protection service to scan all protected files, verify their integrity, and replace any problem files.

Step 3
Please run Combofix again.
If it says do you want to update....click yes.
Don't forget to stop your AV from running.

In your next reply, please submit:
New Combofix.txt

Thanks.

JasonV · Oct 6, 2010

Avast found and deleted a high threat virus, which is weird because I installed and ran both Avira and MS Security Essentials before I came to this board and neither found a threat.

I also used SFC to restore the files with no problems.

Latest ComboFix log:

ComboFix 10-10-06.02 - Jason 10/06/2010 22:20:36.3.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1022.690 [GMT -4:00]
Running from: c:\documents and settings\Jason\Desktop\MRS\cf.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

Infected copy of c:\windows\system32\DRIVERS\wmiacpi.sys was found and disinfected
Restored copy from - Kitty had a snack
.
((((((((((((((((((((((((( Files Created from 2010-09-07 to 2010-10-07 )))))))))))))))))))))))))))))))
.

2010-10-07 02:16 . 2004-08-04 03:07 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
2010-10-07 02:16 . 2004-08-04 03:07 8832 ----a-w- c:\windows\system32\drivers\wmiacpi.sys
2010-10-07 01:39 . 2004-08-04 04:56 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-10-07 01:39 . 2001-08-18 02:36 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-10-07 01:38 . 2001-08-18 02:36 17408 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-10-07 01:38 . 2001-08-18 02:37 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-10-07 01:38 . 2001-08-18 02:37 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-10-07 01:37 . 2001-08-18 02:37 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2010-10-07 01:37 . 2001-08-17 16:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2010-10-07 01:37 . 2004-08-04 02:29 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2010-10-07 01:37 . 2004-08-04 03:10 19328 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2010-10-07 01:37 . 2004-08-04 02:29 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2010-10-07 01:37 . 2004-08-04 04:56 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2010-10-07 01:36 . 2004-08-04 02:31 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2010-10-07 01:36 . 2001-08-17 16:12 34890 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2010-10-07 01:34 . 2001-08-17 16:13 16925 -c--a-w- c:\windows\system32\dllcache\w940nd.sys
2010-10-07 01:34 . 2001-08-17 16:13 19016 -c--a-w- c:\windows\system32\dllcache\w926nd.sys
2010-10-07 01:34 . 2001-08-17 16:13 19528 -c--a-w- c:\windows\system32\dllcache\w840nd.sys
2010-10-07 01:34 . 2001-08-17 17:28 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2010-10-07 01:34 . 2001-08-17 17:28 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2010-10-07 01:34 . 2001-08-17 17:28 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2010-10-07 01:34 . 2001-08-17 16:14 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2010-10-07 01:34 . 2001-08-17 17:49 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2010-10-07 01:34 . 2004-08-04 02:59 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2010-10-07 01:34 . 2004-08-04 03:07 42240 -c--a-w- c:\windows\system32\dllcache\viaagp.sys
2010-10-07 01:34 . 2004-08-04 04:56 53760 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2010-10-07 01:34 . 2004-08-04 04:56 11325 -c--a-w- c:\windows\system32\dllcache\vchnt5.dll
2010-10-07 01:32 . 2001-08-18 02:36 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2010-10-07 01:32 . 2001-08-18 02:36 28160 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2010-10-07 01:32 . 2001-08-18 02:36 26624 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2010-10-07 01:32 . 2001-08-18 02:36 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2010-10-07 01:32 . 2001-08-18 02:36 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2010-10-07 01:32 . 2001-08-17 17:58 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2010-10-07 01:32 . 2001-08-18 02:36 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2010-10-07 01:32 . 2001-08-18 02:36 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2010-10-07 01:32 . 2001-08-18 02:36 211968 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2010-10-07 01:32 . 2001-08-18 02:36 216064 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2010-10-07 01:32 . 2001-08-17 17:52 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2010-10-07 01:32 . 2004-08-04 03:07 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2010-10-07 01:31 . 2001-08-17 17:48 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2010-10-07 01:31 . 2001-08-17 16:51 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2010-10-07 01:31 . 2001-08-18 02:36 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2010-10-07 01:31 . 2001-08-17 16:51 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2010-10-07 01:31 . 2001-08-17 18:56 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2010-10-07 01:31 . 2001-08-17 16:51 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2010-10-07 01:31 . 2001-08-17 18:56 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2010-10-07 01:31 . 2001-08-17 16:12 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2010-10-07 01:31 . 2001-08-18 02:35 42496 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2010-10-07 01:31 . 2004-08-04 04:56 82432 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2010-10-07 01:31 . 2001-08-18 02:36 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2010-10-07 01:30 . 2001-08-17 17:51 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2010-10-07 01:30 . 2001-08-17 18:02 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2010-10-07 01:30 . 2001-08-17 18:01 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2010-10-07 01:30 . 2001-08-17 16:10 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2010-10-07 01:30 . 2001-08-17 16:14 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2010-10-07 01:30 . 2001-08-17 16:51 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2010-10-07 01:30 . 2001-08-17 18:56 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2010-10-07 01:30 . 2004-08-04 03:00 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2010-10-07 01:30 . 2001-08-17 16:13 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2010-10-07 01:29 . 2001-08-17 16:13 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2010-10-07 01:29 . 2001-08-17 17:49 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2010-10-07 01:29 . 2001-08-17 17:52 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2010-10-07 01:29 . 2001-08-17 16:50 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2010-10-07 01:29 . 2001-08-17 18:56 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2010-10-07 01:29 . 2001-08-17 18:07 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2010-10-07 01:29 . 2001-08-17 18:07 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2010-10-07 01:29 . 2001-08-17 18:07 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2010-10-07 01:29 . 2001-08-17 18:07 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2010-10-07 01:27 . 2001-08-18 02:36 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2010-10-07 01:27 . 2001-08-18 02:36 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2010-10-07 01:27 . 2001-08-17 17:51 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2010-10-07 01:27 . 2001-08-18 02:36 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2010-10-07 01:27 . 2001-08-17 18:07 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2010-10-07 01:27 . 2001-08-17 17:56 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2010-10-07 01:27 . 2001-08-17 16:51 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2010-10-07 01:27 . 2001-08-18 02:36 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2010-10-07 01:27 . 2001-08-17 16:51 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2010-10-07 01:27 . 2001-08-17 17:53 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2010-10-07 01:25 . 2001-08-18 02:36 28160 -c--a-w- c:\windows\system32\dllcache\sm91w.dll
2010-10-07 01:24 . 2001-08-17 18:56 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2010-10-07 01:24 . 2001-08-17 16:50 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2010-10-07 01:24 . 2004-08-04 04:56 3901 -c--a-w- c:\windows\system32\dllcache\siint5.dll
2010-10-07 01:24 . 2001-07-21 18:29 161568 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2010-10-07 01:24 . 2001-07-21 18:29 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2010-10-07 01:24 . 2001-08-17 16:51 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2010-10-07 01:24 . 2001-08-18 02:36 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2010-10-07 01:24 . 2001-08-17 16:19 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2010-10-07 01:24 . 2001-08-17 17:53 6784 -c--a-w- c:\windows\system32\dllcache\serscan.sys
2010-10-07 01:24 . 2001-08-17 17:48 17664 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2010-10-07 01:24 . 2001-08-17 17:53 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2010-10-07 01:23 . 2001-08-17 17:53 10880 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2010-10-07 01:23 . 2001-08-17 17:52 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2010-10-07 01:23 . 2001-08-17 17:51 17280 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2010-10-07 01:23 . 2001-08-17 17:51 16640 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2010-10-07 01:23 . 2001-08-17 17:51 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2010-10-07 01:23 . 2001-08-17 17:51 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2010-10-07 01:23 . 2001-08-18 02:36 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2010-10-07 01:23 . 2001-08-17 16:50 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2010-10-07 01:23 . 2001-08-17 18:56 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2010-10-07 01:23 . 2001-08-17 16:50 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2010-10-07 01:23 . 2001-08-17 18:56 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2010-10-07 01:21 . 2001-08-17 16:19 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2010-10-07 01:21 . 2001-08-18 02:36 9216 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2010-10-07 01:21 . 2001-08-17 16:19 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2010-10-07 01:21 . 2004-08-04 02:59 79104 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2010-10-07 01:21 . 2004-08-04 03:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2010-10-07 01:21 . 2001-08-17 16:12 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2010-10-07 01:21 . 2004-08-04 03:10 59648 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2010-10-07 01:21 . 2001-08-18 02:36 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2010-10-07 01:21 . 2004-08-04 02:41 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2010-10-07 01:21 . 2001-08-17 17:51 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2010-10-07 01:21 . 2001-08-17 17:28 714762 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2010-10-07 01:21 . 2001-08-17 17:28 899146 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2010-10-07 01:20 . 2001-08-18 02:36 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2010-10-07 01:20 . 2001-08-17 17:53 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2010-10-07 01:20 . 2001-08-17 17:52 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2010-10-07 01:20 . 2001-08-17 17:52 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
2010-10-07 01:20 . 2001-08-17 17:52 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
2010-10-07 01:20 . 2001-08-17 17:52 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
2010-10-07 01:20 . 2001-08-17 17:52 40320 -c--a-w- c:\windows\system32\dllcache\ql1080.sys
2010-10-07 01:20 . 2004-08-04 03:00 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2010-10-07 01:20 . 2001-08-17 17:28 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2010-10-07 01:20 . 2001-08-17 17:28 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2010-10-07 01:20 . 2001-08-17 17:28 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2010-10-07 01:20 . 2004-08-04 04:56 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-07 01:03 . 2010-10-07 01:03 -------- d-----w- c:\program files\Alwil Software
2010-10-07 01:03 . 2010-10-07 01:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-10-05 17:33 . 2010-08-22 16:57 -------- d-----w- c:\documents and settings\Jason\Application Data\vlc
2010-10-01 01:16 . 2010-03-30 17:35 -------- d-----w- c:\program files\HP Rhapsody
2010-09-29 19:31 . 2010-04-20 18:04 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-07 15:12 . 2010-10-07 01:03 38848 ----a-w- c:\windows\avastSS.scr
2010-09-07 15:11 . 2010-10-07 01:03 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-07 14:47 . 2010-10-07 01:06 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-09-07 14:47 . 2010-10-07 01:06 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-09-07 14:46 . 2010-10-07 01:06 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-09-01 22:59 . 2010-03-30 18:11 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-08-22 16:54 . 2010-08-22 16:53 -------- d-----w- c:\documents and settings\Jason\Application Data\MozillaControl
2010-08-22 16:53 . 2010-03-30 18:36 57672 ----a-w- c:\documents and settings\Jason\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-08-22 16:52 . 2010-08-22 16:52 -------- d-----w- c:\program files\Mozilla ActiveX Control v1.7.12
2010-08-22 16:52 . 2010-08-22 16:52 -------- d-----w- c:\program files\VideoLAN
2010-08-22 15:17 . 2010-08-22 15:17 183132 ----a-w- c:\windows\KARI2 Uninstaller.exe
2010-08-18 04:27 . 2010-08-18 04:27 -------- d-----w- c:\documents and settings\All Users\Application Data\DKOptimize
.

((((((((((((((((((((((((((((( SnapShot@2010-10-04_22.07.24 )))))))))))))))))))))))))))))))))))))))))
.
- 2004-08-10 20:00 . 2010-06-24 07:07 71462 c:\windows\system32\perfc009.dat
+ 2004-08-10 20:00 . 2010-10-07 02:23 71462 c:\windows\system32\perfc009.dat
+ 2004-08-10 20:00 . 2004-08-10 20:00 92672 c:\windows\system32\drmstor.dll
+ 2010-10-07 01:07 . 2010-09-07 14:52 46672 c:\windows\system32\drivers\aswTdi.sys
+ 2010-10-07 01:07 . 2010-09-07 14:47 23376 c:\windows\system32\drivers\aswRdr.sys
+ 2010-10-07 01:07 . 2010-09-07 14:47 17744 c:\windows\system32\drivers\aswFsBlk.sys
+ 2004-08-04 00:56 . 2005-06-21 22:00 52736 c:\windows\system32\dllcache\wzcsapi.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 13824 c:\windows\system32\dllcache\wowfaxui.dll
+ 2010-10-07 01:35 . 2001-08-18 02:36 53760 c:\windows\system32\dllcache\wiamsmud.dll
+ 2010-10-07 01:35 . 2001-08-18 02:36 87040 c:\windows\system32\dllcache\wiafbdrv.dll
+ 2010-10-07 01:35 . 2004-08-04 02:29 23615 c:\windows\system32\dllcache\wch7xxnt.sys
+ 2010-10-07 01:35 . 2004-08-04 03:08 31744 c:\windows\system32\dllcache\wceusbsh.sys
+ 2010-10-07 01:35 . 2001-08-17 16:10 35871 c:\windows\system32\dllcache\wbfirdma.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 25471 c:\windows\system32\dllcache\watv10nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 22271 c:\windows\system32\dllcache\watv06nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 33599 c:\windows\system32\dllcache\watv04nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 19551 c:\windows\system32\dllcache\watv02nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 29311 c:\windows\system32\dllcache\watv01nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11935 c:\windows\system32\dllcache\wadv11nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11871 c:\windows\system32\dllcache\wadv09nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11295 c:\windows\system32\dllcache\wadv08nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11807 c:\windows\system32\dllcache\wadv07nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11775 c:\windows\system32\dllcache\wadv05nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 12127 c:\windows\system32\dllcache\wadv02nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 12415 c:\windows\system32\dllcache\wadv01nt.sys
+ 2010-10-07 01:35 . 2004-08-04 03:04 13568 c:\windows\system32\dllcache\wacompen.sys
+ 2001-08-17 14:02 . 2004-08-10 20:00 58112 c:\windows\system32\dllcache\vdmindvd.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 49211 c:\windows\system32\dllcache\usrvpa.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 45116 c:\windows\system32\dllcache\usrvoica.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 49209 c:\windows\system32\dllcache\usrv80a.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 41019 c:\windows\system32\dllcache\usrsvpia.dll
+ 2001-08-17 22:37 . 2004-08-10 20:00 69700 c:\windows\system32\dllcache\usrshuta.exe
+ 2001-08-17 22:36 . 2004-08-10 20:00 49211 c:\windows\system32\dllcache\usrsdpia.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 77883 c:\windows\system32\dllcache\usrrtosa.dll
+ 2001-08-17 22:37 . 2004-08-10 20:00 61508 c:\windows\system32\dllcache\usrprbda.exe
+ 2001-08-17 22:37 . 2004-08-10 20:00 77891 c:\windows\system32\dllcache\usrmlnka.exe
+ 2001-08-17 22:36 . 2004-08-10 20:00 53305 c:\windows\system32\dllcache\usrlbva.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 86073 c:\windows\system32\dllcache\usrfaxa.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 77890 c:\windows\system32\dllcache\usrdpa.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 69699 c:\windows\system32\dllcache\usrcoina.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 61500 c:\windows\system32\dllcache\usrcntra.dll
+ 2010-10-07 01:33 . 2004-08-04 03:10 78464 c:\windows\system32\dllcache\usbvideo.sys
+ 2010-03-30 11:46 . 2004-08-04 00:56 74240 c:\windows\system32\dllcache\usbui.dll
+ 2010-10-07 01:33 . 2004-08-04 03:08 20480 c:\windows\system32\dllcache\usbuhci.sys
+ 2010-10-07 01:33 . 2004-08-04 03:08 25600 c:\windows\system32\dllcache\usbser.sys
+ 2010-10-07 01:33 . 2004-08-04 03:01 25856 c:\windows\system32\dllcache\usbprint.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 17024 c:\windows\system32\dllcache\usbohci.sys
+ 2004-08-03 23:08 . 2004-08-10 20:00 16000 c:\windows\system32\dllcache\usbintel.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 57600 c:\windows\system32\dllcache\usbhub.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 26624 c:\windows\system32\dllcache\usbehci.sys
+ 2010-10-07 01:33 . 2004-08-04 03:08 31616 c:\windows\system32\dllcache\usbccgp.sys
+ 2001-08-17 14:03 . 2004-08-10 20:00 23936 c:\windows\system32\dllcache\usbcamd2.sys
+ 2001-08-17 14:03 . 2004-08-10 20:00 23808 c:\windows\system32\dllcache\usbcamd.sys
+ 2010-10-07 01:33 . 2004-08-04 03:07 59264 c:\windows\system32\dllcache\usbaudio.sys
+ 2010-10-07 01:33 . 2004-08-04 03:04 12672 c:\windows\system32\dllcache\usb8023x.sys
+ 2010-10-07 01:33 . 2004-08-04 02:31 32384 c:\windows\system32\dllcache\usb101et.sys
+ 2004-08-03 23:03 . 2004-08-10 20:00 12416 c:\windows\system32\dllcache\tunmp.sys
+ 2001-08-17 14:06 . 2004-08-10 20:00 21376 c:\windows\system32\dllcache\tsbvcap.sys
+ 2001-08-17 14:01 . 2004-08-10 20:00 51712 c:\windows\system32\dllcache\tosdvd.sys
+ 2010-03-30 16:50 . 2004-08-04 06:01 40840 c:\windows\system32\dllcache\termdd.sys
+ 2010-10-07 01:28 . 2001-08-18 02:36 94293 c:\windows\system32\dllcache\sxports.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 10240 c:\windows\system32\dllcache\swpidflt.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 10240 c:\windows\system32\dllcache\swpdflt2.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 53760 c:\windows\system32\dllcache\sw_wheel.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 41472 c:\windows\system32\dllcache\sw_effct.dll
+ 2010-10-07 01:28 . 2004-08-04 03:10 15360 c:\windows\system32\dllcache\streamip.sys
+ 2010-03-30 11:42 . 2004-08-04 00:56 74752 c:\windows\system32\dllcache\storprop.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 53248 c:\windows\system32\dllcache\stlncoin.dll
+ 2010-10-07 01:28 . 2001-08-17 17:51 16896 c:\windows\system32\dllcache\stcusb.sys
+ 2010-10-07 01:28 . 2001-08-17 16:11 48736 c:\windows\system32\dllcache\srwlnd5.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 72192 c:\windows\system32\dllcache\sprio800.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 70656 c:\windows\system32\dllcache\sprio600.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 69632 c:\windows\system32\dllcache\spnike.dll
+ 2004-08-03 23:09 . 2004-08-10 20:00 25472 c:\windows\system32\dllcache\sonydcam.sys
+ 2010-10-07 01:26 . 2001-08-17 16:51 58368 c:\windows\system32\dllcache\smiminib.sys
+ 2010-10-07 01:26 . 2001-08-17 16:12 25034 c:\windows\system32\dllcache\smcpwr2n.sys
+ 2010-10-07 01:26 . 2001-08-17 16:10 35913 c:\windows\system32\dllcache\smcirda.sys
+ 2010-10-07 01:26 . 2001-08-17 16:12 24576 c:\windows\system32\dllcache\smc8000n.sys
+ 2010-10-07 01:26 . 2004-08-04 03:07 16128 c:\windows\system32\dllcache\smbbatt.sys
+ 2010-10-07 01:26 . 2001-08-18 02:36 45568 c:\windows\system32\dllcache\smb3w.dll
+ 2010-10-07 01:26 . 2001-08-18 02:36 33792 c:\windows\system32\dllcache\smb0w.dll
+ 2010-10-07 01:26 . 2001-08-18 02:36 28672 c:\windows\system32\dllcache\sma0w.dll
+ 2010-10-07 01:25 . 2004-08-04 02:41 13240 c:\windows\system32\dllcache\slwdmsup.sys
+ 2010-10-07 01:25 . 2004-08-04 04:56 73796 c:\windows\system32\dllcache\slserv.exe
+ 2010-10-07 01:25 . 2004-08-04 04:56 32866 c:\windows\system32\dllcache\slrundll.exe
+ 2010-10-07 01:25 . 2004-08-04 02:41 95424 c:\windows\system32\dllcache\slnthal.sys
+ 2010-10-07 01:25 . 2004-08-04 03:10 11136 c:\windows\system32\dllcache\slip.sys
+ 2010-10-07 01:25 . 2004-08-04 04:56 73832 c:\windows\system32\dllcache\slcoinst.dll
+ 2010-10-07 01:25 . 2004-08-04 02:31 63547 c:\windows\system32\dllcache\sla30nd5.sys
+ 2010-10-07 01:25 . 2001-08-17 16:12 91294 c:\windows\system32\dllcache\skfpwin.sys
+ 2010-10-07 01:25 . 2001-08-17 16:12 94698 c:\windows\system32\dllcache\sk98xwin.sys
+ 2010-10-07 01:25 . 2001-08-17 16:50 50432 c:\windows\system32\dllcache\sisv.sys
+ 2010-10-07 01:25 . 2004-08-04 02:31 32768 c:\windows\system32\dllcache\sisnic.sys
+ 2010-10-07 01:25 . 2004-08-04 03:07 41088 c:\windows\system32\dllcache\sisagp.sys
+ 2010-10-07 01:25 . 2001-08-17 16:50 68608 c:\windows\system32\dllcache\sis6306p.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 11392 c:\windows\system32\dllcache\sfloppy.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 10240 c:\windows\system32\dllcache\sffp_sd.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 11136 c:\windows\system32\dllcache\sffdisk.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 64896 c:\windows\system32\dllcache\serial.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 15488 c:\windows\system32\dllcache\serenum.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 29184 c:\windows\system32\dllcache\sdhcinst.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 67584 c:\windows\system32\dllcache\sdbus.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 96256 c:\windows\system32\dllcache\scsiport.sys
+ 2010-03-30 18:24 . 2005-05-31 23:46 43264 c:\windows\system32\dllcache\sbp2port.sys
+ 2010-10-07 01:22 . 2001-08-17 16:50 61504 c:\windows\system32\dllcache\s3sav3dm.sys
+ 2010-10-07 01:22 . 2001-08-18 02:36 62496 c:\windows\system32\dllcache\s3mtrio.dll
+ 2010-10-07 01:22 . 2001-08-17 16:50 41216 c:\windows\system32\dllcache\s3mt3d.sys
+ 2010-10-07 01:22 . 2001-08-17 17:57 65664 c:\windows\system32\dllcache\s3legacy.sys
+ 2010-10-07 01:22 . 2001-08-18 02:36 82432 c:\windows\system32\dllcache\rwia450.dll
+ 2010-10-07 01:22 . 2001-08-18 02:36 79872 c:\windows\system32\dllcache\rwia430.dll
+ 2010-10-07 01:22 . 2001-08-18 02:36 26624 c:\windows\system32\dllcache\rw450ext.dll
+ 2010-10-07 01:22 . 2001-08-18 02:36 24576 c:\windows\system32\dllcache\rw430ext.dll
+ 2010-03-30 11:47 . 2004-08-03 22:31 20992 c:\windows\system32\dllcache\rtl8139.sys
+ 2010-10-07 01:22 . 2001-08-17 16:12 19017 c:\windows\system32\dllcache\rtl8029.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 12032 c:\windows\system32\dllcache\riodrv.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 12032 c:\windows\system32\dllcache\rio8drv.sys
+ 2010-03-30 11:47 . 2004-08-03 22:59 57472 c:\windows\system32\dllcache\redbook.sys
+ 2010-10-07 01:19 . 2001-08-18 02:36 35328 c:\windows\system32\dllcache\psisload.dll
+ 2010-10-07 01:19 . 2001-08-17 17:51 16128 c:\windows\system32\dllcache\pscr.sys
+ 2004-08-03 22:59 . 2004-08-27 21:42 35456 c:\windows\system32\dllcache\processr.sys
+ 2010-10-07 01:19 . 2004-08-04 03:00 17664 c:\windows\system32\dllcache\ppa3.sys
+ 2010-10-07 01:19 . 2001-08-17 17:53 17792 c:\windows\system32\dllcache\ppa.sys
+ 2004-08-04 00:56 . 2004-08-10 20:00 15360 c:\windows\system32\dllcache\pjlmon.dll
+ 2004-08-04 00:56 . 2004-08-10 20:00 35328 c:\windows\system32\dllcache\pid.dll
+ 2010-10-07 01:19 . 2001-08-17 18:07 19840 c:\windows\system32\dllcache\philtune.sys
+ 2010-10-07 01:19 . 2001-08-17 18:04 92416 c:\windows\system32\dllcache\phildec.sys
+ 2010-10-07 01:19 . 2001-08-17 18:04 75776 c:\windows\system32\dllcache\philcam1.sys
+ 2010-10-07 01:19 . 2001-08-18 02:36 16384 c:\windows\system32\dllcache\philcam1.dll
+ 2010-10-07 01:18 . 2004-08-04 03:06 28032 c:\windows\system32\dllcache\perm3.sys
+ 2010-10-07 01:18 . 2004-08-04 03:06 27904 c:\windows\system32\dllcache\perm2.sys
+ 2010-10-07 01:18 . 2001-08-17 18:07 27296 c:\windows\system32\dllcache\perc2.sys
+ 2010-10-07 01:18 . 2001-08-18 02:36 86016 c:\windows\system32\dllcache\pctspk.exe
+ 2010-10-07 01:18 . 2001-08-17 16:11 35328 c:\windows\system32\dllcache\pcntpci5.sys
+ 2010-10-07 01:18 . 2001-08-17 16:11 29769 c:\windows\system32\dllcache\pcntn5m.sys
+ 2010-10-07 01:18 . 2001-08-17 16:11 30282 c:\windows\system32\dllcache\pcntn5hl.sys
+ 2010-10-07 01:18 . 2001-08-17 16:12 26153 c:\windows\system32\dllcache\pcmlm56.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 25088 c:\windows\system32\dllcache\pciidex.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 68224 c:\windows\system32\dllcache\pci.sys
+ 2010-10-07 01:18 . 2004-08-04 02:31 29502 c:\windows\system32\dllcache\pca200e.sys
+ 2010-10-07 01:18 . 2001-08-17 16:12 30495 c:\windows\system32\dllcache\pc100nds.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 80128 c:\windows\system32\dllcache\parport.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 42496 c:\windows\system32\dllcache\p3.sys
+ 2010-10-07 01:17 . 2001-08-18 02:36 41984 c:\windows\system32\dllcache\ovui2rc.dll
+ 2010-10-07 01:17 . 2001-08-18 02:36 44544 c:\windows\system32\dllcache\ovui2.dll
+ 2010-10-07 01:17 . 2001-08-17 18:05 25216 c:\windows\system32\dllcache\ovsound2.sys
+ 2010-10-07 01:17 . 2001-08-18 02:36 39424 c:\windows\system32\dllcache\ovcoms.exe
+ 2010-10-07 01:17 . 2001-08-18 02:36 20480 c:\windows\system32\dllcache\ovcomc.dll
+ 2010-10-07 01:17 . 2001-08-17 18:05 31872 c:\windows\system32\dllcache\ovce.sys
+ 2010-10-07 01:17 . 2001-08-17 18:05 28032 c:\windows\system32\dllcache\ovcd.sys
+ 2010-10-07 01:17 . 2001-08-17 18:05 48000 c:\windows\system32\dllcache\ovcam2.sys
+ 2010-10-07 01:17 . 2001-08-17 18:05 25088 c:\windows\system32\dllcache\ovca.sys
+ 2010-10-07 01:17 . 2001-08-17 17:28 54186 c:\windows\system32\dllcache\otcsercb.sys
+ 2010-10-07 01:17 . 2001-08-17 16:12 43689 c:\windows\system32\dllcache\otceth5.sys
+ 2010-10-07 01:17 . 2001-08-17 16:12 27209 c:\windows\system32\dllcache\otc06x5.sys
+ 2010-10-07 01:16 . 2001-08-17 16:20 54528 c:\windows\system32\dllcache\opl3sax.sys
+ 2004-08-10 20:00 . 2004-09-27 22:19 61056 c:\windows\system32\dllcache\ohci1394.sys
+ 2010-10-07 01:16 . 2001-08-17 16:49 51552 c:\windows\system32\dllcache\ntgrip.sys
+ 2010-10-07 01:16 . 2004-08-04 03:00 28672 c:\windows\system32\dllcache\nscirda.sys
+ 2010-10-07 01:16 . 2001-08-17 16:20 87040 c:\windows\system32\dllcache\nm6wdm.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 12032 c:\windows\system32\dllcache\nikedrv.sys
+ 2004-08-03 22:58 . 2004-08-10 20:00 61824 c:\windows\system32\dllcache\nic1394.sys
+ 2010-10-07 01:15 . 2001-08-17 16:12 32840 c:\windows\system32\dllcache\ngrpci.sys
+ 2010-10-07 01:15 . 2001-08-17 16:11 65278 c:\windows\system32\dllcache\netflx3.sys
+ 2010-10-07 01:15 . 2001-08-17 16:50 39264 c:\windows\system32\dllcache\neo20xx.sys
+ 2010-10-07 01:15 . 2001-08-18 02:36 60480 c:\windows\system32\dllcache\neo20xx.dll
+ 2010-10-07 01:15 . 2001-08-17 17:49 15872 c:\windows\system32\dllcache\ne2000.sys
+ 2004-08-03 23:03 . 2005-06-21 01:52 14592 c:\windows\system32\dllcache\ndisuio.sys
+ 2010-10-07 01:15 . 2004-08-04 03:10 10880 c:\windows\system32\dllcache\ndisip.sys
+ 2010-10-07 01:15 . 2004-08-04 03:10 85376 c:\windows\system32\dllcache\nabtsfec.sys
+ 2010-10-07 01:15 . 2001-08-17 18:56 91488 c:\windows\system32\dllcache\n9i3disp.dll
+ 2010-10-07 01:15 . 2001-08-17 16:50 27936 c:\windows\system32\dllcache\n9i3d.sys
+ 2010-10-07 01:14 . 2001-08-17 16:50 33088 c:\windows\system32\dllcache\n9i128v2.sys
+ 2010-10-07 01:14 . 2001-08-18 02:36 59104 c:\windows\system32\dllcache\n9i128v2.dll
+ 2010-10-07 01:14 . 2001-08-17 16:50 13664 c:\windows\system32\dllcache\n9i128.sys
+ 2010-10-07 01:14 . 2001-08-17 18:56 35392 c:\windows\system32\dllcache\n9i128.dll
+ 2010-10-07 01:14 . 2001-08-17 16:11 52255 c:\windows\system32\dllcache\n1000nt5.sys
+ 2010-10-07 01:14 . 2001-08-17 17:50 75520 c:\windows\system32\dllcache\mxport.sys
+ 2010-10-07 01:14 . 2001-08-17 17:49 19968 c:\windows\system32\dllcache\mxnic.sys
+ 2010-10-07 01:14 . 2001-08-18 02:36 19968 c:\windows\system32\dllcache\mxicfg.dll
+ 2010-10-07 01:14 . 2001-08-17 17:50 21888 c:\windows\system32\dllcache\mxcard.sys
+ 2010-10-07 01:14 . 2004-08-04 03:04 12672 c:\windows\system32\dllcache\mutohpen.sys
+ 2004-08-04 00:56 . 2009-11-27 17:04 17920 c:\windows\system32\dllcache\msyuv.dll
- 2009-11-27 17:04 . 2009-11-27 17:04 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2010-10-07 01:13 . 2004-08-04 03:10 49024 c:\windows\system32\dllcache\mstape.sys
+ 2004-08-03 23:07 . 2004-08-10 20:00 15488 c:\windows\system32\dllcache\mssmbios.sys
+ 2010-10-07 01:13 . 2001-08-17 17:48 12416 c:\windows\system32\dllcache\msriffwv.sys
+ 2010-10-07 01:13 . 2004-08-04 03:00 22016 c:\windows\system32\dllcache\msircomm.sys
+ 2010-10-07 01:13 . 2001-08-17 18:02 35200 c:\windows\system32\dllcache\msgame.sys
+ 2010-10-07 01:13 . 2004-08-04 03:10 51328 c:\windows\system32\dllcache\msdv.sys
+ 2010-10-07 01:12 . 2001-08-17 17:52 17280 c:\windows\system32\dllcache\mraid35x.sys
+ 2010-10-07 01:12 . 2004-08-04 03:10 15360 c:\windows\system32\dllcache\mpe.sys
+ 2010-10-07 01:12 . 2001-08-17 17:48 12160 c:\windows\system32\dllcache\mouhid.sys
+ 2004-08-03 22:58 . 2004-08-10 20:00 23040 c:\windows\system32\dllcache\mouclass.sys
+ 2010-10-07 01:12 . 2001-08-17 17:57 16128 c:\windows\system32\dllcache\modemcsa.sys
+ 2004-08-03 23:08 . 2004-08-10 20:00 30080 c:\windows\system32\dllcache\modem.sys
+ 2004-08-03 23:07 . 2004-08-10 20:00 63744 c:\windows\system32\dllcache\mf.sys
+ 2010-10-07 01:12 . 2004-08-04 03:00 26112 c:\windows\system32\dllcache\memstpci.sys
+ 2010-10-07 01:11 . 2001-08-18 02:36 47616 c:\windows\system32\dllcache\memgrp.dll
+ 2010-10-07 01:11 . 2001-08-17 16:19 48768 c:\windows\system32\dllcache\maestro.sys
+ 2010-10-07 01:11 . 2001-08-18 02:36 58880 c:\windows\system32\dllcache\m3092dc.dll
+ 2010-10-07 01:11 . 2001-08-18 02:36 58368 c:\windows\system32\dllcache\m3091dc.dll
+ 2010-10-07 01:11 . 2001-08-17 16:49 22848 c:\windows\system32\dllcache\lwusbhid.sys
+ 2010-10-07 01:11 . 2004-08-04 02:39 20864 c:\windows\system32\dllcache\lwadihid.sys
+ 2004-08-10 20:00 . 2008-06-11 07:47 96768 c:\windows\system32\dllcache\logagent.exe
+ 2010-10-07 01:10 . 2001-08-17 16:12 70730 c:\windows\system32\dllcache\lne100tx.sys
+ 2010-10-07 01:10 . 2001-08-17 16:12 20573 c:\windows\system32\dllcache\lne100.sys
+ 2010-10-07 01:10 . 2001-08-17 16:11 25065 c:\windows\system32\dllcache\lmndis3.sys
+ 2010-10-07 01:10 . 2001-08-17 17:51 15744 c:\windows\system32\dllcache\lit220p.sys
+ 2010-10-07 01:10 . 2004-08-04 02:59 34688 c:\windows\system32\dllcache\lbrtfdc.sys
+ 2010-10-07 01:10 . 2001-08-17 16:12 26442 c:\windows\system32\dllcache\lanepic5.sys
+ 2010-10-07 01:10 . 2001-08-17 16:12 19016 c:\windows\system32\dllcache\ktc111.sys
+ 2010-10-07 01:10 . 2001-08-18 02:36 37376 c:\windows\system32\dllcache\kousd.dll
+ 2010-10-07 01:10 . 2001-08-18 02:36 45568 c:\windows\system32\dllcache\kdsui.dll
+ 2010-10-07 01:10 . 2004-08-04 02:58 14848 c:\windows\system32\dllcache\kbdhid.sys
- 2009-11-27 16:37 . 2009-11-27 16:37 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-04 00:56 . 2009-11-27 16:37 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 35840 c:\windows\system32\dllcache\isapnp.sys
+ 2010-10-07 01:09 . 2001-08-17 17:49 26624 c:\windows\system32\dllcache\irstusb.sys
+ 2010-10-07 01:09 . 2001-08-17 17:51 18688 c:\windows\system32\dllcache\irsir.sys
+ 2010-03-30 17:44 . 2004-09-30 17:49 27136 c:\windows\system32\dllcache\irmon.dll
+ 2010-10-07 01:09 . 2001-08-17 17:49 23552 c:\windows\system32\dllcache\irmk7.sys
+ 2010-10-07 01:09 . 2004-08-04 03:00 87424 c:\windows\system32\dllcache\irda.sys
+ 2010-03-30 17:45 . 2005-06-28 23:43 46592 c:\windows\system32\dllcache\irbus.sys
+ 2010-10-07 01:09 . 2001-08-17 16:12 45632 c:\windows\system32\dllcache\ip5515.sys
+ 2010-10-07 01:09 . 2001-08-18 02:36 90200 c:\windows\system32\dllcache\io8ports.dll
+ 2010-10-07 01:09 . 2001-08-17 17:50 38784 c:\windows\system32\dllcache\io8.sys
+ 2004-08-10 20:00 . 2004-08-27 21:42 36096 c:\windows\system32

