Ran combo fix here is my log
ComboFix 08-03-10.1 - jeremy 2008-03-13 18:50:51.7 - NTFSx86
Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.168 [GMT -6:00]
Running from: C:\Documents and Settings\jeremy\Desktop\ComboFix.exe
Command switches used :: C:\Documents and Settings\jeremy\Desktop\CFScript.txt
* Created a new restore point
FILE ::
C:\4k4onx.exe
C:\Documents and Settings\jeremy\Application Data\
0047d37d8c764c706005a74ee70cd54de51e81c1e71ee48e27.dat
C:\o8oacq.exe
C:\Program Files\Messenger\hoqexic555077.dll
C:\Program Files\Windows NT\lacurydyw157.dll
C:\WINDOWS\didduid.ini
C:\WINDOWS\egtphbks
C:\WINDOWS\jilcrofe.dll
C:\WINDOWS\nzIqC3ilom.exe
C:\WINDOWS\ss245sd.exe
C:\WINDOWS\svqncdwd.exe
C:\WINDOWS\System32\ijrnip.dll
C:\WINDOWS\system32\L44FC.tmp
C:\WINDOWS\system32\L5C9B.tmp
C:\WINDOWS\system32\L6D99.tmp
C:\WINDOWS\system32\L736F.tmp
C:\WINDOWS\system32\L7B45.tmp
C:\WINDOWS\system32\LA2A4.tmp
C:\WINDOWS\system32\mgmrwmrv.exe
C:\WINDOWS\tslulydq.exe
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
C:\4k4onx.exe
C:\Documents and Settings\jeremy\Application Data\
0047d37d8c764c706005a74ee70cd54de51e81c1e71ee48e27.dat
C:\o8oacq.exe
C:\WINDOWS\180ax.exe
C:\WINDOWS\bjam.dll
C:\WINDOWS\bokja.exe
C:\WINDOWS\jilcrofe.dll
C:\WINDOWS\mspphe.dll
C:\WINDOWS\nzIqC3ilom.exe
C:\WINDOWS\saiemod.dll
C:\WINDOWS\salm.exe
C:\WINDOWS\ss245sd.exe
C:\WINDOWS\svqncdwd.exe
C:\WINDOWS\swin32.dll
C:\WINDOWS\system32\L44FC.tmp
C:\WINDOWS\system32\L5C9B.tmp
C:\WINDOWS\system32\L6D99.tmp
C:\WINDOWS\system32\L736F.tmp
C:\WINDOWS\system32\L7B45.tmp
C:\WINDOWS\system32\LA2A4.tmp
C:\WINDOWS\system32\wer8274.dll
C:\WINDOWS\tslulydq.exe
C:\WINDOWS\voiceip.dll
.
((((((((((((((((((((((((( Files Created from 2008-02-14 to 2008-03-14 )))))))))))))))))))))))))))))))
.
2008-03-12 20:52 . 2004-03-29 19:48 593,408 --a------ C:\WINDOWS\system32\h323msp.dll
2008-03-12 20:52 . 2004-03-10 11:59 593,408 -----c--- C:\WINDOWS\system32\dllcache\xpsp2res.dll
2008-03-12 20:52 . 2004-03-29 19:48 548,352 --a------ C:\WINDOWS\system32\rtcdll.dll
2008-03-12 20:52 . 2004-03-29 19:48 439,808 --a------ C:\WINDOWS\system32\ipnathlp.dll
2008-03-12 20:52 . 2004-03-29 19:48 253,440 --a------ C:\WINDOWS\system32\h323.tsp
2008-03-12 20:52 . 2004-03-29 19:48 40,960 -----c--- C:\WINDOWS\system32\dllcache\evtgprov.dll
2008-03-12 18:26 . 2008-03-12 18:26 <DIR> d-------- C:\Program Files\MySpace
2008-03-12 18:26 . 2008-03-12 18:26 <DIR> d-------- C:\Documents and Settings\jeremy\Application Data\MySpace
2008-03-11 21:06 . 2008-03-11 21:06 2,964 --a------ C:\WINDOWS\system32\tmp.reg
2008-03-11 20:34 . 2008-03-11 20:34 <DIR> d-------- C:\Program Files\Enigma Software Group
2008-03-11 20:07 . 2008-03-11 20:07 1,158 --a------ C:\WINDOWS\mozver.dat
2008-03-11 18:25 . 2008-03-11 18:39 <DIR> d-a------ C:\Documents and Settings\All Users\Application Data\TEMP
2008-03-10 19:30 . 2008-03-11 21:16 <DIR> d-------- C:\Program Files\Spybot - Search & Destroy
2008-03-10 19:30 . 2008-03-11 22:36 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-03-10 18:36 . 2008-03-10 18:36 <DIR> d-------- C:\Program Files\Lavasoft
2008-03-10 18:36 . 2008-03-10 18:38 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Lavasoft
2008-03-10 17:18 . 2008-03-10 17:18 <DIR> d-------- C:\Program Files\Alwil Software
2008-03-09 16:18 . 2005-10-20 16:33 991,232 --a------ C:\WINDOWS\system32\esent.dll
2008-03-09 16:14 . 2006-05-14 03:13 364,544 --a------ C:\WINDOWS\system32\ipsmsnap.dll
2008-03-09 16:13 . 2006-07-21 02:30 72,704 -----c--- C:\WINDOWS\system32\dllcache\hlink.dll
2008-03-09 16:07 . 2006-03-16 18:49 25,600 --------- C:\WINDOWS\system32\verclsid.exe
2008-03-09 16:06 . 2006-03-01 13:44 83,456 --a------ C:\WINDOWS\system32\mtxoci.dll
2008-03-09 16:06 . 2006-03-01 13:44 64,512 --a------ C:\WINDOWS\system32\mtxclu.dll
2008-03-09 16:02 . 2008-03-09 16:02 <DIR> d-------- C:\WINDOWS\system32\bits
2008-03-09 16:01 . 2008-03-12 20:56 <DIR> d--h----- C:\WINDOWS\$hf_mig$
2008-03-09 16:01 . 2005-06-28 09:21 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2008-03-09 15:39 . 2006-06-26 11:47 140,288 -----c--- C:\WINDOWS\system32\dllcache\dnsapi.dll
2008-03-09 15:39 . 2006-06-26 11:47 6,144 -----c--- C:\WINDOWS\system32\dllcache\rasadhlp.dll
2008-03-09 14:26 . 2006-07-14 09:53 307,200 -----c--- C:\WINDOWS\system32\dllcache\netapi32.dll
2008-03-09 14:26 . 2005-06-10 17:55 53,248 --a------ C:\WINDOWS\system32\spoolsv.exe
2008-03-09 14:25 . 2008-03-09 14:25 <DIR> d-------- C:\Program Files\Sysmnt
2008-03-09 14:25 . 2008-03-09 14:25 <DIR> d-------- C:\Program Files\stc
2008-03-09 00:02 . 2008-03-09 00:00 13,824 --a------ C:\Documents and Settings\jeremy\Application Data\kslyx.exe
2008-03-09 00:00 . 2008-03-12 20:14 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Rabio
2008-03-08 23:56 . 2008-03-08 23:56 <DIR> d-------- C:\WINDOWS\egtphbks
2008-03-08 23:55 . 2008-03-08 23:57 <DIR> d-------- C:\Program Files\Bat
2008-03-08 14:57 . 2002-08-29 03:41 150,528 --a------ C:\WINDOWS\system32\ptpusd.dll
2008-03-08 14:57 . 2001-08-17 22:36 5,632 --a------ C:\WINDOWS\system32\ptpusb.dll
2008-03-07 22:20 . 2008-03-07 22:20 <DIR> d-------- C:\Documents and Settings\jeremy\Application Data\Talkback
2008-03-07 22:10 . 2004-07-01 16:08 331,776 --a------ C:\WINDOWS\system32\winhttp.dll
2008-03-07 22:10 . 2004-07-01 16:08 17,408 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2008-03-07 22:10 . 2004-07-01 16:08 7,680 -----c--- C:\WINDOWS\system32\dllcache\bitsprx2.dll
2008-03-07 22:10 . 2004-07-01 16:08 7,680 --------- C:\WINDOWS\system32\bitsprx2.dll
2008-03-07 22:10 . 2004-07-01 16:08 7,168 -----c--- C:\WINDOWS\system32\dllcache\bitsprx3.dll
2008-03-07 22:10 . 2004-07-01 16:08 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2008-03-07 22:01 . 2007-07-30 19:19 549,720 --a------ C:\WINDOWS\system32\wuapi.dll
2008-03-07 22:01 . 2007-07-30 19:19 325,976 --a------ C:\WINDOWS\system32\wucltui.dll
2008-03-07 22:01 . 2007-07-30 19:19 216,408 --a------ C:\WINDOWS\system32\wuaucpl.cpl
2008-03-07 22:01 . 2007-07-30 19:19 203,096 --a------ C:\WINDOWS\system32\wuweb.dll
2008-03-07 22:01 . 2004-08-03 14:03 186,136 --a------ C:\WINDOWS\system32\wuaueng1.dll
2008-03-07 22:01 . 2004-08-03 14:01 167,704 --a------ C:\WINDOWS\system32\wuauclt1.exe
2008-03-07 22:01 . 2007-07-30 19:18 33,624 --a------ C:\WINDOWS\system32\wups.dll
2008-03-07 18:35 . 2008-03-12 20:52 <DIR> d-------- C:\Program Files\Google
2008-03-07 18:32 . 2008-03-07 18:32 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\MotiveSysIDs
2008-03-06 20:35 . 2006-06-23 17:44 6,345 -ra------ C:\WINDOWS\system32\DevMngr.vxd
2008-03-06 20:34 . 2008-03-07 18:10 <DIR> d-------- C:\Program Files\Common Files\Motive
2008-03-06 20:34 . 2008-03-06 20:34 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Motive
2008-03-06 20:34 . 2004-08-11 00:50 589,824 --a------ C:\WINDOWS\system32\MCCDNSHLP_1-0-0_DSR.dll
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-14 00:13 --------- d-----w C:\Program Files\HOTALBUMMyBOX
2008-03-11 00:35 --------- d-----w C:\Program Files\Common Files\Wise Installation Wizard
2008-03-08 18:39 --------- d-----w C:\Program Files\Warcraft III Demo
2007-12-14 17:32 12,632 ----a-w C:\WINDOWS\system32\lsdelete.exe
2003-07-07 17:04 0 ---ha-w C:\Documents and Settings\yolanda\hpothb07.dat
.
