Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Hotlean.com redirect from google search page [Solved]

Started by megadez , Feb 09 2009 05:30 PM

  • This topic is locked This topic is locked

#166
megadez
Posted 03 March 2009 - 07:20 PM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
I'm not using IE, Opera and Chrome much, but cursory experiment shows that redirects are definitely happening in Firefox, Opera and IE,
crashes are happening only in Firefox. Nothing bad is happening in Chrome but just maybe I'm not using it heavily enough to experience the
redirect, but even if so, it means that redirects would be much more seldom in Chrome because I didn't get them and can't get experimenting, which
I can do with other browsers. I'm still mostly using Firefox despite the problems because for me it still trumps others. Man is a slave of his habits....
Other than that good results of one of your last fixes are still here, which is good, computer is more responsive inside some applications. Thanks.
  • 0

Advertisements

#167
emeraldnzl
Posted 03 March 2009 - 09:45 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello megadez,

I think this is an outside chance as we should have picked it up but please see if TDSSserv.sys is showing in Hidden Devices.

Also please tell me if you have ever had the Alexa or Ask toolbars on your machine. Further if you have visited or know about Is My Blog Burning, LinkedIn or Blogher.com:80/haystackprofile

Click Start > Control Panel > System > Hardware > Device Manager > View > Show Hidden Devices.

Scroll down to “Non-plug and Play Drivers”

Click the + sign to open the section.

Look for “TDSSserv.sys” if it is there, right click on it and select “Disable”

DO NOT uninstall “TDSSserv.sys”.

Close Windows then restart your pc.

Next

Please disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools.

We fixed these early on but for some reason they have come back. Lets see what happens if we fix them again.

Please re-open HiJackThis and scan. Check the boxes next to all the entries listed below.

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

Close all windows other than HiJackThis, then click Fix Checked.

Close HiJackThis.

So when you come back please post
  • answer to the TDSSserv.sys question
  • answer to Alexa etc. question
  • and post a new HijackThis log
  • 0

#168
emeraldnzl
Posted 03 March 2009 - 09:59 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Further to that last post:

This is one I found at Firefox support forum.

I don't have great hopes for it but after carrying out the instructions in the last post try this and see if it comes up trumps.

Open "My Computer" and select and open the main drive that you use (normally C). Inside, select and open the folder titled "Program Files". Inside here, select the folder named "Mozilla Firefox". From here you will need to select and open the folder named "extensions". There will be at least one file or more depending on the number of extensions you have loaded onto Firefox. You will need to right click each of these and select "Properties" from the drop down menu. With the "General" tab selected at the top of the window, look towards the bottom of the window for the date created. You are trying to find the folder with the date that is closest to that of the date your computer started going crazy and redirecting search results.

Once you have found that folder, open it. It will contain two files and one folder named "chrome". Open the "chrome" folder. Inside here select and open the folder named "content". Inside here there will be one lonely file named "overlay.xul". THERE IS YOUR CULPRIT!!!

Not only should you delete the "overlay.xul" file, but go ahead and delete the containing folder that was located inside the "extensions" folder.
  • 0

#169
megadez
Posted 03 March 2009 - 11:54 PM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
- no TDSSserv.sys

- didn't have Alexa or Ask toolbars, don't know about Is My Blog Burning (just googled it and went to the very first search result web page - something like site about cooking-did I do a bad thing?), or Blogher.com:80/haystackprofile. Visited LinkedIn website if that's what you mean.

- I don't have these two guys in hijack this

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =

Here is the log

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:45:01 AM, on 3/4/2009
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16791)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe
C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE
C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe
C:\Program Files\ABBYY Lingvo x3\LvAgent.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\PoivY.com\PoivY\PoivY.exe
C:\Program Files\ABBYY Lingvo x3\Lingvo.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft....k/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft....k/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft....k/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft....k/?LinkId=69157
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
O4 - HKLM\..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.exe
O4 - HKLM\..\Run: [EPSON Stylus CX4600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P26 "EPSON Stylus CX4600 Series" /O6 "USB001" /M "Stylus CX4600"
O4 - HKLM\..\Run: [basicsmssmenu] "C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe"
O4 - HKLM\..\Run: [Lingvo Launcher] "C:\Program Files\ABBYY Lingvo x3\LvAgent.exe" /STARTUP
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe
O4 - HKLM\..\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"
O4 - HKLM\..\Run: [googletalk] C:\Program Files\Google\Google Talk\googletalk.exe /autostart
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [PoivY] "C:\Program Files\PoivY.com\PoivY\PoivY.exe" -nosplash -minimized
O4 - HKCU\..\Run: [EPSON Stylus CX4600 Series] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE /P26 "EPSON Stylus CX4600 Series" /M "Stylus CX4600" /EF "HKCU"
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.micros...b?1227683328000
O17 - HKLM\System\CCS\Services\Tcpip\..\{9F917EED-07A2-43F2-B2EE-DDD93B0857B7}: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ABBYY Lingvo x3 Licensing Service (ABBYY.Licensing.Lingvo.Desktop.14.0) - ABBYY Software Ltd - C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe
O23 - Service: Basics Service - Seagate Technology LLC - C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Cisco Systems, Inc. VPN Service (CVPND) - Cisco Systems, Inc. - C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: Process Monitor (LVPrcSrv) - Logitech Inc. - c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
O23 - Service: LVSrvLauncher - Logitech Inc. - C:\Program Files\Common Files\LogiShrd\SrvLnch\SrvLnch.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: PD91Agent - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
O23 - Service: PD91Engine - Raxco Software, Inc. - C:\Program Files\Raxco\PerfectDisk2008\PD91Engine.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared files\RichVideo.exe
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
O23 - Service: Symantec Network Access Control (SNAC) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE
O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel® Corporation - C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

--
End of file - 10918 bytes


Also in non plug and play section I had 2 yellow marks at 1)Parport and 2) Serial
and one red mark in network adapters at Cisco System VPN Adapter, I right clicked and set to "enable"
  • 0

#170
megadez
Posted 03 March 2009 - 11:58 PM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
I have a couple of add-ons in Firefox, but in the folder extension I have just one subfolfer called {972ce4c6-7e08-4474-a285-3208198ce6fd} in which there is 1 file called install.rdf modified 01/19/2009
  • 0

#171
emeraldnzl
Posted 04 March 2009 - 01:16 AM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts

didn't have Alexa or Ask toolbars, don't know about Is My Blog Burning (just googled it and went to the very first search result web page - something like site about cooking-did I do a bad thing?), or Blogher.com:80/haystackprofile. Visited LinkedIn website if that's what you mean.

No you didn't do a bad thing. I was interested because Hotlean.com seems to be related to those sites. Might have been how you got infected.

The TDSserv.sys was an outside chance. As I said before it should have been picked up right at the start. Good though to eliminate it for sure.

So still no luck. I am pretty sure we have a new version or even a new infection here. As I have said before the problem is we haven't been able to nail its source down.

It's rather like looking for a needle in a haystack.

Try and see if you can do this:

Click Start>Run and copy/paste the following bolded text into the Run box and click OK: (be sure to include that first set of quote marks)

"%userprofile%\desktop\DDS.com" /ihatewhitelists

Post only the dds.txt
  • 0

#172
megadez
Posted 04 March 2009 - 01:36 AM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
windows can't find

C:\documents and settings\yuriy horokhivskyy\desktop\dds.com

however if you wanted me to rund dds.scr which I have from before


DDS (Ver_09-02-01.01) - NTFSx86
Run by Yuriy Horokhivskyy at 2:32:48.14 on Wed 03/04/2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2039.842 [GMT -5:00]

AV: Symantec Endpoint Protection *On-access scanning enabled* (Updated)
FW: Symantec Endpoint Protection *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe
C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE
C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe
C:\Program Files\ABBYY Lingvo x3\LvAgent.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\PoivY.com\PoivY\PoivY.exe
C:\Program Files\ABBYY Lingvo x3\Lingvo.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Desktop\dds.scr

============== Pseudo HJT Report ===============

uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [PoivY] "c:\program files\poivy.com\poivy\PoivY.exe" -nosplash -minimized
uRun: [EPSON Stylus CX4600 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATI9AA.EXE /P26 "EPSON Stylus CX4600 Series" /M "Stylus CX4600" /EF "HKCU"
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [EPSON Stylus CX4600 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATI9AA.EXE /P26 "EPSON Stylus CX4600 Series" /O6 "USB001" /M "Stylus CX4600"
mRun: [basicsmssmenu] "c:\program files\seagate\basics\basics status\MaxMenuMgrBasics.exe"
mRun: [Lingvo Launcher] "c:\program files\abbyy lingvo x3\LvAgent.exe" /STARTUP
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [Adobe Acrobat Speed Launcher] "c:\program files\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe"
mRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1227683328000
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
TCP: {9F917EED-07A2-43F2-B2EE-DDD93B0857B7} = 208.67.222.222,208.67.220.220
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: igfxcui - igfxdev.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\yuriyh~1\applic~1\mozilla\firefox\profiles\sos6lio5.default\
FF - prefs.js: browser.search.selectedEngine - Wikipedia (en)
FF - prefs.js: keyword.URL - about:neterror?e=query&u=
FF - component: c:\documents and settings\yuriy horokhivskyy\application data\mozilla\firefox\profiles\sos6lio5.default\extensions\[email protected]\components\coolirisstub.dll
FF - plugin: c:\documents and settings\yuriy horokhivskyy\local settings\application data\google\update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll

============= SERVICES / DRIVERS ===============

R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B};{95808DC4-FA4A-4C74-92FE-5B863F82066B};c:\program files\cyberlink\powerdvd\000.fcl [2007-11-3 41456]
R2 ABBYY.Licensing.Lingvo.Desktop.14.0;ABBYY Lingvo x3 Licensing Service;c:\program files\common files\abbyy\lingvo\14.0\licensing\NetworkLicenseServer.exe [2008-7-14 808224]
R2 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\ccSvcHst.exe [2008-8-14 108392]
R2 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\ccSvcHst.exe [2008-8-14 108392]
R2 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk2008\PD91Agent.exe [2008-1-16 664840]
R2 Symantec AntiVirus;Symantec Endpoint Protection;c:\program files\symantec\symantec endpoint protection\Rtvscan.exe [2008-9-11 2436536]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-2-25 101936]
R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090303.003\NAVENG.SYS [2009-3-3 89104]
R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090303.003\NAVEX15.SYS [2009-3-3 876144]
S1 vdmymjk3;AVZ-BC Kernel Driver;\??\c:\windows\system32\drivers\vdmymjk3.sys --> c:\windows\system32\drivers\vdmymjk3.sys [?]
S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [2008-1-12 23888]
S3 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk2008\PD91Engine.exe [2008-1-16 894216]