JasonV · Oct 6, 2010

Log continued below.

JasonV · Oct 6, 2010

Avast found and deleted a high threat virus, which is weird because I installed and ran both Avira and MS Security Essentials before I came to this board and neither found a threat.

I also used SFC to restore the files with no problems.

Latest ComboFix log:

ComboFix 10-10-06.02 - Jason 10/06/2010 22:20:36.3.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1022.690 [GMT -4:00]
Running from: c:\documents and settings\Jason\Desktop\MRS\cf.exe
AV: avast! Antivirus *On-access scanning disabled* (Updated) {7591DB91-41F0-48A3-B128-1A293FD8233D}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

Infected copy of c:\windows\system32\DRIVERS\wmiacpi.sys was found and disinfected
Restored copy from - Kitty had a snack
.
((((((((((((((((((((((((( Files Created from 2010-09-07 to 2010-10-07 )))))))))))))))))))))))))))))))
.

2010-10-07 02:16 . 2004-08-04 03:07 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
2010-10-07 02:16 . 2004-08-04 03:07 8832 ----a-w- c:\windows\system32\drivers\wmiacpi.sys
2010-10-07 01:39 . 2004-08-04 04:56 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-10-07 01:39 . 2001-08-18 02:36 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-10-07 01:38 . 2001-08-18 02:36 17408 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-10-07 01:38 . 2001-08-18 02:37 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-10-07 01:38 . 2001-08-18 02:37 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-10-07 01:37 . 2001-08-18 02:37 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
2010-10-07 01:37 . 2001-08-17 16:11 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
2010-10-07 01:37 . 2004-08-04 02:29 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
2010-10-07 01:37 . 2004-08-04 03:10 19328 -c--a-w- c:\windows\system32\dllcache\wstcodec.sys
2010-10-07 01:37 . 2004-08-04 02:29 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
2010-10-07 01:37 . 2004-08-04 04:56 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
2010-10-07 01:36 . 2004-08-04 02:31 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
2010-10-07 01:36 . 2001-08-17 16:12 34890 -c--a-w- c:\windows\system32\dllcache\wlandrv2.sys
2010-10-07 01:34 . 2001-08-17 16:13 16925 -c--a-w- c:\windows\system32\dllcache\w940nd.sys
2010-10-07 01:34 . 2001-08-17 16:13 19016 -c--a-w- c:\windows\system32\dllcache\w926nd.sys
2010-10-07 01:34 . 2001-08-17 16:13 19528 -c--a-w- c:\windows\system32\dllcache\w840nd.sys
2010-10-07 01:34 . 2001-08-17 17:28 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2010-10-07 01:34 . 2001-08-17 17:28 397502 -c--a-w- c:\windows\system32\dllcache\vpctcom.sys
2010-10-07 01:34 . 2001-08-17 17:28 604253 -c--a-w- c:\windows\system32\dllcache\vmodem.sys
2010-10-07 01:34 . 2001-08-17 16:14 249402 -c--a-w- c:\windows\system32\dllcache\vinwm.sys
2010-10-07 01:34 . 2001-08-17 17:49 24576 -c--a-w- c:\windows\system32\dllcache\viairda.sys
2010-10-07 01:34 . 2004-08-04 02:59 5376 -c--a-w- c:\windows\system32\dllcache\viaide.sys
2010-10-07 01:34 . 2004-08-04 03:07 42240 -c--a-w- c:\windows\system32\dllcache\viaagp.sys
2010-10-07 01:34 . 2004-08-04 04:56 53760 -c--a-w- c:\windows\system32\dllcache\vfwwdm32.dll
2010-10-07 01:34 . 2004-08-04 04:56 11325 -c--a-w- c:\windows\system32\dllcache\vchnt5.dll
2010-10-07 01:32 . 2001-08-18 02:36 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
2010-10-07 01:32 . 2001-08-18 02:36 28160 -c--a-w- c:\windows\system32\dllcache\umaxu40.dll
2010-10-07 01:32 . 2001-08-18 02:36 26624 -c--a-w- c:\windows\system32\dllcache\umaxu22.dll
2010-10-07 01:32 . 2001-08-18 02:36 69632 -c--a-w- c:\windows\system32\dllcache\umaxu12.dll
2010-10-07 01:32 . 2001-08-18 02:36 50688 -c--a-w- c:\windows\system32\dllcache\umaxscan.dll
2010-10-07 01:32 . 2001-08-17 17:58 22912 -c--a-w- c:\windows\system32\dllcache\umaxpcls.sys
2010-10-07 01:32 . 2001-08-18 02:36 50176 -c--a-w- c:\windows\system32\dllcache\umaxp60.dll
2010-10-07 01:32 . 2001-08-18 02:36 47616 -c--a-w- c:\windows\system32\dllcache\umaxcam.dll
2010-10-07 01:32 . 2001-08-18 02:36 211968 -c--a-w- c:\windows\system32\dllcache\um54scan.dll
2010-10-07 01:32 . 2001-08-18 02:36 216064 -c--a-w- c:\windows\system32\dllcache\um34scan.dll
2010-10-07 01:32 . 2001-08-17 17:52 36736 -c--a-w- c:\windows\system32\dllcache\ultra.sys
2010-10-07 01:32 . 2004-08-04 03:07 44672 -c--a-w- c:\windows\system32\dllcache\uagp35.sys
2010-10-07 01:31 . 2001-08-17 17:48 11520 -c--a-w- c:\windows\system32\dllcache\twotrack.sys
2010-10-07 01:31 . 2001-08-17 16:51 166784 -c--a-w- c:\windows\system32\dllcache\tridxpm.sys
2010-10-07 01:31 . 2001-08-18 02:36 525568 -c--a-w- c:\windows\system32\dllcache\tridxp.dll
2010-10-07 01:31 . 2001-08-17 16:51 159232 -c--a-w- c:\windows\system32\dllcache\tridkbm.sys
2010-10-07 01:31 . 2001-08-17 18:56 440576 -c--a-w- c:\windows\system32\dllcache\tridkb.dll
2010-10-07 01:31 . 2001-08-17 16:51 222336 -c--a-w- c:\windows\system32\dllcache\trid3dm.sys
2010-10-07 01:31 . 2001-08-17 18:56 315520 -c--a-w- c:\windows\system32\dllcache\trid3d.dll
2010-10-07 01:31 . 2001-08-17 16:12 34375 -c--a-w- c:\windows\system32\dllcache\tpro4.sys
2010-10-07 01:31 . 2001-08-18 02:35 42496 -c--a-w- c:\windows\system32\dllcache\tp4res.dll
2010-10-07 01:31 . 2004-08-04 04:56 82432 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
2010-10-07 01:31 . 2001-08-18 02:36 31744 -c--a-w- c:\windows\system32\dllcache\tp4.dll
2010-10-07 01:30 . 2001-08-17 17:51 4992 -c--a-w- c:\windows\system32\dllcache\toside.sys
2010-10-07 01:30 . 2001-08-17 18:02 230912 -c--a-w- c:\windows\system32\dllcache\tosdvd03.sys
2010-10-07 01:30 . 2001-08-17 18:01 241664 -c--a-w- c:\windows\system32\dllcache\tosdvd02.sys
2010-10-07 01:30 . 2001-08-17 16:10 28232 -c--a-w- c:\windows\system32\dllcache\tos4mo.sys
2010-10-07 01:30 . 2001-08-17 16:14 123995 -c--a-w- c:\windows\system32\dllcache\tjisdn.sys
2010-10-07 01:30 . 2001-08-17 16:51 138528 -c--a-w- c:\windows\system32\dllcache\tgiulnt5.sys
2010-10-07 01:30 . 2001-08-17 18:56 81408 -c--a-w- c:\windows\system32\dllcache\tgiul50.dll
2010-10-07 01:30 . 2004-08-04 03:00 149376 -c--a-w- c:\windows\system32\dllcache\tffsport.sys
2010-10-07 01:30 . 2001-08-17 16:13 17129 -c--a-w- c:\windows\system32\dllcache\tdkcd31.sys
2010-10-07 01:29 . 2001-08-17 16:13 37961 -c--a-w- c:\windows\system32\dllcache\tdk100b.sys
2010-10-07 01:29 . 2001-08-17 17:49 30464 -c--a-w- c:\windows\system32\dllcache\tbatm155.sys
2010-10-07 01:29 . 2001-08-17 17:52 7040 -c--a-w- c:\windows\system32\dllcache\tandqic.sys
2010-10-07 01:29 . 2001-08-17 16:50 36640 -c--a-w- c:\windows\system32\dllcache\t2r4mini.sys
2010-10-07 01:29 . 2001-08-17 18:56 172768 -c--a-w- c:\windows\system32\dllcache\t2r4disp.dll
2010-10-07 01:29 . 2001-08-17 18:07 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
2010-10-07 01:29 . 2001-08-17 18:07 16256 -c--a-w- c:\windows\system32\dllcache\symc810.sys
2010-10-07 01:29 . 2001-08-17 18:07 30688 -c--a-w- c:\windows\system32\dllcache\sym_u3.sys
2010-10-07 01:29 . 2001-08-17 18:07 28384 -c--a-w- c:\windows\system32\dllcache\sym_hi.sys
2010-10-07 01:27 . 2001-08-18 02:36 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2010-10-07 01:27 . 2001-08-18 02:36 24660 -c--a-w- c:\windows\system32\dllcache\spxupchk.dll
2010-10-07 01:27 . 2001-08-17 17:51 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
2010-10-07 01:27 . 2001-08-18 02:36 106584 -c--a-w- c:\windows\system32\dllcache\spdports.dll
2010-10-07 01:27 . 2001-08-17 18:07 19072 -c--a-w- c:\windows\system32\dllcache\sparrow.sys
2010-10-07 01:27 . 2001-08-17 17:56 7552 -c--a-w- c:\windows\system32\dllcache\sonypvu1.sys
2010-10-07 01:27 . 2001-08-17 16:51 37040 -c--a-w- c:\windows\system32\dllcache\sonypi.sys
2010-10-07 01:27 . 2001-08-18 02:36 114688 -c--a-w- c:\windows\system32\dllcache\sonypi.dll
2010-10-07 01:27 . 2001-08-17 16:51 20752 -c--a-w- c:\windows\system32\dllcache\sonync.sys
2010-10-07 01:27 . 2001-08-17 17:53 9600 -c--a-w- c:\windows\system32\dllcache\sonymc.sys
2010-10-07 01:25 . 2001-08-18 02:36 28160 -c--a-w- c:\windows\system32\dllcache\sm91w.dll
2010-10-07 01:24 . 2001-08-17 18:56 252032 -c--a-w- c:\windows\system32\dllcache\sis300iv.dll
2010-10-07 01:24 . 2001-08-17 16:50 101760 -c--a-w- c:\windows\system32\dllcache\sis300ip.sys
2010-10-07 01:24 . 2004-08-04 04:56 3901 -c--a-w- c:\windows\system32\dllcache\siint5.dll
2010-10-07 01:24 . 2001-07-21 18:29 161568 -c--a-w- c:\windows\system32\dllcache\sgsmusb.sys
2010-10-07 01:24 . 2001-07-21 18:29 18400 -c--a-w- c:\windows\system32\dllcache\sgsmld.sys
2010-10-07 01:24 . 2001-08-17 16:51 98080 -c--a-w- c:\windows\system32\dllcache\sgiulnt5.sys
2010-10-07 01:24 . 2001-08-18 02:36 386560 -c--a-w- c:\windows\system32\dllcache\sgiul50.dll
2010-10-07 01:24 . 2001-08-17 16:19 36480 -c--a-w- c:\windows\system32\dllcache\sfmanm.sys
2010-10-07 01:24 . 2001-08-17 17:53 6784 -c--a-w- c:\windows\system32\dllcache\serscan.sys
2010-10-07 01:24 . 2001-08-17 17:48 17664 -c--a-w- c:\windows\system32\dllcache\sermouse.sys
2010-10-07 01:24 . 2001-08-17 17:53 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
2010-10-07 01:23 . 2001-08-17 17:53 10880 -c--a-w- c:\windows\system32\dllcache\scsiscan.sys
2010-10-07 01:23 . 2001-08-17 17:52 11648 -c--a-w- c:\windows\system32\dllcache\scsiprnt.sys
2010-10-07 01:23 . 2001-08-17 17:51 17280 -c--a-w- c:\windows\system32\dllcache\scr111.sys
2010-10-07 01:23 . 2001-08-17 17:51 16640 -c--a-w- c:\windows\system32\dllcache\scmstcs.sys
2010-10-07 01:23 . 2001-08-17 17:51 23936 -c--a-w- c:\windows\system32\dllcache\sccmusbm.sys
2010-10-07 01:23 . 2001-08-17 17:51 23936 -c--a-w- c:\windows\system32\dllcache\sccmn50m.sys
2010-10-07 01:23 . 2001-08-18 02:36 495616 -c--a-w- c:\windows\system32\dllcache\sblfx.dll
2010-10-07 01:23 . 2001-08-17 16:50 75392 -c--a-w- c:\windows\system32\dllcache\s3savmxm.sys
2010-10-07 01:23 . 2001-08-17 18:56 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2010-10-07 01:23 . 2001-08-17 16:50 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2010-10-07 01:23 . 2001-08-17 18:56 198400 -c--a-w- c:\windows\system32\dllcache\s3sav4.dll
2010-10-07 01:21 . 2001-08-17 16:19 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
2010-10-07 01:21 . 2001-08-18 02:36 9216 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2010-10-07 01:21 . 2001-08-17 16:19 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
2010-10-07 01:21 . 2004-08-04 02:59 79104 -c--a-w- c:\windows\system32\dllcache\rocket.sys
2010-10-07 01:21 . 2004-08-04 03:04 30080 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
2010-10-07 01:21 . 2001-08-17 16:12 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
2010-10-07 01:21 . 2004-08-04 03:10 59648 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
2010-10-07 01:21 . 2001-08-18 02:36 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
2010-10-07 01:21 . 2004-08-04 02:41 13776 -c--a-w- c:\windows\system32\dllcache\recagent.sys
2010-10-07 01:21 . 2001-08-17 17:51 19584 -c--a-w- c:\windows\system32\dllcache\rasirda.sys
2010-10-07 01:21 . 2001-08-17 17:28 714762 -c--a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2010-10-07 01:21 . 2001-08-17 17:28 899146 -c--a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2010-10-07 01:20 . 2001-08-18 02:36 41472 -c--a-w- c:\windows\system32\dllcache\qvusd.dll
2010-10-07 01:20 . 2001-08-17 17:53 3328 -c--a-w- c:\windows\system32\dllcache\qv2kux.sys
2010-10-07 01:20 . 2001-08-17 17:52 49024 -c--a-w- c:\windows\system32\dllcache\ql1280.sys
2010-10-07 01:20 . 2001-08-17 17:52 40448 -c--a-w- c:\windows\system32\dllcache\ql1240.sys
2010-10-07 01:20 . 2001-08-17 17:52 45312 -c--a-w- c:\windows\system32\dllcache\ql12160.sys
2010-10-07 01:20 . 2001-08-17 17:52 33152 -c--a-w- c:\windows\system32\dllcache\ql10wnt.sys
2010-10-07 01:20 . 2001-08-17 17:52 40320 -c--a-w- c:\windows\system32\dllcache\ql1080.sys
2010-10-07 01:20 . 2004-08-04 03:00 6016 -c--a-w- c:\windows\system32\dllcache\qic157.sys
2010-10-07 01:20 . 2001-08-17 17:28 130942 -c--a-w- c:\windows\system32\dllcache\ptserlv.sys
2010-10-07 01:20 . 2001-08-17 17:28 112574 -c--a-w- c:\windows\system32\dllcache\ptserlp.sys
2010-10-07 01:20 . 2001-08-17 17:28 128286 -c--a-w- c:\windows\system32\dllcache\ptserli.sys
2010-10-07 01:20 . 2004-08-04 04:56 159232 -c--a-w- c:\windows\system32\dllcache\ptpusd.dll

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-10-07 01:03 . 2010-10-07 01:03 -------- d-----w- c:\program files\Alwil Software
2010-10-07 01:03 . 2010-10-07 01:03 -------- d-----w- c:\documents and settings\All Users\Application Data\Alwil Software
2010-10-05 17:33 . 2010-08-22 16:57 -------- d-----w- c:\documents and settings\Jason\Application Data\vlc
2010-10-01 01:16 . 2010-03-30 17:35 -------- d-----w- c:\program files\HP Rhapsody
2010-09-29 19:31 . 2010-04-20 18:04 -------- d-----w- c:\program files\Microsoft Silverlight
2010-09-07 15:12 . 2010-10-07 01:03 38848 ----a-w- c:\windows\avastSS.scr
2010-09-07 15:11 . 2010-10-07 01:03 167592 ----a-w- c:\windows\system32\aswBoot.exe
2010-09-07 14:47 . 2010-10-07 01:06 100176 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2010-09-07 14:47 . 2010-10-07 01:06 94544 ----a-w- c:\windows\system32\drivers\aswmon.sys
2010-09-07 14:46 . 2010-10-07 01:06 28880 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2010-09-01 22:59 . 2010-03-30 18:11 1324 ----a-w- c:\windows\system32\d3d9caps.dat
2010-08-22 16:54 . 2010-08-22 16:53 -------- d-----w- c:\documents and settings\Jason\Application Data\MozillaControl
2010-08-22 16:53 . 2010-03-30 18:36 57672 ----a-w- c:\documents and settings\Jason\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-08-22 16:52 . 2010-08-22 16:52 -------- d-----w- c:\program files\Mozilla ActiveX Control v1.7.12
2010-08-22 16:52 . 2010-08-22 16:52 -------- d-----w- c:\program files\VideoLAN
2010-08-22 15:17 . 2010-08-22 15:17 183132 ----a-w- c:\windows\KARI2 Uninstaller.exe
2010-08-18 04:27 . 2010-08-18 04:27 -------- d-----w- c:\documents and settings\All Users\Application Data\DKOptimize
.