((((((((((((((((((((((((((((( snapshot@2008-03-10_18.06.08.85 )))))))))))))))))))))))))))))))))))))))))
.
+ 2004-11-17 17:41:24 347,136 ----a-w C:\WINDOWS\$hf_mig$\KB873339\SP2GDR\hypertrm.dll
+ 2004-11-17 17:31:32 347,136 ----a-w C:\WINDOWS\$hf_mig$\KB873339\SP2QFE\hypertrm.dll
+ 2004-10-14 16:34:52 7,168 ----a-w C:\WINDOWS\$hf_mig$\KB873339\spmsg.dll
+ 2004-10-14 16:36:18 169,984 ----a-w C:\WINDOWS\$hf_mig$\KB873339\spuninst.exe
+ 2004-10-14 16:36:16 21,504 ----a-w C:\WINDOWS\$hf_mig$\KB873339\update\spcustom.dll
+ 2004-10-14 16:34:54 654,848 ----a-w C:\WINDOWS\$hf_mig$\KB873339\update\update.exe
+ 2004-10-28 01:21:01 721,920 ----a-w C:\WINDOWS\$hf_mig$\KB885835\SP2GDR\lsasrv.dll
+ 2004-10-28 01:14:18 448,128 ----a-w C:\WINDOWS\$hf_mig$\KB885835\SP2GDR\mrxsmb.sys
+ 2004-10-28 01:13:58 174,592 ----a-w C:\WINDOWS\$hf_mig$\KB885835\SP2GDR\rdbss.sys
+ 2004-10-28 01:28:18 721,920 ----a-w C:\WINDOWS\$hf_mig$\KB885835\SP2QFE\lsasrv.dll
+ 2004-10-28 01:15:16 448,128 ----a-w C:\WINDOWS\$hf_mig$\KB885835\SP2QFE\mrxsmb.sys
+ 2004-10-28 01:14:56 174,592 ----a-w C:\WINDOWS\$hf_mig$\KB885835\SP2QFE\rdbss.sys
+ 2004-10-14 17:34:52 7,168 ----a-w C:\WINDOWS\$hf_mig$\KB885835\spmsg.dll
+ 2004-10-14 17:36:18 169,984 ----a-w C:\WINDOWS\$hf_mig$\KB885835\spuninst.exe
+ 2004-10-14 17:36:16 21,504 ----a-w C:\WINDOWS\$hf_mig$\KB885835\update\spcustom.dll
+ 2004-10-14 17:34:54 654,848 ----a-w C:\WINDOWS\$hf_mig$\KB885835\update\update.exe
+ 2005-04-22 05:06:42 57,344 ----a-w C:\WINDOWS\$hf_mig$\KB890046\SP2GDR\agentdpv.dll
+ 2005-05-17 00:25:35 15,360 ----a-w C:\WINDOWS\$hf_mig$\KB890046\SP2GDR\xpsp3res.dll
+ 2005-04-22 05:18:52 57,344 ----a-w C:\WINDOWS\$hf_mig$\KB890046\SP2QFE\agentdpv.dll
+ 2005-05-17 00:26:30 17,920 ----a-w C:\WINDOWS\$hf_mig$\KB890046\SP2QFE\xpsp3res.dll
+ 2005-02-25 02:35:06 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB890046\spmsg.dll
+ 2005-02-25 02:35:06 209,632 ----a-w C:\WINDOWS\$hf_mig$\KB890046\spuninst.exe
+ 2005-02-25 02:35:06 22,240 ----a-w C:\WINDOWS\$hf_mig$\KB890046\update\spcustom.dll
+ 2005-02-25 02:35:06 718,048 ----a-w C:\WINDOWS\$hf_mig$\KB890046\update\update.exe
+ 2005-02-25 02:35:08 371,936 ----a-w C:\WINDOWS\$hf_mig$\KB890046\update\updspapi.dll
+ 2004-11-30 20:46:38 7,168 ----a-w C:\WINDOWS\$hf_mig$\KB891781\spmsg.dll
+ 2004-12-01 02:22:42 169,984 ----a-w C:\WINDOWS\$hf_mig$\KB891781\spuninst.exe
+ 2004-12-01 02:22:40 21,504 ----a-w C:\WINDOWS\$hf_mig$\KB891781\update\spcustom.dll
+ 2004-11-30 20:46:40 654,848 ----a-w C:\WINDOWS\$hf_mig$\KB891781\update\update.exe
+ 2005-07-08 16:27:56 249,344 ----a-w C:\WINDOWS\$hf_mig$\KB893756\SP2GDR\tapisrv.dll
+ 2005-07-08 16:28:58 249,344 ----a-w C:\WINDOWS\$hf_mig$\KB893756\SP2QFE\tapisrv.dll
+ 2005-02-25 02:35:06 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB893756\spmsg.dll
+ 2005-02-25 02:35:06 209,632 ----a-w C:\WINDOWS\$hf_mig$\KB893756\spuninst.exe
+ 2005-07-08 01:27:08 30,720 ----a-w C:\WINDOWS\$hf_mig$\KB893756\update\arpidfix.exe
+ 2005-02-25 02:35:06 22,240 ----a-w C:\WINDOWS\$hf_mig$\KB893756\update\spcustom.dll
+ 2005-02-25 02:35:06 718,048 ----a-w C:\WINDOWS\$hf_mig$\KB893756\update\update.exe
+ 2005-02-25 02:35:08 371,936 ----a-w C:\WINDOWS\$hf_mig$\KB893756\update\updspapi.dll
+ 2005-06-10 04:09:46 139,528 ----a-w C:\WINDOWS\$hf_mig$\KB899591\SP2GDR\rdpwd.sys
+ 2005-06-10 04:06:01 139,528 ----a-w C:\WINDOWS\$hf_mig$\KB899591\SP2QFE\rdpwd.sys
+ 2005-02-25 02:35:06 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB899591\spmsg.dll
+ 2005-02-25 02:35:06 209,632 ----a-w C:\WINDOWS\$hf_mig$\KB899591\spuninst.exe
+ 2005-06-29 22:54:32 30,720 ----a-w C:\WINDOWS\$hf_mig$\KB899591\update\arpidfix.exe
+ 2005-02-25 02:35:06 22,240 ----a-w C:\WINDOWS\$hf_mig$\KB899591\update\spcustom.dll
+ 2005-02-25 02:35:06 718,048 ----a-w C:\WINDOWS\$hf_mig$\KB899591\update\update.exe
+ 2005-02-25 02:35:08 371,936 ----a-w C:\WINDOWS\$hf_mig$\KB899591\update\updspapi.dll
+ 2005-07-26 04:39:42 225,792 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\catsrv.dll
+ 2005-07-26 04:39:43 625,152 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\catsrvut.dll
+ 2005-07-26 04:39:43 110,080 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\clbcatex.dll
+ 2005-07-26 04:39:43 498,688 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\clbcatq.dll
+ 2005-07-26 04:39:43 60,416 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\colbact.dll
+ 2005-07-26 04:39:44 195,072 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\comadmin.dll
+ 2005-07-26 04:39:44 97,792 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\comrepl.dll
+ 2005-07-26 04:39:44 1,267,200 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\comsvcs.dll
+ 2005-07-26 04:39:45 540,160 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\comuid.dll
+ 2005-07-26 04:39:45 243,200 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\es.dll
+ 2005-07-25 23:46:57 7,680 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\migregdb.exe
+ 2005-07-26 04:39:46 425,472 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\msdtcprx.dll
+ 2005-07-26 04:39:47 945,152 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\msdtctm.dll
+ 2005-07-26 04:39:47 161,280 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\msdtcuiu.dll
+ 2005-07-26 04:39:47 66,560 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\mtxclu.dll
+ 2005-07-26 04:39:47 91,136 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\mtxoci.dll
+ 2005-07-26 04:39:48 1,285,120 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\ole32.dll
+ 2005-07-26 04:39:48 74,752 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\olecli32.dll
