Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Unknown Virus/Malware Preventing Antivirus from running [Closed]

Started by ScottH , Jan 14 2012 07:22 AM

  • This topic is locked This topic is locked

#1
ScottH
Posted 14 January 2012 - 07:22 AM

ScottH

    New Member

  • Member
  • Pip
  • 6 posts
I received an e-mail on my smart phone that appeared to be from amazon.com saying my order had shipped. Since the e-mail was in text (no html), I didn't see any photos, otherwise I would have known it was malicious. I didn't follow any links on my phone, but I forwarded the message to my wife and asked if she had ordered anything on amazon. unfortunately, she clicked the link and her desktop computer is now infected with something. I was using windows defender on her desktop, but it didn't stop the attack. I have run spybot and it didn't find anything. I tried to download and run AVG and Avast, but the malware would either prevent the program from fully installing (AVG) or not allow me to turn the program on (Avast). I tried trend micro house call and it found a threat, but said I had to reboot my computer to fully remove it.....when I rebooted, nothing would happen. I'm still unable to run any of the antivirus programs (I have been installing and removing one at a time so I don't have more than one on my system).

I have tried running all of these in safe mode (I am able to get to safe mode), to no avail. Following is my otl logfile. Any help would be greatly appreciated.

Scott


OTL logfile created on: 1/14/2012 8:11:25 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\Sharon Hinesley\My Documents\Downloads
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.50 Gb Total Physical Memory | 1.04 Gb Available Physical Memory | 69.33% Memory free
2.11 Gb Paging File | 1.86 Gb Available in Paging File | 88.44% Paging File free
Paging file location(s): c:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 226.88 Gb Total Space | 4.98 Gb Free Space | 2.20% Space Free | Partition Type: NTFS

Computer Name: FAMILYROOM | User Name: Sharon Hinesley | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/14 08:11:11 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Sharon Hinesley\My Documents\Downloads\OTL.exe
PRC - [2012/01/12 17:33:44 | 000,298,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG8\avgwdsvc.exe
PRC - [2011/07/08 23:51:19 | 001,012,792 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exe
PRC - [2010/03/18 10:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003/09/12 21:27:46 | 000,135,168 | ---- | M] (Sony Corporation) -- C:\Program Files\Common Files\Sony Shared\WMPlugIn\SonicStageMonitoring.exe


========== Modules (No Company Name) ==========

MOD - [2011/09/27 07:23:00 | 000,087,912 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/09/27 07:22:40 | 001,242,472 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2011/07/08 23:51:17 | 000,329,272 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\ppgooglenaclpluginchrome.dll
MOD - [2011/07/08 23:51:16 | 003,649,592 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\pdf.dll
MOD - [2011/07/08 23:50:15 | 000,294,968 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\Locales\en-US.dll
MOD - [2011/07/08 23:49:50 | 000,104,520 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\avutil-50.dll
MOD - [2011/07/08 23:49:48 | 000,203,848 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\avformat-52.dll
MOD - [2011/07/08 23:49:47 | 001,846,344 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\avcodec-52.dll
MOD - [2011/07/08 21:31:29 | 006,333,088 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\12.0.742.122\gcswf32.dll


========== Win32 Services (SafeList) ==========

SRV - [2012/01/12 17:33:44 | 000,298,264 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG8\avgwdsvc.exe -- (avg8wd)
SRV - [2010/03/18 10:19:26 | 000,113,152 | ---- | M] (ArcSoft Inc.) [Auto | Running] -- C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe -- (ACDaemon)
SRV - [2008/04/14 05:42:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008/04/14 05:42:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transfer Protocol (SMTP)
SRV - [2008/04/14 05:42:24 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2007/01/11 03:02:00 | 000,113,664 | ---- | M] (SEIKO EPSON CORPORATION) [Auto | Stopped] -- C:\Documents and Settings\All Users\Application Data\EPSON\EPW!3 SSRP\E_S40RP7.EXE -- (EPSON_PM_RPCV4_01) EPSON V3 Service4(01)
SRV - [2006/11/03 19:19:58 | 000,013,592 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Program Files\Windows Defender\MsMpEng.exe -- (WinDefend)
SRV - [2005/04/26 18:18:29 | 000,069,632 | ---- | M] (Macromedia) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe -- (Macromedia Licensing Service)
SRV - [2005/01/14 16:18:48 | 001,839,104 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\vaio media integrated server\VMISrv.exe -- (VAIOMediaPlatform-IntegratedServer-AppServer)
SRV - [2005/01/14 15:26:56 | 000,745,472 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\vaio media integrated server\Platform\UPnPFramework.exe -- (VAIOMediaPlatform-IntegratedServer-UPnP) VAIO Media Integrated Server (UPnP)
SRV - [2005/01/14 15:21:32 | 000,057,344 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\vaio media integrated server\Platform\SV_Httpd.exe -- (VAIOMediaPlatform-IntegratedServer-HTTP) VAIO Media Integrated Server (HTTP)
SRV - [2005/01/14 15:20:14 | 000,188,416 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\vaio media integrated server\Platform\VmGateway.exe -- (VAIOMediaPlatform-Mobile-Gateway)
SRV - [2005/01/06 15:52:58 | 000,073,728 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCs\VzHardwareResourceManager\VzHardwareResourceManager.exe -- (VAIO Entertainment TV Device Arbitration Service)
SRV - [2005/01/06 15:52:56 | 000,131,072 | ---- | M] (Sony Corporation) [Auto | Stopped] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzCdbSvc.exe -- (VzCdbSvc)
SRV - [2005/01/06 15:52:56 | 000,118,784 | ---- | M] (Sony Corporation) [Auto | Stopped] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VzCdb\VzFw.exe -- (VzFw)
SRV - [2005/01/06 15:52:54 | 000,278,528 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\VAIO Entertainment Platform\VCSW\VCSW.exe -- (Vcsw)
SRV - [2004/10/29 01:20:54 | 000,053,337 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\PACSPTISVR.exe -- (PACSPTISVR)
SRV - [2004/10/29 01:18:24 | 000,069,718 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Sony Shared\AVLib\SPTISRV.exe -- (SPTISRV)
SRV - [2004/02/20 14:10:08 | 000,421,888 | ---- | M] (Lexmark International, Inc.) [On_Demand | Stopped] -- C:\WINDOWS\System32\lxbtcoms.exe -- (lxbt_device)
SRV - [2003/09/12 21:27:46 | 000,135,168 | ---- | M] (Sony Corporation) [Auto | Running] -- C:\Program Files\Common Files\Sony Shared\WMPlugIn\SonicStageMonitoring.exe -- (SonicStageMonitoring)
SRV - [2003/08/13 15:23:00 | 000,106,496 | ---- | M] (Sony Corporation) [Auto | Stopped] -- C:\Program Files\Sony\Sony TV Tuner Library\SMceMan.exe -- (Sony TVTA Manager)
SRV - [2003/08/13 15:10:04 | 000,118,784 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony TV Tuner Library\halsv.exe -- (Sony TV Tuner Controller)
SRV - [2003/08/13 15:07:22 | 000,094,208 | ---- | M] (Sony Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Sony TV Tuner Library\RM_SV.exe -- (Sony TV Tuner Manager)