((((((((((((((((((((((((((((( SnapShot@2010-10-04_22.07.24 )))))))))))))))))))))))))))))))))))))))))
.
- 2004-08-10 20:00 . 2010-06-24 07:07 71462 c:\windows\system32\perfc009.dat
+ 2004-08-10 20:00 . 2010-10-07 02:23 71462 c:\windows\system32\perfc009.dat
+ 2004-08-10 20:00 . 2004-08-10 20:00 92672 c:\windows\system32\drmstor.dll
+ 2010-10-07 01:07 . 2010-09-07 14:52 46672 c:\windows\system32\drivers\aswTdi.sys
+ 2010-10-07 01:07 . 2010-09-07 14:47 23376 c:\windows\system32\drivers\aswRdr.sys
+ 2010-10-07 01:07 . 2010-09-07 14:47 17744 c:\windows\system32\drivers\aswFsBlk.sys
+ 2004-08-04 00:56 . 2005-06-21 22:00 52736 c:\windows\system32\dllcache\wzcsapi.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 13824 c:\windows\system32\dllcache\wowfaxui.dll
+ 2010-10-07 01:35 . 2001-08-18 02:36 53760 c:\windows\system32\dllcache\wiamsmud.dll
+ 2010-10-07 01:35 . 2001-08-18 02:36 87040 c:\windows\system32\dllcache\wiafbdrv.dll
+ 2010-10-07 01:35 . 2004-08-04 02:29 23615 c:\windows\system32\dllcache\wch7xxnt.sys
+ 2010-10-07 01:35 . 2004-08-04 03:08 31744 c:\windows\system32\dllcache\wceusbsh.sys
+ 2010-10-07 01:35 . 2001-08-17 16:10 35871 c:\windows\system32\dllcache\wbfirdma.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 25471 c:\windows\system32\dllcache\watv10nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 22271 c:\windows\system32\dllcache\watv06nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 33599 c:\windows\system32\dllcache\watv04nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 19551 c:\windows\system32\dllcache\watv02nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 29311 c:\windows\system32\dllcache\watv01nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11935 c:\windows\system32\dllcache\wadv11nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11871 c:\windows\system32\dllcache\wadv09nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11295 c:\windows\system32\dllcache\wadv08nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11807 c:\windows\system32\dllcache\wadv07nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 11775 c:\windows\system32\dllcache\wadv05nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 12127 c:\windows\system32\dllcache\wadv02nt.sys
+ 2010-10-07 01:35 . 2004-08-04 02:29 12415 c:\windows\system32\dllcache\wadv01nt.sys
+ 2010-10-07 01:35 . 2004-08-04 03:04 13568 c:\windows\system32\dllcache\wacompen.sys
+ 2001-08-17 14:02 . 2004-08-10 20:00 58112 c:\windows\system32\dllcache\vdmindvd.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 49211 c:\windows\system32\dllcache\usrvpa.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 45116 c:\windows\system32\dllcache\usrvoica.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 49209 c:\windows\system32\dllcache\usrv80a.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 41019 c:\windows\system32\dllcache\usrsvpia.dll
+ 2001-08-17 22:37 . 2004-08-10 20:00 69700 c:\windows\system32\dllcache\usrshuta.exe
+ 2001-08-17 22:36 . 2004-08-10 20:00 49211 c:\windows\system32\dllcache\usrsdpia.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 77883 c:\windows\system32\dllcache\usrrtosa.dll
+ 2001-08-17 22:37 . 2004-08-10 20:00 61508 c:\windows\system32\dllcache\usrprbda.exe
+ 2001-08-17 22:37 . 2004-08-10 20:00 77891 c:\windows\system32\dllcache\usrmlnka.exe
+ 2001-08-17 22:36 . 2004-08-10 20:00 53305 c:\windows\system32\dllcache\usrlbva.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 86073 c:\windows\system32\dllcache\usrfaxa.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 77890 c:\windows\system32\dllcache\usrdpa.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 69699 c:\windows\system32\dllcache\usrcoina.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 61500 c:\windows\system32\dllcache\usrcntra.dll
+ 2010-10-07 01:33 . 2004-08-04 03:10 78464 c:\windows\system32\dllcache\usbvideo.sys
+ 2010-03-30 11:46 . 2004-08-04 00:56 74240 c:\windows\system32\dllcache\usbui.dll
+ 2010-10-07 01:33 . 2004-08-04 03:08 20480 c:\windows\system32\dllcache\usbuhci.sys
+ 2010-10-07 01:33 . 2004-08-04 03:08 25600 c:\windows\system32\dllcache\usbser.sys
+ 2010-10-07 01:33 . 2004-08-04 03:01 25856 c:\windows\system32\dllcache\usbprint.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 17024 c:\windows\system32\dllcache\usbohci.sys
+ 2004-08-03 23:08 . 2004-08-10 20:00 16000 c:\windows\system32\dllcache\usbintel.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 57600 c:\windows\system32\dllcache\usbhub.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 26624 c:\windows\system32\dllcache\usbehci.sys
+ 2010-10-07 01:33 . 2004-08-04 03:08 31616 c:\windows\system32\dllcache\usbccgp.sys
+ 2001-08-17 14:03 . 2004-08-10 20:00 23936 c:\windows\system32\dllcache\usbcamd2.sys
+ 2001-08-17 14:03 . 2004-08-10 20:00 23808 c:\windows\system32\dllcache\usbcamd.sys
+ 2010-10-07 01:33 . 2004-08-04 03:07 59264 c:\windows\system32\dllcache\usbaudio.sys
+ 2010-10-07 01:33 . 2004-08-04 03:04 12672 c:\windows\system32\dllcache\usb8023x.sys
+ 2010-10-07 01:33 . 2004-08-04 02:31 32384 c:\windows\system32\dllcache\usb101et.sys
+ 2004-08-03 23:03 . 2004-08-10 20:00 12416 c:\windows\system32\dllcache\tunmp.sys
+ 2001-08-17 14:06 . 2004-08-10 20:00 21376 c:\windows\system32\dllcache\tsbvcap.sys
+ 2001-08-17 14:01 . 2004-08-10 20:00 51712 c:\windows\system32\dllcache\tosdvd.sys
+ 2010-03-30 16:50 . 2004-08-04 06:01 40840 c:\windows\system32\dllcache\termdd.sys
+ 2010-10-07 01:28 . 2001-08-18 02:36 94293 c:\windows\system32\dllcache\sxports.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 10240 c:\windows\system32\dllcache\swpidflt.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 10240 c:\windows\system32\dllcache\swpdflt2.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 53760 c:\windows\system32\dllcache\sw_wheel.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 41472 c:\windows\system32\dllcache\sw_effct.dll
+ 2010-10-07 01:28 . 2004-08-04 03:10 15360 c:\windows\system32\dllcache\streamip.sys
+ 2010-03-30 11:42 . 2004-08-04 00:56 74752 c:\windows\system32\dllcache\storprop.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 53248 c:\windows\system32\dllcache\stlncoin.dll
+ 2010-10-07 01:28 . 2001-08-17 17:51 16896 c:\windows\system32\dllcache\stcusb.sys
+ 2010-10-07 01:28 . 2001-08-17 16:11 48736 c:\windows\system32\dllcache\srwlnd5.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 72192 c:\windows\system32\dllcache\sprio800.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 70656 c:\windows\system32\dllcache\sprio600.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 69632 c:\windows\system32\dllcache\spnike.dll
+ 2004-08-03 23:09 . 2004-08-10 20:00 25472 c:\windows\system32\dllcache\sonydcam.sys
+ 2010-10-07 01:26 . 2001-08-17 16:51 58368 c:\windows\system32\dllcache\smiminib.sys
+ 2010-10-07 01:26 . 2001-08-17 16:12 25034 c:\windows\system32\dllcache\smcpwr2n.sys
+ 2010-10-07 01:26 . 2001-08-17 16:10 35913 c:\windows\system32\dllcache\smcirda.sys
+ 2010-10-07 01:26 . 2001-08-17 16:12 24576 c:\windows\system32\dllcache\smc8000n.sys
+ 2010-10-07 01:26 . 2004-08-04 03:07 16128 c:\windows\system32\dllcache\smbbatt.sys
+ 2010-10-07 01:26 . 2001-08-18 02:36 45568 c:\windows\system32\dllcache\smb3w.dll
+ 2010-10-07 01:26 . 2001-08-18 02:36 33792 c:\windows\system32\dllcache\smb0w.dll
+ 2010-10-07 01:26 . 2001-08-18 02:36 28672 c:\windows\system32\dllcache\sma0w.dll
+ 2010-10-07 01:25 . 2004-08-04 02:41 13240 c:\windows\system32\dllcache\slwdmsup.sys
+ 2010-10-07 01:25 . 2004-08-04 04:56 73796 c:\windows\system32\dllcache\slserv.exe
+ 2010-10-07 01:25 . 2004-08-04 04:56 32866 c:\windows\system32\dllcache\slrundll.exe
+ 2010-10-07 01:25 . 2004-08-04 02:41 95424 c:\windows\system32\dllcache\slnthal.sys
+ 2010-10-07 01:25 . 2004-08-04 03:10 11136 c:\windows\system32\dllcache\slip.sys
+ 2010-10-07 01:25 . 2004-08-04 04:56 73832 c:\windows\system32\dllcache\slcoinst.dll
+ 2010-10-07 01:25 . 2004-08-04 02:31 63547 c:\windows\system32\dllcache\sla30nd5.sys
+ 2010-10-07 01:25 . 2001-08-17 16:12 91294 c:\windows\system32\dllcache\skfpwin.sys
+ 2010-10-07 01:25 . 2001-08-17 16:12 94698 c:\windows\system32\dllcache\sk98xwin.sys
+ 2010-10-07 01:25 . 2001-08-17 16:50 50432 c:\windows\system32\dllcache\sisv.sys
+ 2010-10-07 01:25 . 2004-08-04 02:31 32768 c:\windows\system32\dllcache\sisnic.sys
+ 2010-10-07 01:25 . 2004-08-04 03:07 41088 c:\windows\system32\dllcache\sisagp.sys
+ 2010-10-07 01:25 . 2001-08-17 16:50 68608 c:\windows\system32\dllcache\sis6306p.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 11392 c:\windows\system32\dllcache\sfloppy.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 10240 c:\windows\system32\dllcache\sffp_sd.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 11136 c:\windows\system32\dllcache\sffdisk.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 64896 c:\windows\system32\dllcache\serial.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 15488 c:\windows\system32\dllcache\serenum.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 29184 c:\windows\system32\dllcache\sdhcinst.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 67584 c:\windows\system32\dllcache\sdbus.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 96256 c:\windows\system32\dllcache\scsiport.sys
+ 2010-03-30 18:24 . 2005-05-31 23:46 43264 c:\windows\system32\dllcache\sbp2port.sys
+ 2010-10-07 01:22 . 2001-08-17 16:50 61504 c:\windows\system32\dllcache\s3sav3dm.sys
+ 2010-10-07 01:22 . 2001-08-18 02:36 62496 c:\windows\system32\dllcache\s3mtrio.dll
+ 2010-10-07 01:22 . 2001-08-17 16:50 41216 c:\windows\system32\dllcache\s3mt3d.sys
+ 2010-10-07 01:22 . 2001-08-17 17:57 65664 c:\windows\system32\dllcache\s3legacy.sys
+ 2010-10-07 01:22 . 2001-08-18 02:36 82432 c:\windows\system32\dllcache\rwia450.dll
+ 2010-10-07 01:22 . 2001-08-18 02:36 79872 c:\windows\system32\dllcache\rwia430.dll
+ 2010-10-07 01:22 . 2001-08-18 02:36 26624 c:\windows\system32\dllcache\rw450ext.dll
+ 2010-10-07 01:22 . 2001-08-18 02:36 24576 c:\windows\system32\dllcache\rw430ext.dll
+ 2010-03-30 11:47 . 2004-08-03 22:31 20992 c:\windows\system32\dllcache\rtl8139.sys
+ 2010-10-07 01:22 . 2001-08-17 16:12 19017 c:\windows\system32\dllcache\rtl8029.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 12032 c:\windows\system32\dllcache\riodrv.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 12032 c:\windows\system32\dllcache\rio8drv.sys
+ 2010-03-30 11:47 . 2004-08-03 22:59 57472 c:\windows\system32\dllcache\redbook.sys
+ 2010-10-07 01:19 . 2001-08-18 02:36 35328 c:\windows\system32\dllcache\psisload.dll
+ 2010-10-07 01:19 . 2001-08-17 17:51 16128 c:\windows\system32\dllcache\pscr.sys
+ 2004-08-03 22:59 . 2004-08-27 21:42 35456 c:\windows\system32\dllcache\processr.sys
+ 2010-10-07 01:19 . 2004-08-04 03:00 17664 c:\windows\system32\dllcache\ppa3.sys
+ 2010-10-07 01:19 . 2001-08-17 17:53 17792 c:\windows\system32\dllcache\ppa.sys
+ 2004-08-04 00:56 . 2004-08-10 20:00 15360 c:\windows\system32\dllcache\pjlmon.dll
+ 2004-08-04 00:56 . 2004-08-10 20:00 35328 c:\windows\system32\dllcache\pid.dll
+ 2010-10-07 01:19 . 2001-08-17 18:07 19840 c:\windows\system32\dllcache\philtune.sys
+ 2010-10-07 01:19 . 2001-08-17 18:04 92416 c:\windows\system32\dllcache\phildec.sys
+ 2010-10-07 01:19 . 2001-08-17 18:04 75776 c:\windows\system32\dllcache\philcam1.sys
+ 2010-10-07 01:19 . 2001-08-18 02:36 16384 c:\windows\system32\dllcache\philcam1.dll
+ 2010-10-07 01:18 . 2004-08-04 03:06 28032 c:\windows\system32\dllcache\perm3.sys
+ 2010-10-07 01:18 . 2004-08-04 03:06 27904 c:\windows\system32\dllcache\perm2.sys
+ 2010-10-07 01:18 . 2001-08-17 18:07 27296 c:\windows\system32\dllcache\perc2.sys
+ 2010-10-07 01:18 . 2001-08-18 02:36 86016 c:\windows\system32\dllcache\pctspk.exe
+ 2010-10-07 01:18 . 2001-08-17 16:11 35328 c:\windows\system32\dllcache\pcntpci5.sys
+ 2010-10-07 01:18 . 2001-08-17 16:11 29769 c:\windows\system32\dllcache\pcntn5m.sys
+ 2010-10-07 01:18 . 2001-08-17 16:11 30282 c:\windows\system32\dllcache\pcntn5hl.sys
+ 2010-10-07 01:18 . 2001-08-17 16:12 26153 c:\windows\system32\dllcache\pcmlm56.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 25088 c:\windows\system32\dllcache\pciidex.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 68224 c:\windows\system32\dllcache\pci.sys
+ 2010-10-07 01:18 . 2004-08-04 02:31 29502 c:\windows\system32\dllcache\pca200e.sys
+ 2010-10-07 01:18 . 2001-08-17 16:12 30495 c:\windows\system32\dllcache\pc100nds.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 80128 c:\windows\system32\dllcache\parport.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 42496 c:\windows\system32\dllcache\p3.sys
+ 2010-10-07 01:17 . 2001-08-18 02:36 41984 c:\windows\system32\dllcache\ovui2rc.dll
+ 2010-10-07 01:17 . 2001-08-18 02:36 44544 c:\windows\system32\dllcache\ovui2.dll
+ 2010-10-07 01:17 . 2001-08-17 18:05 25216 c:\windows\system32\dllcache\ovsound2.sys
+ 2010-10-07 01:17 . 2001-08-18 02:36 39424 c:\windows\system32\dllcache\ovcoms.exe
+ 2010-10-07 01:17 . 2001-08-18 02:36 20480 c:\windows\system32\dllcache\ovcomc.dll
+ 2010-10-07 01:17 . 2001-08-17 18:05 31872 c:\windows\system32\dllcache\ovce.sys
+ 2010-10-07 01:17 . 2001-08-17 18:05 28032 c:\windows\system32\dllcache\ovcd.sys
+ 2010-10-07 01:17 . 2001-08-17 18:05 48000 c:\windows\system32\dllcache\ovcam2.sys
+ 2010-10-07 01:17 . 2001-08-17 18:05 25088 c:\windows\system32\dllcache\ovca.sys
+ 2010-10-07 01:17 . 2001-08-17 17:28 54186 c:\windows\system32\dllcache\otcsercb.sys
+ 2010-10-07 01:17 . 2001-08-17 16:12 43689 c:\windows\system32\dllcache\otceth5.sys
+ 2010-10-07 01:17 . 2001-08-17 16:12 27209 c:\windows\system32\dllcache\otc06x5.sys
+ 2010-10-07 01:16 . 2001-08-17 16:20 54528 c:\windows\system32\dllcache\opl3sax.sys
+ 2004-08-10 20:00 . 2004-09-27 22:19 61056 c:\windows\system32\dllcache\ohci1394.sys
+ 2010-10-07 01:16 . 2001-08-17 16:49 51552 c:\windows\system32\dllcache\ntgrip.sys
+ 2010-10-07 01:16 . 2004-08-04 03:00 28672 c:\windows\system32\dllcache\nscirda.sys
+ 2010-10-07 01:16 . 2001-08-17 16:20 87040 c:\windows\system32\dllcache\nm6wdm.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 12032 c:\windows\system32\dllcache\nikedrv.sys
+ 2004-08-03 22:58 . 2004-08-10 20:00 61824 c:\windows\system32\dllcache\nic1394.sys
+ 2010-10-07 01:15 . 2001-08-17 16:12 32840 c:\windows\system32\dllcache\ngrpci.sys
+ 2010-10-07 01:15 . 2001-08-17 16:11 65278 c:\windows\system32\dllcache\netflx3.sys
+ 2010-10-07 01:15 . 2001-08-17 16:50 39264 c:\windows\system32\dllcache\neo20xx.sys
+ 2010-10-07 01:15 . 2001-08-18 02:36 60480 c:\windows\system32\dllcache\neo20xx.dll
+ 2010-10-07 01:15 . 2001-08-17 17:49 15872 c:\windows\system32\dllcache\ne2000.sys
+ 2004-08-03 23:03 . 2005-06-21 01:52 14592 c:\windows\system32\dllcache\ndisuio.sys
+ 2010-10-07 01:15 . 2004-08-04 03:10 10880 c:\windows\system32\dllcache\ndisip.sys
+ 2010-10-07 01:15 . 2004-08-04 03:10 85376 c:\windows\system32\dllcache\nabtsfec.sys
+ 2010-10-07 01:15 . 2001-08-17 18:56 91488 c:\windows\system32\dllcache\n9i3disp.dll
+ 2010-10-07 01:15 . 2001-08-17 16:50 27936 c:\windows\system32\dllcache\n9i3d.sys
+ 2010-10-07 01:14 . 2001-08-17 16:50 33088 c:\windows\system32\dllcache\n9i128v2.sys
+ 2010-10-07 01:14 . 2001-08-18 02:36 59104 c:\windows\system32\dllcache\n9i128v2.dll
+ 2010-10-07 01:14 . 2001-08-17 16:50 13664 c:\windows\system32\dllcache\n9i128.sys
+ 2010-10-07 01:14 . 2001-08-17 18:56 35392 c:\windows\system32\dllcache\n9i128.dll
+ 2010-10-07 01:14 . 2001-08-17 16:11 52255 c:\windows\system32\dllcache\n1000nt5.sys
+ 2010-10-07 01:14 . 2001-08-17 17:50 75520 c:\windows\system32\dllcache\mxport.sys
+ 2010-10-07 01:14 . 2001-08-17 17:49 19968 c:\windows\system32\dllcache\mxnic.sys
+ 2010-10-07 01:14 . 2001-08-18 02:36 19968 c:\windows\system32\dllcache\mxicfg.dll
+ 2010-10-07 01:14 . 2001-08-17 17:50 21888 c:\windows\system32\dllcache\mxcard.sys
+ 2010-10-07 01:14 . 2004-08-04 03:04 12672 c:\windows\system32\dllcache\mutohpen.sys
+ 2004-08-04 00:56 . 2009-11-27 17:04 17920 c:\windows\system32\dllcache\msyuv.dll
- 2009-11-27 17:04 . 2009-11-27 17:04 17920 c:\windows\system32\dllcache\msyuv.dll
+ 2010-10-07 01:13 . 2004-08-04 03:10 49024 c:\windows\system32\dllcache\mstape.sys
+ 2004-08-03 23:07 . 2004-08-10 20:00 15488 c:\windows\system32\dllcache\mssmbios.sys
+ 2010-10-07 01:13 . 2001-08-17 17:48 12416 c:\windows\system32\dllcache\msriffwv.sys
+ 2010-10-07 01:13 . 2004-08-04 03:00 22016 c:\windows\system32\dllcache\msircomm.sys
+ 2010-10-07 01:13 . 2001-08-17 18:02 35200 c:\windows\system32\dllcache\msgame.sys
+ 2010-10-07 01:13 . 2004-08-04 03:10 51328 c:\windows\system32\dllcache\msdv.sys
+ 2010-10-07 01:12 . 2001-08-17 17:52 17280 c:\windows\system32\dllcache\mraid35x.sys
+ 2010-10-07 01:12 . 2004-08-04 03:10 15360 c:\windows\system32\dllcache\mpe.sys
+ 2010-10-07 01:12 . 2001-08-17 17:48 12160 c:\windows\system32\dllcache\mouhid.sys
+ 2004-08-03 22:58 . 2004-08-10 20:00 23040 c:\windows\system32\dllcache\mouclass.sys
+ 2010-10-07 01:12 . 2001-08-17 17:57 16128 c:\windows\system32\dllcache\modemcsa.sys
+ 2004-08-03 23:08 . 2004-08-10 20:00 30080 c:\windows\system32\dllcache\modem.sys
+ 2004-08-03 23:07 . 2004-08-10 20:00 63744 c:\windows\system32\dllcache\mf.sys
+ 2010-10-07 01:12 . 2004-08-04 03:00 26112 c:\windows\system32\dllcache\memstpci.sys
+ 2010-10-07 01:11 . 2001-08-18 02:36 47616 c:\windows\system32\dllcache\memgrp.dll
+ 2010-10-07 01:11 . 2001-08-17 16:19 48768 c:\windows\system32\dllcache\maestro.sys
+ 2010-10-07 01:11 . 2001-08-18 02:36 58880 c:\windows\system32\dllcache\m3092dc.dll
+ 2010-10-07 01:11 . 2001-08-18 02:36 58368 c:\windows\system32\dllcache\m3091dc.dll
+ 2010-10-07 01:11 . 2001-08-17 16:49 22848 c:\windows\system32\dllcache\lwusbhid.sys
+ 2010-10-07 01:11 . 2004-08-04 02:39 20864 c:\windows\system32\dllcache\lwadihid.sys
+ 2004-08-10 20:00 . 2008-06-11 07:47 96768 c:\windows\system32\dllcache\logagent.exe
+ 2010-10-07 01:10 . 2001-08-17 16:12 70730 c:\windows\system32\dllcache\lne100tx.sys
+ 2010-10-07 01:10 . 2001-08-17 16:12 20573 c:\windows\system32\dllcache\lne100.sys
+ 2010-10-07 01:10 . 2001-08-17 16:11 25065 c:\windows\system32\dllcache\lmndis3.sys
+ 2010-10-07 01:10 . 2001-08-17 17:51 15744 c:\windows\system32\dllcache\lit220p.sys
+ 2010-10-07 01:10 . 2004-08-04 02:59 34688 c:\windows\system32\dllcache\lbrtfdc.sys
+ 2010-10-07 01:10 . 2001-08-17 16:12 26442 c:\windows\system32\dllcache\lanepic5.sys
+ 2010-10-07 01:10 . 2001-08-17 16:12 19016 c:\windows\system32\dllcache\ktc111.sys
+ 2010-10-07 01:10 . 2001-08-18 02:36 37376 c:\windows\system32\dllcache\kousd.dll
+ 2010-10-07 01:10 . 2001-08-18 02:36 45568 c:\windows\system32\dllcache\kdsui.dll
+ 2010-10-07 01:10 . 2004-08-04 02:58 14848 c:\windows\system32\dllcache\kbdhid.sys
- 2009-11-27 16:37 . 2009-11-27 16:37 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-04 00:56 . 2009-11-27 16:37 48128 c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 35840 c:\windows\system32\dllcache\isapnp.sys
+ 2010-10-07 01:09 . 2001-08-17 17:49 26624 c:\windows\system32\dllcache\irstusb.sys
+ 2010-10-07 01:09 . 2001-08-17 17:51 18688 c:\windows\system32\dllcache\irsir.sys
+ 2010-03-30 17:44 . 2004-09-30 17:49 27136 c:\windows\system32\dllcache\irmon.dll
+ 2010-10-07 01:09 . 2001-08-17 17:49 23552 c:\windows\system32\dllcache\irmk7.sys
+ 2010-10-07 01:09 . 2004-08-04 03:00 87424 c:\windows\system32\dllcache\irda.sys
+ 2010-03-30 17:45 . 2005-06-28 23:43 46592 c:\windows\system32\dllcache\irbus.sys
+ 2010-10-07 01:09 . 2001-08-17 16:12 45632 c:\windows\system32\dllcache\ip5515.sys
+ 2010-10-07 01:09 . 2001-08-18 02:36 90200 c:\windows\system32\dllcache\io8ports.dll
+ 2010-10-07 01:09 . 2001-08-17 17:50 38784 c:\windows\system32\dllcache\io8.sys
+ 2004-08-10 20:00 . 2004-08-27 21:42 36096 c:\windows\system32

JasonV · Oct 6, 2010

\dllcache\intelppm.sys
+ 2010-10-07 01:09 . 2001-08-17 17:47 13056 c:\windows\system32\dllcache\inport.sys
+ 2010-10-07 01:09 . 2001-08-17 17:52 16000 c:\windows\system32\dllcache\ini910u.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 41856 c:\windows\system32\dllcache\imapi.sys
+ 2010-10-07 01:08 . 2004-08-10 20:00 81920 c:\windows\system32\dllcache\ieencode.dll
+ 2010-10-07 01:08 . 2001-08-18 02:36 20480 c:\windows\system32\dllcache\icam5ext.dll
+ 2010-10-07 01:08 . 2001-08-18 02:36 45056 c:\windows\system32\dllcache\icam5com.dll
+ 2010-10-07 01:08 . 2001-08-18 02:36 61952 c:\windows\system32\dllcache\icam4ext.dll
+ 2010-10-07 01:08 . 2001-08-18 02:36 91136 c:\windows\system32\dllcache\icam4com.dll
+ 2010-10-07 01:08 . 2001-08-18 02:36 26624 c:\windows\system32\dllcache\icam3ext.dll
+ 2010-10-07 01:08 . 2001-08-17 18:06 38528 c:\windows\system32\dllcache\ibmvcap.sys
+ 2010-10-07 01:07 . 2001-08-17 16:11 28700 c:\windows\system32\dllcache\ibmexmp.sys
+ 2010-10-07 01:07 . 2001-08-17 16:49 58592 c:\windows\system32\dllcache\i740nt5.sys
+ 2010-10-07 01:07 . 2004-08-04 03:00 18560 c:\windows\system32\dllcache\i2omp.sys
+ 2010-10-07 01:06 . 2004-08-04 04:56 32285 c:\windows\system32\dllcache\hsfcisp2.dll
+ 2010-10-07 01:06 . 2001-08-17 17:28 50751 c:\windows\system32\dllcache\hsf_tone.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 73279 c:\windows\system32\dllcache\hsf_spkp.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 44863 c:\windows\system32\dllcache\hsf_soar.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 57471 c:\windows\system32\dllcache\hsf_samp.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 67167 c:\windows\system32\dllcache\hsf_bsc2.sys
+ 2010-10-07 01:06 . 2001-08-18 02:36 19456 c:\windows\system32\dllcache\hr1w.dll
+ 2010-10-07 01:06 . 2001-08-18 02:36 13312 c:\windows\system32\dllcache\hpsjmcro.dll
+ 2010-10-07 01:05 . 2001-08-17 18:07 25952 c:\windows\system32\dllcache\hpn.sys
+ 2010-10-07 01:05 . 2001-08-18 02:36 32768 c:\windows\system32\dllcache\hpgtmcro.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 68608 c:\windows\system32\dllcache\hpgt53tk.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 31232 c:\windows\system32\dllcache\hpgt42tk.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 93696 c:\windows\system32\dllcache\hpgt42.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 48128 c:\windows\system32\dllcache\hpgt33tk.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 89088 c:\windows\system32\dllcache\hpgt33.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 83968 c:\windows\system32\dllcache\hpgt21.dll
+ 2010-10-07 01:05 . 2004-08-04 04:56 21504 c:\windows\system32\dllcache\hidserv.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 24960 c:\windows\system32\dllcache\hidparse.sys
+ 2010-03-30 17:45 . 2005-06-28 23:43 19200 c:\windows\system32\dllcache\hidir.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 36224 c:\windows\system32\dllcache\hidclass.sys
+ 2010-10-07 01:05 . 2004-08-04 03:10 25600 c:\windows\system32\dllcache\hidbth.sys
+ 2010-10-07 01:04 . 2001-08-17 17:58 19200 c:\windows\system32\dllcache\hidbatt.sys
+ 2004-08-04 00:56 . 2004-08-10 20:00 20992 c:\windows\system32\dllcache\hid.dll
+ 2010-10-07 01:04 . 2004-08-04 02:59 28288 c:\windows\system32\dllcache\grserial.sys
+ 2010-10-07 01:04 . 2001-08-17 17:51 82304 c:\windows\system32\dllcache\grclass.sys
+ 2010-10-07 01:04 . 2001-08-17 17:51 17408 c:\windows\system32\dllcache\gpr400.sys
+ 2010-10-07 01:04 . 2004-08-04 03:08 59136 c:\windows\system32\dllcache\gckernel.sys
+ 2010-10-07 01:04 . 2004-08-04 03:08 10624 c:\windows\system32\dllcache\gameenum.sys
+ 2010-10-07 01:04 . 2004-08-04 03:07 46464 c:\windows\system32\dllcache\gagp30kx.sys
+ 2009-06-24 17:55 . 2009-06-24 17:55 61440 c:\windows\system32\dllcache\gacutil.exe
+ 2010-10-07 01:04 . 2001-08-18 02:36 92160 c:\windows\system32\dllcache\fuusd.dll
+ 2001-08-17 13:57 . 2004-08-10 20:00 12160 c:\windows\system32\dllcache\fsvga.sys
+ 2010-03-30 17:01 . 2003-03-24 20:52 20541 c:\windows\system32\dllcache\fpadmdll.dll
- 2010-03-30 17:01 . 2003-03-24 21:52 20541 c:\windows\system32\dllcache\fpadmdll.dll
- 2010-03-30 17:01 . 2003-03-24 21:52 24632 c:\windows\system32\dllcache\fpadmcgi.exe
+ 2010-03-30 17:01 . 2003-03-24 20:52 24632 c:\windows\system32\dllcache\fpadmcgi.exe
+ 2010-10-07 01:03 . 2004-08-04 02:31 34173 c:\windows\system32\dllcache\forehe.sys
+ 2010-10-07 01:03 . 2001-08-18 02:36 71680 c:\windows\system32\dllcache\fnfilter.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 20480 c:\windows\system32\dllcache\flpydisk.sys
+ 2010-10-07 01:03 . 2001-08-17 16:13 27165 c:\windows\system32\dllcache\fetnd5.sys
+ 2010-10-07 01:03 . 2001-08-17 16:10 22090 c:\windows\system32\dllcache\fem556n5.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 27392 c:\windows\system32\dllcache\fdc.sys
+ 2010-10-07 01:03 . 2001-08-17 16:12 24618 c:\windows\system32\dllcache\fa410nd5.sys
+ 2010-10-07 01:03 . 2001-08-17 16:12 16074 c:\windows\system32\dllcache\fa312nd5.sys
+ 2010-10-07 01:03 . 2001-08-17 16:11 11850 c:\windows\system32\dllcache\f3ab18xj.sys
+ 2010-10-07 01:03 . 2001-08-17 16:11 12362 c:\windows\system32\dllcache\f3ab18xi.sys
- 2010-03-30 17:02 . 2001-08-18 03:36 12288 c:\windows\system32\dllcache\EXCH_smtpctrs.dll
+ 2010-03-30 17:02 . 2001-08-18 02:36 12288 c:\windows\system32\dllcache\EXCH_smtpctrs.dll
- 2010-03-30 17:02 . 2001-08-18 03:36 26112 c:\windows\system32\dllcache\EXCH_seos.dll
+ 2010-03-30 17:02 . 2001-08-18 02:36 26112 c:\windows\system32\dllcache\EXCH_seos.dll
+ 2010-03-30 17:02 . 2001-08-18 02:36 57856 c:\windows\system32\dllcache\EXCH_scripto.dll
- 2010-03-30 17:02 . 2001-08-18 03:36 57856 c:\windows\system32\dllcache\EXCH_scripto.dll
+ 2010-03-30 17:02 . 2001-08-18 02:36 23040 c:\windows\system32\dllcache\EXCH_regtrace.exe
- 2010-03-30 17:02 . 2001-08-18 03:36 23040 c:\windows\system32\dllcache\EXCH_regtrace.exe
- 2010-03-30 17:02 . 2001-08-18 03:36 38912 c:\windows\system32\dllcache\EXCH_ntfsdrv.dll
+ 2010-03-30 17:02 . 2001-08-18 02:36 38912 c:\windows\system32\dllcache\EXCH_ntfsdrv.dll
+ 2010-03-30 17:01 . 2001-08-18 02:36 65536 c:\windows\system32\dllcache\EXCH_mailmsg.dll
- 2010-03-30 17:01 . 2001-08-18 03:36 65536 c:\windows\system32\dllcache\EXCH_mailmsg.dll
+ 2010-03-30 17:01 . 2001-08-18 02:36 43520 c:\windows\system32\dllcache\EXCH_fcachdll.dll
- 2010-03-30 17:01 . 2001-08-18 03:36 43520 c:\windows\system32\dllcache\EXCH_fcachdll.dll
- 2010-03-30 17:01 . 2001-08-18 03:36 45056 c:\windows\system32\dllcache\EXCH_aqadmin.dll
+ 2010-03-30 17:01 . 2001-08-18 02:36 45056 c:\windows\system32\dllcache\EXCH_aqadmin.dll
+ 2010-10-07 01:03 . 2001-08-17 16:12 16998 c:\windows\system32\dllcache\ex10.sys
+ 2010-10-07 01:03 . 2001-08-18 02:36 45568 c:\windows\system32\dllcache\esunib.dll
+ 2010-10-07 01:03 . 2001-08-18 02:36 45568 c:\windows\system32\dllcache\esuni.dll
+ 2010-10-07 01:02 . 2001-08-18 02:36 34816 c:\windows\system32\dllcache\esuimg.dll
+ 2010-10-07 01:02 . 2001-08-18 02:36 43008 c:\windows\system32\dllcache\esucm.dll
+ 2010-10-07 01:02 . 2001-08-17 16:19 63360 c:\windows\system32\dllcache\ess.sys
+ 2010-10-07 01:02 . 2001-08-17 16:19 72192 c:\windows\system32\dllcache\es1969.sys
+ 2010-10-07 01:02 . 2001-08-17 16:19 40704 c:\windows\system32\dllcache\es1371mp.sys
+ 2010-10-07 01:02 . 2001-08-17 16:19 37120 c:\windows\system32\dllcache\es1370mp.sys
+ 2010-10-07 01:02 . 2001-08-18 02:36 61952 c:\windows\system32\dllcache\eqnloop.exe
+ 2010-10-07 01:02 . 2001-08-18 02:36 51200 c:\windows\system32\dllcache\eqnlogr.exe
+ 2010-10-07 01:02 . 2001-08-18 02:36 53248 c:\windows\system32\dllcache\eqndiag.exe
+ 2010-10-07 01:02 . 2001-08-17 16:12 18503 c:\windows\system32\dllcache\epro4.sys
+ 2010-10-07 01:02 . 2001-08-17 16:10 19996 c:\windows\system32\dllcache\em556n4.sys
+ 2010-10-07 01:02 . 2001-08-17 16:10 25159 c:\windows\system32\dllcache\elnk3.sys
+ 2010-10-07 01:02 . 2001-08-17 16:11 70174 c:\windows\system32\dllcache\el98xn5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:11 66591 c:\windows\system32\dllcache\el90xbc5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:11 77386 c:\windows\system32\dllcache\el656nd5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:11 69194 c:\windows\system32\dllcache\el656cd5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:10 26141 c:\windows\system32\dllcache\el589nd5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:10 69692 c:\windows\system32\dllcache\el575nd5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:10 24653 c:\windows\system32\dllcache\el574nd4.sys
+ 2010-10-07 01:01 . 2001-08-17 16:10 55999 c:\windows\system32\dllcache\el556nd5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:10 44103 c:\windows\system32\dllcache\el515.sys
- 2010-03-30 17:03 . 2004-08-10 09:13 69632 c:\windows\system32\dllcache\ehresko.dll
+ 2010-03-30 17:03 . 2004-08-10 08:13 69632 c:\windows\system32\dllcache\ehresko.dll
+ 2010-03-30 17:03 . 2004-08-10 08:13 73728 c:\windows\system32\dllcache\ehresja.dll
- 2010-03-30 17:03 . 2004-08-10 09:13 73728 c:\windows\system32\dllcache\ehresja.dll
+ 2010-03-30 17:03 . 2004-08-10 08:13 69632 c:\windows\system32\dllcache\ehresfr.dll
- 2010-03-30 17:03 . 2004-08-10 09:13 69632 c:\windows\system32\dllcache\ehresfr.dll
+ 2010-03-30 17:03 . 2004-08-10 08:13 69632 c:\windows\system32\dllcache\ehresde.dll
- 2010-03-30 17:03 . 2004-08-10 09:13 69632 c:\windows\system32\dllcache\ehresde.dll
+ 2010-03-30 17:03 . 2004-08-10 08:13 61440 c:\windows\system32\dllcache\ehreschs.dll
- 2010-03-30 17:03 . 2004-08-10 09:13 61440 c:\windows\system32\dllcache\ehreschs.dll
+ 2010-10-07 01:01 . 2001-08-17 16:12 19594 c:\windows\system32\dllcache\e100isa4.sys
+ 2010-10-07 01:01 . 2001-08-17 16:12 50719 c:\windows\system32\dllcache\e1000nt5.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 71040 c:\windows\system32\dllcache\dxg.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 55296 c:\windows\system32\dllcache\dvdplay.exe
+ 2004-08-10 20:00 . 2004-08-10 20:00 92672 c:\windows\system32\dllcache\drmstor.dll
+ 2010-10-07 01:01 . 2001-08-17 18:07 20192 c:\windows\system32\dllcache\dpti2o.sys
+ 2010-10-07 01:01 . 2001-08-17 16:12 28062 c:\windows\system32\dllcache\dp83820.sys
+ 2010-10-07 01:01 . 2001-08-17 17:47 23808 c:\windows\system32\dllcache\dot4usb.sys
+ 2010-10-07 01:01 . 2001-08-17 17:47 12928 c:\windows\system32\dllcache\dot4prt.sys
+ 2004-08-04 00:56 . 2004-08-10 20:00 52224 c:\windows\system32\dllcache\dmutil.dll
+ 2010-10-07 01:01 . 2001-08-17 16:11 29696 c:\windows\system32\dllcache\dm9pci5.sys
+ 2010-10-07 01:01 . 2001-08-17 16:11 26698 c:\windows\system32\dllcache\dlh5xnd5.sys
+ 2010-10-07 01:01 . 2001-08-18 02:36 29768 c:\windows\system32\dllcache\divasu.dll
+ 2010-10-07 01:01 . 2001-08-18 02:36 37962 c:\windows\system32\dllcache\divaprop.dll
+ 2010-10-07 01:01 . 2001-08-18 02:36 38985 c:\windows\system32\dllcache\disrvsu.dll
+ 2010-10-07 01:01 . 2001-08-18 02:36 31305 c:\windows\system32\dllcache\disrvpp.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 36352 c:\windows\system32\dllcache\disk.sys
+ 2010-10-07 01:00 . 2001-08-17 16:13 91305 c:\windows\system32\dllcache\dimaint.sys
+ 2010-10-07 01:00 . 2001-08-17 16:17 42432 c:\windows\system32\dllcache\digirlpt.sys
+ 2010-10-07 01:00 . 2001-08-17 16:14 21606 c:\windows\system32\dllcache\digiisdn.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 41046 c:\windows\system32\dllcache\digiisdn.dll
+ 2010-10-07 01:00 . 2001-08-17 16:17 90525 c:\windows\system32\dllcache\digifep5.sys
+ 2010-10-07 01:00 . 2001-08-17 16:13 37735 c:\windows\system32\dllcache\digiasyn.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 65622 c:\windows\system32\dllcache\digiasyn.dll
+ 2010-10-07 00:59 . 2001-08-18 02:36 32256 c:\windows\system32\dllcache\diapi2NT.dll
+ 2010-10-07 01:00 . 2001-08-17 16:17 29531 c:\windows\system32\dllcache\dgapci.sys
+ 2010-10-07 01:00 . 2001-08-17 16:11 24649 c:\windows\system32\dllcache\dfe650d.sys
+ 2010-10-07 01:00 . 2001-08-17 16:11 24648 c:\windows\system32\dllcache\dfe650.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 24064 c:\windows\system32\dllcache\devldr32.exe
+ 2010-10-07 01:00 . 2001-08-17 16:11 20928 c:\windows\system32\dllcache\defpa.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 86016 c:\windows\system32\dllcache\dc240usd.dll
+ 2010-10-07 01:00 . 2001-08-17 16:12 63208 c:\windows\system32\dllcache\dc21x4.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 80896 c:\windows\system32\dllcache\dc210usd.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 25600 c:\windows\system32\dllcache\dc210_32.dll
+ 2010-10-07 01:00 . 2001-08-17 17:52 14720 c:\windows\system32\dllcache\dac960nt.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 27648 c:\windows\system32\dllcache\cyzports.dll
+ 2010-10-07 01:00 . 2001-08-17 17:50 49792 c:\windows\system32\dllcache\cyzport.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 27136 c:\windows\system32\dllcache\cyzcoins.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 27648 c:\windows\system32\dllcache\cyyports.dll
+ 2010-10-07 01:00 . 2001-08-17 17:50 50176 c:\windows\system32\dllcache\cyyport.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 28672 c:\windows\system32\dllcache\cyycoins.dll
+ 2010-10-07 01:00 . 2001-08-17 17:50 14848 c:\windows\system32\dllcache\cyclom-y.sys
+ 2010-10-07 01:00 . 2001-08-17 17:50 17152 c:\windows\system32\dllcache\cyclad-z.sys
+ 2010-10-07 01:00 . 2004-08-04 02:32 48640 c:\windows\system32\dllcache\cwrwdm.sys
+ 2010-10-07 01:00 . 2001-08-17 16:19 93952 c:\windows\system32\dllcache\cwcwdm.sys
+ 2010-10-07 01:00 . 2001-08-17 16:19 72832 c:\windows\system32\dllcache\cwbwdm.sys
+ 2010-10-07 00:59 . 2001-08-17 16:19 96256 c:\windows\system32\dllcache\ctlsb16.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 36480 c:\windows\system32\dllcache\crusoe.sys
+ 2010-10-07 00:59 . 2001-08-17 16:19 42112 c:\windows\system32\dllcache\crtaud.sys
+ 2010-10-07 00:59 . 2001-08-17 16:11 60970 c:\windows\system32\dllcache\cpqtrnd5.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 21533 c:\windows\system32\dllcache\cpqndis5.sys
+ 2001-08-17 13:24 . 2004-08-10 20:00 11776 c:\windows\system32\dllcache\cpqdap01.sys
+ 2010-10-07 00:59 . 2001-08-17 17:52 14976 c:\windows\system32\dllcache\cpqarray.sys
+ 2010-10-07 00:59 . 2001-08-17 16:11 39936 c:\windows\system32\dllcache\cnxt1803.sys
+ 2010-10-07 00:59 . 2001-08-18 02:36 44032 c:\windows\system32\dllcache\cnusd.dll
+ 2004-08-04 00:56 . 2004-08-10 20:00 47104 c:\windows\system32\dllcache\cnbjmon.dll
+ 2010-10-07 00:59 . 2001-08-17 17:51 20736 c:\windows\system32\dllcache\cmbp0wdm.sys
+ 2010-03-30 11:46 . 2004-08-03 23:07 14080 c:\windows\system32\dllcache\cmbatt.sys
+ 2010-10-07 00:59 . 2001-08-17 17:57 45696 c:\windows\system32\dllcache\cirrus.sys
+ 2010-10-07 00:59 . 2001-08-17 18:56 91264 c:\windows\system32\dllcache\cirrus.dll
+ 2010-10-07 00:59 . 2004-08-04 04:56 15423 c:\windows\system32\dllcache\ch7xxnt5.dll
+ 2010-10-07 00:59 . 2001-08-17 16:13 49182 c:\windows\system32\dllcache\cem56n5.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 22044 c:\windows\system32\dllcache\cem33n5.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 22044 c:\windows\system32\dllcache\cem28n5.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 27164 c:\windows\system32\dllcache\ce3n5.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 21530 c:\windows\system32\dllcache\ce2n5.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 49536 c:\windows\system32\dllcache\cdrom.sys
+ 2001-08-17 13:52 . 2004-08-10 20:00 18688 c:\windows\system32\dllcache\cdaudio.sys
+ 2010-10-07 00:59 . 2004-08-04 03:10 17024 c:\windows\system32\dllcache\ccdecode.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 13952 c:\windows\system32\dllcache\cbidf2k.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 46108 c:\windows\system32\dllcache\cben5.sys
+ 2010-10-07 00:59 . 2001-08-17 16:12 39680 c:\windows\system32\dllcache\cb325.sys
+ 2010-10-07 00:59 . 2001-08-17 16:12 37916 c:\windows\system32\dllcache\cb102.sys
+ 2010-10-07 00:59 . 2001-08-18 02:36 74240 c:\windows\system32\dllcache\camexo20.dll
+ 2010-10-07 00:58 . 2001-08-17 17:51 13824 c:\windows\system32\dllcache\bulltlp3.sys
+ 2010-10-07 00:58 . 2004-08-04 03:10 18944 c:\windows\system32\dllcache\bthusb.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 30208 c:\windows\system32\dllcache\bthserv.dll
+ 2010-10-07 00:58 . 2004-08-04 03:10 35456 c:\windows\system32\dllcache\bthprint.sys
+ 2010-10-07 00:58 . 2004-08-04 03:10 38016 c:\windows\system32\dllcache\bthmodem.sys
+ 2010-10-07 00:58 . 2004-08-04 03:10 17024 c:\windows\system32\dllcache\bthenum.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 20992 c:\windows\system32\dllcache\bthci.dll
+ 2010-10-07 00:58 . 2001-08-17 16:11 31529 c:\windows\system32\dllcache\brzwlan.sys
+ 2010-10-07 00:58 . 2001-08-17 17:12 10368 c:\windows\system32\dllcache\brusbscn.sys
+ 2010-10-07 00:58 . 2001-08-17 17:12 11008 c:\windows\system32\dllcache\brusbmdm.sys
+ 2010-10-07 00:58 . 2001-08-17 17:12 60416 c:\windows\system32\dllcache\brserwdm.sys
+ 2010-10-07 00:58 . 2001-08-17 17:12 39552 c:\windows\system32\dllcache\brparwdm.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 41472 c:\windows\system32\dllcache\brmfusb.dll
+ 2010-10-07 00:58 . 2001-08-18 02:36 32256 c:\windows\system32\dllcache\brmfrsmg.exe
+ 2010-10-07 00:58 . 2001-08-18 02:36 29696 c:\windows\system32\dllcache\brmflpt.dll
+ 2010-10-07 00:58 . 2001-08-18 02:36 81408 c:\windows\system32\dllcache\brmfcwia.dll
+ 2010-10-07 00:58 . 2001-08-18 02:36 15360 c:\windows\system32\dllcache\brmfbidi.dll
+ 2010-10-07 00:58 . 2001-08-17 17:12 12160 c:\windows\system32\dllcache\brfiltlo.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 12800 c:\windows\system32\dllcache\brevif.dll
+ 2010-10-07 00:58 . 2001-08-18 02:36 19456 c:\windows\system32\dllcache\brbidiif.dll
+ 2010-10-07 00:58 . 2004-08-04 03:10 11776 c:\windows\system32\dllcache\bdasup.sys
+ 2010-10-07 00:58 . 2001-08-17 16:11 26568 c:\windows\system32\dllcache\bcm4e5.sys
+ 2010-10-07 00:58 . 2001-08-17 16:11 54271 c:\windows\system32\dllcache\bcm42xx5.sys
+ 2010-10-07 00:58 . 2001-08-17 16:11 66557 c:\windows\system32\dllcache\bcm42u.sys
+ 2010-03-30 11:46 . 2001-08-17 13:57 14080 c:\windows\system32\dllcache\battc.sys
+ 2010-10-07 00:58 . 2001-08-17 16:48 36128 c:\windows\system32\dllcache\banshee.sys
+ 2010-10-07 00:58 . 2001-08-17 16:11 96640 c:\windows\system32\dllcache\b57xp32.sys
+ 2010-10-07 00:58 . 2001-08-17 16:13 89952 c:\windows\system32\dllcache\b1cbase.sys
+ 2010-10-07 00:58 . 2001-08-17 16:19 36992 c:\windows\system32\dllcache\aztw2320.sys
+ 2010-10-07 00:58 . 2001-08-17 16:13 37568 c:\windows\system32\dllcache\avmwan.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 87552 c:\windows\system32\dllcache\avmcoxp.dll
+ 2010-10-07 00:58 . 2004-08-04 03:10 13696 c:\windows\system32\dllcache\avcstrm.sys
+ 2010-10-07 00:58 . 2001-08-17 18:01 36096 c:\windows\system32\dllcache\avcaudio.sys
+ 2010-10-07 00:58 . 2004-08-04 03:10 38912 c:\windows\system32\dllcache\avc.sys
+ 2010-10-07 00:58 . 2004-08-04 04:56 17279 c:\windows\system32\dllcache\atv10nt5.dll
+ 2010-10-07 00:58 . 2004-08-04 04:56 14143 c:\windows\system32\dllcache\atv06nt5.dll
+ 2010-10-07 00:58 . 2004-08-04 04:56 25471 c:\windows\system32\dllcache\atv04nt5.dll
+ 2010-10-07 00:58 . 2004-08-04 04:56 11359 c:\windows\system32\dllcache\atv02nt5.dll
+ 2010-10-07 00:58 . 2004-08-04 04:56 21183 c:\windows\system32\dllcache\atv01nt5.dll
+ 2010-10-07 00:58 . 2001-08-17 16:49 23552 c:\windows\system32\dllcache\atixbar.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 26624 c:\windows\system32\dllcache\ativxbar.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 19456 c:\windows\system32\dllcache\ativttxx.sys
+ 2010-10-07 00:58 . 2004-08-04 04:56 32768 c:\windows\system32\dllcache\ativtmxx.dll
+ 2010-10-07 00:58 . 2001-08-17 16:49 17152 c:\windows\system32\dllcache\atitvsnd.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 17152 c:\windows\system32\dllcache\atitunep.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 26880 c:\windows\system32\dllcache\atirtsnd.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 49920 c:\windows\system32\dllcache\atirtcap.sys
+ 2010-10-07 00:58 . 2001-08-17 16:48 70528 c:\windows\system32\dllcache\atiragem.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 10240 c:\windows\system32\dllcache\atipcxxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 63488 c:\windows\system32\dllcache\atinxsxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 31744 c:\windows\system32\dllcache\atinxbxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 73216 c:\windows\system32\dllcache\atintuxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 13824 c:\windows\system32\dllcache\atinttxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 28672 c:\windows\system32\dllcache\atinsnxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 52224 c:\windows\system32\dllcache\atinraxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 14336 c:\windows\system32\dllcache\atinpdxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 13824 c:\windows\system32\dllcache\atinmdxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 57856 c:\windows\system32\dllcache\atinbtxx.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 75136 c:\windows\system32\dllcache\atimpae.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 37376 c:\windows\system32\dllcache\atievxx.exe
+ 2010-10-07 00:58 . 2001-08-17 16:49 46464 c:\windows\system32\dllcache\atibt829.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 34735 c:\windows\system32\dllcache\ati1xsxx.sys
+ 2010-10-07 00:58 . 2004-08-04 02:29 29455 c:\windows\system32\dllcache\ati1xbxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 36463 c:\windows\system32\dllcache\ati1tuxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 21343 c:\windows\system32\dllcache\ati1ttxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 26367 c:\windows\system32\dllcache\ati1snxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 63663 c:\windows\system32\dllcache\ati1rvxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 30671 c:\windows\system32\dllcache\ati1raxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 12047 c:\windows\system32\dllcache\ati1pdxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 11615 c:\windows\system32\dllcache\ati1mdxx.sys
+ 2010-10-07 00:57 . 2004-08-04 02:29 56623 c:\windows\system32\dllcache\ati1btxx.sys
+ 2010-10-07 00:57 . 2001-08-17 17:57 77568 c:\windows\system32\dllcache\ati.sys
+ 2010-10-07 00:57 . 2001-08-17 18:55 96128 c:\windows\system32\dllcache\ati.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 95360 c:\windows\system32\dllcache\atapi.sys
+ 2010-10-07 00:57 . 2001-08-17 16:12 97354 c:\windows\system32\dllcache\aspndis3.sys
+ 2010-10-07 00:57 . 2001-08-17 17:51 14848 c:\windows\system32\dllcache\asc3550.sys
+ 2010-10-07 00:57 . 2001-08-17 17:52 22400 c:\windows\system32\dllcache\asc3350p.sys
+ 2010-10-07 00:57 . 2001-08-17 17:52 26496 c:\windows\system32\dllcache\asc.sys
+ 2004-08-03 22:58 . 2004-08-10 20:00 60800 c:\windows\system32\dllcache\arp1394.sys
+ 2010-10-07 00:57 . 2004-08-04 02:31 36224 c:\windows\system32\dllcache\an983.sys
+ 2010-10-07 00:57 . 2001-08-17 17:52 12032 c:\windows\system32\dllcache\amsint.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 37376 c:\windows\system32\dllcache\amdk7.sys
+ 2004-08-03 22:59 . 2004-08-10 20:00 36992 c:\windows\system32\dllcache\amdk6.sys
+ 2010-10-07 00:57 . 2004-08-04 03:07 43008 c:\windows\system32\dllcache\amdagp.sys
+ 2010-10-07 00:57 . 2001-08-17 16:11 16969 c:\windows\system32\dllcache\amb8002.sys
+ 2010-10-07 00:57 . 2004-08-04 03:07 42752 c:\windows\system32\dllcache\alim1541.sys
+ 2010-10-07 00:57 . 2001-08-17 17:49 26624 c:\windows\system32\dllcache\alifir.sys
+ 2010-10-07 00:57 . 2001-08-17 16:11 27678 c:\windows\system32\dllcache\ali5261.sys
+ 2010-10-07 00:57 . 2001-08-17 18:07 56960 c:\windows\system32\dllcache\aic78xx.sys
+ 2010-10-07 00:57 . 2001-08-17 18:07 55168 c:\windows\system32\dllcache\aic78u2.sys
+ 2010-10-07 00:57 . 2001-08-17 17:52 12800 c:\windows\system32\dllcache\aha154x.sys
+ 2010-10-07 00:57 . 2004-08-04 03:07 44928 c:\windows\system32\dllcache\agpcpq.sys
+ 2010-10-07 00:57 . 2004-08-04 03:07 42368 c:\windows\system32\dllcache\agp440.sys
+ 2010-10-07 00:57 . 2001-08-17 16:11 46112 c:\windows\system32\dllcache\adptsf50.sys
+ 2010-10-07 00:57 . 2004-08-04 02:32 10880 c:\windows\system32\dllcache\admjoy.sys
+ 2010-10-07 00:57 . 2001-08-17 16:11 20160 c:\windows\system32\dllcache\adm8511.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 11648 c:\windows\system32\dllcache\acpiec.sys
+ 2010-10-07 00:56 . 2001-08-18 02:36 61440 c:\windows\system32\dllcache\acerscad.dll
+ 2010-10-07 00:56 . 2004-08-04 02:32 84480 c:\windows\system32\dllcache\ac97via.sys
+ 2010-10-07 00:56 . 2001-08-17 16:20 96256 c:\windows\system32\dllcache\ac97intc.sys
+ 2010-10-07 00:56 . 2001-08-17 17:52 23552 c:\windows\system32\dllcache\abp480n5.sys
+ 2010-10-07 00:56 . 2001-08-18 02:36 98304 c:\windows\system32\dllcache\a3d.dll
+ 2010-10-07 00:56 . 2001-08-17 18:55 38400 c:\windows\system32\dllcache\8514a.dll
+ 2010-10-07 00:56 . 2004-08-04 03:10 48128 c:\windows\system32\dllcache\61883.sys
+ 2010-10-07 00:56 . 2004-08-04 03:00 12288 c:\windows\system32\dllcache\4mmdat.sys
+ 2010-10-07 00:56 . 2001-08-17 18:06 11264 c:\windows\system32\dllcache\1394vdbg.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 3200 c:\windows\system32\dllcache\wowfax.dll
+ 2010-10-07 01:33 . 2001-08-17 17:28 7556 c:\windows\system32\dllcache\usroslba.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 4736 c:\windows\system32\dllcache\usbd.sys
+ 2001-08-17 22:36 . 2009-11-27 16:37 8704 c:\windows\system32\dllcache\tsbyuv.dll
- 2009-11-27 16:37 . 2009-11-27 16:37 8704 c:\windows\system32\dllcache\tsbyuv.dll
+ 2010-10-07 01:28 . 2001-08-17 18:02 3968 c:\windows\system32\dllcache\swusbflt.sys
+ 2004-08-03 22:58 . 2004-08-10 20:00 4352 c:\windows\system32\dllcache\swenum.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 8192 c:\windows\system32\dllcache\streamci.dll
+ 2010-10-07 01:26 . 2004-08-04 03:00 7552 c:\windows\system32\dllcache\sonyait.sys
+ 2010-10-07 01:26 . 2001-08-17 17:53 7040 c:\windows\system32\dllcache\snyaitmc.sys
+ 2010-10-07 01:26 . 2001-08-17 17:57 6784 c:\windows\system32\dllcache\smbhc.sys
+ 2010-10-07 01:26 . 2004-08-04 03:07 6912 c:\windows\system32\dllcache\smbclass.sys
+ 2010-10-07 01:26 . 2004-08-04 03:07 6016 c:\windows\system32\dllcache\smbali.sys
+ 2010-10-07 01:19 . 2001-08-18 02:36 5632 c:\windows\system32\dllcache\ptpusb.dll
+ 2010-03-30 18:24 . 2005-06-24 23:47 8832 c:\windows\system32\dllcache\powerfil.sys
+ 2010-10-07 01:19 . 2001-08-17 17:53 7168 c:\windows\system32\dllcache\pnrmc.sys
+ 2010-10-07 01:18 . 2001-08-17 18:07 5504 c:\windows\system32\dllcache\perc2hib.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 3328 c:\windows\system32\dllcache\pciide.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 3456 c:\windows\system32\dllcache\oprghdlr.sys
+ 2010-10-07 01:16 . 2001-08-17 17:47 9344 c:\windows\system32\dllcache\ntapm.sys
+ 2010-10-07 01:16 . 2001-08-17 17:53 7552 c:\windows\system32\dllcache\nsmmc.sys
+ 2010-10-07 01:14 . 2001-08-18 02:36 7168 c:\windows\system32\dllcache\mxport.dll
+ 2010-10-07 01:13 . 2004-08-04 02:58 5504 c:\windows\system32\dllcache\mstee.sys
+ 2010-10-07 01:13 . 2001-08-17 18:00 2944 c:\windows\system32\dllcache\msmpu401.sys
+ 2010-10-07 01:13 . 2001-08-17 17:48 6016 c:\windows\system32\dllcache\msfsio.sys
+ 2010-10-07 01:12 . 2001-08-17 17:52 6528 c:\windows\system32\dllcache\miniqic.sys
+ 2010-10-07 01:11 . 2001-08-17 17:58 8320 c:\windows\system32\dllcache\memcard.sys
+ 2010-10-07 01:11 . 2001-08-17 17:52 7424 c:\windows\system32\dllcache\mammoth.sys
+ 2010-10-07 01:11 . 2004-08-04 03:00 7040 c:\windows\system32\dllcache\ltotape.sys
+ 2010-10-07 01:10 . 2001-08-17 17:53 4992 c:\windows\system32\dllcache\loop.sys
+ 2004-08-10 20:00 . 2005-08-03 23:29 6656 c:\windows\system32\dllcache\laprxy.dll
+ 2010-03-30 11:42 . 2001-08-17 22:36 8192 c:\windows\system32\dllcache\kbdkor.dll
+ 2010-03-30 11:42 . 2001-08-17 22:36 8704 c:\windows\system32\dllcache\kbdjpn.dll
+ 2010-03-30 11:42 . 2001-08-17 14:55 6144 c:\windows\system32\dllcache\kbd106.dll
+ 2010-03-30 11:42 . 2001-08-17 14:55 5632 c:\windows\system32\dllcache\kbd103.dll
+ 2010-03-30 11:42 . 2001-08-17 14:55 6144 c:\windows\system32\dllcache\kbd101c.dll
+ 2010-03-30 11:42 . 2001-08-17 14:55 6144 c:\windows\system32\dllcache\kbd101b.dll
+ 2010-10-07 01:09 . 2004-08-04 02:59 5504 c:\windows\system32\dllcache\intelide.sys
+ 2010-10-07 01:08 . 2001-08-18 02:34 9216 c:\windows\system32\dllcache\ibmsgnet.dll
+ 2010-10-07 01:07 . 2004-08-04 03:00 8192 c:\windows\system32\dllcache\i2omgmt.sys
+ 2010-10-07 01:06 . 2001-08-18 02:36 9759 c:\windows\system32\dllcache\hsf_inst.dll
+ 2010-10-07 01:06 . 2001-08-17 17:52 5760 c:\windows\system32\dllcache\hpt4qic.sys
+ 2010-10-07 01:05 . 2001-08-17 18:02 9600 c:\windows\system32\dllcache\hidusb.sys
+ 2010-10-07 01:05 . 2001-08-17 18:02 2688 c:\windows\system32\dllcache\hidswvd.sys
+ 2010-10-07 01:05 . 2001-08-17 18:02 8576 c:\windows\system32\dllcache\hidgame.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 7168 c:\windows\system32\dllcache\hccoin.dll
- 2010-03-30 17:02 . 2001-08-18 03:36 7168 c:\windows\system32\dllcache\EXCH_snprfdll.dll
+ 2010-03-30 17:02 . 2001-08-18 02:36 7168 c:\windows\system32\dllcache\EXCH_snprfdll.dll
+ 2010-03-30 17:01 . 2001-08-18 02:36 5632 c:\windows\system32\dllcache\EXCH_adsiisex.dll
- 2010-03-30 17:01 . 2001-08-18 03:36 5632 c:\windows\system32\dllcache\EXCH_adsiisex.dll
+ 2010-10-07 01:03 . 2001-08-17 17:52 7040 c:\windows\system32\dllcache\exabyte2.sys
+ 2010-03-30 11:46 . 2001-08-17 13:46 6400 c:\windows\system32\dllcache\enum1394.sys
+ 2010-10-07 01:02 . 2001-08-17 17:53 7296 c:\windows\system32\dllcache\elmsmc.sys
+ 2010-10-07 01:01 . 2001-08-17 17:47 8704 c:\windows\system32\dllcache\dot4scan.sys
+ 2010-10-07 01:01 . 2004-08-04 03:00 8320 c:\windows\system32\dllcache\dlttape.sys
+ 2010-10-07 01:01 . 2001-08-18 02:36 6216 c:\windows\system32\dllcache\divaci.dll
+ 2010-10-07 01:01 . 2001-08-18 02:36 6729 c:\windows\system32\dllcache\disrvci.dll
+ 2010-10-07 01:00 . 2001-08-17 17:52 7424 c:\windows\system32\dllcache\ddsmc.sys
+ 2010-10-07 01:00 . 2001-08-17 16:19 3584 c:\windows\system32\dllcache\cwcosnt5.sys
+ 2010-10-07 01:00 . 2001-08-17 16:19 3072 c:\windows\system32\dllcache\cwbmidi.sys
+ 2010-10-07 01:00 . 2001-08-17 16:19 3072 c:\windows\system32\dllcache\cwbase.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 4096 c:\windows\system32\dllcache\ctwdm32.dll
+ 2010-10-07 00:59 . 2001-08-17 16:19 3712 c:\windows\system32\dllcache\ctljystk.sys
+ 2010-10-07 00:59 . 2001-08-17 16:19 6912 c:\windows\system32\dllcache\ctlfacem.sys
+ 2010-03-30 11:46 . 2001-08-17 13:58 9344 c:\windows\system32\dllcache\compbatt.sys
+ 2010-10-07 00:59 . 2001-08-17 17:51 6656 c:\windows\system32\dllcache\cmdide.sys
+ 2010-10-07 00:59 . 2004-08-04 03:00 8192 c:\windows\system32\dllcache\changer.sys
+ 2010-10-07 00:59 . 2001-08-17 17:52 7680 c:\windows\system32\dllcache\cd20xrnt.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 9728 c:\windows\system32\dllcache\brserif.dll
+ 2010-10-07 00:58 . 2001-08-18 02:36 5120 c:\windows\system32\dllcache\brscnrsm.dll
+ 2010-10-07 00:58 . 2001-08-17 17:12 3168 c:\windows\system32\dllcache\brparimg.sys
+ 2010-10-07 00:58 . 2001-08-17 17:12 3968 c:\windows\system32\dllcache\brfiltup.sys
+ 2010-10-07 00:58 . 2001-08-17 17:12 2944 c:\windows\system32\dllcache\brfilt.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 9728 c:\windows\system32\dllcache\brcoinst.dll
+ 2010-03-30 11:48 . 2001-08-17 13:59 3072 c:\windows\system32\dllcache\audstub.sys
+ 2010-10-07 00:58 . 2001-08-17 16:49 9472 c:\windows\system32\dllcache\ativmdcd.sys
+ 2010-10-07 00:57 . 2001-08-17 17:47 6272 c:\windows\system32\dllcache\apmbatt.sys
+ 2010-10-07 00:57 . 2001-08-17 17:51 5248 c:\windows\system32\dllcache\aliide.sys
+ 2010-10-07 00:57 . 2004-08-04 04:56 3775 c:\windows\system32\dllcache\adv11nt5.dll
+ 2010-10-07 00:57 . 2004-08-04 04:56 3711 c:\windows\system32\dllcache\adv09nt5.dll
+ 2010-10-07 00:57 . 2004-08-04 04:56 3135 c:\windows\system32\dllcache\adv08nt5.dll
+ 2010-10-07 00:57 . 2004-08-04 04:56 3647 c:\windows\system32\dllcache\adv07nt5.dll
+ 2010-10-07 00:57 . 2004-08-04 04:56 3615 c:\windows\system32\dllcache\adv05nt5.dll
+ 2010-10-07 00:57 . 2004-08-04 04:56 3967 c:\windows\system32\dllcache\adv02nt5.dll
+ 2010-10-07 00:57 . 2004-08-04 04:56 4255 c:\windows\system32\dllcache\adv01nt5.dll
+ 2010-10-07 00:57 . 2001-08-17 17:53 7424 c:\windows\system32\dllcache\adicvls.sys
+ 2004-08-10 20:00 . 2010-10-07 02:23 441692 c:\windows\system32\perfh009.dat
- 2004-08-10 20:00 . 2010-06-24 07:07 441692 c:\windows\system32\perfh009.dat
+ 2004-08-10 20:00 . 2004-08-10 20:00 246272 c:\windows\system32\drmclien.dll
+ 2010-10-07 01:07 . 2010-09-07 14:52 165584 c:\windows\system32\drivers\aswSP.sys
+ 2004-08-04 00:56 . 2005-06-21 22:00 474624 c:\windows\system32\dllcache\wzcsvc.dll
+ 2004-08-10 20:00 . 2004-08-10 20:00 108032 c:\windows\system32\dllcache\wshbth.dll
+ 2004-08-10 20:00 . 2009-12-24 07:05 177664 c:\windows\system32\dllcache\wintrust.dll
- 2010-03-30 11:42 . 2004-08-10 20:00 146432 c:\windows\system32\dllcache\winspool.drv
+ 2004-08-10 20:00 . 2004-08-10 20:00 146432 c:\windows\system32\dllcache\winspool.drv
+ 2010-10-07 01:35 . 2001-08-17 17:28 771581 c:\windows\system32\dllcache\winacisa.sys
+ 2010-10-07 01:35 . 2001-08-17 17:28 701386 c:\windows\system32\dllcache\wdhaalba.sys
+ 2010-10-07 01:33 . 2001-08-17 17:28 687999 c:\windows\system32\dllcache\usrwdxjs.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 102457 c:\windows\system32\dllcache\usrv42a.dll
+ 2010-10-07 01:33 . 2001-08-17 17:28 765884 c:\windows\system32\dllcache\usrti.sys
+ 2010-10-07 01:33 . 2001-08-17 17:28 113762 c:\windows\system32\dllcache\usrpda.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 323641 c:\windows\system32\dllcache\usrdtea.dll
+ 2010-10-07 01:33 . 2001-08-17 17:28 224802 c:\windows\system32\dllcache\usr1807a.sys
+ 2010-10-07 01:33 . 2001-08-17 17:28 794399 c:\windows\system32\dllcache\usr1806v.sys
+ 2010-10-07 01:33 . 2001-08-17 17:28 793598 c:\windows\system32\dllcache\usr1806.sys
+ 2010-10-07 01:33 . 2001-08-17 17:28 794654 c:\windows\system32\dllcache\usr1801.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 142976 c:\windows\system32\dllcache\usbport.sys
+ 2010-10-07 01:28 . 2001-08-17 17:50 103936 c:\windows\system32\dllcache\sx.sys
+ 2004-08-10 20:00 . 2009-08-26 08:16 247326 c:\windows\system32\dllcache\strmdll.dll
+ 2010-10-07 01:28 . 2001-08-18 02:36 155648 c:\windows\system32\dllcache\stlnprop.dll
+ 2010-10-07 01:28 . 2001-08-17 16:18 285760 c:\windows\system32\dllcache\stlnata.sys
+ 2010-10-07 01:26 . 2001-08-17 18:56 147200 c:\windows\system32\dllcache\smidispb.dll
+ 2010-10-07 01:25 . 2004-08-04 02:41 404990 c:\windows\system32\dllcache\slntamr.sys
+ 2010-10-07 01:25 . 2004-08-04 02:41 129535 c:\windows\system32\dllcache\slnt7554.sys
+ 2010-10-07 01:25 . 2004-08-04 04:56 188508 c:\windows\system32\dllcache\slgen.dll
+ 2010-10-07 01:25 . 2004-08-04 04:56 286792 c:\windows\system32\dllcache\slextspk.dll
+ 2010-10-07 01:25 . 2001-08-17 18:56 157696 c:\windows\system32\dllcache\sisv256.dll
+ 2010-10-07 01:25 . 2001-08-18 02:36 238592 c:\windows\system32\dllcache\sisgrv.dll
+ 2010-10-07 01:25 . 2001-08-17 16:50 104064 c:\windows\system32\dllcache\sisgrp.sys
+ 2010-10-07 01:25 . 2001-08-17 18:56 150144 c:\windows\system32\dllcache\sis6306v.dll
+ 2010-10-07 01:22 . 2001-08-17 18:56 179264 c:\windows\system32\dllcache\s3sav3d.dll
+ 2010-10-07 01:22 . 2001-08-17 18:56 210496 c:\windows\system32\dllcache\s3mvirge.dll
+ 2010-10-07 01:22 . 2001-08-17 18:56 182272 c:\windows\system32\dllcache\s3mt3d.dll
+ 2010-10-07 01:22 . 2001-08-17 16:50 166720 c:\windows\system32\dllcache\s3m.sys
+ 2010-10-07 01:22 . 2004-08-04 02:29 166912 c:\windows\system32\dllcache\s3gnbm.sys
+ 2010-10-07 01:22 . 2004-08-04 04:56 397056 c:\windows\system32\dllcache\s3gnb.dll
+ 2010-03-30 16:50 . 2004-08-04 04:01 196864 c:\windows\system32\dllcache\rdpdr.sys
+ 2010-10-07 01:19 . 2001-08-18 02:36 121344 c:\windows\system32\dllcache\phvfwext.dll
+ 2010-10-07 01:19 . 2001-08-17 18:04 173696 c:\windows\system32\dllcache\philcam2.sys
+ 2010-10-07 01:18 . 2004-08-04 04:56 259328 c:\windows\system32\dllcache\perm3dd.dll
+ 2010-10-07 01:18 . 2004-08-04 04:56 211712 c:\windows\system32\dllcache\perm2dll.dll
+ 2010-10-07 01:18 . 2004-08-04 02:06 169984 c:\windows\system32\dllcache\pcx500.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 119936 c:\windows\system32\dllcache\pcmcia.sys
+ 2001-08-17 22:36 . 2004-08-10 20:00 157696 c:\windows\system32\dllcache\paqsp.dll
+ 2010-10-07 01:17 . 2001-08-17 18:05 351616 c:\windows\system32\dllcache\ovcodek2.sys
+ 2010-10-07 01:17 . 2001-08-18 02:36 116736 c:\windows\system32\dllcache\ovcodec2.dll
+ 2010-10-07 01:16 . 2001-08-17 16:50 198144 c:\windows\system32\dllcache\nv3.sys
+ 2010-10-07 01:16 . 2001-08-18 02:36 123776 c:\windows\system32\dllcache\nv3.dll
+ 2010-10-07 01:16 . 2004-08-04 02:41 180360 c:\windows\system32\dllcache\ntmtlfax.sys
+ 2010-10-07 01:15 . 2001-08-17 16:20 126080 c:\windows\system32\dllcache\nm5a2wdm.sys
+ 2010-10-07 01:15 . 2004-08-04 02:31 132695 c:\windows\system32\dllcache\netwlan5.sys
+ 2010-10-07 01:14 . 2001-08-17 16:11 128000 c:\windows\system32\dllcache\n100325.sys
+ 2010-10-07 01:14 . 2001-08-17 16:50 103296 c:\windows\system32\dllcache\mtxvideo.sys
+ 2010-10-07 01:14 . 2004-08-04 02:29 452736 c:\windows\system32\dllcache\mtxparhm.sys
+ 2010-10-07 01:14 . 2004-08-04 02:41 126686 c:\windows\system32\dllcache\mtlmnt5.sys
+ 2010-03-30 16:56 . 2008-05-01 14:30 331776 c:\windows\system32\dllcache\msadce.dll
+ 2004-08-10 20:00 . 2010-02-24 12:31 454016 c:\windows\system32\dllcache\mrxsmb.sys
- 2010-03-31 19:37 . 2010-02-24 12:31 454016 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-10-07 01:12 . 2001-08-17 16:50 320384 c:\windows\system32\dllcache\mgaum.sys
+ 2010-10-07 01:12 . 2001-08-17 18:56 235648 c:\windows\system32\dllcache\mgaud.dll
+ 2001-08-17 22:36 . 2004-08-10 20:00 147968 c:\windows\system32\dllcache\mdwmdmsp.dll
+ 2010-10-07 01:11 . 2001-08-17 16:12 164586 c:\windows\system32\dllcache\mdgndis5.sys
+ 2010-10-07 01:11 . 2001-08-17 17:28 797500 c:\windows\system32\dllcache\ltsmt.sys
+ 2010-10-07 01:11 . 2001-08-17 17:28 802683 c:\windows\system32\dllcache\ltsm.sys
+ 2010-10-07 01:11 . 2004-08-04 02:41 420992 c:\windows\system32\dllcache\ltmdmntt.sys
+ 2010-10-07 01:11 . 2001-08-17 17:28 576746 c:\windows\system32\dllcache\ltmdmntl.sys
+ 2010-10-07 01:11 . 2004-08-04 02:41 606684 c:\windows\system32\dllcache\ltmdmnt.sys
+ 2010-10-07 01:10 . 2001-08-17 17:28 727786 c:\windows\system32\dllcache\ltck000c.sys
+ 2010-10-07 01:10 . 2001-08-18 02:36 242176 c:\windows\system32\dllcache\kdsusd.dll
+ 2010-10-07 01:09 . 2004-08-04 04:56 152576 c:\windows\system32\dllcache\irftp.exe
+ 2010-10-07 01:08 . 2001-08-18 02:36 372824 c:\windows\system32\dllcache\iconf32.dll
+ 2010-10-07 01:08 . 2001-08-17 18:06 100992 c:\windows\system32\dllcache\icam5usb.sys
+ 2010-10-07 01:08 . 2001-08-17 18:06 154496 c:\windows\system32\dllcache\icam4usb.sys
+ 2010-10-07 01:08 . 2001-08-17 18:05 141056 c:\windows\system32\dllcache\icam3.sys
+ 2010-10-07 01:08 . 2001-08-17 16:12 109085 c:\windows\system32\dllcache\ibmtrp.sys
+ 2010-10-07 01:08 . 2001-08-17 16:12 100936 c:\windows\system32\dllcache\ibmtok.sys
+ 2010-10-07 01:07 . 2004-08-04 02:29 161020 c:\windows\system32\dllcache\i81xnt5.sys
+ 2010-10-07 01:07 . 2004-08-04 04:56 702845 c:\windows\system32\dllcache\i81xdnt5.dll
+ 2010-10-07 01:07 . 2001-08-17 18:56 353184 c:\windows\system32\dllcache\i740dnt5.dll
- 2009-10-20 14:58 . 2009-10-20 14:58 263552 c:\windows\system32\dllcache\http.sys
+ 2004-08-10 20:00 . 2009-10-20 14:58 263552 c:\windows\system32\dllcache\http.sys
+ 2010-10-07 01:06 . 2004-08-04 02:41 685056 c:\windows\system32\dllcache\hsfcxts2.sys
+ 2010-10-07 01:06 . 2004-08-04 02:41 220032 c:\windows\system32\dllcache\hsfbs2s2.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 488383 c:\windows\system32\dllcache\hsf_v124.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 542879 c:\windows\system32\dllcache\hsf_msft.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 391199 c:\windows\system32\dllcache\hsf_k56k.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 115807 c:\windows\system32\dllcache\hsf_fsks.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 199711 c:\windows\system32\dllcache\hsf_faxx.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 289887 c:\windows\system32\dllcache\hsf_fall.sys
+ 2010-10-07 01:06 . 2001-08-17 17:28 150239 c:\windows\system32\dllcache\hsf_amos.sys
+ 2010-10-07 01:05 . 2001-08-18 02:36 324608 c:\windows\system32\dllcache\hpojwia.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 165888 c:\windows\system32\dllcache\hpgt53.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 126976 c:\windows\system32\dllcache\hpgt34tk.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 101376 c:\windows\system32\dllcache\hpgt34.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 123392 c:\windows\system32\dllcache\hpgt21tk.dll
+ 2010-10-07 01:05 . 2001-08-18 02:36 119296 c:\windows\system32\dllcache\hpdigwia.dll
+ 2010-10-07 01:04 . 2001-08-17 17:28 907456 c:\windows\system32\dllcache\hcf_msft.sys
+ 2010-10-07 01:04 . 2001-08-17 16:49 322432 c:\windows\system32\dllcache\g400m.sys
+ 2010-10-07 01:04 . 2001-08-17 16:49 320384 c:\windows\system32\dllcache\g200m.sys
+ 2010-10-07 01:04 . 2001-08-17 18:56 470144 c:\windows\system32\dllcache\g200d.dll
+ 2010-10-07 01:04 . 2001-08-17 16:15 454912 c:\windows\system32\dllcache\fxusbase.sys
+ 2010-10-07 01:04 . 2001-08-17 16:15 455296 c:\windows\system32\dllcache\fusbbase.sys
+ 2010-10-07 01:04 . 2001-08-17 16:15 455680 c:\windows\system32\dllcache\fus2base.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 125056 c:\windows\system32\dllcache\ftdisk.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 193024 c:\windows\system32\dllcache\fsquirt.exe
+ 2010-10-07 01:03 . 2001-08-17 16:15 442240 c:\windows\system32\dllcache\fpnpbase.sys
+ 2010-10-07 01:03 . 2001-08-17 16:14 441728 c:\windows\system32\dllcache\fpcmbase.sys
+ 2010-10-07 01:03 . 2001-08-17 16:14 444416 c:\windows\system32\dllcache\fpcibase.sys
+ 2010-10-07 01:02 . 2004-08-04 02:32 137088 c:\windows\system32\dllcache\essm2e.sys
+ 2010-10-07 01:02 . 2001-08-17 17:28 347550 c:\windows\system32\dllcache\es56tpi.sys
+ 2010-10-07 01:02 . 2001-08-17 17:28 594238 c:\windows\system32\dllcache\es56hpi.sys
+ 2010-10-07 01:02 . 2001-08-17 17:28 595647 c:\windows\system32\dllcache\es56cvmp.sys
+ 2010-10-07 01:02 . 2001-08-17 16:19 174464 c:\windows\system32\dllcache\es198x.sys
+ 2010-10-07 01:02 . 2001-08-17 16:17 629952 c:\windows\system32\dllcache\eqn.sys
+ 2010-10-07 01:02 . 2001-08-17 17:50 114944 c:\windows\system32\dllcache\epstw2k.sys
+ 2010-10-07 01:02 . 2001-08-17 17:50 144896 c:\windows\system32\dllcache\epcfw2k.sys
+ 2010-10-07 01:02 . 2001-08-17 16:19 283904 c:\windows\system32\dllcache\emu10k1m.sys
+ 2010-10-07 01:02 . 2001-08-17 16:11 171520 c:\windows\system32\dllcache\el99xn51.sys
+ 2010-10-07 01:01 . 2001-08-17 16:11 455199 c:\windows\system32\dllcache\el985n51.sys
+ 2010-10-07 01:01 . 2001-08-17 16:11 153631 c:\windows\system32\dllcache\el90xnd5.sys
+ 2010-10-07 01:01 . 2001-08-17 17:28 241206 c:\windows\system32\dllcache\el656se5.sys
+ 2010-10-07 01:01 . 2001-08-17 17:28 634134 c:\windows\system32\dllcache\el656ct5.sys
- 2010-03-30 16:52 . 2004-08-10 09:11 110592 c:\windows\system32\dllcache\ehsqse20.dll
+ 2010-03-30 16:52 . 2005-08-05 19:01 110592 c:\windows\system32\dllcache\ehsqse20.dll
+ 2010-03-30 16:52 . 2005-08-05 19:01 462848 c:\windows\system32\dllcache\ehsqqp20.dll
- 2010-03-30 16:52 . 2004-08-10 09:11 462848 c:\windows\system32\dllcache\ehsqqp20.dll
+ 2010-03-30 16:52 . 2005-08-05 19:01 151552 c:\windows\system32\dllcache\ehsqdb20.dll
- 2010-03-30 16:52 . 2004-08-10 09:11 151552 c:\windows\system32\dllcache\ehsqdb20.dll
+ 2010-10-07 01:01 . 2001-08-17 16:12 117760 c:\windows\system32\dllcache\e100b325.sys
+ 2010-10-07 01:01 . 2001-08-17 16:20 334208 c:\windows\system32\dllcache\ds1wdm.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 246272 c:\windows\system32\dllcache\drmclien.dll
+ 2010-10-07 01:01 . 2004-08-04 02:58 207360 c:\windows\system32\dllcache\dot4.sys
+ 2010-10-07 01:01 . 2001-08-17 16:14 952007 c:\windows\system32\dllcache\diwan.sys
+ 2010-10-07 01:01 . 2001-08-18 02:36 236060 c:\windows\system32\dllcache\ditrace.exe
+ 2010-10-07 01:00 . 2001-08-18 02:36 614429 c:\windows\system32\dllcache\digiview.exe
+ 2010-10-07 01:00 . 2001-08-18 02:36 110621 c:\windows\system32\dllcache\digirlpt.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 102484 c:\windows\system32\dllcache\digiinf.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 159828 c:\windows\system32\dllcache\digihlc.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 229462 c:\windows\system32\dllcache\digifwrk.dll
+ 2010-10-07 01:00 . 2001-08-17 16:13 103044 c:\windows\system32\dllcache\digidxb.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 131156 c:\windows\system32\dllcache\digidbp.dll
+ 2010-10-07 00:59 . 2001-08-17 16:13 164923 c:\windows\system32\dllcache\diapi2.sys
+ 2010-10-07 01:00 . 2001-08-18 02:36 419357 c:\windows\system32\dllcache\dgconfig.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 256512 c:\windows\system32\dllcache\devcon32.dll
+ 2010-10-07 01:00 . 2001-08-18 02:36 110592 c:\windows\system32\dllcache\dc260usd.dll
+ 2010-10-07 01:00 . 2001-08-17 17:52 179584 c:\windows\system32\dllcache\dac2w2k.sys
+ 2010-10-07 01:00 . 2001-08-17 16:12 117760 c:\windows\system32\dllcache\d100ib5.sys
+ 2010-10-07 01:00 . 2001-08-17 16:19 111872 c:\windows\system32\dllcache\cwcspud.sys
+ 2010-10-07 01:00 . 2004-08-04 04:56 249856 c:\windows\system32\dllcache\ctmasetp.dll
+ 2010-10-07 00:59 . 2001-08-18 02:36 175104 c:\windows\system32\dllcache\csamsp.dll
+ 2010-10-07 00:59 . 2001-08-18 02:36 216064 c:\windows\system32\dllcache\cpscan.dll
+ 2010-10-07 00:59 . 2001-08-17 17:57 248064 c:\windows\system32\dllcache\cl546xm.sys
+ 2010-10-07 00:59 . 2001-08-17 18:56 170880 c:\windows\system32\dllcache\cl546x.dll
+ 2010-10-07 00:59 . 2001-08-17 18:56 111232 c:\windows\system32\dllcache\cl5465.dll
+ 2001-08-17 14:02 . 2004-08-10 20:00 262528 c:\windows\system32\dllcache\cinemst2.sys
+ 2010-10-07 00:59 . 2001-08-17 18:02 272640 c:\windows\system32\dllcache\cinemclc.sys
+ 2010-10-07 00:59 . 2001-08-17 16:13 980034 c:\windows\system32\dllcache\cicap.sys
+ 2010-10-07 00:59 . 2001-08-17 17:28 714698 c:\windows\system32\dllcache\cbmdmkxx.sys
+ 2010-10-07 00:59 . 2001-08-18 02:36 119296 c:\windows\system32\dllcache\camext30.dll
+ 2010-10-07 00:59 . 2001-08-18 02:36 236032 c:\windows\system32\dllcache\camext20.dll
+ 2010-10-07 00:59 . 2001-08-17 18:04 171264 c:\windows\system32\dllcache\camdrv30.sys
+ 2010-10-07 00:59 . 2001-08-17 18:04 223232 c:\windows\system32\dllcache\camdrv21.sys
+ 2010-10-07 00:59 . 2001-08-17 18:05 314752 c:\windows\system32\dllcache\camdro21.sys
+ 2010-10-07 00:58 . 2004-08-04 02:58 100992 c:\windows\system32\dllcache\bthpan.sys
+ 2010-10-07 00:58 . 2001-08-18 02:36 102400 c:\windows\system32\dllcache\binlsvc.dll
+ 2010-10-07 00:58 . 2001-08-17 17:28 871388 c:\windows\system32\dllcache\bcmdm.sys
+ 2010-10-07 00:58 . 2001-08-17 18:56 342336 c:\windows\system32\dllcache\banshee.dll
+ 2010-10-07 00:58 . 2001-08-18 02:36 144384 c:\windows\system32\dllcache\avmenum.dll
+ 2010-10-07 00:58 . 2001-08-17 18:56 104832 c:\windows\system32\dllcache\atiraged.dll
+ 2010-10-07 00:58 . 2004-08-04 02:29 104960 c:\windows\system32\dllcache\atinrvxx.sys
+ 2010-10-07 00:58 . 2001-08-17 16:48 281600 c:\windows\system32\dllcache\atimtai.sys
+ 2010-10-07 00:58 . 2001-08-17 16:48 289664 c:\windows\system32\dllcache\atimpab.sys
+ 2010-10-07 00:58 . 2001-08-17 18:56 268160 c:\windows\system32\dllcache\atidvai.dll
+ 2010-10-07 00:58 . 2001-08-17 18:56 137216 c:\windows\system32\dllcache\atidrae.dll
+ 2010-10-07 00:58 . 2001-08-17 18:55 382592 c:\windows\system32\dllcache\atidrab.dll
+ 2010-10-07 00:58 . 2004-08-04 04:56 870784 c:\windows\system32\dllcache\ati3d1ag.dll
+ 2010-10-07 00:58 . 2004-08-04 02:29 327040 c:\windows\system32\dllcache\ati2mtaa.sys
+ 2010-10-07 00:58 . 2004-08-04 04:56 377984 c:\windows\system32\dllcache\ati2dvaa.dll
+ 2010-10-07 00:57 . 2001-08-17 18:07 101888 c:\windows\system32\dllcache\adpu160m.sys
+ 2010-10-07 00:57 . 2001-08-17 16:19 747392 c:\windows\system32\dllcache\adm8830.sys
+ 2010-10-07 00:57 . 2001-08-17 16:19 553984 c:\windows\system32\dllcache\adm8820.sys
+ 2010-10-07 00:57 . 2001-08-17 16:19 584448 c:\windows\system32\dllcache\adm8810.sys
+ 2004-08-10 20:00 . 2004-08-10 20:00 187776 c:\windows\system32\dllcache\acpi.sys
+ 2010-10-07 00:56 . 2001-08-17 16:20 297728 c:\windows\system32\dllcache\ac97sis.sys
+ 2010-10-07 00:56 . 2004-08-04 02:32 231552 c:\windows\system32\dllcache\ac97ali.sys
+ 2010-10-07 00:56 . 2001-08-18 02:36 462848 c:\windows\system32\dllcache\a3dapi.dll
+ 2004-08-10 20:00 . 2010-02-12 04:47 100864 c:\windows\system32\dllcache\6to4svc.dll
+ 2010-10-07 00:56 . 2001-08-17 16:48 148352 c:\windows\system32\dllcache\3dfxvsm.sys
+ 2010-10-07 00:56 . 2001-08-17 18:55 689216 c:\windows\system32\dllcache\3dfxvs.dll
+ 2010-10-07 00:56 . 2001-08-17 17:28 762780 c:\windows\system32\dllcache\3cwmcru.sys
+ 2010-10-07 01:16 . 2004-08-04 02:29 1897408 c:\windows\system32\dllcache\nv4_mini.sys
+ 2010-10-07 01:16 . 2004-08-04 04:56 4274816 c:\windows\system32\dllcache\nv4_disp.dll
+ 2004-08-03 22:59 . 2010-02-17 15:57 2063744 c:\windows\system32\dllcache\ntkrnlpa.exe
- 2010-03-31 16:26 . 2010-02-17 15:57 2063744 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2010-10-07 01:14 . 2004-08-04 04:56 1737856 c:\windows\system32\dllcache\mtxparhd.dll
+ 2010-10-07 01:14 . 2004-08-04 02:41 1309184 c:\windows\system32\dllcache\mtlstrm.sys
+ 2010-10-07 01:06 . 2004-08-04 02:41 1041536 c:\windows\system32\dllcache\hsfdpsp2.sys
+ 2010-10-07 01:04 . 2001-08-17 18:56 1733120 c:\windows\system32\dllcache\g400d.dll
+ 2004-09-28 06:54 . 2005-08-05 19:01 8843776 c:\windows\system32\dllcache\ehres.dll
- 2010-03-30 16:51 . 2005-08-05 19:01 8843776 c:\windows\system32\dllcache\ehres.dll
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr.exe" [2009-07-26 3883856]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-10 208952]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-10 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-10 455168]
"ehTray"="c:\windows\ehome\ehtray.exe" [2005-08-05 64512]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2005-06-19 729178]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-11-11 344064]
"Cpqset"="c:\program files\HPQ\Default Settings\cpqset.exe" [2005-08-01 233534]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2005-02-17 49152]
"eabconfg.cpl"="c:\program files\HPQ\Quick Launch Buttons\EabServr.exe" [2005-12-22 405504]
"QPService"="c:\program files\HP\QuickPlay\QPService.exe" [2005-12-12 94208]
"SunJavaUpdateSched"="c:\program files\Java\jre1.5.0_06\bin\jusched.exe" [2005-11-10 36975]
"hpWirelessAssistant"="c:\program files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe" [2005-12-13 507904]
"avast5"="c:\program files\Alwil Software\Avast5\avastUI.exe" [2010-09-07 2838912]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"DWQueuedReporting"="c:\progra~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" [2007-02-26 437160]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [2000-1-21 65588]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr.exe"=
"c:\\Program Files\\Pando Networks\\Media Booster\\PMB.exe"=
"c:\\Documents and Settings\\All Users\\Application Data\\NexonUS\\NGM\\NGM.exe"=
"c:\\WINDOWS\\pchealth\\helpctr\\binaries\\HelpCtr.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"57474:TCP"= 57474:TCPando Media Booster
"57474:UDP"= 57474:UDPando Media Booster

R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [10/6/2010 9:07 PM 165584]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [10/6/2010 9:07 PM 17744]
R3 HSFHWATI;HSFHWATI;c:\windows\system32\drivers\HSFHWATI.sys [3/30/2010 1:37 PM 231424]
S0 nielprt;Nielsen Patch Service;c:\windows\system32\DRIVERS\nielprt.sys --> c:\windows\system32\DRIVERS\nielprt.sys [?]
S3 NielGfx;Nielsen USB GFX;c:\windows\system32\drivers\nielgfx.sys --> c:\windows\system32\drivers\nielgfx.sys [?]
.
.
------- Supplementary Scan -------
.
DPF: {E87A4CD6-BA5F-4552-BC4F-8EC240A2755C} - hxxp://webcam.oceanwalkshoppes.com/webrec.cab
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe,-101"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\Elevation]
"Enabled"=dword:00000001

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil10k_ActiveX.exe"

[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{A483C63A-CDBC-426E-BF93-872502E8144E}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}]
@Denied: (A 2) (Everyone)
@="IFlashBroker4"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"

[HKEY_LOCAL_MACHINE\software\Classes\Interface\{E3F2C3CB-5EB8-4A04-B22C-7E3B4B6AF30F}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(548)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(2612)
c:\windows\system32\WININET.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Alwil Software\Avast5\AvastSvc.exe
c:\windows\eHome\ehRecvr.exe
c:\windows\eHome\ehSched.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
c:\program files\Hewlett-Packard\Shared\hpqwmiex.exe
c:\windows\ehome\mcrdsvc.exe
c:\program files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
c:\windows\system32\dllhost.exe
c:\windows\eHome\ehmsas.exe
c:\progra~1\hpq\Shared\HPQTOA~1.EXE
.
**************************************************************************
.
Completion time: 2010-10-06 22:30:57 - machine was rebooted
ComboFix-quarantined-files.txt 2010-10-07 02:30
ComboFix2.txt 2010-10-04 22:34
ComboFix3.txt 2010-10-04 22:10

Pre-Run: 67,570,847,744 bytes free
Post-Run: 67,596,111,872 bytes free

- - End Of File - - 128F07D83A1E2DA5F1ED88D7AFCF9146

starbuck · Feb 3, 2014

Hi Jason,

Things are looking better now.

Step 1
Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. A malicious site could render Java content under older, vulnerable versions of Sun's software if the user has not removed them. Please follow these steps to remove older version Java components and update:

Download the latest version of Java Runtime Environment (JRE) 6 Update 21 and save it to your desktop.

Scroll down to where it says "JDK 6 Update 21 (JDK or JRE).

Click the "Download JRE" button to the right.

select 'Windows' from the Platform down arrow.

Read the License Agreement and then check the box that says: "Accept License Agreement".

Click Continue.

The page will refresh.

Click on the link to download Windows Offline Installation and save the file to your desktop.

Close any programs you may have running - especially your web browser.

Go to Start > Settings > Control Panel, double-click on Add/Remove Programs and remove all older versions of Java.

Check (highlight) any item with Java Runtime Environment (JRE or J2SE) in the name.

Click the Remove or Change/Remove button.

Repeat as many times as necessary to remove each Java versions.

Reboot your computer once all Java components are removed.

Then from your desktop double-click on jre-6u21-windows-i586-p.exe to install the newest version.

Step 2
Let's see if we can get those OTL reports now.

Download OTL to your desktop.
right click on the link and select 'Save Link/Target As'.

if you have problems, try this download link:
OTL

Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.

When the window appears, underneath Output at the top change it to Minimal Output.

Check the boxes beside LOP Check and Purity Check

.

.

Now copy the lines in bold below.

netsvcs
msconfig
%SYSTEMDRIVE%\*.exe
/md5start
eventlog.dll
scecli.dll
netlogon.dll
cngaudit.dll
sceclt.dll
ntelogon.dll
logevent.dll
iaStor.sys
nvstor.sys
atapi.sys
IdeChnDr.sys
viasraid.sys
AGP440.sys
vaxscsi.sys
nvatabus.sys
viamraid.sys
nvata.sys
nvgts.sys
iastorv.sys
ViPrt.sys
eNetHook.dll
ahcix86.sys
KR10N.sys
nvstor32.sys
ahcix86s.sys
nvrd32.sys
symmpi.sys
adp3132.sys
/md5stop
%systemroot%\*. /mp /s
%systemroot%\system32\*.dll /lockedfiles
%systemroot%\Tasks\*.job /lockedfiles
%systemroot%\system32\drivers\*.sys /lockedfiles
CREATERESTOREPOINT

right click in the Custom Scans/Fixes window (under the blue bar) and choose Paste.

.

Click the Run Scan button.

Do not change any settings unless otherwise told to do so. The scan wont take long.

When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.

Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post them with your next reply.

In your next reply, please submit:
Both reports from OTL

Thanks.

JasonV · Oct 7, 2010

OTL.Txt:
OTL logfile created on: 10/7/2010 11:47:38 AM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Documents and Settings\Jason\Desktop\MRS
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 594.00 Mb Available Physical Memory | 58.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 93.15 Gb Total Space | 62.79 Gb Free Space | 67.41% Space Free | Partition Type: NTFS
Drive D: | 763.61 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JASON-480B17D19
Current User Name: Jason
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Jason\Desktop\MRS\OTL.scr (OldTimer Tools)
PRC - C:\Program Files\Alwil Software\Avast5\AvastUI.exe (AVAST Software)
PRC - C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation)
PRC - C:\Program Files\HPQ\Quick Launch Buttons\eabservr.exe (Hewlett-Packard )
PRC - C:\Program Files\HPQ\shared\HpqToaster.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)

========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Jason\Desktop\MRS\OTL.scr (OldTimer Tools)
MOD - C:\Program Files\HPQ\Quick Launch Buttons\cpqinfo.dll (Hewlett-Packard )
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\msscript.ocx (Microsoft Corporation)

========== Win32 Services (SafeList) ==========

SRV - (HidServ) -- C:\WINDOWS\System32\hidserv.dll File not found
SRV - (avast! Web Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (avast! Mail Scanner) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (avast! Antivirus) -- C:\Program Files\Alwil Software\Avast5\AvastSvc.exe (AVAST Software)
SRV - (wlidsvc) -- C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation)

========== Driver Services (SafeList) ==========

DRV - (npkcrypt) -- C:\Documents and Settings\Jason\Desktop\Tranq\Tranquility\npkcrypt.sys File not found
DRV - (nielprt) -- C:\WINDOWS\System32\DRIVERS\nielprt.sys File not found
DRV - (NielGfx) -- C:\WINDOWS\System32\drivers\nielgfx.sys File not found
DRV - (EagleNT) -- C:\WINDOWS\System32\drivers\EagleNT.sys File not found
DRV - (catchme) -- C:\DOCUME~1\Jason\LOCALS~1\Temp\catchme.sys File not found
DRV - (aswTdi) -- C:\WINDOWS\System32\drivers\aswTdi.sys (AVAST Software)
DRV - (aswSP) -- C:\WINDOWS\System32\drivers\aswSP.sys (AVAST Software)
DRV - (aswRdr) -- C:\WINDOWS\System32\drivers\aswRdr.sys (AVAST Software)
DRV - (aswMon2) -- C:\WINDOWS\System32\drivers\aswmon2.sys (AVAST Software)
DRV - (aswFsBlk) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys (AVAST Software)
DRV - (Aavmker4) -- C:\WINDOWS\System32\drivers\aavmker4.sys (AVAST Software)
DRV - (BCM43XX) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS (Broadcom Corporation)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (RTL8023xp) -- C:\WINDOWS\system32\drivers\Rtnicxp.sys (Realtek Semiconductor Corporation )
DRV - (tifm21) -- C:\WINDOWS\system32\drivers\tifm21.sys (Texas Instruments)
DRV - (HSF_DP) -- C:\WINDOWS\system32\drivers\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSFHWATI) -- C:\WINDOWS\system32\drivers\HSFHWATI.sys (Conexant Systems, Inc.)
DRV - (CAMCHALA) -- C:\WINDOWS\system32\drivers\camc6hal.sys (Conexant Systems Inc.)
DRV - (CAMCAUD) -- C:\WINDOWS\system32\drivers\camc6aud.sys (Conexant Systems Inc.)
DRV - (SynTP) -- C:\WINDOWS\system32\drivers\SynTP.sys (Synaptics, Inc.)
DRV - (eabfiltr) -- C:\WINDOWS\system32\drivers\eabfiltr.sys (Hewlett-Packard Development Company, L.P.)
DRV - (eabusb) -- C:\WINDOWS\system32\drivers\EabUsb.sys (Hewlett-Packard Development Company, L.P.)
DRV - (AmdK8) -- C:\WINDOWS\system32\drivers\AmdK8.sys (Advanced Micro Devices)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[2010/08/25 18:09:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jason\Application Data\Mozilla\Extensions

O1 HOSTS File: ([2010/10/06 22:26:17 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [avast5] C:\Program Files\Alwil Software\Avast5\avastUI.exe (AVAST Software)
O4 - HKLM..\Run: [Cpqset] C:\Program Files\HPQ\Default Settings\Cpqset.exe ()
O4 - HKLM..\Run: [eabconfg.cpl] C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe (Hewlett-Packard )
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE (Microsoft Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx1.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool)
O16 - DPF: {E87A4CD6-BA5F-4552-BC4F-8EC240A2755C} http://webcam.oceanwalkshoppes.com/webrec.cab (WebRecClient Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 213.109.66.19 213.109.73.6
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop WallPaper: C:\WINDOWS\Blue Lounge.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Blue Lounge.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/03/30 14:08:51 | 000,000,050 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2004/08/10 16:00:00 | 000,000,110 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: HidServ - C:\WINDOWS\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)

========== Files/Folders - Created Within 30 Days ==========

[2010/10/07 11:45:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/10/07 11:45:10 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/10/07 11:45:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010/10/07 11:44:50 | 000,423,656 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/10/07 11:44:50 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/10/07 11:44:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/10/07 11:44:50 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/10/07 11:44:50 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/10/07 11:44:25 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010/10/07 11:41:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\LastGood
[2010/10/06 22:16:17 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys
[2010/10/06 21:39:07 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2010/10/06 21:39:03 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2010/10/06 21:38:46 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe
[2010/10/06 21:37:53 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2010/10/06 21:37:45 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2010/10/06 21:37:40 | 000,019,455 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wvchntxx.sys
[2010/10/06 21:37:26 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstcodec.sys
[2010/10/06 21:37:23 | 000,012,063 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wsiintxx.sys
[2010/10/06 21:37:20 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2010/10/06 21:36:18 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2010/10/06 21:36:11 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2010/10/06 21:35:59 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2010/10/06 21:35:51 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll
[2010/10/06 21:35:44 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll
[2010/10/06 21:35:35 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys
[2010/10/06 21:35:34 | 000,023,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wch7xxnt.sys
[2010/10/06 21:35:32 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2010/10/06 21:35:24 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2010/10/06 21:35:18 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv10nt.sys
[2010/10/06 21:35:17 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv06nt.sys
[2010/10/06 21:35:15 | 000,033,599 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv04nt.sys
[2010/10/06 21:35:14 | 000,019,551 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv02nt.sys
[2010/10/06 21:35:13 | 000,029,311 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv01nt.sys
[2010/10/06 21:35:10 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv11nt.sys
[2010/10/06 21:35:09 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv09nt.sys
[2010/10/06 21:35:08 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv08nt.sys
[2010/10/06 21:35:07 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv07nt.sys
[2010/10/06 21:35:06 | 000,011,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv05nt.sys
[2010/10/06 21:35:05 | 000,012,127 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv02nt.sys
[2010/10/06 21:35:04 | 000,012,415 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv01nt.sys
[2010/10/06 21:35:02 | 000,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wacompen.sys
[2010/10/06 21:34:56 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2010/10/06 21:34:52 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2010/10/06 21:34:47 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2010/10/06 21:34:33 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2010/10/06 21:34:27 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2010/10/06 21:34:22 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2010/10/06 21:34:17 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2010/10/06 21:34:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vidcap.ax
[2010/10/06 21:34:12 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys
[2010/10/06 21:34:11 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaide.sys
[2010/10/06 21:34:09 | 000,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaagp.sys
[2010/10/06 21:34:06 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vfwwdm32.dll
[2010/10/06 21:34:04 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\vchnt5.dll
[2010/10/06 21:33:57 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys
[2010/10/06 21:33:52 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2010/10/06 21:33:47 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys
[2010/10/06 21:33:38 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys
[2010/10/06 21:33:33 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys
[2010/10/06 21:33:29 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2010/10/06 21:33:25 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2010/10/06 21:33:20 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2010/10/06 21:33:18 | 000,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2010/10/06 21:33:16 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbuhci.sys
[2010/10/06 21:33:15 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2010/10/06 21:33:13 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010/10/06 21:33:11 | 000,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2010/10/06 21:33:10 | 000,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2010/10/06 21:33:09 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2010/10/06 21:33:08 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2010/10/06 21:32:57 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll
[2010/10/06 21:32:48 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll
[2010/10/06 21:32:44 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll
[2010/10/06 21:32:39 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll
[2010/10/06 21:32:35 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2010/10/06 21:32:30 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys
[2010/10/06 21:32:26 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll
[2010/10/06 21:32:22 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll
[2010/10/06 21:32:14 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2010/10/06 21:32:09 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2010/10/06 21:32:05 | 000,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ultra.sys
[2010/10/06 21:32:01 | 000,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uagp35.sys
[2010/10/06 21:31:52 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys
[2010/10/06 21:31:37 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2010/10/06 21:31:33 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2010/10/06 21:31:28 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2010/10/06 21:31:24 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2010/10/06 21:31:20 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2010/10/06 21:31:15 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2010/10/06 21:31:09 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys
[2010/10/06 21:31:05 | 000,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll
[2010/10/06 21:31:04 | 000,082,432 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe
[2010/10/06 21:31:00 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll
[2010/10/06 21:30:54 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\toside.sys
[2010/10/06 21:30:50 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys
[2010/10/06 21:30:46 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys
[2010/10/06 21:30:38 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys
[2010/10/06 21:30:28 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2010/10/06 21:30:21 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2010/10/06 21:30:16 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2010/10/06 21:30:15 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2010/10/06 21:30:04 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2010/10/06 21:29:57 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2010/10/06 21:29:45 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys
[2010/10/06 21:29:38 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys
[2010/10/06 21:29:34 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2010/10/06 21:29:31 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2010/10/06 21:29:20 | 000,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\symc8xx.sys
[2010/10/06 21:29:12 | 000,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS\System32\dllcache\symc810.sys
[2010/10/06 21:29:08 | 000,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_u3.sys
[2010/10/06 21:29:04 | 000,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_hi.sys
[2010/10/06 21:28:59 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll
[2010/10/06 21:28:55 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys
[2010/10/06 21:28:52 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys
[2010/10/06 21:28:47 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[2010/10/06 21:28:43 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll
[2010/10/06 21:28:39 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll
[2010/10/06 21:28:35 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll
[2010/10/06 21:28:32 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\streamip.sys
[2010/10/06 21:28:27 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2010/10/06 21:28:24 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2010/10/06 21:28:17 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2010/10/06 21:28:11 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2010/10/06 21:28:03 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2010/10/06 21:27:56 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll
[2010/10/06 21:27:42 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll
[2010/10/06 21:27:34 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys
[2010/10/06 21:27:30 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll
[2010/10/06 21:27:23 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2010/10/06 21:27:18 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys
[2010/10/06 21:27:14 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys
[2010/10/06 21:27:10 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll
[2010/10/06 21:27:07 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys
[2010/10/06 21:27:00 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys
[2010/10/06 21:26:58 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys
[2010/10/06 21:26:54 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys
[2010/10/06 21:26:40 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2010/10/06 21:26:36 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2010/10/06 21:26:31 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2010/10/06 21:26:28 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2010/10/06 21:26:24 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2010/10/06 21:26:19 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys
[2010/10/06 21:26:18 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys
[2010/10/06 21:26:17 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys
[2010/10/06 21:26:16 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbali.sys
[2010/10/06 21:26:11 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll
[2010/10/06 21:26:08 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll
[2010/10/06 21:26:03 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll
[2010/10/06 21:25:58 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll
[2010/10/06 21:25:52 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slwdmsup.sys
[2010/10/06 21:25:51 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slserv.exe
[2010/10/06 21:25:50 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slrundll.exe
[2010/10/06 21:25:49 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnthal.sys
[2010/10/06 21:25:48 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slntamr.sys
[2010/10/06 21:25:47 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnt7554.sys
[2010/10/06 21:25:46 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slgen.dll
[2010/10/06 21:25:46 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\slip.sys
[2010/10/06 21:25:45 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slextspk.dll
[2010/10/06 21:25:44 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slcoinst.dll
[2010/10/06 21:25:43 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2010/10/06 21:25:39 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2010/10/06 21:25:32 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2010/10/06 21:25:24 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll
[2010/10/06 21:25:20 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys
[2010/10/06 21:25:19 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2010/10/06 21:25:15 | 000,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll
[2010/10/06 21:25:12 | 000,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys
[2010/10/06 21:25:11 | 000,041,088 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisagp.sys
[2010/10/06 21:25:07 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll
[2010/10/06 21:25:03 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys
[2010/10/06 21:24:59 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll
[2010/10/06 21:24:55 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys
[2010/10/06 21:24:52 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\siint5.dll
[2010/10/06 21:24:38 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2010/10/06 21:24:35 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2010/10/06 21:24:31 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2010/10/06 21:24:27 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2010/10/06 21:24:23 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys
[2010/10/06 21:24:16 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2010/10/06 21:24:12 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys
[2010/10/06 21:24:02 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys
[2010/10/06 21:23:57 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys
[2010/10/06 21:23:54 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys
[2010/10/06 21:23:47 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2010/10/06 21:23:43 | 000,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys
[2010/10/06 21:23:38 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2010/10/06 21:23:30 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2010/10/06 21:23:23 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll
[2010/10/06 21:23:16 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys
[2010/10/06 21:23:13 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll
[2010/10/06 21:23:10 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2010/10/06 21:23:02 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2010/10/06 21:22:58 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2010/10/06 21:22:54 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2010/10/06 21:22:50 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2010/10/06 21:22:46 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2010/10/06 21:22:43 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2010/10/06 21:22:39 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2010/10/06 21:22:33 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2010/10/06 21:22:28 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys
[2010/10/06 21:22:27 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnb.dll
[2010/10/06 21:22:27 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnbm.sys
[2010/10/06 21:22:22 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2010/10/06 21:22:18 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2010/10/06 21:22:13 | 000,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2010/10/06 21:22:09 | 000,024,576 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2010/10/06 21:22:03 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys
[2010/10/06 21:21:59 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys
[2010/10/06 21:21:51 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2010/10/06 21:21:46 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys
[2010/10/06 21:21:43 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2010/10/06 21:21:42 | 000,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rndismpx.sys
[2010/10/06 21:21:38 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2010/10/06 21:21:36 | 000,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rfcomm.sys
[2010/10/06 21:21:28 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2010/10/06 21:21:23 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\recagent.sys
[2010/10/06 21:21:11 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys
[2010/10/06 21:21:04 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2010/10/06 21:21:01 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2010/10/06 21:20:54 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll
[2010/10/06 21:20:46 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys
[2010/10/06 21:20:37 | 000,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1280.sys
[2010/10/06 21:20:33 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql1240.sys
[2010/10/06 21:20:30 | 000,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql12160.sys
[2010/10/06 21:20:27 | 000,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql10wnt.sys
[2010/10/06 21:20:23 | 000,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1080.sys
[2010/10/06 21:20:22 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys
[2010/10/06 21:20:13 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2010/10/06 21:20:09 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2010/10/06 21:20:06 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2010/10/06 21:20:05 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll
[2010/10/06 21:19:58 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll
[2010/10/06 21:19:54 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll
[2010/10/06 21:19:47 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2010/10/06 21:19:41 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys
[2010/10/06 21:19:38 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys
[2010/10/06 21:19:30 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys
[2010/10/06 21:19:27 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\plugin.ocx
[2010/10/06 21:19:19 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2010/10/06 21:19:15 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys
[2010/10/06 21:19:11 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys
[2010/10/06 21:19:08 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys
[2010/10/06 21:19:04 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys
[2010/10/06 21:19:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll
[2010/10/06 21:18:54 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax
[2010/10/06 21:18:51 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll
[2010/10/06 21:18:50 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys
[2010/10/06 21:18:49 | 000,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll
[2010/10/06 21:18:47 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys
[2010/10/06 21:18:39 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2hib.sys
[2010/10/06 21:18:36 | 000,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2.sys
[2010/10/06 21:18:34 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys
[2010/10/06 21:18:30 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2010/10/06 21:18:27 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys
[2010/10/06 21:18:24 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys
[2010/10/06 21:18:20 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys
[2010/10/06 21:18:16 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2010/10/06 21:18:14 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2010/10/06 21:18:09 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2010/10/06 21:17:59 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll
[2010/10/06 21:17:56 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll
[2010/10/06 21:17:52 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys
[2010/10/06 21:17:45 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe
[2010/10/06 21:17:38 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll
[2010/10/06 21:17:33 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys
[2010/10/06 21:17:30 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll
[2010/10/06 21:17:26 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys
[2010/10/06 21:17:22 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys
[2010/10/06 21:17:19 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys
[2010/10/06 21:17:15 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys
[2010/10/06 21:17:12 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2010/10/06 21:17:08 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2010/10/06 21:17:04 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2010/10/06 21:16:59 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2010/10/06 21:16:48 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2010/10/06 21:16:47 | 004,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2010/10/06 21:16:44 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys
[2010/10/06 21:16:36 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll
[2010/10/06 21:16:31 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\ntmtlfax.sys
[2010/10/06 21:16:21 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2010/10/06 21:16:14 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys
[2010/10/06 21:16:10 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys
[2010/10/06 21:16:09 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys
[2010/10/06 21:16:00 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2010/10/06 21:15:56 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2010/10/06 21:15:45 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys
[2010/10/06 21:15:40 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2010/10/06 21:15:28 | 000,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys
[2010/10/06 21:15:23 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2010/10/06 21:15:20 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2010/10/06 21:15:17 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys
[2010/10/06 21:15:13 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndisip.sys
[2010/10/06 21:15:10 | 000,085,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nabtsfec.sys
[2010/10/06 21:15:06 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2010/10/06 21:15:03 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2010/10/06 21:14:56 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2010/10/06 21:14:49 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2010/10/06 21:14:45 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2010/10/06 21:14:42 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2010/10/06 21:14:38 | 000,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys
[2010/10/06 21:14:33 | 000,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys
[2010/10/06 21:14:29 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2010/10/06 21:14:26 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2010/10/06 21:14:22 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2010/10/06 21:14:19 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2010/10/06 21:14:16 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2010/10/06 21:14:15 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mutohpen.sys
[2010/10/06 21:14:10 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys
[2010/10/06 21:14:09 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhm.sys
[2010/10/06 21:14:08 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhd.dll
[2010/10/06 21:14:04 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlstrm.sys
[2010/10/06 21:14:03 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlmnt5.sys
[2010/10/06 21:13:55 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstee.sys
[2010/10/06 21:13:53 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys
[2010/10/06 21:13:44 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys
[2010/10/06 21:13:29 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2010/10/06 21:13:25 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys
[2010/10/06 21:13:09 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys
[2010/10/06 21:13:05 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys
[2010/10/06 21:13:04 | 000,051,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2010/10/06 21:12:49 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2010/10/06 21:12:38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2010/10/06 21:12:29 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys
[2010/10/06 21:12:21 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys
[2010/10/06 21:12:13 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys
[2010/10/06 21:12:07 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys
[2010/10/06 21:12:03 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll
[2010/10/06 21:12:00 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys
[2010/10/06 21:11:55 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll
[2010/10/06 21:11:52 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys
[2010/10/06 21:11:47 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2010/10/06 21:11:36 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys
[2010/10/06 21:11:29 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys
[2010/10/06 21:11:25 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll
[2010/10/06 21:11:21 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll
[2010/10/06 21:11:18 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys
[2010/10/06 21:11:17 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys
[2010/10/06 21:11:12 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2010/10/06 21:11:09 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2010/10/06 21:11:08 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys
[2010/10/06 21:11:07 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2010/10/06 21:11:03 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2010/10/06 21:11:02 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2010/10/06 21:10:59 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2010/10/06 21:10:54 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys
[2010/10/06 21:10:49 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2010/10/06 21:10:46 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2010/10/06 21:10:43 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2010/10/06 21:10:37 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2010/10/06 21:10:35 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2010/10/06 21:10:32 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2010/10/06 21:10:29 | 000,090,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kswdmcap.ax
[2010/10/06 21:10:29 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksxbar.ax
[2010/10/06 21:10:29 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2010/10/06 21:10:28 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kstvtune.ax
[2010/10/06 21:10:21 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll
[2010/10/06 21:10:17 | 000,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll
[2010/10/06 21:10:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll
[2010/10/06 21:10:02 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2010/10/06 21:09:49 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys
[2010/10/06 21:09:46 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys
[2010/10/06 21:09:38 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2010/10/06 21:09:36 | 000,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2010/10/06 21:09:35 | 000,087,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys
[2010/10/06 21:09:32 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ipsink.ax
[2010/10/06 21:09:25 | 000,045,632 | ---- | C] (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys
[2010/10/06 21:09:22 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll
[2010/10/06 21:09:19 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys
[2010/10/06 21:09:17 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\intelide.sys
[2010/10/06 21:09:14 | 000,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys
[2010/10/06 21:09:11 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ini910u.sys
[2010/10/06 21:08:41 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2010/10/06 21:08:37 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys
[2010/10/06 21:08:34 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll
[2010/10/06 21:08:31 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll
[2010/10/06 21:08:28 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys
[2010/10/06 21:08:25 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll
[2010/10/06 21:08:23 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll
[2010/10/06 21:08:20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll
[2010/10/06 21:08:17 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys
[2010/10/06 21:08:14 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys
[2010/10/06 21:08:11 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys
[2010/10/06 21:08:05 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys
[2010/10/06 21:08:01 | 000,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll
[2010/10/06 21:07:58 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys
[2010/10/06 21:07:54 | 000,702,845 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\i81xdnt5.dll
[2010/10/06 21:07:54 | 000,161,020 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\i81xnt5.sys
[2010/10/06 21:07:47 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys
[2010/10/06 21:07:41 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll
[2010/10/06 21:07:40 | 000,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omp.sys
[2010/10/06 21:07:39 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys
[2010/10/06 21:07:10 | 000,017,744 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswFsBlk.sys
[2010/10/06 21:07:09 | 000,165,584 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswSP.sys
[2010/10/06 21:07:06 | 000,023,376 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswRdr.sys
[2010/10/06 21:07:03 | 000,046,672 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswTdi.sys
[2010/10/06 21:06:59 | 000,100,176 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon2.sys
[2010/10/06 21:06:59 | 000,094,544 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aswmon.sys
[2010/10/06 21:06:59 | 000,028,880 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\drivers\aavmker4.sys
[2010/10/06 21:06:57 | 001,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfdpsp2.sys
[2010/10/06 21:06:56 | 000,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcxts2.sys
[2010/10/06 21:06:56 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcisp2.dll
[2010/10/06 21:06:55 | 000,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfbs2s2.sys
[2010/10/06 21:06:49 | 000,488,383 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_v124.sys
[2010/10/06 21:06:46 | 000,050,751 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_tone.sys
[2010/10/06 21:06:43 | 000,073,279 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_spkp.sys
[2010/10/06 21:06:40 | 000,044,863 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_soar.sys
[2010/10/06 21:06:37 | 000,057,471 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_samp.sys
[2010/10/06 21:06:34 | 000,542,879 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_msft.sys
[2010/10/06 21:06:31 | 000,391,199 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_k56k.sys
[2010/10/06 21:06:29 | 000,009,759 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_inst.dll
[2010/10/06 21:06:26 | 000,115,807 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fsks.sys
[2010/10/06 21:06:23 | 000,199,711 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_faxx.sys
[2010/10/06 21:06:20 | 000,289,887 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fall.sys
[2010/10/06 21:06:17 | 000,067,167 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_bsc2.sys
[2010/10/06 21:06:14 | 000,150,239 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_amos.sys
[2010/10/06 21:06:07 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hr1w.dll
[2010/10/06 21:06:04 | 000,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpt4qic.sys
[2010/10/06 21:06:02 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpsjmcro.dll
[2010/10/06 21:05:59 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpojwia.dll
[2010/10/06 21:05:56 | 000,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpn.sys
[2010/10/06 21:05:53 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgtmcro.dll
[2010/10/06 21:05:50 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2010/10/06 21:05:45 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt42tk.dll
[2010/10/06 21:05:40 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2010/10/06 21:05:35 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt33tk.dll
[2010/10/06 21:05:24 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt21tk.dll
[2010/10/06 21:05:18 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpdigwia.dll
[2010/10/06 21:05:12 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2010/10/06 21:05:10 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2010/10/06 21:05:09 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2010/10/06 21:05:06 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidgame.sys
[2010/10/06 21:05:05 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbth.sys
[2010/10/06 21:04:59 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbatt.sys
[2010/10/06 21:04:52 | 000,907,456 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hcf_msft.sys
[2010/10/06 21:04:47 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2010/10/06 21:04:44 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys

JasonV · Oct 7, 2010

[2010/10/06 21:04:41 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2010/10/06 21:04:35 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2010/10/06 21:04:34 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2010/10/06 21:04:33 | 000,046,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gagp30kx.sys
[2010/10/06 21:04:31 | 000,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400m.sys
[2010/10/06 21:04:28 | 001,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400d.dll
[2010/10/06 21:04:25 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200m.sys
[2010/10/06 21:04:22 | 000,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200d.dll
[2010/10/06 21:04:20 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2010/10/06 21:04:07 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fuusd.dll
[2010/10/06 21:04:04 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2010/10/06 21:04:02 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2010/10/06 21:03:56 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2010/10/06 21:03:54 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2010/10/06 21:03:52 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2010/10/06 21:03:50 | 000,038,848 | ---- | C] (AVAST Software) -- C:\WINDOWS\avastSS.scr
[2010/10/06 21:03:49 | 000,167,592 | ---- | C] (AVAST Software) -- C:\WINDOWS\System32\aswBoot.exe
[2010/10/06 21:03:47 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2010/10/06 21:03:43 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fnfilter.dll
[2010/10/06 21:03:37 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\dllcache\fetnd5.sys
[2010/10/06 21:03:31 | 000,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\fem556n5.sys
[2010/10/06 21:03:27 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2010/10/06 21:03:24 | 000,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS\System32\dllcache\fa312nd5.sys
[2010/10/06 21:03:22 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2010/10/06 21:03:18 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2010/10/06 21:03:12 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exabyte2.sys
[2010/10/06 21:03:10 | 000,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ex10.sys
[2010/10/06 21:03:06 | 000,000,000 | ---D | C] -- C:\Program Files\Alwil Software
[2010/10/06 21:03:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/10/06 21:03:04 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll
[2010/10/06 21:03:02 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll
[2010/10/06 21:02:59 | 000,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll
[2010/10/06 21:02:53 | 000,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll
[2010/10/06 21:02:52 | 000,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\essm2e.sys
[2010/10/06 21:02:48 | 000,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ess.sys
[2010/10/06 21:02:43 | 000,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56tpi.sys
[2010/10/06 21:02:40 | 000,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56hpi.sys
[2010/10/06 21:02:38 | 000,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56cvmp.sys
[2010/10/06 21:02:36 | 000,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es198x.sys
[2010/10/06 21:02:34 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2010/10/06 21:02:31 | 000,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1371mp.sys
[2010/10/06 21:02:29 | 000,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1370mp.sys
[2010/10/06 21:02:27 | 000,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnloop.exe
[2010/10/06 21:02:25 | 000,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnlogr.exe
[2010/10/06 21:02:23 | 000,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqndiag.exe
[2010/10/06 21:02:21 | 000,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqn.sys
[2010/10/06 21:02:17 | 000,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epstw2k.sys
[2010/10/06 21:02:14 | 000,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\epro4.sys
[2010/10/06 21:02:12 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epcfw2k.sys
[2010/10/06 21:02:11 | 000,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\emu10k1m.sys
[2010/10/06 21:02:06 | 000,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\em556n4.sys
[2010/10/06 21:02:04 | 000,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\elnk3.sys
[2010/10/06 21:02:03 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\elmsmc.sys
[2010/10/06 21:02:02 | 000,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el99xn51.sys
[2010/10/06 21:02:00 | 000,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el98xn5.sys
[2010/10/06 21:01:59 | 000,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS\System32\dllcache\el985n51.sys
[2010/10/06 21:01:58 | 000,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xnd5.sys
[2010/10/06 21:01:56 | 000,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xbc5.sys
[2010/10/06 21:01:55 | 000,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656se5.sys
[2010/10/06 21:01:53 | 000,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656nd5.sys
[2010/10/06 21:01:52 | 000,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656ct5.sys
[2010/10/06 21:01:51 | 000,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656cd5.sys
[2010/10/06 21:01:49 | 000,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el589nd5.sys
[2010/10/06 21:01:48 | 000,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el575nd5.sys
[2010/10/06 21:01:47 | 000,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el574nd4.sys
[2010/10/06 21:01:45 | 000,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el556nd5.sys
[2010/10/06 21:01:44 | 000,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el515.sys
[2010/10/06 21:01:40 | 000,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100isa4.sys
[2010/10/06 21:01:39 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100b325.sys
[2010/10/06 21:01:36 | 000,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e1000nt5.sys
[2010/10/06 21:01:33 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
[2010/10/06 21:01:30 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2010/10/06 21:01:27 | 000,020,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpti2o.sys
[2010/10/06 21:01:25 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2010/10/06 21:01:24 | 000,023,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4usb.sys
[2010/10/06 21:01:23 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4scan.sys
[2010/10/06 21:01:22 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4prt.sys
[2010/10/06 21:01:20 | 000,207,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4.sys
[2010/10/06 21:01:17 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2010/10/06 21:01:16 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlttape.sys
[2010/10/06 21:01:15 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2010/10/06 21:01:14 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2010/10/06 21:01:06 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2010/10/06 21:01:04 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2010/10/06 21:01:01 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2010/10/06 21:01:00 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2010/10/06 21:00:58 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2010/10/06 21:00:57 | 000,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiview.exe
[2010/10/06 21:00:55 | 000,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.sys
[2010/10/06 21:00:54 | 000,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.dll
[2010/10/06 21:00:53 | 000,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.sys
[2010/10/06 21:00:52 | 000,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.dll
[2010/10/06 21:00:50 | 000,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiinf.dll
[2010/10/06 21:00:49 | 000,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digihlc.dll
[2010/10/06 21:00:48 | 000,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifwrk.dll
[2010/10/06 21:00:47 | 000,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifep5.sys
[2010/10/06 21:00:46 | 000,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidxb.sys
[2010/10/06 21:00:44 | 000,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidbp.dll
[2010/10/06 21:00:43 | 000,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.sys
[2010/10/06 21:00:42 | 000,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.dll
[2010/10/06 21:00:40 | 000,419,357 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgconfig.dll
[2010/10/06 21:00:38 | 000,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\dgapci.sys
[2010/10/06 21:00:37 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2010/10/06 21:00:36 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2010/10/06 21:00:35 | 000,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devldr32.exe
[2010/10/06 21:00:33 | 000,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devcon32.dll
[2010/10/06 21:00:32 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2010/10/06 21:00:31 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddsmc.sys
[2010/10/06 21:00:30 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc260usd.dll
[2010/10/06 21:00:28 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc240usd.dll
[2010/10/06 21:00:27 | 000,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\dllcache\dc21x4.sys
[2010/10/06 21:00:26 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210usd.dll
[2010/10/06 21:00:24 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210_32.dll
[2010/10/06 21:00:22 | 000,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dac960nt.sys
[2010/10/06 21:00:20 | 000,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS\System32\dllcache\dac2w2k.sys
[2010/10/06 21:00:18 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\d100ib5.sys
[2010/10/06 21:00:17 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzports.dll
[2010/10/06 21:00:16 | 000,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzport.sys
[2010/10/06 21:00:14 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzcoins.dll
[2010/10/06 21:00:13 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyports.dll
[2010/10/06 21:00:12 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyport.sys
[2010/10/06 21:00:11 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyycoins.dll
[2010/10/06 21:00:10 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclom-y.sys
[2010/10/06 21:00:09 | 000,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclad-z.sys
[2010/10/06 21:00:08 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2010/10/06 21:00:07 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2010/10/06 21:00:06 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2010/10/06 21:00:05 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2010/10/06 21:00:04 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2010/10/06 21:00:03 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2010/10/06 21:00:02 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2010/10/06 21:00:01 | 000,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctwdm32.dll
[2010/10/06 21:00:00 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2010/10/06 20:59:59 | 000,096,256 | ---- | C] (Copyright (C) Creative Technology Ltd. 1994-2001) -- C:\WINDOWS\System32\dllcache\ctlsb16.sys
[2010/10/06 20:59:58 | 000,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctljystk.sys
[2010/10/06 20:59:57 | 000,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctlfacem.sys
[2010/10/06 20:59:56 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csamsp.dll
[2010/10/06 20:59:55 | 000,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\crtaud.sys
[2010/10/06 20:59:54 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2010/10/06 20:59:52 | 000,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys
[2010/10/06 20:59:51 | 000,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\cpqndis5.sys
[2010/10/06 20:59:50 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cpqarray.sys
[2010/10/06 20:59:45 | 000,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\cnxt1803.sys
[2010/10/06 20:59:44 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnusd.dll
[2010/10/06 20:59:43 | 000,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS\System32\dllcache\cmdide.sys
[2010/10/06 20:59:42 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2010/10/06 20:59:40 | 000,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546xm.sys
[2010/10/06 20:59:39 | 000,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546x.dll
[2010/10/06 20:59:38 | 000,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl5465.dll
[2010/10/06 20:59:37 | 000,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.sys
[2010/10/06 20:59:36 | 000,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.dll
[2010/10/06 20:59:35 | 000,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS\System32\dllcache\cinemclc.sys
[2010/10/06 20:59:34 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2010/10/06 20:59:31 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2010/10/06 20:59:30 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\ch7xxnt5.dll
[2010/10/06 20:59:29 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2010/10/06 20:59:28 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2010/10/06 20:59:27 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2010/10/06 20:59:26 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2010/10/06 20:59:24 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2010/10/06 20:59:22 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cd20xrnt.sys
[2010/10/06 20:59:21 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ccdecode.sys
[2010/10/06 20:59:19 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2010/10/06 20:59:19 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2010/10/06 20:59:18 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2010/10/06 20:59:18 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2010/10/06 20:59:16 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2010/10/06 20:59:15 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2010/10/06 20:59:14 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.dll
[2010/10/06 20:59:13 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.ax
[2010/10/06 20:59:12 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.dll
[2010/10/06 20:59:11 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.ax
[2010/10/06 20:59:09 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.dll
[2010/10/06 20:59:09 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.ax
[2010/10/06 20:59:08 | 000,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv30.sys
[2010/10/06 20:59:07 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv21.sys
[2010/10/06 20:59:06 | 000,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdro21.sys
[2010/10/06 20:58:51 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bulltlp3.sys
[2010/10/06 20:58:50 | 000,035,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthprint.sys
[2010/10/06 20:58:50 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthusb.sys
[2010/10/06 20:58:49 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthpan.sys
[2010/10/06 20:58:48 | 000,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthmodem.sys
[2010/10/06 20:58:47 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2010/10/06 20:58:47 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthenum.sys
[2010/10/06 20:58:46 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2010/10/06 20:58:46 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2010/10/06 20:58:45 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2010/10/06 20:58:45 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2010/10/06 20:58:44 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2010/10/06 20:58:43 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2010/10/06 20:58:42 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2010/10/06 20:58:40 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2010/10/06 20:58:40 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2010/10/06 20:58:39 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2010/10/06 20:58:38 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brmfcwia.dll
[2010/10/06 20:58:38 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2010/10/06 20:58:37 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2010/10/06 20:58:37 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2010/10/06 20:58:36 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2010/10/06 20:58:36 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2010/10/06 20:58:35 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2010/10/06 20:58:35 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2010/10/06 20:58:34 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\binlsvc.dll
[2010/10/06 20:58:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2010/10/06 20:58:33 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2010/10/06 20:58:32 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2010/10/06 20:58:32 | 000,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm4e5.sys
[2010/10/06 20:58:31 | 000,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42u.sys
[2010/10/06 20:58:31 | 000,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42xx5.sys
[2010/10/06 20:58:30 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2010/10/06 20:58:29 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2010/10/06 20:58:29 | 000,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2010/10/06 20:58:28 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2010/10/06 20:58:27 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2010/10/06 20:58:27 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2010/10/06 20:58:26 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2010/10/06 20:58:26 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2010/10/06 20:58:25 | 000,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcaudio.sys
[2010/10/06 20:58:25 | 000,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcstrm.sys
[2010/10/06 20:58:24 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avc.sys
[2010/10/06 20:58:22 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\atv10nt5.dll
[2010/10/06 20:58:22 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\atv06nt5.dll
[2010/10/06 20:58:21 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\atv04nt5.dll
[2010/10/06 20:58:21 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\atv01nt5.dll
[2010/10/06 20:58:21 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\atv02nt5.dll
[2010/10/06 20:58:18 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativtmxx.dll
[2010/10/06 20:58:18 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativmvxx.ax
[2010/10/06 20:58:17 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativdaxx.ax
[2010/10/06 20:58:15 | 000,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiraged.dll
[2010/10/06 20:58:15 | 000,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiragem.sys
[2010/10/06 20:58:14 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxsxx.sys
[2010/10/06 20:58:13 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxbxx.sys
[2010/10/06 20:58:12 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atintuxx.sys
[2010/10/06 20:58:11 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinsnxx.sys
[2010/10/06 20:58:11 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinttxx.sys
[2010/10/06 20:58:10 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinrvxx.sys
[2010/10/06 20:58:09 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinraxx.sys
[2010/10/06 20:58:08 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinpdxx.sys
[2010/10/06 20:58:08 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinmdxx.sys
[2010/10/06 20:58:07 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinbtxx.sys
[2010/10/06 20:58:06 | 000,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpab.sys
[2010/10/06 20:58:06 | 000,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimtai.sys
[2010/10/06 20:58:06 | 000,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpae.sys
[2010/10/06 20:58:05 | 000,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidvai.dll
[2010/10/06 20:58:05 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atievxx.exe
[2010/10/06 20:58:04 | 000,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrab.dll
[2010/10/06 20:58:04 | 000,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrae.dll
[2010/10/06 20:58:03 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\dllcache\ati3d1ag.dll
[2010/10/06 20:58:02 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtaa.sys
[2010/10/06 20:58:01 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvaa.dll
[2010/10/06 20:58:01 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xsxx.sys
[2010/10/06 20:58:00 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xbxx.sys
[2010/10/06 20:57:59 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1tuxx.sys
[2010/10/06 20:57:58 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1ttxx.sys
[2010/10/06 20:57:57 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1rvxx.sys
[2010/10/06 20:57:57 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1snxx.sys
[2010/10/06 20:57:56 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1raxx.sys
[2010/10/06 20:57:55 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1pdxx.sys
[2010/10/06 20:57:54 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1btxx.sys
[2010/10/06 20:57:54 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1mdxx.sys
[2010/10/06 20:57:53 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ati.dll
[2010/10/06 20:57:53 | 000,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys
[2010/10/06 20:57:52 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2010/10/06 20:57:51 | 000,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc3550.sys
[2010/10/06 20:57:50 | 000,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc.sys
[2010/10/06 20:57:50 | 000,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asc3350p.sys
[2010/10/06 20:57:48 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\apmbatt.sys
[2010/10/06 20:57:47 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS\System32\dllcache\an983.sys
[2010/10/06 20:57:47 | 000,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\amsint.sys
[2010/10/06 20:57:46 | 000,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\dllcache\amdagp.sys
[2010/10/06 20:57:46 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2010/10/06 20:57:45 | 000,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\alim1541.sys
[2010/10/06 20:57:45 | 000,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\aliide.sys
[2010/10/06 20:57:44 | 000,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ali5261.sys
[2010/10/06 20:57:44 | 000,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\alifir.sys
[2010/10/06 20:57:43 | 000,056,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78xx.sys
[2010/10/06 20:57:43 | 000,055,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78u2.sys
[2010/10/06 20:57:42 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aha154x.sys
[2010/10/06 20:57:40 | 000,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agpcpq.sys
[2010/10/06 20:57:39 | 000,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agp440.sys
[2010/10/06 20:57:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax
[2010/10/06 20:57:38 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv11nt5.dll
[2010/10/06 20:57:37 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv09nt5.dll
[2010/10/06 20:57:37 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv07nt5.dll
[2010/10/06 20:57:37 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv05nt5.dll
[2010/10/06 20:57:37 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv08nt5.dll
[2010/10/06 20:57:36 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv01nt5.dll
[2010/10/06 20:57:36 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\adv02nt5.dll
[2010/10/06 20:57:35 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adpu160m.sys
[2010/10/06 20:57:34 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2010/10/06 20:57:32 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2010/10/06 20:57:30 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2010/10/06 20:57:29 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2010/10/06 20:57:29 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2010/10/06 20:57:29 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys
[2010/10/06 20:57:28 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys
[2010/10/06 20:56:15 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2010/10/06 20:56:14 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys
[2010/10/06 20:56:13 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys
[2010/10/06 20:56:13 | 000,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ac97intc.sys
[2010/10/06 20:56:12 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys
[2010/10/06 20:56:12 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys
[2010/10/06 20:56:11 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2010/10/06 20:56:11 | 000,098,304 | ---- | C] (Aureal Semiconductor) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2010/10/06 20:56:11 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll
[2010/10/06 20:56:09 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys
[2010/10/06 20:56:06 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2010/10/06 20:56:06 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys
[2010/10/06 20:56:05 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2010/10/06 20:56:05 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2010/10/06 20:56:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys
[2010/10/04 18:34:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/10/04 18:18:03 | 000,000,000 | ---D | C] -- C:\cf
[2010/10/04 17:53:39 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010/10/04 17:12:07 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010/10/04 17:12:07 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010/10/04 17:12:07 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010/10/04 17:12:07 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010/10/04 17:11:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/10/04 17:11:24 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010/10/02 01:08:48 | 000,000,000 | ---D | C] -- C:\spoolerlogs
[2010/10/02 00:58:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jason\Desktop\MRS
[2010/10/01 18:37:20 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2010/10/01 18:37:18 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2010/10/01 03:09:15 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll
[2010/09/30 19:11:55 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010/09/30 15:51:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010/09/30 14:07:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Application Data\Adobe
[2010/09/30 13:00:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jason\Desktop\Anti
[2010/09/30 11:49:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Jason\Local Settings\Application Data\PCHealth
[2010/09/30 11:49:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\PCHealth

========== Files - Modified Within 30 Days ==========

[2010/10/07 11:44:30 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010/10/07 11:44:30 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010/10/07 11:44:30 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010/10/07 11:44:29 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2010/10/07 11:44:29 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010/10/07 11:33:58 | 000,000,825 | -HS- | M] () -- C:\hpqp.ini
[2010/10/06 22:31:23 | 000,521,942 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010/10/06 22:31:23 | 000,441,692 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010/10/06 22:31:23 | 000,071,462 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010/10/06 22:27:08 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/10/06 22:26:30 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/10/06 22:26:25 | 000,000,039 | ---- | M] () -- C:\XP_TV.ini
[2010/10/06 22:26:17 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/10/06 22:26:09 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/10/06 22:26:07 | 1071,894,528 | -HS- | M] () -- C:\hiberfil.sys
[2010/10/06 22:25:08 | 002,359,296 | -H-- | M] () -- C:\Documents and Settings\Jason\NTUSER.DAT
[2010/10/06 22:25:08 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Jason\ntuser.ini
[2010/10/06 21:07:00 | 000,002,626 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010/10/06 15:55:00 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/10/05 15:09:55 | 005,887,158 | -H-- | M] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\IconCache.db
[2010/10/04 17:53:47 | 000,000,325 | RHS- | M] () -- C:\boot.ini
[2010/09/30 21:16:01 | 000,000,663 | ---- | M] () -- C:\Documents and Settings\Jason\Application Data\Microsoft\Internet Explorer\Quick Launch\HP Rhapsody.lnk
[2010/09/30 19:32:13 | 000,000,647 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/09/30 19:32:13 | 000,000,209 | ---- | M] () -- C:\Boot.bak
[2010/09/30 12:35:46 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\housecall.guid.cache
[2010/09/30 11:47:13 | 000,031,232 | ---- | M] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

========== Files Created - No Company Name ==========

[2010/10/06 21:38:58 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2010/10/06 21:38:54 | 000,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2010/10/06 21:08:53 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ieencode.dll
[2010/10/06 21:05:48 | 000,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2010/10/06 21:05:42 | 000,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2010/10/06 21:05:37 | 000,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2010/10/06 21:05:29 | 000,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2010/10/06 21:05:21 | 000,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2010/10/06 21:01:13 | 000,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2010/10/06 21:01:11 | 000,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2010/10/06 21:01:09 | 000,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2010/10/06 20:58:19 | 000,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2010/10/06 20:58:19 | 000,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2010/10/06 20:58:18 | 000,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2010/10/06 20:58:18 | 000,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2010/10/06 20:58:17 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2010/10/06 20:58:16 | 000,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2010/10/06 20:58:16 | 000,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2010/10/06 20:58:16 | 000,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2010/10/06 20:58:14 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2010/10/06 20:58:03 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2010/10/04 17:53:47 | 000,000,209 | ---- | C] () -- C:\Boot.bak
[2010/10/04 17:53:43 | 000,260,272 | RHS- | C] () -- C:\cmldr
[2010/10/04 17:12:07 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010/10/04 17:12:07 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010/10/04 17:12:07 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010/10/04 17:12:07 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/10/04 17:12:07 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010/10/01 19:31:06 | 1071,894,528 | -HS- | C] () -- C:\hiberfil.sys
[2010/09/30 19:32:12 | 000,001,725 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Microsoft Office.lnk
[2010/09/30 12:35:46 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\housecall.guid.cache
[2010/07/15 02:39:56 | 000,000,056 | ---- | C] () -- C:\WINDOWS\kgt2k.INI
[2010/04/04 06:38:39 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2010/04/03 10:45:32 | 000,819,200 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/04/03 10:45:32 | 000,180,224 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/03/31 16:49:51 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/03/30 14:36:32 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\fusioncache.dat
[2010/03/30 14:15:46 | 000,000,056 | ---- | C] () -- C:\WINDOWS\WININIT.INI
[2010/03/30 14:12:04 | 000,000,166 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2010/03/30 14:01:32 | 000,028,836 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2010/03/30 13:53:55 | 000,001,483 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2007/04/02 19:18:36 | 000,039,518 | ---- | C] () -- C:\WINDOWS\System32\dhchs.ini
[2007/03/20 19:00:42 | 000,044,561 | ---- | C] () -- C:\WINDOWS\System32\dheng.ini
[2006/12/04 09:25:36 | 000,112,128 | ---- | C] () -- C:\WINDOWS\System32\decode.dll
[2006/11/29 09:04:42 | 000,038,853 | ---- | C] () -- C:\WINDOWS\System32\dhitalian.ini
[2006/11/24 09:18:10 | 000,051,456 | ---- | C] () -- C:\WINDOWS\System32\dhjapanese.ini
[2006/11/24 08:36:26 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\render.dll
[2006/11/21 20:29:44 | 000,029,396 | ---- | C] () -- C:\WINDOWS\System32\dhcht.ini
[2006/08/30 16:02:26 | 000,114,688 | ---- | C] () -- C:\WINDOWS\System32\dllh264.dll
[2006/07/28 17:46:26 | 000,033,751 | ---- | C] () -- C:\WINDOWS\System32\dhrussian.ini
[2006/04/05 13:52:56 | 000,067,072 | ---- | C] () -- C:\WINDOWS\System32\AudioRecord.dll
[2006/04/05 13:52:54 | 000,015,872 | ---- | C] () -- C:\WINDOWS\System32\ConfigManage.dll
[2006/04/05 13:52:48 | 000,075,776 | ---- | C] () -- C:\WINDOWS\System32\avcodec.dll
[2005/12/02 06:09:10 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2005/08/05 15:01:54 | 000,239,104 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2005/07/01 12:46:08 | 000,021,507 | ---- | C] () -- C:\WINDOWS\System32\dhgerman.ini
[2005/06/21 10:29:20 | 000,045,514 | ---- | C] () -- C:\WINDOWS\System32\dhfrench.ini
[2004/10/14 13:05:08 | 000,020,691 | ---- | C] () -- C:\WINDOWS\System32\dhspanish.ini
[2004/08/10 16:00:00 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys

========== LOP Check ==========

[2010/10/06 21:03:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Alwil Software
[2010/08/18 00:27:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\DKOptimize
[2010/03/30 14:07:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\muvee Technologies
[2010/04/02 02:33:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\NexonUS
[2010/04/02 02:14:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\PMB Files
[2010/04/20 14:26:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jason\Application Data\gtk-2.0
[2010/04/30 15:04:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jason\Application Data\Leadertech
[2010/04/12 23:13:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jason\Application Data\Nexon
[2010/04/23 16:09:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jason\Application Data\OxelonMC
[2010/04/12 18:01:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Jason\Application Data\TeamViewer

========== Purity Check ==========

========== Custom Scans ==========

< %SYSTEMDRIVE%\*.exe >

< MD5 for: AGP440.SYS >
[2004/08/10 16:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2008/04/13 14:36:38 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\agp440.sys
[2004/08/03 23:07:42 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys

< MD5 for: ATAPI.SYS >
[2004/08/10 16:00:00 | 016,971,599 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008/04/13 14:40:30 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\atapi.sys
[2004/08/10 16:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2004/08/10 16:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004/08/10 16:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: EVENTLOG.DLL >
[2008/04/13 20:11:53 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=6D4FEB43EE538FC5428CC7F0565AA656 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\eventlog.dll
[2004/08/10 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2004/08/10 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004/08/10 16:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: NETLOGON.DLL >
[2008/04/13 20:12:01 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=1B7F071C51B77C272875C3A23E1E4550 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\netlogon.dll
[2009/02/06 14:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\$NtUninstallKB975467$\netlogon.dll
[2009/02/06 14:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2009/02/06 14:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2009/02/06 14:46:09 | 000,408,064 | ---- | M] (Microsoft Corporation) MD5=6C476D33D82F1054849790181E8F7772 -- C:\WINDOWS\system32\netlogon.dll
[2004/08/10 16:00:00 | 000,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\$NtUninstallKB968389$\netlogon.dll

< MD5 for: SCECLI.DLL >
[2004/08/10 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2004/08/10 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004/08/10 16:00:00 | 000,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll
[2008/04/13 20:12:05 | 000,181,248 | ---- | M] (Microsoft Corporation) MD5=A86BB5E61BF3E39B62AB4C7E7085A084 -- C:\WINDOWS\SoftwareDistribution\Download\9866fb57abdc0ea2f5d4e132d055ba4e\scecli.dll

< %systemroot%\*. /mp /s >

< %systemroot%\system32\*.dll /lockedfiles >
[2004/08/10 16:00:00 | 001,251,840 | ---- | M] (Microsoft Corporation) Unable to obtain MD5 -- C:\WINDOWS\system32\comsvcs.dll

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\system32\drivers\*.sys /lockedfiles >
< End of report >

JasonV · Oct 7, 2010

OTL Extras logfile created on: 10/7/2010 11:47:38 AM - Run 1
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Documents and Settings\Jason\Desktop\MRS
Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1,022.00 Mb Total Physical Memory | 594.00 Mb Available Physical Memory | 58.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 88.00% Paging File free
Paging file location(s): C:\pagefile.sys 1536 3072 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 93.15 Gb Total Space | 62.79 Gb Free Space | 67.41% Space Free | Partition Type: NTFS
Drive D: | 763.61 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: JASON-480B17D19
Current User Name: Jason
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"57474:TCP" = 57474:TCP:*:Enabledando Media Booster
"57474:UDP" = 57474:UDP:*:Enabledando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabledxpsp2res.dll,-22007
"57474:TCP" = 57474:TCP:*:Enabledando Media Booster
"57474:UDP" = 57474:UDP:*:Enabledando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabledando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe" = C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call -- (Microsoft Corporation)
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabledando Media Booster -- ()
"C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe" = C:\Documents and Settings\All Users\Application Data\NexonUS\NGM\NGM.exe:*:Enabled:Nexon Game Manager -- (Nexon)
"C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe" = C:\WINDOWS\pchealth\helpctr\binaries\HelpCtr.exe:*:Enabled:Remote Assistance - Windows Messenger and Voice -- (Microsoft Corporation)

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00020409-78E1-11D2-B60F-006097C998E7}" = Microsoft Office 2000 SR-1 Standard
"{075473F5-846A-448B-BCB3-104AA1760205}" = Sonic Data Module
"{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}" = Windows Live ID Sign-in Assistant
"{09D8492A-C8E2-421E-927D-46800FB327A3}" = Wireless Home Network Setup
"{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
"{178832DE-9DE0-4C87-9F82-9315A9B03985}" = Windows Live Writer
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{205C6BDD-7B73-42DE-8505-9A093F35A238}" = Windows Live Upload Tool
"{21657574-BD54-48A2-9450-EB03B2C7FC29}" = Sonic MyDVD Plus
"{22B775E7-6C42-4FC5-8E10-9A5E3257BD94}" = MSVCRT
"{24BEBF2E-73F3-4599-840B-EDC612CCDD0D}" = Destinations
"{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21
"{2818095F-FB6C-42C8-827E-0A406CC9AFF5}" = Quicken 2006
"{286F29AF-0BE2-4D5F-AB17-B7631A810553}" = muvee autoProducer 4.5
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Sonic Update Manager
"{34F3FCF1-817B-4D61-B6AF-19D9486AFEA0}" = Unload
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4302B2DD-D958-40E3-BAF3-B07FFE1978CE}" = HP Wireless Assistant 2.00 C1
"{43DCF766-6838-4F9A-8C91-D92DA586DFA8}" = Microsoft Windows Journal Viewer
"{45D707E9-F3C4-11D9-A373-0050BAE317E1}" = HP QuickPlay 2.0
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Sonic Express Labeler
"{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = TIPCI
"{7F2F3F8B-2D57-48A3-99D0-1AC23D594C89}" = LightScribe 1.4.56.1
"{81128EE8-8EAD-4DB0-85C6-17C2CE50FF71}" = Windows Live Essentials
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{94FB906A-CF42-4128-A509-D353026A607E}" = REALTEK Gigabit and Fast Ethernet NIC Driver
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{A1F66FC9-11EE-4F2F-98C9-16F8D1E69FB7}" = Segoe UI
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A85FD55B-891B-4314-97A5-EA96C0BD80B5}" = Windows Live Messenger
"{A93C4E94-1005-489D-BEAA-B873C1AA6CFC}" = HP Help and Support
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AB708C9B-97C8-4AC9-899B-DBF226AC9382}" = Sonic Audio Module
"{AC76BA86-7AD7-1033-7B44-A00000000001}" = Adobe Reader 6.0.1
"{B12665F4-4E93-4AB4-B7FC-37053B524629}" = Sonic Copy Module
"{BB85ED9C-AFC9-43BD-B8DC-258C3C7DF72E}" = HP Software Update
"{BC96BBA7-C634-460E-AD18-A0A994213F80}" = HP User Guides--System Recovery
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEB326EC-8F40-47B2-BA22-BB092565D66F}" = Quick Launch Buttons 5.20 G1
"{D17A2FDC-5C16-439C-A0E1-FF350079447E}" = HP User Guides 0026
"{ED00D08A-3C5F-488D-93A0-A04F21F23956}" = Windows Live Communications Platform
"{F0E12BBA-AD66-4022-A453-A1C8A0C4D570}" = Microsoft Choice Guard
"{F6BD194C-4190-4D73-B1B1-C48C99921BFE}" = Windows Live Call
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"All ATI Software" = ATI - Software Uninstall Utility
"ATI Display Driver" = ATI Display Driver
"avast5" = avast! Free Antivirus
"Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter
"CNXT_AUDIO" = Conexant AC-Link Audio
"CNXT_MODEM_PCI_VEN_1002&DEV_4378" = Soft Data Fax Modem with SmartCP
"DivX Setup.divx.com" = DivX Setup
"Game Booster_is1" = Game Booster
"HP Imaging Device Functions" = HP Imaging Device Functions 6.0
"HP Rhapsody" = HP Rhapsody
"ie8" = Windows Internet Explorer 8
"InstallShield_{7B6CF9EB-CB2B-4A1A-81A9-BE1A9044690A}" = Texas Instruments PCIxx21/x515/xx12 drivers.
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"MapleStory" = MapleStory
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Oxelon Media Converter_is1" = Oxelon Media Converter 1.1
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 1.0.1
"Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
"WIC" = Windows Imaging Component
"Windows Media Format Runtime" = Windows Media Format Runtime
"WinGimp-2.0_is1" = GIMP 2.6.8
"WinLiveSuite_Wave3" = Windows Live Essentials
"WinRAR archiver" = WinRAR archiver
"Xvid_is1" = Xvid 1.2.2 final uninstall

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 5/12/2035 7:23:34 PM | Computer Name = JASON-480B17D19 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 5/12/2035 7:23:34 PM | Computer Name = JASON-480B17D19 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 5/12/2035 7:23:34 PM | Computer Name = JASON-480B17D19 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 5/12/2035 7:23:34 PM | Computer Name = JASON-480B17D19 | Source = crypt32 | ID = 131083
Description = Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>
with error: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file.

Error - 6/12/2010 8:37:55 PM | Computer Name = JASON-480B17D19 | Source = Application Error | ID = 1000
Description = Faulting application rundll32.exe, version 5.1.2600.2180, faulting
module unknown, version 0.0.0.0, fault address 0x715b9d8b.

Error - 6/12/2010 8:40:48 PM | Computer Name = JASON-480B17D19 | Source = Application Error | ID = 1000
Description = Faulting application rundll32.exe, version 5.1.2600.2180, faulting
module unknown, version 0.0.0.0, fault address 0x715b9d8b.

Error - 6/12/2010 8:46:22 PM | Computer Name = JASON-480B17D19 | Source = Application Hang | ID = 1002
Description = Hanging application iexplore.exe, version 8.0.6001.18702, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 6/12/2010 9:04:38 PM | Computer Name = JASON-480B17D19 | Source = Application Error | ID = 1000
Description = Faulting application rundll32.exe, version 5.1.2600.2180, faulting
module unknown, version 0.0.0.0, fault address 0x715b9d8b.

Error - 6/12/2010 9:15:23 PM | Computer Name = JASON-480B17D19 | Source = Application Error | ID = 1000
Description = Faulting application rundll32.exe, version 5.1.2600.2180, faulting
module unknown, version 0.0.0.0, fault address 0x715b9d8b.

Error - 6/12/2010 11:48:22 PM | Computer Name = JASON-480B17D19 | Source = Application Error | ID = 1000
Description = Faulting application rundll32.exe, version 5.1.2600.2180, faulting
module unknown, version 0.0.0.0, fault address 0x715b9d8b.

[ System Events ]
Error - 10/3/2010 10:22:52 PM | Computer Name = JASON-480B17D19 | Source = Ftdisk | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 10/3/2010 10:22:52 PM | Computer Name = JASON-480B17D19 | Source = Ftdisk | ID = 262193
Description = Configuring the Page file for crash dump failed. Make sure there is
a page file on the boot partition and that is large enough to contain all physical
memory.

Error - 10/3/2010 10:22:58 PM | Computer Name = JASON-480B17D19 | Source = Service Control Manager | ID = 7000
Description = The npkcrypt service failed to start due to the following error: %%3

Error - 10/4/2010 1:21:49 PM | Computer Name = JASON-480B17D19 | Source = Ftdisk | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 10/6/2010 3:55:18 PM | Computer Name = JASON-480B17D19 | Source = Ftdisk | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 10/6/2010 3:55:18 PM | Computer Name = JASON-480B17D19 | Source = Ftdisk | ID = 262193
Description = Configuring the Page file for crash dump failed. Make sure there is
a page file on the boot partition and that is large enough to contain all physical
memory.

Error - 10/6/2010 3:55:37 PM | Computer Name = JASON-480B17D19 | Source = Service Control Manager | ID = 7000
Description = The npkcrypt service failed to start due to the following error: %%3

Error - 10/6/2010 3:57:40 PM | Computer Name = JASON-480B17D19 | Source = Ftdisk | ID = 262189
Description = The system could not sucessfully load the crash dump driver.

Error - 10/6/2010 3:57:47 PM | Computer Name = JASON-480B17D19 | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070003: Security Update for Windows XP (KB973904).

Error - 10/7/2010 11:34:36 AM | Computer Name = JASON-480B17D19 | Source = Windows Update Agent | ID = 20
Description = Installation Failure: Windows failed to install the following update
with error 0x80070003: Security Update for Windows XP (KB973904).

< End of report >

starbuck · Feb 3, 2014

Hi Jason,

Not much to do here this time.

Step 1
Double click on OTL.exe to run it.
Copy the lines in bold below. (make sure that :Otl is on the first line )

:Otl
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
[2010/03/31 16:49:51 | 000,031,232 | ---- | C] () -- C:\Documents and Settings\Jason\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini

:commands
[emptytemp]
[purity]
[RESETHOSTS]
[EMPTYFLASH]

Return to OTL,

right click in the Custom Scans/Fixes window (under the blue bar) and choose Paste.

Click the red Run Fix button.

OTL will reboot your system once the fix has completed.

After the reboot, you may need to double click OTL to launch the program and retrieve the log.

Copy and paste the contents of the OTL log that comes up after the fix in your next reply.

if you lose the report, there will be a copy here:
C:\_OTL\MovedFiles

Step 2
Let's see if MBAM will update and run now.

Start MBAM
Click on the Update tab

Click Check for Updates

If it says that MBAM needs to close to update it... let it close and then restart.
Then click the Scan button.

Don't forget:

When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".

Click OK to close the message box and continue with the removal process.

Back at the main Scanner screen, click on the Show Results button to see a list of any malware that was found.

Make sure that everything is checked, and click Remove Selected.

When removal is completed, a log report will open in Notepad and you may be prompted to restart your computer. (see Note below)

The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.

Copy and paste the contents of that report in your next reply and exit MBAM.

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts. Click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.
Click to expand...

In your next reply, please submit:
Otl fix report
MBAM scan report

Thanks.

JasonV · Oct 8, 2010

OTL report:

All processes killed
========== OTL ==========
Starting removal of ActiveX control {E2883E8F-472F-4FB0-9522-AC9BF37916A7}
C:\WINDOWS\Downloaded Program Files\gp.inf not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E2883E8F-472F-4FB0-9522-AC9BF37916A7}\ not found.
C:\Documents and Settings\Jason\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Jason
->Temp folder emptied: 1376652 bytes
->Temporary Internet Files folder emptied: 4191365 bytes
->Java cache emptied: 0 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 2964 bytes

User: LocalService
->Temp folder emptied: 65536 bytes
->Temporary Internet Files folder emptied: 49286 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32835 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 16062240 bytes

Total Files Cleaned = 21.00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

[EMPTYFLASH]

User: All Users

User: Default User

User: Jason
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0.00 mb

OTL by OldTimer - Version 3.2.14.1 log created on 10082010_155800

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Jason\Local Settings\Temp\~DF749A.tmp not found!
File\Folder C:\Documents and Settings\Jason\Local Settings\Temp\~DFBD0B.tmp not found!
C:\Documents and Settings\Jason\Local Settings\Temporary Internet Files\Content.IE5\YRA4E5MD\xd_proxy[1].htm moved successfully.
C:\Documents and Settings\Jason\Local Settings\Temporary Internet Files\Content.IE5\W26XMCG2\36234-malware-removal-help[1].htm moved successfully.
C:\Documents and Settings\Jason\Local Settings\Temporary Internet Files\Content.IE5\OFJ609L3\like[1].htm moved successfully.
C:\Documents and Settings\Jason\Local Settings\Temporary Internet Files\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.
File move failed. C:\WINDOWS\temp\_avast5_\Webshlock.txt scheduled to be moved on reboot.

Registry entries deleted on Reboot...

Log in or Sign up

Malware Removal Help

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

JasonV Registered Members

JasonV Registered Members

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

JasonV Registered Members

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

Share This Page

Log in or Sign up

Malware Removal Help

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

JasonV Registered Members

JasonV Registered Members

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

JasonV Registered Members

JasonV Registered Members

starbuck Rest In Peace Pete Administrator

JasonV Registered Members

Share This Page

Useful Searches