=============== Created Last 30 ================

2009-03-04 02:00 <DIR> --d----- c:\docume~1\yuriyh~1\applic~1\Chart Advisor from Office Labs
2009-03-04 01:58 <DIR> --d----- c:\program files\Microsoft Office Labs
2009-03-02 00:09 161,792 a------- c:\windows\SWREG.exe
2009-03-02 00:09 98,816 a------- c:\windows\sed.exe
2009-02-28 23:13 <DIR> --d----- C:\_OTMoveIt
2009-02-28 04:49 116,224 ac------ c:\windows\system32\dllcache\xrxwiadr.dll
2009-02-28 04:49 23,040 ac------ c:\windows\system32\dllcache\xrxwbtmp.dll
2009-02-28 04:49 18,944 ac------ c:\windows\system32\dllcache\xrxscnui.dll
2009-02-28 04:49 27,648 ac------ c:\windows\system32\dllcache\xrxftplt.exe
2009-02-28 04:48 4,608 ac------ c:\windows\system32\dllcache\xrxflnch.exe
2009-02-28 04:48 99,865 ac------ c:\windows\system32\dllcache\xlog.exe
2009-02-28 04:48 16,970 ac------ c:\windows\system32\dllcache\xem336n5.sys
2009-02-28 04:48 19,455 ac------ c:\windows\system32\dllcache\wvchntxx.sys
2009-02-28 04:48 12,063 ac------ c:\windows\system32\dllcache\wsiintxx.sys
2009-02-28 04:48 8,192 ac------ c:\windows\system32\dllcache\wshirda.dll
2009-02-28 04:47 8,832 ac------ c:\windows\system32\dllcache\wmiacpi.sys
2009-02-28 04:47 154,624 ac------ c:\windows\system32\dllcache\wlluc48.sys
2009-02-28 04:47 34,890 ac------ c:\windows\system32\dllcache\wlandrv2.sys
2009-02-28 04:46 771,581 ac------ c:\windows\system32\dllcache\winacisa.sys
2009-02-28 04:46 53,760 ac------ c:\windows\system32\dllcache\wiamsmud.dll
2009-02-28 04:46 87,040 ac------ c:\windows\system32\dllcache\wiafbdrv.dll
2009-02-28 04:46 701,386 ac------ c:\windows\system32\dllcache\wdhaalba.sys
2009-02-28 04:46 23,615 ac------ c:\windows\system32\dllcache\wch7xxnt.sys
2009-02-28 04:46 31,744 ac------ c:\windows\system32\dllcache\wceusbsh.sys
2009-02-28 04:45 35,871 ac------ c:\windows\system32\dllcache\wbfirdma.sys
2009-02-28 04:45 33,599 ac------ c:\windows\system32\dllcache\watv04nt.sys
2009-02-28 04:45 19,551 ac------ c:\windows\system32\dllcache\watv02nt.sys
2009-02-28 04:45 29,311 ac------ c:\windows\system32\dllcache\watv01nt.sys
2009-02-28 04:45 11,775 ac------ c:\windows\system32\dllcache\wadv05nt.sys
2009-02-28 04:45 12,127 ac------ c:\windows\system32\dllcache\wadv02nt.sys
2009-02-28 04:45 12,415 ac------ c:\windows\system32\dllcache\wadv01nt.sys
2009-02-28 04:45 16,925 ac------ c:\windows\system32\dllcache\w940nd.sys
2009-02-28 04:45 19,016 ac------ c:\windows\system32\dllcache\w926nd.sys
2009-02-28 04:44 19,528 ac------ c:\windows\system32\dllcache\w840nd.sys
2009-02-28 04:44 64,605 ac------ c:\windows\system32\dllcache\vvoice.sys
2009-02-28 04:44 397,502 ac------ c:\windows\system32\dllcache\vpctcom.sys
2009-02-28 04:44 604,253 ac------ c:\windows\system32\dllcache\vmodem.sys
2009-02-28 04:43 249,402 ac------ c:\windows\system32\dllcache\vinwm.sys
2009-02-28 04:43 24,576 ac------ c:\windows\system32\dllcache\viairda.sys
2009-02-28 04:43 5,376 ac------ c:\windows\system32\dllcache\viaide.sys
2009-02-28 04:43 687,999 ac------ c:\windows\system32\dllcache\usrwdxjs.sys
2009-02-28 04:43 765,884 ac------ c:\windows\system32\dllcache\usrti.sys
2009-02-28 04:43 113,762 ac------ c:\windows\system32\dllcache\usrpda.sys
2009-02-28 04:42 7,556 ac------ c:\windows\system32\dllcache\usroslba.sys
2009-02-28 04:42 224,802 ac------ c:\windows\system32\dllcache\usr1807a.sys
2009-02-28 04:42 794,399 ac------ c:\windows\system32\dllcache\usr1806v.sys
2009-02-28 04:42 793,598 ac------ c:\windows\system32\dllcache\usr1806.sys
2009-02-28 04:42 794,654 ac------ c:\windows\system32\dllcache\usr1801.sys
2009-02-28 04:41 26,112 ac------ c:\windows\system32\dllcache\usbser.sys
2009-02-28 04:41 17,152 ac------ c:\windows\system32\dllcache\usbohci.sys
2009-02-28 04:41 60,032 ac------ c:\windows\system32\dllcache\usbaudio.sys
2009-02-28 04:41 32,384 ac------ c:\windows\system32\dllcache\usb101et.sys
2009-02-28 04:41 94,720 ac------ c:\windows\system32\dllcache\umaxud32.dll
2009-02-28 04:41 28,160 ac------ c:\windows\system32\dllcache\umaxu40.dll
2009-02-28 04:41 26,624 ac------ c:\windows\system32\dllcache\umaxu22.dll
2009-02-28 04:40 69,632 ac------ c:\windows\system32\dllcache\umaxu12.dll
2009-02-28 04:40 50,688 ac------ c:\windows\system32\dllcache\umaxscan.dll
2009-02-28 04:40 22,912 ac------ c:\windows\system32\dllcache\umaxpcls.sys
2009-02-28 04:40 50,176 ac------ c:\windows\system32\dllcache\umaxp60.dll
2009-02-28 04:40 47,616 ac------ c:\windows\system32\dllcache\umaxcam.dll
2009-02-28 04:39 211,968 ac------ c:\windows\system32\dllcache\um54scan.dll
2009-02-28 04:39 216,064 ac------ c:\windows\system32\dllcache\um34scan.dll
2009-02-28 04:39 36,736 ac------ c:\windows\system32\dllcache\ultra.sys
2009-02-28 04:39 11,520 ac------ c:\windows\system32\dllcache\twotrack.sys
2009-02-28 04:39 166,784 ac------ c:\windows\system32\dllcache\tridxpm.sys
2009-02-28 04:38 525,568 ac------ c:\windows\system32\dllcache\tridxp.dll
2009-02-28 04:38 159,232 ac------ c:\windows\system32\dllcache\tridkbm.sys
2009-02-28 04:38 440,576 ac------ c:\windows\system32\dllcache\tridkb.dll
2009-02-28 04:38 222,336 ac------ c:\windows\system32\dllcache\trid3dm.sys
2009-02-28 04:38 315,520 ac------ c:\windows\system32\dllcache\trid3d.dll
2009-02-28 04:37 34,375 ac------ c:\windows\system32\dllcache\tpro4.sys
2009-02-28 04:37 42,496 ac------ c:\windows\system32\dllcache\tp4res.dll
2009-02-28 04:37 82,944 ac------ c:\windows\system32\dllcache\tp4mon.exe
2009-02-28 04:37 31,744 ac------ c:\windows\system32\dllcache\tp4.dll
2009-02-28 04:37 4,992 ac------ c:\windows\system32\dllcache\toside.sys
2009-02-28 04:36 230,912 ac------ c:\windows\system32\dllcache\tosdvd03.sys
2009-02-28 04:36 241,664 ac------ c:\windows\system32\dllcache\tosdvd02.sys
2009-02-28 04:36 28,232 ac------ c:\windows\system32\dllcache\tos4mo.sys
2009-02-28 04:36 123,995 ac------ c:\windows\system32\dllcache\tjisdn.sys
2009-02-28 04:36 138,528 ac------ c:\windows\system32\dllcache\tgiulnt5.sys
2009-02-28 04:35 81,408 ac------ c:\windows\system32\dllcache\tgiul50.dll
2009-02-28 04:35 149,376 ac------ c:\windows\system32\dllcache\tffsport.sys
2009-02-28 04:35 17,129 ac------ c:\windows\system32\dllcache\tdkcd31.sys
2009-02-28 04:35 37,961 ac------ c:\windows\system32\dllcache\tdk100b.sys
2009-02-28 04:35 30,464 ac------ c:\windows\system32\dllcache\tbatm155.sys
2009-02-28 04:34 7,040 ac------ c:\windows\system32\dllcache\tandqic.sys
2009-02-28 04:34 36,640 ac------ c:\windows\system32\dllcache\t2r4mini.sys
2009-02-28 04:34 172,768 ac------ c:\windows\system32\dllcache\t2r4disp.dll
2009-02-28 04:34 32,640 ac------ c:\windows\system32\dllcache\symc8xx.sys
2009-02-28 04:34 16,256 ac------ c:\windows\system32\dllcache\symc810.sys
2009-02-28 04:33 30,688 ac------ c:\windows\system32\dllcache\sym_u3.sys
2009-02-28 04:33 28,384 ac------ c:\windows\system32\dllcache\sym_hi.sys
2009-02-28 04:33 94,293 ac------ c:\windows\system32\dllcache\sxports.dll
2009-02-28 04:33 103,936 ac------ c:\windows\system32\dllcache\sx.sys
2009-02-28 04:33 3,968 ac------ c:\windows\system32\dllcache\swusbflt.sys
2009-02-28 04:33 10,240 ac------ c:\windows\system32\dllcache\swpidflt.dll
2009-02-28 04:32 10,240 ac------ c:\windows\system32\dllcache\swpdflt2.dll
2009-02-28 04:32 53,760 ac------ c:\windows\system32\dllcache\sw_wheel.dll
2009-02-28 04:32 41,472 ac------ c:\windows\system32\dllcache\sw_effct.dll
2009-02-28 04:32 155,648 ac------ c:\windows\system32\dllcache\stlnprop.dll
2009-02-28 04:32 53,248 ac------ c:\windows\system32\dllcache\stlncoin.dll
2009-02-28 04:31 285,760 ac------ c:\windows\system32\dllcache\stlnata.sys
2009-02-28 04:31 16,896 ac------ c:\windows\system32\dllcache\stcusb.sys
2009-02-28 04:31 48,736 ac------ c:\windows\system32\dllcache\srwlnd5.sys
2009-02-28 04:31 99,328 ac------ c:\windows\system32\dllcache\srusd.dll
2009-02-28 04:31 24,660 ac------ c:\windows\system32\dllcache\spxupchk.dll
2009-02-28 04:30 61,824 ac------ c:\windows\system32\dllcache\speed.sys
2009-02-28 04:30 106,584 ac------ c:\windows\system32\dllcache\spdports.dll
2009-02-28 04:30 19,072 ac------ c:\windows\system32\dllcache\sparrow.sys
2009-02-28 04:30 7,552 ac------ c:\windows\system32\dllcache\sonypvu1.sys
2009-02-28 04:30 37,040 ac------ c:\windows\system32\dllcache\sonypi.sys
2009-02-28 04:29 114,688 ac------ c:\windows\system32\dllcache\sonypi.dll
2009-02-28 04:29 20,752 ac------ c:\windows\system32\dllcache\sonync.sys
2009-02-28 04:29 9,600 ac------ c:\windows\system32\dllcache\sonymc.sys
2009-02-28 04:29 7,552 ac------ c:\windows\system32\dllcache\sonyait.sys
2009-02-28 04:29 7,040 ac------ c:\windows\system32\dllcache\snyaitmc.sys
2009-02-28 04:28 58,368 ac------ c:\windows\system32\dllcache\smiminib.sys
2009-02-28 04:28 147,200 ac------ c:\windows\system32\dllcache\smidispb.dll
2009-02-28 04:28 25,034 ac------ c:\windows\system32\dllcache\smcpwr2n.sys
2009-02-28 04:28 35,913 ac------ c:\windows\system32\dllcache\smcirda.sys
2009-02-28 04:28 24,576 ac------ c:\windows\system32\dllcache\smc8000n.sys
2009-02-28 04:28 6,784 ac------ c:\windows\system32\dllcache\smbhc.sys
2009-02-28 04:27 6,912 ac------ c:\windows\system32\dllcache\smbclass.sys
2009-02-28 04:27 16,000 ac------ c:\windows\system32\dllcache\smbbatt.sys
2009-02-28 04:27 45,568 ac------ c:\windows\system32\dllcache\smb3w.dll
2009-02-28 04:27 33,792 ac------ c:\windows\system32\dllcache\smb0w.dll
2009-02-28 04:27 28,672 ac------ c:\windows\system32\dllcache\sma0w.dll
2009-02-28 04:27 28,160 ac------ c:\windows\system32\dllcache\sm91w.dll
2009-02-28 04:26 63,547 ac------ c:\windows\system32\dllcache\sla30nd5.sys
2009-02-28 04:26 91,294 ac------ c:\windows\system32\dllcache\skfpwin.sys
2009-02-28 04:26 94,698 ac------ c:\windows\system32\dllcache\sk98xwin.sys
2009-02-28 04:26 157,696 ac------ c:\windows\system32\dllcache\sisv256.dll
2009-02-28 04:26 50,432 ac------ c:\windows\system32\dllcache\sisv.sys
2009-02-28 04:26 32,768 ac------ c:\windows\system32\dllcache\sisnic.sys
2009-02-28 04:25 238,592 ac------ c:\windows\system32\dllcache\sisgrv.dll
2009-02-28 04:25 104,064 ac------ c:\windows\system32\dllcache\sisgrp.sys
2009-02-28 04:25 150,144 ac------ c:\windows\system32\dllcache\sis6306v.dll
2009-02-28 04:25 68,608 ac------ c:\windows\system32\dllcache\sis6306p.sys
2009-02-28 04:25 252,032 ac------ c:\windows\system32\dllcache\sis300iv.dll
2009-02-28 04:25 101,760 ac------ c:\windows\system32\dllcache\sis300ip.sys
2009-02-28 04:24 161,568 ac------ c:\windows\system32\dllcache\sgsmusb.sys
2009-02-28 04:24 18,400 ac------ c:\windows\system32\dllcache\sgsmld.sys
2009-02-28 04:24 98,080 ac------ c:\windows\system32\dllcache\sgiulnt5.sys
2009-02-28 04:24 386,560 ac------ c:\windows\system32\dllcache\sgiul50.dll
2009-02-28 04:23 36,480 ac------ c:\windows\system32\dllcache\sfmanm.sys
2009-02-28 04:23 6,784 ac------ c:\windows\system32\dllcache\serscan.sys
2009-02-28 04:23 17,664 ac------ c:\windows\system32\dllcache\sermouse.sys
2009-02-28 04:23 6,912 ac------ c:\windows\system32\dllcache\seaddsmc.sys
2009-02-28 04:23 11,520 ac------ c:\windows\system32\dllcache\scsiscan.sys
2009-02-28 04:23 11,648 ac------ c:\windows\system32\dllcache\scsiprnt.sys
2009-02-28 04:22 17,280 ac------ c:\windows\system32\dllcache\scr111.sys
2009-02-28 04:22 16,640 ac------ c:\windows\system32\dllcache\scmstcs.sys
2009-02-28 04:22 23,936 ac------ c:\windows\system32\dllcache\sccmusbm.sys
2009-02-28 04:22 23,936 ac------ c:\windows\system32\dllcache\sccmn50m.sys
2009-02-28 04:22 43,904 ac------ c:\windows\system32\dllcache\sbp2port.sys
2009-02-28 04:22 495,616 ac------ c:\windows\system32\dllcache\sblfx.dll
2009-02-28 04:21 75,392 ac------ c:\windows\system32\dllcache\s3savmxm.sys
2009-02-28 04:21 245,632 ac------ c:\windows\system32\dllcache\s3savmx.dll
2009-02-28 04:21 77,824 ac------ c:\windows\system32\dllcache\s3sav4m.sys
2009-02-28 04:21 198,400 ac------ c:\windows\system32\dllcache\s3sav4.dll
2009-02-28 04:21 61,504 ac------ c:\windows\system32\dllcache\s3sav3dm.sys
2009-02-28 04:20 179,264 ac------ c:\windows\system32\dllcache\s3sav3d.dll
2009-02-28 04:20 210,496 ac------ c:\windows\system32\dllcache\s3mvirge.dll
2009-02-28 04:20 62,496 ac------ c:\windows\system32\dllcache\s3mtrio.dll
2009-02-28 04:20 41,216 ac------ c:\windows\system32\dllcache\s3mt3d.sys
2009-02-28 04:20 182,272 ac------ c:\windows\system32\dllcache\s3mt3d.dll
2009-02-28 04:20 166,720 ac------ c:\windows\system32\dllcache\s3m.sys
2009-02-28 04:19 65,664 ac------ c:\windows\system32\dllcache\s3legacy.sys
2009-02-28 04:19 82,432 ac------ c:\windows\system32\dllcache\rwia450.dll
2009-02-28 04:19 79,872 ac------ c:\windows\system32\dllcache\rwia430.dll
2009-02-28 04:19 29,696 ac------ c:\windows\system32\dllcache\rw450ext.dll
2009-02-28 04:19 27,648 ac------ c:\windows\system32\dllcache\rw430ext.dll
2009-02-28 04:19 20,992 ac------ c:\windows\system32\dllcache\rtl8139.sys
2009-02-28 04:19 19,017 ac------ c:\windows\system32\dllcache\rtl8029.sys
2009-02-28 04:18 30,720 ac------ c:\windows\system32\dllcache\rthwcls.sys
2009-02-28 04:18 9,216 ac------ c:\windows\system32\dllcache\rsmgrstr.dll
2009-02-28 04:18 3,840 ac------ c:\windows\system32\dllcache\rpfun.sys
2009-02-28 04:18 79,104 ac------ c:\windows\system32\dllcache\rocket.sys
2009-02-28 04:18 37,563 ac------ c:\windows\system32\dllcache\rlnet5.sys
2009-02-28 04:18 86,097 ac------ c:\windows\system32\dllcache\reslog32.dll
2009-02-28 04:17 19,584 ac------ c:\windows\system32\dllcache\rasirda.sys
2009-02-28 04:17 714,762 ac------ c:\windows\system32\dllcache\r2mdmkxx.sys
2009-02-28 04:17 899,146 ac------ c:\windows\system32\dllcache\r2mdkxga.sys
2009-02-28 04:17 41,472 ac------ c:\windows\system32\dllcache\qvusd.dll
2009-02-28 04:17 3,328 ac------ c:\windows\system32\dllcache\qv2kux.sys
2009-02-28 04:16 49,024 ac------ c:\windows\system32\dllcache\ql1280.sys
2009-02-28 04:16 40,448 ac------ c:\windows\system32\dllcache\ql1240.sys
2009-02-28 04:16 45,312 ac------ c:\windows\system32\dllcache\ql12160.sys
2009-02-28 04:16 33,152 ac------ c:\windows\system32\dllcache\ql10wnt.sys
2009-02-28 04:16 40,320 ac------ c:\windows\system32\dllcache\ql1080.sys
2009-02-28 04:15 6,016 ac------ c:\windows\system32\dllcache\qic157.sys
2009-02-28 04:15 130,942 ac------ c:\windows\system32\dllcache\ptserlv.sys
2009-02-28 04:15 112,574 ac------ c:\windows\system32\dllcache\ptserlp.sys
2009-02-28 04:15 128,286 ac------ c:\windows\system32\dllcache\ptserli.sys
2009-02-28 04:15 159,232 ac------ c:\windows\system32\dllcache\ptpusd.dll
2009-02-28 04:15 5,632 ac------ c:\windows\system32\dllcache\ptpusb.dll
2009-02-28 04:15 33,280 ac------ c:\windows\system32\dllcache\psisrndr.ax
2009-02-28 04:15 35,328 ac------ c:\windows\system32\dllcache\psisload.dll
2009-02-28 04:14 363,520 ac------ c:\windows\system32\dllcache\psisdecd.dll
2009-02-28 04:14 16,128 ac------ c:\windows\system32\dllcache\pscr.sys
2009-02-28 04:14 17,664 ac------ c:\windows\system32\dllcache\ppa3.sys
2009-02-28 04:14 17,792 ac------ c:\windows\system32\dllcache\ppa.sys
2009-02-28 04:14 8,832 ac------ c:\windows\system32\dllcache\powerfil.sys
2009-02-28 04:14 7,168 ac------ c:\windows\system32\dllcache\pnrmc.sys
2009-02-28 04:13 121,344 ac------ c:\windows\system32\dllcache\phvfwext.dll
2009-02-28 04:13 19,840 ac------ c:\windows\system32\dllcache\philtune.sys
2009-02-28 04:13 92,416 ac------ c:\windows\system32\dllcache\phildec.sys
2009-02-28 04:13 173,696 ac------ c:\windows\system32\dllcache\philcam2.sys
2009-02-28 04:13 75,776 ac------ c:\windows\system32\dllcache\philcam1.sys
2009-02-28 04:13 16,384 ac------ c:\windows\system32\dllcache\philcam1.dll
2009-02-28 04:12 105,984 ac------ c:\windows\system32\dllcache\phdsext.ax
2009-02-28 04:12 259,328 ac------ c:\windows\system32\dllcache\perm3dd.dll
2009-02-28 04:12 28,032 ac------ c:\windows\system32\dllcache\perm3.sys
2009-02-28 04:12 211,584 ac------ c:\windows\system32\dllcache\perm2dll.dll
2009-02-28 04:12 27,904 ac------ c:\windows\system32\dllcache\perm2.sys
2009-02-28 04:12 5,504 ac------ c:\windows\system32\dllcache\perc2hib.sys
2009-02-28 04:12 27,296 ac------ c:\windows\system32\dllcache\perc2.sys
2009-02-28 04:12 169,984 ac------ c:\windows\system32\dllcache\pcx500.sys
2009-02-28 04:12 86,016 ac------ c:\windows\system32\dllcache\pctspk.exe
2009-02-28 04:11 35,328 ac------ c:\windows\system32\dllcache\pcntpci5.sys
2009-02-28 04:11 29,769 ac------ c:\windows\system32\dllcache\pcntn5m.sys
2009-02-28 04:11 30,282 ac------ c:\windows\system32\dllcache\pcntn5hl.sys
2009-02-28 04:11 26,153 ac------ c:\windows\system32\dllcache\pcmlm56.sys
2009-02-28 04:11 29,502 ac------ c:\windows\system32\dllcache\pca200e.sys
2009-02-28 04:11 30,495 ac------ c:\windows\system32\dllcache\pc100nds.sys
2009-02-28 04:10 41,984 ac------ c:\windows\system32\dllcache\ovui2rc.dll
2009-02-28 04:10 44,544 ac------ c:\windows\system32\dllcache\ovui2.dll
2009-02-28 04:10 25,216 ac------ c:\windows\system32\dllcache\ovsound2.sys
2009-02-28 04:10 39,424 ac------ c:\windows\system32\dllcache\ovcoms.exe
2009-02-28 04:10 20,480 ac------ c:\windows\system32\dllcache\ovcomc.dll
2009-02-28 04:10 351,616 ac------ c:\windows\system32\dllcache\ovcodek2.sys
2009-02-28 04:09 116,736 ac------ c:\windows\system32\dllcache\ovcodec2.dll
2009-02-28 04:09 31,872 ac------ c:\windows\system32\dllcache\ovce.sys
2009-02-28 04:09 28,032 ac------ c:\windows\system32\dllcache\ovcd.sys
2009-02-28 04:09 48,000 ac------ c:\windows\system32\dllcache\ovcam2.sys
2009-02-28 04:09 25,088 ac------ c:\windows\system32\dllcache\ovca.sys
2009-02-28 04:09 54,186 ac------ c:\windows\system32\dllcache\otcsercb.sys
2009-02-28 04:08 43,689 ac------ c:\windows\system32\dllcache\otceth5.sys
2009-02-28 04:08 27,209 ac------ c:\windows\system32\dllcache\otc06x5.sys
2009-02-28 04:08 54,528 ac------ c:\windows\system32\dllcache\opl3sax.sys
2009-02-28 04:08 61,696 ac------ c:\windows\system32\dllcache\ohci1394.sys
2009-02-28 04:08 198,144 ac------ c:\windows\system32\dllcache\nv3.sys
2009-02-28 04:08 123,776 ac------ c:\windows\system32\dllcache\nv3.dll
2009-02-28 04:07 51,552 ac------ c:\windows\system32\dllcache\ntgrip.sys
2009-02-28 04:07 9,344 ac------ c:\windows\system32\dllcache\ntapm.sys
2009-02-28 04:07 7,552 ac------ c:\windows\system32\dllcache\nsmmc.sys
2009-02-28 04:07 28,672 ac------ c:\windows\system32\dllcache\nscirda.sys
2009-02-28 04:07 87,040 ac------ c:\windows\system32\dllcache\nm6wdm.sys
2009-02-28 04:07 126,080 ac------ c:\windows\system32\dllcache\nm5a2wdm.sys
2009-02-28 04:06 32,840 ac------ c:\windows\system32\dllcache\ngrpci.sys
2009-02-28 04:06 132,695 ac------ c:\windows\system32\dllcache\netwlan5.sys
2009-02-28 04:06 65,278 ac------ c:\windows\system32\dllcache\netflx3.sys
2009-02-28 04:06 39,264 ac------ c:\windows\system32\dllcache\neo20xx.sys
2009-02-28 04:06 60,480 ac------ c:\windows\system32\dllcache\neo20xx.dll
2009-02-28 04:06 15,872 ac------ c:\windows\system32\dllcache\ne2000.sys
2009-02-28 04:05 91,488 ac------ c:\windows\system32\dllcache\n9i3disp.dll
2009-02-28 04:05 27,936 ac------ c:\windows\system32\dllcache\n9i3d.sys
2009-02-28 04:05 33,088 ac------ c:\windows\system32\dllcache\n9i128v2.sys
2009-02-28 04:05 59,104 ac------ c:\windows\system32\dllcache\n9i128v2.dll
2009-02-28 04:05 13,664 ac------ c:\windows\system32\dllcache\n9i128.sys
2009-02-28 04:05 35,392 ac------ c:\windows\system32\dllcache\n9i128.dll
2009-02-28 04:04 128,000 ac------ c:\windows\system32\dllcache\n100325.sys
2009-02-28 04:04 52,255 ac------ c:\windows\system32\dllcache\n1000nt5.sys
2009-02-28 04:04 75,520 ac------ c:\windows\system32\dllcache\mxport.sys
2009-02-28 04:04 7,168 ac------ c:\windows\system32\dllcache\mxport.dll
2009-02-28 04:04 19,968 ac------ c:\windows\system32\dllcache\mxnic.sys
2009-02-28 04:04 19,968 ac------ c:\windows\system32\dllcache\mxicfg.dll
2009-02-28 04:04 21,888 ac------ c:\windows\system32\dllcache\mxcard.sys
2009-02-28 04:03 103,296 ac------ c:\windows\system32\dllcache\mtxvideo.sys
2009-02-28 04:03 49,024 ac------ c:\windows\system32\dllcache\mstape.sys
2009-02-28 04:03 12,416 ac------ c:\windows\system32\dllcache\msriffwv.sys
2009-02-28 04:03 2,944 ac------ c:\windows\system32\dllcache\msmpu401.sys
2009-02-28 04:03 22,016 ac------ c:\windows\system32\dllcache\msircomm.sys
2009-02-28 04:02 35,200 ac------ c:\windows\system32\dllcache\msgame.sys
2009-02-28 04:02 6,016 ac------ c:\windows\system32\dllcache\msfsio.sys
2009-02-28 04:02 56,832 ac------ c:\windows\system32\dllcache\msdvbnp.ax
2009-02-28 04:02 51,200 ac------ c:\windows\system32\dllcache\msdv.sys
2009-02-28 04:02 17,280 ac------ c:\windows\system32\dllcache\mraid35x.sys
2009-02-28 04:02 15,232 ac------ c:\windows\system32\dllcache\mpe.sys
2009-02-28 04:01 16,128 ac------ c:\windows\system32\dllcache\modemcsa.sys
2009-02-28 04:01 6,528 ac------ c:\windows\system32\dllcache\miniqic.sys
2009-02-28 04:01 320,384 ac------ c:\windows\system32\dllcache\mgaum.sys
2009-02-28 04:01 235,648 ac------ c:\windows\system32\dllcache\mgaud.dll
2009-02-28 04:01 26,112 ac------ c:\windows\system32\dllcache\memstpci.sys
2009-02-28 04:00 47,616 ac------ c:\windows\system32\dllcache\memgrp.dll
2009-02-28 04:00 8,320 ac------ c:\windows\system32\dllcache\memcard.sys
2009-02-28 04:00 164,586 ac------ c:\windows\system32\dllcache\mdgndis5.sys
2009-02-28 04:00 7,424 ac------ c:\windows\system32\dllcache\mammoth.sys
2009-02-28 04:00 48,768 ac------ c:\windows\system32\dllcache\maestro.sys
2009-02-28 03:59 58,880 ac------ c:\windows\system32\dllcache\m3092dc.dll
2009-02-28 03:59 58,368 ac------ c:\windows\system32\dllcache\m3091dc.dll
2009-02-28 03:59 22,848 ac------ c:\windows\system32\dllcache\lwusbhid.sys
2009-02-28 03:59 20,864 ac------ c:\windows\system32\dllcache\lwadihid.sys
2009-02-28 03:59 797,500 ac------ c:\windows\system32\dllcache\ltsmt.sys
2009-02-28 03:59 802,683 ac------ c:\windows\system32\dllcache\ltsm.sys
2009-02-28 03:59 7,040 ac------ c:\windows\system32\dllcache\ltotape.sys
2009-02-28 03:59 420,992 ac------ c:\windows\system32\dllcache\ltmdmntt.sys
2009-02-28 03:59 576,746 ac------ c:\windows\system32\dllcache\ltmdmntl.sys
2009-02-28 03:59 606,684 ac------ c:\windows\system32\dllcache\ltmdmnt.sys
2009-02-28 03:58 727,786 ac------ c:\windows\system32\dllcache\ltck000c.sys
2009-02-28 03:58 4,992 ac------ c:\windows\system32\dllcache\loop.sys
2009-02-28 03:58 70,730 ac------ c:\windows\system32\dllcache\lne100tx.sys
2009-02-28 03:58 20,573 ac------ c:\windows\system32\dllcache\lne100.sys
2009-02-28 03:58 25,065 ac------ c:\windows\system32\dllcache\lmndis3.sys
2009-02-28 03:57 15,744 ac------ c:\windows\system32\dllcache\lit220p.sys
2009-02-28 03:57 34,688 ac------ c:\windows\system32\dllcache\lbrtfdc.sys
2009-02-28 03:57 26,442 ac------ c:\windows\system32\dllcache\lanepic5.sys
2009-02-28 03:57 19,016 ac------ c:\windows\system32\dllcache\ktc111.sys
2009-02-28 03:57 37,376 ac------ c:\windows\system32\dllcache\kousd.dll
2009-02-28 03:57 253,952 ac------ c:\windows\system32\dllcache\kdsusd.dll
2009-02-28 03:57 48,640 ac------ c:\windows\system32\dllcache\kdsui.dll
2009-02-28 03:56 8,192 ac------ c:\windows\system32\dllcache\kbdkor.dll
2009-02-28 03:56 8,704 ac------ c:\windows\system32\dllcache\kbdjpn.dll
2009-02-28 03:56 14,592 ac------ c:\windows\system32\dllcache\kbdhid.sys
2009-02-28 03:56 6,144 ac------ c:\windows\system32\dllcache\kbd106.dll
2009-02-28 03:56 5,632 ac------ c:\windows\system32\dllcache\kbd103.dll
2009-02-28 03:55 6,144 ac------ c:\windows\system32\dllcache\kbd101c.dll
2009-02-28 03:55 6,144 ac------ c:\windows\system32\dllcache\kbd101b.dll
2009-02-28 03:55 26,624 ac------ c:\windows\system32\dllcache\irstusb.sys
2009-02-28 03:55 18,688 ac------ c:\windows\system32\dllcache\irsir.sys
2009-02-28 03:55 28,160 ac------ c:\windows\system32\dllcache\irmon.dll
2009-02-28 03:55 23,552 ac------ c:\windows\system32\dllcache\irmk7.sys
2009-02-28 03:55 151,552 ac------ c:\windows\system32\dllcache\irftp.exe
2009-02-28 03:55 88,192 ac------ c:\windows\system32\dllcache\irda.sys
2009-02-28 03:54 45,632 ac------ c:\windows\system32\dllcache\ip5515.sys
2009-02-28 03:54 90,200 ac------ c:\windows\system32\dllcache\io8ports.dll
2009-02-28 03:54 38,784 ac------ c:\windows\system32\dllcache\io8.sys
2009-02-28 03:54 13,056 ac------ c:\windows\system32\dllcache\inport.sys
2009-02-28 03:54 16,000 ac------ c:\windows\system32\dllcache\ini910u.sys
2009-02-28 03:53 372,824 ac------ c:\windows\system32\dllcache\iconf32.dll
2009-02-28 03:53 100,992 ac------ c:\windows\system32\dllcache\icam5usb.sys
2009-02-28 03:53 20,480 ac------ c:\windows\system32\dllcache\icam5ext.dll
2009-02-28 03:53 45,056 ac------ c:\windows\system32\dllcache\icam5com.dll
2009-02-28 03:52 154,496 ac------ c:\windows\system32\dllcache\icam4usb.sys
2009-02-28 03:52 61,952 ac------ c:\windows\system32\dllcache\icam4ext.dll
2009-02-28 03:52 91,136 ac------ c:\windows\system32\dllcache\icam4com.dll
2009-02-28 03:52 26,624 ac------ c:\windows\system32\dllcache\icam3ext.dll
2009-02-28 03:52 141,056 ac------ c:\windows\system32\dllcache\icam3.sys
2009-02-28 03:52 38,528 ac------ c:\windows\system32\dllcache\ibmvcap.sys
2009-02-28 03:52 109,085 ac------ c:\windows\system32\dllcache\ibmtrp.sys
2009-02-28 03:51 100,936 ac------ c:\windows\system32\dllcache\ibmtok.sys
2009-02-28 03:51 9,216 ac------ c:\windows\system32\dllcache\ibmsgnet.dll
2009-02-28 03:51 28,700 ac------ c:\windows\system32\dllcache\ibmexmp.sys
2009-02-28 03:51 161,020 ac------ c:\windows\system32\dllcache\i81xnt5.sys
2009-02-28 03:51 702,845 ac------ c:\windows\system32\dllcache\i81xdnt5.dll
2009-02-28 03:51 58,592 ac------ c:\windows\system32\dllcache\i740nt5.sys
2009-02-28 03:51 353,184 ac------ c:\windows\system32\dllcache\i740dnt5.dll
2009-02-28 03:51 18,560 ac------ c:\windows\system32\dllcache\i2omp.sys
2009-02-28 03:51 8,576 ac------ c:\windows\system32\dllcache\i2omgmt.sys
2009-02-28 03:50 488,383 ac------ c:\windows\system32\dllcache\hsf_v124.sys
2009-02-28 03:50 50,751 ac------ c:\windows\system32\dllcache\hsf_tone.sys
2009-02-28 03:50 73,279 ac------ c:\windows\system32\dllcache\hsf_spkp.sys
2009-02-28 03:50 44,863 ac------ c:\windows\system32\dllcache\hsf_soar.sys
2009-02-28 03:50 57,471 ac------ c:\windows\system32\dllcache\hsf_samp.sys
2009-02-28 03:49 542,879 ac------ c:\windows\system32\dllcache\hsf_msft.sys
2009-02-28 03:49 391,199 ac------ c:\windows\system32\dllcache\hsf_k56k.sys
2009-02-28 03:49 9,759 ac------ c:\windows\system32\dllcache\hsf_inst.dll
2009-02-28 03:49 115,807 ac------ c:\windows\system32\dllcache\hsf_fsks.sys
2009-02-28 03:49 199,711 ac------ c:\windows\system32\dllcache\hsf_faxx.sys
2009-02-28 03:49 289,887 ac------ c:\windows\system32\dllcache\hsf_fall.sys
2009-02-28 03:49 67,167 ac------ c:\windows\system32\dllcache\hsf_bsc2.sys
2009-02-28 03:48 150,239 ac------ c:\windows\system32\dllcache\hsf_amos.sys
2009-02-28 03:48 19,456 ac------ c:\windows\system32\dllcache\hr1w.dll
2009-02-28 03:48 5,760 ac------ c:\windows\system32\dllcache\hpt4qic.sys
2009-02-28 03:48 13,312 ac------ c:\windows\system32\dllcache\hpsjmcro.dll
2009-02-28 03:48 324,608 ac------ c:\windows\system32\dllcache\hpojwia.dll
2009-02-28 03:48 25,952 ac------ c:\windows\system32\dllcache\hpn.sys
2009-02-28 03:48 32,768 ac------ c:\windows\system32\dllcache\hpgtmcro.dll
2009-02-28 03:48 68,608 ac------ c:\windows\system32\dllcache\hpgt53tk.dll
2009-02-28 03:47 165,888 ac------ c:\windows\system32\dllcache\hpgt53.dll
2009-02-28 03:47 31,232 ac------ c:\windows\system32\dllcache\hpgt42tk.dll
2009-02-28 03:47 93,696 ac------ c:\windows\system32\dllcache\hpgt42.dll
2009-02-28 03:47 126,976 ac------ c:\windows\system32\dllcache\hpgt34tk.dll
2009-02-28 03:47 101,376 ac------ c:\windows\system32\dllcache\hpgt34.dll
2009-02-28 03:47 48,128 ac------ c:\windows\system32\dllcache\hpgt33tk.dll
2009-02-28 03:47 89,088 ac------ c:\windows\system32\dllcache\hpgt33.dll
2009-02-28 03:47 123,392 ac------ c:\windows\system32\dllcache\hpgt21tk.dll
2009-02-28 03:46 83,968 ac------ c:\windows\system32\dllcache\hpgt21.dll
2009-02-28 03:46 119,296 ac------ c:\windows\system32\dllcache\hpdigwia.dll
2009-02-28 03:46 2,688 ac------ c:\windows\system32\dllcache\hidswvd.sys
2009-02-28 03:46 8,576 ac------ c:\windows\system32\dllcache\hidgame.sys
2009-02-28 03:46 20,352 ac------ c:\windows\system32\dllcache\hidbatt.sys
2009-02-28 03:46 907,456 ac------ c:\windows\system32\dllcache\hcf_msft.sys
2009-02-28 03:46 28,288 ac------ c:\windows\system32\dllcache\grserial.sys
2009-02-28 03:46 82,304 ac------ c:\windows\system32\dllcache\grclass.sys
2009-02-28 03:45 17,408 ac------ c:\windows\system32\dllcache\gpr400.sys
2009-02-28 03:45 59,136 ac------ c:\windows\system32\dllcache\gckernel.sys
2009-02-28 03:45 10,624 ac------ c:\windows\system32\dllcache\gameenum.sys
2009-02-28 03:45 322,432 ac------ c:\windows\system32\dllcache\g400m.sys
2009-02-28 03:45 1,733,120 ac------ c:\windows\system32\dllcache\g400d.dll
2009-02-28 03:45 320,384 ac------ c:\windows\system32\dllcache\g200m.sys
2009-02-28 03:45 470,144 ac------ c:\windows\system32\dllcache\g200d.dll
2009-02-28 03:45 454,912 ac------ c:\windows\system32\dllcache\fxusbase.sys
2009-02-28 03:44 92,160 ac------ c:\windows\system32\dllcache\fuusd.dll
2009-02-28 03:44 455,296 ac------ c:\windows\system32\dllcache\fusbbase.sys
2009-02-28 03:44 455,680 ac------ c:\windows\system32\dllcache\fus2base.sys
2009-02-28 03:44 442,240 ac------ c:\windows\system32\dllcache\fpnpbase.sys
2009-02-28 03:44 441,728 ac------ c:\windows\system32\dllcache\fpcmbase.sys
2009-02-28 03:44 444,416 ac------ c:\windows\system32\dllcache\fpcibase.sys
2009-02-28 03:44 34,173 ac------ c:\windows\system32\dllcache\forehe.sys
2009-02-28 03:44 71,680 ac------ c:\windows\system32\dllcache\fnfilter.dll
2009-02-28 03:43 27,165 ac------ c:\windows\system32\dllcache\fetnd5.sys
2009-02-28 03:43 22,090 ac------ c:\windows\system32\dllcache\fem556n5.sys
2009-02-28 03:43 24,618 ac------ c:\windows\system32\dllcache\fa410nd5.sys
2009-02-28 03:43 16,074 ac------ c:\windows\system32\dllcache\fa312nd5.sys
2009-02-28 03:43 11,850 ac------ c:\windows\system32\dllcache\f3ab18xj.sys
2009-02-28 03:43 12,362 ac------ c:\windows\system32\dllcache\f3ab18xi.sys
2009-02-28 03:42 7,040 ac------ c:\windows\system32\dllcache\exabyte2.sys
2009-02-28 03:42 16,998 ac------ c:\windows\system32\dllcache\ex10.sys
2009-02-28 03:42 45,568 ac------ c:\windows\system32\dllcache\esunib.dll
2009-02-28 03:42 45,568 ac------ c:\windows\system32\dllcache\esuni.dll
2009-02-28 03:42 34,816 ac------ c:\windows\system32\dllcache\esuimg.dll
2009-02-28 03:42 43,008 ac------ c:\windows\system32\dllcache\esucm.dll
2009-02-28 03:42 137,088 ac------ c:\windows\system32\dllcache\essm2e.sys
2009-02-28 03:42 63,360 ac------ c:\windows\system32\dllcache\ess.sys
2009-02-28 03:42 347,550 ac------ c:\windows\system32\dllcache\es56tpi.sys
2009-02-28 03:41 594,238 ac------ c:\windows\system32\dllcache\es56hpi.sys
2009-02-28 03:41 595,647 ac------ c:\windows\system32\dllcache\es56cvmp.sys
2009-02-28 03:41 174,464 ac------ c:\windows\system32\dllcache\es198x.sys
2009-02-28 03:41 72,192 ac------ c:\windows\system32\dllcache\es1969.sys
2009-02-28 03:41 40,704 ac------ c:\windows\system32\dllcache\es1371mp.sys
2009-02-28 03:41 37,120 ac------ c:\windows\system32\dllcache\es1370mp.sys
2009-02-28 03:41 61,952 ac------ c:\windows\system32\dllcache\eqnloop.exe
2009-02-28 03:41 51,200 ac------ c:\windows\system32\dllcache\eqnlogr.exe
2009-02-28 03:41 53,248 ac------ c:\windows\system32\dllcache\eqndiag.exe
2009-02-28 03:40 629,952 ac------ c:\windows\system32\dllcache\eqn.sys
2009-02-28 03:40 114,944 ac------ c:\windows\system32\dllcache\epstw2k.sys
2009-02-28 03:40 18,503 ac------ c:\windows\system32\dllcache\epro4.sys
2009-02-28 03:40 144,896 ac------ c:\windows\system32\dllcache\epcfw2k.sys
2009-02-28 03:40 6,400 ac------ c:\windows\system32\dllcache\enum1394.sys
2009-02-28 03:40 283,904 ac------ c:\windows\system32\dllcache\emu10k1m.sys
2009-02-28 03:40 19,996 ac------ c:\windows\system32\dllcache\em556n4.sys
2009-02-28 03:40 25,159 ac------ c:\windows\system32\dllcache\elnk3.sys
2009-02-28 03:40 7,296 ac------ c:\windows\system32\dllcache\elmsmc.sys
2009-02-28 03:40 171,520 ac------ c:\windows\system32\dllcache\el99xn51.sys
2009-02-28 03:40 70,174 ac------ c:\windows\system32\dllcache\el98xn5.sys
2009-02-28 03:38 117,760 ac------ c:\windows\system32\dllcache\e100b325.sys
2009-02-28 03:38 50,719 ac------ c:\windows\system32\dllcache\e1000nt5.sys
2009-02-28 03:38 20,992 ac------ c:\windows\system32\dllcache\dshowext.ax
2009-02-28 03:38 334,208 ac------ c:\windows\system32\dllcache\ds1wdm.sys
2009-02-28 03:38 20,192 ac------ c:\windows\system32\dllcache\dpti2o.sys
2009-02-28 03:38 28,062 ac------ c:\windows\system32\dllcache\dp83820.sys
2009-02-28 03:38 23,808 ac------ c:\windows\system32\dllcache\dot4usb.sys
2009-02-28 03:38 8,704 ac------ c:\windows\system32\dllcache\dot4scan.sys
2009-02-28 03:38 12,928 ac------ c:\windows\system32\dllcache\dot4prt.sys
2009-02-28 03:38 206,976 ac------ c:\windows\system32\dllcache\dot4.sys
2009-02-28 03:38 29,696 ac------ c:\windows\system32\dllcache\dm9pci5.sys
2009-02-28 03:38 8,320 ac------ c:\windows\system32\dllcache\dlttape.sys
2009-02-28 03:38 26,698 ac------ c:\windows\system32\dllcache\dlh5xnd5.sys
2009-02-28 03:36 229,462 ac------ c:\windows\system32\dllcache\digifwrk.dll
2009-02-28 03:35 86,016 ac------ c:\windows\system32\dllcache\dc240usd.dll
2009-02-28 03:34 93,952 ac------ c:\windows\system32\dllcache\cwcwdm.sys
2009-02-28 03:33 14,976 ac------ c:\windows\system32\dllcache\cpqarray.sys
2009-02-28 03:33 39,936 ac------ c:\windows\system32\dllcache\cnxt1803.sys
2009-02-28 03:33 44,032 ac------ c:\windows\system32\dllcache\cnusd.dll
2009-02-28 03:33 6,656 ac------ c:\windows\system32\dllcache\cmdide.sys
2009-02-28 03:33 20,736 ac------ c:\windows\system32\dllcache\cmbp0wdm.sys
2009-02-28 03:33 248,064 ac------ c:\windows\system32\dllcache\cl546xm.sys
2009-02-28 03:33 170,880 ac------ c:\windows\system32\dllcache\cl546x.dll
2009-02-28 03:33 111,232 ac------ c:\windows\system32\dllcache\cl5465.dll
2009-02-28 03:33 45,696 ac------ c:\windows\system32\dllcache\cirrus.sys
2009-02-28 03:33 91,264 ac------ c:\windows\system32\dllcache\cirrus.dll
2009-02-28 03:33 272,640 ac------ c:\windows\system32\dllcache\cinemclc.sys
2009-02-28 03:33 980,034 ac------ c:\windows\system32\dllcache\cicap.sys
2009-02-28 03:33 8,192 ac------ c:\windows\system32\dllcache\changer.sys
2009-02-28 03:30 13,824 ac------ c:\windows\system32\dllcache\bulltlp3.sys
2009-02-28 03:29 871,388 ac------ c:\windows\system32\dllcache\bcmdm.sys
2009-02-28 03:28 268,160 ac------ c:\windows\system32\dllcache\atidvai.dll
2009-02-28 03:16 101,888 ac------ c:\windows\system32\dllcache\adpu160m.sys
2009-02-28 03:15 66,048 ac------ c:\windows\system32\dllcache\s3legacy.dll
2009-02-27 22:07 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-02-27 22:07 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-25 21:18 <DIR> --d----- c:\docume~1\alluse~1\applic~1\OpenDNS Updater
2009-02-25 21:18 <DIR> --d----- c:\program files\OpenDNS Updater
2009-02-25 21:13 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-02-25 21:12 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-02-25 21:12 <DIR> --d----- c:\docume~1\yuriyh~1\applic~1\SUPERAntiSpyware.com
2009-02-25 16:18 1,089,593 -c------ c:\windows\system32\dllcache\ntprint.cat
2009-02-23 22:57 <DIR> --d----- c:\program files\Windows Desktop Search
2009-02-23 02:02 <DIR> --d----- c:\program files\Shape Collage
2009-02-20 10:56 <DIR> --d----- c:\windows\ERUNT
2009-02-17 18:15 <DIR> --d----- c:\documents and settings\yuriy horokhivskyy\.housecall6.6
2009-02-16 23:44 73,728 a------- c:\windows\system32\javacpl.cpl
2009-02-15 15:43 <DIR> --d----- c:\documents and settings\yuriy horokhivskyy\DoctorWeb
2009-02-12 18:25 <DIR> a-dshr-- C:\cmdcons

==================== Find3M ====================

2009-02-16 23:43 410,984 a------- c:\windows\system32\deploytk.dll
2009-01-20 20:44 149,760 a------- c:\windows\system32\drivers\WpsHelper.sys
2009-01-05 17:33 3,751,995 a------- c:\windows\system32\GPhotos.scr
2009-01-04 20:31 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-01-04 20:31 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01000_Coinstaller_Critical.Wdf
2009-01-01 19:53 60,800 a------- c:\windows\system32\S32EVNT1.DLL
2008-12-20 18:15 826,368 a------- c:\windows\system32\wininet.dll
2008-12-17 00:12 356,352 a------- c:\windows\eSellerateEngine.dll
2008-12-10 23:36 29,480 a------- c:\windows\system32\msxml3a.dll

============= FINISH: 2:34:37.75 ===============
  • 0

#173
emeraldnzl
Posted 04 March 2009 - 01:47 AM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
No it's a special run of DDS I want. It shows some different information.