========== Driver Services (SafeList) ==========

DRV - [2010/02/22 02:44:08 | 000,049,904 | R--- | M] (Avanquest Software) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BVRPMPR5.SYS -- (BVRPMPR5)
DRV - [2009/07/09 16:31:38 | 000,014,342 | R--- | M] (Intellon Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbethmp.sys -- (A_USBETHMP)
DRV - [2008/09/27 11:37:16 | 000,036,480 | ---- | M] (Motorola Inc) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\P2k.sys -- (P2k)
DRV - [2008/09/27 11:32:50 | 000,022,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbsermpt.sys -- (usbsermpt)
DRV - [2008/05/08 09:02:52 | 000,203,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rmcast.sys -- (RMCAST)
DRV - [2008/04/14 00:15:36 | 000,046,592 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\irbus.sys -- (IrBus)
DRV - [2008/04/14 00:09:46 | 000,092,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\mqac.sys -- (MQAC)
DRV - [2007/02/15 14:14:28 | 000,019,840 | ---- | M] (Generic) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StMp3Rec.sys -- (StMp3Rec)
DRV - [2005/03/01 06:54:48 | 000,018,048 | ---- | M] (SlySoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AnyDVD.sys -- (AnyDVD)
DRV - [2005/02/23 13:58:56 | 000,011,776 | ---- | M] (Arcsoft, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\afc.sys -- (Afc)
DRV - [2004/10/03 13:48:46 | 000,788,736 | ---- | M] (Sony Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smrt.sys -- (smrt)
DRV - [2004/08/10 18:00:00 | 000,098,176 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nbf.sys -- (Nbf)
DRV - [2003/12/04 11:33:20 | 000,011,264 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\asapiW2k.sys -- (ASAPIW2k)
DRV - [2003/05/23 13:44:00 | 001,171,648 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2002/06/13 14:08:46 | 000,014,604 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (pfc)
DRV - [2001/01/10 08:17:00 | 000,059,904 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pcx1unic.sys -- (pcx1unic)
DRV - [2001/01/10 08:17:00 | 000,016,384 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\pcx1nd5.sys -- (pcx1nd5)
DRV - [2000/12/05 19:18:02 | 000,003,952 | R--- | M] (Sony Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\DMICall.sys -- (DMICall)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultName = Google
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.co...ie=utf8&oe=utf8
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.facebook....home.php?ref=hp
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Fast Browser Search"
FF - prefs.js..browser.search.defaultthis.engineName: "Fast Browser Search"
FF - prefs.js..browser.search.defaulturl: "http://www.fastbrows...?s=DEF&v=19&q="
FF - prefs.js..browser.search.order.1: "Fast Browser Search"
FF - prefs.js..browser.search.selectedEngine: "Fast Browser Search"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..keyword.URL: "http://www.fastbrows...3B4247208D}&q="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Browser Plugin,version=1.0.0: C:\Program Files\DivX\DivX Web Player\npdivx32.dll File not found
FF - HKLM\Software\MozillaPlugins\@divx.com/DivX Content Upload Plugin,version=1.0.0: C:\Program Files\DivX\DivX Content Uploader\npUpload.dll File not found
FF - HKLM\Software\MozillaPlugins\@funwebproducts.com/Plugin: C:\Program Files\FunWebProducts\Installr\5.bin\NPFunWeb.dll File not found
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.11.2027: C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=1.0.2.2088: C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.1040: C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.57\npGoogleUpdate3.dll File not found
FF - HKLM\Software\MozillaPlugins\@unity3d.com/UnityPlayer: C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF - HKLM\Software\MozillaPlugins\@viewpoint.com/VMP: C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll ()
FF - HKLM\Software\MozillaPlugins\@virtools.com/3DviaPlayer: C:\Program Files\Virtools\3D Life Player\npvirtools.dll (Dassault Systèmes)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll (Yahoo! Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 2.0.0.20\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/03/07 12:27:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 2.0.0.20\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/14 20:56:52 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Netscape 7.02\Extensions\\Components: C:\Program Files\Netscape\Netscape\Components [2010/03/07 12:27:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Netscape 7.02\Extensions\\Plugins: C:\Program Files\Netscape\Netscape\Plugins [2010/08/14 20:56:52 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Netscape 7.02\Extensions\\Components: C:\Program Files\Netscape\Netscape\Components [2010/03/07 12:27:58 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Netscape 7.02\Extensions\\Plugins: C:\Program Files\Netscape\Netscape\Plugins [2010/08/14 20:56:52 | 000,000,000 | ---D | M]

[2008/07/18 21:04:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sharon Hinesley\Application Data\Mozilla\Extensions
[2008/07/18 21:04:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sharon Hinesley\Application Data\Mozilla\Extensions\[email protected]
[2012/01/13 22:11:04 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sharon Hinesley\Application Data\Mozilla\Firefox\Profiles\fd7yrj1v.default\extensions
[2009/12/14 17:41:31 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Sharon Hinesley\Application Data\Mozilla\Firefox\Profiles\fd7yrj1v.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2010/01/11 16:27:00 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Sharon Hinesley\Application Data\Mozilla\Firefox\Profiles\fd7yrj1v.default\extensions\{C2DCA7EB-22D2-4FD2-86A9-F99FCC8122BB}
[2010/01/11 16:27:02 | 000,005,407 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Application Data\Mozilla\Firefox\Profiles\fd7yrj1v.default\searchplugins\fast-browser-search.xml
[2010/04/16 19:34:19 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2009/01/18 08:54:27 | 000,000,000 | ---D | M] (DOM Inspector) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2009/01/18 08:54:27 | 000,000,000 | ---D | M] (Talkback) -- C:\Program Files\Mozilla Firefox\extensions\[email protected]
[2009/01/18 08:54:17 | 000,067,688 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\jar50.dll
[2009/01/18 08:54:17 | 000,054,368 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\jsd3250.dll
[2009/01/18 08:54:17 | 000,034,944 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\myspell.dll
[2009/01/18 08:54:18 | 000,046,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\spellchk.dll
[2009/01/18 08:54:18 | 000,172,136 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\xpinstal.dll
[2006/10/02 22:59:57 | 000,040,552 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\mozilla firefox\plugins\NPAdbESD.dll
[2006/10/10 15:57:38 | 000,049,152 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\mozilla firefox\plugins\npbittorrent.dll
[2008/01/27 09:38:56 | 000,000,897 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\livecom.png
[2008/01/27 09:38:56 | 000,001,015 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\livecom.src

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\12.0.742.122\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.6.5 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft Office 2003 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPOFFICE.DLL
CHR - plugin: Chrome NaCl (Disabled) = C:\Program Files\Google\Chrome\Application\12.0.742.122\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\12.0.742.122\pdf.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Acrobat 7.0\Reader\Browser\nppdf32.dll
CHR - plugin: Adobe ESD Manager Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\NPAdbESD.dll
CHR - plugin: BitTorrent (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Fun Web Products Plugin Stub (Enabled) = C:\Program Files\FunWebProducts\Installr\5.bin\NPFunWeb.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
CHR - plugin: Unity Player (Enabled) = C:\Program Files\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: MetaStream 3 Plugin (Enabled) = C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll
CHR - plugin: 3DVIA player (Enabled) = C:\Program Files\Virtools\3D Life Player\npvirtools.dll
CHR - plugin: Yahoo! activeX Plug-in Bridge (Enabled) = C:\Program Files\Yahoo!\Common\npyaxmpb.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin

O1 HOSTS File: ([2012/01/13 22:18:59 | 000,440,047 | R--- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: 127.0.0.1 www.007guard.com
O1 - Hosts: 127.0.0.1 007guard.com
O1 - Hosts: 127.0.0.1 008i.com
O1 - Hosts: 127.0.0.1 www.008k.com
O1 - Hosts: 127.0.0.1 008k.com
O1 - Hosts: 127.0.0.1 www.00hq.com
O1 - Hosts: 127.0.0.1 00hq.com
O1 - Hosts: 127.0.0.1 010402.com
O1 - Hosts: 127.0.0.1 www.032439.com
O1 - Hosts: 127.0.0.1 032439.com
O1 - Hosts: 127.0.0.1 www.0scan.com
O1 - Hosts: 127.0.0.1 0scan.com
O1 - Hosts: 127.0.0.1 1000gratisproben.com
O1 - Hosts: 127.0.0.1 www.1000gratisproben.com
O1 - Hosts: 127.0.0.1 1001namen.com
O1 - Hosts: 127.0.0.1 www.1001namen.com
O1 - Hosts: 127.0.0.1 100888290cs.com
O1 - Hosts: 127.0.0.1 www.100888290cs.com
O1 - Hosts: 127.0.0.1 www.100sexlinks.com
O1 - Hosts: 127.0.0.1 100sexlinks.com
O1 - Hosts: 127.0.0.1 10sek.com
O1 - Hosts: 127.0.0.1 www.10sek.com
O1 - Hosts: 127.0.0.1 www.1-2005-search.com
O1 - Hosts: 127.0.0.1 1-2005-search.com
O1 - Hosts: 15133 more lines...
O2 - BHO: (no name) - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - No CLSID value found.
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG8\avgssie.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (SSVHelper Class) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.5.0_11\bin\ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (BrowserHelper Class) - {8A9D74F9-560B-4FE7-ABEB-3B2E638E5CD6} - C:\Program Files\SGPSA\SearchAssistant.dll (Make The Web Better, LLC)
O2 - BHO: (Adobe PDF Conversion Toolbar Helper) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.6406.1642\swg.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (no name) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O3 - HKLM\..\Toolbar: (no name) - {A057A204-BACC-4D26-9990-79A187E2698E} - No CLSID value found.
O3 - HKLM\..\Toolbar: (no name) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - No CLSID value found.
O3 - HKCU\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {0B53EAC3-8D69-4B9E-9B19-A37C9A5676A7} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {1BB22D38-A411-4B13-A746-C2A4F4EC7344} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 7.0\Acrobat\AcroIEFavClient.dll (Adobe Systems Incorporated)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKCU..\Run: [KB00380644.exe] "C:\Documents and Settings\Sharon Hinesley\Application Data\KB00380644.exe" File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallVisualStyle = C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles (Microsoft)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: InstallTheme = C:\WINDOWS\Resources\Themes\Royale.theme ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_6CE5017F567343CA.dll (Google Inc.)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_11\bin\NPJPI150_11.dll (Sun Microsystems, Inc.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {00140000-B1BA-11CE-ABC6-F5B2E79D9E3F} http://166.82.128.23...ls/LTOCX14N.cab (LEAD Main Control (14.0))
O16 - DPF: {02BF25D5-8C17-4B23-BC80-D3488ABDDC6B} http://www.apple.com...ex/qtplugin.cab (QuickTime Object)
O16 - DPF: {02CF1781-EA91-4FA5-A200-646E8241987C} http://esupport.sony.com/VaioInfo.CAB (VaioInfo.CMClass)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.micr.../OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebo...toUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...p/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {149E45D8-163E-4189-86FC-45022AB2B6C9} file:///C:/Program%20Files/Bejeweled%20Twist/Images/stg_drm.ocx (SpinTop DRM Control)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.micr...heckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} http://housecall65.t...ivex/hcImpl.cab (Trend Micro ActiveX Scan Agent 6.6)
O16 - DPF: {28B66320-9687-4B13-8757-36F901887AB5} http://www.seehere.c...dan-canvasx.cab (CanvasX Class)
O16 - DPF: {2B323CD9-50E3-11D3-9466-00A0C9700498} http://us.chat1.yimg...v45/yacscom.cab (Yahoo! Audio Conferencing)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll (Installation Support)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.micr...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {3DC2E31C-371A-4BD3-9A27-CDF57CE604CF} http://moneycentral....bs/pmupd806.exe (Reg Error: Key error.)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://photos.walmar...martActivia.cab (Snapfish Activia)
O16 - DPF: {4B48D5DF-9021-45F7-A240-60304302A215} http://download.micr.../WebCleaner.cab (Malicious Software Removal Tool)
O16 - DPF: {4C39376E-FA9D-4349-BACC-D305C1750EF3} http://tools.ebayimg...l_v1-0-3-24.cab (EPUImageControl Class)
O16 - DPF: {5D637FAD-E202-48D1-8F18-5B9C459BD1E3} http://www.evite.com...geUploader5.cab (Image Uploader Control)
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} http://download.bitd...can8/oscan8.cab (BDSCANONLINE Control)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.micros...b?1230990389328 (WUWebControl Class)
O16 - DPF: {644E432F-49D3-41A1-8DD5-E099162EEEC5} http://security.syma...n/bin/cabsa.cab (Symantec RuFSI Utility Class)
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} http://www.facebook....ls/contactx.dll (ContactExtractor Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.micros...b?1230990361796 (MUWebControl Class)
O16 - DPF: {6E5A37BF-FD42-463A-877C-4EB7002E68AE} http://housecall65.t...ivex/hcImpl.cab (Housecall ActiveX 6.5)
O16 - DPF: {7D1E9C49-BD6A-11D3-87A8-009027A35D73} http://chat.yahoo.com/cab/yacsui.cab (Yahoo! Audio UI1)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...t/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {95D88B35-A521-472B-A182-BB1A98356421} http://asp.mathxl.co...nstallAsst2.cab (Pearson Installation Assistant 2)
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} http://web1.shutterf...ds/Uploader.cab (Shutterfly Picture Upload Plugin)
O16 - DPF: {9841D1AE-9C0B-11D3-9452-00105A098C21} http://166.82.128.23...ls/prntpro2.CAB (Pegasus PrintPRO Control v2.0)
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} http://acs.pandasoft...free/asinst.cab (ActiveScan Installer Class)
O16 - DPF: {9F1C11AA-197B-4942-BA54-47A8489BB47F} http://v4.windowsupd...8207.1978819444 (Reg Error: Key error.)
O16 - DPF: {A8683C98-5341-421B-B23C-8514C05354F1} http://photo.walmart...ploadClient.cab (FujifilmUploader Class)
O16 - DPF: {C52439A0-2693-4E40-B141-9F9AD5257241} https://ediagnostics....com/serval.cab (Lexmark eDiagnostics Class)
O16 - DPF: {CAFEEFAC-0014-0002-0001-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.4.2_01)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_06)
O16 - DPF: {CAFEEFAC-0015-0000-0009-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_09)
O16 - DPF: {CAFEEFAC-0015-0000-0011-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0_11)
O16 - DPF: {CC05BC12-2AA2-4AC7-AC81-0E40F83B1ADF} http://www.live365.c...ers/play365.cab (Live365Player Class)
O16 - DPF: {CC450D71-CC90-424C-8638-1F2DBAC87A54} file:///C:/Program%20Files/Bejeweled%20Twist/Images/armhelper.ocx (ArmHelper Control)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.m...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D4323BF2-006A-4440-A2F5-27E3E7AB25F8} http://3dlifeplayer....r_installer.exe (Virtools WebPlayer Class)
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} http://128.173.200.174/activex/AMC.cab (AxisMediaControlEmb Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.ad...Plus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E6D23284-0E9B-417D-A782-03E4487FC947} http://asp.mathxl.co.../MathPlayer.cab (Pearson MathXL Player)
O16 - DPF: {EFD1E13D-1CB3-4545-B754-CA410FE7734F} http://samsclubus.pn...veX_Control.cab (Photo Upload Plugin Class)
O16 - DPF: {EFFF96BF-7DA7-4646-BE34-9624B0C1475E} http://keyboarding.e...ponent/cads.CAB (Zeus Learning::. Complex Application Distribution System Control (CADS))
O16 - DPF: {F3DCFC89-8C6E-4052-9176-B7806D188FD5} http://www.disneypho...geUploader7.cab (Image Uploader Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 10.0.0.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{06B6BDF6-FCC4-4226-9C67-6A3C0CE8D07B}: DhcpNameServer = 192.168.2.6 192.168.1.6
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{85CC05D2-F85E-45F0-AB3C-7F8332DCC386}: DhcpNameServer = 10.0.0.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG8\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\WgaLogon: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {00DBDAC8-4691-4797-8E6A-7C6AB89BC441} - No CLSID value found.
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/03/31 21:15:56 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{28604338-a42d-11dd-9348-00112f134f9d}\Shell - "" = AutoRun
O33 - MountPoints2\{28604338-a42d-11dd-9348-00112f134f9d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{28604338-a42d-11dd-9348-00112f134f9d}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -a
O33 - MountPoints2\{6f6267ae-e8ca-11d8-a09d-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{6f6267ae-e8ca-11d8-a09d-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{6f6267ae-e8ca-11d8-a09d-806d6172696f}\Shell\AutoRun\command - "" = E:\autorun.exe
O33 - MountPoints2\{e68a2901-fbf7-11db-91ec-00112f134f9d}\Shell - "" = AutoRun
O33 - MountPoints2\{e68a2901-fbf7-11db-91ec-00112f134f9d}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{e68a2901-fbf7-11db-91ec-00112f134f9d}\Shell\AutoRun\command - "" = J:\LaunchU3.exe -a
O33 - MountPoints2\{fab05c9a-3658-11dc-9209-00112f134f9d}\Shell\AutoRun\command - "" = .\MigWiz\migsetup.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/01/13 22:02:53 | 002,002,320 | ---- | C] (Trend Micro Inc.) -- C:\Documents and Settings\Sharon Hinesley\Desktop\HousecallLauncher.exe
[2012/01/13 06:41:01 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Defender
[2012/01/12 20:46:55 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software
[2012/01/12 20:46:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVAST Software
[2012/01/12 19:41:59 | 000,000,000 | -H-D | C] -- C:\$AVG8.VAULT$
[2012/01/12 17:34:13 | 000,010,520 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2012/01/12 17:34:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\AVG Free 8.0
[2012/01/12 17:34:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg
[2012/01/12 17:33:44 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012/01/11 20:10:35 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Application Data\Common Files
[2012/01/11 20:09:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AVG2012
[2012/01/11 20:00:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\MFAData
[2012/01/11 18:00:16 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Sharon Hinesley\Recent
[2012/01/11 12:34:52 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Sharon Hinesley\Application Data\CF3CB084
[2012/01/04 18:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sharon Hinesley\My Documents\Downloads
[2012/01/04 17:35:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\Deployment
[2 C:\Documents and Settings\Sharon Hinesley\My Documents\*.tmp files -> C:\Documents and Settings\Sharon Hinesley\My Documents\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/14 07:17:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/01/14 07:16:10 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012/01/13 22:18:59 | 000,440,047 | R--- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/01/13 22:02:53 | 002,002,320 | ---- | M] (Trend Micro Inc.) -- C:\Documents and Settings\Sharon Hinesley\Desktop\HousecallLauncher.exe
[2012/01/13 06:46:27 | 000,000,330 | -H-- | M] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/01/13 06:40:39 | 000,001,396 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/01/13 06:38:23 | 000,000,882 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/13 05:38:00 | 000,000,886 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/01/12 20:35:14 | 000,161,685 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\census.cache
[2012/01/12 20:35:13 | 000,268,287 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\ars.cache
[2012/01/12 20:21:17 | 000,000,464 | ---- | M] () -- C:\WINDOWS\DCEBOOT.RST
[2012/01/12 20:18:35 | 000,102,400 | ---- | M] () -- C:\WINDOWS\RegBootClean.exe
[2012/01/12 20:18:22 | 000,022,032 | ---- | M] () -- C:\WINDOWS\DCEBoot.exe
[2012/01/12 20:04:27 | 000,000,036 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\housecall.guid.cache
[2012/01/12 17:34:13 | 000,010,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\avgrsstx.dll
[2012/01/12 17:34:13 | 000,001,507 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AVG Free 8.0.lnk
[2012/01/12 17:34:01 | 031,985,891 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2012/01/12 17:34:01 | 006,061,540 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2012/01/12 17:34:01 | 000,368,010 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2012/01/12 17:34:01 | 000,043,917 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2012/01/11 22:38:01 | 000,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/01/11 19:59:08 | 000,001,945 | ---- | M] () -- C:\WINDOWS\epplauncher.mif
[2012/01/11 12:34:44 | 000,045,312 | ---- | M] () -- C:\WINDOWS\System32\drivers\884ed59ee2af4e29.sys
[2012/01/11 03:10:20 | 000,489,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/01/11 03:10:20 | 000,084,382 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/01/10 21:36:00 | 000,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2012/01/08 19:52:20 | 000,000,135 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012/01/06 20:06:31 | 000,002,521 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Desktop\Microsoft Office Outlook 2003.lnk
[2012/01/03 12:03:01 | 000,057,344 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/01/01 18:33:22 | 000,000,128 | ---- | M] () -- C:\Documents and Settings\Sharon Hinesley\Desktop\Facebook.url
[2011/12/21 19:51:57 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\CCleaner.lnk
[2 C:\Documents and Settings\Sharon Hinesley\My Documents\*.tmp files -> C:\Documents and Settings\Sharon Hinesley\My Documents\*.tmp -> ]
[1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/13 06:46:27 | 000,000,330 | -H-- | C] () -- C:\WINDOWS\tasks\MP Scheduled Scan.job
[2012/01/13 06:41:04 | 000,000,955 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Defender.lnk
[2012/01/12 20:21:17 | 000,000,464 | ---- | C] () -- C:\WINDOWS\DCEBOOT.RST
[2012/01/12 20:18:22 | 000,102,400 | ---- | C] () -- C:\WINDOWS\RegBootClean.exe
[2012/01/12 20:18:22 | 000,022,032 | ---- | C] () -- C:\WINDOWS\DCEBoot.exe
[2012/01/12 20:15:39 | 000,161,685 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\census.cache
[2012/01/12 20:15:37 | 000,268,287 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\ars.cache
[2012/01/12 20:04:27 | 000,000,036 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\housecall.guid.cache
[2012/01/12 17:34:13 | 000,001,507 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AVG Free 8.0.lnk
[2012/01/12 17:34:01 | 031,985,891 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm
[2012/01/12 17:34:01 | 006,061,540 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg
[2012/01/12 17:34:01 | 000,368,010 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg
[2012/01/12 17:34:01 | 000,043,917 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg
[2012/01/11 12:34:44 | 000,045,312 | ---- | C] () -- C:\WINDOWS\System32\drivers\884ed59ee2af4e29.sys
[2012/01/01 18:33:22 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Desktop\Facebook.url
[2011/01/13 13:23:11 | 000,012,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\mouhid.sys
[2010/05/31 13:49:15 | 000,014,342 | R--- | C] () -- C:\WINDOWS\System32\drivers\usbethmp.sys
[2010/03/07 12:23:47 | 000,042,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbaapl.sys
[2009/12/29 08:38:43 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2009/12/29 08:38:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\popcreg.dat
[2009/06/18 12:07:26 | 000,000,054 | ---- | C] () -- C:\WINDOWS\System32\rp_stats.dat
[2009/06/18 12:07:26 | 000,000,039 | ---- | C] () -- C:\WINDOWS\System32\rp_rules.dat
[2009/04/06 17:40:18 | 000,000,022 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\kodakpcd.ini
[2009/03/01 23:26:40 | 000,001,226 | ---- | C] () -- C:\WINDOWS\checkip.dat
[2009/02/04 20:36:25 | 000,066,112 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2009/01/06 20:34:37 | 000,000,099 | ---- | C] () -- C:\WINDOWS\ANS2000.INI
[2009/01/06 20:34:37 | 000,000,020 | -H-- | C] () -- C:\WINDOWS\akebook.ini
[2009/01/06 20:34:37 | 000,000,004 | -H-- | C] () -- C:\WINDOWS\a3kebook.ini
[2009/01/03 09:19:22 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdbhc.dll
[2009/01/03 09:19:21 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdpash.dll
[2009/01/03 09:19:21 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdnepr.dll
[2009/01/03 09:19:21 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdiultn.dll
[2009/01/03 09:12:47 | 000,144,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\hdaudbus.sys
[2009/01/03 09:12:45 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\sffp_mmc.sys
[2008/09/27 11:51:35 | 000,058,904 | ---- | C] () -- C:\WINDOWS\System32\sysfolderazipcnt.dll
[2008/09/27 11:51:35 | 000,058,904 | ---- | C] () -- C:\WINDOWS\System32\azipcontmn.dll
[2008/09/27 11:51:28 | 000,156,160 | ---- | C] () -- C:\WINDOWS\System32\ztvunrar3.dll
[2008/09/27 11:51:28 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\ztvunacev2.dll
[2008/09/27 11:51:26 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\7-zip32.dll
[2008/09/27 11:32:50 | 000,022,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbsermpt.sys
[2008/08/09 07:36:21 | 000,102,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\tmcomm.sys
[2008/06/13 17:13:27 | 000,073,220 | ---- | C] () -- C:\WINDOWS\System32\EPPICPrinterDB.dat
[2008/06/13 17:13:27 | 000,031,053 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern131.dat
[2008/06/13 17:13:27 | 000,029,114 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern1.dat
[2008/06/13 17:13:27 | 000,027,417 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern121.dat
[2008/06/13 17:13:27 | 000,021,021 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern3.dat
[2008/06/13 17:13:27 | 000,015,670 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern5.dat
[2008/06/13 17:13:27 | 000,013,280 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern2.dat
[2008/06/13 17:13:27 | 000,010,673 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern4.dat
[2008/06/13 17:13:27 | 000,004,943 | ---- | C] () -- C:\WINDOWS\System32\EPPICPattern6.dat
[2008/06/13 17:13:27 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_PT.dat
[2008/06/13 17:13:27 | 000,001,140 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_BP.dat
[2008/06/13 17:13:27 | 000,001,137 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_ES.dat
[2008/06/13 17:13:27 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_FR.dat
[2008/06/13 17:13:27 | 000,001,130 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_CF.dat
[2008/06/13 17:13:27 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\EPPICPresetData_EN.dat
[2008/06/13 17:13:27 | 000,000,097 | ---- | C] () -- C:\WINDOWS\System32\PICSDK.ini
[2008/06/13 17:12:30 | 000,000,044 | ---- | C] () -- C:\WINDOWS\EPSPR280.ini
[2008/04/10 09:16:35 | 000,000,026 | ---- | C] () -- C:\WINDOWS\SSIMB.INI
[2008/04/10 09:16:33 | 000,031,776 | ---- | C] () -- C:\WINDOWS\UNWISE.EXE
[2008/02/04 17:23:10 | 000,693,792 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.DLL
[2008/01/29 11:01:28 | 000,026,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys
[2007/12/25 09:27:28 | 000,019,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\StMp3Rec.sys
[2007/08/13 18:09:09 | 000,016,384 | ---- | C] () -- C:\WINDOWS\System32\FileOps.exe
[2007/06/29 22:16:00 | 000,000,664 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\d3d9caps.dat
[2007/06/29 22:15:19 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2007/04/10 20:06:50 | 000,000,263 | ---- | C] () -- C:\WINDOWS\vuepro32.ini
[2007/02/24 18:16:54 | 000,000,030 | ---- | C] () -- C:\WINDOWS\INTURS.DAT
[2007/02/24 17:34:56 | 000,000,092 | ---- | C] () -- C:\WINDOWS\qwimp.ini
[2007/02/24 17:34:55 | 000,001,259 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2007/01/28 18:14:14 | 000,000,247 | ---- | C] () -- C:\WINDOWS\SIERRA.INI
[2007/01/28 18:14:12 | 000,000,148 | ---- | C] () -- C:\WINDOWS\ka.ini
[2006/12/02 19:07:34 | 000,010,856 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys
[2006/05/25 01:22:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\bdoscandel.exe
[2006/05/01 15:41:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Application Data\dm.ini
[2006/03/06 09:41:02 | 000,073,728 | ---- | C] () -- C:\WINDOWS\System32\AMV_DecDLL.dll
[2006/02/12 16:07:04 | 000,176,235 | ---- | C] () -- C:\WINDOWS\System32\Primomonnt.dll
[2006/02/12 16:07:04 | 000,000,129 | ---- | C] () -- C:\WINDOWS\primopdf.ini
[2005/12/28 22:31:08 | 000,034,308 | ---- | C] () -- C:\WINDOWS\System32\BASSMOD.dll
[2005/11/24 18:53:49 | 000,021,312 | ---- | C] () -- C:\WINDOWS\choice.exe
[2005/11/24 18:20:53 | 000,004,212 | -H-- | C] () -- C:\WINDOWS\System32\zllictbl.dat
[2005/11/24 17:18:09 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\ZPORT4AS.dll
[2005/09/11 19:28:23 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\cdTextCtl.dll
[2005/07/30 11:08:47 | 000,098,176 | ---- | C] () -- C:\WINDOWS\System32\drivers\nbf.sys
[2005/07/30 11:02:25 | 000,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2005/07/30 11:02:24 | 000,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2005/07/30 11:01:42 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2005/07/30 11:01:41 | 000,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2005/07/30 11:01:39 | 000,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2005/07/20 13:35:00 | 000,036,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\P2k.sys
[2005/05/17 18:10:31 | 000,011,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\mhndrv.sys
[2005/05/16 18:07:21 | 000,831,600 | ---- | C] () -- C:\WINDOWS\System32\Ctaa1.dat
[2005/05/16 18:07:04 | 000,333,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\ctdvda2k.sys
[2005/05/04 19:27:17 | 000,099,965 | ---- | C] () -- C:\WINDOWS\UninstallFirefox.exe
[2005/05/02 16:44:30 | 000,000,048 | ---- | C] () -- C:\WINDOWS\ASYM.INI
[2005/04/26 16:21:20 | 000,015,840 | ---- | C] () -- C:\WINDOWS\System32\Machnm1.exe
[2005/04/20 16:45:42 | 000,000,135 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2005/04/13 19:50:17 | 000,125,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\imagesrv.sys
[2005/04/13 19:50:17 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\imagedrv.sys
[2005/03/29 19:43:50 | 000,000,033 | ---- | C] () -- C:\WINDOWS\render.ini
[2005/03/01 15:30:20 | 000,000,453 | ---- | C] () -- C:\WINDOWS\bdoscandellang.ini
[2005/02/11 16:28:24 | 000,516,096 | ---- | C] () -- C:\WINDOWS\System32\libF90MD.dll
[2005/02/11 16:28:24 | 000,299,008 | ---- | C] () -- C:\WINDOWS\System32\libIEPCF90MD.dll
[2005/02/11 16:28:24 | 000,282,624 | ---- | C] () -- C:\WINDOWS\System32\vc6-re200l.dll
[2005/02/11 16:28:24 | 000,255,695 | ---- | C] () -- C:\WINDOWS\System32\CFS41.dll
[2005/02/11 16:28:24 | 000,061,515 | ---- | C] () -- C:\WINDOWS\System32\libmmd.dll
[2005/01/26 18:45:24 | 000,462,392 | ---- | C] () -- C:\WINDOWS\DelTemp.exe
[2005/01/01 20:11:43 | 000,003,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\RegKill.sys
[2005/01/01 20:07:05 | 000,009,728 | ---- | C] () -- C:\WINDOWS\System32\drivers\ElbyCDIO.sys
[2004/12/27 20:34:51 | 000,000,064 | ---- | C] () -- C:\WINDOWS\System32\BurnData.bin
[2004/12/14 01:12:06 | 000,022,016 | ---- | C] () -- C:\WINDOWS\System32\AdobePDF.dll
[2004/09/16 12:26:40 | 000,012,634 | ---- | C] () -- C:\WINDOWS\System32\drivers\ADFUUD.SYS
[2004/09/06 19:35:20 | 000,000,420 | ---- | C] () -- C:\WINDOWS\IfoEdit.INI
[2004/08/23 10:06:22 | 000,001,100 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2004/08/11 22:42:05 | 000,139,264 | R--- | C] () -- C:\WINDOWS\System32\lxbtcoin.dll
[2004/08/11 22:42:05 | 000,126,976 | R--- | C] () -- C:\WINDOWS\System32\lxbtsnls.dll
[2004/08/11 22:41:57 | 000,015,104 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbscan.sys
[2004/08/11 22:41:30 | 000,151,552 | ---- | C] () -- C:\WINDOWS\System32\lxbthwdf.dll
[2004/08/11 16:54:10 | 000,000,055 | ---- | C] () -- C:\WINDOWS\AutoCAD 2000 EReg.ini
[2004/08/11 16:42:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\mtstack.INI
[2004/08/11 16:29:16 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\MTSTACK.EXE
[2004/08/10 18:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2004/08/10 18:00:00 | 002,148,864 | ---- | C] () -- C:\WINDOWS\System32\ntoskrnl.exe
[2004/08/10 18:00:00 | 001,859,584 | ---- | C] () -- C:\WINDOWS\System32\win32k.sys
[2004/08/10 18:00:00 | 000,799,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\dmboot.sys
[2004/08/10 18:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2004/08/10 18:00:00 | 000,574,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\ntfs.sys
[2004/08/10 18:00:00 | 000,456,320 | ---- | C] () -- C:\WINDOWS\System32\drivers\mrxsmb.sys
[2004/08/10 18:00:00 | 000,384,768 | ---- | C] () -- C:\WINDOWS\System32\drivers\update.sys
[2004/08/10 18:00:00 | 000,361,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\tcpip.sys
[2004/08/10 18:00:00 | 000,357,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\srv.sys
[2004/08/10 18:00:00 | 000,303,616 | ---- | C] () -- C:\WINDOWS\System32\wmstream.dll
[2004/08/10 18:00:00 | 000,290,432 | ---- | C] () -- C:\WINDOWS\System32\atmfd.dll
[2004/08/10 18:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2004/08/10 18:00:00 | 000,265,728 | ---- | C] () -- C:\WINDOWS\System32\drivers\http.sys
[2004/08/10 18:00:00 | 000,247,326 | ---- | C] () -- C:\WINDOWS\System32\strmdll.dll
[2004/08/10 18:00:00 | 000,226,880 | ---- | C] () -- C:\WINDOWS\System32\drivers\tcpip6.sys
[2004/08/10 18:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2004/08/10 18:00:00 | 000,203,136 | ---- | C] () -- C:\WINDOWS\System32\drivers\rmcast.sys
[2004/08/10 18:00:00 | 000,182,656 | ---- | C] () -- C:\WINDOWS\System32\drivers\ndis.sys
[2004/08/10 18:00:00 | 000,180,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\mrxdav.sys
[2004/08/10 18:00:00 | 000,175,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\rdbss.sys
[2004/08/10 18:00:00 | 000,163,584 | ---- | C] () -- C:\WINDOWS\System32\drivers\nwrdr.sys
[2004/08/10 18:00:00 | 000,162,816 | ---- | C] () -- C:\WINDOWS\System32\drivers\netbt.sys
[2004/08/10 18:00:00 | 000,153,344 | ---- | C] () -- C:\WINDOWS\System32\drivers\dmio.sys
[2004/08/10 18:00:00 | 000,152,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\ipnat.sys
[2004/08/10 18:00:00 | 000,143,872 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbport.sys
[2004/08/10 18:00:00 | 000,143,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\fastfat.sys
[2004/08/10 18:00:00 | 000,134,400 | ---- | C] () -- C:\WINDOWS\System32\HAL.DLL
[2004/08/10 18:00:00 | 000,125,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\ftdisk.sys
[2004/08/10 18:00:00 | 000,120,192 | ---- | C] () -- C:\WINDOWS\System32\drivers\pcmcia.sys
[2004/08/10 18:00:00 | 000,105,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\mup.sys
[2004/08/10 18:00:00 | 000,096,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\scsiport.sys
[2004/08/10 18:00:00 | 000,092,928 | ---- | C] () -- C:\WINDOWS\System32\drivers\ksecdd.sys
[2004/08/10 18:00:00 | 000,092,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\mqac.sys
[2004/08/10 18:00:00 | 000,092,424 | ---- | C] () -- C:\WINDOWS\System32\rdpdd.dll
[2004/08/10 18:00:00 | 000,091,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\ndiswan.sys
[2004/08/10 18:00:00 | 000,088,320 | ---- | C] () -- C:\WINDOWS\System32\drivers\nwlnkipx.sys
[2004/08/10 18:00:00 | 000,081,664 | ---- | C] () -- C:\WINDOWS\System32\drivers\videoprt.sys
[2004/08/10 18:00:00 | 000,079,232 | ---- | C] () -- C:\WINDOWS\System32\drivers\sdbus.sys
[2004/08/10 18:00:00 | 000,075,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\ipsec.sys
[2004/08/10 18:00:00 | 000,071,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\dxg.sys
[2004/08/10 18:00:00 | 000,069,120 | ---- | C] () -- C:\WINDOWS\System32\drivers\psched.sys
[2004/08/10 18:00:00 | 000,068,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\pci.sys
[2004/08/10 18:00:00 | 000,066,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\udfs.sys
[2004/08/10 18:00:00 | 000,064,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\serial.sys
[2004/08/10 18:00:00 | 000,063,232 | ---- | C] () -- C:\WINDOWS\System32\drivers\nwlnknb.sys
[2004/08/10 18:00:00 | 000,061,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\ohci1394.sys
[2004/08/10 18:00:00 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\msvcrt40.dll
[2004/08/10 18:00:00 | 000,059,520 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbhub.sys
[2004/08/10 18:00:00 | 000,059,136 | ---- | C] () -- C:\WINDOWS\System32\drivers\rfcomm.sys
[2004/08/10 18:00:00 | 000,055,936 | ---- | C] () -- C:\WINDOWS\System32\drivers\nwlnkspx.sys
[2004/08/10 18:00:00 | 000,052,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\i8042prt.sys
[2004/08/10 18:00:00 | 000,052,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\volsnap.sys
[2004/08/10 18:00:00 | 000,051,456 | ---- | C] () -- C:\WINDOWS\System32\vga256.dll
[2004/08/10 18:00:00 | 000,051,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\rasl2tp.sys
[2004/08/10 18:00:00 | 000,051,200 | ---- | C] () -- C:\WINDOWS\System32\wmerrenu.dll
[2004/08/10 18:00:00 | 000,049,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\classpnp.sys
[2004/08/10 18:00:00 | 000,048,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\raspptp.sys
[2004/08/10 18:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2004/08/10 18:00:00 | 000,044,544 | ---- | C] () -- C:\WINDOWS\System32\drivers\fips.sys
[2004/08/10 18:00:00 | 000,042,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\mountmgr.sys
[2004/08/10 18:00:00 | 000,042,112 | ---- | C] () -- C:\WINDOWS\System32\drivers\imapi.sys
[2004/08/10 18:00:00 | 000,041,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\raspppoe.sys
[2004/08/10 18:00:00 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\drivers\ndproxy.sys
[2004/08/10 18:00:00 | 000,040,320 | ---- | C] () -- C:\WINDOWS\System32\drivers\nmnt.sys
[2004/08/10 18:00:00 | 000,037,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\isapnp.sys
[2004/08/10 18:00:00 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\hidclass.sys
[2004/08/10 18:00:00 | 000,036,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\ip6fw.sys
[2004/08/10 18:00:00 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\intelppm.sys
[2004/08/10 18:00:00 | 000,036,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\disk.sys
[2004/08/10 18:00:00 | 000,035,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\msgpc.sys
[2004/08/10 18:00:00 | 000,034,688 | ---- | C] () -- C:\WINDOWS\System32\drivers\netbios.sys
[2004/08/10 18:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\drivers\wanarp.sys
[2004/08/10 18:00:00 | 000,034,432 | ---- | C] () -- C:\WINDOWS\System32\drivers\rawwan.sys
[2004/08/10 18:00:00 | 000,033,280 | ---- | C] () -- C:\WINDOWS\System32\csrsrv.dll
[2004/08/10 18:00:00 | 000,032,896 | ---- | C] () -- C:\WINDOWS\System32\drivers\ipfltdrv.sys
[2004/08/10 18:00:00 | 000,032,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\nwlnkfwd.sys
[2004/08/10 18:00:00 | 000,032,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbccgp.sys
[2004/08/10 18:00:00 | 000,030,848 | ---- | C] () -- C:\WINDOWS\System32\drivers\npfs.sys
[2004/08/10 18:00:00 | 000,030,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\rndismp.sys
[2004/08/10 18:00:00 | 000,030,208 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbehci.sys
[2004/08/10 18:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2004/08/10 18:00:00 | 000,027,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\fdc.sys
[2004/08/10 18:00:00 | 000,026,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\USBSTOR.SYS
[2004/08/10 18:00:00 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\hidbth.sys
[2004/08/10 18:00:00 | 000,024,960 | ---- | C] () -- C:\WINDOWS\System32\drivers\pciidex.sys
[2004/08/10 18:00:00 | 000,024,960 | ---- | C] () -- C:\WINDOWS\System32\drivers\hidparse.sys
[2004/08/10 18:00:00 | 000,024,576 | ---- | C] () -- C:\WINDOWS\System32\drivers\kbdclass.sys
[2004/08/10 18:00:00 | 000,020,992 | ---- | C] () -- C:\WINDOWS\System32\drivers\vga.sys
[2004/08/10 18:00:00 | 000,020,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\ipinip.sys
[2004/08/10 18:00:00 | 000,020,608 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbuhci.sys
[2004/08/10 18:00:00 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/08/10 18:00:00 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\drivers\flpydisk.sys
[2004/08/10 18:00:00 | 000,019,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\partmgr.sys
[2004/08/10 18:00:00 | 000,019,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\tdi.sys
[2004/08/10 18:00:00 | 000,019,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\msfs.sys
[2004/08/10 18:00:00 | 000,018,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\wpdusb.sys
[2004/08/10 18:00:00 | 000,018,176 | ---- | C] () -- C:\WINDOWS\System32\vga64k.dll
[2004/08/10 18:00:00 | 000,017,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\ptilink.sys
[2004/08/10 18:00:00 | 000,017,664 | ---- | C] () -- C:\WINDOWS\System32\watchdog.sys
[2004/08/10 18:00:00 | 000,016,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\raspti.sys
[2004/08/10 18:00:00 | 000,015,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\serenum.sys
[2004/08/10 18:00:00 | 000,015,232 | ---- | C] () -- C:\WINDOWS\System32\drivers\streamip.sys
[2004/08/10 18:00:00 | 000,014,976 | ---- | C] () -- C:\WINDOWS\System32\drivers\tape.sys
[2004/08/10 18:00:00 | 000,014,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\smclib.sys
[2004/08/10 18:00:00 | 000,014,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\kbdhid.sys
[2004/08/10 18:00:00 | 000,014,208 | ---- | C] () -- C:\WINDOWS\System32\drivers\diskdump.sys
[2004/08/10 18:00:00 | 000,012,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\usb8023.sys
[2004/08/10 18:00:00 | 000,012,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\nwlnkflt.sys
[2004/08/10 18:00:00 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\bootvid.dll
[2004/08/10 18:00:00 | 000,012,168 | ---- | C] () -- C:\WINDOWS\System32\tsddd.dll
[2004/08/10 18:00:00 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\ws2ifsl.sys
[2004/08/10 18:00:00 | 000,011,904 | ---- | C] () -- C:\WINDOWS\System32\drivers\sffdisk.sys
[2004/08/10 18:00:00 | 000,011,392 | ---- | C] () -- C:\WINDOWS\System32\drivers\sfloppy.sys
[2004/08/10 18:00:00 | 000,011,136 | ---- | C] () -- C:\WINDOWS\System32\drivers\slip.sys
[2004/08/10 18:00:00 | 000,011,008 | ---- | C] () -- C:\WINDOWS\System32\drivers\sffp_sd.sys
[2004/08/10 18:00:00 | 000,010,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\ndistapi.sys
[2004/08/10 18:00:00 | 000,010,496 | ---- | C] () -- C:\WINDOWS\System32\mcdsrv32.dll
[2004/08/10 18:00:00 | 000,010,496 | ---- | C] () -- C:\WINDOWS\System32\drivers\dxapi.sys
[2004/08/10 18:00:00 | 000,010,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\hidusb.sys
[2004/08/10 18:00:00 | 000,010,112 | ---- | C] () -- C:\WINDOWS\System32\modex.dll
[2004/08/10 18:00:00 | 000,009,344 | ---- | C] () -- C:\WINDOWS\System32\vga.dll
[2004/08/10 18:00:00 | 000,009,344 | ---- | C] () -- C:\WINDOWS\System32\framebuf.dll
[2004/08/10 18:00:00 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\kbdnecat.dll
[2004/08/10 18:00:00 | 000,008,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\rasacd.sys
[2004/08/10 18:00:00 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\kbdhept.dll
[2004/08/10 18:00:00 | 000,007,936 | ---- | C] () -- C:\WINDOWS\System32\drivers\fs_rec.sys
[2004/08/10 18:00:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\drivers\mcd.sys
[2004/08/10 18:00:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\kbdsmsno.dll
[2004/08/10 18:00:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\kbdsmsfi.dll
[2004/08/10 18:00:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\kbdnecnt.dll
[2004/08/10 18:00:00 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\kbdcan.dll
[2004/08/10 18:00:00 | 000,007,424 | ---- | C] () -- C:\WINDOWS\System32\kd1394.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdukx.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdno1.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdnec95.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdnec.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdibm02.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdfi1.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\kbdcz.dll
[2004/08/10 18:00:00 | 000,007,168 | ---- | C] () -- C:\WINDOWS\System32\f3ahvoas.dll
[2004/08/10 18:00:00 | 000,007,040 | ---- | C] () -- C:\WINDOWS\System32\kdcom.dll
[2004/08/10 18:00:00 | 000,006,784 | ---- | C] () -- C:\WINDOWS\System32\drivers\parvdm.sys
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdycl.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdsl1.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdsl.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdsg.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdpl.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdlk41a.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdla.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdinmal.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdhu.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdhela3.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdcz2.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdcz1.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdcr.dll
[2004/08/10 18:00:00 | 000,006,656 | ---- | C] () -- C:\WINDOWS\System32\kbdal.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdusx.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdusr.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdusl.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdtuq.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdtuf.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdsw.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdsp.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdsf.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdpo.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdno.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdne.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdmlt48.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdmlt47.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdmac.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdlv1.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdlv.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdlk41j.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdinben.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdinbe1.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdic.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdhela2.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdgr1.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdgr.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdgkl.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdfr.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdfo.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdfi.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdfc.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdest.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdes.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdda.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdca.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdbr.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdbene.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdbe.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbdax2.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbd106n.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbd101a.dll
[2004/08/10 18:00:00 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbd101.dll
[2004/08/10 18:00:00 | 000,005,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\rootmdm.sys
[2004/08/10 18:00:00 | 000,005,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\dmload.sys
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdycc.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbduzb.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdus.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdur.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbduk.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdtat.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdru1.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdru.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdro.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdpl1.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdmon.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdmaori.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdlt1.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdlt.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdkyr.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdkaz.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdit142.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdit.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdir.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdhu1.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdhe319.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdhe220.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdhe.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdgae.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdbu.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdblr.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdazel.dll
[2004/08/10 18:00:00 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbdaze.dll
[2004/08/10 18:00:00 | 000,005,120 | ---- | C] () -- C:\WINDOWS\System32\kbddv.dll
[2004/08/10 18:00:00 | 000,004,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbd.sys
[2004/08/10 18:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2004/08/10 18:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2004/08/10 18:00:00 | 000,004,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\wmilib.sys
[2004/08/10 18:00:00 | 000,004,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\rdpcdd.sys
[2004/08/10 18:00:00 | 000,004,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\mnmdd.sys
[2004/08/10 18:00:00 | 000,003,456 | ---- | C] () -- C:\WINDOWS\System32\drivers\oprghdlr.sys
[2004/08/10 18:00:00 | 000,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\pciide.sys
[2004/08/10 18:00:00 | 000,003,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\dxgthk.sys
[2004/08/10 18:00:00 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\null.sys
[2004/08/10 18:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\dcache.bin
[2004/08/09 23:11:42 | 000,198,144 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004/08/08 19:27:06 | 000,000,000 | ---- | C] () -- C:\WINDOWS\VAIOUpdt.INI
[2004/08/08 18:34:17 | 000,000,138 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\fusioncache.dat
[2004/08/08 09:30:21 | 000,406,016 | ---- | C] () -- C:\WINDOWS\System32\PSDrvCheck.exe
[2004/08/08 06:52:48 | 000,145,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\e100b325.sys
[2004/08/08 06:52:48 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\e100bmsg.dll
[2004/08/07 21:43:22 | 000,000,335 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2004/08/07 21:04:17 | 000,057,344 | ---- | C] () -- C:\Documents and Settings\Sharon Hinesley\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/08/07 19:46:00 | 000,014,604 | ---- | C] () -- C:\WINDOWS\System32\drivers\pfc.sys
[2004/08/07 19:44:48 | 000,014,165 | ---- | C] () -- C:\WINDOWS\System32\drivers\Pclepci.sys
[2004/08/07 19:17:03 | 000,016,384 | R--- | C] () -- C:\WINDOWS\System32\drivers\pcx1nd5.sys
[2004/08/07 19:16:23 | 000,059,904 | R--- | C] () -- C:\WINDOWS\System32\drivers\pcx1unic.sys
[2004/08/07 19:16:23 | 000,005,312 | R--- | C] () -- C:\WINDOWS\System32\drivers\pcx1wh.sys
[2004/08/07 19:16:23 | 000,003,936 | R--- | C] () -- C:\WINDOWS\System32\drivers\pcx1cr.sys
[2004/08/07 19:11:57 | 000,000,575 | ---- | C] () -- C:\WINDOWS\VTruck1.ini
[2004/08/07 19:09:27 | 000,032,768 | ---- | C] () -- C:\WINDOWS\System32\LXPRMON.DLL
[2004/08/07 19:09:27 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\LXPMONUI.DLL
[2004/08/07 19:02:09 | 000,001,832 | R--- | C] () -- C:\WINDOWS\System32\lxbtprod.ini
[2004/08/07 18:37:10 | 000,025,856 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbprint.sys
[2004/08/04 02:56:46 | 000,011,325 | ---- | C] () -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2004/08/04 02:56:45 | 000,003,901 | ---- | C] () -- C:\WINDOWS\System32\drivers\siint5.dll
[2004/08/04 02:56:44 | 001,737,856 | ---- | C] () -- C:\WINDOWS\System32\mtxparhd.dll
[2004/08/04 02:56:44 | 000,397,056 | ---- | C] () -- C:\WINDOWS\System32\s3gnb.dll
[2004/08/04 02:56:41 | 001,888,992 | ---- | C] () -- C:\WINDOWS\System32\ati3duag.dll
[2004/08/04 02:56:41 | 000,870,784 | ---- | C] () -- C:\WINDOWS\System32\ati3d1ag.dll
[2004/08/04 02:56:41 | 000,516,768 | ---- | C] () -- C:\WINDOWS\System32\ativvaxx.dll
[2004/08/04 02:56:41 | 000,377,984 | ---- | C] () -- C:\WINDOWS\System32\ati2dvaa.dll
[2004/08/04 02:56:41 | 000,201,728 | ---- | C] () -- C:\WINDOWS\System32\ati2dvag.dll
[2004/08/04 01:10:10 | 000,121,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbvideo.sys
[2004/08/04 01:07:43 | 000,046,464 | ---- | C] () -- C:\WINDOWS\System32\drivers\gagp30kx.sys
[2004/08/04 01:07:43 | 000,044,672 | ---- | C] () -- C:\WINDOWS\System32\drivers\uagp35.sys
[2004/08/04 01:07:42 | 000,042,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\viaagp.sys
[2004/08/04 01:07:42 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\drivers\sisagp.sys
[2004/08/04 01:04:52 | 000,014,208 | ---- | C] () -- C:\WINDOWS\System32\drivers\wacompen.sys
[2004/08/04 01:04:51 | 000,012,672 | ---- | C] () -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2004/08/04 01:04:33 | 000,012,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\usb8023x.sys
[2004/08/04 01:04:31 | 000,030,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2004/08/04 01:01:19 | 000,129,792 | ---- | C] () -- C:\WINDOWS\System32\drivers\fltmgr.sys
[2004/08/04 00:41:55 | 000,011,868 | ---- | C] () -- C:\WINDOWS\System32\drivers\mdmxsdk.sys
[2004/08/04 00:41:54 | 001,041,536 | ---- | C] () -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys
[2004/08/04 00:41:48 | 000,685,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\hsfcxts2.sys
[2004/08/04 00:41:46 | 000,220,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys
[2004/08/04 00:41:45 | 000,013,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2004/08/04 00:41:44 | 000,095,424 | ---- | C] () -- C:\WINDOWS\System32\drivers\slnthal.sys
[2004/08/04 00:41:42 | 000,404,990 | ---- | C] () -- C:\WINDOWS\System32\drivers\slntamr.sys
[2004/08/04 00:41:40 | 000,129,535 | ---- | C] () -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2004/08/04 00:41:39 | 000,180,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2004/08/04 00:41:39 | 000,013,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\recagent.sys
[2004/08/04 00:41:38 | 000,126,686 | ---- | C] () -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2004/08/04 00:41:37 | 001,309,184 | ---- | C] () -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2004/08/04 00:29:51 | 000,166,912 | ---- | C] () -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2004/08/04 00:29:45 | 000,025,471 | ---- | C] () -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2004/08/04 00:29:44 | 000,022,271 | ---- | C] () -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2004/08/04 00:29:40 | 000,011,935 | ---- | C] () -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2004/08/04 00:29:40 | 000,011,871 | ---- | C] () -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2004/08/04 00:29:39 | 000,011,295 | ---- | C] () -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2004/08/04 00:29:38 | 000,011,807 | ---- | C] () -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2004/08/04 00:29:36 | 000,452,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2004/08/03 18:15:56 | 000,060,800 | ---- | C] () -- C:\WINDOWS\System32\drivers\sysaudio.sys
[2004/08/03 18:15:50 | 000,146,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\portcls.sys
[2004/08/03 18:15:22 | 000,141,056 | ---- | C] () -- C:\WINDOWS\System32\drivers\ks.sys
[2004/08/03 18:15:06 | 000,083,072 | ---- | C] () -- C:\WINDOWS\System32\drivers\wdmaud.sys
[2004/08/03 18:10:14 | 000,015,232 | ---- | C] () -- C:\WINDOWS\System32\drivers\mpe.sys
[2004/08/03 18:10:14 | 000,010,880 | ---- | C] () -- C:\WINDOWS\System32\drivers\ndisip.sys
[2004/08/03 18:09:56 | 000,025,344 | ---- | C] () -- C:\WINDOWS\System32\drivers\sonydcam.sys
[2004/08/03 18:08:58 | 000,015,872 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbintel.sys
[2004/08/03 18:08:06 | 000,030,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\modem.sys
[2004/08/03 18:08:04 | 000,049,408 | ---- | C] () -- C:\WINDOWS\System32\drivers\stream.sys
[2004/08/03 18:08:00 | 000,060,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\drmk.sys
[2004/08/03 18:07:58 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\drmkaud.sys
[2004/08/03 18:07:50 | 000,172,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\kmixer.sys
[2004/08/03 18:07:48 | 000,015,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\mssmbios.sys
[2004/08/03 18:07:46 | 000,063,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\mf.sys
[2004/08/03 18:07:38 | 000,005,888 | ---- | C] () -- C:\WINDOWS\System32\drivers\smbali.sys
[2004/08/03 18:03:18 | 000,012,288 | ---- | C] () -- C:\WINDOWS\System32\drivers\tunmp.sys
[2004/08/03 18:03:14 | 000,014,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\ndisuio.sys
[2004/08/03 17:59:22 | 000,036,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\crusoe.sys
[2004/08/03 17:59:20 | 000,042,752 | ---- | C] () -- C:\WINDOWS\System32\drivers\p3.sys
[2004/08/03 17:59:18 | 000,035,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\processr.sys
[2004/08/03 17:59:08 | 000,080,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\parport.sys
[2004/08/03 17:58:42 | 000,007,552 | ---- | C] () -- C:\WINDOWS\System32\drivers\mskssrv.sys
[2004/08/03 17:58:42 | 000,004,992 | ---- | C] () -- C:\WINDOWS\System32\drivers\mspqm.sys
[2004/08/03 17:58:42 | 000,004,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\swenum.sys
[2004/08/03 17:58:40 | 000,005,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\mspclock.sys
[2004/08/03 17:58:34 | 000,023,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\mouclass.sys
[2004/08/03 17:58:30 | 000,061,824 | ---- | C] () -- C:\WINDOWS\System32\drivers\nic1394.sys
[2004/06/28 23:04:32 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/06/28 22:55:25 | 000,000,002 | ---- | C] () -- C:\WINDOWS\System32\Px.ini
[2004/06/28 22:47:36 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2004/06/28 22:47:36 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2004/06/28 22:47:36 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2004/06/28 22:47:36 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2004/06/28 22:47:36 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2004/06/28 22:47:36 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2004/04/01 18:30:03 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/04/01 16:49:40 | 000,001,059 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2004/04/01 16:23:05 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\Cpuinf32.dll
[2004/04/01 16:15:17 | 000,046,080 | ---- | C] () -- C:\WINDOWS\System32\drivers\pxhelp20.sys
[2004/04/01 16:13:32 | 000,090,832 | ---- | C] () -- C:\WINDOWS\NSUninst.exe
[2004/04/01 16:13:26 | 000,012,490 | ---- | C] () -- C:\WINDOWS\mozver.dat
[2004/04/01 15:42:15 | 000,003,952 | R--- | C] () -- C:\WINDOWS\System32\drivers\DMICall.sys
[2004/04/01 15:31:07 | 000,111,552 | ---- | C] () -- C:\WINDOWS\setup.exe
[2004/04/01 15:24:35 | 000,526,184 | ---- | C] () -- C:\WINDOWS\q329692.exe
[2004/04/01 15:18:20 | 000,236,392 | ---- | C] () -- C:\WINDOWS\q329112.exe
[2004/04/01 14:12:04 | 000,000,031 | ---- | C] () -- C:\WINDOWS\System32\elcric.dat
[2004/03/31 21:21:30 | 000,085,248 | ---- | C] () -- C:\WINDOWS\System32\drivers\nabtsfec.sys
[2004/03/31 21:21:30 | 000,051,200 | ---- | C] () -- C:\WINDOWS\System32\drivers\msdv.sys
[2004/03/31 21:21:30 | 000,019,200 | ---- | C] () -- C:\WINDOWS\System32\drivers\wstcodec.sys
[2004/03/31 21:21:30 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\mstee.sys
[2004/03/31 21:17:34 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2004/03/31 21:14:06 | 000,073,472 | ---- | C] () -- C:\WINDOWS\System32\drivers\sr.sys
[2004/03/31 21:14:05 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\mnmdd.dll
[2004/03/31 21:13:09 | 000,023,380 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2004/03/31 21:12:32 | 000,021,896 | ---- | C] () -- C:\WINDOWS\System32\drivers\tdtcp.sys
[2004/03/31 21:12:32 | 000,012,040 | ---- | C] () -- C:\WINDOWS\System32\drivers\tdpipe.sys
[2004/03/31 21:12:25 | 000,139,656 | ---- | C] () -- C:\WINDOWS\System32\drivers\rdpwd.sys
[2004/03/31 21:12:23 | 000,196,224 | ---- | C] () -- C:\WINDOWS\System32\drivers\rdpdr.sys
[2004/03/31 21:12:23 | 000,040,840 | ---- | C] () -- C:\WINDOWS\System32\drivers\termdd.sys
[2004/03/31 20:06:57 | 002,826,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2004/03/31 20:06:56 | 003,736,704 | ---- | C] () -- C:\WINDOWS\System32\nv4_disp.dll
[2004/03/31 20:06:50 | 000,788,736 | ---- | C] () -- C:\WINDOWS\System32\drivers\smrt.sys
[2004/03/31 20:06:47 | 000,594,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\smwdm.sys
[2004/03/31 20:06:47 | 000,036,864 | ---- | C] () -- C:\WINDOWS\System32\cbldrm.dll
[2004/03/31 20:06:47 | 000,003,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\smsens.sys
[2004/03/31 20:06:44 | 000,000,670 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2004/03/31 20:06:16 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\NSREG.DLL
[2004/03/31 20:06:09 | 000,489,614 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2004/03/31 20:06:09 | 000,084,382 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2004/03/31 20:06:06 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2004/03/31 13:12:06 | 000,006,272 | ---- | C] () -- C:\WINDOWS\System32\drivers\splitter.sys
[2004/03/31 13:12:04 | 000,052,864 | ---- | C] () -- C:\WINDOWS\System32\drivers\dmusic.sys
[2004/03/31 13:11:45 | 000,057,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\redbook.sys
[2004/03/31 13:11:41 | 000,006,400 | ---- | C] () -- C:\WINDOWS\System32\drivers\enum1394.sys
[2004/03/31 13:10:31 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2004/03/31 13:10:25 | 000,011,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\irenum.sys
[2004/03/31 13:09:53 | 000,287,704 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2004/02/05 13:30:24 | 000,294,912 | ---- | C] () -- C:\WINDOWS\System32\lxbtih.exe
[2003/11/19 19:22:32 | 000,019,200 | ---- | C] () -- C:\WINDOWS\System32\drivers\hidir.sys
[2003/11/19 19:22:08 | 000,046,592 | ---- | C] () -- C:\WINDOWS\System32\drivers\irbus.sys
[2003/06/23 11:06:02 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\lxbtvs.dll
[2003/01/07 17:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/06/12 15:21:12 | 000,049,152 | R--- | C] () -- C:\WINDOWS\System32\winchip.dll
[2002/04/02 20:08:34 | 000,311,108 | ---- | C] () -- C:\WINDOWS\ml-cleanup.exe
[2002/03/14 12:00:26 | 000,038,567 | ---- | C] () -- C:\WINDOWS\System32\pcpbios.exe
[2001/10/24 16:00:40 | 000,524,288 | ---- | C] () -- C:\WINDOWS\System32\TDI-SonyOMG.dll
[2001/08/17 17:36:36 | 000,003,200 | ---- | C] () -- C:\WINDOWS\System32\wowfax.dll
[2001/08/17 17:36:18 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\kbdjpn.dll
[2001/08/17 17:36:18 | 000,008,192 | ---- | C] () -- C:\WINDOWS\System32\kbdkor.dll
[2001/08/17 09:55:56 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbd106.dll
[2001/08/17 09:55:56 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbd101c.dll
[2001/08/17 09:55:56 | 000,006,144 | ---- | C] () -- C:\WINDOWS\System32\kbd101b.dll
[2001/08/17 09:55:56 | 000,005,632 | ---- | C] () -- C:\WINDOWS\System32\kbd103.dll
[2001/08/17 09:06:22 | 000,021,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\tsbvcap.sys
[2001/08/17 09:03:44 | 000,025,728 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbcamd2.sys
[2001/08/17 09:03:42 | 000,025,600 | ---- | C] () -- C:\WINDOWS\System32\drivers\usbcamd.sys
[2001/08/17 09:02:26 | 000,262,528 | ---- | C] () -- C:\WINDOWS\System32\drivers\cinemst2.sys
[2001/08/17 09:02:14 | 000,058,112 | ---- | C] () -- C:\WINDOWS\System32\drivers\vdmindvd.sys
[2001/08/17 09:01:34 | 000,051,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\tosdvd.sys
[2001/08/17 09:00:52 | 000,056,576 | ---- | C] () -- C:\WINDOWS\System32\drivers\swmidi.sys
[2001/08/17 08:57:26 | 000,012,160 | ---- | C] () -- C:\WINDOWS\System32\drivers\fsvga.sys
[2001/08/17 08:24:46 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\riodrv.sys
[2001/08/17 08:24:46 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\rio8drv.sys
[2001/08/17 08:24:44 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\nikedrv.sys
[2001/08/17 08:24:38 | 000,011,776 | ---- | C] () -- C:\WINDOWS\System32\drivers\cpqdap01.sys
[2001/03/02 22:52:42 | 000,008,704 | ---- | C] () -- C:\WINDOWS\System32\npwmsdrm.dll
[1999/06/05 19:00:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\WINITF.BIN
[1999/01/22 13:46:56 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\MSRTEDIT.DLL
[1998/08/16 05:00:00 | 000,004,096 | ---- | C] () -- C:\WINDOWS\System32\sysres.dll

========== Alternate Data Streams ==========

@Alternate Data Stream - 96 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:67569BBB
@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\Sharon Hinesley\Desktop\Charlotte.rdp:SummaryInformation
@Alternate Data Stream - 129 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:FBE5B8B2
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:BDBBA690
@Alternate Data Stream - 112 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5A823589

< End of report >
  • 0

Advertisements

#2
Gammo
Posted 18 January 2012 - 11:49 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Hello and welcome to Geekstogo!

We apologize for the delay in responding to your request for help.
If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Please include a clear description of the problems you're having, along with any steps you may have performed so far.

Please refrain from running tools or applying updates other than those we suggest while we are cleaning up your computer. The reason for this is so we know what is going on with the machine at any time. Some programs can interfere with others and hamper the recovery process.

If you haven't done so yet, please go to Malware and Spyware Cleaning Guide and follow the steps instructed there. If you have already done this, we still need a new log to see what has changed since you originally posted your problem.

We need to create an OTL Report
Download OTL to your Desktop
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • Check the box that says Scan All Users.
  • Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
  • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic.

In the upper right hand corner of the topic you will see a button called Options. If you click on this in the drop-down menu you can choose Track this topic. I suggest you do this and select Immediate E-Mail notification and click on Proceed. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

After 5 days if a topic is not replied to we assume it has been abandoned and it is closed.
  • 0

#3
Gammo
Posted 26 January 2012 - 10:56 AM

Gammo

    Member 2k

  • Malware Removal
  • 2,299 posts
Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP