DDS (Ver_09-07-30.01) - NTFSx86 Run by MICHELLE at 10:34:56.12 on Sun 09/20/2009 Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_11 Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.2046.876 [GMT -4:00] SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} ============== Running Processes =============== C:\Windows\system32\wininit.exe C:\Windows\system32\lsm.exe C:\Windows\system32\svchost.exe -k DcomLaunch C:\Windows\system32\svchost.exe -k rpcss C:\Windows\system32\Ati2evxx.exe C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted C:\Windows\system32\svchost.exe -k netsvcs C:\Windows\system32\svchost.exe -k GPSvcGroup C:\Windows\system32\SLsvc.exe C:\Windows\system32\svchost.exe -k LocalService C:\Windows\system32\Ati2evxx.exe C:\Windows\system32\svchost.exe -k NetworkService C:\Windows\System32\spoolsv.exe C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe C:\Windows\system32\atashost.exe C:\Program Files\Bonjour\mDNSResponder.exe C:\Windows\system32\lxdrcoms.exe c:\PROGRA~1\COMMON~1\mcafee\mcproxy\mcproxy.exe C:\PROGRA~1\McAfee\VIRUSS~1\mcshield.exe C:\Program Files\McAfee\MPF\MPFSrv.exe C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\System32\svchost.exe -k HPZ12 C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted C:\Windows\system32\PSIService.exe C:\Windows\system32\rpcnet.exe C:\Windows\system32\svchost.exe -k imgsvc C:\Program Files\providerComcast\bin\tgsrvc.exe C:\Program Files\UltiDev\Cassini Web Server for ASP.NET 2.0\UltiDevCassinWebServer2a.exe C:\Program Files\Viewpoint\Common\ViewpointService.exe C:\Program Files\WebGuide\WebGuide4\bin\WebGuideTranscodeService.exe C:\Program Files\WebGuide\WebGuide4\bin\WebGuideServiceMonitor.exe C:\Windows\System32\svchost.exe -k WerSvcGroup C:\Windows\system32\SearchIndexer.exe C:\Windows\system32\DRIVERS\xaudio.exe C:\Windows\system32\Dwm.exe C:\Windows\Explorer.EXE C:\Windows\system32\dllhost.exe C:\Windows\system32\taskeng.exe C:\PROGRA~1\McAfee\MSC\mcmscsvc.exe C:\Windows\system32\taskeng.exe c:\PROGRA~1\mcafee.com\agent\mcagent.exe C:\Windows\System32\msdtc.exe C:\Program Files\Synaptics\SynTP\SynTPEnh.exe C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe C:\Program Files\Microsoft IntelliPoint\ipoint.exe C:\Program Files\Yapta\YaptaClient.exe C:\Windows\sttray.exe C:\Program Files\Lexmark 4900 Series\lxdrmon.exe C:\Program Files\iTunes\iTunesHelper.exe C:\Windows\ehome\ehtray.exe C:\Program Files\Comcast\Comcast PhotoShow 4\data\Xtras\mssysmgr.exe C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe C:\Users\MICHELLE\Desktop\SetPoint\SetPoint.exe C:\Program Files\Panasonic\PHOTOfunSTUDIO\PhAutoRun.exe C:\Windows\ehome\ehmsas.exe C:\Program Files\Lexmark 4900 Series\lxdrMsdMon.exe C:\Windows\system32\wbem\unsecapp.exe C:\Windows\system32\wbem\wmiprvse.exe C:\Windows\ehome\ehsched.exe C:\Program Files\Common Files\Logishrd\KHAL2\KHALMNPR.EXE c:\PROGRA~1\COMMON~1\mcafee\mna\mcnasvc.exe C:\Program Files\iPod\bin\iPodService.exe C:\Program Files\Windows Media Player\wmpnetwk.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\system32\taskeng.exe C:\Windows\system32\vssvc.exe C:\Windows\System32\svchost.exe -k swprv C:\PROGRA~1\McAfee\VIRUSS~1\mcsysmon.exe C:\Program Files\Internet Explorer\iexplore.exe C:\Windows\ehome\ehRec.exe C:\Program Files\Internet Explorer\IELowutil.exe C:\Windows\system32\wbem\wmiprvse.exe c:\PROGRA~1\mcafee\msc\mcuimgr.exe C:\Windows\system32\SearchProtocolHost.exe C:\Windows\system32\SearchFilterHost.exe C:\Windows\system32\DllHost.exe C:\Windows\system32\DllHost.exe C:\Users\MICHELLE\Desktop\dds.pif ============== Pseudo HJT Report =============== uStart Page = hxxp://comcast.net/ uSearch Bar = hxxp://www.comcast.net/toolbar2.0/search/ uInternet Settings,ProxyOverride = *.local mSearchAssistant = hxxp://www.comcast.net/toolbar2.0/search/ TB: {2318C2B1-4965-11d4-9B18-009027A5CD4F} - No File TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll TB: Lexmark Toolbar: {1017a80c-6f09-4548-a84d-edd6ac9525f0} - c:\program files\lexmark toolbar\toolband.dll TB: Comcast Toolbar: {4e7bd74f-2b8d-469e-93be-be2df4d9ae29} - c:\progra~1\comcas~2\COMCAS~1.DLL EB: &Yapta: {c3c07ad6-ace9-43ee-a2af-45bc13f6275f} - c:\program files\yapta\YaptaSidebar.dll uRun: [ehTray.exe] c:\windows\ehome\ehTray.exe uRun: [PhotoShow Deluxe Media Manager] c:\progra~1\comcast\comcas~1\data\xtras\mssysmgr.exe uRun: [RoboForm] "c:\program files\siber systems\ai roboform\RoboTaskBarIcon.exe" mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe" mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe" mRun: [Yapta Tracker] c:\program files\yapta\YaptaClient.exe /onstartup mRun: [SigmatelSysTrayApp] sttray.exe mRun: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE mRun: [Conime] %windir%\system32\conime.exe mRun: [lxdrmon.exe] "c:\program files\lexmark 4900 series\lxdrmon.exe" mRun: [lxdramon] "c:\program files\lexmark 4900 series\lxdramon.exe" mRun: [mcagent_exe] c:\program files\mcafee.com\agent\mcagent.exe /runkey mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe" mRun: [ISUSPM Startup] c:\progra~1\common~1\instal~1\update~1\ISUSPM.exe -startup mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe" mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\logite~1.lnk - c:\users\michelle\desktop\setpoint\SetPoint.exe StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\photof~1.lnk - c:\program files\panasonic\photofunstudio\PhAutoRun.exe mPolicies-system: EnableUIADesktopToggle = 0 (0x0) IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html IE: {0362b485-11fe-469c-ae98-42f478e581a0} - c:\program files\yapta\YaptaSettings.exe IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html IE: {0094A600-9BDD-4019-BAFE-487284F7D476} - {C3C07AD6-ACE9-43EE-A2AF-45BC13F6275F} - c:\program files\yapta\YaptaSidebar.dll IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL Trusted Zone: comcastsupport.com\www Trusted Zone: gameinformer.com Trusted Zone: internet Trusted Zone: mcafee.com Trusted Zone: msgtag.com\www Trusted Zone: real.com\rhap-app-4-0 Trusted Zone: real.com\rhapreg DPF: Garmin Communicator Plug-In - hxxps://my.garmin.com/static/m/cab/2.6.4/GarminAxControl.CAB DPF: {3860DD98-0549-4D50-AA72-5D17D200EE10} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/en-us/wlscctrl2.cab DPF: {73ECB3AA-4717-450C-A2AB-D00DAD9EE203} - hxxp://h20270.www2.hp.com/ediags/gmn2/install/HPProductDetection.cab DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/ultrashim.cab DPF: {FFB3A759-98B1-446F-BDA9-909C6EB18CC7} - hxxp://utilities.pcpitstop.com/Optimize3/pcpitstop2.dll AppInit_DLLs: c:\progra~1\google\google~1\GoogleDesktopNetwork3.dll ================= FIREFOX =================== FF - ProfilePath - c:\users\michelle\appdata\roaming\mozilla\firefox\profiles\edccnlxs.default\ FF - prefs.js: browser.search.defaulturl - hxxp://search.aol.com/aolcom/search?invocationType=tbff50ie7&query= FF - prefs.js: browser.startup.homepage - hxxp://www.comcast.net/ FF - prefs.js: keyword.URL - hxxp://search.aol.com/aolcom/search?invocationType=TB50TRFF;homepage=no;search=yesab&query= FF - component: c:\program files\siber systems\ai roboform\firefox\components\rfproxy_31.dll FF - component: c:\users\michelle\appdata\roaming\mozilla\firefox\profiles\edccnlxs.default\extensions\{7affbfae-c4e2-4915-8c0f-00fa3ec610a1}\components\WinampPlayer.dll FF - component: c:\users\michelle\appdata\roaming\mozilla\firefox\profiles\edccnlxs.default\gsl.dll FF - plugin: c:\program files\google\google updater\2.4.1536.6592\npCIDetect13.dll FF - plugin: c:\program files\mozilla firefox\plugins\npCouponPrinter.dll FF - plugin: c:\program files\mozilla firefox\plugins\npViewpoint.dll FF - plugin: c:\program files\viewpoint\viewpoint media player\npViewpoint.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\ FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} ============= SERVICES / DRIVERS =============== R0 tclondrv;tclondrv;c:\windows\system32\drivers\tclondrv.sys [2008-10-1 20352] R2 atashost;WebEx Service Host for Support Center;c:\windows\system32\atashost.exe [2009-7-15 20376] R2 lxdr_device;lxdr_device;c:\windows\system32\lxdrcoms.exe -service --> c:\windows\system32\lxdrcoms.exe -service [?] R2 tgsrvc_providercomcast;SupportSoft Repair Service (providercomcast);c:\program files\providercomcast\bin\tgsrvc.exe [2008-5-2 148768] R2 UltiDev Cassini Web Server for ASP.NET 2.0;UltiDev Cassini Web Server for ASP.NET 2.0;c:\program files\ultidev\cassini web server for asp.net 2.0\UltiDevCassinWebServer2a.exe [2007-2-8 49152] R2 Viewpoint Manager Service;Viewpoint Manager Service;c:\program files\viewpoint\common\ViewpointService.exe [2008-10-9 24652] R2 WebGuideTranscode;WebGuideTranscode;c:\program files\webguide\webguide4\bin\WebGuideTranscodeService.exe [2007-8-8 40960] R3 NETw5v32;Intel(R) WiFi Link Adapter Driver for Windows Vista 32 Bit ;c:\windows\system32\drivers\NETw5v32.sys [2008-1-17 4788736] S2 lxdrCATSCustConnectService;lxdrCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdrserv.exe [2008-5-16 98984] S4 PCPitstop Scheduling;PCPitstop Scheduling;c:\program files\pcpitstop\PCPitstopScheduleService.exe [2009-8-7 90352] =============== Created Last 30 ================ 2009-09-19 21:48 --d----- c:\users\michelle\appdata\roaming\Malwarebytes 2009-09-19 21:48 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys 2009-09-19 21:48 19,160 a------- c:\windows\system32\drivers\mbam.sys 2009-09-19 21:48 --d----- c:\programdata\Malwarebytes 2009-09-19 21:48 --d----- c:\program files\Malwarebytes' Anti-Malware 2009-09-19 21:48 --d----- c:\progra~2\Malwarebytes 2009-09-19 21:41 --dsh--- C:\$RECYCLE.BIN 2009-09-19 19:37 --d----- c:\users\michelle\appdata\roaming\GetRightToGo 2009-09-19 18:03 229,888 a------- c:\windows\PEV.exe 2009-09-19 18:03 161,792 a------- c:\windows\SWREG.exe 2009-09-19 18:03 98,816 a------- c:\windows\sed.exe 2009-09-18 23:55 --d----- c:\programdata\gwr 2009-09-18 23:55 --d----- c:\progra~2\gwr 2009-09-11 00:48 --d----- c:\program files\iPhone Configuration Utility 2009-09-11 00:47 107,368 a------- c:\windows\system32\GEARAspi.dll 2009-09-11 00:47 26,600 a------- c:\windows\system32\drivers\GEARAspiWDM.sys 2009-09-11 00:45 --d----- c:\programdata\{755AC846-7372-4AC8-8550-C52491DAA8BD} 2009-09-11 00:45 --d----- c:\progra~2\{755AC846-7372-4AC8-8550-C52491DAA8BD} 2009-09-10 23:24 651,264 a------- c:\windows\system32\lxdrpmui.dll 2009-09-10 23:24 376,832 a------- c:\windows\system32\lxdrcomm.dll 2009-09-10 23:24 208,896 a------- c:\windows\system32\lxdrgrd.dll 2009-09-08 19:41 897,608 a------- c:\windows\system32\drivers\tcpip.sys 2009-09-08 19:41 104,960 a------- c:\windows\system32\netiohlp.dll 2009-09-08 19:41 27,136 a------- c:\windows\system32\NETSTAT.EXE 2009-09-08 19:41 19,968 a------- c:\windows\system32\ARP.EXE 2009-09-08 19:41 10,240 a------- c:\windows\system32\finger.exe 2009-09-08 19:41 9,728 a------- c:\windows\system32\TCPSVCS.EXE 2009-09-08 19:41 8,704 a------- c:\windows\system32\HOSTNAME.EXE 2009-09-08 19:41 17,920 a------- c:\windows\system32\ROUTE.EXE 2009-09-08 19:41 11,264 a------- c:\windows\system32\MRINFO.EXE 2009-09-08 19:41 17,920 a------- c:\windows\system32\netevent.dll 2009-09-08 19:40 2,501,921 a------- c:\windows\system32\wlan.tmf 2009-09-08 19:40 293,376 a------- c:\windows\system32\wlanmsm.dll 2009-09-08 19:40 302,592 a------- c:\windows\system32\wlansec.dll 2009-09-08 19:40 127,488 a------- c:\windows\system32\L2SecHC.dll 2009-09-08 19:40 513,024 a------- c:\windows\system32\wlansvc.dll 2009-09-08 19:39 2,868,224 a------- c:\windows\system32\mf.dll 2009-09-05 01:54 94,208 a------- c:\windows\system32\QuickTimeVR.qtx 2009-09-05 01:54 69,632 a------- c:\windows\system32\QuickTime.qts 2009-09-02 17:47 28,672 a------- c:\windows\system32\Apphlpdm.dll 2009-09-02 17:47 4,240,384 a------- c:\windows\system32\GameUXLegacyGDFs.dll 2009-08-31 19:52 --d----- c:\programdata\Office Genuine Advantage 2009-08-31 12:13 --d----- c:\users\michelle\Office Genuine Advantage 2009-08-28 19:42 2,065,696 a------- c:\windows\system32\usbaaplrc.dll 2009-08-28 19:42 40,448 a------- c:\windows\system32\drivers\usbaapl.sys 2009-08-28 03:02 2,048 a------- c:\windows\system32\tzres.dll ==================== Find3M ==================== 2009-09-19 21:59 56,680 a------- c:\windows\system32\Rpcnet.dll 2009-09-19 21:59 17,408 a------- c:\windows\system32\rpcnetp.dll 2009-09-19 21:59 17,408 a------- c:\windows\system32\rpcnetp.exe 2009-09-11 00:38 143,360 a------- c:\windows\inf\infstrng.dat 2009-09-11 00:38 86,016 a------- c:\windows\inf\infstor.dat 2009-09-11 00:38 51,200 a------- c:\windows\inf\infpub.dat 2009-08-28 08:39 173,056 a------- c:\windows\apppatch\AcXtrnal.dll 2009-08-28 08:38 2,153,984 a------- c:\windows\apppatch\AcGenral.dll 2009-08-28 08:38 541,696 a------- c:\windows\apppatch\AcLayers.dll 2009-08-28 08:38 459,776 a------- c:\windows\apppatch\AcSpecfc.dll 2009-08-19 14:47 594,600 a------- c:\windows\system32\lxdrcoms.exe 2009-08-19 14:47 328,360 a------- c:\windows\system32\lxdrih.exe 2009-08-19 14:47 369,320 a------- c:\windows\system32\lxdrcfg.exe 2009-08-19 14:35 860,160 a------- c:\windows\system32\lxdrusb1.dll 2009-08-19 14:35 364,544 a------- c:\windows\system32\lxdrinpa.dll 2009-08-19 14:35 339,968 a------- c:\windows\system32\lxdriesc.dll 2009-08-19 14:35 1,069,056 a------- c:\windows\system32\lxdrserv.dll 2009-08-19 14:35 577,536 a------- c:\windows\system32\lxdrlmpm.dll 2009-08-19 14:35 761,856 a------- c:\windows\system32\lxdrcomc.dll 2009-08-19 14:35 684,032 a------- c:\windows\system32\lxdrhbn3.dll 2009-08-03 15:07 403,816 a------- c:\windows\system32\OGACheckControl.dll 2009-08-03 15:07 322,928 a------- c:\windows\system32\OGAAddin.dll 2009-08-03 15:07 230,768 a------- c:\windows\system32\OGAEXEC.exe 2009-07-29 23:35 47,360 a------- c:\users\michelle\appdata\roaming\pcouffin.sys 2009-07-28 21:37 47,360 a------- c:\windows\system32\drivers\pcouffin.sys 2009-07-21 17:52 915,456 a------- c:\windows\system32\wininet.dll 2009-07-21 17:47 109,056 a------- c:\windows\system32\iesysprep.dll 2009-07-21 17:47 71,680 a------- c:\windows\system32\iesetup.dll 2009-07-21 16:13 133,632 a------- c:\windows\system32\ieUnatt.exe 2009-07-17 10:35 71,680 a------- c:\windows\system32\atl.dll 2009-07-15 19:33 76,184 a------- c:\windows\system32\atsckernel.exe 2009-07-15 19:33 20,376 a------- c:\windows\system32\atashost.exe 2009-07-14 09:06 106,496 a------- c:\windows\system32\lxdrinsr.dll 2009-07-14 09:06 36,864 a------- c:\windows\system32\lxdrcur.dll 2009-07-14 09:05 147,456 a------- c:\windows\system32\lxdrjswr.dll 2009-07-14 09:03 200,704 a------- c:\windows\system32\lxdrinsb.dll 2009-07-14 09:03 90,112 a------- c:\windows\system32\lxdrcub.dll 2009-07-14 09:01 77,824 a------- c:\windows\system32\lxdrcu.dll 2009-07-14 09:01 176,128 a------- c:\windows\system32\lxdrins.dll 2009-07-14 09:00 313,344 a------- c:\windows\system32\wmpdxm.dll 2009-07-14 08:59 4,096 a------- c:\windows\system32\dxmasf.dll 2009-07-14 08:59 544,768 a------- c:\windows\system32\lxdrutil.dll 2009-07-14 08:58 7,680 a------- c:\windows\system32\spwmp.dll 2009-07-14 06:59 8,147,456 a------- c:\windows\system32\wmploc.DLL 2009-07-10 18:59 409,600 a------- c:\windows\system32\lxdrcoin.dll 2009-03-15 13:29 691 a------- c:\users\michelle\appdata\roaming\GetValue.vbs 2009-03-15 13:29 35 a------- c:\users\michelle\appdata\roaming\SetValue.bat 2008-11-16 00:52 2,641,268,615 a------- c:\users\michelle\Garmin_RMU_CNEUNT2009.exe 2008-09-23 01:42 174 a--sh--- c:\program files\desktop.ini 2008-09-23 01:18 665,600 a------- c:\windows\inf\drvindex.dat 2008-03-20 22:58 61,224 a------- c:\users\michelle\GoToAssistDownloadHelper.exe 2007-09-03 15:38 1,300,048 a------- c:\programdata\pswi_preloaded.exe 2007-09-03 15:38 1,300,048 a------- c:\progra~2\pswi_preloaded.exe 2006-11-02 08:42 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat 2006-11-02 08:42 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat 2006-11-02 08:42 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat 2006-11-02 08:42 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat 2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat 2006-11-02 05:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat 2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat 2006-11-02 05:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat 2009-06-11 21:42 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\history\history.ie5\index.dat 2009-06-11 21:42 32,768 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\local\microsoft\windows\temporary internet files\content.ie5\index.dat 2009-06-11 21:42 16,384 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\cookies\index.dat 2009-06-11 21:42 245,760 a--sh--- c:\windows\serviceprofiles\networkservice\appdata\roaming\microsoft\windows\ietldcache\index.dat 2007-09-03 15:41 8 a--shr-- c:\windows\system32\DB460FB393.sys 2007-09-03 15:41 2,828 a--sh--- c:\windows\system32\KGyGaAvL.sys ============= FINISH: 10:35:37.08 ===============