+ 2005-07-26 04:39:49 37,888 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\olecnv32.dll
+ 2005-07-26 04:39:49 397,824 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\rpcss.dll
+ 2005-07-26 04:39:49 101,376 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\txflog.dll
+ 2005-07-26 04:39:49 11,776 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2GDR\xolehlp.dll
+ 2005-07-26 04:20:23 225,792 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\catsrv.dll
+ 2005-07-26 04:20:23 625,152 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\catsrvut.dll
+ 2005-07-26 04:20:23 110,080 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\clbcatex.dll
+ 2005-07-26 04:20:24 498,688 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\clbcatq.dll
+ 2005-07-26 04:20:24 60,416 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\colbact.dll
+ 2005-07-26 04:20:24 195,072 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\comadmin.dll
+ 2005-07-26 04:20:25 97,792 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\comrepl.dll
+ 2005-07-26 04:20:27 1,267,200 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\comsvcs.dll
+ 2005-07-26 04:20:28 540,160 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\comuid.dll
+ 2005-07-26 04:20:28 243,200 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\es.dll
+ 2005-07-25 23:42:35 8,704 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\migregdb.exe
+ 2005-07-26 04:20:29 425,472 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\msdtcprx.dll
+ 2005-07-26 04:20:31 945,152 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\msdtctm.dll
+ 2005-07-26 04:20:31 161,280 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\msdtcuiu.dll
+ 2005-07-26 04:20:39 66,560 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\mtxclu.dll
+ 2005-07-26 04:20:40 91,136 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\mtxoci.dll
+ 2005-07-26 04:20:40 1,285,632 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\ole32.dll
+ 2005-07-26 04:20:40 74,752 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\olecli32.dll
+ 2005-07-26 04:20:40 37,376 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\olecnv32.dll
+ 2005-07-26 04:20:40 398,336 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\rpcss.dll
+ 2005-07-26 04:20:40 101,376 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\txflog.dll
+ 2005-07-26 04:20:40 11,776 ----a-w C:\WINDOWS\$hf_mig$\KB902400\SP2QFE\xolehlp.dll
+ 2005-02-25 02:35:06 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB902400\spmsg.dll
+ 2005-02-25 02:35:06 209,632 ----a-w C:\WINDOWS\$hf_mig$\KB902400\spuninst.exe
+ 2005-07-26 01:21:18 30,720 ----a-w C:\WINDOWS\$hf_mig$\KB902400\update\arpidfix.exe
+ 2005-02-25 02:35:06 22,240 ----a-w C:\WINDOWS\$hf_mig$\KB902400\update\spcustom.dll
+ 2005-02-25 02:35:06 718,048 ----a-w C:\WINDOWS\$hf_mig$\KB902400\update\update.exe
+ 2005-02-25 02:35:08 371,936 ----a-w C:\WINDOWS\$hf_mig$\KB902400\update\updspapi.dll
+ 2006-03-23 05:44:21 143,360 ----a-w C:\WINDOWS\$hf_mig$\KB911562\SP2GDR\msadco.dll
+ 2006-03-23 05:53:08 143,360 ----a-w C:\WINDOWS\$hf_mig$\KB911562\SP2QFE\msadco.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB911562\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB911562\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB911562\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB911562\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB911562\update\updspapi.dll
+ 2006-01-04 03:35:05 68,096 ----a-w C:\WINDOWS\$hf_mig$\KB911927\SP2GDR\webclnt.dll
+ 2006-01-04 04:18:34 68,096 ----a-w C:\WINDOWS\$hf_mig$\KB911927\SP2QFE\webclnt.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB911927\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB911927\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB911927\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB911927\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB911927\update\updspapi.dll
+ 2006-05-19 12:59:41 111,616 ----a-w C:\WINDOWS\$hf_mig$\KB914388\SP2GDR\dhcpcsvc.dll
+ 2006-05-19 12:59:41 148,480 ----a-w C:\WINDOWS\$hf_mig$\KB914388\SP2GDR\dnsapi.dll
+ 2006-05-19 12:59:41 94,720 ----a-w C:\WINDOWS\$hf_mig$\KB914388\SP2GDR\iphlpapi.dll
+ 2006-05-19 13:46:40 112,128 ----a-w C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\dhcpcsvc.dll
+ 2006-05-19 13:46:40 147,456 ----a-w C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\dnsapi.dll
+ 2006-05-19 13:46:40 94,720 ----a-w C:\WINDOWS\$hf_mig$\KB914388\SP2QFE\iphlpapi.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB914388\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB914388\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB914388\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB914388\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB914388\update\updspapi.dll
+ 2006-06-22 05:06:29 69,120 ----a-w C:\WINDOWS\$hf_mig$\KB920685\SP2GDR\ciodm.dll
+ 2006-06-22 05:06:30 1,435,648 ----a-w C:\WINDOWS\$hf_mig$\KB920685\SP2GDR\query.dll
+ 2006-06-22 05:22:04 69,120 ----a-w C:\WINDOWS\$hf_mig$\KB920685\SP2QFE\ciodm.dll
+ 2006-06-22 05:22:05 1,435,648 ----a-w C:\WINDOWS\$hf_mig$\KB920685\SP2QFE\query.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB920685\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB920685\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB920685\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB920685\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB920685\update\updspapi.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB922616\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB922616\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB922616\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB922616\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB922616\update\updspapi.dll
+ 2006-08-14 10:34:41 332,928 ----a-w C:\WINDOWS\$hf_mig$\KB923414\SP2GDR\srv.sys
+ 2006-08-14 12:00:42 332,928 ----a-w C:\WINDOWS\$hf_mig$\KB923414\SP2QFE\srv.sys
+ 2005-10-12 23:16:49 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB923414\spmsg.dll
+ 2005-10-12 23:16:49 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB923414\spuninst.exe
+ 2005-10-12 23:16:49 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB923414\update\spcustom.dll
+ 2005-10-12 23:16:51 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB923414\update\update.exe
+ 2005-10-12 23:16:56 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB923414\update\updspapi.dll
+ 2006-09-13 05:01:56 1,084,416 ----a-w C:\WINDOWS\$hf_mig$\KB924191\SP2GDR\msxml3.dll
+ 2006-09-13 05:07:01 1,084,416 ----a-w C:\WINDOWS\$hf_mig$\KB924191\SP2QFE\msxml3.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB924191\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB924191\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB924191\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB924191\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB924191\update\updspapi.dll
+ 2006-09-04 06:08:01 1,494,016 ----a-w C:\WINDOWS\$hf_mig$\KB924496\SP2GDR\shdocvw.dll
+ 2006-09-04 06:12:56 1,497,088 ----a-w C:\WINDOWS\$hf_mig$\KB924496\SP2QFE\shdocvw.dll
+ 2005-10-12 23:12:25 14,048 ----a-w C:\WINDOWS\$hf_mig$\KB924496\spmsg.dll
+ 2005-10-12 23:12:26 213,216 ----a-w C:\WINDOWS\$hf_mig$\KB924496\spuninst.exe
+ 2005-10-12 23:12:25 22,752 ----a-w C:\WINDOWS\$hf_mig$\KB924496\update\spcustom.dll
+ 2005-10-12 23:12:29 716,000 ----a-w C:\WINDOWS\$hf_mig$\KB924496\update\update.exe
+ 2005-10-12 23:12:34 371,424 ----a-w C:\WINDOWS\$hf_mig$\KB924496\update\updspapi.dll
+ 2006-08-16 09:27:12 11,776 ----a-w C:\WINDOWS\Driver Cache\i386\tunmp.sys
- 2001-12-07 17:32:04 1,081,344 ----a-w C:\WINDOWS\Help\SBSI\Training\orun32.exe
+ 2005-05-04 21:33:52 1,077,312 ----a-w C:\WINDOWS\Help\SBSI\Training\orun32.exe
- 2002-09-22 04:13:26 10,752 ----a-w C:\WINDOWS\hh.exe
+ 2005-05-25 22:44:31 10,752 ----a-w C:\WINDOWS\hh.exe
+ 2008-03-11 00:37:09 1,038,336 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\Icon0E6AB9FC.exe
+ 2008-03-11 00:37:09 178,688 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\Icon0E6AB9FC1.exe
+ 2008-03-11 00:37:09 171,008 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\IconDED53B0B.exe
+ 2008-03-11 00:37:09 8,704 ----a-r C:\WINDOWS\Installer\{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}\IconDED53B0B1.exe
+ 2003-02-28 22:35:26 6,550 ----a-w C:\WINDOWS\jautoexp.dat
+ 2006-05-05 09:31:04 433,152 ----a-w C:\WINDOWS\LastGood\Driver Cache\i386\mrxsmb.sys
+ 2005-03-02 00:36:43 1,900,032 ----a-w C:\WINDOWS\LastGood\Driver Cache\i386\ntkrnlmp.exe
+ 2005-03-02 00:36:42 1,955,840 ----a-w C:\WINDOWS\LastGood\Driver Cache\i386\ntkrnlpa.exe
+ 2005-03-02 00:36:43 1,928,704 ----a-w C:\WINDOWS\LastGood\Driver Cache\i386\ntkrpamp.exe
+ 2005-03-02 01:33:36 2,040,832 ----a-w C:\WINDOWS\LastGood\Driver Cache\i386\ntoskrnl.exe
+ 2002-08-29 12:00:00 742,400 ----a-w C:\WINDOWS\LastGood\pchealth\helpctr\binaries\helpctr.exe
+ 2002-08-29 12:00:00 49,182 ----a-w C:\WINDOWS\LastGood\system32\clspack.exe
+ 2004-10-28 01:29:54 92,160 ----a-w C:\WINDOWS\LastGood\system32\cscdll.dll
+ 2004-10-28 01:29:54 92,160 ----a-w C:\WINDOWS\LastGood\system32\DLLCache\cscdll.dll
+ 2006-05-05 09:31:04 433,152 ----a-w C:\WINDOWS\LastGood\system32\DLLCache\mrxsmb.sys
+ 2006-05-05 09:40:31 166,656 ----a-w C:\WINDOWS\LastGood\system32\DLLCache\rdbss.sys
+ 2006-05-05 09:31:04 433,152 ----a-w C:\WINDOWS\LastGood\system32\drivers\mrxsmb.sys
+ 2006-05-05 09:40:31 166,656 ----a-w C:\WINDOWS\LastGood\system32\drivers\rdbss.sys
+ 2002-08-29 12:00:00 313,856 ----a-w C:\WINDOWS\LastGood\system32\dx3j.dll
+ 2006-01-02 22:38:03 260,608 ----a-w C:\WINDOWS\LastGood\system32\gdi32.dll
+ 2002-08-29 12:00:00 592,896 ----a-w C:\WINDOWS\LastGood\system32\h323msp.dll
+ 2002-08-29 12:00:00 489,984 ----a-w C:\WINDOWS\LastGood\system32\hypertrm.dll
+ 2002-08-29 12:00:00 435,200 ----a-w C:\WINDOWS\LastGood\system32\ipnathlp.dll
+ 2002-08-29 12:00:00 186,911 ----a-w C:\WINDOWS\LastGood\system32\javacypt.dll
+ 2002-08-29 12:00:00 63,007 ----a-w C:\WINDOWS\LastGood\system32\javaprxy.dll
+ 2002-08-29 12:00:00 404,509 ----a-w C:\WINDOWS\LastGood\system32\javart.dll
+ 2002-08-29 12:00:00 14,878 ----a-w C:\WINDOWS\LastGood\system32\jdbgmgr.exe
+ 2002-08-29 12:00:00 171,034 ----a-w C:\WINDOWS\LastGood\system32\jit.dll
+ 2002-08-29 12:00:00 172,060 ----a-w C:\WINDOWS\LastGood\system32\jview.exe
+ 2002-08-29 12:00:00 671,744 ----a-w C:\WINDOWS\LastGood\system32\lsasrv.dll
+ 2004-03-30 01:48:36 36,864 ----a-w C:\WINDOWS\LastGood\system32\mf3216.dll
+ 2002-08-29 12:00:00 51,200 ----a-w C:\WINDOWS\LastGood\system32\msasn1.dll
+ 2002-08-29 12:00:00 154,140 ----a-w C:\WINDOWS\LastGood\system32\msawt.dll
+ 2002-08-29 12:00:00 968,192 ----a-w C:\WINDOWS\LastGood\system32\msgina.dll
+ 2002-08-29 12:00:00 945,693 ----a-w C:\WINDOWS\LastGood\system32\msjava.dll
+ 2002-08-29 12:00:00 21,023 ----a-w C:\WINDOWS\LastGood\system32\msjdbc10.dll
+ 2002-08-29 12:00:00 309,248 ----a-w C:\WINDOWS\LastGood\system32\netapi32.dll
+ 2005-03-02 00:36:43 1,928,704 ----a-w C:\WINDOWS\LastGood\system32\ntkrnlpa.exe
+ 2005-03-02 00:36:43 1,900,032 ----a-w C:\WINDOWS\LastGood\system32\ntoskrnl.exe
+ 2002-08-29 12:00:00 548,864 ----a-w C:\WINDOWS\LastGood\system32\rtcdll.dll
+ 2002-08-29 12:00:00 136,704 ----a-w C:\WINDOWS\LastGood\system32\schannel.dll
+ 2002-08-29 12:00:00 116,224 ----a-w C:\WINDOWS\LastGood\system32\shsvcs.dll
+ 2002-08-29 12:00:00 287,263 ----a-w C:\WINDOWS\LastGood\system32\vmhelper.dll
+ 2002-08-29 12:00:00 171,549 ----a-w C:\WINDOWS\LastGood\system32\wjview.exe
+ 2006-08-25 09:14:17 595,968 ----a-w C:\WINDOWS\LastGood\system32\xpsp2res.dll
- 2002-08-29 12:00:00 50,688 ----a-w C:\WINDOWS\msagent\agentdpv.dll
+ 2005-04-22 05:20:24 51,712 ----a-w C:\WINDOWS\msagent\agentdpv.dll
- 2002-08-29 12:00:00 742,400 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Binaries\HelpCtr.exe
+ 2004-03-30 01:34:15 741,376 ----a-w C:\WINDOWS\PCHealth\HelpCtr\Binaries\helpctr.exe
+ 2003-03-01 00:26:30 46,352 ----a-w C:\WINDOWS\setdebug.exe
- 2002-08-29 12:00:00 59,392 ----a-w C:\WINDOWS\system32\6to4svc.dll
+ 2006-08-16 12:14:23 95,232 ----a-w C:\WINDOWS\system32\6to4svc.dll
- 2005-06-18 06:16:18 1,017,856 ----a-w C:\WINDOWS\system32\BROWSEUI.DLL
+ 2006-09-04 06:23:53 1,027,072 ----a-w C:\WINDOWS\system32\browseui.dll
- 2002-08-29 12:00:00 215,040 ----a-w C:\WINDOWS\system32\catsrv.dll
+ 2005-07-26 04:30:34 220,672 ----a-w C:\WINDOWS\system32\catsrv.dll
- 2002-08-29 12:00:00 582,656 ----a-w C:\WINDOWS\system32\catsrvut.dll
+ 2005-07-26 04:30:38 581,632 ----a-w C:\WINDOWS\system32\catsrvut.dll
- 2002-08-29 12:00:00 2,028,032 ----a-w C:\WINDOWS\system32\cdosys.dll
+ 2005-09-10 02:04:32 2,025,984 ----a-w C:\WINDOWS\system32\cdosys.dll
- 2002-08-29 12:00:00 64,512 ----a-w C:\WINDOWS\system32\ciodm.dll
+ 2006-06-22 05:19:48 64,512 ----a-w C:\WINDOWS\system32\ciodm.dll
- 2002-08-29 12:00:00 100,864 ----a-w C:\WINDOWS\system32\clbcatex.dll
+ 2005-07-26 04:30:38 110,080 ----a-w C:\WINDOWS\system32\clbcatex.dll
- 2002-08-29 12:00:00 468,480 ----a-w C:\WINDOWS\system32\clbcatq.dll
+ 2005-07-26 04:30:41 497,152 ----a-w C:\WINDOWS\system32\clbcatq.dll
- 2002-08-29 12:00:00 49,182 ----a-w C:\WINDOWS\system32\clspack.exe
+ 2003-03-01 00:26:26 49,424 ----a-w C:\WINDOWS\system32\clspack.exe
- 2002-08-29 12:00:00 56,832 ----a-w C:\WINDOWS\system32\colbact.dll
+ 2005-07-26 04:30:41 62,464 ----a-w C:\WINDOWS\system32\colbact.dll
- 2002-08-29 12:00:00 186,880 ----a-w C:\WINDOWS\system32\Com\comadmin.dll
+ 2005-07-26 04:30:42 187,392 ----a-w C:\WINDOWS\system32\Com\comadmin.dll
- 2002-08-29 12:00:00 82,432 ----a-w C:\WINDOWS\system32\comrepl.dll
+ 2005-07-26 04:30:42 89,600 ----a-w C:\WINDOWS\system32\comrepl.dll
- 2002-08-29 12:00:00 1,172,992 ----a-w C:\WINDOWS\system32\comsvcs.dll
+ 2005-07-26 04:30:49 1,179,136 ----a-w C:\WINDOWS\system32\comsvcs.dll
- 2002-08-29 12:00:00 495,616 ----a-w C:\WINDOWS\system32\comuid.dll
+ 2005-07-26 04:31:11 499,200 ----a-w C:\WINDOWS\system32\comuid.dll
- 2008-03-10 23:53:59 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
+ 2008-03-13 21:54:23 16,384 ----a-w C:\WINDOWS\system32\config\systemprofile\Cookies\index.dat
- 2008-03-10 23:53:59 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2008-03-13 21:54:23 32,768 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2008-03-10 23:53:59 49,152 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2008-03-13 21:54:23 49,152 ----a-w C:\WINDOWS\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
- 2002-08-29 12:00:00 99,840 ----a-w C:\WINDOWS\system32\dhcpcsvc.dll
+ 2006-05-19 12:15:32 103,936 ----a-w C:\WINDOWS\system32\dhcpcsvc.dll
+ 2006-08-16 12:14:23 95,232 -c--a-w C:\WINDOWS\system32\dllcache\6to4svc.dll
+ 2006-09-04 06:23:53 1,027,072 -c----w C:\WINDOWS\system32\dllcache\browseui.dll
+ 2006-06-22 05:19:48 64,512 -c----w C:\WINDOWS\system32\dllcache\ciodm.dll
+ 2006-05-19 12:15:32 103,936 -c----w C:\WINDOWS\system32\dllcache\dhcpcsvc.dll
+ 2006-08-16 12:14:23 31,232 -c--a-w C:\WINDOWS\system32\dllcache\inetmib1.dll
+ 2006-08-16 12:14:23 83,456 -c--a-w C:\WINDOWS\system32\dllcache\iphlpapi.dll
+ 2006-05-13 10:13:31 74,368 -c----w C:\WINDOWS\system32\dllcache\ipsec.sys
+ 2006-05-14 09:13:41 334,848 -c----w C:\WINDOWS\system32\dllcache\ipsecsnp.dll
+ 2006-05-14 09:13:41 159,744 -c----w C:\WINDOWS\system32\dllcache\ipsecsvc.dll
+ 2006-05-14 09:13:41 364,544 -c----w C:\WINDOWS\system32\dllcache\ipsmsnap.dll
+ 2006-08-16 09:28:55 48,640 -c--a-w C:\WINDOWS\system32\dllcache\ipv6.exe
+ 2006-08-16 12:14:23 54,272 -c--a-w C:\WINDOWS\system32\dllcache\ipv6mon.dll
+ 2006-09-13 05:09:16 1,110,528 -c----w C:\WINDOWS\system32\dllcache\msxml3.dll
+ 2006-08-16 09:27:50 83,456 -c--a-w C:\WINDOWS\system32\dllcache\netsh.exe
+ 2006-05-14 09:13:41 257,536 -c----w C:\WINDOWS\system32\dllcache\oakley.dll
+ 2006-05-14 09:13:41 98,304 -c----w C:\WINDOWS\system32\dllcache\polstore.dll
- 2003-05-30 15:00:02 1,962,496 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2005-08-30 15:14:00 1,227,776 -c--a-w C:\WINDOWS\system32\dllcache\quartz.dll
+ 2006-06-22 05:19:49 1,350,144 -c----w C:\WINDOWS\system32\dllcache\query.dll
+ 2006-06-22 10:59:17 169,984 -c----w C:\WINDOWS\system32\dllcache\rasmans.dll
+ 2006-07-13 08:41:42 199,936 -c----w C:\WINDOWS\system32\dllcache\rmcast.sys
+ 2006-09-04 06:23:53 1,351,680 -c----w C:\WINDOWS\system32\dllcache\shdocvw.dll
+ 2006-08-14 08:59:20 321,536 -c----w C:\WINDOWS\system32\dllcache\srv.sys
+ 2006-08-16 09:28:57 205,120 -c--a-w C:\WINDOWS\system32\dllcache\tcpip6.sys
+ 2006-08-16 09:27:12 11,776 -c--a-w C:\WINDOWS\system32\dllcache\tunmp.sys
+ 2006-05-14 09:13:41 29,184 -c----w C:\WINDOWS\system32\dllcache\winipsec.dll
+ 2006-08-16 12:14:23 70,656 -c--a-w C:\WINDOWS\system32\dllcache\ws2_32.dll
+ 2006-08-16 12:14:23 13,312 -c--a-w C:\WINDOWS\system32\dllcache\wship6.dll
- 2003-07-07 05:23:07 82,380 ----a-w C:\WINDOWS\system32\drivers\AFS2K.SYS
+ 2004-10-08 01:16:04 35,840 ----a-w C:\WINDOWS\system32\drivers\AFS2K.SYS
+ 2007-07-11 19:37:26 6,272 ----a-w C:\WINDOWS\system32\drivers\AWRTPD.sys
+ 2007-08-07 18:58:08 8,320 ----a-w C:\WINDOWS\system32\drivers\AWRTRD.sys
- 2002-08-29 12:00:00 57,984 ----a-w C:\WINDOWS\system32\drivers\ipsec.sys
+ 2006-05-13 10:13:31 74,368 ----a-w C:\WINDOWS\system32\drivers\ipsec.sys
- 2002-08-29 12:00:00 172,672 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
+ 2005-04-26 01:58:03 173,312 ----a-w C:\WINDOWS\system32\drivers\mrxdav.sys
+ 2007-08-07 18:56:58 9,344 ----a-w C:\WINDOWS\system32\drivers\NSDriver.sys
- 2002-08-29 12:00:00 115,976 ----a-w C:\WINDOWS\system32\drivers\rdpwd.sys
+ 2005-06-10 04:30:15 116,104 ----a-w C:\WINDOWS\system32\drivers\rdpwd.sys
- 2002-08-29 12:00:00 200,064 ----a-w C:\WINDOWS\system32\drivers\RMCast.sys
+ 2006-07-13 08:41:42 199,936 ----a-w C:\WINDOWS\system32\drivers\rmcast.sys
- 2002-08-29 12:00:00 330,368 ----a-w C:\WINDOWS\system32\drivers\srv.sys
+ 2006-08-14 08:59:20 321,536 ----a-w C:\WINDOWS\system32\drivers\srv.sys
- 2002-08-29 12:00:00 196,288 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
+ 2006-08-16 09:28:57 205,120 ----a-w C:\WINDOWS\system32\drivers\tcpip6.sys
- 2002-08-29 12:00:00 9,856 ----a-w C:\WINDOWS\system32\drivers\tunmp.sys
+ 2006-08-16 09:27:12 11,776 ----a-w C:\WINDOWS\system32\drivers\tunmp.sys
- 2002-08-29 12:00:00 313,856 ----a-w C:\WINDOWS\system32\dx3j.dll
+ 2003-02-28 22:34:42 313,856 ----a-w C:\WINDOWS\system32\dx3j.dll
- 2002-08-29 12:00:00 225,280 ----a-w C:\WINDOWS\system32\es.dll
+ 2005-07-26 04:31:12 227,328 ----a-w C:\WINDOWS\system32\es.dll
- 2008-03-10 23:53:44 317,152 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
+ 2008-03-13 03:11:40 317,152 ----a-w C:\WINDOWS\system32\FNTCACHE.DAT
- 2002-09-23 21:13:50 37,888 ----a-w C:\WINDOWS\system32\hhsetup.dll
+ 2005-05-27 01:59:52 38,912 ----a-w C:\WINDOWS\system32\hhsetup.dll
- 2002-08-29 12:00:00 77,850 ----a-w C:\WINDOWS\system32\hlink.dll
+ 2006-07-21 08:30:50 72,704 ----a-w C:\WINDOWS\system32\hlink.dll
- 2002-08-29 12:00:00 489,984 ----a-w C:\WINDOWS\system32\hypertrm.dll
+ 2004-11-17 17:57:01 493,056 ----a-w C:\WINDOWS\system32\hypertrm.dll
- 2002-08-29 12:00:00 31,232 ----a-w C:\WINDOWS\system32\inetmib1.dll
+ 2006-08-16 12:14:23 31,232 ----a-w C:\WINDOWS\system32\inetmib1.dll
- 2002-08-29 12:00:00 82,944 ----a-w C:\WINDOWS\system32\iphlpapi.dll
+ 2006-08-16 12:14:23 83,456 ----a-w C:\WINDOWS\system32\iphlpapi.dll
- 2002-08-29 12:00:00 332,800 ----a-w C:\WINDOWS\system32\ipsecsnp.dll
+ 2006-05-14 09:13:41 334,848 ----a-w C:\WINDOWS\system32\ipsecsnp.dll
- 2002-08-29 12:00:00 155,648 ----a-w C:\WINDOWS\system32\ipsecsvc.dll
+ 2006-05-14 09:13:41 159,744 ----a-w C:\WINDOWS\system32\ipsecsvc.dll
- 2002-08-29 12:00:00 60,928 ----a-w C:\WINDOWS\system32\ipv6.exe
+ 2006-08-16 09:28:55 48,640 ----a-w C:\WINDOWS\system32\ipv6.exe
- 2002-08-29 12:00:00 134,144 ----a-w C:\WINDOWS\system32\ipv6mon.dll
+ 2006-08-16 12:14:23 54,272 ----a-w C:\WINDOWS\system32\ipv6mon.dll
- 2002-09-23 21:13:50 143,872 ----a-w C:\WINDOWS\system32\itircl.dll
+ 2005-05-27 01:59:52 143,872 ----a-w C:\WINDOWS\system32\itircl.dll
- 2002-09-23 21:13:50 122,368 ----a-w C:\WINDOWS\system32\itss.dll
+ 2005-05-27 01:59:52 128,000 ----a-w C:\WINDOWS\system32\itss.dll
- 2002-08-29 12:00:00 186,911 ----a-w C:\WINDOWS\system32\javacypt.dll
+ 2003-03-01 00:26:16 187,152 ----a-w C:\WINDOWS\system32\javacypt.dll
+ 2003-03-01 00:26:18 139,536 ----a-w C:\WINDOWS\system32\javaee.dll
- 2002-08-29 12:00:00 63,007 ----a-w C:\WINDOWS\system32\javaprxy.dll
+ 2003-03-01 00:26:18 63,248 ----a-w C:\WINDOWS\system32\javaprxy.dll
- 2002-08-29 12:00:00 404,509 ----a-w C:\WINDOWS\system32\javart.dll
+ 2003-03-01 00:26:18 404,752 ----a-w C:\WINDOWS\system32\javart.dll
- 2002-08-29 12:00:00 14,878 ----a-w C:\WINDOWS\system32\jdbgmgr.exe
+ 2003-03-01 00:26:30 15,120 ----a-w C:\WINDOWS\system32\jdbgmgr.exe
- 2002-08-29 12:00:00 144,896 ----a-w C:\WINDOWS\system32\jgdw400.dll
+ 2006-05-27 04:19:50 163,840 ----a-w C:\WINDOWS\system32\JGDW400.DLL
- 2002-08-29 12:00:00 42,496 ----a-w C:\WINDOWS\system32\jgpl400.dll
+ 2006-04-06 22:15:48 27,648 ----a-w C:\WINDOWS\system32\JGPL400.DLL
- 2002-08-29 12:00:00 171,034 ----a-w C:\WINDOWS\system32\jit.dll
+ 2003-03-01 00:26:20 171,280 ----a-w C:\WINDOWS\system32\jit.dll
- 2002-08-29 12:00:00 172,060 ----a-w C:\WINDOWS\system32\jview.exe
+ 2003-03-01 00:26:30 172,304 ----a-w C:\WINDOWS\system32\jview.exe
- 2002-08-29 12:00:00 272,896 ----a-w C:\WINDOWS\system32\kerberos.dll
+ 2005-06-15 17:50:24 285,184 ----a-w C:\WINDOWS\system32\kerberos.dll
- 2002-08-29 12:00:00 671,744 ----a-w C:\WINDOWS\system32\lsasrv.dll
+ 2004-10-28 01:29:54 681,984 ----a-w C:\WINDOWS\system32\lsasrv.dll
- 2007-11-21 00:52:38 2,884,992 ----a-w C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
+ 2007-11-20 22:52:00 2,884,992 ----a-w C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
- 2007-11-21 00:52:40 218,496 ----a-w C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2007-11-20 22:52:00 218,496 ----a-w C:\WINDOWS\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2008-03-05 14:30:56 19,148,408 ----a-w C:\WINDOWS\system32\MRT.exe
- 2002-08-29 12:00:00 51,200 ----a-w C:\WINDOWS\system32\msasn1.dll
+ 2004-03-30 01:48:36 51,712 ----a-w C:\WINDOWS\system32\msasn1.dll
- 2002-08-29 12:00:00 154,140 ----a-w C:\WINDOWS\system32\msawt.dll
+ 2003-03-01 00:26:20 154,384 ----a-w C:\WINDOWS\system32\msawt.dll
- 2002-08-29 12:00:00 968,192 ----a-w C:\WINDOWS\system32\msgina.dll
+ 2004-03-30 01:48:36 971,264 ----a-w C:\WINDOWS\system32\msgina.dll
- 2002-08-29 12:00:00 229,888 ----a-w C:\WINDOWS\system32\msieftp.dll
+ 2005-08-05 17:23:27 230,400 ----a-w C:\WINDOWS\system32\msieftp.dll
- 2002-08-29 12:00:00 945,693 ----a-w C:\WINDOWS\system32\msjava.dll
+ 2003-03-01 00:26:26 947,472 ----a-w C:\WINDOWS\system32\msjava.dll
- 2002-08-29 12:00:00 21,023 ----a-w C:\WINDOWS\system32\msjdbc10.dll
+ 2003-03-01 00:26:26 21,264 ----a-w C:\WINDOWS\system32\msjdbc10.dll
- 2002-08-29 12:00:00 1,122,304 ----a-w C:\WINDOWS\system32\msxml3.dll
+ 2006-09-13 05:09:16 1,110,528 ----a-w C:\WINDOWS\system32\msxml3.dll
- 2002-08-29 12:00:00 309,248 ----a-w C:\WINDOWS\system32\netapi32.dll
+ 2006-07-14 15:53:28 307,200 ----a-w C:\WINDOWS\system32\netapi32.dll
- 2002-08-29 12:00:00 82,944 ----a-w C:\WINDOWS\system32\netsh.exe
+ 2006-08-16 09:27:50 83,456 ----a-w C:\WINDOWS\system32\netsh.exe
- 2002-08-29 12:00:00 328,704 ----a-w C:\WINDOWS\system32\oakley.dll
+ 2006-05-14 09:13:41 257,536 ----a-w C:\WINDOWS\system32\oakley.dll
- 2002-08-29 12:00:00 1,169,920 ----a-w C:\WINDOWS\system32\ole32.dll
+ 2005-07-26 04:31:13 1,190,400 ----a-w C:\WINDOWS\system32\ole32.dll
- 2002-08-29 12:00:00 68,608 ----a-w C:\WINDOWS\system32\olecli32.dll
+ 2005-07-26 04:31:13 68,608 ----a-w C:\WINDOWS\system32\olecli32.dll
- 2002-08-29 12:00:00 34,304 ----a-w C:\WINDOWS\system32\olecnv32.dll
+ 2005-07-26 04:31:13 35,328 ----a-w C:\WINDOWS\system32\olecnv32.dll
- 2007-11-04 01:47:23 40,196 ----a-w C:\WINDOWS\system32\perfc009.dat
+ 2008-03-11 03:16:10 40,196 ----a-w C:\WINDOWS\system32\perfc009.dat
- 2007-11-04 01:47:23 311,934 ----a-w C:\WINDOWS\system32\perfh009.dat
+ 2008-03-11 03:16:10 311,934 ----a-w C:\WINDOWS\system32\perfh009.dat
- 2002-08-29 12:00:00 87,552 ----a-w C:\WINDOWS\system32\polstore.dll
+ 2006-05-14 09:13:41 98,304 ----a-w C:\WINDOWS\system32\polstore.dll
- 2003-05-30 15:00:02 1,962,496 ----a-w C:\WINDOWS\system32\quartz.dll
+ 2005-08-30 15:14:00 1,227,776 ----a-w C:\WINDOWS\system32\quartz.dll
- 2002-08-29 12:00:00 1,349,120 ----a-w C:\WINDOWS\system32\query.dll
+ 2006-06-22 05:19:49 1,350,144 ----a-w C:\WINDOWS\system32\query.dll
- 2002-08-29 12:00:00 158,720 ----a-w C:\WINDOWS\system32\rasmans.dll
+ 2006-06-22 10:59:17 169,984 ----a-w C:\WINDOWS\system32\rasmans.dll
- 2002-08-29 12:00:00 530,432 ----a-w C:\WINDOWS\system32\rpcrt4.dll
+ 2004-03-06 02:16:11 535,552 ----a-w C:\WINDOWS\system32\rpcrt4.dll
- 2002-08-29 12:00:00 260,608 ----a-w C:\WINDOWS\system32\rpcss.dll
+ 2005-07-26 04:31:13 276,992 ----a-w C:\WINDOWS\system32\rpcss.dll
- 2002-08-29 12:00:00 136,704 ----a-w C:\WINDOWS\system32\schannel.dll
+ 2004-03-30 01:48:36 136,704 ----a-w C:\WINDOWS\system32\schannel.dll
- 2006-05-26 21:40:58 1,339,904 ----a-w C:\WINDOWS\system32\SHDOCVW.DLL
+ 2006-09-04 06:23:53 1,351,680 ----a-w C:\WINDOWS\system32\shdocvw.dll
- 2002-08-29 12:00:00 116,224 ----a-w C:\WINDOWS\system32\shsvcs.dll
+ 2004-10-28 01:29:54 116,736 ----a-w C:\WINDOWS\system32\shsvcs.dll
- 2005-10-12 23:16:49 14,048 ------w C:\WINDOWS\system32\spmsg.dll
+ 2005-10-12 23:12:25 14,048 ------w C:\WINDOWS\system32\spmsg.dll
- 2002-08-29 12:00:00 233,984 ----a-w C:\WINDOWS\system32\tapisrv.dll
+ 2005-07-08 16:09:48 238,592 ----a-w C:\WINDOWS\system32\tapisrv.dll
- 2002-08-29 12:00:00 90,624 ----a-w C:\WINDOWS\system32\txflog.dll
+ 2005-07-26 04:31:13 97,280 ----a-w C:\WINDOWS\system32\txflog.dll
- 2002-08-29 12:00:00 287,263 ----a-w C:\WINDOWS\system32\vmhelper.dll
+ 2003-03-01 00:26:26 286,992 ----a-w C:\WINDOWS\system32\vmhelper.dll
- 2002-08-29 12:00:00 61,952 ----a-w C:\WINDOWS\system32\webclnt.dll
+ 2006-01-04 03:37:34 64,000 ----a-w C:\WINDOWS\system32\webclnt.dll
- 2005-03-02 01:34:32 1,797,120 ----a-w C:\WINDOWS\system32\win32k.sys
+ 2005-10-04 01:38:18 1,799,552 ----a-w C:\WINDOWS\system32\win32k.sys
- 2002-08-29 12:00:00 99,328 ----a-w C:\WINDOWS\system32\win32spl.dll
+ 2005-06-11 02:41:12 102,400 ----a-w C:\WINDOWS\system32\win32spl.dll
- 2002-08-29 12:00:00 25,600 ----a-w C:\WINDOWS\system32\winipsec.dll
+ 2006-05-14 09:13:41 29,184 ----a-w C:\WINDOWS\system32\winipsec.dll
- 2002-08-29 12:00:00 171,549 ----a-w C:\WINDOWS\system32\wjview.exe
+ 2003-03-01 00:26:32 171,792 ----a-w C:\WINDOWS\system32\wjview.exe
- 2002-08-29 12:00:00 75,264 ----a-w C:\WINDOWS\system32\ws2_32.dll
+ 2006-08-16 12:14:23 70,656 ----a-w C:\WINDOWS\system32\ws2_32.dll
- 2002-08-29 12:00:00 13,312 ----a-w C:\WINDOWS\system32\wship6.dll
+ 2006-08-16 12:14:23 13,312 ----a-w C:\WINDOWS\system32\wship6.dll
- 2004-06-30 23:59:25 158,720 ------w C:\WINDOWS\system32\xpob2res.dll
+ 2006-08-16 09:42:14 159,232 ----a-w C:\WINDOWS\system32\xpob2res.dll
- 2002-10-23 16:38:40 24,576 ----a-w C:\WINDOWS\system32\xpsp1hfm.exe
+ 2004-01-10 05:11:10 26,112 ----a-w C:\WINDOWS\system32\xpsp1hfm.exe
+ 2005-05-17 00:43:39 7,168 ------w C:\WINDOWS\system32\xpsp3res.dll
+ 2008-03-13 21:54:59 16,384 ----atw C:\WINDOWS\Temp\Perflib_Perfdata_4dc.dat
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Profiler"="C:\Program Files\Saitek\Software\Profiler.exe" [2002-08-22 10:39 151552]
"NvMediaCenter"="C:\WINDOWS\System32\NVMCTRAY.DLL" [2003-09-24 17:32 49152]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [2008-03-07 18:35 171448]
"ares"="C:\Program Files\Ares\Ares.exe" [ ]
"Dbdvh"="C:\Program Files\Common Files\S?mantec\r?ndll32.exe" [ ]
"MSMSGS"="C:\Program Files\Messenger\MSMSGS.exe" [2004-11-15 16:18 1670144]
"SpybotSD TeaTimer"="C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe" [2008-01-28 11:43 2097488]
"MySpaceIM"="C:\Program Files\MySpace\IM\MySpaceIM.exe" [2008-02-01 14:32 8699904]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"HTpatch"="C:\WINDOWS\htpatch.exe" [2002-10-30 19:40 28672]
"SiS Tray"="" []
"SiS KHooker"="C:\WINDOWS\System32\khooker.exe" [ ]
"AGRSMMSG"="AGRSMMSG.exe" [2002-10-18 13:07 87751 C:\WINDOWS\AGRSMMSG.exe]
"CTHelper"="CTHELPER.EXE" [2002-11-08 12:46 24576 C:\WINDOWS\system32\cthelper.exe]
"ezShieldProtector for Px"="C:\WINDOWS\System32\ezSP_Px.exe" [2002-08-20 12:29 40960]
"McAgentexe"="c:\PROGRA~1\mcafee.com\agent\mcagent.exe" [2002-09-06 20:15 192512]
"McUpdateexe"="C:\PROGRA~1\mcafee.com\agent\McUpdate.exe" [2002-09-04 12:28 151552]
"ZTgServerSwitch"="c:\program files\support.com\client\lserver\server.vbs" [2002-07-14 13:50 11406]
"CleanupProgram"="C:\Sonysys\cleanup.exe" [ ]
"StorageGuard"="C:\Program Files\VERITAS Software\Update Manager\sgtray.exe" [2002-06-17 23:01 155648]
"Microsoft Works Update Detection"="C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe" [2002-07-24 23:20 28672]
"NvCplDaemon"="C:\WINDOWS\System32\NvCpl.dll" [2003-09-24 17:32 5033984]
"nwiz"="nwiz.exe" [2003-09-24 17:32 741376 C:\WINDOWS\system32\nwiz.exe]
"MBBalloon"="C:\Program Files\HOTALBUMMyBOX\MBBalloon.exe" [2007-02-09 14:28 789120]
"avast!"="C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe" [2007-12-04 07:00 79224]
"googletalk"="C:\Program Files\Google\Google Talk\googletalk.exe" [2007-01-01 15:22 3739648]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"MySpaceIM"="C:\Program Files\MySpace\IM\MySpaceIM.exe" [2008-02-01 14:32 8699904]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"SetDefaultMidi"="MIDIDEF.EXE" [2002-02-28 18:45 61440 C:\WINDOWS\mididef.exe]
C:\Documents and Settings\All Users\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2003-07-06 22:57:11 113664]
Billminder.lnk - C:\Program Files\Quicken\billmind.exe [2002-09-20 11:19:46 36864]
DriveSelect.lnk - C:\Program Files\321Studios\Xpress\DriveSelect.exe [2003-05-05 13:19:37 217088]
Event Planner Reminders.lnk - C:\Program Files\Sierra\Planner\PLNRnote.exe [2003-03-12 11:14:10 184320]
Giga Pocket Remocon Driver.lnk - C:\Program Files\sony\giga pocket\usbsircs.exe [2003-07-06 22:53:09 159744]
hp psc 1000 series.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe [2002-12-02 20:08:34 147456]
hpoddt01.exe.lnk - C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2002-12-02 19:56:10 40960]
Kodak EasyShare software.lnk - C:\Program Files\Kodak EasyShare software\bin\EasyShare.exe [2003-04-09 06:56:24 598150]
MediaChecker.lnk - C:\Program Files\HOTALBUMMyBOX\MediaChecker.exe [2007-02-13 22:38:50 915096]
Microsoft Office.lnk - C:\Program Files\Microsoft Office\Office\OSA9.EXE [1999-02-17 14:05:56 65588]
Quicken Scheduled Updates.lnk - C:\Program Files\Quicken\bagent.exe [2002-09-20 11:20:02 53248]
Quicken Startup.lnk - C:\Program Files\Quicken\QWDLLS.EXE [2002-09-20 11:20:06 36864]
Timer Recording Manager.lnk - C:\Program Files\Sony\giga pocket\ReserveModule.exe [2003-07-06 22:53:09 229376]
VAIO Action Setup (Server).lnk - C:\Program Files\Sony\VAIO Action Setup\VAServ.exe [2002-12-05 16:44:22 40960]
R0 PzWDM;PzWDM;C:\WINDOWS\System32\Drivers\PzWDM.sys [2007-12-10 21:37]
R3 SaiClass;SaiClass;C:\WINDOWS\System32\drivers\SaiNtBus.sys [2002-08-22 06:23]
S3 imhidusb;Immersion's HID USB Driver;C:\WINDOWS\System32\DRIVERS\imhidusb.sys [2002-06-10 13:01]
S3 SaiNtHid;Saitek Filter Driver;C:\WINDOWS\System32\DRIVERS\SaiNtHid.sys [2002-08-22 06:24]
S3 SaiNtSub;SaiNtSub;C:\WINDOWS\System32\DRIVERS\SaiNtSub.sys [2002-08-22 06:24]
.
Contents of the 'Scheduled Tasks' folder
"2007-12-23 01:20:51 C:\WINDOWS\Tasks\FRU Task #Hewlett-Packard#hp psc 1200 series#1057555401.job"
- C:\Program Files\Hewlett-Packard\Digital Imaging\Bin\hpqfrucl.exe4-I
"2008-03-14 00:54:00 C:\WINDOWS\Tasks\McAfee.com Update Check (HERTEL-jeremy).job"
- C:\PROGRA~1\mcafee.com\agent\mcupdate.ex
- C:\PROGRA~1\mcafee.com\agent.jeremyXMcAfee.com SecurityCenter periodically checks for updates for your McAfee.com Services.
"2008-03-11 03:03:00 C:\WINDOWS\Tasks\McAfee.com Update Check (HERTEL-yolanda).job"
- C:\PROGRA~1\mcafee.com\agent\mcupdate.ex
- C:\PROGRA~1\mcafee.com\agent
"2008-03-14 00:53:00 C:\WINDOWS\Tasks\McAfee.com Update Check (VALUED-B8142DE8-Owner).job"
- C:\PROGRA~1\mcafee.com\agent\mcupdate.ex
- C:\PROGRA~1\mcafee.com\agent
"2003-07-07 04:44:49 C:\WINDOWS\Tasks\Registration reminder 1.job"
- C:\WINDOWS\System32\OOBE\oobebaln.exe
"2003-07-07 04:44:49 C:\WINDOWS\Tasks\Registration reminder 2.job"
- C:\WINDOWS\System32\OOBE\oobebaln.exe
"2003-07-07 04:44:49 C:\WINDOWS\Tasks\Registration reminder 3.job"
- C:\WINDOWS\System32\OOBE\oobebaln.exe
.
**************************************************************************
catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2008-03-13 18:53:23
Windows 5.1.2600 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden autostart entries ...
HKLM\Software\Microsoft\Windows\CurrentVersion\Run
HTpatch = C:\WINDOWS\htpatch.exe?ows\CurrentVersion\Run???\??????Z????`??Z???Z`??Z???????????????Z???Z???Z???Z$??????Z???????????????Z???????????Z???w????(????3?w???w?????3?w ??w???Z:???????d???r??Z1??Z???Zd??????Z?-?Z????z??w8h?Z\2?Z?1?Zhtinst.INI?Z?u?Z????d???????0G?
scanning hidden files ...
scan completed successfully
hidden files: 0
**************************************************************************
.
Completion time: 2008-03-13 18:54:30
ComboFix-quarantined-files.txt 2008-03-14 00:54:10
ComboFix2.txt 2008-03-12 01:52:31
ComboFix3.txt 2008-03-12 01:07:46
ComboFix4.txt 2008-03-12 00:01:52
ComboFix5.txt 2008-03-11 23:26:28
.
2008-03-13 02:56:59 --- E O F ---