Lets try this:

Delete your existing copy of DDS. Download a fresh copy from here

Don't run DDS just yet. Instead, open NOTEPAD.exe and copy/paste the text in the quotebox below into it:

Start DDS.exe /Ihatewhitelists
Save this as Run.bat Choose to "Save type as - All Files"

Double click on Run.bat & allow it to run
When done, DDS will open two (2) logs:
1. DDS.txt
2. Attach.txt
Save both reports to your desktop. Copy and paste back here for review.
  • 0

#174
megadez
Posted 04 March 2009 - 02:29 AM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
I had it as dds.scr on my desktop. When I tried to run Run.bat it said "can't find dds.exe". So I renamed dds.scr to dds.exe and then double clicked Run.bat. DDS started to run. I'm not sure whether I accomplished that special run or ordinary one. You tell me. Here are logs:


DDS (Ver_09-02-01.01) - NTFSx86
Run by Yuriy Horokhivskyy at 3:25:27.32 on Wed 03/04/2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_11
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2039.867 [GMT -5:00]

AV: Symantec Endpoint Protection *On-access scanning enabled* (Updated)
FW: Symantec Endpoint Protection *enabled*

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\WINDOWS\system32\svchost.exe -k WudfServiceGroup
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
C:\Program Files\Intel\Wireless\Bin\WLKeeper.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
svchost.exe
svchost.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe
C:\Program Files\Common Files\ABBYY\Lingvo\14.0\Licensing\NetworkLicenseServer.exe
C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Program Files\Cisco Systems\VPN Client\cvpnd.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\CyberLink\Shared files\RichVideo.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
C:\WINDOWS\system32\SearchIndexer.exe
C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
C:\Program Files\Intel\Wireless\bin\ZCfgSvc.exe
C:\Program Files\Intel\Wireless\Bin\ifrmewrk.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe
C:\WINDOWS\system32\WLTRAY.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATI9AA.EXE
C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe
C:\Program Files\ABBYY Lingvo x3\LvAgent.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\PoivY.com\PoivY\PoivY.exe
C:\Program Files\ABBYY Lingvo x3\Lingvo.exe
C:\Program Files\Windows Desktop Search\WindowsSearch.exe
C:\Program Files\Google\Google Talk\googletalk.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Local Settings\Application Data\Google\Chrome\Application\chrome.exe
C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Program Files\Microsoft Office\Office12\EXCEL.EXE
C:\WINDOWS\system32\SearchProtocolHost.exe
C:\Documents and Settings\Yuriy Horokhivskyy\Desktop\dds.exe

============== Pseudo HJT Report ===============

uLocal Page = c:\windows\system32\blank.htm
uSearch Page = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
uStart Page = hxxp://www.msn.com/
mDefault_Page_URL = hxxp://go.microsoft.com/fwlink/?LinkId=69157
mDefault_Search_URL = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mSearch Page = hxxp://go.microsoft.com/fwlink/?LinkId=54896
mLocal Page = %SystemRoot%\system32\blank.htm
mStart Page = hxxp://go.microsoft.com/fwlink/?LinkId=69157
uInternet Connection Wizard,ShellNext = hxxp://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
uSearchURL,(Default) = hxxp://www.google.com/search?q=%s
mCustomizeSearch = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
mSearchAssistant = hxxp://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
uURLSearchHooks: Microsoft Url Search Hook: {cfbfae00-17a6-11d0-99cb-00c04fd64497} - c:\windows\system32\ieframe.dll
mWinlogon: Shell=Explorer.exe
mWinlogon: Userinit=c:\windows\system32\userinit.exe,
mWinlogon: UIHost=logonui.exe
mWinlogon: SFCDisable=0 (0x0)
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
BHO: Java™ Plug-In SSV Helper: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre6\bin\ssv.dll
BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\common files\adobe\acrobat\activex\AcroIEFavClient.dll
TB: &Address: {01e04581-4eee-11d0-bfe9-00aa005b4383} - %SystemRoot%\system32\browseui.dll
TB: &Links: {0e5cbf21-d15f-11d0-8301-00aa005b4383} - %SystemRoot%\system32\SHELL32.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
TB: &Links: {f2cf5485-4e02-4f68-819c-b92de9277049} - c:\windows\system32\ieframe.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [Skype] "c:\program files\skype\phone\Skype.exe" /nosplash /minimized
uRun: [PoivY] "c:\program files\poivy.com\poivy\PoivY.exe" -nosplash -minimized
uRun: [EPSON Stylus CX4600 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATI9AA.EXE /P26 "EPSON Stylus CX4600 Series" /M "Stylus CX4600" /EF "HKCU"
mRun: [IntelZeroConfig] "c:\program files\intel\wireless\bin\ZCfgSvc.exe"
mRun: [IntelWireless] "c:\program files\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\stsystra.exe
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [EPSON Stylus CX4600 Series] c:\windows\system32\spool\drivers\w32x86\3\E_FATI9AA.EXE /P26 "EPSON Stylus CX4600 Series" /O6 "USB001" /M "Stylus CX4600"
mRun: [basicsmssmenu] "c:\program files\seagate\basics\basics status\MaxMenuMgrBasics.exe"
mRun: [Lingvo Launcher] "c:\program files\abbyy lingvo x3\LvAgent.exe" /STARTUP
mRun: [ccApp] "c:\program files\common files\symantec shared\ccApp.exe"
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [igfxtray] c:\windows\system32\igfxtray.exe
mRun: [igfxhkcmd] c:\windows\system32\hkcmd.exe
mRun: [igfxpers] c:\windows\system32\igfxpers.exe
mRun: [Adobe Acrobat Speed Launcher] "c:\program files\adobe\acrobat 9.0\acrobat\Acrobat_sl.exe"
mRun: [googletalk] c:\program files\google\google talk\googletalk.exe /autostart
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
uPolicies-explorer: NoDriveTypeAutoRun = 323 (0x143)
uPolicies-explorer: NoDriveAutoRun = 67108863 (0x3ffffff)
uPolicies-explorer: NoDrives = 0 (0x0)
mPolicies-explorer: NoDriveAutoRun = 67108863 (0x3ffffff)
mPolicies-explorer: NoDriveTypeAutoRun = 323 (0x143)
mPolicies-explorer: NoDrives = 0 (0x0)
mPolicies-explorer: HonorAutoRunSetting = 1 (0x1)
mPolicies-system: dontdisplaylastusername = 0 (0x0)
mPolicies-system: legalnoticecaption =
mPolicies-system: legalnoticetext =
mPolicies-system: shutdownwithoutlogon = 1 (0x1)
mPolicies-system: undockwithoutlogon = 1 (0x1)
mPolicies-system: DisableRegistryTools = 0 (0x0)
dPolicies-explorer: NoDriveTypeAutoRun = 145 (0x91)
dPolicies-explorer: NoDriveAutoRun = 67108863 (0x3ffffff)
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
LSP: %SystemRoot%\system32\mswsock.dll
LSP: %SystemRoot%\system32\rsvpsp.dll
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1227683328000
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0011-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_11-windows-i586.cab
TCP: {9F917EED-07A2-43F2-B2EE-DDD93B0857B7} = 208.67.222.222,208.67.220.220
Filter: application/octet-stream - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - c:\windows\system32\mscoree.dll
Filter: application/x-complus - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - c:\windows\system32\mscoree.dll
Filter: application/x-msdownload - {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - c:\windows\system32\mscoree.dll
Filter: Class Install Handler - {32B533BB-EDAE-11d0-BD5A-00AA00B92AF1} - c:\windows\system32\urlmon.dll
Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - c:\windows\system32\urlmon.dll
Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - c:\windows\system32\urlmon.dll
Filter: lzdhtml - {8f6b0360-b80d-11d0-a9b3-006097942311} - c:\windows\system32\urlmon.dll
Filter: text/webviewhtml - {733AC4CB-F1A4-11d0-B951-00A0C90312E1} -
Filter: text/xml - {807563E5-5146-11D5-A672-00B0D022E945} - c:\progra~1\common~1\micros~1\office12\MSOXMLMF.DLL
Handler: about - {3050F406-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: cdl - {3dd53d40-7b8b-11D0-b013-00aa0059ce02} - c:\windows\system32\urlmon.dll
Handler: dvd - {12D51199-0DB5-46FE-A120-47A3D7D937CC} - c:\windows\system32\msvidctl.dll
Handler: file - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: ftp - {79eac9e3-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: gopher - {79eac9e4-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
Handler: http - {79eac9e2-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: http\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: http\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: https - {79eac9e5-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: https\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: https\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: ipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - c:\windows\system32\itss.dll
Handler: javascript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: local - {79eac9e7-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: mailto - {3050f3DA-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: mhtml - {05300401-BCBC-11d0-85E3-00C04FD85AB4} -
Handler: mk - {79eac9e6-baf9-11ce-8c82-00aa004ba90b} - c:\windows\system32\urlmon.dll
Handler: ms-help - {314111c7-a502-11d2-bbca-00c04f8ec294} - c:\program files\common files\microsoft shared\help\hxds.dll
Handler: ms-its - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - c:\windows\system32\itss.dll
Handler: msdaipp\0x00000001 - {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: msdaipp\oledb - {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - c:\progra~1\common~1\system\oledb~1\MSDAIPP.DLL
Handler: res - {3050F3BC-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Handler: sysimage - {76E67A63-06E9-11D2-A840-006008059382} -
Handler: tv - {CBD30858-AF45-11D2-B6D6-00C04FBBDE6E} - c:\windows\system32\msvidctl.dll
Handler: vbscript - {3050F3B2-98B5-11CF-BB82-00AA00BDCE0B} - c:\windows\system32\mshtml.dll
Handler: wia - {13F3EA8B-91D7-4F0A-AD76-D2853AC8BECE} - c:\windows\system32\wiascr.dll
Name-Space Handler: mk\* - {9D148291-B9C8-11D0-A4CC-0000F80149F6} - c:\windows\system32\itss.dll
Notify: crypt32chain - crypt32.dll
Notify: cryptnet - cryptnet.dll
Notify: cscdll - cscdll.dll
Notify: dimsntfy - c:\windows\system32\dimsntfy.dll
Notify: igfxcui - igfxdev.dll
Notify: ScCertProp - wlnotify.dll
Notify: Schedule - wlnotify.dll
Notify: sclgntfy - sclgntfy.dll
Notify: SensLogn - WlNotify.dll
Notify: termsrv - wlnotify.dll
Notify: wlballoon - wlnotify.dll
SSODL: PostBootReminder - {7849596a-48ea-486e-8937-a2a3009f31a9} - %SystemRoot%\system32\SHELL32.dll
SSODL: CDBurn - {fbeb8a05-beee-4442-804e-409d6c4515e9} - %SystemRoot%\system32\SHELL32.dll
SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - hhctrl32.dll
SSODL: SysTray - {35CEC8A3-2BE6-11D2-8773-92E220524153} - %systemroot%\system32\stobject.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
STS: Browseui preloader: {438755c2-a8ba-11d1-b96b-00a0c90312e1} - %SystemRoot%\system32\browseui.dll
STS: Component Categories cache daemon: {8c7461ef-2b13-11d2-be35-3078302c2030} - %SystemRoot%\system32\browseui.dll
SEH: URL Exec Hook: {aeb6717e-7e19-11d0-97ee-00c04fd91972} - shell32.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SecurityProviders: msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll
LSA: Authentication Packages = msv1_0
LSA: Notification Packages = scecli
SubSystems: Windows = basesrv

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\yuriyh~1\applic~1\mozilla\firefox\profiles\sos6lio5.default\
FF - prefs.js: browser.search.selectedEngine - Wikipedia (en)
FF - prefs.js: keyword.URL - about:neterror?e=query&u=
FF - component: c:\documents and settings\yuriy horokhivskyy\application data\mozilla\firefox\profiles\sos6lio5.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbarloader.dll
FF - component: c:\documents and settings\yuriy horokhivskyy\application data\mozilla\firefox\profiles\sos6lio5.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\metricsloader.dll
FF - component: c:\documents and settings\yuriy horokhivskyy\application data\mozilla\firefox\profiles\sos6lio5.default\extensions\[email protected]\components\coolirisstub.dll
FF - component: c:\program files\mozilla firefox\components\browserdirprovider.dll
FF - component: c:\program files\mozilla firefox\components\brwsrcmp.dll
FF - plugin: c:\documents and settings\yuriy horokhivskyy\local settings\application data\google\update\1.2.141.5\npGoogleOneClick7.dll
FF - plugin: c:\program files\adobe\acrobat 9.0\acrobat\browser\nppdf32.dll
FF - plugin: c:\program files\google\picasa3\npPicasa3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeploytk.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npjp2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npnul32.dll
FF - plugin: c:\program files\opera\program\plugins\npdsplay.dll
FF - plugin: c:\program files\opera\program\plugins\NPOFF12.DLL
FF - plugin: c:\program files\opera\program\plugins\npqtplugin.dll
FF - plugin: c:\program files\opera\program\plugins\npqtplugin2.dll
FF - plugin: c:\program files\opera\program\plugins\npqtplugin3.dll
FF - plugin: c:\program files\opera\program\plugins\npqtplugin4.dll
FF - plugin: c:\program files\opera\program\plugins\npqtplugin5.dll
FF - plugin: c:\program files\opera\program\plugins\npqtplugin6.dll
FF - plugin: c:\program files\opera\program\plugins\npqtplugin7.dll
FF - plugin: c:\program files\opera\program\plugins\npwmsdrm.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin2.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin3.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin4.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin5.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin6.dll
FF - plugin: c:\program files\quicktime\plugins\npqtplugin7.dll
FF - plugin: c:\program files\windows media player\npdrmv2.dll
FF - plugin: c:\program files\windows media player\npdsplay.dll
FF - plugin: c:\program files\windows media player\npwmsdrm.dll
FF - plugin: c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\NPWPF.dll
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32.dll

---- Add-ons/Extensions Installed ----

Chromifox
Cooliris
CoolPreviews
Default
Feeling Lucky Fixer
Forecastfox l10n
Google Toolbar for Firefox
Greasemonkey
Java Quick Starter
Tab Mix Plus

============= SERVICES / DRIVERS ===============

R0 ACPI;Microsoft ACPI Driver;c:\windows\system32\drivers\acpi.sys [2004-8-4 187776]
R0 atapi;Standard IDE/ESDI Hard Disk Controller;c:\windows\system32\drivers\atapi.sys [2004-8-4 96512]
R0 Compbatt;Microsoft Composite Battery Driver;c:\windows\system32\drivers\compbatt.sys [2008-11-25 10240]
R0 Disk;Disk Driver;c:\windows\system32\drivers\disk.sys [2004-8-4 36352]
R0 FltMgr;FltMgr;c:\windows\system32\drivers\fltmgr.sys [2008-11-25 129792]
R0 Ftdisk;Volume Manager Driver;c:\windows\system32\drivers\ftdisk.sys [2004-8-4 125056]
R0 IntelIde;IntelIde;c:\windows\system32\drivers\intelide.sys [2008-11-25 5504]
R0 isapnp;PnP ISA/EISA Bus Driver;c:\windows\system32\drivers\isapnp.sys [2004-8-4 37248]
R0 KSecDD;KSecDD;c:\windows\system32\drivers\ksecdd.sys [2004-8-4 92288]
R0 MountMgr;Mount Point Manager;c:\windows\system32\drivers\mountmgr.sys [2004-8-4 42368]
R0 Mup;Mup;c:\windows\system32\drivers\mup.sys [2004-8-4 105344]
R0 NDIS;NDIS System Driver;c:\windows\system32\drivers\ndis.sys [2004-8-4 182656]
R0 PartMgr;Partition Manager;c:\windows\system32\drivers\partmgr.sys [2004-8-4 19712]
R0 PCI;PCI Bus Driver;c:\windows\system32\drivers\pci.sys [2004-8-4 68224]
R0 PCIIde;PCIIde;c:\windows\system32\drivers\pciide.sys [2004-8-4 3328]
R0 PxHelp20;PxHelp20;c:\windows\system32\drivers\pxhelp20.sys [2008-7-31 43872]
R0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2008-11-26 717296]
R0 sr;System Restore Filter Driver;c:\windows\system32\drivers\sr.sys [2008-11-25 73472]
R0 VolSnap;VolSnap;c:\windows\system32\drivers\volsnap.sys [2004-8-4 52352]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver;c:\windows\system32\drivers\WudfPf.sys [2006-9-28 77568]
R1 AFD;AFD;c:\windows\system32\drivers\afd.sys [2004-8-4 138496]
R1 APPDRV;APPDRV;c:\windows\system32\drivers\APPDRV.SYS [2008-11-28 16128]
R1 ASPI32;ASPI32;c:\windows\system32\drivers\aspi32.sys [2008-12-17 16512]
R1 Beep;Beep;c:\windows\system32\drivers\beep.sys [2004-8-4 4224]
R1 Cdrom;CD-ROM Driver;c:\windows\system32\drivers\cdrom.sys [2004-8-4 62976]
R1 eeCtrl;Symantec Eraser Control driver;c:\program files\common files\symantec shared\eengine\eeCtrl.sys [2009-1-1 371248]
R1 Fips;Fips;c:\windows\system32\drivers\fips.sys [2004-8-4 44544]
R1 i8042prt;i8042 Keyboard and PS/2 Mouse Port Driver;c:\windows\system32\drivers\i8042prt.sys [2004-8-4 52480]
R1 Imapi;CD-Burning Filter Driver;c:\windows\system32\drivers\imapi.sys [2004-8-4 42112]
R1 intelppm;Intel Processor Driver;c:\windows\system32\drivers\intelppm.sys [2004-8-4 36352]
R1 IPSec;IPSEC driver;c:\windows\system32\drivers\ipsec.sys [2004-8-4 75264]
R1 Kbdclass;Keyboard Class Driver;c:\windows\system32\drivers\kbdclass.sys [2004-8-4 24576]
R1 mnmdd;mnmdd;c:\windows\system32\drivers\mnmdd.sys [2004-8-4 4224]
R1 Mouclass;Mouse Class Driver;c:\windows\system32\drivers\mouclass.sys [2004-8-3 23040]
R1 MRxSmb;MRXSMB;c:\windows\system32\drivers\mrxsmb.sys [2004-8-4 455296]
R1 Msfs;Msfs;c:\windows\system32\drivers\msfs.sys [2004-8-4 19072]
R1 NetBIOS;NetBIOS Interface;c:\windows\system32\drivers\netbios.sys [2004-8-4 34688]
R1 NetBT;NetBios over Tcpip;c:\windows\system32\drivers\netbt.sys [2004-8-4 162816]
R1 Npfs;Npfs;c:\windows\system32\drivers\npfs.sys [2004-8-4 30848]
R1 Null;Null;c:\windows\system32\drivers\null.sys [2004-8-4 2944]
R1 RasAcd;Remote Access Auto Connection Driver;c:\windows\system32\drivers\rasacd.sys [2004-8-4 8832]
R1 Rdbss;Rdbss;c:\windows\system32\drivers\rdbss.sys [2004-8-4 175744]
R1 RDPCDD;RDPCDD;c:\windows\system32\drivers\rdpcdd.sys [2004-8-4 4224]
R1 redbook;Digital CD Audio Playback Filter Driver;c:\windows\system32\drivers\redbook.sys [2008-11-25 57600]
R1 SCDEmu;SCDEmu;c:\windows\system32\drivers\scdemu.sys [2008-11-2 56572]
R1 SPBBCDrv;SPBBCDrv;c:\program files\common files\symantec shared\spbbc\SPBBCDrv.sys [2008-6-16 420400]
R1 SRTSP;SRTSP;c:\windows\system32\drivers\srtsp.sys [2008-8-15 279600]
R1 SRTSPX;SRTSPX;c:\windows\system32\drivers\srtspx.sys [2008-8-15 43696]
R1 SYMTDI;SYMTDI;c:\windows\system32\drivers\symtdi.sys [2008-8-21 191536]
R1 Tcpip;TCP/IP Protocol Driver;c:\windows\system32\drivers\tcpip.sys [2004-8-4 361600]
R1 TermDD;Terminal Device Driver;c:\windows\system32\drivers\termdd.sys [2008-11-25 40840]
R1 VgaSave;VGA Display Controller.;c:\windows\system32\drivers\vga.sys [2004-8-4 20992]
R1 WPS;WPS;c:\windows\system32\drivers\WPSDRVnt.sys [2008-9-4 41792]
R2 {95808DC4-FA4A-4C74-92FE-5B863F82066B};{95808DC4-FA4A-4C74-92FE-5B863F82066B};c:\program files\cyberlink\powerdvd\000.fcl [2007-11-3 41456]
R2 ABBYY.Licensing.Lingvo.Desktop.14.0;ABBYY Lingvo x3 Licensing Service;c:\program files\common files\abbyy\lingvo\14.0\licensing\NetworkLicenseServer.exe [2008-7-14 808224]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.6.0.0;c:\windows\system32\drivers\AegisP.sys [2008-11-25 21425]
R2 AudioSrv;Windows Audio;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 Basics Service;Basics Service;c:\program files\seagate\basics\service\SyncServicesBasics.exe [2007-10-9 124280]
R2 BITS;Background Intelligent Transfer Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 Capture Device Service;Capture Device Service;c:\program files\common files\intervideo\deviceservice\DevSvc.exe [2007-3-6 198168]
R2 ccEvtMgr;Symantec Event Manager;c:\program files\common files\symantec shared\ccSvcHst.exe [2008-8-14 108392]
R2 ccSetMgr;Symantec Settings Manager;c:\program files\common files\symantec shared\ccSvcHst.exe [2008-8-14 108392]
R2 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86;c:\windows\microsoft.net\framework\v2.0.50727\mscorsvw.exe [2008-7-25 69632]
R2 CryptSvc;Cryptographic Services;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 CVPND;Cisco Systems, Inc. VPN Service;c:\program files\cisco systems\vpn client\cvpnd.exe [2007-10-26 1524512]
R2 CVPNDRVA;Cisco Systems Inc. IPSec Driver;c:\windows\system32\drivers\CVPNDRVA.sys [2007-10-26 306300]
R2 DcomLaunch;DCOM Server Process Launcher;c:\windows\system32\svchost -k dcomlaunch --> c:\windows\system32\svchost -k DcomLaunch [?]
R2 DefragFS;DefragFS;c:\windows\system32\drivers\DefragFS.sys [2008-11-26 68624]
R2 Dhcp;DHCP Client;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 Dnscache;DNS Client;c:\windows\system32\svchost.exe -k NetworkService [2004-8-4 14336]
R2 ERSvc;Error Reporting Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 Eventlog;Event Log;c:\windows\system32\services.exe [2004-8-4 108544]
R2 EvtEng;Intel® PROSet/Wireless Event Log;c:\program files\intel\wireless\bin\EvtEng.exe [2007-2-21 643072]
R2 helpsvc;Help and Support;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 HidServ;HID Input Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 JavaQuickStarterService;Java Quick Starter;c:\program files\java\jre6\bin\jqs.exe [2009-2-16 152984]
R2 lanmanserver;Server;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 lanmanworkstation;Workstation;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 LmHosts;TCP/IP NetBIOS Helper;c:\windows\system32\svchost.exe -k LocalService [2004-8-4 14336]
R2 LVPrcSrv;Process Monitor;c:\program files\common files\logishrd\lvmvfm\LVPrcSrv.exe [2006-12-22 109344]
R2 mdmxsdk;mdmxsdk;c:\windows\system32\drivers\mdmxsdk.sys [2008-11-25 12544]
R2 NICCONFIGSVC;NICCONFIGSVC;c:\program files\dell\quickset\NicConfigSvc.exe [2008-11-28 376832]
R2 NMSAccessU;NMSAccessU;c:\program files\cdburnerxp\NMSAccessU.exe [2008-11-26 71096]
R2 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk2008\PD91Agent.exe [2008-1-16 664840]
R2 PlugPlay;Plug and Play;c:\windows\system32\services.exe [2004-8-4 108544]
R2 PolicyAgent;IPSEC Services;c:\windows\system32\lsass.exe [2004-8-4 13312]
R2 ProtectedStorage;Protected Storage;c:\windows\system32\lsass.exe [2004-8-4 13312]
R2 RegSrvc;Intel® PROSet/Wireless Registry Service;c:\program files\intel\wireless\bin\RegSrvc.exe [2007-2-21 327680]
R2 RichVideo;Cyberlink RichVideo Service(CRVS);c:\program files\cyberlink\shared files\RichVideo.exe [2008-12-11 243056]
R2 RpcSs;Remote Procedure Call (RPC);c:\windows\system32\svchost -k rpcss --> c:\windows\system32\svchost -k rpcss [?]
R2 S24EventMonitor;Intel® PROSet/Wireless Service;c:\program files\intel\wireless\bin\S24EvMon.exe [2007-2-21 983040]
R2 s24trans;WLAN Transport;c:\windows\system32\drivers\s24trans.sys [2007-2-21 12416]
R2 SamSs;Security Accounts Manager;c:\windows\system32\lsass.exe [2004-8-4 13312]
R2 Schedule;Task Scheduler;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 seclogon;Secondary Logon;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 SENS;System Event Notification;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 SharedAccess;Windows Firewall/Internet Connection Sharing (ICS);c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 ShellHWDetection;Shell Hardware Detection;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 SmcService;Symantec Management Client;c:\program files\symantec\symantec endpoint protection\Smc.exe [2008-9-4 1787200]
R2 Spooler;Print Spooler;c:\windows\system32\spoolsv.exe [2004-8-4 57856]
R2 srservice;System Restore Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 stisvc;Windows Image Acquisition (WIA);c:\windows\system32\svchost.exe -k imgsvc [2004-8-4 14336]
R2 Symantec AntiVirus;Symantec Endpoint Protection;c:\program files\symantec\symantec endpoint protection\Rtvscan.exe [2008-9-11 2436536]
R2 Themes;Themes;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 TrkWks;Distributed Link Tracking Client;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 W32Time;Windows Time;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 WebClient;WebClient;c:\windows\system32\svchost.exe -k LocalService [2004-8-4 14336]
R2 winmgmt;Windows Management Instrumentation;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 WLANKEEPER;Intel® PROSet/Wireless SSO Service;c:\program files\intel\wireless\bin\WLKEEPER.exe [2007-2-21 294912]
R2 wltrysvc;Dell Wireless WLAN Tray Service;c:\windows\system32\wltrysvc.exe c:\windows\system32\bcmwltry.exe --> c:\windows\system32\wltrysvc.exe c:\windows\system32\bcmwltry.exe [?]
R2 wscsvc;Security Center;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 WSearch;Windows Search;c:\windows\system32\searchindexer.exe [2008-5-26 439808]
R2 wuauserv;Automatic Updates;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework;c:\windows\system32\svchost.exe -k WudfServiceGroup [2004-8-4 14336]
R2 WZCSVC;Wireless Zero Configuration;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 ALG;Application Layer Gateway Service;c:\windows\system32\alg.exe [2004-8-4 44544]
R3 audstub;Audio Stub Driver;c:\windows\system32\drivers\audstub.sys [2008-11-25 3072]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver;c:\windows\system32\drivers\bcm4sbxp.sys [2005-8-5 45312]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver;c:\windows\system32\drivers\cmbatt.sys [2008-11-25 13952]
R3 CVirtA;Cisco Systems VPN Adapter;c:\windows\system32\drivers\CVirtA.sys [2007-1-18 5275]
R3 DNE;Deterministic Network Enhancer Miniport;c:\windows\system32\drivers\dne2000.sys [2008-11-25 127376]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-2-25 101936]
R3 EventSystem;COM+ Event System;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 FastUserSwitchingCompatibility;Fast User Switching Compatibility;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 Gpc;Generic Packet Classifier;c:\windows\system32\drivers\msgpc.sys [2004-8-4 35072]
R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio;c:\windows\system32\drivers\hdaudbus.sys [2005-1-7 144384]
R3 hidusb;Microsoft HID Class Driver;c:\windows\system32\drivers\hidusb.sys [2004-8-4 10368]
R3 HSF_DPV;HSF_DPV;c:\windows\system32\drivers\HSX_DPV.sys [2008-11-25 936960]
R3 HSXHWAZL;HSXHWAZL;c:\windows\system32\drivers\HSXHWAZL.sys [2008-11-25 192512]
R3 HTTP;HTTP;c:\windows\system32\drivers\http.sys [2004-8-4 264832]
R3 ialm;ialm;c:\windows\system32\drivers\ialmnt5.sys [2008-11-25 1168860]
R3 IpNat;IP Network Address Translator;c:\windows\system32\drivers\ipnat.sys [2004-8-4 152832]
R3 kmixer;Microsoft Kernel Wave Audio Mixer;c:\windows\system32\drivers\kmixer.sys [2008-11-25 172416]
R3 LVPr2Mon;Logitech LVPr2Mon Driver;c:\windows\system32\drivers\LVPr2Mon.sys [2006-12-22 25632]
R3 LVUSBSta;Logitech USB Monitor Filter;c:\windows\system32\drivers\LVUSBSta.sys [2008-11-25 41248]
R3 Modem;Modem;c:\windows\system32\drivers\modem.sys [2004-8-3 30080]
R3 mouhid;Mouse HID Driver;c:\windows\system32\drivers\mouhid.sys [2001-8-17 12160]
R3 MRxDAV;WebDav Client Redirector;c:\windows\system32\drivers\mrxdav.sys [2004-8-4 180608]
R3 mssmbios;Microsoft System Management BIOS Driver;c:\windows\system32\drivers\mssmbios.sys [2004-8-3 15488]
R3 NAVENG;NAVENG;c:\progra~1\common~1\symant~1\virusd~1\20090303.003\NAVENG.SYS [2009-3-3 89104]
R3 NAVEX15;NAVEX15;c:\progra~1\common~1\symant~1\virusd~1\20090303.003\NAVEX15.SYS [2009-3-3 876144]
R3 NdisTapi;Remote Access NDIS TAPI Driver;c:\windows\system32\drivers\ndistapi.sys [2004-8-4 10112]
R3 Ndisuio;NDIS Usermode I/O Protocol;c:\windows\system32\drivers\ndisuio.sys [2004-8-3 14592]
R3 NdisWan;Remote Access NDIS WAN Driver;c:\windows\system32\drivers\ndiswan.sys [2004-8-4 91520]
R3 NDProxy;NDIS Proxy;c:\windows\system32\drivers\ndproxy.sys [2004-8-4 40576]
R3 Netman;Network Connections;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 Nla;Network Location Awareness (NLA);c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 PptpMiniport;WAN Miniport (PPTP);c:\windows\system32\drivers\raspptp.sys [2004-8-4 48384]
R3 PSched;QoS Packet Scheduler;c:\windows\system32\drivers\psched.sys [2004-8-4 69120]
R3 Ptilink;Direct Parallel Link Driver;c:\windows\system32\drivers\ptilink.sys [2004-8-4 17792]
R3 Rasl2tp;WAN Miniport (L2TP);c:\windows\system32\drivers\rasl2tp.sys [2004-8-4 51328]
R3 RasMan;Remote Access Connection Manager;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 RasPppoe;Remote Access PPPOE Driver;c:\windows\system32\drivers\raspppoe.sys [2004-8-4 41472]
R3 Raspti;Direct Parallel;c:\windows\system32\drivers\raspti.sys [2004-8-4 16512]
R3 Srv;Srv;c:\windows\system32\drivers\srv.sys [2004-8-4 333952]
R3 SSDPSRV;SSDP Discovery Service;c:\windows\system32\svchost.exe -k LocalService [2004-8-4 14336]
R3 STHDA;SigmaTel High Definition Audio CODEC;c:\windows\system32\drivers\sthda.sys [2008-11-25 1222840]
R3 swenum;Software Bus Driver;c:\windows\system32\drivers\swenum.sys [2004-8-3 4352]
R3 SymEvent;SymEvent;c:\windows\system32\drivers\SYMEVENT.SYS [2009-1-1 123952]
R3 SYMREDRV;SYMREDRV;c:\windows\system32\drivers\symredrv.sys [2008-8-21 27696]
R3 SynTP;Synaptics TouchPad Driver;c:\windows\system32\drivers\SynTP.sys [2009-1-4 179256]
R3 sysaudio;Microsoft Kernel System Audio Device;c:\windows\system32\drivers\sysaudio.sys [2008-11-25 60800]
R3 TapiSrv;Telephony;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
R3 Teefer2;Teefer2 Miniport;c:\windows\system32\drivers\Teefer2.sys [2008-7-10 49536]
R3 TermService;Terminal Services;c:\windows\system32\svchost -k dcomlaunch --> c:\windows\system32\svchost -k DComLaunch [?]
R3 Update;Microcode Update Driver;c:\windows\system32\drivers\update.sys [2004-8-4 384768]
R3 usbccgp;Microsoft USB Generic Parent Driver;c:\windows\system32\drivers\usbccgp.sys [2008-11-25 32128]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver;c:\windows\system32\drivers\usbehci.sys [2004-8-4 30208]
R3 usbhub;Microsoft USB Standard Hub Driver;c:\windows\system32\drivers\usbhub.sys [2004-8-4 59520]
R3 usbprint;Microsoft USB PRINTER Class;c:\windows\system32\drivers\usbprint.sys [2008-11-25 25856]
R3 usbscan;USB Scanner Driver;c:\windows\system32\drivers\usbscan.sys [2008-12-8 15104]
R3 USBSTOR;USB Mass Storage Driver;c:\windows\system32\drivers\usbstor.sys [2008-11-25 26368]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver;c:\windows\system32\drivers\usbuhci.sys [2004-8-4 20608]
R3 w29n51;Intel® PRO/Wireless 2200BG Network Connection Driver for Windows XP;c:\windows\system32\drivers\w29n51.sys [2008-11-25 2209408]
R3 Wanarp;Remote Access IP ARP Driver;c:\windows\system32\drivers\wanarp.sys [2004-8-4 34560]
R3 Wdf01000;Wdf01000;c:\windows\system32\drivers\wdf01000.sys [2005-11-30 474184]
R3 wdmaud;Microsoft WINMM WDM Audio Compatibility Driver;c:\windows\system32\drivers\wdmaud.sys [2008-11-25 83072]
R3 winachsf;winachsf;c:\windows\system32\drivers\HSX_CNXT.sys [2008-11-25 669696]
R3 WpsHelper;WpsHelper;c:\windows\system32\drivers\WpsHelper.sys [2008-6-20 149760]
R4 Cdfs;Cdfs;c:\windows\system32\drivers\cdfs.sys [2004-8-4 63744]
R4 Fastfat;Fastfat;c:\windows\system32\drivers\fastfat.sys [2004-8-4 143744]
R4 Ntfs;Ntfs;c:\windows\system32\drivers\ntfs.sys [2004-8-4 574976]
R4 Udfs;Udfs;c:\windows\system32\drivers\udfs.sys [2004-8-4 66048]
S0 cercsr6;cercsr6;c:\windows\system32\drivers\cercsr6.sys [2004-12-13 39904]
S1 Cdaudio;Cdaudio;c:\windows\system32\drivers\cdaudio.sys [2001-8-17 18688]
S1 Changer;Changer; [x]
S1 Fdc;Fdc;c:\windows\system32\drivers\fdc.sys [2004-8-4 27392]
S1 Flpydisk;Flpydisk;c:\windows\system32\drivers\flpydisk.sys [2004-8-4 20480]
S1 i2omgmt;i2omgmt; [x]
S1 lbrtfdc;lbrtfdc; [x]
S1 PCIDump;PCIDump; [x]
S1 Sfloppy;Sfloppy;c:\windows\system32\drivers\sfloppy.sys [2004-8-4 11392]
S1 vdmymjk3;AVZ-BC Kernel Driver;\??\c:\windows\system32\drivers\vdmymjk3.sys --> c:\windows\system32\drivers\vdmymjk3.sys [?]
S2 Browser;Computer Browser;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S2 LVSrvLauncher;LVSrvLauncher;c:\program files\common files\logishrd\srvlnch\SrvLnch.exe [2006-12-22 105248]
S2 ParVdm;ParVdm;c:\windows\system32\drivers\parvdm.sys [2004-8-4 6784]
S2 Serial;Serial;c:\windows\system32\drivers\serial.sys [2004-8-4 64512]
S3 aec;Microsoft Kernel Acoustic Echo Canceller;c:\windows\system32\drivers\aec.sys [2008-11-25 142592]
S3 AppMgmt;Application Management;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 aspnet_state;ASP.NET State Service;c:\windows\microsoft.net\framework\v2.0.50727\aspnet_state.exe [2008-7-25 34312]
S3 AsyncMac;RAS Asynchronous Media Driver;c:\windows\system32\drivers\asyncmac.sys [2004-8-4 14336]
S3 Atmarpc;ATM ARP Client Protocol;c:\windows\system32\drivers\atmarpc.sys [2004-8-4 59904]
S3 catchme;catchme;\??\c:\combofix\catchme.sys --> c:\combofix\catchme.sys [?]
S3 CCDECODE;Closed Caption Decoder;c:\windows\system32\drivers\CCDECODE.sys [2008-11-25 17024]
S3 CiSvc;Indexing Service;c:\windows\system32\cisvc.exe [2004-8-4 5632]
S3 COH_Mon;COH_Mon;c:\windows\system32\drivers\COH_Mon.sys [2008-1-12 23888]
S3 COMSysApp;COM+ System Application;c:\windows\system32\dllhost.exe [2004-8-4 5120]
S3 dmadmin;Logical Disk Manager Administrative Service;c:\windows\system32\dmadmin.exe [2004-8-4 224768]
S3 dmserver;Logical Disk Manager;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 DMusic;Microsoft Kernel DLS Syntheiszer;c:\windows\system32\drivers\dmusic.sys [2008-11-25 52864]
S3 Dot3svc;Wired AutoConfig;c:\windows\system32\svchost.exe -k dot3svc [2004-8-4 14336]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler;c:\windows\system32\drivers\drmkaud.sys [2008-11-25 2944]
S3 EapHost;Extensible Authentication Protocol Service;c:\windows\system32\svchost.exe -k eapsvcs [2004-8-4 14336]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service;c:\program files\common files\macrovision shared\flexnet publisher\FNPLicensingService.exe [2009-1-16 651720]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0;c:\windows\microsoft.net\framework\v3.0\wpf\PresentationFontCache.exe [2008-7-29 46104]
S3 gusvc;Google Updater Service;c:\program files\google\common\google updater\GoogleUpdaterService.exe [2008-11-25 137200]
S3 hkmsvc;Health Key and Certificate Management Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 HTTPFilter;HTTP SSL;c:\windows\system32\svchost.exe -k HTTPFilter [2004-8-4 14336]
S3 idsvc;Windows CardSpace;c:\windows\microsoft.net\framework\v3.0\windows communication foundation\infocard.exe [2008-7-29 881664]
S3 ImapiService;IMAPI CD-Burning COM Service;c:\windows\system32\imapi.exe [2004-8-4 150528]
S3 Ip6Fw;IPv6 Windows Firewall Driver;c:\windows\system32\drivers\ip6fw.sys [2004-8-4 36608]
S3 IpFilterDriver;IP Traffic Filter Driver;c:\windows\system32\drivers\ipfltdrv.sys [2004-8-4 32896]
S3 IpInIp;IP in IP Tunnel Driver;c:\windows\system32\drivers\ipinip.sys [2004-8-4 20864]
S3 IRENUM;IR Enumerator Service;c:\windows\system32\drivers\irenum.sys [2008-11-25 11264]
S3 LiveUpdate;LiveUpdate;c:\progra~1\symantec\liveup~1\LUCOMS~1.EXE [2009-1-1 3093872]
S3 LVcKap;Logitech AEC Driver;c:\windows\system32\drivers\Lvckap.sys [2006-12-22 1683232]
S3 LVMVDrv;Logitech Machine Vision Engine Loader;c:\windows\system32\drivers\LVMVdrv.sys [2006-12-22 1963680]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service;c:\program files\microsoft office\office12\GrooveAuditService.exe [2007-8-24 68464]
S3 mnmsrvc;NetMeeting Remote Desktop Sharing;c:\windows\system32\mnmsrvc.exe [2008-11-25 32768]
S3 MSDTC;Distributed Transaction Coordinator;c:\windows\system32\msdtc.exe [2008-11-25 6144]
S3 MSIServer;Windows Installer;c:\windows\system32\msiexec.exe [2004-8-4 78848]
S3 MSKSSRV;Microsoft Streaming Service Proxy;c:\windows\system32\drivers\mskssrv.sys [2008-11-25 7552]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy;c:\windows\system32\drivers\mspclock.sys [2008-11-25 5376]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy;c:\windows\system32\drivers\mspqm.sys [2008-11-25 4992]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter;c:\windows\system32\drivers\MSTEE.sys [2008-11-25 5504]
S3 NABTSFEC;NABTS/FEC VBI Codec;c:\windows\system32\drivers\NABTSFEC.sys [2008-11-25 85248]
S3 napagent;Network Access Protection Agent;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 NdisIP;Microsoft TV/Video Connection;c:\windows\system32\drivers\NdisIP.sys [2008-11-25 10880]
S3 Netlogon;Net Logon;c:\windows\system32\lsass.exe [2004-8-4 13312]
S3 NtLmSsp;NT LM Security Support Provider;c:\windows\system32\lsass.exe [2004-8-4 13312]
S3 NtmsSvc;Removable Storage;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 NwlnkFlt;IPX Traffic Filter Driver;c:\windows\system32\drivers\nwlnkflt.sys [2004-8-4 12416]
S3 NwlnkFwd;IPX Traffic Forwarder Driver;c:\windows\system32\drivers\nwlnkfwd.sys [2004-8-4 32512]
S3 odserv;Microsoft Office Diagnostics Service;c:\program files\common files\microsoft shared\office12\ODSERV.EXE [2007-8-24 443776]
S3 ose;Office Source Engine;c:\program files\common files\microsoft shared\source engine\OSE.EXE [2006-10-26 145184]
S3 Parport;Parport;c:\windows\system32\drivers\parport.sys [2004-8-3 80128]
S3 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk2008\PD91Engine.exe [2008-1-16 894216]
S3 PDCOMP;PDCOMP; [x]
S3 PDFRAME;PDFRAME; [x]
S3 PDRELI;PDRELI; [x]
S3 PDRFRAME;PDRFRAME; [x]
S3 PID_0928;Logitech QuickCam Express(PID_0928);c:\windows\system32\drivers\LV561AV.SYS [2008-11-25 490016]
S3 RasAuto;Remote Access Auto Connection Manager;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 RDPWD;RDPWD;c:\windows\system32\drivers\rdpwd.sys [2008-11-25 139656]
S3 RDSessMgr;Remote Desktop Help Session Manager;c:\windows\system32\sessmgr.exe [2008-11-25 141312]
S3 RpcLocator;Remote Procedure Call (RPC) Locator;c:\windows\system32\locator.exe [2004-8-4 75264]
S3 RSVP;QoS RSVP;c:\windows\system32\rsvp.exe [2004-8-4 132608]
S3 SCardSvr;Smart Card;c:\windows\system32\scardsvr.exe [2004-8-4 95744]
S3 Secdrv;Secdrv;c:\windows\system32\drivers\secdrv.sys [2004-8-4 20480]
S3 SLIP;BDA Slip De-Framer;c:\windows\system32\drivers\SLIP.sys [2008-11-25 11136]
S3 SNAC;Symantec Network Access Control;c:\program files\symantec\symantec endpoint protection\SNAC.EXE [2008-9-4 312720]
S3 splitter;Microsoft Kernel Audio Splitter;c:\windows\system32\drivers\splitter.sys [2008-11-25 6272]
S3 SRTSPL;SRTSPL;c:\windows\system32\drivers\srtspl.sys [2008-8-15 317872]
S3 streamip;BDA IPSink;c:\windows\system32\drivers\StreamIP.sys [2008-11-25 15232]
S3 swmidi;Microsoft Kernel GS Wavetable Synthesizer;c:\windows\system32\drivers\swmidi.sys [2008-11-25 56576]
S3 SwPrv;MS Software Shadow Copy Provider;c:\windows\system32\dllhost.exe [2004-8-4 5120]
S3 SysmonLog;Performance Logs and Alerts;c:\windows\system32\smlogsvc.exe [2004-8-4 89600]
S3 TDPIPE;TDPIPE;c:\windows\system32\drivers\tdpipe.sys [2008-11-25 12040]
S3 TDTCP;TDTCP;c:\windows\system32\drivers\tdtcp.sys [2008-11-25 21896]
S3 UIUSys;Conexant Setup API;c:\windows\system32\drivers\uiusys.sys --> c:\windows\system32\drivers\UIUSYS.SYS [?]
S3 upnphost;Universal Plug and Play Device Host;c:\windows\system32\svchost.exe -k LocalService [2004-8-4 14336]
S3 UPS;Uninterruptible Power Supply;c:\windows\system32\ups.exe [2004-8-4 18432]
S3 VSS;Volume Shadow Copy;c:\windows\system32\vssvc.exe [2004-8-4 289792]
S3 WDICA;WDICA; [x]
S3 WmdmPmSN;Portable Media Serial Number Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S3 WmiApSrv;WMI Performance Adapter;c:\windows\system32\wbem\wmiapsrv.exe [2008-11-25 126464]
S3 WMPNetworkSvc;Windows Media Player Network Sharing Service;c:\program files\windows media player\wmpnetwk.exe [2006-10-18 913408]
S3 WpdUsb;WpdUsb;c:\windows\system32\drivers\wpdusb.sys [2006-10-18 38528]
S3 WSTCODEC;World Standard Teletext Codec;c:\windows\system32\drivers\WSTCODEC.SYS [2008-11-25 19200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector;c:\windows\system32\drivers\WudfRd.sys [2006-9-28 82944]
S3 xmlprov;Network Provisioning Service;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S4 Abiosdsk;Abiosdsk; [x]
S4 abp480n5;abp480n5; [x]
S4 ACPIEC;ACPIEC;c:\windows\system32\drivers\acpiec.sys [2004-8-4 11648]
S4 adpu160m;adpu160m; [x]
S4 Aha154x;Aha154x; [x]
S4 aic78u2;aic78u2; [x]
S4 aic78xx;aic78xx; [x]
S4 Alerter;Alerter;c:\windows\system32\svchost.exe -k LocalService [2004-8-4 14336]
S4 AliIde;AliIde; [x]
S4 amsint;amsint; [x]
S4 asc;asc; [x]
S4 asc3350p;asc3350p; [x]
S4 asc3550;asc3550; [x]
S4 Atdisk;Atdisk; [x]
S4 cbidf2k;cbidf2k;c:\windows\system32\drivers\cbidf2k.sys [2004-8-4 13952]
S4 cd20xrnt;cd20xrnt; [x]
S4 ClipSrv;ClipBook;c:\windows\system32\clipsrv.exe [2004-8-4 33280]
S4 CmdIde;CmdIde; [x]
S4 Cpqarray;Cpqarray; [x]
S4 dac960nt;dac960nt; [x]
S4 dmboot;dmboot;c:\windows\system32\drivers\dmboot.sys [2004-8-4 799744]
S4 dmio;dmio;c:\windows\system32\drivers\dmio.sys [2004-8-4 153344]
S4 dmload;dmload;c:\windows\system32\drivers\dmload.sys [2004-8-4 5888]
S4 dpti2o;dpti2o; [x]
S4 hpn;hpn; [x]
S4 i2omp;i2omp; [x]
S4 ini910u;ini910u; [x]
S4 Messenger;Messenger;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S4 mraid35x;mraid35x; [x]
S4 NetDDE;Network DDE;c:\windows\system32\netdde.exe [2004-8-4 111104]
S4 NetDDEdsdm;Network DDE DSDM;c:\windows\system32\netdde.exe [2004-8-4 111104]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service;"c:\windows\microsoft.net\framework\v3.0\windows communication foundation\SMSvcHost.exe" [2008-7-29 132096]
S4 Pcmcia;Pcmcia;c:\windows\system32\drivers\pcmcia.sys [2004-8-4 120192]
S4 perc2;perc2; [x]
S4 perc2hib;perc2hib; [x]
S4 ql1080;ql1080; [x]
S4 Ql10wnt;Ql10wnt; [x]
S4 ql12160;ql12160; [x]
S4 ql1240;ql1240; [x]
S4 ql1280;ql1280; [x]
S4 RemoteAccess;Routing and Remote Access;c:\windows\system32\svchost.exe -k netsvcs [2004-8-4 14336]
S4 Simbad;Simbad; [x]
S4 Sparrow;Sparrow; [x]
S4 sym_hi;sym_hi; [x]
S4 sym_u3;sym_u3; [x]
S4 symc810;symc810; [x]
S4 symc8xx;symc8xx; [x]
S4 SysPlant;SysPlant for NT;c:\windows\system32\drivers\SysPlant.sys [2009-1-1 91968]
S4 TosIde;TosIde; [x]
S4 ultra;ultra; [x]
S4 ViaIde;ViaIde; [x]

============== File Associations ===============

batfile="%1" %*
chm.file="c:\windows\hh.exe" %1
cmdfile="%1" %*
comfile="%1" %*
exefile="%1" %*
inffile=%SystemRoot%\System32\NOTEPAD.EXE %1
inifile=%SystemRoot%\System32\NOTEPAD.EXE %1
JSEFile=%SystemRoot%\System32\WScript.exe "%1" %*
piffile="%1" %*
regedit=regedit.exe %1
regfile=regedit.exe "%1"
scrfile="%1" /S
txtfile=%SystemRoot%\system32\NOTEPAD.EXE %1
VBEFile=%SystemRoot%\System32\WScript.exe "%1" %*
VBSFile=%SystemRoot%\System32\WScript.exe "%1" %*

=============== Created Last 30 ================

2009-03-04 02:00 <DIR> --d----- c:\docume~1\yuriyh~1\applic~1\Chart Advisor from Office Labs
2009-03-04 01:58 <DIR> --d----- c:\program files\Microsoft Office Labs
2009-03-04 01:56 <DIR> --d----- c:\program files\Microsoft.NET
2009-03-02 00:39 <DIR> --dsh--- C:\RECYCLER
2009-03-02 00:09 212,480 a------- c:\windows\SWXCACLS.exe
2009-03-02 00:09 161,792 a------- c:\windows\SWREG.exe
2009-03-02 00:09 136,704 a------- c:\windows\SWSC.exe
2009-03-02 00:09 98,816 a------- c:\windows\sed.exe
2009-03-02 00:09 89,504 a------- c:\windows\fdsv.exe
2009-03-02 00:09 80,412 a------- c:\windows\grep.exe
2009-03-02 00:09 68,096 a------- c:\windows\zip.exe
2009-03-02 00:09 49,152 a------- c:\windows\VFIND.exe
2009-03-02 00:09 29,696 a------- c:\windows\NIRCMD.exe
2009-03-02 00:08 <DIR> --d----- C:\Qoobox
2009-02-28 23:13 <DIR> --d----- C:\_OTMoveIt
2009-02-28 17:16 <DIR> --d----- C:\rsit
2009-02-28 04:49 116,224 ac------ c:\windows\system32\dllcache\xrxwiadr.dll
2009-02-28 04:49 23,040 ac------ c:\windows\system32\dllcache\xrxwbtmp.dll
2009-02-28 04:49 18,944 ac------ c:\windows\system32\dllcache\xrxscnui.dll
2009-02-28 04:49 27,648 ac------ c:\windows\system32\dllcache\xrxftplt.exe
2009-02-28 04:48 4,608 ac------ c:\windows\system32\dllcache\xrxflnch.exe
2009-02-28 04:48 99,865 ac------ c:\windows\system32\dllcache\xlog.exe
2009-02-28 04:48 16,970 ac------ c:\windows\system32\dllcache\xem336n5.sys
2009-02-28 04:48 19,455 ac------ c:\windows\system32\dllcache\wvchntxx.sys
2009-02-28 04:48 12,063 ac------ c:\windows\system32\dllcache\wsiintxx.sys
2009-02-28 04:48 8,192 ac------ c:\windows\system32\dllcache\wshirda.dll
2009-02-28 04:47 8,832 ac------ c:\windows\system32\dllcache\wmiacpi.sys
2009-02-28 04:47 154,624 ac------ c:\windows\system32\dllcache\wlluc48.sys
2009-02-28 04:47 34,890 ac------ c:\windows\system32\dllcache\wlandrv2.sys
2009-02-28 04:46 771,581 ac------ c:\windows\system32\dllcache\winacisa.sys
2009-02-28 04:46 53,760 ac------ c:\windows\system32\dllcache\wiamsmud.dll
2009-02-28 04:46 87,040 ac------ c:\windows\system32\dllcache\wiafbdrv.dll
2009-02-28 04:46 701,386 ac------ c:\windows\system32\dllcache\wdhaalba.sys
2009-02-28 04:46 23,615 ac------ c:\windows\system32\dllcache\wch7xxnt.sys
2009-02-28 04:46 31,744 ac------ c:\windows\system32\dllcache\wceusbsh.sys
2009-02-28 04:45 35,871 ac------ c:\windows\system32\dllcache\wbfirdma.sys
2009-02-28 04:45 33,599 ac------ c:\windows\system32\dllcache\watv04nt.sys
2009-02-28 04:45 19,551 ac------ c:\windows\system32\dllcache\watv02nt.sys
2009-02-28 04:45 29,311 ac------ c:\windows\system32\dllcache\watv01nt.sys
2009-02-28 04:45 11,775 ac------ c:\windows\system32\dllcache\wadv05nt.sys
2009-02-28 04:45 12,127 ac------ c:\windows\system32\dllcache\wadv02nt.sys
2009-02-28 04:45 12,415 ac------ c:\windows\system32\dllcache\wadv01nt.sys
2009-02-28 04:45 16,925 ac------ c:\windows\system32\dllcache\w940nd.sys
2009-02-28 04:45 19,016 ac------ c:\windows\system32\dllcache\w926nd.sys
2009-02-28 04:44 19,528 ac------ c:\windows\system32\dllcache\w840nd.sys
2009-02-28 04:44 64,605 ac------ c:\windows\system32\dllcache\vvoice.sys
2009-02-28 04:44 397,502 ac------ c:\windows\system32\dllcache\vpctcom.sys
2009-02-28 04:44 604,253 ac------ c:\windows\system32\dllcache\vmodem.sys
2009-02-28 04:43 249,402 ac------ c:\windows\system32\dllcache\vinwm.sys
2009-02-28 04:43 24,576 ac------ c:\windows\system32\dllcache\viairda.sys
2009-02-28 04:43 5,376 ac------ c:\windows\system32\dllcache\viaide.sys
2009-02-28 04:43 687,999 ac------ c:\windows\system32\dllcache\usrwdxjs.sys
2009-02-28 04:43 765,884 ac------ c:\windows\system32\dllcache\usrti.sys
2009-02-28 04:43 113,762 ac------ c:\windows\system32\dllcache\usrpda.sys
2009-02-28 04:42 7,556 ac------ c:\windows\system32\dllcache\usroslba.sys
2009-02-28 04:42 224,802 ac------ c:\windows\system32\dllcache\usr1807a.sys
2009-02-28 04:42 794,399 ac------ c:\windows\system32\dllcache\usr1806v.sys
2009-02-28 04:42 793,598 ac------ c:\windows\system32\dllcache\usr1806.sys
2009-02-28 04:42 794,654 ac------ c:\windows\system32\dllcache\usr1801.sys
2009-02-28 04:41 26,112 ac------ c:\windows\system32\dllcache\usbser.sys
2009-02-28 04:41 17,152 ac------ c:&
  • 0

#175
megadez
Posted 04 March 2009 - 02:33 AM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
2009-02-28 04:41 26,112 ac------ c:\windows\system32\dllcache\usbser.sys
2009-02-28 04:41 17,152 ac------ c:\windows\system32\dllcache\usbohci.sys
2009-02-28 04:41 60,032 ac------ c:\windows\system32\dllcache\usbaudio.sys
2009-02-28 04:41 32,384 ac------ c:\windows\system32\dllcache\usb101et.sys
2009-02-28 04:41 94,720 ac------ c:\windows\system32\dllcache\umaxud32.dll
2009-02-28 04:41 28,160 ac------ c:\windows\system32\dllcache\umaxu40.dll
2009-02-28 04:41 26,624 ac------ c:\windows\system32\dllcache\umaxu22.dll
2009-02-28 04:40 69,632 ac------ c:\windows\system32\dllcache\umaxu12.dll
2009-02-28 04:40 50,688 ac------ c:\windows\system32\dllcache\umaxscan.dll
2009-02-28 04:40 22,912 ac------ c:\windows\system32\dllcache\umaxpcls.sys
2009-02-28 04:40 50,176 ac------ c:\windows\system32\dllcache\umaxp60.dll
2009-02-28 04:40 47,616 ac------ c:\windows\system32\dllcache\umaxcam.dll
2009-02-28 04:39 211,968 ac------ c:\windows\system32\dllcache\um54scan.dll
2009-02-28 04:39 216,064 ac------ c:\windows\system32\dllcache\um34scan.dll
2009-02-28 04:39 36,736 ac------ c:\windows\system32\dllcache\ultra.sys
2009-02-28 04:39 11,520 ac------ c:\windows\system32\dllcache\twotrack.sys
2009-02-28 04:39 166,784 ac------ c:\windows\system32\dllcache\tridxpm.sys
2009-02-28 04:38 525,568 ac------ c:\windows\system32\dllcache\tridxp.dll
2009-02-28 04:38 159,232 ac------ c:\windows\system32\dllcache\tridkbm.sys
2009-02-28 04:38 440,576 ac------ c:\windows\system32\dllcache\tridkb.dll
2009-02-28 04:38 222,336 ac------ c:\windows\system32\dllcache\trid3dm.sys
2009-02-28 04:38 315,520 ac------ c:\windows\system32\dllcache\trid3d.dll
2009-02-28 04:37 34,375 ac------ c:\windows\system32\dllcache\tpro4.sys
2009-02-28 04:37 42,496 ac------ c:\windows\system32\dllcache\tp4res.dll
2009-02-28 04:37 82,944 ac------ c:\windows\system32\dllcache\tp4mon.exe
2009-02-28 04:37 31,744 ac------ c:\windows\system32\dllcache\tp4.dll
2009-02-28 04:37 4,992 ac------ c:\windows\system32\dllcache\toside.sys
2009-02-28 04:36 230,912 ac------ c:\windows\system32\dllcache\tosdvd03.sys
2009-02-28 04:36 241,664 ac------ c:\windows\system32\dllcache\tosdvd02.sys
2009-02-28 04:36 28,232 ac------ c:\windows\system32\dllcache\tos4mo.sys
2009-02-28 04:36 123,995 ac------ c:\windows\system32\dllcache\tjisdn.sys
2009-02-28 04:36 138,528 ac------ c:\windows\system32\dllcache\tgiulnt5.sys
2009-02-28 04:35 81,408 ac------ c:\windows\system32\dllcache\tgiul50.dll
2009-02-28 04:35 149,376 ac------ c:\windows\system32\dllcache\tffsport.sys
2009-02-28 04:35 17,129 ac------ c:\windows\system32\dllcache\tdkcd31.sys
2009-02-28 04:35 37,961 ac------ c:\windows\system32\dllcache\tdk100b.sys
2009-02-28 04:35 30,464 ac------ c:\windows\system32\dllcache\tbatm155.sys
2009-02-28 04:34 7,040 ac------ c:\windows\system32\dllcache\tandqic.sys
2009-02-28 04:34 36,640 ac------ c:\windows\system32\dllcache\t2r4mini.sys
2009-02-28 04:34 172,768 ac------ c:\windows\system32\dllcache\t2r4disp.dll
2009-02-28 04:34 32,640 ac------ c:\windows\system32\dllcache\symc8xx.sys
2009-02-28 04:34 16,256 ac------ c:\windows\system32\dllcache\symc810.sys
2009-02-28 04:33 30,688 ac------ c:\windows\system32\dllcache\sym_u3.sys
2009-02-28 04:33 28,384 ac------ c:\windows\system32\dllcache\sym_hi.sys
2009-02-28 04:33 94,293 ac------ c:\windows\system32\dllcache\sxports.dll
2009-02-28 04:33 103,936 ac------ c:\windows\system32\dllcache\sx.sys
2009-02-28 04:33 3,968 ac------ c:\windows\system32\dllcache\swusbflt.sys
2009-02-28 04:33 10,240 ac------ c:\windows\system32\dllcache\swpidflt.dll
2009-02-28 04:32 10,240 ac------ c:\windows\system32\dllcache\swpdflt2.dll
2009-02-28 04:32 53,760 ac------ c:\windows\system32\dllcache\sw_wheel.dll
2009-02-28 04:32 41,472 ac------ c:\windows\system32\dllcache\sw_effct.dll
2009-02-28 04:32 155,648 ac------ c:\windows\system32\dllcache\stlnprop.dll
2009-02-28 04:32 53,248 ac------ c:\windows\system32\dllcache\stlncoin.dll
2009-02-28 04:31 285,760 ac------ c:\windows\system32\dllcache\stlnata.sys
2009-02-28 04:31 16,896 ac------ c:\windows\system32\dllcache\stcusb.sys
2009-02-28 04:31 48,736 ac------ c:\windows\system32\dllcache\srwlnd5.sys
2009-02-28 04:31 99,328 ac------ c:\windows\system32\dllcache\srusd.dll
2009-02-28 04:31 24,660 ac------ c:\windows\system32\dllcache\spxupchk.dll
2009-02-28 04:30 61,824 ac------ c:\windows\system32\dllcache\speed.sys
2009-02-28 04:30 106,584 ac------ c:\windows\system32\dllcache\spdports.dll
2009-02-28 04:30 19,072 ac------ c:\windows\system32\dllcache\sparrow.sys
2009-02-28 04:30 7,552 ac------ c:\windows\system32\dllcache\sonypvu1.sys
2009-02-28 04:30 37,040 ac------ c:\windows\system32\dllcache\sonypi.sys
2009-02-28 04:29 114,688 ac------ c:\windows\system32\dllcache\sonypi.dll
2009-02-28 04:29 20,752 ac------ c:\windows\system32\dllcache\sonync.sys
2009-02-28 04:29 9,600 ac------ c:\windows\system32\dllcache\sonymc.sys
2009-02-28 04:29 7,552 ac------ c:\windows\system32\dllcache\sonyait.sys
2009-02-28 04:29 7,040 ac------ c:\windows\system32\dllcache\snyaitmc.sys
2009-02-28 04:28 58,368 ac------ c:\windows\system32\dllcache\smiminib.sys
2009-02-28 04:28 147,200 ac------ c:\windows\system32\dllcache\smidispb.dll
2009-02-28 04:28 25,034 ac------ c:\windows\system32\dllcache\smcpwr2n.sys
2009-02-28 04:28 35,913 ac------ c:\windows\system32\dllcache\smcirda.sys
2009-02-28 04:28 24,576 ac------ c:\windows\system32\dllcache\smc8000n.sys
2009-02-28 04:28 6,784 ac------ c:\windows\system32\dllcache\smbhc.sys
2009-02-28 04:27 6,912 ac------ c:\windows\system32\dllcache\smbclass.sys
2009-02-28 04:27 16,000 ac------ c:\windows\system32\dllcache\smbbatt.sys
2009-02-28 04:27 45,568 ac------ c:\windows\system32\dllcache\smb3w.dll
2009-02-28 04:27 33,792 ac------ c:\windows\system32\dllcache\smb0w.dll
2009-02-28 04:27 28,672 ac------ c:\windows\system32\dllcache\sma0w.dll
2009-02-28 04:27 28,160 ac------ c:\windows\system32\dllcache\sm91w.dll
2009-02-28 04:26 63,547 ac------ c:\windows\system32\dllcache\sla30nd5.sys
2009-02-28 04:26 91,294 ac------ c:\windows\system32\dllcache\skfpwin.sys
2009-02-28 04:26 94,698 ac------ c:\windows\system32\dllcache\sk98xwin.sys
2009-02-28 04:26 157,696 ac------ c:\windows\system32\dllcache\sisv256.dll
2009-02-28 04:26 50,432 ac------ c:\windows\system32\dllcache\sisv.sys
2009-02-28 04:26 32,768 ac------ c:\windows\system32\dllcache\sisnic.sys
2009-02-28 04:25 238,592 ac------ c:\windows\system32\dllcache\sisgrv.dll
2009-02-28 04:25 104,064 ac------ c:\windows\system32\dllcache\sisgrp.sys
2009-02-28 04:25 150,144 ac------ c:\windows\system32\dllcache\sis6306v.dll
2009-02-28 04:25 68,608 ac------ c:\windows\system32\dllcache\sis6306p.sys
2009-02-28 04:25 252,032 ac------ c:\windows\system32\dllcache\sis300iv.dll
2009-02-28 04:25 101,760 ac------ c:\windows\system32\dllcache\sis300ip.sys
2009-02-28 04:24 161,568 ac------ c:\windows\system32\dllcache\sgsmusb.sys
2009-02-28 04:24 18,400 ac------ c:\windows\system32\dllcache\sgsmld.sys
2009-02-28 04:24 98,080 ac------ c:\windows\system32\dllcache\sgiulnt5.sys
2009-02-28 04:24 386,560 ac------ c:\windows\system32\dllcache\sgiul50.dll
2009-02-28 04:23 36,480 ac------ c:\windows\system32\dllcache\sfmanm.sys
2009-02-28 04:23 6,784 ac------ c:\windows\system32\dllcache\serscan.sys
2009-02-28 04:23 17,664 ac------ c:\windows\system32\dllcache\sermouse.sys
2009-02-28 04:23 6,912 ac------ c:\windows\system32\dllcache\seaddsmc.sys
2009-02-28 04:23 11,520 ac------ c:\windows\system32\dllcache\scsiscan.sys
2009-02-28 04:23 11,648 ac------ c:\windows\system32\dllcache\scsiprnt.sys
2009-02-28 04:22 17,280 ac------ c:\windows\system32\dllcache\scr111.sys
2009-02-28 04:22 16,640 ac------ c:\windows\system32\dllcache\scmstcs.sys
2009-02-28 04:22 23,936 ac------ c:\windows\system32\dllcache\sccmusbm.sys
2009-02-28 04:22 23,936 ac------ c:\windows\system32\dllcache\sccmn50m.sys
2009-02-28 04:22 43,904 ac------ c:\windows\system32\dllcache\sbp2port.sys
2009-02-28 04:22 495,616 ac------ c:\windows\system32\dllcache\sblfx.dll
2009-02-28 04:21 75,392 ac------ c:\windows\system32\dllcache\s3savmxm.sys
2009-02-28 04:21 245,632 ac------ c:\windows\system32\dllcache\s3savmx.dll
2009-02-28 04:21 77,824 ac------ c:\windows\system32\dllcache\s3sav4m.sys
2009-02-28 04:21 198,400 ac------ c:\windows\system32\dllcache\s3sav4.dll
2009-02-28 04:21 61,504 ac------ c:\windows\system32\dllcache\s3sav3dm.sys
2009-02-28 04:20 179,264 ac------ c:\windows\system32\dllcache\s3sav3d.dll
2009-02-28 04:20 210,496 ac------ c:\windows\system32\dllcache\s3mvirge.dll
2009-02-28 04:20 62,496 ac------ c:\windows\system32\dllcache\s3mtrio.dll
2009-02-28 04:20 41,216 ac------ c:\windows\system32\dllcache\s3mt3d.sys
2009-02-28 04:20 182,272 ac------ c:\windows\system32\dllcache\s3mt3d.dll
2009-02-28 04:20 166,720 ac------ c:\windows\system32\dllcache\s3m.sys
2009-02-28 04:19 65,664 ac------ c:\windows\system32\dllcache\s3legacy.sys
2009-02-28 04:19 82,432 ac------ c:\windows\system32\dllcache\rwia450.dll
2009-02-28 04:19 79,872 ac------ c:\windows\system32\dllcache\rwia430.dll
2009-02-28 04:19 29,696 ac------ c:\windows\system32\dllcache\rw450ext.dll
2009-02-28 04:19 27,648 ac------ c:\windows\system32\dllcache\rw430ext.dll
2009-02-28 04:19 20,992 ac------ c:\windows\system32\dllcache\rtl8139.sys
2009-02-28 04:19 19,017 ac------ c:\windows\system32\dllcache\rtl8029.sys
2009-02-28 04:18 30,720 ac------ c:\windows\system32\dllcache\rthwcls.sys
2009-02-28 04:18 9,216 ac------ c:\windows\system32\dllcache\rsmgrstr.dll
2009-02-28 04:18 3,840 ac------ c:\windows\system32\dllcache\rpfun.sys
2009-02-28 04:18 79,104 ac------ c:\windows\system32\dllcache\rocket.sys
2009-02-28 04:18 37,563 ac------ c:\windows\system32\dllcache\rlnet5.sys
2009-02-28 04:18 86,097 ac------ c:\windows\system32\dllcache\reslog32.dll
2009-02-28 04:17 19,584 ac------ c:\windows\system32\dllcache\rasirda.sys
2009-02-28 04:17 714,762 ac------ c:\windows\system32\dllcache\r2mdmkxx.sys
2009-02-28 04:17 899,146 ac------ c:\windows\system32\dllcache\r2mdkxga.sys
2009-02-28 04:17 41,472 ac------ c:\windows\system32\dllcache\qvusd.dll
2009-02-28 04:17 3,328 ac------ c:\windows\system32\dllcache\qv2kux.sys
2009-02-28 04:16 49,024 ac------ c:\windows\system32\dllcache\ql1280.sys
2009-02-28 04:16 40,448 ac------ c:\windows\system32\dllcache\ql1240.sys
2009-02-28 04:16 45,312 ac------ c:\windows\system32\dllcache\ql12160.sys
2009-02-28 04:16 33,152 ac------ c:\windows\system32\dllcache\ql10wnt.sys
2009-02-28 04:16 40,320 ac------ c:\windows\system32\dllcache\ql1080.sys
2009-02-28 04:15 6,016 ac------ c:\windows\system32\dllcache\qic157.sys
2009-02-28 04:15 130,942 ac------ c:\windows\system32\dllcache\ptserlv.sys
2009-02-28 04:15 112,574 ac------ c:\windows\system32\dllcache\ptserlp.sys
2009-02-28 04:15 128,286 ac------ c:\windows\system32\dllcache\ptserli.sys
2009-02-28 04:15 159,232 ac------ c:\windows\system32\dllcache\ptpusd.dll
2009-02-28 04:15 5,632 ac------ c:\windows\system32\dllcache\ptpusb.dll
2009-02-28 04:15 33,280 ac------ c:\windows\system32\dllcache\psisrndr.ax
2009-02-28 04:15 35,328 ac------ c:\windows\system32\dllcache\psisload.dll
2009-02-28 04:14 363,520 ac------ c:\windows\system32\dllcache\psisdecd.dll
2009-02-28 04:14 16,128 ac------ c:\windows\system32\dllcache\pscr.sys
2009-02-28 04:14 17,664 ac------ c:\windows\system32\dllcache\ppa3.sys
2009-02-28 04:14 17,792 ac------ c:\windows\system32\dllcache\ppa.sys
2009-02-28 04:14 8,832 ac------ c:\windows\system32\dllcache\powerfil.sys
2009-02-28 04:14 7,168 ac------ c:\windows\system32\dllcache\pnrmc.sys
2009-02-28 04:13 121,344 ac------ c:\windows\system32\dllcache\phvfwext.dll
2009-02-28 04:13 19,840 ac------ c:\windows\system32\dllcache\philtune.sys
2009-02-28 04:13 92,416 ac------ c:\windows\system32\dllcache\phildec.sys
2009-02-28 04:13 173,696 ac------ c:\windows\system32\dllcache\philcam2.sys
2009-02-28 04:13 75,776 ac------ c:\windows\system32\dllcache\philcam1.sys
2009-02-28 04:13 16,384 ac------ c:\windows\system32\dllcache\philcam1.dll
2009-02-28 04:12 105,984 ac------ c:\windows\system32\dllcache\phdsext.ax
2009-02-28 04:12 259,328 ac------ c:\windows\system32\dllcache\perm3dd.dll
2009-02-28 04:12 28,032 ac------ c:\windows\system32\dllcache\perm3.sys
2009-02-28 04:12 211,584 ac------ c:\windows\system32\dllcache\perm2dll.dll
2009-02-28 04:12 27,904 ac------ c:\windows\system32\dllcache\perm2.sys
2009-02-28 04:12 5,504 ac------ c:\windows\system32\dllcache\perc2hib.sys
2009-02-28 04:12 27,296 ac------ c:\windows\system32\dllcache\perc2.sys
2009-02-28 04:12 169,984 ac------ c:\windows\system32\dllcache\pcx500.sys
2009-02-28 04:12 86,016 ac------ c:\windows\system32\dllcache\pctspk.exe
2009-02-28 04:11 35,328 ac------ c:\windows\system32\dllcache\pcntpci5.sys
2009-02-28 04:11 29,769 ac------ c:\windows\system32\dllcache\pcntn5m.sys
2009-02-28 04:11 30,282 ac------ c:\windows\system32\dllcache\pcntn5hl.sys
2009-02-28 04:11 26,153 ac------ c:\windows\system32\dllcache\pcmlm56.sys
2009-02-28 04:11 29,502 ac------ c:\windows\system32\dllcache\pca200e.sys
2009-02-28 04:11 30,495 ac------ c:\windows\system32\dllcache\pc100nds.sys
2009-02-28 04:10 41,984 ac------ c:\windows\system32\dllcache\ovui2rc.dll
2009-02-28 04:10 44,544 ac------ c:\windows\system32\dllcache\ovui2.dll
2009-02-28 04:10 25,216 ac------ c:\windows\system32\dllcache\ovsound2.sys
2009-02-28 04:10 39,424 ac------ c:\windows\system32\dllcache\ovcoms.exe
2009-02-28 04:10 20,480 ac------ c:\windows\system32\dllcache\ovcomc.dll
2009-02-28 04:10 351,616 ac------ c:\windows\system32\dllcache\ovcodek2.sys
2009-02-28 04:09 116,736 ac------ c:\windows\system32\dllcache\ovcodec2.dll
2009-02-28 04:09 31,872 ac------ c:\windows\system32\dllcache\ovce.sys
2009-02-28 04:09 28,032 ac------ c:\windows\system32\dllcache\ovcd.sys
2009-02-28 04:09 48,000 ac------ c:\windows\system32\dllcache\ovcam2.sys
2009-02-28 04:09 25,088 ac------ c:\windows\system32\dllcache\ovca.sys
2009-02-28 04:09 54,186 ac------ c:\windows\system32\dllcache\otcsercb.sys
2009-02-28 04:08 43,689 ac------ c:\windows\system32\dllcache\otceth5.sys
2009-02-28 04:08 27,209 ac------ c:\windows\system32\dllcache\otc06x5.sys
2009-02-28 04:08 54,528 ac------ c:\windows\system32\dllcache\opl3sax.sys
2009-02-28 04:08 61,696 ac------ c:\windows\system32\dllcache\ohci1394.sys
2009-02-28 04:08 198,144 ac------ c:\windows\system32\dllcache\nv3.sys
2009-02-28 04:08 123,776 ac------ c:\windows\system32\dllcache\nv3.dll
2009-02-28 04:07 51,552 ac------ c:\windows\system32\dllcache\ntgrip.sys
2009-02-28 04:07 9,344 ac------ c:\windows\system32\dllcache\ntapm.sys
2009-02-28 04:07 7,552 ac------ c:\windows\system32\dllcache\nsmmc.sys
2009-02-28 04:07 28,672 ac------ c:\windows\system32\dllcache\nscirda.sys
2009-02-28 04:07 87,040 ac------ c:\windows\system32\dllcache\nm6wdm.sys
2009-02-28 04:07 126,080 ac------ c:\windows\system32\dllcache\nm5a2wdm.sys
2009-02-28 04:06 32,840 ac------ c:\windows\system32\dllcache\ngrpci.sys
2009-02-28 04:06 132,695 ac------ c:\windows\system32\dllcache\netwlan5.sys
2009-02-28 04:06 65,278 ac------ c:\windows\system32\dllcache\netflx3.sys
2009-02-28 04:06 39,264 ac------ c:\windows\system32\dllcache\neo20xx.sys
2009-02-28 04:06 60,480 ac------ c:\windows\system32\dllcache\neo20xx.dll
2009-02-28 04:06 15,872 ac------ c:\windows\system32\dllcache\ne2000.sys
2009-02-28 04:05 91,488 ac------ c:\windows\system32\dllcache\n9i3disp.dll
2009-02-28 04:05 27,936 ac------ c:\windows\system32\dllcache\n9i3d.sys
2009-02-28 04:05 33,088 ac------ c:\windows\system32\dllcache\n9i128v2.sys
2009-02-28 04:05 59,104 ac------ c:\windows\system32\dllcache\n9i128v2.dll
2009-02-28 04:05 13,664 ac------ c:\windows\system32\dllcache\n9i128.sys
2009-02-28 04:05 35,392 ac------ c:\windows\system32\dllcache\n9i128.dll
2009-02-28 04:04 128,000 ac------ c:\windows\system32\dllcache\n100325.sys
2009-02-28 04:04 52,255 ac------ c:\windows\system32\dllcache\n1000nt5.sys
2009-02-28 04:04 75,520 ac------ c:\windows\system32\dllcache\mxport.sys
2009-02-28 04:04 7,168 ac------ c:\windows\system32\dllcache\mxport.dll
2009-02-28 04:04 19,968 ac------ c:\windows\system32\dllcache\mxnic.sys
2009-02-28 04:04 19,968 ac------ c:\windows\system32\dllcache\mxicfg.dll
2009-02-28 04:04 21,888 ac------ c:\windows\system32\dllcache\mxcard.sys
2009-02-28 04:03 103,296 ac------ c:\windows\system32\dllcache\mtxvideo.sys
2009-02-28 04:03 49,024 ac------ c:\windows\system32\dllcache\mstape.sys
2009-02-28 04:03 12,416 ac------ c:\windows\system32\dllcache\msriffwv.sys
2009-02-28 04:03 2,944 ac------ c:\windows\system32\dllcache\msmpu401.sys
2009-02-28 04:03 22,016 ac------ c:\windows\system32\dllcache\msircomm.sys
2009-02-28 04:02 35,200 ac------ c:\windows\system32\dllcache\msgame.sys
2009-02-28 04:02 6,016 ac------ c:\windows\system32\dllcache\msfsio.sys
2009-02-28 04:02 56,832 ac------ c:\windows\system32\dllcache\msdvbnp.ax
2009-02-28 04:02 51,200 ac------ c:\windows\system32\dllcache\msdv.sys
2009-02-28 04:02 17,280 ac------ c:\windows\system32\dllcache\mraid35x.sys
2009-02-28 04:02 15,232 ac------ c:\windows\system32\dllcache\mpe.sys
2009-02-28 04:01 16,128 ac------ c:\windows\system32\dllcache\modemcsa.sys
2009-02-28 04:01 6,528 ac------ c:\windows\system32\dllcache\miniqic.sys
2009-02-28 04:01 320,384 ac------ c:\windows\system32\dllcache\mgaum.sys
2009-02-28 04:01 235,648 ac------ c:\windows\system32\dllcache\mgaud.dll
2009-02-28 04:01 26,112 ac------ c:\windows\system32\dllcache\memstpci.sys
2009-02-28 04:00 47,616 ac------ c:\windows\system32\dllcache\memgrp.dll
2009-02-28 04:00 8,320 ac------ c:\windows\system32\dllcache\memcard.sys
2009-02-28 04:00 164,586 ac------ c:\windows\system32\dllcache\mdgndis5.sys
2009-02-28 04:00 7,424 ac------ c:\windows\system32\dllcache\mammoth.sys
2009-02-28 04:00 48,768 ac------ c:\windows\system32\dllcache\maestro.sys
2009-02-28 03:59 58,880 ac------ c:\windows\system32\dllcache\m3092dc.dll
2009-02-28 03:59 58,368 ac------ c:\windows\system32\dllcache\m3091dc.dll
2009-02-28 03:59 22,848 ac------ c:\windows\system32\dllcache\lwusbhid.sys
2009-02-28 03:59 20,864 ac------ c:\windows\system32\dllcache\lwadihid.sys
2009-02-28 03:59 797,500 ac------ c:\windows\system32\dllcache\ltsmt.sys
2009-02-28 03:59 802,683 ac------ c:\windows\system32\dllcache\ltsm.sys
2009-02-28 03:59 7,040 ac------ c:\windows\system32\dllcache\ltotape.sys
2009-02-28 03:59 420,992 ac------ c:\windows\system32\dllcache\ltmdmntt.sys
2009-02-28 03:59 576,746 ac------ c:\windows\system32\dllcache\ltmdmntl.sys
2009-02-28 03:59 606,684 ac------ c:\windows\system32\dllcache\ltmdmnt.sys
2009-02-28 03:58 727,786 ac------ c:\windows\system32\dllcache\ltck000c.sys
2009-02-28 03:58 4,992 ac------ c:\windows\system32\dllcache\loop.sys
2009-02-28 03:58 70,730 ac------ c:\windows\system32\dllcache\lne100tx.sys
2009-02-28 03:58 20,573 ac------ c:\windows\system32\dllcache\lne100.sys
2009-02-28 03:58 25,065 ac------ c:\windows\system32\dllcache\lmndis3.sys
2009-02-28 03:57 15,744 ac------ c:\windows\system32\dllcache\lit220p.sys
2009-02-28 03:57 34,688 ac------ c:\windows\system32\dllcache\lbrtfdc.sys
2009-02-28 03:57 26,442 ac------ c:\windows\system32\dllcache\lanepic5.sys
2009-02-28 03:57 19,016 ac------ c:\windows\system32\dllcache\ktc111.sys
2009-02-28 03:57 37,376 ac------ c:\windows\system32\dllcache\kousd.dll
2009-02-28 03:57 253,952 ac------ c:\windows\system32\dllcache\kdsusd.dll
2009-02-28 03:57 48,640 ac------ c:\windows\system32\dllcache\kdsui.dll
2009-02-28 03:56 8,192 ac------ c:\windows\system32\dllcache\kbdkor.dll
2009-02-28 03:56 8,704 ac------ c:\windows\system32\dllcache\kbdjpn.dll
2009-02-28 03:56 14,592 ac------ c:\windows\system32\dllcache\kbdhid.sys
2009-02-28 03:56 6,144 ac------ c:\windows\system32\dllcache\kbd106.dll
2009-02-28 03:56 5,632 ac------ c:\windows\system32\dllcache\kbd103.dll
2009-02-28 03:55 6,144 ac------ c:\windows\system32\dllcache\kbd101c.dll
2009-02-28 03:55 6,144 ac------ c:\windows\system32\dllcache\kbd101b.dll
2009-02-28 03:55 26,624 ac------ c:\windows\system32\dllcache\irstusb.sys
2009-02-28 03:55 18,688 ac------ c:\windows\system32\dllcache\irsir.sys
2009-02-28 03:55 28,160 ac------ c:\windows\system32\dllcache\irmon.dll
2009-02-28 03:55 23,552 ac------ c:\windows\system32\dllcache\irmk7.sys
2009-02-28 03:55 151,552 ac------ c:\windows\system32\dllcache\irftp.exe
2009-02-28 03:55 88,192 ac------ c:\windows\system32\dllcache\irda.sys
2009-02-28 03:54 45,632 ac------ c:\windows\system32\dllcache\ip5515.sys
2009-02-28 03:54 90,200 ac------ c:\windows\system32\dllcache\io8ports.dll
2009-02-28 03:54 38,784 ac------ c:\windows\system32\dllcache\io8.sys
2009-02-28 03:54 13,056 ac------ c:\windows\system32\dllcache\inport.sys
2009-02-28 03:54 16,000 ac------ c:\windows\system32\dllcache\ini910u.sys
2009-02-28 03:53 372,824 ac------ c:\windows\system32\dllcache\iconf32.dll
2009-02-28 03:53 100,992 ac------ c:\windows\system32\dllcache\icam5usb.sys
2009-02-28 03:53 20,480 ac------ c:\windows\system32\dllcache\icam5ext.dll
2009-02-28 03:53 45,056 ac------ c:\windows\system32\dllcache\icam5com.dll
2009-02-28 03:52 154,496 ac------ c:\windows\system32\dllcache\icam4usb.sys
2009-02-28 03:52 61,952 ac------ c:\windows\system32\dllcache\icam4ext.dll
2009-02-28 03:52 91,136 ac------ c:\windows\system32\dllcache\icam4com.dll
2009-02-28 03:52 26,624 ac------ c:\windows\system32\dllcache\icam3ext.dll
2009-02-28 03:52 141,056 ac------ c:\windows\system32\dllcache\icam3.sys
2009-02-28 03:52 38,528 ac------ c:\windows\system32\dllcache\ibmvcap.sys
2009-02-28 03:52 109,085 ac------ c:\windows\system32\dllcache\ibmtrp.sys
2009-02-28 03:51 100,936 ac------ c:\windows\system32\dllcache\ibmtok.sys
2009-02-28 03:51 9,216 ac------ c:\windows\system32\dllcache\ibmsgnet.dll
2009-02-28 03:51 28,700 ac------ c:\windows\system32\dllcache\ibmexmp.sys
2009-02-28 03:51 161,020 ac------ c:\windows\system32\dllcache\i81xnt5.sys
2009-02-28 03:51 702,845 ac------ c:\windows\system32\dllcache\i81xdnt5.dll
2009-02-28 03:51 58,592 ac------ c:\windows\system32\dllcache\i740nt5.sys
2009-02-28 03:51 353,184 ac------ c:\windows\system32\dllcache\i740dnt5.dll
2009-02-28 03:51 18,560 ac------ c:\windows\system32\dllcache\i2omp.sys
2009-02-28 03:51 8,576 ac------ c:\windows\system32\dllcache\i2omgmt.sys
2009-02-28 03:50 488,383 ac------ c:\windows\system32\dllcache\hsf_v124.sys
2009-02-28 03:50 50,751 ac------ c:\windows\system32\dllcache\hsf_tone.sys
2009-02-28 03:50 73,279 ac------ c:\windows\system32\dllcache\hsf_spkp.sys
2009-02-28 03:50 44,863 ac------ c:\windows\system32\dllcache\hsf_soar.sys
2009-02-28 03:50 57,471 ac------ c:\windows\system32\dllcache\hsf_samp.sys
2009-02-28 03:49 542,879 ac------ c:\windows\system32\dllcache\hsf_msft.sys
2009-02-28 03:49 391,199 ac------ c:\windows\system32\dllcache\hsf_k56k.sys
2009-02-28 03:49 9,759 ac------ c:\windows\system32\dllcache\hsf_inst.dll
2009-02-28 03:49 115,807 ac------ c:\windows\system32\dllcache\hsf_fsks.sys
2009-02-28 03:49 199,711 ac------ c:\windows\system32\dllcache\hsf_faxx.sys
2009-02-28 03:49 289,887 ac------ c:\windows\system32\dllcache\hsf_fall.sys
2009-02-28 03:49 67,167 ac------ c:\windows\system32\dllcache\hsf_bsc2.sys
2009-02-28 03:48 150,239 ac------ c:\windows\system32\dllcache\hsf_amos.sys
2009-02-28 03:48 19,456 ac------ c:\windows\system32\dllcache\hr1w.dll
2009-02-28 03:48 5,760 ac------ c:\windows\system32\dllcache\hpt4qic.sys
2009-02-28 03:48 13,312 ac------ c:\windows\system32\dllcache\hpsjmcro.dll
2009-02-28 03:48 324,608 ac------ c:\windows\system32\dllcache\hpojwia.dll
2009-02-28 03:48 25,952 ac------ c:\windows\system32\dllcache\hpn.sys
2009-02-28 03:48 32,768 ac------ c:\windows\system32\dllcache\hpgtmcro.dll
2009-02-28 03:48 68,608 ac------ c:\windows\system32\dllcache\hpgt53tk.dll
2009-02-28 03:47 165,888 ac------ c:\windows\system32\dllcache\hpgt53.dll
2009-02-28 03:47 31,232 ac------ c:\windows\system32\dllcache\hpgt42tk.dll
2009-02-28 03:47 93,696 ac------ c:\windows\system32\dllcache\hpgt42.dll
2009-02-28 03:47 126,976 ac------ c:\windows\system32\dllcache\hpgt34tk.dll
2009-02-28 03:47 101,376 ac------ c:\windows\system32\dllcache\hpgt34.dll
2009-02-28 03:47 48,128 ac------ c:\windows\system32\dllcache\hpgt33tk.dll
2009-02-28 03:47 89,088 ac------ c:\windows\system32\dllcache\hpgt33.dll
2009-02-28 03:47 123,392 ac------ c:\windows\system32\dllcache\hpgt21tk.dll
2009-02-28 03:46 83,968 ac------ c:\windows\system32\dllcache\hpgt21.dll
2009-02-28 03:46 119,296 ac------ c:\windows\system32\dllcache\hpdigwia.dll
2009-02-28 03:46 2,688 ac------ c:\windows\system32\dllcache\hidswvd.sys
2009-02-28 03:46 8,576 ac------ c:\windows\system32\dllcache\hidgame.sys
2009-02-28 03:46 20,352 ac------ c:\windows\system32\dllcache\hidbatt.sys
2009-02-28 03:46 907,456 ac------ c:\windows\system32\dllcache\hcf_msft.sys
2009-02-28 03:46 28,288 ac------ c:\windows\system32\dllcache\grserial.sys
2009-02-28 03:46 82,304 ac------ c:\windows\system32\dllcache\grclass.sys
2009-02-28 03:45 17,408 ac------ c:\windows\system32\dllcache\gpr400.sys
2009-02-28 03:45 59,136 ac------ c:\windows\system32\dllcache\gckernel.sys
2009-02-28 03:45 10,624 ac------ c:\windows\system32\dllcache\gameenum.sys
2009-02-28 03:45 322,432 ac------ c:\windows\system32\dllcache\g400m.sys
2009-02-28 03:45 1,733,120 ac------ c:\windows\system32\dllcache\g400d.dll
2009-02-28 03:45 320,384 ac------ c:\windows\system32\dllcache\g200m.sys
2009-02-28 03:45 470,144 ac------ c:\windows\system32\dllcache\g200d.dll
2009-02-28 03:45 454,912 ac------ c:\windows\system32\dllcache\fxusbase.sys
2009-02-28 03:44 92,160 ac------ c:\windows\system32\dllcache\fuusd.dll
2009-02-28 03:44 455,296 ac------ c:\windows\system32\dllcache\fusbbase.sys
2009-02-28 03:44 455,680 ac------ c:\windows\system32\dllcache\fus2base.sys
2009-02-28 03:44 442,240 ac------ c:\windows\system32\dllcache\fpnpbase.sys
2009-02-28 03:44 441,728 ac------ c:\windows\system32\dllcache\fpcmbase.sys
2009-02-28 03:44 444,416 ac------ c:\windows\system32\dllcache\fpcibase.sys
2009-02-28 03:44 34,173 ac------ c:\windows\system32\dllcache\forehe.sys
2009-02-28 03:44 71,680 ac------ c:\windows\system32\dllcache\fnfilter.dll
2009-02-28 03:43 27,165 ac------ c:\windows\system32\dllcache\fetnd5.sys
2009-02-28 03:43 22,090 ac------ c:\windows\system32\dllcache\fem556n5.sys
2009-02-28 03:43 24,618 ac------ c:\windows\system32\dllcache\fa410nd5.sys
2009-02-28 03:43 16,074 ac------ c:\windows\system32\dllcache\fa312nd5.sys
2009-02-28 03:43 11,850 ac------ c:\windows\system32\dllcache\f3ab18xj.sys
2009-02-28 03:43 12,362 ac------ c:\windows\system32\dllcache\f3ab18xi.sys
2009-02-28 03:42 7,040 ac------ c:\windows\system32\dllcache\exabyte2.sys
2009-02-28 03:42 16,998 ac------ c:\windows\system32\dllcache\ex10.sys
2009-02-28 03:42 45,568 ac------ c:\windows\system32\dllcache\esunib.dll
2009-02-28 03:42 45,568 ac------ c:\windows\system32\dllcache\esuni.dll
2009-02-28 03:42 34,816 ac------ c:\windows\system32\dllcache\esuimg.dll
2009-02-28 03:42 43,008 ac------ c:\windows\system32\dllcache\esucm.dll
2009-02-28 03:42 137,088 ac------ c:\windows\system32\dllcache\essm2e.sys
2009-02-28 03:42 63,360 ac------ c:\windows\system32\dllcache\ess.sys
2009-02-28 03:42 347,550 ac------ c:\windows\system32\dllcache\es56tpi.sys
2009-02-28 03:41 594,238 ac------ c:\windows\system32\dllcache\es56hpi.sys
2009-02-28 03:41 595,647 ac------ c:\windows\system32\dllcache\es56cvmp.sys
2009-02-28 03:41 174,464 ac------ c:\windows\system32\dllcache\es198x.sys
2009-02-28 03:41 72,192 ac------ c:\windows\system32\dllcache\es1969.sys
2009-02-28 03:41 40,704 ac------ c:\windows\system32\dllcache\es1371mp.sys
2009-02-28 03:41 37,120 ac------ c:\windows\system32\dllcache\es1370mp.sys
2009-02-28 03:41 61,952 ac------ c:\windows\system32\dllcache\eqnloop.exe
2009-02-28 03:41 51,200 ac------ c:\windows\system32\dllcache\eqnlogr.exe
2009-02-28 03:41 53,248 ac------ c:\windows\system32\dllcache\eqndiag.exe
2009-02-28 03:40 629,952 ac------ c:\windows\system32\dllcache\eqn.sys
2009-02-28 03:40 114,944 ac------ c:\windows\system32\dllcache\epstw2k.sys
2009-02-28 03:40 18,503 ac------ c:\windows\system32\dllcache\epro4.sys
2009-02-28 03:40 144,896 ac------ c:\windows\system32\dllcache\epcfw2k.sys
2009-02-28 03:40 6,400 ac------ c:\windows\system32\dllcache\enum1394.sys
2009-02-28 03:40 283,904 ac------ c:\windows\system32\dllcache\emu10k1m.sys
2009-02-28 03:40 19,996 ac------ c:\windows\system32\dllcache\em556n4.sys
2009-02-28 03:40 25,159 ac------ c:\windows\system32\dllcache\elnk3.sys
2009-02-28 03:40 7,296 ac------ c:\windows\system32\dllcache\elmsmc.sys
2009-02-28 03:40 171,520 ac------ c:\windows\system32\dllcache\el99xn51.sys
2009-02-28 03:40 70,174 ac------ c:\windows\system32\dllcache\el98xn5.sys
2009-02-28 03:39 455,199 ac------ c:\windows\system32\dllcache\el985n51.sys
2009-02-28 03:39 153,631 ac------ c:\windows\system32\dllcache\el90xnd5.sys
2009-02-28 03:39 66,591 ac------ c:\windows\system32\dllcache\el90xbc5.sys
2009-02-28 03:39 241,206 ac------ c:\windows\system32\dllcache\el656se5.sys
2009-02-28 03:39 77,386 ac------ c:\windows\system32\dllcache\el656nd5.sys
2009-02-28 03:39 634,134 ac------ c:\windows\system32\dllcache\el656ct5.sys
2009-02-28 03:39 69,194 ac------ c:\windows\system32\dllcache\el656cd5.sys
2009-02-28 03:39 26,141 ac------ c:\windows\system32\dllcache\el589nd5.sys
2009-02-28 03:39 69,692 ac------ c:\windows\system32\dllcache\el575nd5.sys
2009-02-28 03:39 24,653 ac------ c:\windows\system32\dllcache\el574nd4.sys
2009-02-28 03:39 55,999 ac------ c:\windows\system32\dllcache\el556nd5.sys
2009-02-28 03:39 44,103 ac------ c:\windows\system32\dllcache\el515.sys
2009-02-28 03:39 19,594 ac------ c:\windows\system32\dllcache\e100isa4.sys
2009-02-28 03:38 117,760 ac------ c:\windows\system32\dllcache\e100b325.sys
2009-02-28 03:38 50,719 ac------ c:\windows\system32\dllcache\e1000nt5.sys
2009-02-28 03:38 20,992 ac------ c:\windows\system32\dllcache\dshowext.ax
2009-02-28 03:38 334,208 ac------ c:\windows\system32\dllcache\ds1wdm.sys
2009-02-28 03:38 20,192 ac------ c:\windows\system32\dllcache\dpti2o.sys
2009-02-28 03:38 28,062 ac------ c:\windows\system32\dllcache\dp83820.sys
2009-02-28 03:38 23,808 ac------ c:\windows\system32\dllcache\dot4usb.sys
2009-02-28 03:38 8,704 ac------ c:\windows\system32\dllcache\dot4scan.sys
2009-02-28 03:38 12,928 ac------ c:\windows\system32\dllcache\dot4prt.sys
2009-02-28 03:38 206,976 ac------ c:\windows\system32\dllcache\dot4.sys
2009-02-28 03:38 29,696 ac------ c:\windows\system32\dllcache\dm9pci5.sys
2009-02-28 03:38 8,320 ac------ c:\windows\system32\dllcache\dlttape.sys
2009-02-28 03:38 26,698 ac------ c:\windows\system32\dllcache\dlh5xnd5.sys
2009-02-28 03:37 952,007 ac------ c:\windows\system32\dllcache\diwan.sys
2009-02-28 03:37 29,768 ac------ c:\windows\system32\dllcache\divasu.dll
2009-02-28 03:37 37,962 ac------ c:\windows\system32\dllcache\divaprop.dll
2009-02-28 03:37 6,216 ac------ c:\windows\system32\dllcache\divaci.dll
2009-02-28 03:37 236,060 ac------ c:\windows\system32\dllcache\ditrace.exe
2009-02-28 03:37 38,985 ac------ c:\windows\system32\dllcache\disrvsu.dll
2009-02-28 03:37 31,305 ac------ c:\windows\system32\dllcache\disrvpp.dll
2009-02-28 03:37 6,729 ac------ c:\windows\system32\dllcache\disrvci.dll
2009-02-28 03:37 91,305 ac------ c:\windows\system32\dllcache\dimaint.sys
2009-02-28 03:37 614,429 ac------ c:\windows\system32\dllcache\digiview.exe
2009-02-28 03:37 42,432 ac------ c:\windows\system32\dllcache\digirlpt.sys
2009-02-28 03:37 110,621 ac------ c:\windows\system32\dllcache\digirlpt.dll
2009-02-28 03:37 21,606 ac------ c:\windows\system32\dllcache\digiisdn.sys
2009-02-28 03:37 41,046 ac------ c:\windows\system32\dllcache\digiisdn.dll
2009-02-28 03:37 102,484 ac------ c:\windows\system32\dllcache\digiinf.dll
2009-02-28 03:37 159,828 ac------ c:\windows\system32\dllcache\digihlc.dll
2009-02-28 03:36 229,462 ac------ c:\windows\system32\dllcache\digifwrk.dll
2009-02-28 03:36 90,525 ac------ c:\windows\system32\dllcache\digifep5.sys
2009-02-28 03:36 103,044 ac------ c:\windows\system32\dllcache\digidxb.sys
2009-02-28 03:36 131,156 ac------ c:\windows\system32\dllcache\digidbp.dll
2009-02-28 03:36 37,735 ac------ c:\windows\system32\dllcache\digiasyn.sys
2009-02-28 03:36 65,622 ac------ c:\windows\system32\dllcache\digiasyn.dll
2009-02-28 03:36 419,357 ac------ c:\windows\system32\dllcache\dgconfig.dll
2009-02-28 03:36 29,531 ac------ c:\windows\system32\dllcache\dgapci.sys
2009-02-28 03:36 24,649 ac------ c:\windows\system32\dllcache\dfe650d.sys
2009-02-28 03:36 24,648 ac------ c:\windows\system32\dllcache\dfe650.sys
2009-02-28 03:36 24,064 ac------ c:\windows\system32\dllcache\devldr32.exe
2009-02-28 03:36 256,512 ac------ c:\windows\system32\dllcache\devcon32.dll
2009-02-28 03:36 20,928 ac------ c:\windows\system32\dllcache\defpa.sys
2009-02-28 03:36 7,424 ac------ c:\windows\system32\dllcache\ddsmc.sys
2009-02-28 03:36 110,592 ac------ c:\windows\system32\dllcache\dc260usd.dll
2009-02-28 03:35 86,016 ac------ c:\windows\system32\dllcache\dc240usd.dll
2009-02-28 03:35 63,208 ac------ c:\windows\system32\dllcache\dc21x4.sys
2009-02-28 03:35 80,896 ac------ c:\windows\system32\dllcache\dc210usd.dll
2009-02-28 03:35 25,600 ac------ c:\windows\system32\dllcache\dc210_32.dll
2009-02-28 03:35 14,720 ac------ c:\windows\system32\dllcache\dac960nt.sys
2009-02-28 03:35 179,584 ac------ c:\windows\system32\dllcache\dac2w2k.sys
2009-02-28 03:35 117,760 ac------ c:\windows\system32\dllcache\d100ib5.sys
2009-02-28 03:35 27,648 ac------ c:\windows\system32\dllcache\cyzports.dll
2009-02-28 03:35 49,792 ac------ c:\windows\system32\dllcache\cyzport.sys
2009-02-28 03:35 27,136 ac------ c:\windows\system32\dllcache\cyzcoins.dll
2009-02-28 03:35 27,648 ac------ c:\windows\system32\dllcache\cyyports.dll
2009-02-28 03:35 50,176 ac------ c:\windows\system32\dllcache\cyyport.sys
2009-02-28 03:35 28,672 ac------ c:\windows\system32\dllcache\cyycoins.dll
2009-02-28 03:35 14,848 ac------ c:\windows\system32\dllcache\cyclom-y.sys
2009-02-28 03:35 17,152 ac------ c:\windows\system32\dllcache\cyclad-z.sys
2009-02-28 03:35 48,640 ac------ c:\windows\system32\dllcache\cwrwdm.sys
2009-02-28 03:34 93,952 ac------ c:\windows\system32\dllcache\cwcwdm.sys
2009-02-28 03:34 111,872 ac------ c:\windows\system32\dllcache\cwcspud.sys
2009-02-28 03:34 3,584 ac------ c:\windows\system32\dllcache\cwcosnt5.sys
2009-02-28 03:34 72,832 ac------ c:\windows\system32\dllcache\cwbwdm.sys
2009-02-28 03:34 3,072 ac------ c:\windows\system32\dllcache\cwbmidi.sys
2009-02-28 03:34 3,072 ac------ c:\windows\system32\dllcache\cwbase.sys
2009-02-28 03:34 4,096 ac------ c:\windows\system32\dllcache\ctwdm32.dll
2009-02-28 03:34 249,856 ac------ c:\windows\system32\dllcache\ctmasetp.dll
2009-02-28 03:34 96,256 ac------ c:\windows\system32\dllcache\ctlsb16.sys
2009-02-28 03:34 3,712 ac------ c:\windows\system32\dllcache\ctljystk.sys
2009-02-28 03:34 6,912 ac------ c:\windows\system32\dllcache\ctlfacem.sys
2009-02-28 03:34 175,104 ac------ c:\windows\system32\dllcache\csamsp.dll
2009-02-28 03:34 42,112 ac------ c:\windows\system32\dllcache\crtaud.sys
2009-02-28 03:34 216,064 ac------ c:\windows\system32\dllcache\cpscan.dll
2009-02-28 03:34 60,970 ac------ c:\windows\system32\dllcache\cpqtrnd5.sys
2009-02-28 03:34 21,533 ac------ c:\windows\system32\dllcache\cpqndis5.sys
2009-02-28 03:33 14,976 ac------ c:\windows\system32\dllcache\cpqarray.sys
2009-02-28 03:33 39,936 ac------ c:\windows\system32\dllcache\cnxt1803.sys
2009-02-28 03:33 44,032 ac------ c:\windows\system32\dllcache\cnusd.dll
2009-02-28 03:33 6,656 ac------ c:\windows\system32\dllcache\cmdide.sys
2009-02-28 03:33 20,736 ac------ c:\windows\system32\dllcache\cmbp0wdm.sys
2009-02-28 03:33 248,064 ac------ c:\windows\system32\dllcache\cl546xm.sys
2009-02-28 03:33 170,880 ac------ c:\windows\system32\dllcache\cl546x.dll
2009-02-28 03:33 111,232 ac------ c:\windows\system32\dllcache\cl5465.dll
2009-02-28 03:33 45,696 ac------ c:\windows\system32\dllcache\cirrus.sys
2009-02-28 03:33 91,264 ac------ c:\windows\system32\dllcache\cirrus.dll
2009-02-28 03:33 272,640 ac------ c:\windows\system32\dllcache\cinemclc.sys
2009-02-28 03:33 980,034 ac------ c:\windows\system32\dllcache\cicap.sys
2009-02-28 03:33 8,192 ac------ c:\windows\system32\dllcache\changer.sys
2009-02-28 03:32 49,182 ac------ c:\windows\system32\dllcache\cem56n5.sys
2009-02-28 03:32 22,044 ac------ c:\windows\system32\dllcache\cem33n5.sys
2009-02-28 03:32 22,044 ac------ c:\windows\system32\dllcache\cem28n5.sys
2009-02-28 03:32 27,164 ac------ c:\windows\system32\dllcache\ce3n5.sys
2009-02-28 03:32 21,530 ac------ c:\windows\system32\dllcache\ce2n5.sys
2009-02-28 03:32 7,680 ac------ c:\windows\system32\dllcache\cd20xrnt.sys
2009-02-28 03:32 714,698 ac------ c:\windows\system32\dllcache\cbmdmkxx.sys
2009-02-28 03:32 46,108 ac------ c:\windows\system32\dllcache\cben5.sys
2009-02-28 03:32 39,680 ac------ c:\windows\system32\dllcache\cb325.sys
2009-02-28 03:32 37,916 ac------ c:\windows\system32\dllcache\cb102.sys
2009-02-28 03:32 32,256 ac------ c:\windows\system32\dllcache\diapi2NT.dll
2009-02-28 03:32 164,923 ac------ c:\windows\system32\dllcache\diapi2.sys
2009-02-28 03:32 121,856 ac------ c:\windows\system32\dllcache\camext30.dll
2009-02-28 03:32 116,736 ac------ c:\windows\system32\dllcache\camext30.ax
2009-02-28 03:32 236,032 ac------ c:\windows\system32\dllcache\camext20.dll
2009-02-28 03:32 244,224 ac------ c:\windows\system32\dllcache\camext20.ax
2009-02-28 03:32 74,240 ac------ c:\windows\system32\dllcache\camexo20.dll
2009-02-28 03:32 73,216 ac------ c:\windows\system32\dllcache\camexo20.ax
2009-02-28 03:32 171,264 ac------ c:\windows\system32\dllcache\camdrv30.sys
2009-02-28 03:32 223,232 ac------ c:\windows\system32\dllcache\camdrv21.sys
2009-02-28 03:32 314,752 ac------ c:\windows\system32\dllcache\camdro21.sys
2009-02-28 03:30 13,824 ac------ c:\windows\system32\dllcache\bulltlp3.sys
2009-02-28 03:30 31,529 ac------ c:\windows\system32\dllcache\brzwlan.sys
2009-02-28 03:30 10,368 ac------ c:\windows\system32\dllcache\brusbscn.sys
2009-02-28 03:30 11,008 ac------ c:\windows\system32\dllcache\brusbmdm.sys
2009-02-28 03:30 60,416 ac------ c:\windows\system32\dllcache\brserwdm.sys
2009-02-28 03:30 9,728 ac------ c:\windows\system32\dllcache\brserif.dll
2009-02-28 03:30 5,120 ac------ c:\windows\system32\dllcache\brscnrsm.dll
2009-02-28 03:30 39,552 ac------ c:\windows\system32\dllcache\brparwdm.sys
2009-02-28 03:30 3,168 ac------ c:\windows\system32\dllcache\brparimg.sys
2009-02-28 03:30 41,472 ac------ c:\windows\system32\dllcache\brmfusb.dll
2009-02-28 03:30 32,256 ac------ c:\windows\system32\dllcache\brmfrsmg.exe
2009-02-28 03:30 29,696 ac------ c:\windows\system32\dllcache\brmflpt.dll
2009-02-28 03:30 81,408 ac------ c:\windows\system32\dllcache\brmfcwia.dll
2009-02-28 03:30 15,360 ac------ c:\windows\system32\dllcache\brmfbidi.dll
2009-02-28 03:30 3,968 ac------ c:\windows\system32\dllcache\brfiltup.sys
2009-02-28 03:30 12,160 ac------ c:\windows\system32\dllcache\brfiltlo.sys
2009-02-28 03:30 2,944 ac------ c:\windows\system32\dllcache\brfilt.sys
2009-02-28 03:30 12,800 ac------ c:\windows\system32\dllcache\brevif.dll
2009-02-28 03:30 9,728 ac------ c:\windows\system32\dllcache\brcoinst.dll
2009-02-28 03:30 19,456 ac------ c:\windows\system32\dllcache\brbidiif.dll
2009-02-28 03:30 102,400 ac------ c:\windows\system32\dllcache\binlsvc.dll
2009-02-28 03:30 11,776 ac------ c:\windows\system32\dllcache\bdasup.sys
2009-02-28 03:30 18,432 ac------ c:\windows\system32\dllcache\bdaplgin.ax
2009-02-28 03:29 871,388 ac------ c:\windows\system32\dllcache\bcmdm.sys
2009-02-28 03:29 26,568 ac------ c:\windows\system32\dllcache\bcm4e5.sys
2009-02-28 03:29 54,271 ac------ c:\windows\system32\dllcache\bcm42xx5.sys
2009-02-28 03:29 66,557 ac------ c:\windows\system32\dllcache\bcm42u.sys
2009-02-28 03:29 36,128 ac------ c:\windows\system32\dllcache\banshee.sys
2009-02-28 03:29 342,336 ac------ c:\windows\system32\dllcache\banshee.dll
2009-02-28 03:29 96,640 ac------ c:\windows\system32\dllcache\b57xp32.sys
2009-02-28 03:29 89,952 ac------ c:\windows\system32\dllcache\b1cbase.sys
2009-02-28 03:29 36,992 ac------ c:\windows\system32\dllcache\aztw2320.sys
2009-02-28 03:29 37,568 ac------ c:\windows\system32\dllcache\avmwan.sys
2009-02-28 03:29 144,384 ac------ c:\windows\system32\dllcache\avmenum.dll
2009-02-28 03:29 87,552 ac------ c:\windows\system32\dllcache\avmcoxp.dll
2009-02-28 03:29 13,696 ac------ c:\windows\system32\dllcache\avcstrm.sys
2009-02-28 03:29 36,096 ac------ c:\windows\system32\dllcache\avcaudio.sys
2009-02-28 03:29 38,912 ac------ c:\windows\system32\dllcache\avc.sys
2009-02-28 03:29 23,552 ac------ c:\windows\system32\dllcache\atixbar.sys
2009-02-28 03:29 26,624 ac------ c:\windows\system32\dllcache\ativxbar.sys
2009-02-28 03:29 19,456 ac------ c:\windows\system32\dllcache\ativttxx.sys
2009-02-28 03:29 9,472 ac------ c:\windows\system32\dllcache\ativmdcd.sys
2009-02-28 03:29 17,152 ac------ c:\windows\system32\dllcache\atitvsnd.sys
2009-02-28 03:29 17,152 ac------ c:\windows\system32\dllcache\atitunep.sys
2009-02-28 03:29 26,880 ac------ c:\windows\system32\dllcache\atirtsnd.sys
2009-02-28 03:29 49,920 ac------ c:\windows\system32\dllcache\atirtcap.sys
2009-02-28 03:29 70,528 ac------ c:\windows\system32\dllcache\atiragem.sys
2009-02-28 03:29 104,832 ac------ c:\windows\system32\dllcache\atiraged.dll
2009-02-28 03:29 10,240 ac------ c:\windows\system32\dllcache\atipcxxx.sys
2009-02-28 03:29 281,600 ac------ c:\windows\system32\dllcache\atimtai.sys
2009-02-28 03:29 75,136 ac------ c:\windows\system32\dllcache\atimpae.sys
2009-02-28 03:29 289,664 ac------ c:\windows\system32\dllcache\atimpab.sys
2009-02-28 03:29 37,376 ac------ c:\windows\system32\dllcache\atievxx.exe
2009-02-28 03:28 268,160 ac------ c:\windows\system32\dllcache\atidvai.dll
2009-02-28 03:28 137,216 ac------ c:\windows\system32\dllcache\atidrae.dll
2009-02-28 03:28 382,592 ac------ c:\windows\system32\dllcache\atidrab.dll
2009-02-28 03:28 46,464 ac------ c:\windows\system32\dllcache\atibt829.sys
2009-02-28 03:28 77,568 ac------ c:\windows\system32\dllcache\ati.sys
2009-02-28 03:28 96,128 ac------ c:\windows\system32\dllcache\ati.dll
2009-02-28 03:28 97,354 ac------ c:\windows\system32\dllcache\aspndis3.sys
2009-02-28 03:28 14,848 ac------ c:\windows\system32\dllcache\asc3550.sys
2009-02-28 03:28 22,400 ac------ c:\windows\system32\dllcache\asc3350p.sys
2009-02-28 03:28 26,496 ac------ c:\windows\system32\dllcache\asc.sys
2009-02-28 03:28 6,272 ac------ c:\windows\system32\dllcache\apmbatt.sys
2009-02-28 03:28 36,224 ac------ c:\windows\system32\dllcache\an983.sys
2009-02-28 03:28 12,032 ac------ c:\windows\system32\dllcache\amsint.sys
2009-02-28 03:28 16,969 ac------ c:\windows\system32\dllcache\amb8002.sys
2009-02-28 03:28 5,248 ac------ c:\windows\system32\dllcache\aliide.sys
2009-02-28 03:28 26,624 ac------ c:\windows\system32\dllcache\alifir.sys
2009-02-28 03:28 27,678 ac------ c:\windows\system32\dllcache\ali5261.sys
2009-02-28 03:28 56,960 ac------ c:\windows\system32\dllcache\aic78xx.sys
2009-02-28 03:28 55,168 ac------ c:\windows\system32\dllcache\aic78u2.sys
2009-02-28 03:28 12,800 ac------ c:\windows\system32\dllcache\aha154x.sys
2009-02-28 03:28 24,576 ac------ c:\windows\system32\dllcache\agcgauge.ax
2009-02-28 03:16 101,888 ac------ c:\windows\system32\dllcache\adpu160m.sys
2009-02-28 03:16 46,112 ac------ c:\windows\system32\dllcache\adptsf50.sys
2009-02-28 03:16 10,880 ac------ c:\windows\system32\dllcache\admjoy.sys
2009-02-28 03:16 747,392 ac------ c:\windows\system32\dllcache\adm8830.sys
2009-02-28 03:16 553,984 ac------ c:\windows\system32\dllcache\adm8820.sys
2009-02-28 03:16 584,448 ac------ c:\windows\system32\dllcache\adm8810.sys
2009-02-28 03:16 20,160 ac------ c:\windows\system32\dllcache\adm8511.sys
2009-02-28 03:16 7,424 ac------ c:\windows\system32\dllcache\adicvls.sys
2009-02-28 03:16 61,440 ac------ c:\windows\system32\dllcache\acerscad.dll
2009-02-28 03:16 84,480 ac------ c:\windows\system32\dllcache\ac97via.sys
2009-02-28 03:16 297,728 ac------ c:\windows\system32\dllcache\ac97sis.sys
2009-02-28 03:16 96,256 ac------ c:\windows\system32\dllcache\ac97intc.sys
2009-02-28 03:16 231,552 ac------ c:\windows\system32\dllcache\ac97ali.sys
2009-02-28 03:16 23,552 ac------ c:\windows\system32\dllcache\abp480n5.sys
2009-02-28 03:16 462,848 ac------ c:\windows\system32\dllcache\a3dapi.dll
2009-02-28 03:16 98,304 ac------ c:\windows\system32\dllcache\a3d.dll
2009-02-28 03:16 48,128 ac------ c:\windows\system32\dllcache\61883.sys
2009-02-28 03:16 38,400 ac------ c:\windows\system32\dllcache\8514a.dll
2009-02-28 03:16 12,288 ac------ c:\windows\system32\dllcache\4mmdat.sys
2009-02-28 03:16 148,352 ac------ c:\windows\system32\dllcache\3dfxvsm.sys
2009-02-28 03:16 689,216 ac------ c:\windows\system32\dllcache\3dfxvs.dll
2009-02-28 03:16 762,780 ac------ c:\windows\system32\dllcache\3cwmcru.sys
2009-02-28 03:16 53,376 ac------ c:\windows\system32\dllcache\1394bus.sys
2009-02-28 03:16 11,264 ac------ c:\windows\system32\dllcache\1394vdbg.sys
2009-02-28 03:15 66,048 ac------ c:\windows\system32\dllcache\s3legacy.dll
2009-02-27 22:07 15,504 a------- c:\windows\system32\drivers\mbam.sys
2009-02-27 22:07 38,496 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-02-26 02:04 <DIR> -cd-h--- c:\windows\$NtUninstallKB961118$
2009-02-26 02:04 1,374 a------- c:\windows\imsins.BAK
2009-02-26 02:03 <DIR> -cd-h--- c:\windows\$NtUninstallKB967715$
2009-02-25 21:18 <DIR> --d----- c:\docume~1\alluse~1\applic~1\OpenDNS Updater
2009-02-25 21:18 <DIR> --d----- c:\program files\OpenDNS Updater
2009-02-25 21:13 <DIR> --d----- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-02-25 21:12 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-02-25 21:12 <DIR> --d----- c:\docume~1\yuriyh~1\applic~1\SUPERAntiSpyware.com
2009-02-25 16:18 1,089,593 -c------ c:\windows\system32\dllcache\ntprint.cat
2009-02-23 22:57 <DIR> --d----- c:\program files\Windows Desktop Search
2009-02-23 02:02 <DIR> --d----- c:\program files\Shape Collage
2009-02-21 20:03 <DIR> --d----- c:\docume~1\yuriyh~1\applic~1\Mozilla
2009-02-21 20:03 <DIR> --d----- c:\program files\Mozilla Firefox
2009-02-21 20:00 <DIR> --d-hr-- c:\documents and settings\yuriy horokhivskyy\Recent
2009-02-20 11:26 2,138,505,216 a--sh--- C:\hiberfil.sys
2009-02-20 10:56 <DIR> --d----- c:\windows\ERUNT
2009-02-19 20:09 <DIR> --d----- c:\windows\temp
2009-02-17 18:15 <DIR> --d----- c:\documents and settings\yuriy horokhivskyy\.housecall6.6
2009-02-16 23:47 <DIR> --d----- c:\program files\QuickTime
2009-02-16 23:44 148,888 a------- c:\windows\system32\javaws.exe
2009-02-16 23:44 144,792 a------- c:\windows\system32\javaw.exe
2009-02-16 23:44 144,792 a------- c:\windows\system32\java.exe
2009-02-16 23:44 73,728 a------- c:\windows\system32\javacpl.cpl
2009-02-15 15:43 <DIR> --d----- c:\documents and settings\yuriy horokhivskyy\DoctorWeb
2009-02-12 18:25 211 a------- C:\Boot.bak
2009-02-12 18:25 260,272 a------- C:\cmldr
2009-02-12 18:25 <DIR> a-dshr-- C:\cmdcons
2009-02-12 18:22 <DIR> --d----- c:\windows\ERDNT
2009-02-12 02:04 <DIR> -cd-h--- c:\windows\$NtUninstallKB960715$

==================== Find3M ====================

2009-03-04 03:25 25,824 a------- c:\windows\prefetch\WMIPRVSE.EXE-28F301A9.pf
2009-03-04 03:24 786,432 a---h--- c:\documents and settings\yuriy horokhivskyy\ntuser.dat.LOG
2009-03-04 03:23 18,256 a------- c:\windows\prefetch\NOTEPAD.EXE-336351A9.pf
2009-03-04 03:23 18,224 a------- c:\windows\prefetch\IGFXSRVC.EXE-2FB63FE8.pf
2009-03-04 03:23 26,858 a------- c:\windows\prefetch\SEARCHPROTOCOLHOST.EXE-34E0253A.pf
2009-03-04 03:23 19,950 a------- c:\windows\prefetch\SEARCHFILTERHOST.EXE-148579FB.pf
2009-03-04 03:21 32,552 a------- c:\windows\prefetch\CSC.EXE-01730C27.pf
2009-03-04 03:21 10,912 a------- c:\windows\prefetch\CVTRES.EXE-2329DCD5.pf
2009-03-04 03:21 71,866 a------- c:\windows\prefetch\EXCEL.EXE-34CB65E9.pf
2009-03-04 03:12 15,648 a------- c:\windows\prefetch\MSFEEDSSYNC.EXE-25E13438.pf
2009-03-04 03:10 57,698 a------- c:\windows\prefetch\DOT1XCFG.EXE-087CDE23.pf
2009-03-04 03:08 32,244 a------- c:\windows\prefetch\LOGONUI.EXE-0AF22957.pf
2009-03-04 02:46 1,671,863 a------- c:\windows\WindowsUpdate.log
2009-03-04 02:44 84,772 a------- c:\windows\prefetch\IEXPLORE.EXE-27122324.pf
2009-03-04 02:17 32,618 a------- c:\windows\SchedLgU.Txt
2009-03-04 02:12 34,930 a------- c:\windows\prefetch\COH32.EXE-25F8395A.pf
2009-03-04 02:10 8,192 a------- c:\windows\prefetch\JQSNOTIFY.EXE-24AE4A36.pf
2009-03-04 01:58 71,154 a------- c:\windows\prefetch\MSIEXEC.EXE-2F8A8CAE.pf
2009-03-04 01:52 130,638 a------- c:\windows\prefetch\MSCORSVW.EXE-1BF30400.pf
2009-03-04 01:50 20,202 a------- c:\windows\prefetch\NGEN.EXE-38021CCC.pf
2009-03-04 01:33 52,744 a------- c:\windows\prefetch\ACROBATINFO.EXE-35EB20A4.pf
2009-03-04 01:33 17,480 a------- c:\windows\prefetch\VERCLSID.EXE-3667BD89.pf
2009-03-04 01:10 63,446 a------- c:\windows\prefetch\CHROME.EXE-2D61B835.pf
2009-03-04 00:46 121,088 a------- c:\windows\prefetch\FIREFOX.EXE-28641590.pf
2009-
  • 0

Advertisements

#176
megadez
Posted 04 March 2009 - 02:35 AM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
2009-03-04 00:46 121,088 a------- c:\windows\prefetch\FIREFOX.EXE-28641590.pf
2009-03-04 00:43 17,358 a------- c:\windows\prefetch\WSCNTFY.EXE-1B24F5EB.pf
2009-03-04 00:20 36,672 a------- c:\windows\prefetch\FNPLICENSINGSERVICE.EXE-15CB8EAD.pf
2009-03-04 00:19 107,222 a------- c:\windows\prefetch\ACROBAT.EXE-1F795718.pf
2009-03-03 23:14 20,492 a------- c:\windows\prefetch\IMAPI.EXE-0BF740A4.pf
2009-03-03 23:14 14,454 a------- c:\windows\prefetch\RUNDLL32.EXE-451FC2C0.pf
2009-03-03 23:13 75,896 a------- c:\windows\prefetch\WINWORD.EXE-07381162.pf
2009-03-03 23:05 61,188 a------- c:\windows\prefetch\WUAUCLT.EXE-399A8E72.pf
2009-03-03 23:00 37,908 a------- c:\windows\prefetch\CRASHREPORTER.EXE-29951F6F.pf
2009-03-03 20:39 120,916 a------- c:\windows\prefetch\VLC.EXE-22DF01AA.pf
2009-03-03 20:12 31,406 a------- c:\windows\prefetch\OPERA.EXE-12085680.pf
2009-03-03 19:52 21,964 a------- c:\windows\prefetch\TASKMGR.EXE-20256C55.pf
2009-03-03 19:18 73,992 a------- c:\windows\prefetch\DWHWIZRD.EXE-0D8EC168.pf
2009-03-03 19:17 71,686 a------- c:\windows\prefetch\RUNDLL32.EXE-2B20730C.pf
2009-03-03 19:17 42,712 a------- c:\windows\prefetch\LUCOMS~1.EXE-02DB5950.pf
2009-03-03 19:17 48,986 a------- c:\windows\prefetch\LUALL.EXE-30AC8E48.pf
2009-03-03 19:17 147,840 a------- c:\windows\prefetch\LUCALLBACKPROXY.EXE-19ED7806.pf
2009-03-03 19:17 59,970 a------- c:\windows\prefetch\SESCLU.EXE-31CF6B2E.pf
2009-03-03 18:16 56,282 a------- c:\windows\prefetch\GOOGLETALK.EXE-17DCCC56.pf
2009-03-03 10:34 53,628 a------- c:\windows\prefetch\WINDOWSSEARCH.EXE-20C0F767.pf
2009-03-03 10:16 49,250 a------- c:\windows\prefetch\FOOBAR2000.EXE-1007AE10.pf
2009-03-02 23:30 15,534 a------- c:\windows\prefetch\IGFXEXT.EXE-20973E2B.pf
2009-03-02 23:29 3,988 a------- c:\windows\prefetch\CLHELPER.EXE-1D3DC143.pf
2009-03-02 23:29 29,464 a------- c:\windows\prefetch\OLRSTATECHECK.EXE-2AEF80CB.pf
2009-03-02 23:29 65,954 a------- c:\windows\prefetch\POWERDVD.EXE-13FC7432.pf
2009-03-02 23:29 7,528 a------- c:\windows\prefetch\CLDRVCHK.EXE-2B9FD99D.pf
2009-03-02 23:16 13,952 a------- c:\windows\prefetch\LVAGENT.EXE-253C4C05.pf
2009-03-02 23:15 64,722 a------- c:\windows\prefetch\LINGVO.EXE-10B78B33.pf
2009-03-02 23:04 2,048 a--s---- c:\windows\bootstat.dat
2009-03-02 23:03 2,145,386,496 a--sh--- C:\pagefile.sys
2009-03-02 23:02 8,388,608 a---h--- c:\documents and settings\yuriy horokhivskyy\NTUSER.DAT
2009-03-02 23:02 178 ---sh--- c:\documents and settings\yuriy horokhivskyy\ntuser.ini
2009-03-02 23:02 53,614 a------- c:\windows\prefetch\SMCGUI.EXE-2610413B.pf
2009-03-02 12:10 32,260 a------- c:\windows\prefetch\PICASAUPDATER.EXE-032BAF6F.pf
2009-03-02 12:10 84,008 a------- c:\windows\prefetch\PICASAPHOTOVIEWER.EXE-1247CDA5.pf
2009-03-02 11:43 133,550 a------- c:\windows\prefetch\CUE_SPLITTER.EXE-0305844C.pf
2009-03-02 11:34 20,674 a------- c:\windows\prefetch\WUDFHOST.EXE-215E7549.pf
2009-03-02 11:34 13,028 a------- c:\windows\prefetch\WPDSHEXTAUTOPLAY.EXE-17D83223.pf
2009-03-02 11:34 14,538 a------- c:\windows\prefetch\RUNDLL32.EXE-19B3AED6.pf
2009-03-02 11:33 63,258 a------- c:\windows\prefetch\ZCFGSVC.EXE-1A56EA85.pf
2009-03-02 11:33 24,600 a------- c:\windows\prefetch\DOSCAN.EXE-08A9AE2C.pf
2009-03-02 11:33 76,210 a------- c:\windows\prefetch\EXPLORER.EXE-082F38A9.pf
2009-03-02 00:51 10,384 a------- c:\windows\prefetch\HKCMD.EXE-1D05234B.pf
2009-03-01 14:29 20,842 a------- c:\windows\prefetch\E_FAMT9AA.EXE-1A2197AD.pf
2009-03-01 14:29 20,010 a------- c:\windows\prefetch\E_FARN9AA.EXE-1AF38CBC.pf
2009-03-01 01:09 24,866 a------- c:\windows\prefetch\SYNTPENH.EXE-315D3ABC.pf
2009-03-01 01:09 14,026 a------- c:\windows\prefetch\ACROBAT_SL.EXE-058EE1B0.pf
2009-03-01 00:51 39,080 a------- c:\windows\prefetch\OTMOVEIT3.EXE-1F5FD1F8.pf
2009-02-28 23:24 59,302 a------- c:\windows\prefetch\CCLEANER.EXE-0BCE437C.pf
2009-02-28 18:06 42,510 a------- c:\windows\prefetch\ADOBE_UPDATER.EXE-06B3E975.pf
2009-02-28 18:03 70,140 a------- c:\windows\prefetch\WINRAR.EXE-39C6DAD9.pf
2009-02-28 10:11 2,206 a------- c:\windows\system32\wpa.dbl
2009-02-28 03:11 55,208 a------- c:\windows\prefetch\MBAM.EXE-0BEE0439.pf
2009-02-27 23:12 63,546 a------- c:\windows\prefetch\JAVA.EXE-0C263507.pf
2009-02-27 21:56 38,880 a------- c:\windows\prefetch\CCAPP.EXE-1207B2A5.pf
2009-02-27 21:44 26,180 a------- c:\windows\prefetch\DWWIN.EXE-30875ADC.pf
2009-02-27 21:44 252,454 a------- c:\windows\prefetch\DUMPREP.EXE-1B46F901.pf
2009-02-27 20:42 395,960 a------- c:\windows\system32\FNTCACHE.DAT
2009-02-27 19:58 21,444 a------- c:\windows\prefetch\RUNDLL32.EXE-155CD7BB.pf
2009-02-27 19:58 44,314 a------- c:\windows\prefetch\RUNDLL32.EXE-2905E326.pf
2009-02-27 19:54 22,636 a------- c:\windows\prefetch\WFSERVICESREG.EXE-063492A2.pf
2009-02-27 19:54 23,560 a------- c:\windows\prefetch\MOFCOMP.EXE-01718E95.pf
2009-02-27 19:53 35,378 a------- c:\windows\prefetch\HOTFIXINSTALLER.EXE-015AA1E3.pf
2009-02-27 19:53 45,938 a------- c:\windows\prefetch\NDP35SP1-KB958484-X86.EXE-05577CF4.pf
2009-02-27 19:52 25,626 a------- c:\windows\prefetch\LODCTR.EXE-1009C3B4.pf
2009-02-27 19:52 48,894 a------- c:\windows\prefetch\SERVICEMODELREG.EXE-1FB5DD06.pf
2009-02-27 19:50 30,354 a------- c:\windows\prefetch\HOTFIXINSTALLER.EXE-2C274F32.pf
2009-02-27 19:50 21,138 a------- c:\windows\prefetch\WMIADAP.EXE-2DF425B2.pf
2009-02-27 19:50 54,540 a------- c:\windows\prefetch\NDP30SP2-KB958483-X86.EXE-22F3E440.pf
2009-02-27 19:49 30,258 a------- c:\windows\prefetch\REGSVCS.EXE-11A17120.pf
2009-02-27 19:49 518,476 a------- c:\windows\system32\PerfStringBackup.INI
2009-02-27 19:49 453,968 a------- c:\windows\system32\perfh009.dat
2009-02-27 19:49 74,768 a------- c:\windows\system32\perfc009.dat
2009-02-27 19:49 21,678 a------- c:\windows\prefetch\ASPNET_REGIIS.EXE-009D6E80.pf
2009-02-27 19:46 10,852 a------- c:\windows\prefetch\REGTLIBV12.EXE-0E2FA54B.pf
2009-02-27 19:39 22,146 a------- c:\windows\prefetch\HOTFIXINSTALLER.EXE-0F37F506.pf
2009-02-27 19:38 54,536 a------- c:\windows\prefetch\NDP20SP2-KB958481-X86.EXE-23D510BC.pf
2009-02-27 18:40 14,740 a------- c:\windows\prefetch\NOTEPAD.EXE-189578DA.pf
2009-02-27 12:46 48,492 a------- c:\windows\prefetch\OIS.EXE-337DD4BD.pf
2009-02-27 02:56 21,646 a------- c:\windows\prefetch\ROOTREPEAL.EXE-045633EC.pf
2009-02-27 02:54 19,980 a------- c:\windows\prefetch\RUNDLL32.EXE-12E27DD0.pf
2009-02-27 02:52 31,300 a------- c:\windows\prefetch\RUNDLL32.EXE-133253D0.pf
2009-02-27 02:18 30,660 a------- c:\windows\prefetch\ICESWORD.EXE-28771034.pf
2009-02-27 01:34 24,056 a------- c:\windows\prefetch\SHAPE COLLAGE.EXE-16861362.pf
2009-02-27 01:34 62,276 a------- c:\windows\prefetch\SHAPE COLLAGE.EXE-0019670E.pf
2009-02-27 01:11 27,330 a------- c:\windows\prefetch\RUNDLL32.EXE-1E7BEC78.pf
2009-02-26 23:21 29,504 a------- c:\windows\prefetch\SUPERANTISPYWARE.EXE-07994D9B.pf
2009-02-26 23:21 35,168 a------- c:\windows\prefetch\MSI132.TMP-065FE9C3.pf
2009-02-26 14:11 40,734 a------- c:\windows\prefetch\SSUPDATE.EXE-302F91E9.pf
2009-02-26 02:04 75,238 a------- c:\windows\prefetch\UPDATE.EXE-32ED1DE4.pf
2009-02-26 02:02 18,316 a------- c:\windows\prefetch\PICLENSHELPER.EXE-346E3B44.pf
2009-02-26 02:01 63,320 a------- c:\windows\prefetch\UPDATE.EXE-097C20DF.pf
2009-02-25 21:56 48,802 a------- c:\windows\prefetch\RUNDLL32.EXE-37D744B4.pf
2009-02-25 21:18 20,818 a------- c:\windows\prefetch\OPENDNS UPDATER.EXE-1797C416.pf
2009-02-25 21:18 9,222 a------- c:\windows\prefetch\ADMIN.EXE-05428925.pf
2009-02-25 21:18 18,850 a------- c:\windows\prefetch\OPENDNS-UPDATER-1.3.0.187.EXE-11DFECB4.pf
2009-02-25 21:11 65,500 a------- c:\windows\prefetch\SUPERANTISPYWARE.EXE-2D948C06.pf
2009-02-25 19:14 18,862 a------- c:\windows\prefetch\OLRSUBMISSION.EXE-1AFF7CAF.pf
2009-02-25 16:18 77,804 a------- c:\windows\prefetch\UPDATE.EXE-0F5BC45B.pf
2009-02-25 14:01 30,880 a------- c:\windows\prefetch\RUNDLL32.EXE-412C3725.pf
2009-02-25 11:56 32,184 a------- c:\windows\prefetch\RUNDLL32.EXE-2D3C52C9.pf
2009-02-25 11:54 24,098 a------- c:\windows\prefetch\JRE-6U12-WINDOWS-I586-P-IFTW.-0E40FF28.pf
2009-02-25 11:53 30,422 a------- c:\windows\prefetch\JUCHECK.EXE-395165C8.pf
2009-02-20 11:27 1,421,272 a------- c:\windows\inf\INFCACHE.1
2009-02-20 11:27 4,676 a------- c:\windows\inf\branches.PNF
2009-02-16 23:43 410,984 a------- c:\windows\system32\deploytk.dll
2009-02-12 18:25 281 a--shr-- C:\boot.ini
2009-02-12 11:50 493,448 a------- c:\windows\prefetch\layout.ini
2009-02-11 00:32 33,580 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1155.xml
2009-02-11 00:31 10,270 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1153.xml
2009-02-11 00:31 8,810 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1147.xml
2009-02-11 00:31 5,426 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1137.xml
2009-02-09 14:54 29,664 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1125.xml
2009-02-09 14:53 6,850 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1117.xml
2009-02-09 14:53 3,722 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1107.xml
2009-02-08 21:10 164,754 a------- c:\windows\pchealth\helpctr\config\cache\Personal_32_1033.dat.bak
2009-02-06 11:47 17,140 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1095.xml
2009-02-06 11:46 10,306 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1093.xml
2009-02-06 11:46 13,814 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1087.xml
2009-02-06 11:46 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1077.xml
2009-02-05 11:40 25,396 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1065.xml
2009-02-05 11:39 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1047.xml
2009-02-03 23:25 41,840 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1035.xml
2009-02-03 23:24 12,040 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1027.xml
2009-02-03 23:24 2,020 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1017.xml
2009-02-03 18:21 21,244,864 a------- c:\windows\system32\MRT.exe
2009-02-02 00:37 25,016 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1005.xml
2009-02-02 00:37 10,270 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_1003.xml
2009-02-02 00:37 6,918 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_997.xml
2009-02-02 00:37 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_987.xml
2009-01-31 15:32 6,496 a------- c:\windows\inf\pxhelp20.PNF
2009-01-29 10:07 228,760 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_975.xml
2009-01-29 10:06 8,688 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_967.xml
2009-01-29 10:06 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_957.xml
2009-01-27 21:50 232,268 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_945.xml
2009-01-27 21:49 10,306 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_943.xml
2009-01-27 21:49 7,028 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_937.xml
2009-01-27 21:49 5,428 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_927.xml
2009-01-27 20:26 4,424 a------- c:\windows\inf\ieaccess.PNF
2009-01-26 21:00 37,820 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_915.xml
2009-01-26 20:59 8,828 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_907.xml
2009-01-26 20:59 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_897.xml
2009-01-25 18:08 167 ---s---- c:\docume~1\yuriyh~1\applic~1\_default.ini
2009-01-25 12:27 37,792 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_885.xml
2009-01-25 12:26 8,816 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_877.xml
2009-01-25 12:26 5,428 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_867.xml
2009-01-23 22:13 37,468 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_855.xml
2009-01-23 22:12 1,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_847.xml
2009-01-23 22:12 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_837.xml
2009-01-20 20:44 149,760 a------- c:\windows\system32\drivers\WpsHelper.sys
2009-01-20 17:09 33,404 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_825.xml
2009-01-20 17:08 2,032 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_823.xml
2009-01-20 17:08 6,854 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_817.xml
2009-01-20 17:08 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_807.xml
2009-01-20 11:29 7,680 a--sh--- c:\windows\Thumbs.db
2009-01-19 14:48 33,428 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_795.xml
2009-01-19 14:47 10,450 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_787.xml
2009-01-19 14:47 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_777.xml
2009-01-18 05:04 40,692 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_765.xml
2009-01-18 05:04 2,038 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_763.xml
2009-01-18 05:04 23,722 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_757.xml
2009-01-18 05:04 3,488 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_761.xml
2009-01-18 05:03 5,428 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_747.xml
2009-01-16 21:35 3,594,752 a------- c:\windows\system32\mshtml.dll
2009-01-16 21:20 9,722 a------- c:\windows\inf\oem30.PNF
2009-01-15 20:02 37,592 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_735.xml
2009-01-15 20:01 13,702 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_733.xml
2009-01-15 20:01 1,924 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_731.xml
2009-01-15 20:01 21,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_727.xml
2009-01-15 20:01 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_717.xml
2009-01-14 12:42 58,344 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_705.xml
2009-01-14 12:41 12,016 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_703.xml
2009-01-14 12:41 8,660 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_697.xml
2009-01-14 12:41 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_687.xml
2009-01-13 08:11 50,316 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_675.xml
2009-01-13 08:11 10,270 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_673.xml
2009-01-13 08:11 17,190 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_667.xml
2009-01-13 08:11 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_657.xml
2009-01-11 15:53 33,728 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_645.xml
2009-01-11 15:52 10,306 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_643.xml
2009-01-11 15:52 1,924 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_641.xml
2009-01-11 15:52 26,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_637.xml
2009-01-11 15:52 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_627.xml
2009-01-10 01:39 37,688 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_615.xml
2009-01-10 01:38 1,912 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_613.xml
2009-01-10 01:38 16,860 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_607.xml
2009-01-10 01:38 1,924 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_611.xml
2009-01-10 01:38 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_597.xml
2009-01-09 19:30 13,676 a------- c:\windows\inf\es46n.PNF
2009-01-09 19:26 8,812 a------- c:\windows\inf\tgiu.PNF
2009-01-09 19:25 110,412 a------- c:\windows\inf\mdmmetri.PNF
2009-01-09 19:24 38,224 a------- c:\windows\inf\mwavmdm1.PNF
2009-01-09 19:19 8,372 a------- c:\windows\inf\mdmpbit.PNF
2009-01-09 19:18 14,812 a------- c:\windows\inf\netcb325.PNF
2009-01-09 18:56 7,327 a------- c:\windows\system32\lvcoinst.log
2009-01-09 15:44 12,676 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_585.xml
2009-01-09 15:43 7,234 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_577.xml
2009-01-09 15:43 5,428 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_567.xml
2009-01-07 19:30 47,256 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_555.xml
2009-01-07 19:29 9,884 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_547.xml
2009-01-07 19:29 2,032 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_553.xml
2009-01-07 19:29 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_537.xml
2009-01-05 17:33 3,751,995 a------- c:\windows\system32\GPhotos.scr
2009-01-05 16:18 90,112 a------- c:\windows\system32\QuickTimeVR.qtx
2009-01-05 16:18 57,344 a------- c:\windows\system32\QuickTime.qts
2009-01-05 02:09 6,021 a------- C:\JavaRa.log
2009-01-04 20:34 291,176 a------- c:\windows\inf\oem29.PNF
2009-01-04 20:33 16,734 a------- c:\windows\inf\oem28.PNF
2009-01-04 20:31 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_SynTP_01000.Wdf
2009-01-04 20:31 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01000_Coinstaller_Critical.Wdf
2009-01-04 13:28 4,327 a------- c:\windows\system32\jupdate-1.6.0_11-b03.log
2009-01-03 20:54 48,676 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_525.xml
2009-01-03 20:53 3,416 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_517.xml
2009-01-03 20:53 3,722 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_507.xml
2009-01-02 20:43 9,458,462 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_495.xml
2009-01-02 20:42 6,994 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_493.xml
2009-01-02 20:42 21,268 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_487.xml
2009-01-02 20:42 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_477.xml
2009-01-01 20:27 7,552 a------- c:\windows\inf\oem26.PNF
2009-01-01 20:27 5,612 a------- c:\windows\inf\oem27.PNF
2009-01-01 19:53 60,800 a------- c:\windows\system32\S32EVNT1.DLL
2008-12-28 13:57 1,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_457.xml
2008-12-28 13:56 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_447.xml
2008-12-27 13:32 13,284 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_435.xml
2008-12-27 13:32 10,270 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_433.xml
2008-12-27 13:32 1,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_427.xml
2008-12-27 13:32 2,020 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_417.xml
2008-12-24 12:51 10,306 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_403.xml
2008-12-24 12:51 1,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_397.xml
2008-12-24 12:51 2,020 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_387.xml
2008-12-23 12:46 1,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_367.xml
2008-12-23 12:46 2,020 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_357.xml
2008-12-20 01:00 8,012 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_345.xml
2008-12-20 01:00 18,520 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_343.xml
2008-12-20 01:00 6,528 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_337.xml
2008-12-20 01:00 8,708 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_317.xml
2008-12-20 01:00 3,724 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_327.xml
2008-12-19 04:10 70,656 a------- c:\windows\system32\ie4uinit.exe
2008-12-19 00:23 161,792 a------- c:\windows\system32\ieakui.dll
2008-12-18 20:27 6,836 a------- c:\windows\inf\AC3ACM.PNF
2008-12-17 22:49 6,990 a------- c:\windows\inf\oem25.PNF
2008-12-17 20:36 55 a------- C:\DVDPATH.TXT
2008-12-17 09:36 7,028 a------- c:\windows\inf\swflash.PNF
2008-12-17 00:12 356,352 a------- c:\windows\eSellerateEngine.dll
2008-12-12 23:37 7,598 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_315.xml
2008-12-12 23:37 5,290 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_313.xml
2008-12-12 23:37 23,594 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_307.xml
2008-12-12 23:37 5,434 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_297.xml
2008-12-10 23:36 29,480 a------- c:\windows\system32\msxml3a.dll
2008-12-10 12:47 10,306 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_283.xml
2008-12-10 12:47 1,892 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_277.xml
2008-12-10 01:50 435,838 a------- c:\windows\system32\TZLog.log
2008-12-09 11:12 4,757,864 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_255.xml
2008-12-09 11:12 20,680 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_253.xml
2008-12-08 19:09 27,832 a------- c:\windows\inf\sti.PNF
2008-12-08 19:09 10,620 a------- c:\windows\inf\ptpusb.PNF
2008-12-08 05:48 4,744,526 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_225.xml
2008-12-08 05:48 20,752 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_223.xml
2008-12-05 19:48 3,514 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_163.xml
2008-12-05 19:48 2,716 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_165.xml
2008-12-04 22:33 645,120 a------- c:\windows\system32\config.gms
2008-12-04 03:41 1,996 a------- c:\windows\pchealth\helpctr\datacoll\CollectedData_133.xml
2008-11-27 19:44 59,452 a------- c:\windows\inf\oem5.PNF
2008-11-26 19:42 6,282 a------- c:\windows\inf\oem23.PNF
2008-11-26 13:57 109,404 a------- c:\windows\inf\apps.PNF
2008-11-26 10:57 4,624 a------- c:\windows\inf\msxpsdrv.PNF
2008-11-26 02:23 12,016 a------- c:\windows\inf\wpdmtp.PNF
2008-11-26 02:23 5,256 a------- c:\windows\inf\WPDMTPHW.PNF
2008-11-26 02:23 8,012 a------- c:\windows\inf\wmp11.PNF
2008-11-26 02:23 6,020 a------- c:\windows\inf\skins.PNF
2008-11-25 23:10 20,236 a------- c:\windows\inf\bda.PNF
2008-11-25 23:10 9,644 a------- c:\windows\inf\ccdecode.PNF
2008-11-25 23:04 80,872 a------- c:\windows\inf\oem21.PNF
2008-11-25 23:04 37,112 a------- c:\windows\inf\oem20.PNF
2008-11-25 23:04 13,616 a------- c:\windows\inf\oem19.PNF
2008-11-25 23:04 86,536 a------- c:\windows\inf\oem18.PNF
2008-11-25 23:04 31,008 a------- c:\windows\inf\oem17.PNF
2008-11-25 23:04 9,960 a------- c:\windows\inf\oem16.PNF
2008-11-25 23:04 41,104 a------- c:\windows\inf\oem15.PNF
2008-11-25 23:04 6,912 a------- c:\windows\inf\oem14.PNF
2008-11-25 22:30 19,780 a------- c:\windows\inf\oem13.PNF
2008-11-25 22:30 44,964 a------- c:\windows\inf\printupg.PNF
2008-11-25 22:30 5,476 a------- c:\windows\inf\usbprint.PNF
2008-11-25 22:26 44,496 a------- c:\windows\inf\usb.PNF
2008-11-25 22:24 30,564 a------- c:\windows\inf\mchgr.PNF
2008-11-25 22:24 43,500 a------- c:\windows\inf\kscaptur.PNF
2008-11-25 22:24 432,252 a------- c:\windows\inf\intl.PNF
2008-11-25 22:24 83,728 a------- c:\windows\inf\ie.PNF
2008-11-25 22:24 9,476 a------- c:\windows\inf\HidDigi.PNF
2008-11-25 22:24 7,780 a------- c:\windows\inf\hidbth.PNF
2008-11-25 22:24 23,720 a------- c:\windows\inf\dwup.PNF
2008-11-25 22:24 5,004 a------- c:\windows\inf\fltmgr.PNF
2008-11-25 22:24 6,224 a------- c:\windows\inf\bthprint.PNF
2008-11-25 22:24 5,972 a------- c:\windows\inf\bthspp.PNF
2008-11-25 20:13 108,916 a------- c:\windows\inf\input.PNF
2008-11-25 20:13 24,640 a------- c:\windows\inf\ksfilter.PNF
2008-11-25 20:12 49,540 a------- c:\windows\inf\mshdc.PNF
2008-11-25 20:12 51,448 a------- c:\windows\inf\usbport.PNF
2008-11-25 20:12 12,720 a------- c:\windows\inf\hidserv.PNF
2008-11-25 20:12 91,444 a------- c:\windows\inf\ks.PNF
2008-11-25 20:12 67,708 a------- c:\windows\inf\keyboard.PNF
2008-11-25 20:07 10,922 a------- c:\windows\inf\oem12.PNF
2008-11-25 20:01 99,988 a------- c:\windows\inf\syssetup.PNF
2008-11-25 19:50 39,428 a------- c:\windows\inf\sceregvl.PNF
2008-11-25 19:49 35,964 a------- c:\windows\inf\msoe50.PNF
2008-11-25 19:49 3,704 a------- c:\windows\inf\netfw.PNF
2008-11-25 19:44 14,492 a------- c:\windows\inf\p2p.PNF
2008-11-25 19:44 3,652 a------- c:\windows\inf\netbeac.PNF
2008-11-25 19:44 4,384 a------- c:\windows\inf\oeaccess.PNF
2008-11-25 19:44 105,040 a------- c:\windows\inf\ims.PNF
2008-11-25 19:44 17,568 a------- c:\windows\inf\fp40ext.PNF
2008-11-25 19:44 131,156 a------- c:\windows\inf\tsoc.PNF
2008-11-25 19:44 10,240 a------- c:\windows\inf\dtcnt5.PNF
2008-11-25 19:44 134,788 a------- c:\windows\inf\comnt5.PNF
2008-11-25 19:44 16,448 a------- c:\windows\inf\netoc.PNF
2008-11-25 19:44 12,508 a------- c:\windows\inf\wbemoc.PNF
2008-11-25 19:44 6,700 a------- c:\windows\inf\SYSOC.PNF
2008-11-25 19:44 2,916 a------- c:\windows\inf\koc.PNF
2008-11-25 19:43 6,796 a------- c:\windows\inf\hdaudbus.PNF
2008-11-25 19:43 187,380 a------- c:\windows\inf\machine.PNF
2008-11-25 19:43 10,732 a------- c:\windows\inf\sdbus.PNF
2008-11-25 19:43 222,468 a------- c:\windows\inf\drvindex.PNF
2008-11-25 19:43 25,780 a------- c:\windows\inf\bth.PNF
2008-11-25 19:43 57,172 a------- c:\windows\inf\wmp.PNF
2008-11-25 19:42 1,008,556 a------- c:\windows\inf\LAYOUT.PNF
2008-11-25 19:42 15,908 a------- c:\windows\inf\wmfsdk.PNF
2008-11-25 18:52 62,236 a------- c:\windows\inf\font.PNF
2008-11-25 17:51 6,914 a------- c:\windows\inf\oem10.PNF
2008-11-25 17:50 8,616 a------- c:\windows\inf\oem9.PNF
2008-11-25 17:50 6,044 a------- c:\windows\inf\oem8.PNF
2008-11-25 17:39 5,914 a------- c:\windows\inf\msxmlx.PNF
2008-11-25 17:30 317,646 a------- c:\windows\inf\oem7.PNF
2008-11-25 17:25 108,188 a------- c:\windows\inf\monitor.PNF
2008-11-25 17:25 74,812 a------- c:\windows\inf\oem6.PNF
2008-11-25 17:23 297,700 a------- c:\windows\inf\oem4.PNF
2008-11-25 17:22 44,896 a------- c:\windows\inf\wdmaudio.PNF
2008-11-25 17:14 13,778 a------- c:\windows\inf\AegisP.inf
2008-11-25 17:14 9,968 a------- c:\windows\inf\AegisP.PNF
2008-11-25 17:14 11,424 a------- c:\windows\inf\S24Trans.PNF
2008-11-25 17:14 109,502 a------- c:\windows\inf\oem3.PNF
2008-11-25 17:14 141,906 a------- c:\windows\inf\oem2.PNF
2008-11-25 17:14 137,826 a------- c:\windows\inf\oem1.PNF
2008-11-25 17:12 5,772 a------- c:\windows\inf\netpsa.PNF
2008-11-25 17:12 34,934 a------- c:\windows\inf\oem0.PNF
2008-11-25 17:10 5,646 a------- c:\windows\inf\915m.PNF
2008-11-25 17:07 4,816 a------- c:\windows\inf\volume.PNF
2008-11-25 17:07 12,136 a------- c:\windows\inf\disk.PNF
2008-11-25 17:07 37,024 a------- c:\windows\inf\usbstor.PNF
2008-11-25 17:07 7,800 a------- c:\windows\inf\certclas.PNF
2008-11-25 17:05 21,352 a------- c:\windows\inf\wab50.PNF
2008-11-25 17:05 87,456 a------- c:\windows\inf\msmsgs.PNF
2008-11-25 17:05 16,656 a------- c:\windows\inf\wordpad.PNF
2008-11-25 11:45 12,992 a------- c:\windows\inf\pchealth.PNF
2008-11-25 11:44 3,696 a------- c:\windows\inf\netclass.PNF
2008-11-25 11:44 5,836 a------- c:\windows\inf\multiprt.PNF
2008-11-25 11:44 3,924 a------- c:\windows\inf\legcydrv.PNF
2008-11-25 11:44 62 a--sh--- c:\docume~1\yuriyh~1\applic~1\desktop.ini
2008-11-25 11:44 62 a--sh--- c:\docume~1\alluse~1\applic~1\desktop.ini
2008-11-25 11:44 3,452 a------- c:\windows\inf\SVCPACK.PNF
2008-07-31 17:17 1,651 a------- c:\windows\inf\pxhelp20.inf
2008-07-10 03:56 2,937 a------- c:\windows\inf\oem26.inf
2008-06-19 00:33 2,204 a------- c:\windows\inf\msxpsdrv.inf
2008-05-02 18:01 4,243 a----r-- c:\windows\inf\oem30.inf
2008-04-13 21:04 391,859 a------- c:\windows\inf\layout.inf
2008-04-13 19:25 119,840 a------- c:\windows\inf\tsoc.inf
2008-04-13 19:19 48,853 a------- c:\windows\inf\ims.inf
2008-04-13 13:21 2,938 a------- c:\windows\inf\netrndis.inf
2008-04-13 12:23 29,070 a------- c:\windows\inf\wmp.inf
2008-04-13 12:11 18,734 a------- c:\windows\inf\wdma_via.inf
2008-04-13 12:11 63,292 a------- c:\windows\inf\wdma_ali.inf
2008-04-13 12:11 2,464 a------- c:\windows\inf\hdaudbus.inf
2008-04-13 11:31 3,612 a------- c:\windows\inf\wstcodec.inf
2008-04-13 11:31 5,353 a------- c:\windows\inf\wbemoc.inf
2008-04-13 11:31 9,026 a------- c:\windows\inf\usbvideo.inf
2008-04-13 11:31 23,708 a------- c:\windows\inf\usbport.inf
2008-04-13 11:29 6,742 a------- c:\windows\inf\ndisip.inf
2008-04-13 11:28 4,433 a------- c:\windows\inf\hidserv.inf
2008-04-13 11:28 3,751 a------- c:\windows\inf\hiddigi.inf
2008-04-13 11:28 67,899 a------- c:\windows\inf\drvindex.inf
2008-04-13 11:28 19,364 a------- c:\windows\inf\dwup.inf
2008-04-13 10:55 80,087 a------- c:\windows\inf\mdmirmdm.inf
2008-04-13 10:44 26,756 a------- c:\windows\inf\mdmbtmdm.inf
2008-04-13 10:44 4,473 a------- c:\windows\inf\tdibth.inf
2008-04-13 10:44 1,995 a------- c:\windows\inf\hidbth.inf
2008-04-13 10:44 11,681 a------- c:\windows\inf\bth.inf
2008-04-13 10:44 1,997 a------- c:\windows\inf\bthprint.inf
2008-04-13 10:44 1,943 a------- c:\windows\inf\bthspp.inf
2008-01-24 11:46 68,614 -------- c:\windows\inf\Search.adm
2007-11-19 14:13 1,979 a----r-- c:\windows\inf\oem23.inf
2007-11-15 17:18 528,774 a------- c:\windows\inf\oem4.inf
2007-06-27 07:47 3,285 a------- c:\windows\inf\dtcnt5.inf
2007-06-27 07:47 81,776 a------- c:\windows\inf\comnt5.inf
2007-05-30 06:25 7,946 a------- c:\windows\inf\fp40ext.inf
2007-04-26 05:13 6,547 a------- c:\windows\inf\qmgr.inf
2007-02-25 04:23 157,609 a------- c:\windows\inf\oem2.inf
2007-02-25 04:23 157,315 a------- c:\windows\inf\oem1.inf
2007-02-08 13:30 119,850 a----r-- c:\windows\inf\oem3.inf
2007-01-31 13:45 3,054 a------- c:\windows\inf\oem9.inf
2007-01-31 13:45 1,919 a------- c:\windows\inf\oem10.inf
2007-01-18 16:18 1,988 a------- c:\windows\inf\oem8.inf
2007-01-15 11:26 6,770 a------- c:\windows\inf\S24Trans.inf
2006-12-14 20:54 26,470 a------- c:\windows\inf\oem15.inf
2006-12-14 20:54 2,030 a------- c:\windows\inf\oem14.inf
2006-12-14 20:54 76,743 a------- c:\windows\inf\oem18.inf
2006-12-14 20:54 25,039 a------- c:\windows\inf\oem17.inf
2006-12-14 20:54 5,084 a------- c:\windows\inf\oem16.inf
2006-12-14 20:54 67,772 a------- c:\windows\inf\oem21.inf
2006-12-14 20:53 30,792 a------- c:\windows\inf\oem20.inf
2006-12-14 20:53 7,346 a------- c:\windows\inf\oem19.inf
2006-11-15 19:06 562,243 a------- c:\windows\inf\oem29.inf
2006-11-15 19:06 9,607 a------- c:\windows\inf\oem28.inf
2006-11-02 12:41 2,037 a------- c:\windows\inf\skins.inf
2006-10-12 15:29 640,898 a------- c:\windows\inf\oem7.inf
2006-10-03 02:43 2,402,550 a------- c:\windows\inf\inetres.adm
2006-09-11 17:00 8,019 -------- c:\windows\inf\wpdmtp.inf
2006-09-01 08:55 13,696 a------- c:\windows\inf\iem\0409\inetcorp.iem
2006-09-01 08:55 37,836 -------- c:\windows\inf\iem\0409\inetset.iem
2006-08-25 17:09 2,428 -------- c:\windows\inf\wmp11.inf
2006-08-24 08:35 5,412 a------- c:\windows\inf\oem12.inf
2006-06-15 17:39 50,358 a------- c:\windows\inf\oem6.inf
2006-04-25 10:10 69,612 -------- c:\windows\inf\wmplayer.adm
2006-04-25 10:09 1,816 -------- c:\windows\inf\WPDMTPHW.INF
2005-12-01 21:54 34,044 a------- c:\windows\inf\oem5.inf
2005-10-13 17:05 3,374 a------- c:\windows\inf\915M.inf
2005-09-22 03:05 2,494 a------- c:\windows\inf\oem25.inf
2005-09-22 03:05 2,494 a------- c:\windows\inf\AC3ACM.inf
2005-08-05 11:19 36,636 a------- c:\windows\inf\oem0.inf
2005-01-07 17:06 51,914 a------- c:\windows\inf\hdaudio.inf
2004-10-25 01:00 6,212 a------- c:\windows\inf\es46n.inf
2004-09-28 05:53 7,808 a------- c:\windows\inf\oem13.inf
2004-09-14 04:09 33,672 a------- c:\windows\inf\AER_1025.ADM
2003-09-04 14:14 3,759 a------- c:\windows\inf\swflash.inf
2003-07-18 14:42 39,132 a------- c:\windows\inf\AER_1040.ADM
2003-07-18 14:37 38,066 a------- c:\windows\inf\AER_3082.ADM
2003-07-12 02:55 23,748 a------- c:\windows\inf\AER_2052.ADM
2003-07-12 02:52 26,616 a------- c:\windows\inf\AER_1042.ADM
2003-07-12 02:48 23,282 a------- c:\windows\inf\AER_1028.ADM
2003-07-12 02:43 26,292 a------- c:\windows\inf\AER_1041.ADM
2003-07-12 02:40 39,516 a------- c:\windows\inf\AER_1031.ADM
2003-01-13 17:11 39,366 a------- c:\windows\inf\AER_1036.ADM
2002-10-10 08:44 34,066 a------- c:\windows\inf\AER_1033.ADM
2004-08-04 05:00 48,680 ---sh--- c:\windows\winnt.bmp
2004-08-04 05:00 48,680 ---sh--- c:\windows\winnt256.bmp
2008-11-26 10:54 227 a--shr-- c:\windows\assembly\Desktop.ini
2008-11-25 16:58 67 a--sh--- c:\windows\fonts\desktop.ini
2004-08-04 05:00 2,334,260 ---shr-- c:\windows\pchealth\helpctr\packagestore\instance_Personal_32_1033.cab
2008-11-25 16:58 727 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_1.cab
2008-11-25 16:58 19,854 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_2.cab
2008-11-25 16:58 244,933 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_3.cab
2005-03-22 13:48 7,166 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_4.cab
2005-03-22 13:48 21,378 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_5.cab
2005-03-22 13:48 7,362 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_6.cab
2004-08-04 05:00 7,068 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_7.cab
2004-08-04 05:00 286,777 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_8.cab
2008-11-25 19:40 290,594 ---shr-- c:\windows\pchealth\helpctr\packagestore\package_9.cab
2008-11-25 11:44 62 a--sh--- c:\windows\system32\config\systemprofile\application data\desktop.ini
2008-11-25 11:44 62 a--sh--- c:\windows\system32\config\systemprofile\local settings\desktop.ini
2008-11-25 17:03 113 ---sh--- c:\windows\system32\config\systemprofile\local settings\history\desktop.ini
2008-11-25 17:03 113 ---sh--- c:\windows\system32\config\systemprofile\local settings\history\history.ie5\desktop.ini
2008-11-25 17:03 67 ---sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\desktop.ini
2008-11-25 17:03 67 ---sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\desktop.ini
2008-11-25 17:03 67 ---sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\41m3sdin\desktop.ini
2008-11-25 17:03 67 ---sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\khubs9u7\desktop.ini
2008-11-25 17:03 67 ---sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\slyfcxen\desktop.ini
2008-11-25 17:03 67 ---sh--- c:\windows\system32\config\systemprofile\local settings\temporary internet files\content.ie5\wlybo96b\desktop.ini
2008-11-25 16:57 181 a--sh--- c:\windows\system32\config\systemprofile\sendto\desktop.ini
2008-11-25 11:44 62 a--sh--- c:\windows\system32\config\systemprofile\start menu\desktop.ini
2008-11-25 16:59 148 a--sh--- c:\windows\system32\config\systemprofile\start menu\programs\desktop.ini
2008-11-25 16:59 482 a--sh--- c:\windows\system32\config\systemprofile\start menu\programs\accessories\desktop.ini
2008-11-25 16:59 348 a--sh--- c:\windows\system32\config\systemprofile\start menu\programs\accessories\accessibility\desktop.ini
2008-11-25 16:59 84 a--sh--- c:\windows\system32\config\systemprofile\start menu\programs\accessories\entertainment\desktop.ini
2008-11-25 16:59 84 a--sh--- c:\windows\system32\config\systemprofile\start menu\programs\startup\desktop.ini
2006-12-28 14:01 19,569 ---shr-- c:\windows\system32\restore\filelist.xml

============= FINISH: 3:27:21.71 ===============
  • 0

#177
megadez
Posted 04 March 2009 - 02:36 AM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_09-02-01.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume1
Install Date: 11/25/2008 5:02:01 PM
System Uptime: 3/3/2009 12:35:01 PM (15 hours ago)

Motherboard: Dell Inc. | | 0RJ272
Processor: Intel® Pentium® M processor 1.70GHz | Microprocessor | 593/133mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 39 GiB total, 6.14 GiB free.
D: is FIXED (NTFS) - 17 GiB total, 1.644 GiB free.
E: is CDROM ()
F: is FIXED (NTFS) - 233 GiB total, 112.794 GiB free.
H: is Removable
I: is Removable

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP59: 2/28/2009 4:55:33 PM - System Checkpoint
RP60: 3/2/2009 12:09:38 AM - ComboFix created restore point
RP61: 3/4/2009 1:56:20 AM - Installed Microsoft Office 2007 Primary Interop Assemblies
RP62: 3/4/2009 1:58:57 AM - Installed Chart Advisor from Microsoft Office Labs

==== Installed Programs ======================

µTorrent
2007 Microsoft Office Suite Service Pack 1 (SP1)
ABBYY Lingvo x3
AC-3 ACM Codec
Adobe Acrobat 9 Pro - English, Français, Deutsch
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Apple Software Update
Aurora
Broadcom 440x 10/100 Integrated Controller
Calculator Powertoy for Windows XP
CCleaner (remove only)
CDBurnerXP
Chart Advisor from Microsoft Office Labs
Cisco Systems VPN Client 5.0.02.0090
ClearType Tuning Control Panel Applet
Conexant HDA D110 MDC V.92 Modem
Dell Wireless WLAN Card
Drive Manager
EPSON Printer Software
EPSON Scan
foobar2000 v0.9.5.6
G-Force
Google Chrome
Google Talk (remove only)
Google Talk Plugin
Google Toolbar for Internet Explorer
High Definition Audio Driver Package - KB888111
HijackThis 2.0.2
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Hotfix for Windows Media Format 11 SDK (KB929399)
Hotfix for Windows Media Player 11 (KB939683)
Hotfix for Windows XP (KB915800-v4)
Hotfix for Windows XP (KB952287)
Hotfix for Windows XP (KB954550-v5)
Hotfix for Windows XP (KB961118)
Image Resizer Powertoy for Windows XP
Intel® Graphics Media Accelerator Driver for Mobile
Intel® PROSet/Wireless Software
InterVideo DeviceService
Java™ 6 Update 11
LiveUpdate 3.3 (Symantec Corporation)
Logitech Audio Echo Cancellation Component
Logitech QuickCam
Logitech Video Enumerator
Logitech® Camera Driver
Malwarebytes' Anti-Malware
MATLAB R2008b
mCore
mDriver
mDrWiFi
Medieval CUE Splitter
mHlpDell
Microsoft .NET Framework 2.0 Service Pack 2
Microsoft .NET Framework 3.0 Service Pack 2
Microsoft .NET Framework 3.5 SP1
Microsoft Compression Client Pack 1.0 for Windows XP
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft Kernel-Mode Driver Framework 1.0
Microsoft National Language Support Downlevel APIs
Microsoft Office 2007 Primary Interop Assemblies
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs
Microsoft Software Update for Web Folders (English) 12
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual Studio 2005 Tools for Office Runtime
mIWA
mLogView
mMHouse
Mozilla Firefox (3.0.6)
mPfMgr
mPfWiz
mProSafe
mSCfg
mSSO
MSXML 4.0 SP2 (KB954430)
MSXML 6.0 Parser
MVision
mWlsSafe
mWMI
mZConfig
Netflix Movie Viewer
Octoshape add-in for Adobe Flash Player
Open PLS in Windows Media Player 2.3.0
OpenDNS Updater 1.3.0.187
Opera 9.63
PerfectDisk 2008 Professional
Photo Story 3 for Windows
Picasa 3
PoivY
PowerDVD
PowerDVD Ultra
PowerISO
QuickSet
QuickTime
Sansa Updater
Security Update for 2007 Microsoft Office System (KB951550)
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB958439)
Security Update for Microsoft Office Excel 2007 (KB958437)
Security Update for Microsoft Office OneNote 2007 (KB950130)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office Publisher 2007 (KB950114)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office system 2007 (KB956828)
Security Update for Microsoft Office Word 2007 (KB956358)
Security Update for Windows Internet Explorer 7 (KB938127-v2)
Security Update for Windows Internet Explorer 7 (KB956390)
Security Update for Windows Internet Explorer 7 (KB958215)
Security Update for Windows Internet Explorer 7 (KB960714)
Security Update for Windows Internet Explorer 7 (KB961260)
Security Update for Windows Media Player (KB952069)
Security Update for Windows Media Player 11 (KB936782)
Security Update for Windows Media Player 11 (KB954154)
Security Update for Windows XP (KB923789)
Security Update for Windows XP (KB938464)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB946648)
Security Update for Windows XP (KB950762)
Security Update for Windows XP (KB950974)
Security Update for Windows XP (KB951066)
Security Update for Windows XP (KB951376-v2)
Security Update for Windows XP (KB951698)
Security Update for Windows XP (KB951748)
Security Update for Windows XP (KB952954)
Security Update for Windows XP (KB954211)
Security Update for Windows XP (KB954459)
Security Update for Windows XP (KB954600)
Security Update for Windows XP (KB955069)
Security Update for Windows XP (KB956390)
Security Update for Windows XP (KB956391)
Security Update for Windows XP (KB956802)
Security Update for Windows XP (KB956803)
Security Update for Windows XP (KB956841)
Security Update for Windows XP (KB957095)
Security Update for Windows XP (KB957097)
Security Update for Windows XP (KB958644)
Security Update for Windows XP (KB958687)
Security Update for Windows XP (KB960715)
Shape Collage
SigmaTel Audio
Skype™ 3.8
SmartSound Quicktracks Plugin
SSH Secure Shell
Stat/Transfer Nine
Stata 10
Symantec Endpoint Protection
Synaptics Pointing Device Driver
The Rosetta Stone
Update for Microsoft Office Outlook 2007 (KB952142)
Update for Office 2007 (KB946691)
Update for Outlook 2007 Junk Email Filter (kb959634)
Update for Windows XP (KB951072-v2)
Update for Windows XP (KB951978)
Update for Windows XP (KB955839)
Update for Windows XP (KB967715)
Visual Studio 2005 Tools for Office Second Edition Runtime
VLC media player 0.9.6
WebFldrs XP
Windows Genuine Advantage Validation Tool (KB892130)
Windows Internet Explorer 7
Windows Media Format 11 runtime
Windows Media Player 11
Windows Search 4.0
Windows XP Service Pack 3
WinRAR archiver

==== Event Viewer Messages From Past Week ========

2/26/2009 2:08:19 PM, error: sr [1] - The System Restore filter encountered the unexpected error '0xC0000243' while processing the file 'SrtETmp' on the volume 'HarddiskVolume1'. It has stopped monitoring the volume.
2/26/2009 10:10:33 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the WZCSVC service.
2/28/2009 1:45:27 AM, error: Service Control Manager [7011] - Timeout (30000 milliseconds) waiting for a transaction response from the ShellHWDetection service.
2/28/2009 1:45:27 AM, error: Service Control Manager [7000] - The Background Intelligent Transfer Service service failed to start due to the following error: All pipe instances are busy.
3/2/2009 12:08:59 AM, error: Service Control Manager [7034] - The Process Monitor service terminated unexpectedly. It has done this 1 time(s).
3/2/2009 12:18:43 AM, error: PlugPlayManager [11] - The device Root\LEGACY_ROOTREPEAL\0000 disappeared from the system without first being prepared for removal.
2/28/2009 3:15:11 AM, information: Windows File Protection [64016] - Windows File Protection file scan was started.
2/28/2009 4:49:40 AM, information: Windows File Protection [64017] - Windows File Protection file scan completed successfully.

==== End Of File ===========================
  • 0

#178
emeraldnzl
Posted 04 March 2009 - 10:39 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello megadez,

Please double-click Goored.exe on your Desktop to run it. Select 2. Fix Goored by typing 2 and pressing Enter. Make sure all instances of Firefox are closed at this point. Type y at the prompt and press Enter again. A log will open, please post the contents of that log in your next reply (it can also be found on your desktop, called Goored.txt).
  • 0

#179
megadez
Posted 05 March 2009 - 12:23 AM

megadez

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 119 posts
Believe it or not, the restart of firefox before running goored coincided in time with new version of firefox coming out. So, when I opened it again after goored version 3.0.7. was installed.

Then I ran Opera for some reason, and here you go, new version of Opera 9.64 ready for install, what a coincidence. But even with a new version of Opera same problem remained, I can only run files, but not download them in Opera.

There was a guy who wrote me a personal message on geekstogo. He found our topic on google, has the same problem, will keep up with our developmnets. He has hotlean redirects, and crashes for both Firefox and IE. I don't know, maybe you can get some insights from looking on his machine, you decide.

GooredFix v1.91 by jpshortstuff
Log created at 01:05 on 05/03/2009 running Option #2 (Yuriy Horokhivskyy)
Firefox version 3.0.6 (en-US)

=====Goored Deletions=====

=====Dumping Registry Values=====

[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Mozilla Firefox 3.0.6\extensions]
"Plugins"="C:\Program Files\Mozilla Firefox\plugins"

[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Mozilla Firefox 3.0.6\extensions]
"Components"="C:\Program Files\Mozilla Firefox\components"

[HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\extensions]
"[email protected]"="C:\Program Files\Java\jre6\lib\deploy\jqs\ff"
  • 0

#180
emeraldnzl
Posted 05 March 2009 - 01:54 PM

emeraldnzl

    GeekU Instructor

  • GeekU Moderator
  • 20,051 posts
Hello again megadez,

On the trail of eliminating possibilities here.

Lets try some browsing with Firefox and IE in Safe Mode and see if there is a difference.

Boot into Safe Mode:

1) Restart your computer
2) After hearing your computer beep once during startup, but before the Windows icon appears, tap F8 continually.
3) Instead of Windows loading as normal, a menu should appear
4) Select the first option, to run Windows in Safe Mode.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP