BleepingComputer.com: Already finished running Combofix

Jump to content


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.

Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Forum Guidelines

Posted Image Read the following topic before creating a new topic in this forum. It contains instructions on the what we would like you to post, which will enable us to help you more quickly.

Preparation Guide For Use Before Using Malware Removal Tools and Requesting Help


Posted Image Unfortunately, with the amount of logs we receive per day, the average response time is 5 days. I want to assure you, though, that your topic will be looked at and responded to. So please be patient.


Posted Image DO NOT RUN ComboFix unless requested to.


Posted Image Only members of the Malware Response Team or Moderators are allowed to help people with logs. Anyone else should refrain from posting to another user's log.


Posted Image When posting a log please put the type of infection you have in the topic title. IE: Winfixer, Virtumonde, WinTools, WebSearch, Home Search Assistant, etc.


Posted Image Do not bump your topic. We try to resolve logs on a first come/first served basis. By bumping your log you will be pushed back in line due to the new date of your bump.
  • 2 Pages +
  • 1
  • 2
  • You cannot start a new topic
  • You cannot reply to this topic

Already finished running Combofix Memory fills up quick

#1 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 23 December 2009 - 12:11 AM

I am new in ComboFix. I runned it a few times and always got good results without knowing about professional advices about it. I didn;t know there is "uninstalled" with ComboFix. I neve uninstalled it yet. After last running ComboFix everything seems OK except memory fills up quick. After opening about 10 IE pages I can't do certain jobs like copy paste or opening ned "write editor" and stuff like this. Still haven't uninstalled ComboFix since I don't know how to do this. I have heard I should use "ConboFix /u" command but never tried it yet. Here are my logs:


DDS (Ver_09-12-01.01) - NTFSx86
Run by Behrooz at 8:28:41.96 on 09-12-23
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.388 [GMT 3.5:30]

AV: McAfee VirusScan Enterprise *On-access scanning disabled* (Updated) {918A2B0B-2C60-4016-A4AB-E868DEABF7F0}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\WISPTIS.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\FlashGet\flashget.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\AcroDist.exe
C:\Program Files\Adobe\Acrobat 6.0\Acrobat\Acrobat.exe
C:\Documents and Settings\Behrooz\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://www.limoonat.com
uInternet Settings,ProxyOverride = local
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 6.0\acrobat\activex\AcroIEHelper.dll
BHO: Flashget Catch Url Class: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\program files\flashget\jccatch.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\mcafee\virusscan enterprise\Scriptcl.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: AcroIEToolbarHelper Class: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
BHO: gFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\program files\flashget\getflash.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: FlashGet: {e0e899ab-f487-11d5-8d29-0050ba6940e3} - c:\program files\flashget\fgiebar.dll
uRun: [swg] c:\program files\google\googletoolbarnotifier\1.0.720.3640\GoogleToolbarNotifier.exe
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [Yahoo! Pager] "c:\progra~1\yahoo!\messen~1\YAHOOM~1.EXE" -quiet
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [StatusClient] c:\program files\hewlett-packard\toolbox2.0\apache tomcat 4.0\webapps\toolbox\statusclient\StatusClient.exe /auto
mRun: [TomcatStartup] c:\program files\hewlett-packard\toolbox2.0\hpbpsttp.exe
mRun: [ShStatEXE] "c:\program files\mcafee\virusscan enterprise\SHSTAT.EXE" /STANDALONE
mRun: [McAfeeUpdaterUI] "c:\program files\mcafee\common framework\UdaterUI.exe" /StartedFromRunKey
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\acroba~1.lnk - c:\program files\adobe\acrobat 6.0\distillr\acrotray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK.EXE
IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm
IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49}
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\progra~1\flashget\flashget.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

============= SERVICES / DRIVERS ===============

P2 McShield;McAfee McShield;c:\program files\mcafee\virusscan enterprise\Mcshield.exe [2006-11-29 144960]
R2 McAfeeFramework;McAfee Framework Service;c:\program files\mcafee\common framework\FrameworkService.exe [2007-8-4 104000]
R2 McTaskManager;McAfee Task Manager;c:\program files\mcafee\virusscan enterprise\VsTskMgr.exe [2006-11-29 54872]
R3 mfeavfk;McAfee Inc.;c:\windows\system32\drivers\mfeavfk.sys [2007-8-4 72264]
R3 mfebopk;McAfee Inc.;c:\windows\system32\drivers\mfebopk.sys [2007-8-4 34152]
R3 mfehidk;McAfee Inc.;c:\windows\system32\drivers\mfehidk.sys [2007-8-4 168776]
S1 SASDIFSV;SASDIFSV;\??\c:\docume~1\behrooz\locals~1\temp\superantispyware\sasdifsv.sys --> c:\docume~1\behrooz\locals~1\temp\superantispyware\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\docume~1\behrooz\locals~1\temp\superantispyware\saskutil.sys --> c:\docume~1\behrooz\locals~1\temp\superantispyware\SASKUTIL.sys [?]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbguard.exe -s --> c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbguard.exe -s [?]
S2 VIPBridgeService;VIP DB Bridge Service;c:\program files\vip quality software\vip task manager professional\dbadminutils\BridgeService.exe [2009-11-24 4256768]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbserver.exe -s --> c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbserver.exe -s [?]
S3 SASENUM;SASENUM;\??\c:\docume~1\behrooz\locals~1\temp\superantispyware\sasenum.sys --> c:\docume~1\behrooz\locals~1\temp\superantispyware\SASENUM.SYS [?]

=============== Created Last 30 ================

2009-12-23 04:25:43 0 d-s---w- C:\ComboFix
2009-12-22 04:54:16 98816 ----a-w- c:\windows\sed.exe
2009-12-22 04:54:16 261632 ----a-w- c:\windows\PEV.exe
2009-12-22 04:54:16 161792 ----a-w- c:\windows\SWREG.exe
2009-12-05 04:28:28 3041 ----a-w- c:\windows\Analyze.INI
2009-12-05 04:27:41 0 d-----w- C:\RAYFLEX_demo
2009-12-05 04:09:30 250 ----a-w- c:\windows\RAYFLEX.INI
2009-12-05 04:08:25 395776 ----a-w- c:\windows\system32\MSFRT40.DLL
2009-12-05 04:08:25 34304 ----a-w- c:\windows\system32\MUSCRL32.DLL
2009-12-05 04:08:24 416768 ----a-w- c:\windows\system32\DFORMD.DLL
2009-12-05 04:08:24 410112 ----a-w- c:\windows\system32\DFORRT.DLL
2009-12-05 04:08:17 0 d-----w- C:\RAYFLEX
2009-12-05 04:06:54 289280 ----a-w- c:\windows\uninst.exe
2009-12-05 04:05:59 0 d-----w- c:\documents and settings\behrooz\WINDOWS
2009-12-01 10:37:33 0 d-----w- c:\program files\Microsoft Visual Studio 8
2009-12-01 06:52:16 77312 ----a-w- c:\windows\MBR.exe
2009-11-25 12:43:46 0 d-----w- C:\Downloads
2009-11-25 10:02:27 754 ----a-w- c:\windows\WORDPAD.INI
2009-11-25 09:36:04 0 d-----w- c:\docume~1\behrooz\applic~1\Inbit
2009-11-25 09:33:14 0 d-----w- c:\docume~1\alluse~1\applic~1\Inbit
2009-11-25 09:33:13 0 d-----w- c:\program files\Inbit
2009-11-24 08:44:01 0 d-sha-r- C:\cmdcons
2009-11-24 06:24:32 0 d-----w- c:\docume~1\alluse~1\applic~1\Spybot - Search & Destroy
2009-11-24 06:13:00 0 d-----w- c:\docume~1\alluse~1\applic~1\SUPERAntiSpyware.com
2009-11-24 06:12:56 0 d-----w- c:\docume~1\behrooz\applic~1\SUPERAntiSpyware.com
2009-11-24 05:01:06 0 d-----w- c:\docume~1\alluse~1\applic~1\VIP Quality Software
2009-11-24 05:01:01 0 d-----w- c:\program files\VIP Quality Software
2009-11-24 03:36:46 5632 ----a-w- c:\windows\system32\ptpusb.dll
2009-11-24 03:36:45 159232 ----a-w- c:\windows\system32\ptpusd.dll
2009-11-24 03:36:37 15104 -c--a-w- c:\windows\system32\dllcache\usbscan.sys
2009-11-24 03:36:37 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2009-11-23 13:41:41 108 ----a-w- c:\documents and settings\behrooz\default.pls
2009-11-23 13:40:32 69 ----a-w- c:\windows\NeroDigital.ini
2009-11-23 08:58:51 0 d-----w- c:\docume~1\behrooz\applic~1\GPass-3
2009-11-23 08:56:57 0 d-----w- c:\docume~1\behrooz\applic~1\GPass
2009-11-23 07:38:12 0 d-s---w- c:\documents and settings\behrooz\UserData
2009-11-23 05:08:45 0 d-----w- c:\program files\TinyPcam207
2009-11-23 05:08:10 0 d-----w- c:\windows\Downloaded Installations

==================== Find3M ====================

2009-12-22 13:47:37 161241 ----a-w- c:\windows\fonts\AdobeFnt07.lst
2009-11-19 18:09:46 393528 ----a-w- C:\HijackThis.exe

============= FINISH: 8:28:55.34 ===============

Attached File(s)

  • Attached File  ark.txt (33.86K)
    Number of downloads: 8
  • Attached File  Attach.txt (3.74K)
    Number of downloads: 3

#2 User is offline   Blind Faith 

  • Bleeping Cookie
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Malware Study Hall Senior
  • Posts: 3,108
  • Joined: 15-October 08
  • Gender:Female
  • Location:I don't know.

Posted 04 January 2010 - 12:48 PM

Hello and welcome to Bleeping Computer! :(

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a DDS log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Download DDS by sUBs from one of the following links. Save it to your desktop.
  • Double click on the DDS icon, allow it to run.
  • A small box will open, with an explaination about the tool. No input is needed, the scan is running.
  • Notepad will open with the results.
  • Follow the instructions that pop up for posting the results.
  • Close the program window, and delete the program from your desktop.
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE



Elle
Can you hear it?It's all around!

Tomar ki manè acchè?
Yadi thakè, tahalè
Ki kshama kartè paro?


If I haven't replied in 48 hours, please feel free to send me a PM.



Member of the Bleeping Computer A.I.I. early response team!


Posted Image

#3 User is offline   chamber 

  • Bleepin' Geek
  • PipPipPip
  • Find Topics
  • Group: Malware Response Team
  • Posts: 329
  • Joined: 02-April 09
  • Gender:Male
  • Location:~/

Posted 09 January 2010 - 07:45 AM

Due to lack of feedback, this topic has been closed.

If you need this topic reopened, please contact a staff member. This applies only to the original topic starter. Everyone else please begin a New Topic.
Posted Image
watch me and tremble, for I bring the purity of oblivion
Sudo apt-get me a sandwich!
Proud graduate of GeekU

#4 User is offline   Grinler 

  • Bleep Bleep!
  • PipPipPipPipPipPip
  • Find Topics
  • Group: Admin
  • Posts: 36,174
  • Joined: 24-January 04
  • Gender:Male
  • Location:USA

Posted 11 January 2010 - 09:20 AM

At the request of the op I have reopened this topic.
Lawrence Abrams
Circle BleepingComputer on Google+!
Become a BleepingComputer fan: Facebook
Follow us on Twitter!
How to detect vulnerable programs using Secunia Personal Software Inspector <- Everyone should do this!

#5 User is offline   chamber 

  • Bleepin' Geek
  • PipPipPip
  • Find Topics
  • Group: Malware Response Team
  • Posts: 329
  • Joined: 02-April 09
  • Gender:Male
  • Location:~/

Posted 11 January 2010 - 09:29 AM

Can you post the DDS logs please.
Posted Image
watch me and tremble, for I bring the purity of oblivion
Sudo apt-get me a sandwich!
Proud graduate of GeekU

#6 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 12 January 2010 - 11:22 PM

Here is the log:


DDS (Ver_09-12-01.01) - NTFSx86
Run by Behrooz at 7:51:13.01 on 10-01-13
Internet Explorer: 6.0.2900.2180
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.481 [GMT 3.5:30]

AV: McAfee VirusScan Enterprise *On-access scanning enabled* (Updated) {918A2B0B-2C60-4016-A4AB-E868DEABF7F0}

============== Running Processes ===============

C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe
C:\Program Files\McAfee\Common Framework\FrameworkService.exe
C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe
C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\SOUNDMAN.EXE
C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe
C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE
C:\Program Files\McAfee\Common Framework\UdaterUI.exe
C:\Program Files\McAfee\Common Framework\McTray.exe
C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe
C:\Program Files\Messenger\msmsgs.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe
C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe
C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe
C:\WINDOWS\system32\wuauclt.exe
C:\PROGRA~1\Yahoo!\MESSEN~1\ymsgr_tray.exe
C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\Documents and Settings\Behrooz\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://www.limoonat.com
uInternet Settings,ProxyOverride = local
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Flashget Catch Url Class: {2f364306-aa45-47b5-9f9d-39a8b94e7ef7} - c:\program files\flashget\jccatch.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\mcafee\virusscan enterprise\Scriptcl.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\googletoolbar1.dll
BHO: AcroIEToolbarHelper Class: {ae7cd045-e861-484f-8273-0445ee161910} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
BHO: gFlash Class: {f156768e-81ef-470c-9057-481ba8380dba} - c:\program files\flashget\getflash.dll
TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - c:\program files\adobe\acrobat 6.0\acrobat\AcroIEFavClient.dll
TB: &Google: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\googletoolbar1.dll
TB: FlashGet: {e0e899ab-f487-11d5-8d29-0050ba6940e3} - c:\program files\flashget\fgiebar.dll
TB: PatentHunter: {bcb2344b-3d5b-46d7-861b-a8f27e4fe602} - c:\program files\patentwizard, llc\patenthunter3\PHToolBand.dll
uRun: [swg] c:\program files\google\googletoolbarnotifier\1.0.720.3640\GoogleToolbarNotifier.exe
uRun: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "c:\program files\common files\ahead\lib\NMBgMonitor.exe"
uRun: [Yahoo! Pager] "c:\progra~1\yahoo!\messen~1\YAHOOM~1.EXE" -quiet
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
mRun: [MSPY2002] c:\windows\system32\ime\pintlgnt\ImScInst.exe /SYNC
mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [StatusClient] c:\program files\hewlett-packard\toolbox2.0\apache tomcat 4.0\webapps\toolbox\statusclient\StatusClient.exe /auto
mRun: [TomcatStartup] c:\program files\hewlett-packard\toolbox2.0\hpbpsttp.exe
mRun: [ShStatEXE] "c:\program files\mcafee\virusscan enterprise\SHSTAT.EXE" /STANDALONE
mRun: [McAfeeUpdaterUI] "c:\program files\mcafee\common framework\UdaterUI.exe" /StartedFromRunKey
mRun: [NeroFilterCheck] c:\program files\common files\ahead\lib\NeroCheck.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\acroba~1.lnk - c:\program files\adobe\acrobat 6.0\distillr\acrotray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee security scan\1.0.150\SSScheduler.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\winzip~1.lnk - c:\program files\winzip\WZQKPICK.EXE
IE: &Download All with FlashGet - c:\program files\flashget\jc_all.htm
IE: &Download with FlashGet - c:\program files\flashget\jc_link.htm
IE: &PHToolBand -
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49}
IE: {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - c:\progra~1\flashget\flashget.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office11\REFIEBAR.DLL
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab

============= SERVICES / DRIVERS ===============

R2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbguard.exe -s --> c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbguard.exe -s [?]
R2 McAfeeFramework;McAfee Framework Service;c:\program files\mcafee\common framework\FrameworkService.exe [2007-8-4 104000]
R2 McShield;McAfee McShield;c:\program files\mcafee\virusscan enterprise\Mcshield.exe [2006-11-29 144960]
R2 McTaskManager;McAfee Task Manager;c:\program files\mcafee\virusscan enterprise\VsTskMgr.exe [2006-11-29 54872]
R2 VIPBridgeService;VIP DB Bridge Service;c:\program files\vip quality software\vip task manager professional\dbadminutils\BridgeService.exe [2009-11-24 4256768]
R3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbserver.exe -s --> c:\program files\vip quality software\vip task manager professional\dbserver\bin\fbserver.exe -s [?]
R3 mfeavfk;McAfee Inc.;c:\windows\system32\drivers\mfeavfk.sys [2007-8-4 72264]
R3 mfebopk;McAfee Inc.;c:\windows\system32\drivers\mfebopk.sys [2007-8-4 34152]
R3 mfehidk;McAfee Inc.;c:\windows\system32\drivers\mfehidk.sys [2007-8-4 168776]
S1 SASDIFSV;SASDIFSV;\??\c:\docume~1\behrooz\locals~1\temp\superantispyware\sasdifsv.sys --> c:\docume~1\behrooz\locals~1\temp\superantispyware\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\docume~1\behrooz\locals~1\temp\superantispyware\saskutil.sys --> c:\docume~1\behrooz\locals~1\temp\superantispyware\SASKUTIL.sys [?]
S3 SASENUM;SASENUM;\??\c:\docume~1\behrooz\locals~1\temp\superantispyware\sasenum.sys --> c:\docume~1\behrooz\locals~1\temp\superantispyware\SASENUM.SYS [?]

=============== Created Last 30 ================

2010-01-10 13:59:10 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-01-10 13:59:10 17408 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-01-10 13:59:10 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-01-10 13:59:09 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-01-10 13:59:09 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-01-10 13:57:58 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2010-01-10 13:56:59 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2010-01-10 13:55:59 77824 -c--a-w- c:\windows\system32\dllcache\s3sav4m.sys
2010-01-10 13:54:59 351616 -c--a-w- c:\windows\system32\dllcache\ovcodek2.sys
2010-01-10 13:53:59 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2010-01-10 13:52:59 14848 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2010-01-10 13:51:59 9759 -c--a-w- c:\windows\system32\dllcache\hsf_inst.dll
2010-01-10 13:50:59 6400 -c--a-w- c:\windows\system32\dllcache\enum1394.sys
2010-01-10 13:49:55 9344 -c--a-w- c:\windows\system32\dllcache\compbatt.sys
2010-01-10 13:48:59 871388 -c--a-w- c:\windows\system32\dllcache\bcmdm.sys
2010-01-10 13:47:58 3967 -c--a-w- c:\windows\system32\dllcache\adv02nt5.dll
2010-01-10 03:40:50 0 d-----w- c:\program files\Airgas_Full_Catalog
2010-01-03 10:43:36 0 d-----w- c:\docume~1\alluse~1\applic~1\McAfee Security Scan
2010-01-03 10:43:35 0 d-----w- c:\program files\McAfee Security Scan
2009-12-30 14:59:56 0 d-----w- c:\program files\Ideal Gas in 3D V2.01
2009-12-30 14:59:47 81920 ----a-w- c:\windows\system32\GkSui20.EXE
2009-12-30 14:59:46 0 d-----w- c:\program files\Electric Field V2.01
2009-12-30 11:24:52 0 d-----w- c:\docume~1\behrooz\applic~1\Malwarebytes
2009-12-30 11:24:48 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-30 11:24:46 0 d-----w- c:\docume~1\alluse~1\applic~1\Malwarebytes
2009-12-30 11:24:45 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-30 11:24:45 0 d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-29 04:24:00 98816 ----a-w- c:\windows\sed.exe
2009-12-29 04:24:00 77312 ----a-w- c:\windows\MBR.exe
2009-12-29 04:24:00 261632 ----a-w- c:\windows\PEV.exe
2009-12-29 04:24:00 161792 ----a-w- c:\windows\SWREG.exe
2009-12-29 04:23:52 0 d-----w- C:\ComboFix2
2009-12-29 04:18:55 0 d-----w- C:\ComboFix
2009-12-23 06:48:15 0 d-----w- C:\Patent Downloads
2009-12-23 06:48:14 737280 ----a-w- c:\windows\iun6002.exe
2009-12-23 06:48:06 54784 ----a-w- c:\windows\system32\msvcirt.dll.bak
2009-12-23 06:48:06 0 d-----w- c:\program files\PatentWizard, LLC

==================== Find3M ====================

2009-12-22 13:47:37 161241 ----a-w- c:\windows\fonts\AdobeFnt07.lst
2009-11-19 18:09:46 393528 ----a-w- C:\HijackThis.exe

============= FINISH: 7:51:37.60 ===============

Attached File(s)


This post has been edited by Steve Robinson: 12 January 2010 - 11:25 PM

#7 User is offline   chamber 

  • Bleepin' Geek
  • PipPipPip
  • Find Topics
  • Group: Malware Response Team
  • Posts: 329
  • Joined: 02-April 09
  • Gender:Male
  • Location:~/

Posted 13 January 2010 - 04:07 AM

Download OTL to your desktop.
  • Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
  • When the window appears, underneath Output at the top change it to Minimal Output.
  • Check the boxes beside LOP Check and Purity Check.
  • Under the Custom Scan box paste this in

    netsvcs
    msconfig
    safebootminimal
    safebootnetwork
    activex
    drivers32
    %SYSTEMDRIVE%\*.exe
    %systemroot%\*. /mp /s
    c:\$recycle.bin\*.* /s
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs
    /md5start
    eventlog.dll
    scecli.dll
    netlogon.dll
    cngaudit.dll
    sceclt.dll
    ntelogon.dll
    logevent.dll
    iaStor.sys
    nvstor.sys
    nvstor32.sys
    atapi.sys
    IdeChnDr.sys
    viasraid.sys
    AGP440.sys
    vaxscsi.sys
    nvatabus.sys
    viamraid.sys
    nvata.sys
    nvgts.sys
    iastorv.sys
    ViPrt.sys
    eNetHook.dll
    explorer.exe
    svchost.exe
    userinit.exe
    qmgr.dll
    ws2_32.dll
    proquota.exe
    imm32.dll
    kernel32.dll
    ndis.sys
    autochk.exe
    spoolsv.exe
    xmlprov.dll
    ntmssvc.dll
    mswsock.dll
    Beep.SYS
    ntfs.sys
    termsrv.dll
    sfcfiles.dll
    st3shark.sys
    ahcix86.sys
    srsvc.dll
    nvrd32.sys
    /md5stop
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %SYSTEMDRIVE%\*.*
    %userprofile%\Desktop\*.*
    %userprofile%\Desktop\*.


  • Click the Run Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
    • When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
    • Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time, and post it with your next reply. You may need two posts to fit them all in.

Posted Image
watch me and tremble, for I bring the purity of oblivion
Sudo apt-get me a sandwich!
Proud graduate of GeekU

#8 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 16 January 2010 - 02:37 AM

Here is OTL.txt:

OTL logfile created on: 10-01-16 10:58:21 - Run 1
OTL by OldTimer - Version 3.1.25.1 Folder = C:\Documents and Settings\Behrooz\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: yy-MM-dd

1,023.00 Mb Total Physical Memory | 542.00 Mb Available Physical Memory | 53.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 79.00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29.29 Gb Total Space | 21.09 Gb Free Space | 71.99% Space Free | Partition Type: NTFS
Drive D: | 45.23 Gb Total Space | 16.13 Gb Free Space | 35.66% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 962.07 Mb Total Space | 121.81 Mb Free Space | 12.66% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SBU-8C1C143C569
Current User Name: Behrooz
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Behrooz\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe (VIP Quality Software, Ltd)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe (Yahoo! Inc.)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\shstat.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (McAfee, Inc.)
PRC - C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing LP)
PRC - C:\Program Files\McAfee\Common Framework\naPrdMgr.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\Common Framework\UdaterUI.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\Common Framework\FrameworkService.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\Common Framework\Mctray.exe (McAfee, Inc.)
PRC - C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe (The Firebird Project)
PRC - C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe (The Firebird Project)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe (Adobe Systems Inc.)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard)
PRC - C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe ()


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Behrooz\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\FlashGet\fgmgr.dll (www.flashget.com)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\linkinfo.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (VIPBridgeService) -- C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe (VIP Quality Software, Ltd)
SRV - (NBService) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (Nero AG)
SRV - (NMIndexingService) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG)
SRV - (McShield) -- C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (McAfee, Inc.)
SRV - (McTaskManager) -- C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (McAfee, Inc.)
SRV - (McAfeeFramework) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe (McAfee, Inc.)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (FirebirdServerDefaultInstance) -- C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe (The Firebird Project)
SRV - (FirebirdGuardianDefaultInstance) -- C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe (The Firebird Project)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\hpzipm12.exe (HP)


========== Driver Services (SafeList) ==========

DRV - (mfehidk) -- C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
DRV - (mfeavfk) -- C:\WINDOWS\system32\drivers\mfeavfk.sys (McAfee, Inc.)
DRV - (mfeapfk) -- C:\WINDOWS\system32\drivers\mfeapfk.sys (McAfee, Inc.)
DRV - (mfetdik) -- C:\WINDOWS\system32\drivers\mfetdik.sys (McAfee, Inc.)
DRV - (mfebopk) -- C:\WINDOWS\system32\drivers\mfebopk.sys (McAfee, Inc.)
DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys ()
DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (SoC PC-Camera Service) -- C:\WINDOWS\system32\drivers\PFC027.sys ()
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.limoonat.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local



O1 HOSTS File: (27 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Flashget Catch Url Class) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\ScriptCl.dll (McAfee, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
O2 - BHO: (gFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll ()
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
O3 - HKLM\..\Toolbar: (PatentHunter) - {BCB2344B-3D5B-46d7-861B-A8F27E4FE602} - C:\Program Files\PatentWizard, LLC\PatentHunter3\PHToolBand.dll (ISF)
O3 - HKLM\..\Toolbar: (FlashGet) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (PatentHunter) - {BCB2344B-3D5B-46D7-861B-A8F27E4FE602} - C:\Program Files\PatentWizard, LLC\PatentHunter3\PHToolBand.dll (ISF)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\UdaterUI.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [ShStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (McAfee, Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard)
O4 - HKLM..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe (Hewlett-Packard)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe (Adobe Systems Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk = C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing LP)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.36 192.168.254.31 192.168.254.44
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007-08-04 16:17:28 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001-12-07 19:49:34 | 00,000,526 | RHS- | M] () - G:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2007-08-04 16:16:49 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4b218e3e-bc98-4770-93d3-2731b9329278} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - Reg Error: Value error.
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

========== Files/Folders - Created Within 30 Days ==========

[2010-01-16 10:36:03 | 00,547,328 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Behrooz\Desktop\OTL.exe
[2010-01-10 17:29:10 | 00,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2010-01-10 17:29:10 | 00,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2010-01-10 17:29:09 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe
[2010-01-10 17:28:51 | 00,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2010-01-10 17:28:50 | 00,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2010-01-10 17:28:49 | 00,019,455 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wvchntxx.sys
[2010-01-10 17:28:46 | 00,012,063 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wsiintxx.sys
[2010-01-10 17:28:45 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2010-01-10 17:28:28 | 00,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys
[2010-01-10 17:28:26 | 00,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2010-01-10 17:28:26 | 00,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2010-01-10 17:28:21 | 00,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2010-01-10 17:28:19 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll
[2010-01-10 17:28:19 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll
[2010-01-10 17:28:16 | 00,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys
[2010-01-10 17:28:16 | 00,023,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wch7xxnt.sys
[2010-01-10 17:28:15 | 00,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2010-01-10 17:28:15 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2010-01-10 17:28:12 | 00,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv10nt.sys
[2010-01-10 17:28:12 | 00,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv06nt.sys
[2010-01-10 17:28:11 | 00,033,599 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv04nt.sys
[2010-01-10 17:28:10 | 00,019,551 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv02nt.sys
[2010-01-10 17:28:09 | 00,029,311 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv01nt.sys
[2010-01-10 17:28:08 | 00,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv11nt.sys
[2010-01-10 17:28:07 | 00,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv09nt.sys
[2010-01-10 17:28:07 | 00,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv08nt.sys
[2010-01-10 17:28:06 | 00,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv07nt.sys
[2010-01-10 17:28:05 | 00,011,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv05nt.sys
[2010-01-10 17:28:04 | 00,012,127 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv02nt.sys
[2010-01-10 17:28:03 | 00,012,415 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv01nt.sys
[2010-01-10 17:28:02 | 00,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wacompen.sys
[2010-01-10 17:28:01 | 00,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2010-01-10 17:28:01 | 00,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2010-01-10 17:28:01 | 00,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2010-01-10 17:27:58 | 00,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2010-01-10 17:27:57 | 00,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2010-01-10 17:27:57 | 00,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2010-01-10 17:27:56 | 00,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2010-01-10 17:27:55 | 00,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys
[2010-01-10 17:27:54 | 00,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaagp.sys
[2010-01-10 17:27:54 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaide.sys
[2010-01-10 17:27:52 | 00,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\vchnt5.dll
[2010-01-10 17:27:51 | 00,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys
[2010-01-10 17:27:50 | 00,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2010-01-10 17:27:50 | 00,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys
[2010-01-10 17:27:49 | 00,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys
[2010-01-10 17:27:49 | 00,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys
[2010-01-10 17:27:48 | 00,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2010-01-10 17:27:48 | 00,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2010-01-10 17:27:47 | 00,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2010-01-10 17:27:46 | 00,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2010-01-10 17:27:45 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2010-01-10 17:27:45 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbuhci.sys
[2010-01-10 17:27:44 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2010-01-10 17:27:44 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010-01-10 17:27:43 | 00,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2010-01-10 17:27:42 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2010-01-10 17:27:41 | 00,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2010-01-10 17:27:38 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll
[2010-01-10 17:27:38 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll
[2010-01-10 17:27:37 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll
[2010-01-10 17:27:37 | 00,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2010-01-10 17:27:37 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll
[2010-01-10 17:27:36 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll
[2010-01-10 17:27:36 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll
[2010-01-10 17:27:36 | 00,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys
[2010-01-10 17:27:35 | 00,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2010-01-10 17:27:35 | 00,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2010-01-10 17:27:34 | 00,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ultra.sys
[2010-01-10 17:27:33 | 00,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uagp35.sys
[2010-01-10 17:27:32 | 00,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys
[2010-01-10 17:27:30 | 00,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2010-01-10 17:27:29 | 00,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2010-01-10 17:27:29 | 00,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2010-01-10 17:27:28 | 00,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2010-01-10 17:27:28 | 00,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2010-01-10 17:27:28 | 00,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2010-01-10 17:27:27 | 00,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll
[2010-01-10 17:27:27 | 00,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys
[2010-01-10 17:27:26 | 00,082,432 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe
[2010-01-10 17:27:25 | 00,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll
[2010-01-10 17:27:24 | 00,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys
[2010-01-10 17:27:24 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\toside.sys
[2010-01-10 17:27:23 | 00,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys
[2010-01-10 17:27:23 | 00,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys
[2010-01-10 17:27:21 | 00,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2010-01-10 17:27:20 | 00,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2010-01-10 17:27:20 | 00,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2010-01-10 17:27:18 | 00,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2010-01-10 17:27:17 | 00,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2010-01-10 17:27:17 | 00,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2010-01-10 17:27:15 | 00,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys
[2010-01-10 17:27:13 | 00,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2010-01-10 17:27:13 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys
[2010-01-10 17:27:12 | 00,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2010-01-10 17:27:09 | 00,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\symc8xx.sys
[2010-01-10 17:27:09 | 00,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_u3.sys
[2010-01-10 17:27:09 | 00,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS\System32\dllcache\symc810.sys
[2010-01-10 17:27:08 | 00,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll
[2010-01-10 17:27:08 | 00,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_hi.sys
[2010-01-10 17:27:07 | 00,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys
[2010-01-10 17:27:07 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[2010-01-10 17:27:07 | 00,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys
[2010-01-10 17:27:06 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll
[2010-01-10 17:27:06 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll
[2010-01-10 17:27:06 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll
[2010-01-10 17:27:04 | 00,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2010-01-10 17:27:04 | 00,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2010-01-10 17:27:03 | 00,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2010-01-10 17:27:02 | 00,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2010-01-10 17:27:00 | 00,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2010-01-10 17:26:59 | 00,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll
[2010-01-10 17:26:56 | 00,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll
[2010-01-10 17:26:54 | 00,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll
[2010-01-10 17:26:54 | 00,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys
[2010-01-10 17:26:53 | 00,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2010-01-10 17:26:53 | 00,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys
[2010-01-10 17:26:52 | 00,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll
[2010-01-10 17:26:52 | 00,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys
[2010-01-10 17:26:51 | 00,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys
[2010-01-10 17:26:51 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys
[2010-01-10 17:26:50 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys
[2010-01-10 17:26:50 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys
[2010-01-10 17:26:43 | 00,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2010-01-10 17:26:42 | 00,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2010-01-10 17:26:41 | 00,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2010-01-10 17:26:41 | 00,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2010-01-10 17:26:40 | 00,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2010-01-10 17:26:40 | 00,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys
[2010-01-10 17:26:39 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys
[2010-01-10 17:26:39 | 00,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys
[2010-01-10 17:26:38 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll
[2010-01-10 17:26:38 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbali.sys
[2010-01-10 17:26:37 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll
[2010-01-10 17:26:36 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll
[2010-01-10 17:26:35 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll
[2010-01-10 17:26:32 | 00,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slwdmsup.sys
[2010-01-10 17:26:31 | 00,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slserv.exe
[2010-01-10 17:26:31 | 00,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slrundll.exe
[2010-01-10 17:26:30 | 00,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slntamr.sys
[2010-01-10 17:26:30 | 00,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnthal.sys
[2010-01-10 17:26:29 | 00,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slgen.dll
[2010-01-10 17:26:29 | 00,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnt7554.sys
[2010-01-10 17:26:28 | 00,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slextspk.dll
[2010-01-10 17:26:28 | 00,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slcoinst.dll
[2010-01-10 17:26:27 | 00,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2010-01-10 17:26:27 | 00,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2010-01-10 17:26:26 | 00,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll
[2010-01-10 17:26:26 | 00,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2010-01-10 17:26:25 | 00,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys
[2010-01-10 17:26:24 | 00,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll
[2010-01-10 17:26:24 | 00,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys
[2010-01-10 17:26:24 | 00,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2010-01-10 17:26:23 | 00,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll
[2010-01-10 17:26:23 | 00,041,088 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisagp.sys
[2010-01-10 17:26:22 | 00,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll
[2010-01-10 17:26:22 | 00,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys
[2010-01-10 17:26:22 | 00,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys
[2010-01-10 17:26:21 | 00,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\siint5.dll
[2010-01-10 17:26:14 | 00,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2010-01-10 17:26:13 | 00,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2010-01-10 17:26:13 | 00,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2010-01-10 17:26:13 | 00,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2010-01-10 17:26:12 | 00,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys
[2010-01-10 17:26:10 | 00,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys
[2010-01-10 17:26:10 | 00,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2010-01-10 17:26:07 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys
[2010-01-10 17:26:07 | 00,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys
[2010-01-10 17:26:06 | 00,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys
[2010-01-10 17:26:05 | 00,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2010-01-10 17:26:05 | 00,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys
[2010-01-10 17:26:04 | 00,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2010-01-10 17:26:03 | 00,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2010-01-10 17:26:02 | 00,043,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys
[2010-01-10 17:26:01 | 00,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll
[2010-01-10 17:26:00 | 00,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys
[2010-01-10 17:25:59 | 00,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll
[2010-01-10 17:25:59 | 00,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2010-01-10 17:25:58 | 00,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2010-01-10 17:25:58 | 00,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2010-01-10 17:25:58 | 00,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2010-01-10 17:25:57 | 00,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2010-01-10 17:25:57 | 00,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2010-01-10 17:25:57 | 00,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2010-01-10 17:25:56 | 00,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2010-01-10 17:25:56 | 00,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2010-01-10 17:25:55 | 00,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnbm.sys
[2010-01-10 17:25:55 | 00,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys
[2010-01-10 17:25:54 | 00,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnb.dll
[2010-01-10 17:25:54 | 00,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2010-01-10 17:25:53 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2010-01-10 17:25:52 | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2010-01-10 17:25:52 | 00,024,576 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2010-01-10 17:25:50 | 00,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys
[2010-01-10 17:25:50 | 00,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys
[2010-01-10 17:25:48 | 00,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2010-01-10 17:25:47 | 00,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys
[2010-01-10 17:25:45 | 00,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2010-01-10 17:25:44 | 00,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2010-01-10 17:25:44 | 00,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rndismpx.sys
[2010-01-10 17:25:42 | 00,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2010-01-10 17:25:42 | 00,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rfcomm.sys
[2010-01-10 17:25:38 | 00,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\recagent.sys
[2010-01-10 17:25:35 | 00,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys
[2010-01-10 17:25:33 | 00,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2010-01-10 17:25:33 | 00,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2010-01-10 17:25:32 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll
[2010-01-10 17:25:32 | 00,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys
[2010-01-10 17:25:29 | 00,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1280.sys
[2010-01-10 17:25:29 | 00,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql12160.sys
[2010-01-10 17:25:29 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql1240.sys
[2010-01-10 17:25:28 | 00,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1080.sys
[2010-01-10 17:25:28 | 00,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql10wnt.sys
[2010-01-10 17:25:27 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys
[2010-01-10 17:25:25 | 00,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2010-01-10 17:25:25 | 00,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2010-01-10 17:25:24 | 00,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2010-01-10 17:25:23 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll
[2010-01-10 17:25:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll
[2010-01-10 17:25:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll
[2010-01-10 17:25:21 | 00,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2010-01-10 17:25:18 | 00,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys
[2010-01-10 17:25:18 | 00,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys
[2010-01-10 17:25:18 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powerfil.sys
[2010-01-10 17:25:17 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys
[2010-01-10 17:25:14 | 00,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2010-01-10 17:25:14 | 00,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys
[2010-01-10 17:25:13 | 00,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys
[2010-01-10 17:25:13 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys
[2010-01-10 17:25:12 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax
[2010-01-10 17:25:12 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys
[2010-01-10 17:25:12 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll
[2010-01-10 17:25:11 | 00,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll
[2010-01-10 17:25:10 | 00,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll
[2010-01-10 17:25:10 | 00,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys
[2010-01-10 17:25:09 | 00,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys
[2010-01-10 17:25:08 | 00,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2.sys
[2010-01-10 17:25:08 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2hib.sys
[2010-01-10 17:25:07 | 00,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys
[2010-01-10 17:25:06 | 00,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2010-01-10 17:25:06 | 00,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys
[2010-01-10 17:25:06 | 00,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys
[2010-01-10 17:25:05 | 00,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys
[2010-01-10 17:25:05 | 00,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2010-01-10 17:25:04 | 00,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2010-01-10 17:25:04 | 00,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2010-01-10 17:25:01 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll
[2010-01-10 17:25:00 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll
[2010-01-10 17:25:00 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe
[2010-01-10 17:25:00 | 00,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys
[2010-01-10 17:24:59 | 00,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys
[2010-01-10 17:24:59 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll
[2010-01-10 17:24:59 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll
[2010-01-10 17:24:58 | 00,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys
[2010-01-10 17:24:58 | 00,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys
[2010-01-10 17:24:57 | 00,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2010-01-10 17:24:57 | 00,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys
[2010-01-10 17:24:57 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys
[2010-01-10 17:24:56 | 00,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2010-01-10 17:24:56 | 00,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2010-01-10 17:24:55 | 00,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2010-01-10 17:24:52 | 00,061,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ohci1394.sys
[2010-01-10 17:24:49 | 01,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2010-01-10 17:24:48 | 04,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2010-01-10 17:24:48 | 00,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys
[2010-01-10 17:24:48 | 00,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll
[2010-01-10 17:24:46 | 00,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\ntmtlfax.sys
[2010-01-10 17:24:43 | 02,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010-01-10 17:24:42 | 00,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2010-01-10 17:24:41 | 00,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys
[2010-01-10 17:24:40 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys
[2010-01-10 17:24:38 | 00,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys
[2010-01-10 17:24:36 | 00,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2010-01-10 17:24:36 | 00,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2010-01-10 17:24:34 | 00,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys
[2010-01-10 17:24:33 | 00,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2010-01-10 17:24:30 | 00,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys
[2010-01-10 17:24:28 | 00,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2010-01-10 17:24:28 | 00,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2010-01-10 17:24:27 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys
[2010-01-10 17:24:25 | 00,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2010-01-10 17:24:25 | 00,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2010-01-10 17:24:25 | 00,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2010-01-10 17:24:24 | 00,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2010-01-10 17:24:23 | 00,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2010-01-10 17:24:23 | 00,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2010-01-10 17:24:22 | 00,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys
[2010-01-10 17:24:22 | 00,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys
[2010-01-10 17:24:21 | 00,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2010-01-10 17:24:21 | 00,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2010-01-10 17:24:21 | 00,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2010-01-10 17:24:20 | 00,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2010-01-10 17:24:20 | 00,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2010-01-10 17:24:19 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mutohpen.sys
[2010-01-10 17:24:18 | 00,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys
[2010-01-10 17:24:17 | 01,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhd.dll
[2010-01-10 17:24:17 | 00,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhm.sys
[2010-01-10 17:24:15 | 01,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlstrm.sys
[2010-01-10 17:24:14 | 00,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlmnt5.sys
[2010-01-10 17:24:08 | 00,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys
[2010-01-10 17:24:06 | 00,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys
[2010-01-10 17:24:00 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2010-01-10 17:23:59 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys
[2010-01-10 17:23:51 | 00,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys
[2010-01-10 17:23:50 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys
[2010-01-10 17:23:48 | 00,051,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2010-01-10 17:23:44 | 00,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2010-01-10 17:23:40 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2010-01-10 17:23:38 | 00,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys
[2010-01-10 17:23:37 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys
[2010-01-10 17:23:34 | 00,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys
[2010-01-10 17:23:32 | 00,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys
[2010-01-10 17:23:31 | 00,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll
[2010-01-10 17:23:30 | 00,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys
[2010-01-10 17:23:29 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll
[2010-01-10 17:23:29 | 00,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys
[2010-01-10 17:23:28 | 00,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2010-01-10 17:23:26 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys
[2010-01-10 17:23:25 | 00,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys
[2010-01-10 17:23:24 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll
[2010-01-10 17:23:24 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll
[2010-01-10 17:23:23 | 00,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys
[2010-01-10 17:23:23 | 00,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys
[2010-01-10 17:23:20 | 00,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2010-01-10 17:23:20 | 00,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2010-01-10 17:23:19 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys
[2010-01-10 17:23:18 | 00,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2010-01-10 17:23:18 | 00,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2010-01-10 17:23:18 | 00,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2010-01-10 17:23:17 | 00,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2010-01-10 17:23:16 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys
[2010-01-10 17:23:14 | 00,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2010-01-10 17:23:13 | 00,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2010-01-10 17:23:13 | 00,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2010-01-10 17:23:12 | 00,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2010-01-10 17:23:10 | 00,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2010-01-10 17:23:10 | 00,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2010-01-10 17:23:09 | 00,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2010-01-10 17:23:08 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll
[2010-01-10 17:23:06 | 00,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll
[2010-01-10 17:23:06 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll
[2010-01-10 17:22:59 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2010-01-10 17:22:53 | 00,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys
[2010-01-10 17:22:53 | 00,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys
[2010-01-10 17:22:52 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2010-01-10 17:22:51 | 00,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2010-01-10 17:22:51 | 00,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2010-01-10 17:22:50 | 00,087,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys
[2010-01-10 17:22:49 | 00,040,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irbus.sys
[2010-01-10 17:22:45 | 00,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll
[2010-01-10 17:22:45 | 00,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys
[2010-01-10 17:22:45 | 00,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys
[2010-01-10 17:22:43 | 00,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys
[2010-01-10 17:22:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\intelide.sys
[2010-01-10 17:22:42 | 00,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ini910u.sys
[2010-01-10 17:22:30 | 00,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2010-01-10 17:22:29 | 00,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys
[2010-01-10 17:22:28 | 00,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys
[2010-01-10 17:22:28 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll
[2010-01-10 17:22:28 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll
[2010-01-10 17:22:27 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll
[2010-01-10 17:22:27 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll
[2010-01-10 17:22:27 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll
[2010-01-10 17:22:26 | 00,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys
[2010-01-10 17:22:26 | 00,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys
[2010-01-10 17:22:25 | 00,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys
[2010-01-10 17:22:25 | 00,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys
[2010-01-10 17:22:25 | 00,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll
[2010-01-10 17:22:24 | 00,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys
[2010-01-10 17:22:22 | 00,702,845 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xdnt5.dll
[2010-01-10 17:22:22 | 00,161,020 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xnt5.sys
[2010-01-10 17:22:22 | 00,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys
[2010-01-10 17:22:21 | 00,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll
[2010-01-10 17:22:20 | 00,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omp.sys
[2010-01-10 17:22:19 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys
[2010-01-10 17:22:05 | 01,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfdpsp2.sys
[2010-01-10 17:22:04 | 00,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcxts2.sys
[2010-01-10 17:22:03 | 00,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcisp2.dll
[2010-01-10 17:22:02 | 00,488,383 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_v124.sys
[2010-01-10 17:22:02 | 00,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfbs2s2.sys
[2010-01-10 17:22:02 | 00,050,751 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_tone.sys
[2010-01-10 17:22:01 | 00,073,279 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_spkp.sys
[2010-01-10 17:22:01 | 00,044,863 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_soar.sys
[2010-01-10 17:22:00 | 00,542,879 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_msft.sys
[2010-01-10 17:22:00 | 00,057,471 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_samp.sys
[2010-01-10 17:21:59 | 00,391,199 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_k56k.sys
[2010-01-10 17:21:59 | 00,115,807 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fsks.sys
[2010-01-10 17:21:59 | 00,009,759 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_inst.dll
[2010-01-10 17:21:58 | 00,289,887 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fall.sys
[2010-01-10 17:21:58 | 00,199,711 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_faxx.sys
[2010-01-10 17:21:57 | 00,150,239 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_amos.sys
[2010-01-10 17:21:57 | 00,067,167 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_bsc2.sys
[2010-01-10 17:21:56 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hr1w.dll
[2010-01-10 17:21:56 | 00,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpt4qic.sys
[2010-01-10 17:21:55 | 00,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpojwia.dll
[2010-01-10 17:21:55 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpsjmcro.dll
[2010-01-10 17:21:54 | 00,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2010-01-10 17:21:54 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgtmcro.dll
[2010-01-10 17:21:54 | 00,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpn.sys
[2010-01-10 17:21:53 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt42tk.dll
[2010-01-10 17:21:52 | 00,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2010-01-10 17:21:52 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt33tk.dll
[2010-01-10 17:21:51 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt21tk.dll
[2010-01-10 17:21:50 | 00,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpdigwia.dll
[2010-01-10 17:21:48 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2010-01-10 17:21:48 | 00,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2010-01-10 17:21:47 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2010-01-10 17:21:46 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidir.sys
[2010-01-10 17:21:46 | 00,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidgame.sys
[2010-01-10 17:21:45 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbth.sys
[2010-01-10 17:21:45 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbatt.sys
[2010-01-10 17:21:43 | 00,907,456 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hcf_msft.sys
[2010-01-10 17:21:41 | 00,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2010-01-10 17:21:40 | 00,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2010-01-10 17:21:40 | 00,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2010-01-10 17:21:37 | 00,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2010-01-10 17:21:36 | 00,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400m.sys
[2010-01-10 17:21:36 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2010-01-10 17:21:35 | 01,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400d.dll
[2010-01-10 17:21:35 | 00,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200m.sys
[2010-01-10 17:21:34 | 00,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200d.dll
[2010-01-10 17:21:34 | 00,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2010-01-10 17:21:27 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fuusd.dll
[2010-01-10 17:21:26 | 00,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2010-01-10 17:21:26 | 00,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2010-01-10 17:21:24 | 00,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2010-01-10 17:21:23 | 00,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2010-01-10 17:21:22 | 00,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2010-01-10 17:21:20 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fnfilter.dll
[2010-01-10 17:21:20 | 00,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2010-01-10 17:21:18 | 00,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\dllcache\fetnd5.sys
[2010-01-10 17:21:17 | 00,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\fem556n5.sys
[2010-01-10 17:21:15 | 00,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2010-01-10 17:21:15 | 00,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS\System32\dllcache\fa312nd5.sys
[2010-01-10 17:21:14 | 00,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2010-01-10 17:21:14 | 00,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2010-01-10 17:21:12 | 00,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ex10.sys
[2010-01-10 17:21:12 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exabyte2.sys
[2010-01-10 17:21:09 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll
[2010-01-10 17:21:09 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll
[2010-01-10 17:21:08 | 00,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\essm2e.sys
[2010-01-10 17:21:08 | 00,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll
[2010-01-10 17:21:08 | 00,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll
[2010-01-10 17:21:07 | 00,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ess.sys
[2010-01-10 17:21:05 | 00,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56cvmp.sys
[2010-01-10 17:21:05 | 00,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56hpi.sys
[2010-01-10 17:21:05 | 00,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56tpi.sys
[2010-01-10 17:21:04 | 00,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es198x.sys
[2010-01-10 17:21:03 | 00,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2010-01-10 17:21:03 | 00,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1371mp.sys
[2010-01-10 17:21:03 | 00,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1370mp.sys
[2010-01-10 17:21:02 | 00,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnloop.exe
[2010-01-10 17:21:02 | 00,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnlogr.exe
[2010-01-10 17:21:01 | 00,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqn.sys
[2010-01-10 17:21:01 | 00,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epstw2k.sys
[2010-01-10 17:21:01 | 00,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqndiag.exe
[2010-01-10 17:21:00 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epcfw2k.sys
[2010-01-10 17:21:00 | 00,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\epro4.sys
[2010-01-10 17:20:59 | 00,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\emu10k1m.sys
[2010-01-10 17:20:59 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\enum1394.sys
[2010-01-10 17:20:58 | 00,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\elnk3.sys
[2010-01-10 17:20:58 | 00,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\em556n4.sys
[2010-01-10 17:20:57 | 00,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el99xn51.sys
[2010-01-10 17:20:57 | 00,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\elmsmc.sys
[2010-01-10 17:20:56 | 00,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS\System32\dllcache\el985n51.sys
[2010-01-10 17:20:56 | 00,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el98xn5.sys
[2010-01-10 17:20:55 | 00,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656se5.sys
[2010-01-10 17:20:55 | 00,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xnd5.sys
[2010-01-10 17:20:55 | 00,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xbc5.sys
[2010-01-10 17:20:54 | 00,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656ct5.sys
[2010-01-10 17:20:54 | 00,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656nd5.sys
[2010-01-10 17:20:53 | 00,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el575nd5.sys
[2010-01-10 17:20:53 | 00,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656cd5.sys
[2010-01-10 17:20:53 | 00,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el589nd5.sys
[2010-01-10 17:20:52 | 00,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el556nd5.sys
[2010-01-10 17:20:52 | 00,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el574nd4.sys
[2010-01-10 17:20:51 | 00,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el515.sys
[2010-01-10 17:20:50 | 00,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100b325.sys
[2010-01-10 17:20:50 | 00,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100isa4.sys
[2010-01-10 17:20:49 | 00,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e1000nt5.sys
[2010-01-10 17:20:44 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
[2010-01-10 17:20:43 | 00,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2010-01-10 17:20:41 | 00,020,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpti2o.sys
[2010-01-10 17:20:39 | 00,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2010-01-10 17:20:39 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4scan.sys
[2010-01-10 17:20:35 | 00,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2010-01-10 17:20:34 | 00,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2010-01-10 17:20:34 | 00,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlttape.sys
[2010-01-10 17:20:33 | 00,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2010-01-10 17:20:32 | 00,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2010-01-10 17:20:31 | 00,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2010-01-10 17:20:31 | 00,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2010-01-10 17:20:31 | 00,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2010-01-10 17:20:29 | 00,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2010-01-10 17:20:28 | 00,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiview.exe
[2010-01-10 17:20:28 | 00,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.dll
[2010-01-10 17:20:28 | 00,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.sys
[2010-01-10 17:20:27 | 00,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiinf.dll
[2010-01-10 17:20:27 | 00,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.dll
[2010-01-10 17:20:27 | 00,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.sys
[2010-01-10 17:20:26 | 00,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifwrk.dll
[2010-01-10 17:20:26 | 00,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digihlc.dll
[2010-01-10 17:20:26 | 00,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifep5.sys
[2010-01-10 17:20:25 | 00,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidbp.dll
[2010-01-10 17:20:25 | 00,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidxb.sys
[2010-01-10 17:20:25 | 00,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.sys
[2010-01-10 17:20:24 | 00,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.dll
[2010-01-10 17:20:22 | 00,419,357 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgconfig.dll
[2010-01-10 17:20:22 | 00,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\dgapci.sys
[2010-01-10 17:20:21 | 00,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2010-01-10 17:20:21 | 00,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2010-01-10 17:20:20 | 00,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devcon32.dll
[2010-01-10 17:20:20 | 00,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devldr32.exe
[2010-01-10 17:20:19 | 00,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2010-01-10 17:20:18 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddsmc.sys
[2010-01-10 17:20:17 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc260usd.dll
[2010-01-10 17:20:17 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc240usd.dll
[2010-01-10 17:20:17 | 00,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\dllcache\dc21x4.sys
[2010-01-10 17:20:16 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210usd.dll
[2010-01-10 17:20:16 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210_32.dll
[2010-01-10 17:20:14 | 00,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dac960nt.sys
[2010-01-10 17:20:13 | 00,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS\System32\dllcache\dac2w2k.sys
[2010-01-10 17:20:11 | 00,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\d100ib5.sys
[2010-01-10 17:20:11 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzports.dll
[2010-01-10 17:20:10 | 00,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzport.sys
[2010-01-10 17:20:10 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzcoins.dll
[2010-01-10 17:20:09 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyport.sys
[2010-01-10 17:20:09 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyycoins.dll
[2010-01-10 17:20:09 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyports.dll
[2010-01-10 17:20:09 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclom-y.sys
[2010-01-10 17:20:08 | 00,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2010-01-10 17:20:08 | 00,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2010-01-10 17:20:08 | 00,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclad-z.sys
[2010-01-10 17:20:07 | 00,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2010-01-10 17:20:07 | 00,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2010-01-10 17:20:07 | 00,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2010-01-10 17:20:06 | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2010-01-10 17:20:05 | 00,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctwdm32.dll
[2010-01-10 17:20:05 | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2010-01-10 17:20:04 | 00,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2010-01-10 17:20:04 | 00,096,256 | ---- | C] (Copyright © Creative Technology Ltd. 1994-2001) -- C:\WINDOWS\System32\dllcache\ctlsb16.sys
[2010-01-10 17:20:04 | 00,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctljystk.sys
[2010-01-10 17:20:03 | 00,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctlfacem.sys
[2010-01-10 17:20:02 | 00,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csamsp.dll
[2010-01-10 17:20:02 | 00,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\crtaud.sys
[2010-01-10 17:20:01 | 00,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2010-01-10 17:20:00 | 00,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys
[2010-01-10 17:20:00 | 00,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\cpqndis5.sys
[2010-01-10 17:20:00 | 00,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cpqarray.sys
[2010-01-10 17:19:55 | 00,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compbatt.sys
[2010-01-10 17:19:54 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnusd.dll
[2010-01-10 17:19:54 | 00,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\cnxt1803.sys
[2010-01-10 17:19:52 | 00,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS\System32\dllcache\cmdide.sys
[2010-01-10 17:19:51 | 00,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2010-01-10 17:19:51 | 00,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmbatt.sys
[2010-01-10 17:19:50 | 00,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546xm.sys
[2010-01-10 17:19:49 | 00,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546x.dll
[2010-01-10 17:19:49 | 00,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl5465.dll
[2010-01-10 17:19:48 | 00,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.dll
[2010-01-10 17:19:48 | 00,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.sys
[2010-01-10 17:19:47 | 00,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS\System32\dllcache\cinemclc.sys
[2010-01-10 17:19:45 | 00,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2010-01-10 17:19:42 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2010-01-10 17:19:41 | 00,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\ch7xxnt5.dll
[2010-01-10 17:19:40 | 00,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2010-01-10 17:19:39 | 00,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2010-01-10 17:19:39 | 00,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2010-01-10 17:19:39 | 00,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2010-01-10 17:19:38 | 00,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2010-01-10 17:19:36 | 00,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2010-01-10 17:19:36 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cd20xrnt.sys
[2010-01-10 17:19:35 | 00,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2010-01-10 17:19:35 | 00,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2010-01-10 17:19:34 | 00,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2010-01-10 17:19:33 | 00,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2010-01-10 17:19:33 | 00,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2010-01-10 17:19:32 | 00,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.dll
[2010-01-10 17:19:31 | 00,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.dll
[2010-01-10 17:19:31 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.ax
[2010-01-10 17:19:30 | 00,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.ax
[2010-01-10 17:19:30 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.dll
[2010-01-10 17:19:30 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.ax
[2010-01-10 17:19:29 | 00,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdro21.sys
[2010-01-10 17:19:29 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv21.sys
[2010-01-10 17:19:29 | 00,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv30.sys
[2010-01-10 17:19:15 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bulltlp3.sys
[2010-01-10 17:19:14 | 00,035,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthprint.sys
[2010-01-10 17:19:14 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthusb.sys
[2010-01-10 17:19:12 | 00,274,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010-01-10 17:19:12 | 00,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthpan.sys
[2010-01-10 17:19:12 | 00,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthmodem.sys
[2010-01-10 17:19:11 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthenum.sys
[2010-01-10 17:19:10 | 00,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2010-01-10 17:19:10 | 00,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2010-01-10 17:19:10 | 00,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2010-01-10 17:19:10 | 00,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2010-01-10 17:19:09 | 00,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2010-01-10 17:19:09 | 00,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2010-01-10 17:19:08 | 00,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2010-01-10 17:19:08 | 00,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2010-01-10 17:19:06 | 00,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2010-01-10 17:19:06 | 00,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2010-01-10 17:19:06 | 00,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2010-01-10 17:19:05 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brmfcwia.dll
[2010-01-10 17:19:05 | 00,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2010-01-10 17:19:04 | 00,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2010-01-10 17:19:04 | 00,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2010-01-10 17:19:04 | 00,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2010-01-10 17:19:03 | 00,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2010-01-10 17:19:03 | 00,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2010-01-10 17:19:03 | 00,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2010-01-10 17:19:01 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\binlsvc.dll
[2010-01-10 17:19:00 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2010-01-10 17:19:00 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2010-01-10 17:18:59 | 00,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2010-01-10 17:18:59 | 00,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42xx5.sys
[2010-01-10 17:18:59 | 00,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm4e5.sys
[2010-01-10 17:18:58 | 00,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42u.sys
[2010-01-10 17:18:57 | 00,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2010-01-10 17:18:57 | 00,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\battc.sys
[2010-01-10 17:18:56 | 00,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2010-01-10 17:18:56 | 00,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2010-01-10 17:18:56 | 00,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2010-01-10 17:18:55 | 00,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2010-01-10 17:18:54 | 00,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2010-01-10 17:18:54 | 00,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2010-01-10 17:18:54 | 00,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2010-01-10 17:18:52 | 00,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcaudio.sys
[2010-01-10 17:18:52 | 00,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcstrm.sys
[2010-01-10 17:18:51 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avc.sys
[2010-01-10 17:18:49 | 00,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv10nt5.dll
[2010-01-10 17:18:48 | 00,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv06nt5.dll
[2010-01-10 17:18:47 | 00,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv04nt5.dll
[2010-01-10 17:18:47 | 00,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv02nt5.dll
[2010-01-10 17:18:45 | 00,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv01nt5.dll
[2010-01-10 17:18:42 | 00,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativtmxx.dll
[2010-01-10 17:18:41 | 00,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativmvxx.ax
[2010-01-10 17:18:40 | 00,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativdaxx.ax
[2010-01-10 17:18:39 | 00,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiragem.sys
[2010-01-10 17:18:38 | 00,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiraged.dll
[2010-01-10 17:18:37 | 00,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxsxx.sys
[2010-01-10 17:18:36 | 00,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxbxx.sys
[2010-01-10 17:18:35 | 00,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atintuxx.sys
[2010-01-10 17:18:35 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinttxx.sys
[2010-01-10 17:18:34 | 00,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinsnxx.sys
[2010-01-10 17:18:33 | 00,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinrvxx.sys
[2010-01-10 17:18:32 | 00,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinraxx.sys
[2010-01-10 17:18:32 | 00,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinpdxx.sys
[2010-01-10 17:18:32 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinmdxx.sys
[2010-01-10 17:18:31 | 00,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimtai.sys
[2010-01-10 17:18:31 | 00,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinbtxx.sys
[2010-01-10 17:18:30 | 00,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpab.sys
[2010-01-10 17:18:30 | 00,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpae.sys
[2010-01-10 17:18:30 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atievxx.exe
[2010-01-10 17:18:29 | 00,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidvai.dll
[2010-01-10 17:18:29 | 00,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrae.dll
[2010-01-10 17:18:28 | 00,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrab.dll
[2010-01-10 17:18:27 | 00,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtaa.sys
[2010-01-10 17:18:26 | 00,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvaa.dll
[2010-01-10 17:18:25 | 00,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xsxx.sys
[2010-01-10 17:18:25 | 00,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xbxx.sys
[2010-01-10 17:18:24 | 00,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1tuxx.sys
[2010-01-10 17:18:23 | 00,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1rvxx.sys
[2010-01-10 17:18:23 | 00,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1snxx.sys
[2010-01-10 17:18:23 | 00,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1ttxx.sys
[2010-01-10 17:18:22 | 00,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1raxx.sys
[2010-01-10 17:18:22 | 00,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1pdxx.sys
[2010-01-10 17:18:21 | 00,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1mdxx.sys
[2010-01-10 17:18:20 | 00,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys
[2010-01-10 17:18:20 | 00,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1btxx.sys
[2010-01-10 17:18:19 | 00,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ati.dll
[2010-01-10 17:18:18 | 00,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2010-01-10 17:18:17 | 00,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc3550.sys
[2010-01-10 17:18:16 | 00,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc.sys
[2010-01-10 17:18:16 | 00,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asc3350p.sys
[2010-01-10 17:18:14 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\apmbatt.sys
[2010-01-10 17:18:13 | 00,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS\System32\dllcache\an983.sys
[2010-01-10 17:18:12 | 00,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\amsint.sys
[2010-01-10 17:18:11 | 00,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\dllcache\amdagp.sys
[2010-01-10 17:18:11 | 00,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2010-01-10 17:18:10 | 00,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\alim1541.sys
[2010-01-10 17:18:10 | 00,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\alifir.sys
[2010-01-10 17:18:10 | 00,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\aliide.sys
[2010-01-10 17:18:09 | 00,056,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78xx.sys
[2010-01-10 17:18:09 | 00,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ali5261.sys
[2010-01-10 17:18:08 | 00,055,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78u2.sys
[2010-01-10 17:18:08 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aha154x.sys
[2010-01-10 17:18:06 | 00,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agpcpq.sys
[2010-01-10 17:18:04 | 00,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agp440.sys
[2010-01-10 17:18:03 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax
[2010-01-10 17:18:02 | 00,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv11nt5.dll
[2010-01-10 17:18:01 | 00,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv09nt5.dll
[2010-01-10 17:18:00 | 00,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv07nt5.dll
[2010-01-10 17:18:00 | 00,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv08nt5.dll
[2010-01-10 17:17:58 | 00,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv02nt5.dll
[2010-01-10 17:17:58 | 00,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv05nt5.dll
[2010-01-10 17:17:57 | 00,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv01nt5.dll
[2010-01-10 17:17:55 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adpu160m.sys
[2010-01-10 17:17:55 | 00,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2010-01-10 17:17:54 | 00,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2010-01-10 17:17:53 | 00,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2010-01-10 17:17:53 | 00,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2010-01-10 17:17:52 | 00,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2010-01-10 17:17:52 | 00,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys
[2010-01-10 17:17:51 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys
[2010-01-10 17:17:50 | 00,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2010-01-10 17:17:49 | 00,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys
[2010-01-10 17:17:49 | 00,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys
[2010-01-10 17:17:48 | 00,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ac97intc.sys
[2010-01-10 17:17:47 | 00,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys
[2010-01-10 17:17:47 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys
[2010-01-10 17:17:46 | 00,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2010-01-10 17:17:45 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys
[2010-01-10 17:17:45 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll
[2010-01-10 17:17:44 | 00,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2010-01-10 17:17:44 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys
[2010-01-10 17:17:43 | 00,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2010-01-10 17:17:43 | 00,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2010-01-10 17:17:42 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys
[2010-01-10 17:17:41 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys
[2010-01-10 17:17:19 | 00,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll
[2010-01-10 17:17:11 | 02,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010-01-10 07:10:50 | 00,000,000 | ---D | C] -- C:\Program Files\Airgas_Full_Catalog
[2010-01-10 07:10:43 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010-01-03 14:13:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan
[2010-01-03 14:13:35 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
[2009-12-30 18:29:56 | 00,000,000 | ---D | C] -- C:\Program Files\Ideal Gas in 3D V2.01
[2009-12-30 18:29:46 | 00,000,000 | ---D | C] -- C:\Program Files\Electric Field V2.01
[2009-12-30 14:54:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Behrooz\Application Data\Malwarebytes
[2009-12-30 14:54:48 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-12-30 14:54:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009-12-30 14:54:45 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-12-30 14:54:45 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009-12-30 14:54:16 | 04,844,296 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Behrooz\Desktop\free_malware.exe
[2009-12-29 08:14:06 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2009-12-29 07:59:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\temp
[2009-12-29 07:54:00 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009-12-29 07:54:00 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009-12-29 07:54:00 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009-12-29 07:54:00 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009-12-29 07:53:52 | 00,000,000 | ---D | C] -- C:\ComboFix2
[2009-12-29 07:48:55 | 00,000,000 | ---D | C] -- C:\ComboFix
[2009-12-23 10:18:15 | 00,000,000 | ---D | C] -- C:\Patent Downloads
[2009-12-23 10:18:14 | 00,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2009-12-23 10:18:06 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcirt.dll.bak
[2009-12-23 10:18:06 | 00,000,000 | ---D | C] -- C:\Program Files\PatentWizard, LLC
[2009-12-23 08:28:29 | 00,472,064 | ---- | C] ( ) -- C:\Documents and Settings\Behrooz\Desktop\RootRepeal.exe
[2007-08-04 16:22:24 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2007-08-04 16:22:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2007-08-04 16:22:16 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2007-08-04 16:22:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010-01-16 10:36:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Behrooz\Desktop\OTL.exe
[2010-01-16 10:23:35 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-01-16 10:23:33 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-01-16 10:23:32 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-01-16 10:23:31 | 10,732,70784 | -HS- | M] () -- C:\hiberfil.sys
[2010-01-13 18:28:34 | 03,145,728 | -H-- | M] () -- C:\Documents and Settings\Behrooz\NTUSER.DAT
[2010-01-13 18:28:12 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Behrooz\ntuser.ini
[2010-01-13 07:55:28 | 00,001,635 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.zip
[2010-01-13 07:53:47 | 00,001,616 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.rar
[2010-01-11 08:19:21 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-11 08:18:42 | 00,014,848 | ---- | M] () -- C:\Documents and Settings\Behrooz\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-11 07:55:36 | 00,320,336 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-10 10:56:59 | 00,079,512 | ---- | M] () -- C:\Documents and Settings\Behrooz\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-01-10 07:32:03 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010-01-10 07:11:05 | 00,000,740 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Airgas_Full_Catalog.lnk
[2010-01-07 09:57:32 | 00,000,129 | ---- | M] () -- C:\Documents and Settings\Behrooz\default.pls
[2010-01-03 14:13:36 | 00,000,715 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan.lnk
[2010-01-03 14:13:36 | 00,000,707 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk
[2009-12-30 14:54:50 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009-12-30 14:54:23 | 04,844,296 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Behrooz\Desktop\free_malware.exe
[2009-12-29 07:58:10 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009-12-23 13:26:59 | 00,000,798 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\FullShot 9.lnk
[2009-12-23 10:18:15 | 00,001,829 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\PatentHunter 3.5.lnk
[2009-12-23 10:17:39 | 00,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2009-12-23 08:34:12 | 00,000,015 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\settings.dat
[2009-12-23 08:28:29 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Behrooz\Desktop\RootRepeal.exe
[2009-12-23 08:27:48 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\dds.scr
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010-01-13 07:55:28 | 00,001,635 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.zip
[2010-01-13 07:53:47 | 00,001,616 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.rar
[2010-01-10 17:29:10 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2010-01-10 17:29:09 | 00,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2010-01-10 17:25:22 | 00,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2010-01-10 17:25:21 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2010-01-10 17:23:49 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2010-01-10 17:21:53 | 00,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2010-01-10 17:21:53 | 00,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2010-01-10 17:21:52 | 00,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2010-01-10 17:21:51 | 00,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2010-01-10 17:21:51 | 00,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2010-01-10 17:20:33 | 00,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2010-01-10 17:20:33 | 00,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2010-01-10 17:20:32 | 00,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2010-01-10 17:18:44 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2010-01-10 17:18:44 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2010-01-10 17:18:43 | 00,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2010-01-10 17:18:41 | 00,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2010-01-10 17:18:40 | 00,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2010-01-10 17:18:40 | 00,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2010-01-10 17:18:39 | 00,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2010-01-10 17:18:39 | 00,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2010-01-10 17:18:38 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2010-01-10 17:18:28 | 00,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2010-01-10 07:32:03 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010-01-10 07:11:05 | 00,000,740 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Airgas_Full_Catalog.lnk
[2010-01-03 14:13:36 | 00,000,715 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan.lnk
[2010-01-03 14:13:36 | 00,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk
[2009-12-30 18:29:47 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\GkSui20.EXE
[2009-12-30 14:54:50 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009-12-29 07:54:00 | 00,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009-12-29 07:54:00 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009-12-29 07:54:00 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009-12-29 07:54:00 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009-12-29 07:54:00 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009-12-23 13:26:59 | 00,000,798 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\FullShot 9.lnk
[2009-12-23 10:18:15 | 00,001,829 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\PatentHunter 3.5.lnk
[2009-12-23 08:29:45 | 00,000,015 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\settings.dat
[2009-12-23 08:27:41 | 00,524,288 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\dds.scr
[2009-12-05 07:58:28 | 00,003,041 | ---- | C] () -- C:\WINDOWS\Analyze.INI
[2009-12-05 07:39:30 | 00,000,250 | ---- | C] () -- C:\WINDOWS\RAYFLEX.INI
[2009-12-05 07:38:25 | 00,034,304 | ---- | C] () -- C:\WINDOWS\System32\MUSCRL32.DLL
[2009-12-05 07:38:24 | 00,416,768 | ---- | C] () -- C:\WINDOWS\System32\DFORMD.DLL
[2009-12-05 07:38:24 | 00,410,112 | ---- | C] () -- C:\WINDOWS\System32\DFORRT.DLL
[2009-11-25 13:32:27 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009-11-23 17:10:32 | 00,014,848 | ---- | C] () -- C:\Documents and Settings\Behrooz\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-23 17:10:32 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007-08-04 18:09:06 | 00,000,280 | ---- | C] () -- C:\WINDOWS\System32\epoPGPsdk.dll.sig
[2007-08-04 17:52:18 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-08-04 17:44:20 | 00,017,620 | ---- | C] () -- C:\WINDOWS\hplj1010.ini
[2007-08-04 17:42:42 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini
[2004-08-04 03:37:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-08-04 03:37:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003-12-08 17:33:20 | 00,123,276 | ---- | C] () -- C:\WINDOWS\System32\drivers\PFC027.sys
[2003-08-29 12:53:49 | 00,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[2003-01-07 14:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2009-11-25 13:03:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Inbit
[2009-11-24 08:31:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VIP Quality Software
[2007-08-04 18:16:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2009-11-23 08:11:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\FlashFXP
[2009-11-23 12:26:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\GPass
[2009-11-23 12:28:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\GPass-3
[2009-11-25 13:06:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\Inbit

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >
[2009-11-19 21:39:46 | 00,393,528 | ---- | M] (Trend Micro Inc.) -- C:\HijackThis.exe

< %systemroot%\*. /mp /s >

< c:\$recycle.bin\*.* /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >


< MD5 for: AGP440.SYS >
[2004-08-04 03:37:00 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2004-08-03 23:07:42 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys

< MD5 for: ATAPI.SYS >
[2004-08-04 03:37:00 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004-08-04 03:37:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2004-08-04 03:37:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004-08-04 03:37:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2004-08-04 03:37:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\cmdcons\autochk.exe
[2004-08-04 03:37:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\system32\autochk.exe
[2004-08-04 03:37:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\system32\dllcache\autochk.exe

< MD5 for: BEEP.SYS >
[2004-08-04 03:37:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2004-08-04 03:37:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2004-08-04 03:37:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

< MD5 for: EVENTLOG.DLL >
[2004-08-04 03:37:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2004-08-04 03:37:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004-08-04 03:37:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2004-08-04 03:37:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2004-08-04 03:37:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\explorer.exe
[2004-08-04 03:37:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: IMM32.DLL >
[2004-08-04 03:37:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\ERDNT\cache\imm32.dll
[2004-08-04 03:37:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\system32\dllcache\imm32.dll
[2004-08-04 03:37:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\system32\imm32.dll

< MD5 for: KERNEL32.DLL >
[2004-08-04 03:37:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\ERDNT\cache\kernel32.dll
[2004-08-04 03:37:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\system32\dllcache\kernel32.dll
[2004-08-04 03:37:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\system32\kernel32.dll

< MD5 for: MSWSOCK.DLL >
[2004-08-04 03:37:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\ERDNT\cache\mswsock.dll
[2004-08-04 03:37:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\system32\dllcache\mswsock.dll
[2004-08-04 03:37:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\system32\mswsock.dll

< MD5 for: NDIS.SYS >
[2004-08-04 03:37:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2004-08-04 03:37:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004-08-04 03:37:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004-08-04 03:37:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2004-08-04 03:37:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004-08-04 03:37:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2004-08-03 23:15:10 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\cmdcons\NTFS.SYS
[2004-08-04 03:37:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\ERDNT\cache\ntfs.sys
[2004-08-04 03:37:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\system32\dllcache\ntfs.sys
[2004-08-04 03:37:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\system32\drivers\ntfs.sys

< MD5 for: NTMSSVC.DLL >
[2004-08-04 03:37:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\ERDNT\cache\ntmssvc.dll
[2004-08-04 03:37:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\system32\dllcache\ntmssvc.dll
[2004-08-04 03:37:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\system32\ntmssvc.dll

< MD5 for: PROQUOTA.EXE >
[2004-08-04 03:37:00 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=4D9D45A4370E0C2AD00C362B7118E2A4 -- C:\WINDOWS\system32\dllcache\proquota.exe
[2004-08-04 03:37:00 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=4D9D45A4370E0C2AD00C362B7118E2A4 -- C:\WINDOWS\system32\proquota.exe

< MD5 for: QMGR.DLL >
[2004-08-04 03:37:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\ERDNT\cache\qmgr.dll
[2004-08-04 03:37:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\system32\dllcache\qmgr.dll
[2004-08-04 03:37:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\system32\qmgr.dll

< MD5 for: SCECLI.DLL >
[2004-08-04 03:37:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2004-08-04 03:37:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004-08-04 03:37:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SFCFILES.DLL >
[2004-08-04 03:37:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\ERDNT\cache\sfcfiles.dll
[2004-08-04 03:37:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\system32\dllcache\sfcfiles.dll
[2004-08-04 03:37:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\system32\sfcfiles.dll

< MD5 for: SPOOLSV.EXE >
[2004-08-04 03:37:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\ERDNT\cache\spoolsv.exe
[2004-08-04 03:37:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2004-08-04 03:37:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\system32\spoolsv.exe

< MD5 for: SRSVC.DLL >
[2004-08-04 03:37:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\ERDNT\cache\srsvc.dll
[2004-08-04 03:37:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\system32\dllcache\srsvc.dll
[2004-08-04 03:37:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\system32\srsvc.dll

< MD5 for: SVCHOST.EXE >
[2004-08-04 03:37:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2004-08-04 03:37:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004-08-04 03:37:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TERMSRV.DLL >
[2004-08-04 03:37:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\ERDNT\cache\termsrv.dll
[2004-08-04 03:37:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\system32\dllcache\termsrv.dll
[2004-08-04 03:37:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\system32\termsrv.dll

< MD5 for: USERINIT.EXE >
[2004-08-04 03:37:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2004-08-04 03:37:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004-08-04 03:37:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WS2_32.DLL >
[2004-08-04 03:37:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2004-08-04 03:37:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004-08-04 03:37:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\ws2_32.dll

< MD5 for: XMLPROV.DLL >
[2004-08-04 03:37:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\ERDNT\cache\xmlprov.dll
[2004-08-04 03:37:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\system32\dllcache\xmlprov.dll
[2004-08-04 03:37:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\system32\xmlprov.dll

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %SYSTEMDRIVE%\*.* >
[2007-08-04 16:17:28 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009-11-23 10:58:22 | 00,000,245 | ---- | M] () -- C:\Boot.bak
[2009-11-24 12:14:06 | 00,000,309 | RHS- | M] () -- C:\boot.ini
[2004-08-03 23:00:00 | 00,260,272 | ---- | M] () -- C:\cmldr
[2009-12-29 07:59:34 | 00,010,671 | ---- | M] () -- C:\ComboFix.txt
[2009-12-01 10:26:16 | 00,011,028 | ---- | M] () -- C:\ComboFix2.txt
[2007-08-04 16:17:28 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-01-16 10:23:31 | 10,732,70784 | -HS- | M] () -- C:\hiberfil.sys
[2009-11-19 21:39:46 | 00,393,528 | ---- | M] (Trend Micro Inc.) -- C:\HijackThis.exe
[2009-12-05 09:54:04 | 00,007,069 | ---- | M] () -- C:\hijackthis.log
[2009-11-22 14:43:03 | 00,006,115 | ---- | M] () -- C:\hijackthis_from_C_Drive.log
[2007-08-04 16:17:28 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2007-08-04 16:17:28 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-04 03:37:00 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004-08-04 03:37:00 | 00,250,032 | RHS- | M] () -- C:\ntldr
[2010-01-16 10:23:29 | 80,530,6368 | -HS- | M] () -- C:\pagefile.sys
[2009-11-22 10:42:43 | 00,000,146 | ---- | M] () -- C:\YServer.txt

< %userprofile%\Desktop\*.* >
[2009-12-23 08:34:53 | 00,034,668 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\ark.txt
[2010-01-13 07:53:47 | 00,001,616 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.rar
[2010-01-13 07:53:31 | 00,003,645 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.txt
[2010-01-13 07:55:28 | 00,001,635 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.zip
[2009-12-23 08:27:48 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\dds.scr
[2010-01-13 07:53:03 | 00,011,067 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\DDS.txt
[2010-01-16 10:57:38 | 00,033,310 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Extras-f.Txt
[2010-01-16 10:52:29 | 00,033,310 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Extras.Txt
[2007-08-04 18:31:00 | 00,000,672 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\FlashGet.lnk
[2009-12-30 14:54:23 | 04,844,296 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Behrooz\Desktop\free_malware.exe
[2009-12-23 13:26:59 | 00,000,798 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\FullShot 9.lnk
[2010-01-16 10:57:29 | 00,223,130 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\OTL-f.Txt
[2010-01-16 10:36:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Behrooz\Desktop\OTL.exe
[2010-01-16 10:52:27 | 00,223,130 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\OTL.Txt
[2009-12-23 10:18:15 | 00,001,829 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\PatentHunter 3.5.lnk
[2009-12-23 08:28:29 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Behrooz\Desktop\RootRepeal.exe
[2009-12-23 08:34:12 | 00,000,015 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\settings.dat

< %userprofile%\Desktop\*. >

========== Files - Unicode (All) ==========
[2010-01-10 10:18:38 | 00,020,480 | ---- | M] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????2.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده2.doc
[2010-01-10 10:18:38 | 00,020,480 | ---- | C] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????2.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده2.doc
[2010-01-10 10:16:58 | 00,020,480 | ---- | M] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده.doc
[2010-01-10 10:16:26 | 00,020,480 | ---- | C] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده.doc
[2010-01-04 16:46:50 | 00,025,600 | ---- | M] ()(C:\Documents and Settings\Behrooz\My Documents\??? ?????? ?????.doc) -- C:\Documents and Settings\Behrooz\My Documents\پیش فاکتور محفظه.doc
[2010-01-04 16:25:38 | 00,025,600 | ---- | C] ()(C:\Documents and Settings\Behrooz\My Documents\??? ?????? ?????.doc) -- C:\Documents and Settings\Behrooz\My Documents\پیش فاکتور محفظه.doc
< End of report >

#9 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 16 January 2010 - 02:38 AM

Here is OTL.txt:

OTL logfile created on: 10-01-16 10:58:21 - Run 1
OTL by OldTimer - Version 3.1.25.1 Folder = C:\Documents and Settings\Behrooz\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: yy-MM-dd

1,023.00 Mb Total Physical Memory | 542.00 Mb Available Physical Memory | 53.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 79.00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29.29 Gb Total Space | 21.09 Gb Free Space | 71.99% Space Free | Partition Type: NTFS
Drive D: | 45.23 Gb Total Space | 16.13 Gb Free Space | 35.66% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 962.07 Mb Total Space | 121.81 Mb Free Space | 12.66% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SBU-8C1C143C569
Current User Name: Behrooz
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Behrooz\Desktop\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe (McAfee, Inc.)
PRC - C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe (VIP Quality Software, Ltd)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Yahoo!\Messenger\Ymsgr_tray.exe (Yahoo! Inc.)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexStoreSvr.exe (Nero AG)
PRC - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\shstat.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (McAfee, Inc.)
PRC - C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing LP)
PRC - C:\Program Files\McAfee\Common Framework\naPrdMgr.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\Common Framework\UdaterUI.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\Common Framework\FrameworkService.exe (McAfee, Inc.)
PRC - C:\Program Files\McAfee\Common Framework\Mctray.exe (McAfee, Inc.)
PRC - C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe (The Firebird Project)
PRC - C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe (The Firebird Project)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe (Adobe Systems Inc.)
PRC - C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
PRC - C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard)
PRC - C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe ()


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Behrooz\Desktop\OTL.exe (OldTimer Tools)
MOD - C:\Program Files\FlashGet\fgmgr.dll (www.flashget.com)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll (Microsoft Corporation)
MOD - C:\WINDOWS\system32\linkinfo.dll (Microsoft Corporation)


========== Win32 Services (SafeList) ==========

SRV - (VIPBridgeService) -- C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe (VIP Quality Software, Ltd)
SRV - (NBService) -- C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe (Nero AG)
SRV - (NMIndexingService) -- C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe (Nero AG)
SRV - (McShield) -- C:\Program Files\McAfee\VirusScan Enterprise\Mcshield.exe (McAfee, Inc.)
SRV - (McTaskManager) -- C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe (McAfee, Inc.)
SRV - (McAfeeFramework) -- C:\Program Files\McAfee\Common Framework\FrameworkService.exe (McAfee, Inc.)
SRV - (ose) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (FirebirdServerDefaultInstance) -- C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe (The Firebird Project)
SRV - (FirebirdGuardianDefaultInstance) -- C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe (The Firebird Project)
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\system32\hpzipm12.exe (HP)


========== Driver Services (SafeList) ==========

DRV - (mfehidk) -- C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
DRV - (mfeavfk) -- C:\WINDOWS\system32\drivers\mfeavfk.sys (McAfee, Inc.)
DRV - (mfeapfk) -- C:\WINDOWS\system32\drivers\mfeapfk.sys (McAfee, Inc.)
DRV - (mfetdik) -- C:\WINDOWS\system32\drivers\mfetdik.sys (McAfee, Inc.)
DRV - (mfebopk) -- C:\WINDOWS\system32\drivers\mfebopk.sys (McAfee, Inc.)
DRV - (Secdrv) -- C:\WINDOWS\system32\drivers\secdrv.sys ()
DRV - (Ptilink) -- C:\WINDOWS\system32\drivers\ptilink.sys (Parallel Technologies, Inc.)
DRV - (rtl8139) Realtek RTL8139(A/B/C) -- C:\WINDOWS\system32\drivers\RTL8139.sys (Realtek Semiconductor Corporation)
DRV - (ati2mtag) -- C:\WINDOWS\system32\drivers\ati2mtag.sys (ATI Technologies Inc.)
DRV - (SoC PC-Camera Service) -- C:\WINDOWS\system32\drivers\PFC027.sys ()
DRV - (ALCXWDM) Service for Realtek AC97 Audio (WDM) -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS (Realtek Semiconductor Corp.)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.limoonat.com

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = local



O1 HOSTS File: (27 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Flashget Catch Url Class) - {2F364306-AA45-47B5-9F9D-39A8B94E7EF7} - C:\Program Files\FlashGet\jccatch.dll (www.flashget.com)
O2 - BHO: (scriptproxy) - {7DB2D5A0-7241-4E79-B68D-6309F01C5231} - C:\Program Files\McAfee\VirusScan Enterprise\ScriptCl.dll (McAfee, Inc.)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O2 - BHO: (AcroIEToolbarHelper Class) - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
O2 - BHO: (gFlash Class) - {F156768E-81EF-470C-9057-481BA8380DBA} - C:\Program Files\FlashGet\getflash.dll ()
O3 - HKLM\..\Toolbar: (&Google) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
O3 - HKLM\..\Toolbar: (PatentHunter) - {BCB2344B-3D5B-46d7-861B-A8F27E4FE602} - C:\Program Files\PatentWizard, LLC\PatentHunter3\PHToolBand.dll (ISF)
O3 - HKLM\..\Toolbar: (FlashGet) - {E0E899AB-F487-11D5-8D29-0050BA6940E3} - C:\Program Files\FlashGet\fgiebar.dll (Amaze Soft)
O3 - HKCU\..\Toolbar\WebBrowser: (&Google) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - c:\Program Files\Google\GoogleToolbar1.dll (Google Inc.)
O3 - HKCU\..\Toolbar\WebBrowser: (Adobe PDF) - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Adobe\Acrobat 6.0\Acrobat\AcroIEFavClient.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (PatentHunter) - {BCB2344B-3D5B-46D7-861B-A8F27E4FE602} - C:\Program Files\PatentWizard, LLC\PatentHunter3\PHToolBand.dll (ISF)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [McAfeeUpdaterUI] C:\Program Files\McAfee\Common Framework\UdaterUI.exe (McAfee, Inc.)
O4 - HKLM..\Run: [MSPY2002] C:\WINDOWS\System32\IME\PINTLGNT\ImScInst.exe ()
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE (Microsoft Corporation)
O4 - HKLM..\Run: [ShStatEXE] C:\Program Files\McAfee\VirusScan Enterprise\SHSTAT.EXE (McAfee, Inc.)
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [StatusClient] C:\Program Files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe (Hewlett-Packard)
O4 - HKLM..\Run: [TomcatStartup] C:\Program Files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe (Hewlett-Packard)
O4 - HKCU..\Run: [BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe (Nero AG)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe (Google Inc.)
O4 - HKCU..\Run: [Yahoo! Pager] C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Acrobat Assistant.lnk = C:\Program Files\Adobe\Acrobat 6.0\Distillr\acrotray.exe (Adobe Systems Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk = C:\Program Files\McAfee Security Scan\1.0.150\SSScheduler.exe (McAfee, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing LP)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: &Download All with FlashGet - C:\Program Files\FlashGet\jc_all.htm ()
O8 - Extra context menu item: &Download with FlashGet - C:\Program Files\FlashGet\jc_link.htm ()
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - Reg Error: Value error. File not found
O9 - Extra Button: FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O9 - Extra 'Tools' menuitem : FlashGet - {D6E814A0-E0C5-11d4-8D29-0050BA6940E3} - C:\Program Files\FlashGet\flashget.exe (FlashGet.com)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shock...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.254.36 192.168.254.31 192.168.254.44
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2007-08-04 16:17:28 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001-12-07 19:49:34 | 00,000,526 | RHS- | M] () - G:\autorun.inf -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: Ias - C:\WINDOWS\system32\ias [2007-08-04 16:16:49 | 00,000,000 | ---D | M]
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Vector Graphics Rendering (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Dynamic HTML Data Binding for Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Offline Browsing Pack
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Advanced Authoring
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Internet Explorer Help
ActiveX: {4b218e3e-bc98-4770-93d3-2731b9329278} - %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection MarketplaceLinkInstall 896 %systemroot%\inf\ie.inf
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - DirectAnimation Java Classes
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.6
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Internet Explorer Setup Tools
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Browsing Enhancements
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - MSN Site Access
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73FA19D0-2D75-11D2-995D-00C04F98BBC9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - "%ProgramFiles%\Outlook Express\setup50.exe" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\system32\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Dynamic HTML Data Binding
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} -
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Internet Explorer Core Fonts
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Task Scheduler
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - HTML Help
ActiveX: {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - Reg Error: Value error.
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\WINDOWS\inf\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE

Drivers32: msacm.iac2 - C:\WINDOWS\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: MSVideo8 - C:\WINDOWS\System32\vfwwdm32.dll (Microsoft Corporation)
Drivers32: vidc.cvid - C:\WINDOWS\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS\System32\ir50_32.dll (Intel Corporation)

========== Files/Folders - Created Within 30 Days ==========

[2010-01-16 10:36:03 | 00,547,328 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Behrooz\Desktop\OTL.exe
[2010-01-10 17:29:10 | 00,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2010-01-10 17:29:10 | 00,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2010-01-10 17:29:09 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe
[2010-01-10 17:28:51 | 00,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2010-01-10 17:28:50 | 00,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2010-01-10 17:28:49 | 00,019,455 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wvchntxx.sys
[2010-01-10 17:28:46 | 00,012,063 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wsiintxx.sys
[2010-01-10 17:28:45 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2010-01-10 17:28:28 | 00,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys
[2010-01-10 17:28:26 | 00,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2010-01-10 17:28:26 | 00,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2010-01-10 17:28:21 | 00,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2010-01-10 17:28:19 | 00,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll
[2010-01-10 17:28:19 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll
[2010-01-10 17:28:16 | 00,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys
[2010-01-10 17:28:16 | 00,023,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wch7xxnt.sys
[2010-01-10 17:28:15 | 00,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2010-01-10 17:28:15 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2010-01-10 17:28:12 | 00,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv10nt.sys
[2010-01-10 17:28:12 | 00,022,271 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv06nt.sys
[2010-01-10 17:28:11 | 00,033,599 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv04nt.sys
[2010-01-10 17:28:10 | 00,019,551 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv02nt.sys
[2010-01-10 17:28:09 | 00,029,311 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\watv01nt.sys
[2010-01-10 17:28:08 | 00,011,935 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv11nt.sys
[2010-01-10 17:28:07 | 00,011,871 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv09nt.sys
[2010-01-10 17:28:07 | 00,011,295 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv08nt.sys
[2010-01-10 17:28:06 | 00,011,807 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv07nt.sys
[2010-01-10 17:28:05 | 00,011,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv05nt.sys
[2010-01-10 17:28:04 | 00,012,127 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv02nt.sys
[2010-01-10 17:28:03 | 00,012,415 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\wadv01nt.sys
[2010-01-10 17:28:02 | 00,013,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wacompen.sys
[2010-01-10 17:28:01 | 00,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2010-01-10 17:28:01 | 00,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2010-01-10 17:28:01 | 00,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2010-01-10 17:27:58 | 00,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2010-01-10 17:27:57 | 00,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2010-01-10 17:27:57 | 00,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2010-01-10 17:27:56 | 00,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2010-01-10 17:27:55 | 00,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys
[2010-01-10 17:27:54 | 00,042,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaagp.sys
[2010-01-10 17:27:54 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viaide.sys
[2010-01-10 17:27:52 | 00,011,325 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\vchnt5.dll
[2010-01-10 17:27:51 | 00,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys
[2010-01-10 17:27:50 | 00,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2010-01-10 17:27:50 | 00,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys
[2010-01-10 17:27:49 | 00,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys
[2010-01-10 17:27:49 | 00,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys
[2010-01-10 17:27:48 | 00,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2010-01-10 17:27:48 | 00,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2010-01-10 17:27:47 | 00,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2010-01-10 17:27:46 | 00,078,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbvideo.sys
[2010-01-10 17:27:45 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2010-01-10 17:27:45 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbuhci.sys
[2010-01-10 17:27:44 | 00,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys
[2010-01-10 17:27:44 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2010-01-10 17:27:43 | 00,059,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbaudio.sys
[2010-01-10 17:27:42 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usb8023x.sys
[2010-01-10 17:27:41 | 00,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2010-01-10 17:27:38 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll
[2010-01-10 17:27:38 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll
[2010-01-10 17:27:37 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll
[2010-01-10 17:27:37 | 00,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2010-01-10 17:27:37 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll
[2010-01-10 17:27:36 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll
[2010-01-10 17:27:36 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll
[2010-01-10 17:27:36 | 00,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys
[2010-01-10 17:27:35 | 00,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2010-01-10 17:27:35 | 00,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2010-01-10 17:27:34 | 00,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ultra.sys
[2010-01-10 17:27:33 | 00,044,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uagp35.sys
[2010-01-10 17:27:32 | 00,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys
[2010-01-10 17:27:30 | 00,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2010-01-10 17:27:29 | 00,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2010-01-10 17:27:29 | 00,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2010-01-10 17:27:28 | 00,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2010-01-10 17:27:28 | 00,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2010-01-10 17:27:28 | 00,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2010-01-10 17:27:27 | 00,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll
[2010-01-10 17:27:27 | 00,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys
[2010-01-10 17:27:26 | 00,082,432 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe
[2010-01-10 17:27:25 | 00,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll
[2010-01-10 17:27:24 | 00,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys
[2010-01-10 17:27:24 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\toside.sys
[2010-01-10 17:27:23 | 00,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys
[2010-01-10 17:27:23 | 00,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys
[2010-01-10 17:27:21 | 00,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2010-01-10 17:27:20 | 00,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2010-01-10 17:27:20 | 00,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2010-01-10 17:27:18 | 00,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2010-01-10 17:27:17 | 00,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2010-01-10 17:27:17 | 00,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2010-01-10 17:27:15 | 00,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys
[2010-01-10 17:27:13 | 00,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2010-01-10 17:27:13 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys
[2010-01-10 17:27:12 | 00,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2010-01-10 17:27:09 | 00,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\symc8xx.sys
[2010-01-10 17:27:09 | 00,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_u3.sys
[2010-01-10 17:27:09 | 00,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS\System32\dllcache\symc810.sys
[2010-01-10 17:27:08 | 00,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll
[2010-01-10 17:27:08 | 00,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS\System32\dllcache\sym_hi.sys
[2010-01-10 17:27:07 | 00,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys
[2010-01-10 17:27:07 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[2010-01-10 17:27:07 | 00,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys
[2010-01-10 17:27:06 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll
[2010-01-10 17:27:06 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll
[2010-01-10 17:27:06 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll
[2010-01-10 17:27:04 | 00,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2010-01-10 17:27:04 | 00,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2010-01-10 17:27:03 | 00,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2010-01-10 17:27:02 | 00,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2010-01-10 17:27:00 | 00,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2010-01-10 17:26:59 | 00,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll
[2010-01-10 17:26:56 | 00,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll
[2010-01-10 17:26:54 | 00,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll
[2010-01-10 17:26:54 | 00,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys
[2010-01-10 17:26:53 | 00,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS\System32\dllcache\sparrow.sys
[2010-01-10 17:26:53 | 00,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys
[2010-01-10 17:26:52 | 00,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll
[2010-01-10 17:26:52 | 00,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys
[2010-01-10 17:26:51 | 00,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys
[2010-01-10 17:26:51 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys
[2010-01-10 17:26:50 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys
[2010-01-10 17:26:50 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys
[2010-01-10 17:26:43 | 00,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2010-01-10 17:26:42 | 00,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2010-01-10 17:26:41 | 00,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2010-01-10 17:26:41 | 00,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2010-01-10 17:26:40 | 00,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2010-01-10 17:26:40 | 00,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys
[2010-01-10 17:26:39 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys
[2010-01-10 17:26:39 | 00,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys
[2010-01-10 17:26:38 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll
[2010-01-10 17:26:38 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbali.sys
[2010-01-10 17:26:37 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll
[2010-01-10 17:26:36 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll
[2010-01-10 17:26:35 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll
[2010-01-10 17:26:32 | 00,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slwdmsup.sys
[2010-01-10 17:26:31 | 00,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slserv.exe
[2010-01-10 17:26:31 | 00,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slrundll.exe
[2010-01-10 17:26:30 | 00,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slntamr.sys
[2010-01-10 17:26:30 | 00,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnthal.sys
[2010-01-10 17:26:29 | 00,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slgen.dll
[2010-01-10 17:26:29 | 00,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slnt7554.sys
[2010-01-10 17:26:28 | 00,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slextspk.dll
[2010-01-10 17:26:28 | 00,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\slcoinst.dll
[2010-01-10 17:26:27 | 00,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2010-01-10 17:26:27 | 00,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2010-01-10 17:26:26 | 00,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll
[2010-01-10 17:26:26 | 00,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2010-01-10 17:26:25 | 00,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys
[2010-01-10 17:26:24 | 00,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll
[2010-01-10 17:26:24 | 00,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys
[2010-01-10 17:26:24 | 00,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2010-01-10 17:26:23 | 00,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll
[2010-01-10 17:26:23 | 00,041,088 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisagp.sys
[2010-01-10 17:26:22 | 00,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll
[2010-01-10 17:26:22 | 00,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys
[2010-01-10 17:26:22 | 00,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys
[2010-01-10 17:26:21 | 00,003,901 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\siint5.dll
[2010-01-10 17:26:14 | 00,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2010-01-10 17:26:13 | 00,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2010-01-10 17:26:13 | 00,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2010-01-10 17:26:13 | 00,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2010-01-10 17:26:12 | 00,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys
[2010-01-10 17:26:10 | 00,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys
[2010-01-10 17:26:10 | 00,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2010-01-10 17:26:07 | 00,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys
[2010-01-10 17:26:07 | 00,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys
[2010-01-10 17:26:06 | 00,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys
[2010-01-10 17:26:05 | 00,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2010-01-10 17:26:05 | 00,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys
[2010-01-10 17:26:04 | 00,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2010-01-10 17:26:03 | 00,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2010-01-10 17:26:02 | 00,043,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys
[2010-01-10 17:26:01 | 00,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll
[2010-01-10 17:26:00 | 00,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys
[2010-01-10 17:25:59 | 00,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll
[2010-01-10 17:25:59 | 00,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2010-01-10 17:25:58 | 00,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2010-01-10 17:25:58 | 00,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2010-01-10 17:25:58 | 00,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2010-01-10 17:25:57 | 00,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2010-01-10 17:25:57 | 00,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2010-01-10 17:25:57 | 00,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2010-01-10 17:25:56 | 00,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2010-01-10 17:25:56 | 00,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2010-01-10 17:25:55 | 00,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnbm.sys
[2010-01-10 17:25:55 | 00,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys
[2010-01-10 17:25:54 | 00,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3gnb.dll
[2010-01-10 17:25:54 | 00,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2010-01-10 17:25:53 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2010-01-10 17:25:52 | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw450ext.dll
[2010-01-10 17:25:52 | 00,024,576 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2010-01-10 17:25:50 | 00,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys
[2010-01-10 17:25:50 | 00,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys
[2010-01-10 17:25:48 | 00,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2010-01-10 17:25:47 | 00,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys
[2010-01-10 17:25:45 | 00,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2010-01-10 17:25:44 | 00,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2010-01-10 17:25:44 | 00,030,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rndismpx.sys
[2010-01-10 17:25:42 | 00,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2010-01-10 17:25:42 | 00,059,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rfcomm.sys
[2010-01-10 17:25:38 | 00,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\recagent.sys
[2010-01-10 17:25:35 | 00,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys
[2010-01-10 17:25:33 | 00,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2010-01-10 17:25:33 | 00,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2010-01-10 17:25:32 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll
[2010-01-10 17:25:32 | 00,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys
[2010-01-10 17:25:29 | 00,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1280.sys
[2010-01-10 17:25:29 | 00,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql12160.sys
[2010-01-10 17:25:29 | 00,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql1240.sys
[2010-01-10 17:25:28 | 00,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS\System32\dllcache\ql1080.sys
[2010-01-10 17:25:28 | 00,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ql10wnt.sys
[2010-01-10 17:25:27 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys
[2010-01-10 17:25:25 | 00,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2010-01-10 17:25:25 | 00,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2010-01-10 17:25:24 | 00,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2010-01-10 17:25:23 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll
[2010-01-10 17:25:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll
[2010-01-10 17:25:22 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll
[2010-01-10 17:25:21 | 00,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2010-01-10 17:25:18 | 00,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys
[2010-01-10 17:25:18 | 00,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys
[2010-01-10 17:25:18 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powerfil.sys
[2010-01-10 17:25:17 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys
[2010-01-10 17:25:14 | 00,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2010-01-10 17:25:14 | 00,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys
[2010-01-10 17:25:13 | 00,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys
[2010-01-10 17:25:13 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys
[2010-01-10 17:25:12 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax
[2010-01-10 17:25:12 | 00,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys
[2010-01-10 17:25:12 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll
[2010-01-10 17:25:11 | 00,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll
[2010-01-10 17:25:10 | 00,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll
[2010-01-10 17:25:10 | 00,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys
[2010-01-10 17:25:09 | 00,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys
[2010-01-10 17:25:08 | 00,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2.sys
[2010-01-10 17:25:08 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\perc2hib.sys
[2010-01-10 17:25:07 | 00,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys
[2010-01-10 17:25:06 | 00,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2010-01-10 17:25:06 | 00,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys
[2010-01-10 17:25:06 | 00,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys
[2010-01-10 17:25:05 | 00,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys
[2010-01-10 17:25:05 | 00,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2010-01-10 17:25:04 | 00,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2010-01-10 17:25:04 | 00,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2010-01-10 17:25:01 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll
[2010-01-10 17:25:00 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll
[2010-01-10 17:25:00 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe
[2010-01-10 17:25:00 | 00,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys
[2010-01-10 17:24:59 | 00,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys
[2010-01-10 17:24:59 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll
[2010-01-10 17:24:59 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll
[2010-01-10 17:24:58 | 00,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys
[2010-01-10 17:24:58 | 00,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys
[2010-01-10 17:24:57 | 00,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2010-01-10 17:24:57 | 00,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys
[2010-01-10 17:24:57 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys
[2010-01-10 17:24:56 | 00,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2010-01-10 17:24:56 | 00,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2010-01-10 17:24:55 | 00,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2010-01-10 17:24:52 | 00,061,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ohci1394.sys
[2010-01-10 17:24:49 | 01,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2010-01-10 17:24:48 | 04,274,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2010-01-10 17:24:48 | 00,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys
[2010-01-10 17:24:48 | 00,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll
[2010-01-10 17:24:46 | 00,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\ntmtlfax.sys
[2010-01-10 17:24:43 | 02,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010-01-10 17:24:42 | 00,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2010-01-10 17:24:41 | 00,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys
[2010-01-10 17:24:40 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys
[2010-01-10 17:24:38 | 00,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys
[2010-01-10 17:24:36 | 00,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2010-01-10 17:24:36 | 00,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2010-01-10 17:24:34 | 00,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys
[2010-01-10 17:24:33 | 00,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2010-01-10 17:24:30 | 00,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys
[2010-01-10 17:24:28 | 00,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2010-01-10 17:24:28 | 00,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2010-01-10 17:24:27 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys
[2010-01-10 17:24:25 | 00,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2010-01-10 17:24:25 | 00,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2010-01-10 17:24:25 | 00,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2010-01-10 17:24:24 | 00,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2010-01-10 17:24:23 | 00,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2010-01-10 17:24:23 | 00,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2010-01-10 17:24:22 | 00,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys
[2010-01-10 17:24:22 | 00,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys
[2010-01-10 17:24:21 | 00,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2010-01-10 17:24:21 | 00,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2010-01-10 17:24:21 | 00,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2010-01-10 17:24:20 | 00,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2010-01-10 17:24:20 | 00,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2010-01-10 17:24:19 | 00,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mutohpen.sys
[2010-01-10 17:24:18 | 00,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys
[2010-01-10 17:24:17 | 01,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhd.dll
[2010-01-10 17:24:17 | 00,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mtxparhm.sys
[2010-01-10 17:24:15 | 01,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlstrm.sys
[2010-01-10 17:24:14 | 00,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\dllcache\mtlmnt5.sys
[2010-01-10 17:24:08 | 00,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys
[2010-01-10 17:24:06 | 00,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys
[2010-01-10 17:24:00 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2010-01-10 17:23:59 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys
[2010-01-10 17:23:51 | 00,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys
[2010-01-10 17:23:50 | 00,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys
[2010-01-10 17:23:48 | 00,051,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2010-01-10 17:23:44 | 00,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS\System32\dllcache\mraid35x.sys
[2010-01-10 17:23:40 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2010-01-10 17:23:38 | 00,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys
[2010-01-10 17:23:37 | 00,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\modemcsa.sys
[2010-01-10 17:23:34 | 00,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys
[2010-01-10 17:23:32 | 00,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys
[2010-01-10 17:23:31 | 00,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll
[2010-01-10 17:23:30 | 00,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys
[2010-01-10 17:23:29 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll
[2010-01-10 17:23:29 | 00,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys
[2010-01-10 17:23:28 | 00,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2010-01-10 17:23:26 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys
[2010-01-10 17:23:25 | 00,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys
[2010-01-10 17:23:24 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll
[2010-01-10 17:23:24 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll
[2010-01-10 17:23:23 | 00,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys
[2010-01-10 17:23:23 | 00,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys
[2010-01-10 17:23:20 | 00,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2010-01-10 17:23:20 | 00,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2010-01-10 17:23:19 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys
[2010-01-10 17:23:18 | 00,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2010-01-10 17:23:18 | 00,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2010-01-10 17:23:18 | 00,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2010-01-10 17:23:17 | 00,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2010-01-10 17:23:16 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys
[2010-01-10 17:23:14 | 00,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2010-01-10 17:23:13 | 00,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2010-01-10 17:23:13 | 00,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2010-01-10 17:23:12 | 00,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2010-01-10 17:23:10 | 00,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2010-01-10 17:23:10 | 00,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2010-01-10 17:23:09 | 00,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2010-01-10 17:23:08 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll
[2010-01-10 17:23:06 | 00,242,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll
[2010-01-10 17:23:06 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll
[2010-01-10 17:22:59 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2010-01-10 17:22:53 | 00,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys
[2010-01-10 17:22:53 | 00,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys
[2010-01-10 17:22:52 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2010-01-10 17:22:51 | 00,152,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2010-01-10 17:22:51 | 00,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2010-01-10 17:22:50 | 00,087,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys
[2010-01-10 17:22:49 | 00,040,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irbus.sys
[2010-01-10 17:22:45 | 00,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll
[2010-01-10 17:22:45 | 00,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys
[2010-01-10 17:22:45 | 00,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys
[2010-01-10 17:22:43 | 00,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys
[2010-01-10 17:22:43 | 00,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\intelide.sys
[2010-01-10 17:22:42 | 00,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ini910u.sys
[2010-01-10 17:22:30 | 00,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2010-01-10 17:22:29 | 00,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys
[2010-01-10 17:22:28 | 00,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys
[2010-01-10 17:22:28 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll
[2010-01-10 17:22:28 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll
[2010-01-10 17:22:27 | 00,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll
[2010-01-10 17:22:27 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll
[2010-01-10 17:22:27 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll
[2010-01-10 17:22:26 | 00,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys
[2010-01-10 17:22:26 | 00,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys
[2010-01-10 17:22:25 | 00,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys
[2010-01-10 17:22:25 | 00,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys
[2010-01-10 17:22:25 | 00,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll
[2010-01-10 17:22:24 | 00,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys
[2010-01-10 17:22:22 | 00,702,845 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xdnt5.dll
[2010-01-10 17:22:22 | 00,161,020 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\i81xnt5.sys
[2010-01-10 17:22:22 | 00,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys
[2010-01-10 17:22:21 | 00,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll
[2010-01-10 17:22:20 | 00,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omp.sys
[2010-01-10 17:22:19 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\i2omgmt.sys
[2010-01-10 17:22:05 | 01,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfdpsp2.sys
[2010-01-10 17:22:04 | 00,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcxts2.sys
[2010-01-10 17:22:03 | 00,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfcisp2.dll
[2010-01-10 17:22:02 | 00,488,383 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_v124.sys
[2010-01-10 17:22:02 | 00,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\hsfbs2s2.sys
[2010-01-10 17:22:02 | 00,050,751 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_tone.sys
[2010-01-10 17:22:01 | 00,073,279 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_spkp.sys
[2010-01-10 17:22:01 | 00,044,863 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_soar.sys
[2010-01-10 17:22:00 | 00,542,879 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_msft.sys
[2010-01-10 17:22:00 | 00,057,471 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_samp.sys
[2010-01-10 17:21:59 | 00,391,199 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_k56k.sys
[2010-01-10 17:21:59 | 00,115,807 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fsks.sys
[2010-01-10 17:21:59 | 00,009,759 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_inst.dll
[2010-01-10 17:21:58 | 00,289,887 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fall.sys
[2010-01-10 17:21:58 | 00,199,711 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_faxx.sys
[2010-01-10 17:21:57 | 00,150,239 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_amos.sys
[2010-01-10 17:21:57 | 00,067,167 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_bsc2.sys
[2010-01-10 17:21:56 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hr1w.dll
[2010-01-10 17:21:56 | 00,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpt4qic.sys
[2010-01-10 17:21:55 | 00,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpojwia.dll
[2010-01-10 17:21:55 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpsjmcro.dll
[2010-01-10 17:21:54 | 00,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2010-01-10 17:21:54 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgtmcro.dll
[2010-01-10 17:21:54 | 00,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpn.sys
[2010-01-10 17:21:53 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt42tk.dll
[2010-01-10 17:21:52 | 00,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2010-01-10 17:21:52 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt33tk.dll
[2010-01-10 17:21:51 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt21tk.dll
[2010-01-10 17:21:50 | 00,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpdigwia.dll
[2010-01-10 17:21:48 | 00,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys
[2010-01-10 17:21:48 | 00,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2010-01-10 17:21:47 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll
[2010-01-10 17:21:46 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidir.sys
[2010-01-10 17:21:46 | 00,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidgame.sys
[2010-01-10 17:21:45 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbth.sys
[2010-01-10 17:21:45 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbatt.sys
[2010-01-10 17:21:43 | 00,907,456 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hcf_msft.sys
[2010-01-10 17:21:41 | 00,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2010-01-10 17:21:40 | 00,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2010-01-10 17:21:40 | 00,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2010-01-10 17:21:37 | 00,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2010-01-10 17:21:36 | 00,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400m.sys
[2010-01-10 17:21:36 | 00,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2010-01-10 17:21:35 | 01,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400d.dll
[2010-01-10 17:21:35 | 00,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200m.sys
[2010-01-10 17:21:34 | 00,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200d.dll
[2010-01-10 17:21:34 | 00,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2010-01-10 17:21:27 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fuusd.dll
[2010-01-10 17:21:26 | 00,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2010-01-10 17:21:26 | 00,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2010-01-10 17:21:24 | 00,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2010-01-10 17:21:23 | 00,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2010-01-10 17:21:22 | 00,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2010-01-10 17:21:20 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fnfilter.dll
[2010-01-10 17:21:20 | 00,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2010-01-10 17:21:18 | 00,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\dllcache\fetnd5.sys
[2010-01-10 17:21:17 | 00,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\fem556n5.sys
[2010-01-10 17:21:15 | 00,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2010-01-10 17:21:15 | 00,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS\System32\dllcache\fa312nd5.sys
[2010-01-10 17:21:14 | 00,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2010-01-10 17:21:14 | 00,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2010-01-10 17:21:12 | 00,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ex10.sys
[2010-01-10 17:21:12 | 00,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exabyte2.sys
[2010-01-10 17:21:09 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll
[2010-01-10 17:21:09 | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll
[2010-01-10 17:21:08 | 00,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\essm2e.sys
[2010-01-10 17:21:08 | 00,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll
[2010-01-10 17:21:08 | 00,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll
[2010-01-10 17:21:07 | 00,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ess.sys
[2010-01-10 17:21:05 | 00,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56cvmp.sys
[2010-01-10 17:21:05 | 00,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56hpi.sys
[2010-01-10 17:21:05 | 00,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56tpi.sys
[2010-01-10 17:21:04 | 00,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es198x.sys
[2010-01-10 17:21:03 | 00,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2010-01-10 17:21:03 | 00,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1371mp.sys
[2010-01-10 17:21:03 | 00,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1370mp.sys
[2010-01-10 17:21:02 | 00,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnloop.exe
[2010-01-10 17:21:02 | 00,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnlogr.exe
[2010-01-10 17:21:01 | 00,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqn.sys
[2010-01-10 17:21:01 | 00,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epstw2k.sys
[2010-01-10 17:21:01 | 00,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqndiag.exe
[2010-01-10 17:21:00 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epcfw2k.sys
[2010-01-10 17:21:00 | 00,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\epro4.sys
[2010-01-10 17:20:59 | 00,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\emu10k1m.sys
[2010-01-10 17:20:59 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\enum1394.sys
[2010-01-10 17:20:58 | 00,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\elnk3.sys
[2010-01-10 17:20:58 | 00,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\em556n4.sys
[2010-01-10 17:20:57 | 00,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el99xn51.sys
[2010-01-10 17:20:57 | 00,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\elmsmc.sys
[2010-01-10 17:20:56 | 00,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS\System32\dllcache\el985n51.sys
[2010-01-10 17:20:56 | 00,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el98xn5.sys
[2010-01-10 17:20:55 | 00,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656se5.sys
[2010-01-10 17:20:55 | 00,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xnd5.sys
[2010-01-10 17:20:55 | 00,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xbc5.sys
[2010-01-10 17:20:54 | 00,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656ct5.sys
[2010-01-10 17:20:54 | 00,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656nd5.sys
[2010-01-10 17:20:53 | 00,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el575nd5.sys
[2010-01-10 17:20:53 | 00,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656cd5.sys
[2010-01-10 17:20:53 | 00,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el589nd5.sys
[2010-01-10 17:20:52 | 00,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el556nd5.sys
[2010-01-10 17:20:52 | 00,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el574nd4.sys
[2010-01-10 17:20:51 | 00,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el515.sys
[2010-01-10 17:20:50 | 00,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100b325.sys
[2010-01-10 17:20:50 | 00,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100isa4.sys
[2010-01-10 17:20:49 | 00,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e1000nt5.sys
[2010-01-10 17:20:44 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
[2010-01-10 17:20:43 | 00,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2010-01-10 17:20:41 | 00,020,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpti2o.sys
[2010-01-10 17:20:39 | 00,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2010-01-10 17:20:39 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4scan.sys
[2010-01-10 17:20:35 | 00,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2010-01-10 17:20:34 | 00,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2010-01-10 17:20:34 | 00,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlttape.sys
[2010-01-10 17:20:33 | 00,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2010-01-10 17:20:32 | 00,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2010-01-10 17:20:31 | 00,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2010-01-10 17:20:31 | 00,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2010-01-10 17:20:31 | 00,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2010-01-10 17:20:29 | 00,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2010-01-10 17:20:28 | 00,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiview.exe
[2010-01-10 17:20:28 | 00,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.dll
[2010-01-10 17:20:28 | 00,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.sys
[2010-01-10 17:20:27 | 00,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiinf.dll
[2010-01-10 17:20:27 | 00,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.dll
[2010-01-10 17:20:27 | 00,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.sys
[2010-01-10 17:20:26 | 00,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifwrk.dll
[2010-01-10 17:20:26 | 00,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digihlc.dll
[2010-01-10 17:20:26 | 00,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifep5.sys
[2010-01-10 17:20:25 | 00,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidbp.dll
[2010-01-10 17:20:25 | 00,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidxb.sys
[2010-01-10 17:20:25 | 00,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.sys
[2010-01-10 17:20:24 | 00,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.dll
[2010-01-10 17:20:22 | 00,419,357 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgconfig.dll
[2010-01-10 17:20:22 | 00,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\dgapci.sys
[2010-01-10 17:20:21 | 00,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2010-01-10 17:20:21 | 00,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2010-01-10 17:20:20 | 00,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devcon32.dll
[2010-01-10 17:20:20 | 00,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devldr32.exe
[2010-01-10 17:20:19 | 00,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2010-01-10 17:20:18 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddsmc.sys
[2010-01-10 17:20:17 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc260usd.dll
[2010-01-10 17:20:17 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc240usd.dll
[2010-01-10 17:20:17 | 00,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\dllcache\dc21x4.sys
[2010-01-10 17:20:16 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210usd.dll
[2010-01-10 17:20:16 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210_32.dll
[2010-01-10 17:20:14 | 00,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dac960nt.sys
[2010-01-10 17:20:13 | 00,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS\System32\dllcache\dac2w2k.sys
[2010-01-10 17:20:11 | 00,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\d100ib5.sys
[2010-01-10 17:20:11 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzports.dll
[2010-01-10 17:20:10 | 00,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzport.sys
[2010-01-10 17:20:10 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzcoins.dll
[2010-01-10 17:20:09 | 00,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyport.sys
[2010-01-10 17:20:09 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyycoins.dll
[2010-01-10 17:20:09 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyports.dll
[2010-01-10 17:20:09 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclom-y.sys
[2010-01-10 17:20:08 | 00,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2010-01-10 17:20:08 | 00,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2010-01-10 17:20:08 | 00,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclad-z.sys
[2010-01-10 17:20:07 | 00,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2010-01-10 17:20:07 | 00,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2010-01-10 17:20:07 | 00,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2010-01-10 17:20:06 | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2010-01-10 17:20:05 | 00,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctwdm32.dll
[2010-01-10 17:20:05 | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2010-01-10 17:20:04 | 00,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2010-01-10 17:20:04 | 00,096,256 | ---- | C] (Copyright © Creative Technology Ltd. 1994-2001) -- C:\WINDOWS\System32\dllcache\ctlsb16.sys
[2010-01-10 17:20:04 | 00,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctljystk.sys
[2010-01-10 17:20:03 | 00,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctlfacem.sys
[2010-01-10 17:20:02 | 00,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csamsp.dll
[2010-01-10 17:20:02 | 00,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\crtaud.sys
[2010-01-10 17:20:01 | 00,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2010-01-10 17:20:00 | 00,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys
[2010-01-10 17:20:00 | 00,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\cpqndis5.sys
[2010-01-10 17:20:00 | 00,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cpqarray.sys
[2010-01-10 17:19:55 | 00,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compbatt.sys
[2010-01-10 17:19:54 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnusd.dll
[2010-01-10 17:19:54 | 00,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\cnxt1803.sys
[2010-01-10 17:19:52 | 00,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS\System32\dllcache\cmdide.sys
[2010-01-10 17:19:51 | 00,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2010-01-10 17:19:51 | 00,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmbatt.sys
[2010-01-10 17:19:50 | 00,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546xm.sys
[2010-01-10 17:19:49 | 00,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546x.dll
[2010-01-10 17:19:49 | 00,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl5465.dll
[2010-01-10 17:19:48 | 00,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.dll
[2010-01-10 17:19:48 | 00,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.sys
[2010-01-10 17:19:47 | 00,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS\System32\dllcache\cinemclc.sys
[2010-01-10 17:19:45 | 00,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2010-01-10 17:19:42 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2010-01-10 17:19:41 | 00,015,423 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\ch7xxnt5.dll
[2010-01-10 17:19:40 | 00,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2010-01-10 17:19:39 | 00,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2010-01-10 17:19:39 | 00,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2010-01-10 17:19:39 | 00,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2010-01-10 17:19:38 | 00,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2010-01-10 17:19:36 | 00,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2010-01-10 17:19:36 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cd20xrnt.sys
[2010-01-10 17:19:35 | 00,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2010-01-10 17:19:35 | 00,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2010-01-10 17:19:34 | 00,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2010-01-10 17:19:33 | 00,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2010-01-10 17:19:33 | 00,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2010-01-10 17:19:32 | 00,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.dll
[2010-01-10 17:19:31 | 00,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.dll
[2010-01-10 17:19:31 | 00,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.ax
[2010-01-10 17:19:30 | 00,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.ax
[2010-01-10 17:19:30 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.dll
[2010-01-10 17:19:30 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.ax
[2010-01-10 17:19:29 | 00,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdro21.sys
[2010-01-10 17:19:29 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv21.sys
[2010-01-10 17:19:29 | 00,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv30.sys
[2010-01-10 17:19:15 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bulltlp3.sys
[2010-01-10 17:19:14 | 00,035,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthprint.sys
[2010-01-10 17:19:14 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthusb.sys
[2010-01-10 17:19:12 | 00,274,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010-01-10 17:19:12 | 00,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthpan.sys
[2010-01-10 17:19:12 | 00,038,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthmodem.sys
[2010-01-10 17:19:11 | 00,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthenum.sys
[2010-01-10 17:19:10 | 00,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2010-01-10 17:19:10 | 00,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2010-01-10 17:19:10 | 00,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2010-01-10 17:19:10 | 00,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2010-01-10 17:19:09 | 00,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2010-01-10 17:19:09 | 00,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2010-01-10 17:19:08 | 00,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2010-01-10 17:19:08 | 00,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2010-01-10 17:19:06 | 00,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2010-01-10 17:19:06 | 00,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2010-01-10 17:19:06 | 00,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2010-01-10 17:19:05 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brmfcwia.dll
[2010-01-10 17:19:05 | 00,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2010-01-10 17:19:04 | 00,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2010-01-10 17:19:04 | 00,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2010-01-10 17:19:04 | 00,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2010-01-10 17:19:03 | 00,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2010-01-10 17:19:03 | 00,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2010-01-10 17:19:03 | 00,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2010-01-10 17:19:01 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\binlsvc.dll
[2010-01-10 17:19:00 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2010-01-10 17:19:00 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2010-01-10 17:18:59 | 00,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2010-01-10 17:18:59 | 00,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42xx5.sys
[2010-01-10 17:18:59 | 00,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm4e5.sys
[2010-01-10 17:18:58 | 00,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42u.sys
[2010-01-10 17:18:57 | 00,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2010-01-10 17:18:57 | 00,014,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\battc.sys
[2010-01-10 17:18:56 | 00,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2010-01-10 17:18:56 | 00,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2010-01-10 17:18:56 | 00,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2010-01-10 17:18:55 | 00,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2010-01-10 17:18:54 | 00,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2010-01-10 17:18:54 | 00,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2010-01-10 17:18:54 | 00,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2010-01-10 17:18:52 | 00,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcaudio.sys
[2010-01-10 17:18:52 | 00,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcstrm.sys
[2010-01-10 17:18:51 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avc.sys
[2010-01-10 17:18:49 | 00,017,279 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv10nt5.dll
[2010-01-10 17:18:48 | 00,014,143 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv06nt5.dll
[2010-01-10 17:18:47 | 00,025,471 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv04nt5.dll
[2010-01-10 17:18:47 | 00,011,359 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv02nt5.dll
[2010-01-10 17:18:45 | 00,021,183 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\atv01nt5.dll
[2010-01-10 17:18:42 | 00,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativtmxx.dll
[2010-01-10 17:18:41 | 00,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativmvxx.ax
[2010-01-10 17:18:40 | 00,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ativdaxx.ax
[2010-01-10 17:18:39 | 00,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiragem.sys
[2010-01-10 17:18:38 | 00,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiraged.dll
[2010-01-10 17:18:37 | 00,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxsxx.sys
[2010-01-10 17:18:36 | 00,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinxbxx.sys
[2010-01-10 17:18:35 | 00,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atintuxx.sys
[2010-01-10 17:18:35 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinttxx.sys
[2010-01-10 17:18:34 | 00,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinsnxx.sys
[2010-01-10 17:18:33 | 00,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinrvxx.sys
[2010-01-10 17:18:32 | 00,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinraxx.sys
[2010-01-10 17:18:32 | 00,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinpdxx.sys
[2010-01-10 17:18:32 | 00,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinmdxx.sys
[2010-01-10 17:18:31 | 00,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimtai.sys
[2010-01-10 17:18:31 | 00,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atinbtxx.sys
[2010-01-10 17:18:30 | 00,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpab.sys
[2010-01-10 17:18:30 | 00,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpae.sys
[2010-01-10 17:18:30 | 00,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atievxx.exe
[2010-01-10 17:18:29 | 00,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidvai.dll
[2010-01-10 17:18:29 | 00,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrae.dll
[2010-01-10 17:18:28 | 00,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrab.dll
[2010-01-10 17:18:27 | 00,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2mtaa.sys
[2010-01-10 17:18:26 | 00,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati2dvaa.dll
[2010-01-10 17:18:25 | 00,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xsxx.sys
[2010-01-10 17:18:25 | 00,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1xbxx.sys
[2010-01-10 17:18:24 | 00,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1tuxx.sys
[2010-01-10 17:18:23 | 00,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1rvxx.sys
[2010-01-10 17:18:23 | 00,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1snxx.sys
[2010-01-10 17:18:23 | 00,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1ttxx.sys
[2010-01-10 17:18:22 | 00,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1raxx.sys
[2010-01-10 17:18:22 | 00,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1pdxx.sys
[2010-01-10 17:18:21 | 00,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1mdxx.sys
[2010-01-10 17:18:20 | 00,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys
[2010-01-10 17:18:20 | 00,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\ati1btxx.sys
[2010-01-10 17:18:19 | 00,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ati.dll
[2010-01-10 17:18:18 | 00,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2010-01-10 17:18:17 | 00,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc3550.sys
[2010-01-10 17:18:16 | 00,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS\System32\dllcache\asc.sys
[2010-01-10 17:18:16 | 00,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asc3350p.sys
[2010-01-10 17:18:14 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\apmbatt.sys
[2010-01-10 17:18:13 | 00,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS\System32\dllcache\an983.sys
[2010-01-10 17:18:12 | 00,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\amsint.sys
[2010-01-10 17:18:11 | 00,043,008 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\System32\dllcache\amdagp.sys
[2010-01-10 17:18:11 | 00,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2010-01-10 17:18:10 | 00,042,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\alim1541.sys
[2010-01-10 17:18:10 | 00,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\alifir.sys
[2010-01-10 17:18:10 | 00,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\aliide.sys
[2010-01-10 17:18:09 | 00,056,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78xx.sys
[2010-01-10 17:18:09 | 00,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ali5261.sys
[2010-01-10 17:18:08 | 00,055,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aic78u2.sys
[2010-01-10 17:18:08 | 00,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aha154x.sys
[2010-01-10 17:18:06 | 00,044,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agpcpq.sys
[2010-01-10 17:18:04 | 00,042,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agp440.sys
[2010-01-10 17:18:03 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax
[2010-01-10 17:18:02 | 00,003,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv11nt5.dll
[2010-01-10 17:18:01 | 00,003,711 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv09nt5.dll
[2010-01-10 17:18:00 | 00,003,647 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv07nt5.dll
[2010-01-10 17:18:00 | 00,003,135 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv08nt5.dll
[2010-01-10 17:17:58 | 00,003,967 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv02nt5.dll
[2010-01-10 17:17:58 | 00,003,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv05nt5.dll
[2010-01-10 17:17:57 | 00,004,255 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\dllcache\adv01nt5.dll
[2010-01-10 17:17:55 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adpu160m.sys
[2010-01-10 17:17:55 | 00,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2010-01-10 17:17:54 | 00,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2010-01-10 17:17:53 | 00,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2010-01-10 17:17:53 | 00,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2010-01-10 17:17:52 | 00,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2010-01-10 17:17:52 | 00,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys
[2010-01-10 17:17:51 | 00,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys
[2010-01-10 17:17:50 | 00,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2010-01-10 17:17:49 | 00,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys
[2010-01-10 17:17:49 | 00,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys
[2010-01-10 17:17:48 | 00,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ac97intc.sys
[2010-01-10 17:17:47 | 00,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys
[2010-01-10 17:17:47 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\abp480n5.sys
[2010-01-10 17:17:46 | 00,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2010-01-10 17:17:45 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys
[2010-01-10 17:17:45 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll
[2010-01-10 17:17:44 | 00,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2010-01-10 17:17:44 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys
[2010-01-10 17:17:43 | 00,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2010-01-10 17:17:43 | 00,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2010-01-10 17:17:42 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys
[2010-01-10 17:17:41 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys
[2010-01-10 17:17:19 | 00,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll
[2010-01-10 17:17:11 | 02,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010-01-10 07:10:50 | 00,000,000 | ---D | C] -- C:\Program Files\Airgas_Full_Catalog
[2010-01-10 07:10:43 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010-01-03 14:13:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee Security Scan
[2010-01-03 14:13:35 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee Security Scan
[2009-12-30 18:29:56 | 00,000,000 | ---D | C] -- C:\Program Files\Ideal Gas in 3D V2.01
[2009-12-30 18:29:46 | 00,000,000 | ---D | C] -- C:\Program Files\Electric Field V2.01
[2009-12-30 14:54:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Behrooz\Application Data\Malwarebytes
[2009-12-30 14:54:48 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009-12-30 14:54:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009-12-30 14:54:45 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009-12-30 14:54:45 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009-12-30 14:54:16 | 04,844,296 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Behrooz\Desktop\free_malware.exe
[2009-12-29 08:14:06 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2009-12-29 07:59:36 | 00,000,000 | ---D | C] -- C:\WINDOWS\temp
[2009-12-29 07:54:00 | 00,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2009-12-29 07:54:00 | 00,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2009-12-29 07:54:00 | 00,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2009-12-29 07:54:00 | 00,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2009-12-29 07:53:52 | 00,000,000 | ---D | C] -- C:\ComboFix2
[2009-12-29 07:48:55 | 00,000,000 | ---D | C] -- C:\ComboFix
[2009-12-23 10:18:15 | 00,000,000 | ---D | C] -- C:\Patent Downloads
[2009-12-23 10:18:14 | 00,737,280 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2009-12-23 10:18:06 | 00,054,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcirt.dll.bak
[2009-12-23 10:18:06 | 00,000,000 | ---D | C] -- C:\Program Files\PatentWizard, LLC
[2009-12-23 08:28:29 | 00,472,064 | ---- | C] ( ) -- C:\Documents and Settings\Behrooz\Desktop\RootRepeal.exe
[2007-08-04 16:22:24 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2007-08-04 16:22:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2007-08-04 16:22:16 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2007-08-04 16:22:15 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010-01-16 10:36:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Behrooz\Desktop\OTL.exe
[2010-01-16 10:23:35 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-01-16 10:23:33 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-01-16 10:23:32 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-01-16 10:23:31 | 10,732,70784 | -HS- | M] () -- C:\hiberfil.sys
[2010-01-13 18:28:34 | 03,145,728 | -H-- | M] () -- C:\Documents and Settings\Behrooz\NTUSER.DAT
[2010-01-13 18:28:12 | 00,000,278 | -HS- | M] () -- C:\Documents and Settings\Behrooz\ntuser.ini
[2010-01-13 07:55:28 | 00,001,635 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.zip
[2010-01-13 07:53:47 | 00,001,616 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.rar
[2010-01-11 08:19:21 | 00,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-01-11 08:18:42 | 00,014,848 | ---- | M] () -- C:\Documents and Settings\Behrooz\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-01-11 07:55:36 | 00,320,336 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-01-10 10:56:59 | 00,079,512 | ---- | M] () -- C:\Documents and Settings\Behrooz\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010-01-10 07:32:03 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010-01-10 07:11:05 | 00,000,740 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Airgas_Full_Catalog.lnk
[2010-01-07 09:57:32 | 00,000,129 | ---- | M] () -- C:\Documents and Settings\Behrooz\default.pls
[2010-01-03 14:13:36 | 00,000,715 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan.lnk
[2010-01-03 14:13:36 | 00,000,707 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk
[2009-12-30 14:54:50 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009-12-30 14:54:23 | 04,844,296 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Behrooz\Desktop\free_malware.exe
[2009-12-29 07:58:10 | 00,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2009-12-23 13:26:59 | 00,000,798 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\FullShot 9.lnk
[2009-12-23 10:18:15 | 00,001,829 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\PatentHunter 3.5.lnk
[2009-12-23 10:17:39 | 00,737,280 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun6002.exe
[2009-12-23 08:34:12 | 00,000,015 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\settings.dat
[2009-12-23 08:28:29 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Behrooz\Desktop\RootRepeal.exe
[2009-12-23 08:27:48 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\dds.scr
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010-01-13 07:55:28 | 00,001,635 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.zip
[2010-01-13 07:53:47 | 00,001,616 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.rar
[2010-01-10 17:29:10 | 00,017,408 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxscnui.dll
[2010-01-10 17:29:09 | 00,027,648 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xrxftplt.exe
[2010-01-10 17:25:22 | 00,033,280 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisrndr.ax
[2010-01-10 17:25:21 | 00,363,520 | ---- | C] () -- C:\WINDOWS\System32\dllcache\psisdecd.dll
[2010-01-10 17:23:49 | 00,056,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdvbnp.ax
[2010-01-10 17:21:53 | 00,165,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt53.dll
[2010-01-10 17:21:53 | 00,093,696 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt42.dll
[2010-01-10 17:21:52 | 00,101,376 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt34.dll
[2010-01-10 17:21:51 | 00,089,088 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt33.dll
[2010-01-10 17:21:51 | 00,083,968 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hpgt21.dll
[2010-01-10 17:20:33 | 00,037,962 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaprop.dll
[2010-01-10 17:20:33 | 00,029,768 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divasu.dll
[2010-01-10 17:20:32 | 00,006,216 | ---- | C] () -- C:\WINDOWS\System32\dllcache\divaci.dll
[2010-01-10 17:18:44 | 00,026,624 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativxbar.sys
[2010-01-10 17:18:44 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atixbar.sys
[2010-01-10 17:18:43 | 00,019,456 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativttxx.sys
[2010-01-10 17:18:41 | 00,009,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ativmdcd.sys
[2010-01-10 17:18:40 | 00,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitvsnd.sys
[2010-01-10 17:18:40 | 00,017,152 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atitunep.sys
[2010-01-10 17:18:39 | 00,049,920 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtcap.sys
[2010-01-10 17:18:39 | 00,026,880 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atirtsnd.sys
[2010-01-10 17:18:38 | 00,010,240 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atipcxxx.sys
[2010-01-10 17:18:28 | 00,046,464 | ---- | C] () -- C:\WINDOWS\System32\dllcache\atibt829.sys
[2010-01-10 07:32:03 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2010-01-10 07:11:05 | 00,000,740 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Airgas_Full_Catalog.lnk
[2010-01-03 14:13:36 | 00,000,715 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\McAfee Security Scan.lnk
[2010-01-03 14:13:36 | 00,000,707 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\McAfee Security Scan.lnk
[2009-12-30 18:29:47 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\GkSui20.EXE
[2009-12-30 14:54:50 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009-12-29 07:54:00 | 00,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2009-12-29 07:54:00 | 00,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2009-12-29 07:54:00 | 00,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2009-12-29 07:54:00 | 00,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2009-12-29 07:54:00 | 00,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2009-12-23 13:26:59 | 00,000,798 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\FullShot 9.lnk
[2009-12-23 10:18:15 | 00,001,829 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\PatentHunter 3.5.lnk
[2009-12-23 08:29:45 | 00,000,015 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\settings.dat
[2009-12-23 08:27:41 | 00,524,288 | ---- | C] () -- C:\Documents and Settings\Behrooz\Desktop\dds.scr
[2009-12-05 07:58:28 | 00,003,041 | ---- | C] () -- C:\WINDOWS\Analyze.INI
[2009-12-05 07:39:30 | 00,000,250 | ---- | C] () -- C:\WINDOWS\RAYFLEX.INI
[2009-12-05 07:38:25 | 00,034,304 | ---- | C] () -- C:\WINDOWS\System32\MUSCRL32.DLL
[2009-12-05 07:38:24 | 00,416,768 | ---- | C] () -- C:\WINDOWS\System32\DFORMD.DLL
[2009-12-05 07:38:24 | 00,410,112 | ---- | C] () -- C:\WINDOWS\System32\DFORRT.DLL
[2009-11-25 13:32:27 | 00,000,754 | ---- | C] () -- C:\WINDOWS\WORDPAD.INI
[2009-11-23 17:10:32 | 00,014,848 | ---- | C] () -- C:\Documents and Settings\Behrooz\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-11-23 17:10:32 | 00,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2007-08-04 18:09:06 | 00,000,280 | ---- | C] () -- C:\WINDOWS\System32\epoPGPsdk.dll.sig
[2007-08-04 17:52:18 | 00,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2007-08-04 17:44:20 | 00,017,620 | ---- | C] () -- C:\WINDOWS\hplj1010.ini
[2007-08-04 17:42:42 | 00,000,164 | R--- | C] () -- C:\WINDOWS\avrack.ini
[2004-08-04 03:37:00 | 00,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-08-04 03:37:00 | 00,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003-12-08 17:33:20 | 00,123,276 | ---- | C] () -- C:\WINDOWS\System32\drivers\PFC027.sys
[2003-08-29 12:53:49 | 00,094,274 | ---- | C] () -- C:\WINDOWS\System32\HPBHEALR.DLL
[2003-01-07 14:05:08 | 00,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI

========== LOP Check ==========

[2009-11-25 13:03:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\Inbit
[2009-11-24 08:31:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\VIP Quality Software
[2007-08-04 18:16:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2009-11-23 08:11:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\FlashFXP
[2009-11-23 12:26:57 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\GPass
[2009-11-23 12:28:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\GPass-3
[2009-11-25 13:06:04 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Behrooz\Application Data\Inbit

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >
[2009-11-19 21:39:46 | 00,393,528 | ---- | M] (Trend Micro Inc.) -- C:\HijackThis.exe

< %systemroot%\*. /mp /s >

< c:\$recycle.bin\*.* /s >

< HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\WindowsUpdate\Auto Update\Results\Install|LastSuccessTime /rs >


< MD5 for: AGP440.SYS >
[2004-08-04 03:37:00 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:AGP440.sys
[2004-08-03 23:07:42 | 00,042,368 | ---- | M] (Microsoft Corporation) MD5=2C428FA0C3E3A01ED93C9B2A27D8D4BB -- C:\WINDOWS\system32\dllcache\agp440.sys

< MD5 for: ATAPI.SYS >
[2004-08-04 03:37:00 | 18,738,937 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2004-08-04 03:37:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2004-08-04 03:37:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\dllcache\atapi.sys
[2004-08-04 03:37:00 | 00,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\drivers\atapi.sys

< MD5 for: AUTOCHK.EXE >
[2004-08-04 03:37:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\cmdcons\autochk.exe
[2004-08-04 03:37:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\system32\autochk.exe
[2004-08-04 03:37:00 | 00,588,800 | ---- | M] (Microsoft Corporation) MD5=B3415B9D6026F65E43089ABED096C38C -- C:\WINDOWS\system32\dllcache\autochk.exe

< MD5 for: BEEP.SYS >
[2004-08-04 03:37:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2004-08-04 03:37:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2004-08-04 03:37:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

< MD5 for: EVENTLOG.DLL >
[2004-08-04 03:37:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\ERDNT\cache\eventlog.dll
[2004-08-04 03:37:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2004-08-04 03:37:00 | 00,055,808 | ---- | M] (Microsoft Corporation) MD5=82B24CB70E5944E6E34662205A2A5B78 -- C:\WINDOWS\system32\eventlog.dll

< MD5 for: EXPLORER.EXE >
[2004-08-04 03:37:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\ERDNT\cache\explorer.exe
[2004-08-04 03:37:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\explorer.exe
[2004-08-04 03:37:00 | 01,032,192 | ---- | M] (Microsoft Corporation) MD5=A0732187050030AE399B241436565E64 -- C:\WINDOWS\system32\dllcache\explorer.exe

< MD5 for: IMM32.DLL >
[2004-08-04 03:37:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\ERDNT\cache\imm32.dll
[2004-08-04 03:37:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\system32\dllcache\imm32.dll
[2004-08-04 03:37:00 | 00,110,080 | ---- | M] (Microsoft Corporation) MD5=87CA7CE6469577F059297B9D6556D66D -- C:\WINDOWS\system32\imm32.dll

< MD5 for: KERNEL32.DLL >
[2004-08-04 03:37:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\ERDNT\cache\kernel32.dll
[2004-08-04 03:37:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\system32\dllcache\kernel32.dll
[2004-08-04 03:37:00 | 00,983,552 | ---- | M] (Microsoft Corporation) MD5=888190E31455FAD793312F8D087146EB -- C:\WINDOWS\system32\kernel32.dll

< MD5 for: MSWSOCK.DLL >
[2004-08-04 03:37:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\ERDNT\cache\mswsock.dll
[2004-08-04 03:37:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\system32\dllcache\mswsock.dll
[2004-08-04 03:37:00 | 00,245,248 | ---- | M] (Microsoft Corporation) MD5=4E74AF063C3271FBEA20DD940CFD1184 -- C:\WINDOWS\system32\mswsock.dll

< MD5 for: NDIS.SYS >
[2004-08-04 03:37:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2004-08-04 03:37:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\dllcache\ndis.sys
[2004-08-04 03:37:00 | 00,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\system32\drivers\ndis.sys

< MD5 for: NETLOGON.DLL >
[2004-08-04 03:37:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\ERDNT\cache\netlogon.dll
[2004-08-04 03:37:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\system32\dllcache\netlogon.dll
[2004-08-04 03:37:00 | 00,407,040 | ---- | M] (Microsoft Corporation) MD5=96353FCECBA774BB8DA74A1C6507015A -- C:\WINDOWS\system32\netlogon.dll

< MD5 for: NTFS.SYS >
[2004-08-03 23:15:10 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\cmdcons\NTFS.SYS
[2004-08-04 03:37:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\ERDNT\cache\ntfs.sys
[2004-08-04 03:37:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\system32\dllcache\ntfs.sys
[2004-08-04 03:37:00 | 00,574,592 | ---- | M] (Microsoft Corporation) MD5=B78BE402C3F63DD55521F73876951CDD -- C:\WINDOWS\system32\drivers\ntfs.sys

< MD5 for: NTMSSVC.DLL >
[2004-08-04 03:37:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\ERDNT\cache\ntmssvc.dll
[2004-08-04 03:37:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\system32\dllcache\ntmssvc.dll
[2004-08-04 03:37:00 | 00,435,200 | ---- | M] (Microsoft Corporation) MD5=B62F29C00AC55A761B2E45877D85EA0F -- C:\WINDOWS\system32\ntmssvc.dll

< MD5 for: PROQUOTA.EXE >
[2004-08-04 03:37:00 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=4D9D45A4370E0C2AD00C362B7118E2A4 -- C:\WINDOWS\system32\dllcache\proquota.exe
[2004-08-04 03:37:00 | 00,050,176 | ---- | M] (Microsoft Corporation) MD5=4D9D45A4370E0C2AD00C362B7118E2A4 -- C:\WINDOWS\system32\proquota.exe

< MD5 for: QMGR.DLL >
[2004-08-04 03:37:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\ERDNT\cache\qmgr.dll
[2004-08-04 03:37:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\system32\dllcache\qmgr.dll
[2004-08-04 03:37:00 | 00,382,464 | ---- | M] (Microsoft Corporation) MD5=2C69EC7E5A311334D10DD95F338FCCEA -- C:\WINDOWS\system32\qmgr.dll

< MD5 for: SCECLI.DLL >
[2004-08-04 03:37:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\ERDNT\cache\scecli.dll
[2004-08-04 03:37:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\dllcache\scecli.dll
[2004-08-04 03:37:00 | 00,180,224 | ---- | M] (Microsoft Corporation) MD5=0F78E27F563F2AAF74B91A49E2ABF19A -- C:\WINDOWS\system32\scecli.dll

< MD5 for: SFCFILES.DLL >
[2004-08-04 03:37:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\ERDNT\cache\sfcfiles.dll
[2004-08-04 03:37:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\system32\dllcache\sfcfiles.dll
[2004-08-04 03:37:00 | 01,580,544 | ---- | M] (Microsoft Corporation) MD5=30A609E00BD1D4FFC49D6B5A432BE7F2 -- C:\WINDOWS\system32\sfcfiles.dll

< MD5 for: SPOOLSV.EXE >
[2004-08-04 03:37:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\ERDNT\cache\spoolsv.exe
[2004-08-04 03:37:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\system32\dllcache\spoolsv.exe
[2004-08-04 03:37:00 | 00,057,856 | ---- | M] (Microsoft Corporation) MD5=7435B108B935E42EA92CA94F59C8E717 -- C:\WINDOWS\system32\spoolsv.exe

< MD5 for: SRSVC.DLL >
[2004-08-04 03:37:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\ERDNT\cache\srsvc.dll
[2004-08-04 03:37:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\system32\dllcache\srsvc.dll
[2004-08-04 03:37:00 | 00,170,496 | ---- | M] (Microsoft Corporation) MD5=92BDF74F12D6CBEC43C94D4B7F804838 -- C:\WINDOWS\system32\srsvc.dll

< MD5 for: SVCHOST.EXE >
[2004-08-04 03:37:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\ERDNT\cache\svchost.exe
[2004-08-04 03:37:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\dllcache\svchost.exe
[2004-08-04 03:37:00 | 00,014,336 | ---- | M] (Microsoft Corporation) MD5=8F078AE4ED187AAABC0A305146DE6716 -- C:\WINDOWS\system32\svchost.exe

< MD5 for: TERMSRV.DLL >
[2004-08-04 03:37:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\ERDNT\cache\termsrv.dll
[2004-08-04 03:37:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\system32\dllcache\termsrv.dll
[2004-08-04 03:37:00 | 00,295,424 | ---- | M] (Microsoft Corporation) MD5=B60C877D16D9C880B952FDA04ADF16E6 -- C:\WINDOWS\system32\termsrv.dll

< MD5 for: USERINIT.EXE >
[2004-08-04 03:37:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2004-08-04 03:37:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\dllcache\userinit.exe
[2004-08-04 03:37:00 | 00,024,576 | ---- | M] (Microsoft Corporation) MD5=39B1FFB03C2296323832ACBAE50D2AFF -- C:\WINDOWS\system32\userinit.exe

< MD5 for: WS2_32.DLL >
[2004-08-04 03:37:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\ERDNT\cache\ws2_32.dll
[2004-08-04 03:37:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\dllcache\ws2_32.dll
[2004-08-04 03:37:00 | 00,082,944 | ---- | M] (Microsoft Corporation) MD5=2ED0B7F12A60F90092081C50FA0EC2B2 -- C:\WINDOWS\system32\ws2_32.dll

< MD5 for: XMLPROV.DLL >
[2004-08-04 03:37:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\ERDNT\cache\xmlprov.dll
[2004-08-04 03:37:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\system32\dllcache\xmlprov.dll
[2004-08-04 03:37:00 | 00,129,536 | ---- | M] (Microsoft Corporation) MD5=EEF46DAB68229A14DA3D8E73C99E2959 -- C:\WINDOWS\system32\xmlprov.dll

< %systemroot%\system32\*.dll /lockedfiles >
[1 C:\WINDOWS\system32\*.tmp files -> C:\WINDOWS\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %SYSTEMDRIVE%\*.* >
[2007-08-04 16:17:28 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009-11-23 10:58:22 | 00,000,245 | ---- | M] () -- C:\Boot.bak
[2009-11-24 12:14:06 | 00,000,309 | RHS- | M] () -- C:\boot.ini
[2004-08-03 23:00:00 | 00,260,272 | ---- | M] () -- C:\cmldr
[2009-12-29 07:59:34 | 00,010,671 | ---- | M] () -- C:\ComboFix.txt
[2009-12-01 10:26:16 | 00,011,028 | ---- | M] () -- C:\ComboFix2.txt
[2007-08-04 16:17:28 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010-01-16 10:23:31 | 10,732,70784 | -HS- | M] () -- C:\hiberfil.sys
[2009-11-19 21:39:46 | 00,393,528 | ---- | M] (Trend Micro Inc.) -- C:\HijackThis.exe
[2009-12-05 09:54:04 | 00,007,069 | ---- | M] () -- C:\hijackthis.log
[2009-11-22 14:43:03 | 00,006,115 | ---- | M] () -- C:\hijackthis_from_C_Drive.log
[2007-08-04 16:17:28 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2007-08-04 16:17:28 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2004-08-04 03:37:00 | 00,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2004-08-04 03:37:00 | 00,250,032 | RHS- | M] () -- C:\ntldr
[2010-01-16 10:23:29 | 80,530,6368 | -HS- | M] () -- C:\pagefile.sys
[2009-11-22 10:42:43 | 00,000,146 | ---- | M] () -- C:\YServer.txt

< %userprofile%\Desktop\*.* >
[2009-12-23 08:34:53 | 00,034,668 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\ark.txt
[2010-01-13 07:53:47 | 00,001,616 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.rar
[2010-01-13 07:53:31 | 00,003,645 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.txt
[2010-01-13 07:55:28 | 00,001,635 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Attach.zip
[2009-12-23 08:27:48 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\dds.scr
[2010-01-13 07:53:03 | 00,011,067 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\DDS.txt
[2010-01-16 10:57:38 | 00,033,310 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Extras-f.Txt
[2010-01-16 10:52:29 | 00,033,310 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\Extras.Txt
[2007-08-04 18:31:00 | 00,000,672 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\FlashGet.lnk
[2009-12-30 14:54:23 | 04,844,296 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Behrooz\Desktop\free_malware.exe
[2009-12-23 13:26:59 | 00,000,798 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\FullShot 9.lnk
[2010-01-16 10:57:29 | 00,223,130 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\OTL-f.Txt
[2010-01-16 10:36:16 | 00,547,328 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Behrooz\Desktop\OTL.exe
[2010-01-16 10:52:27 | 00,223,130 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\OTL.Txt
[2009-12-23 10:18:15 | 00,001,829 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\PatentHunter 3.5.lnk
[2009-12-23 08:28:29 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Behrooz\Desktop\RootRepeal.exe
[2009-12-23 08:34:12 | 00,000,015 | ---- | M] () -- C:\Documents and Settings\Behrooz\Desktop\settings.dat

< %userprofile%\Desktop\*. >

========== Files - Unicode (All) ==========
[2010-01-10 10:18:38 | 00,020,480 | ---- | M] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????2.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده2.doc
[2010-01-10 10:18:38 | 00,020,480 | ---- | C] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????2.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده2.doc
[2010-01-10 10:16:58 | 00,020,480 | ---- | M] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده.doc
[2010-01-10 10:16:26 | 00,020,480 | ---- | C] ()(C:\Documents and Settings\Behrooz\My Documents\????? ??????? ?? ???? ????.doc) -- C:\Documents and Settings\Behrooz\My Documents\تمدید قرارداد به والی زاده.doc
[2010-01-04 16:46:50 | 00,025,600 | ---- | M] ()(C:\Documents and Settings\Behrooz\My Documents\??? ?????? ?????.doc) -- C:\Documents and Settings\Behrooz\My Documents\پیش فاکتور محفظه.doc
[2010-01-04 16:25:38 | 00,025,600 | ---- | C] ()(C:\Documents and Settings\Behrooz\My Documents\??? ?????? ?????.doc) -- C:\Documents and Settings\Behrooz\My Documents\پیش فاکتور محفظه.doc
< End of report >

#10 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 16 January 2010 - 02:41 AM

Here is Extras.txt

OTL Extras logfile created on: 10-01-16 10:58:21 - Run 1
OTL by OldTimer - Version 3.1.25.1 Folder = C:\Documents and Settings\Behrooz\Desktop
Windows XP Professional Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: yy-MM-dd

1,023.00 Mb Total Physical Memory | 542.00 Mb Available Physical Memory | 53.00% Memory free
2.00 Gb Paging File | 1.00 Gb Available in Paging File | 79.00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 29.29 Gb Total Space | 21.09 Gb Free Space | 71.99% Space Free | Partition Type: NTFS
Drive D: | 45.23 Gb Total Space | 16.13 Gb Free Space | 35.66% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
Drive G: | 962.07 Mb Total Space | 121.81 Mb Free Space | 12.66% Space Free | Partition Type: FAT32
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: SBU-8C1C143C569
Current User Name: Behrooz
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Minimal

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "%programfiles%\internet explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\McAfee\Common Framework\FrameworkService.exe" = C:\Program Files\McAfee\Common Framework\FrameworkService.exe:*:Enabled:McAfee Framework Service -- (McAfee, Inc.)
"C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe" = C:\Program Files\Hewlett-Packard\Toolbox2.0\Javasoft\JRE\1.3.1\bin\javaw.exe:*:Disabled:javaw -- ()
"C:\Program Files\FlashGet\flashget.exe" = C:\Program Files\FlashGet\flashget.exe:*:Enabled:Flashget -- (FlashGet.com)
"C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" = C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe:*:Enabled:Yahoo! Messenger -- (Yahoo! Inc.)
"C:\Program Files\Yahoo!\Messenger\YServer.exe" = C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server -- (Yahoo! Inc.)
"C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe" = C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe:*:Enabled:VIP DB Bridge Service -- (VIP Quality Software, Ltd)
"C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe" = C:\Program Files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe:*:Enabled:Firebird SQL Server -- (The Firebird Project)
"C:\Program Files\PatentWizard, LLC\PatentHunter3\PatentHunter.exe" = C:\Program Files\PatentWizard, LLC\PatentHunter3\PatentHunter.exe:*:Enabled:PatentHunter.exe -- (PatentWizard LLC)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0FF26493-E325-415F-B85B-3E5A8E07EC49}" = TinyPcam207
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{292C47B2-8DB7-47BF-896C-C3C5EE8108C4}" = hp LaserJet 1010 Series
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{35C03C04-3F1F-42C2-A989-A757EE691F65}" = McAfee VirusScan Enterprise
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{AC76BA86-1033-0000-7760-000000000001}" = Adobe Acrobat 6.0 Professional
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FC98FBE9-E931-494C-8717-497185371033}" = Nero 7 Ultra Edition
"{FE1D5728-DE37-466E-F04F-1B5D19DE82CA}" = Airgas_Full_Catalog
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"com.adobe.example.Airgas-Full-Catalog.EFBB980668071A8152153BB41BB38BB05BB83775.1" = Airgas_Full_Catalog
"Electric Field" = Electric Field
"FBDBServer_1_5_is1" = Firebird 1.5.3.4870 with CollatePTBR
"FlashGet(Jetcar) 1.80" = FlashGet(Jetcar) 1.80
"FullShot 9" = FullShot 9 (Remove Only)
"HijackThis" = HijackThis 2.0.2
"Ideal Gas in 3D" = Ideal Gas in 3D
"InstallShield_{0FF26493-E325-415F-B85B-3E5A8E07EC49}" = TinyPcam207
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Security Scan" = McAfee Security Scan
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"PatentHunter3.5" = PatentHunter
"VIPTaskManager_1_is1" = VIP Task Manager Professional 4.0.1.602
"Windows Media Format Runtime" = Windows Media Format Runtime
"WinRAR archiver" = WinRAR archiver
"WinZip" = WinZip
"Yahoo! Messenger" = Yahoo! Messenger

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 10-01-10 00:19:35 | Computer Name = SBU-8C1C143C569 | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2900.2180, faulting
module unknown, version 0.0.0.0, fault address 0x00000001.

Error - 10-01-10 00:22:13 | Computer Name = SBU-8C1C143C569 | Source = Application Error | ID = 1000
Description = Faulting application iexplore.exe, version 6.0.2900.2180, faulting
module unknown, version 0.0.0.0, fault address 0x00000001.

Error - 10-01-10 08:50:26 | Computer Name = SBU-8C1C143C569 | Source = Application Hang | ID = 1002
Description = Hanging application RapidShare Plus.exe, version 1.0.0.0, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 10-01-10 09:17:07 | Computer Name = SBU-8C1C143C569 | Source = Application Hang | ID = 1002
Description = Hanging application RapidShare Plus.exe, version 1.0.0.0, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 10-01-13 00:20:40 | Computer Name = SBU-8C1C143C569 | Source = McLogEvent | ID = 259
Description = The file C:\Documents and Settings\Behrooz\Local Settings\Temporary
Internet Files\Content.IE5\U94ZA9M5\dds[1].pif contains the New Malware.j Trojan.
No cleaner available, file deleted successfully. Detected using Scan engine version
5400.1158 DAT version 5858.0000.

Error - 10-01-13 08:30:16 | Computer Name = SBU-8C1C143C569 | Source = McLogEvent | ID = 259
Description = The file C:\Documents and Settings\Behrooz\Local Settings\Temporary
Internet Files\Content.IE5\FB1J3D4S\homepage[1].htm\00000122.vbs contains the Exploit-MS06-014
Trojan. Undetermined clean error, deleted successfully. Detected using Scan engine
version 5400.1158 DAT version 5858.0000.

Error - 10-01-13 08:34:34 | Computer Name = SBU-8C1C143C569 | Source = McLogEvent | ID = 259
Description = The file C:\Documents and Settings\Behrooz\Local Settings\Temporary
Internet Files\Content.IE5\FB1J3D4S\homepage[1].htm\00000122.vbs contains the Exploit-MS06-014
Trojan. Undetermined clean error, deleted successfully. Detected using Scan engine
version 5400.1158 DAT version 5858.0000.

Error - 10-01-13 08:34:34 | Computer Name = SBU-8C1C143C569 | Source = McLogEvent | ID = 259
Description = The file C:\Documents and Settings\Behrooz\Local Settings\Temporary
Internet Files\Content.IE5\FB1J3D4S\homepage[2].htm\00000122.vbs contains the Exploit-MS06-014
Trojan. Undetermined clean error, deleted successfully. Detected using Scan engine
version 5400.1158 DAT version 5858.0000.

Error - 10-01-13 08:36:49 | Computer Name = SBU-8C1C143C569 | Source = McLogEvent | ID = 259
Description = The file C:\Documents and Settings\Behrooz\Local Settings\Temporary
Internet Files\Content.IE5\FB1J3D4S\homepage[1].htm\00000122.vbs contains the Exploit-MS06-014
Trojan. Undetermined clean error, deleted successfully. Detected using Scan engine
version 5400.1158 DAT version 5858.0000.

Error - 10-01-13 08:37:13 | Computer Name = SBU-8C1C143C569 | Source = McLogEvent | ID = 259
Description = The file C:\Documents and Settings\Behrooz\Local Settings\Temporary
Internet Files\Content.IE5\58CF95GP\homepage[1].htm\00000122.vbs contains the Exploit-MS06-014
Trojan. Undetermined clean error, deleted successfully. Detected using Scan engine
version 5400.1158 DAT version 5858.0000.

[ System Events ]
Error - 10-01-09 08:22:51 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SASDIFSV SASKUTIL

Error - 10-01-10 07:10:29 | Computer Name = SBU-8C1C143C569 | Source = DCOM | ID = 10010
Description = The server {5A5AA0AA-1DEB-4683-96B0-B43301E83971} did not register
with DCOM within the required timeout.

Error - 10-01-10 07:13:30 | Computer Name = SBU-8C1C143C569 | Source = DCOM | ID = 10010
Description = The server {5A5AA0AA-1DEB-4683-96B0-B43301E83971} did not register
with DCOM within the required timeout.

Error - 10-01-11 00:26:40 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SASDIFSV SASKUTIL

Error - 10-01-11 00:27:06 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the IMAPI CD-Burning COM
Service service to connect.

Error - 10-01-11 00:27:06 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7000
Description = The IMAPI CD-Burning COM Service service failed to start due to the
following error: %%1053

Error - 10-01-12 00:11:01 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SASDIFSV SASKUTIL

Error - 10-01-12 01:03:53 | Computer Name = SBU-8C1C143C569 | Source = DCOM | ID = 10010
Description = The server {5A5AA0AA-1DEB-4683-96B0-B43301E83971} did not register
with DCOM within the required timeout.

Error - 10-01-13 00:16:19 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SASDIFSV SASKUTIL

Error - 10-01-16 02:54:27 | Computer Name = SBU-8C1C143C569 | Source = Service Control Manager | ID = 7026
Description = The following boot-start or system-start driver(s) failed to load:
SASDIFSV SASKUTIL


< End of report >

#11 User is offline   chamber 

  • Bleepin' Geek
  • PipPipPip
  • Find Topics
  • Group: Malware Response Team
  • Posts: 329
  • Joined: 02-April 09
  • Gender:Male
  • Location:~/

Posted 16 January 2010 - 06:13 AM

Download TFC to your desktop
  • Open the file and close any other windows.
  • It will close all programs itself when run, make sure to let it run uninterrupted.
  • Click the Start button to begin the process. The program should not take long to finish its job
  • Once its finished it should reboot your machine, if not, do this yourself to ensure a complete clean


Posted Image Please download Malwarebytes' Anti-Malware from Here.

Double Click mbam-setup.exe to install the application.
  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.
Extra Note:

If MBAM encounters a file that is difficult to remove,you will be presented with 1 of 2 prompts,click OK to either and let MBAM proceed with the disinfection process. If asked to restart the computer, please do so immediatly.
Posted Image
watch me and tremble, for I bring the purity of oblivion
Sudo apt-get me a sandwich!
Proud graduate of GeekU

#12 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 16 January 2010 - 06:49 AM

Malwarebyte didn't find anything. Here is the log:

Malwarebytes' Anti-Malware 1.44
Database version: 3575
Windows 5.1.2600 Service Pack 2
Internet Explorer 6.0.2900.2180

10-01-16 15:15:44
mbam-log-2010-01-16 (15-15-44).txt

Scan type: Quick Scan
Objects scanned: 104880
Time elapsed: 4 minute(s), 57 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#13 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 17 January 2010 - 07:08 AM

No malicious items detected but still I have the same problem of fast memory fill up and disfunctioning of some of xp functions like copy, opening new page, mouse right click disabled and so on ... .After closing a few windows functions start working but again disables very quick and had to restart computer or log off and log in again. What should I do know?

This post has been edited by Steve Robinson: 17 January 2010 - 07:09 AM

#14 User is offline   chamber 

  • Bleepin' Geek
  • PipPipPip
  • Find Topics
  • Group: Malware Response Team
  • Posts: 329
  • Joined: 02-April 09
  • Gender:Male
  • Location:~/

Posted 18 January 2010 - 04:31 AM

Delete your copy of ComboFix.

Download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop
  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link HERE


  • Double click on ComboFix.exe & follow the prompts.


  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.


  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.


Posted Image


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:


Posted Image


Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt log in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
Posted Image
watch me and tremble, for I bring the purity of oblivion
Sudo apt-get me a sandwich!
Proud graduate of GeekU

#15 User is offline   Steve Robinson 

  • New Member
  • Pip
  • Find Topics
  • Group: Members
  • Posts: 13
  • Joined: 22-December 09

Posted 18 January 2010 - 11:37 PM

Here is the ComboFix log:


ComboFix 10-01-18.02 - Behrooz 10-01-19 8:00.9.1 - x86
Microsoft Windows XP Professional 5.1.2600.2.1252.1.1033.18.1023.682 [GMT 3.5:30]
Running from: c:\documents and settings\Behrooz\Desktop\ComboFix.exe
AV: McAfee VirusScan Enterprise *On-access scanning enabled* (Updated) {918A2B0B-2C60-4016-A4AB-E868DEABF7F0}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

H:\e9naq.exe

.
((((((((((((((((((((((((( Files Created from 2009-12-19 to 2010-01-19 )))))))))))))))))))))))))))))))
.

2010-01-10 13:59 . 2004-08-03 21:26 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-01-10 13:59 . 2001-08-17 19:06 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-01-10 13:59 . 2001-08-17 19:06 17408 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-01-10 13:59 . 2001-08-17 19:07 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-01-10 13:59 . 2001-08-17 19:07 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-01-10 13:57 . 2001-08-17 09:58 64605 -c--a-w- c:\windows\system32\dllcache\vvoice.sys
2010-01-10 13:56 . 2001-08-17 19:06 99328 -c--a-w- c:\windows\system32\dllcache\srusd.dll
2010-01-10 13:55 . 2001-08-17 11:26 245632 -c--a-w- c:\windows\system32\dllcache\s3savmx.dll
2010-01-10 13:54 . 2001-08-17 19:06 20480 -c--a-w- c:\windows\system32\dllcache\ovcomc.dll
2010-01-10 13:53 . 2004-08-03 19:30 22016 -c--a-w- c:\windows\system32\dllcache\msircomm.sys
2010-01-10 13:52 . 2004-08-03 19:28 14848 -c--a-w- c:\windows\system32\dllcache\kbdhid.sys
2010-01-10 13:51 . 2001-08-17 19:06 9759 -c--a-w- c:\windows\system32\dllcache\hsf_inst.dll
2010-01-10 13:50 . 2001-08-17 10:16 6400 -c--a-w- c:\windows\system32\dllcache\enum1394.sys
2010-01-10 13:49 . 2001-08-17 10:28 9344 -c--a-w- c:\windows\system32\dllcache\compbatt.sys
2010-01-10 13:48 . 2001-08-17 09:58 871388 -c--a-w- c:\windows\system32\dllcache\bcmdm.sys
2010-01-10 13:47 . 2004-08-03 21:26 3967 -c--a-w- c:\windows\system32\dllcache\adv02nt5.dll
2010-01-10 03:41 . 2010-01-09 15:54 38784 ----a-w- c:\documents and settings\Behrooz\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-01-10 03:40 . 2010-01-10 03:41 -------- d-----w- c:\program files\Airgas_Full_Catalog
2010-01-10 03:40 . 2010-01-09 15:54 38784 ----a-w- c:\documents and settings\Default User\Application Data\Macromedia\Flash Player\www.macromedia.com\bin\airappinstaller\airappinstaller.exe
2010-01-10 03:40 . 2010-01-10 03:40 -------- d-----w- c:\program files\Common Files\Adobe AIR
2010-01-03 10:43 . 2010-01-03 10:43 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee Security Scan
2010-01-03 10:43 . 2010-01-03 10:43 -------- d-----w- c:\program files\McAfee Security Scan
2009-12-30 14:59 . 2009-12-30 15:09 -------- d-----w- c:\program files\Ideal Gas in 3D V2.01
2009-12-30 14:59 . 2006-06-04 16:33 81920 ----a-w- c:\windows\system32\GkSui20.EXE
2009-12-30 14:59 . 2009-12-30 15:02 -------- d-----w- c:\program files\Electric Field V2.01
2009-12-30 11:24 . 2009-12-30 11:24 -------- d-----w- c:\documents and settings\Behrooz\Application Data\Malwarebytes
2009-12-30 11:24 . 2010-01-07 12:37 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2009-12-30 11:24 . 2009-12-30 11:24 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2009-12-30 11:24 . 2010-01-16 11:25 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-12-30 11:24 . 2010-01-07 12:37 19160 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-29 04:23 . 2009-12-29 04:29 -------- d-----w- C:\ComboFix2
2009-12-23 06:48 . 2010-01-11 05:33 -------- d-----w- C:\Patent Downloads
2009-12-23 06:48 . 2009-12-23 06:47 737280 ----a-w- c:\windows\iun6002.exe
2009-12-23 06:48 . 2009-12-23 06:48 -------- d-----w- c:\program files\PatentWizard, LLC

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-01-19 04:30 . 2007-08-04 15:00 -------- d-----w- c:\program files\FlashGet
2010-01-18 14:46 . 2009-11-23 07:05 -------- d-----w- c:\documents and settings\Behrooz\Application Data\AdobeUM
2010-01-10 07:26 . 2007-08-04 15:06 79512 ----a-w- c:\documents and settings\Behrooz\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-01-10 04:02 . 2007-08-04 14:33 -------- d-----w- c:\program files\Common Files\Adobe
2010-01-05 10:43 . 2007-08-04 14:39 -------- d-----w- c:\documents and settings\All Users\Application Data\McAfee
2009-12-23 09:56 . 2009-11-25 09:33 -------- d-----w- c:\program files\Inbit
2009-12-16 04:43 . 2007-08-04 14:45 -------- d-----w- c:\program files\Google
2009-12-01 10:47 . 2009-12-01 10:35 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2009-12-01 10:44 . 2009-12-01 10:44 -------- d-----w- c:\program files\Microsoft Works
2009-12-01 10:43 . 2009-12-01 10:43 -------- d-----w- c:\program files\MSBuild
2009-12-01 10:37 . 2009-12-01 10:37 -------- d-----w- c:\program files\Microsoft Visual Studio 8
2009-11-25 09:36 . 2009-11-25 09:36 -------- d-----w- c:\documents and settings\Behrooz\Application Data\Inbit
2009-11-25 09:33 . 2009-11-25 09:33 -------- d-----w- c:\documents and settings\All Users\Application Data\Inbit
2009-11-24 06:55 . 2009-11-24 06:24 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2009-11-24 06:23 . 2009-11-24 06:12 -------- d-----w- c:\documents and settings\Behrooz\Application Data\SUPERAntiSpyware.com
2009-11-24 06:13 . 2009-11-24 06:13 -------- d-----w- c:\documents and settings\All Users\Application Data\SUPERAntiSpyware.com
2009-11-24 05:01 . 2009-11-24 05:01 -------- d-----w- c:\documents and settings\All Users\Application Data\VIP Quality Software
2009-11-24 05:01 . 2009-11-24 05:01 -------- d-----w- c:\program files\VIP Quality Software
2009-11-23 13:41 . 2007-08-04 14:58 -------- d-----w- c:\documents and settings\Behrooz\Application Data\Ahead
2009-11-23 08:58 . 2009-11-23 08:58 -------- d-----w- c:\documents and settings\Behrooz\Application Data\GPass-3
2009-11-23 08:56 . 2009-11-23 08:56 -------- d-----w- c:\documents and settings\Behrooz\Application Data\GPass
2009-11-23 05:08 . 2007-08-04 14:12 -------- d--h--w- c:\program files\InstallShield Installation Information
2009-11-23 05:08 . 2009-11-23 05:08 -------- d-----w- c:\program files\TinyPcam207
2009-11-23 05:08 . 2007-08-04 13:51 -------- d-----w- c:\program files\Common Files\InstallShield
2009-11-23 04:41 . 2009-11-23 04:41 -------- d-----w- c:\documents and settings\Behrooz\Application Data\FlashFXP
2009-11-22 07:12 . 2009-11-22 07:12 -------- d-----w- c:\documents and settings\All Users\Application Data\Yahoo!
2009-11-22 07:12 . 2009-11-22 07:12 -------- d-----w- c:\program files\Yahoo!
2009-11-19 18:09 . 2009-11-22 11:01 393528 ----a-w- C:\HijackThis.exe
.

((((((((((((((((((((((((((((( SnapShot_2009-12-22_04.58.39 )))))))))))))))))))))))))))))))))))))))))
.
+ 2006-06-06 07:25 . 2006-04-05 07:35 49664 c:\windows\system32\PGPlsp.dll
+ 2006-06-06 07:25 . 2006-04-05 07:28 35840 c:\windows\system32\PGPhk.dll
+ 2005-05-20 14:49 . 2003-04-18 12:29 82432 c:\windows\system32\msxml4r.dll
+ 2005-05-20 14:49 . 2003-04-18 12:29 44544 c:\windows\system32\msxml4a.dll
+ 2009-11-23 11:42 . 2010-01-03 10:44 84507 c:\windows\system32\Macromed\Flash\uninstall_activeX.exe
+ 2010-01-10 13:58 . 2001-08-17 19:07 99865 c:\windows\system32\dllcache\xlog.exe
+ 2010-01-10 13:58 . 2001-08-17 08:41 16970 c:\windows\system32\dllcache\xem336n5.sys
+ 2004-08-04 00:56 . 2004-08-04 00:07 51712 c:\windows\system32\dllcache\wzcsapi.dll
+ 2010-01-10 13:58 . 2004-08-03 18:59 19455 c:\windows\system32\dllcache\wvchntxx.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 12063 c:\windows\system32\dllcache\wsiintxx.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 13824 c:\windows\system32\dllcache\wowfaxui.dll
+ 2010-01-10 13:58 . 2001-08-17 08:42 34890 c:\windows\system32\dllcache\wlandrv2.sys
+ 2010-01-10 13:58 . 2001-08-17 19:06 53760 c:\windows\system32\dllcache\wiamsmud.dll
+ 2010-01-10 13:58 . 2001-08-17 19:06 87040 c:\windows\system32\dllcache\wiafbdrv.dll
+ 2010-01-10 13:58 . 2004-08-03 18:59 23615 c:\windows\system32\dllcache\wch7xxnt.sys
+ 2010-01-10 13:58 . 2004-08-03 19:38 31744 c:\windows\system32\dllcache\wceusbsh.sys
+ 2010-01-10 13:58 . 2001-08-17 08:40 35871 c:\windows\system32\dllcache\wbfirdma.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 25471 c:\windows\system32\dllcache\watv10nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 22271 c:\windows\system32\dllcache\watv06nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 33599 c:\windows\system32\dllcache\watv04nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 19551 c:\windows\system32\dllcache\watv02nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 29311 c:\windows\system32\dllcache\watv01nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 11935 c:\windows\system32\dllcache\wadv11nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 11871 c:\windows\system32\dllcache\wadv09nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 11295 c:\windows\system32\dllcache\wadv08nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 11807 c:\windows\system32\dllcache\wadv07nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 11775 c:\windows\system32\dllcache\wadv05nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 12127 c:\windows\system32\dllcache\wadv02nt.sys
+ 2010-01-10 13:58 . 2004-08-03 18:59 12415 c:\windows\system32\dllcache\wadv01nt.sys
+ 2010-01-10 13:58 . 2004-08-03 19:34 13568 c:\windows\system32\dllcache\wacompen.sys
+ 2010-01-10 13:58 . 2001-08-17 08:43 16925 c:\windows\system32\dllcache\w940nd.sys
+ 2010-01-10 13:58 . 2001-08-17 08:43 19016 c:\windows\system32\dllcache\w926nd.sys
+ 2010-01-10 13:58 . 2001-08-17 08:43 19528 c:\windows\system32\dllcache\w840nd.sys
+ 2010-01-10 13:57 . 2001-08-17 10:19 24576 c:\windows\system32\dllcache\viairda.sys
+ 2010-01-10 13:57 . 2004-08-03 19:37 42240 c:\windows\system32\dllcache\viaagp.sys
+ 2001-08-17 14:02 . 2004-08-04 00:07 58112 c:\windows\system32\dllcache\vdmindvd.sys
+ 2010-01-10 13:57 . 2004-08-03 21:26 11325 c:\windows\system32\dllcache\vchnt5.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 49211 c:\windows\system32\dllcache\usrvpa.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 45116 c:\windows\system32\dllcache\usrvoica.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 49209 c:\windows\system32\dllcache\usrv80a.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 41019 c:\windows\system32\dllcache\usrsvpia.dll
+ 2001-08-17 22:37 . 2004-08-04 00:07 69700 c:\windows\system32\dllcache\usrshuta.exe
+ 2001-08-17 22:36 . 2004-08-04 00:07 49211 c:\windows\system32\dllcache\usrsdpia.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 77883 c:\windows\system32\dllcache\usrrtosa.dll
+ 2001-08-17 22:37 . 2004-08-04 00:07 61508 c:\windows\system32\dllcache\usrprbda.exe
+ 2001-08-17 22:37 . 2004-08-04 00:07 77891 c:\windows\system32\dllcache\usrmlnka.exe
+ 2001-08-17 22:36 . 2004-08-04 00:07 53305 c:\windows\system32\dllcache\usrlbva.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 86073 c:\windows\system32\dllcache\usrfaxa.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 77890 c:\windows\system32\dllcache\usrdpa.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 69699 c:\windows\system32\dllcache\usrcoina.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 61500 c:\windows\system32\dllcache\usrcntra.dll
+ 2010-01-10 13:57 . 2004-08-03 19:40 78464 c:\windows\system32\dllcache\usbvideo.sys
+ 2007-08-04 16:05 . 2004-08-04 00:56 74240 c:\windows\system32\dllcache\usbui.dll
+ 2010-01-10 13:57 . 2004-08-03 19:38 20480 c:\windows\system32\dllcache\usbuhci.sys
+ 2010-01-10 13:57 . 2004-08-03 19:38 25600 c:\windows\system32\dllcache\usbser.sys
+ 2010-01-10 13:57 . 2004-08-03 19:31 25856 c:\windows\system32\dllcache\usbprint.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 17024 c:\windows\system32\dllcache\usbohci.sys
+ 2004-08-03 23:08 . 2004-08-04 00:07 16000 c:\windows\system32\dllcache\usbintel.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 57600 c:\windows\system32\dllcache\usbhub.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 26624 c:\windows\system32\dllcache\usbehci.sys
+ 2010-01-10 13:57 . 2004-08-03 19:38 31616 c:\windows\system32\dllcache\usbccgp.sys
+ 2001-08-17 14:03 . 2004-08-04 00:07 23936 c:\windows\system32\dllcache\usbcamd2.sys
+ 2001-08-17 14:03 . 2004-08-04 00:07 23808 c:\windows\system32\dllcache\usbcamd.sys
+ 2010-01-10 13:57 . 2004-08-03 19:37 59264 c:\windows\system32\dllcache\usbaudio.sys
+ 2010-01-10 13:57 . 2004-08-03 19:34 12672 c:\windows\system32\dllcache\usb8023x.sys
+ 2010-01-10 13:57 . 2004-08-03 19:01 32384 c:\windows\system32\dllcache\usb101et.sys
+ 2010-01-10 13:57 . 2001-08-17 19:06 94720 c:\windows\system32\dllcache\umaxud32.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 28160 c:\windows\system32\dllcache\umaxu40.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 26624 c:\windows\system32\dllcache\umaxu22.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 69632 c:\windows\system32\dllcache\umaxu12.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 50688 c:\windows\system32\dllcache\umaxscan.dll
+ 2010-01-10 13:57 . 2001-08-17 10:28 22912 c:\windows\system32\dllcache\umaxpcls.sys
+ 2010-01-10 13:57 . 2001-08-17 19:06 50176 c:\windows\system32\dllcache\umaxp60.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 47616 c:\windows\system32\dllcache\umaxcam.dll
+ 2010-01-10 13:57 . 2001-08-17 10:22 36736 c:\windows\system32\dllcache\ultra.sys
+ 2010-01-10 13:57 . 2004-08-03 19:37 44672 c:\windows\system32\dllcache\uagp35.sys
+ 2010-01-10 13:57 . 2001-08-17 10:18 11520 c:\windows\system32\dllcache\twotrack.sys
+ 2004-08-03 23:03 . 2004-08-04 00:07 12416 c:\windows\system32\dllcache\tunmp.sys
+ 2001-08-17 14:06 . 2004-08-04 00:07 21376 c:\windows\system32\dllcache\tsbvcap.sys
+ 2010-01-10 13:57 . 2001-08-17 08:42 34375 c:\windows\system32\dllcache\tpro4.sys
+ 2010-01-10 13:57 . 2001-08-17 19:05 42496 c:\windows\system32\dllcache\tp4res.dll
+ 2010-01-10 13:57 . 2004-08-03 21:26 82432 c:\windows\system32\dllcache\tp4mon.exe
+ 2010-01-10 13:57 . 2001-08-17 19:06 31744 c:\windows\system32\dllcache\tp4.dll
+ 2001-08-17 14:01 . 2004-08-04 00:07 51712 c:\windows\system32\dllcache\tosdvd.sys
+ 2010-01-10 13:57 . 2001-08-17 08:40 28232 c:\windows\system32\dllcache\tos4mo.sys
+ 2010-01-10 13:57 . 2001-08-17 11:26 81408 c:\windows\system32\dllcache\tgiul50.dll
+ 2007-08-04 12:40 . 2004-08-03 21:31 40840 c:\windows\system32\dllcache\termdd.sys
+ 2010-01-10 13:57 . 2001-08-17 08:43 17129 c:\windows\system32\dllcache\tdkcd31.sys
+ 2010-01-10 13:57 . 2001-08-17 08:43 37961 c:\windows\system32\dllcache\tdk100b.sys
+ 2010-01-10 13:57 . 2001-08-17 10:19 30464 c:\windows\system32\dllcache\tbatm155.sys
+ 2010-01-10 13:57 . 2001-08-17 09:20 36640 c:\windows\system32\dllcache\t2r4mini.sys
+ 2010-01-10 13:57 . 2001-08-17 10:37 32640 c:\windows\system32\dllcache\symc8xx.sys
+ 2010-01-10 13:57 . 2001-08-17 10:37 16256 c:\windows\system32\dllcache\symc810.sys
+ 2010-01-10 13:57 . 2001-08-17 10:37 30688 c:\windows\system32\dllcache\sym_u3.sys
+ 2010-01-10 13:57 . 2001-08-17 10:37 28384 c:\windows\system32\dllcache\sym_hi.sys
+ 2010-01-10 13:57 . 2001-08-17 19:06 94293 c:\windows\system32\dllcache\sxports.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 10240 c:\windows\system32\dllcache\swpidflt.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 10240 c:\windows\system32\dllcache\swpdflt2.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 53760 c:\windows\system32\dllcache\sw_wheel.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 41472 c:\windows\system32\dllcache\sw_effct.dll
+ 2007-08-04 16:04 . 2004-08-04 00:56 74752 c:\windows\system32\dllcache\storprop.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 53248 c:\windows\system32\dllcache\stlncoin.dll
+ 2010-01-10 13:57 . 2001-08-17 10:21 16896 c:\windows\system32\dllcache\stcusb.sys
+ 2010-01-10 13:57 . 2001-08-17 08:41 48736 c:\windows\system32\dllcache\srwlnd5.sys
+ 2010-01-10 13:56 . 2001-08-17 19:06 24660 c:\windows\system32\dllcache\spxupchk.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 72192 c:\windows\system32\dllcache\sprio800.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 70656 c:\windows\system32\dllcache\sprio600.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 69632 c:\windows\system32\dllcache\spnike.dll
+ 2010-01-10 13:56 . 2001-08-17 10:21 61824 c:\windows\system32\dllcache\speed.sys
+ 2010-01-10 13:56 . 2001-08-17 10:37 19072 c:\windows\system32\dllcache\sparrow.sys
+ 2010-01-10 13:56 . 2001-08-17 09:21 37040 c:\windows\system32\dllcache\sonypi.sys
+ 2010-01-10 13:56 . 2001-08-17 09:21 20752 c:\windows\system32\dllcache\sonync.sys
+ 2004-08-03 23:09 . 2004-08-04 00:07 25472 c:\windows\system32\dllcache\sonydcam.sys
+ 2010-01-10 13:56 . 2001-08-17 09:21 58368 c:\windows\system32\dllcache\smiminib.sys
+ 2010-01-10 13:56 . 2001-08-17 08:42 25034 c:\windows\system32\dllcache\smcpwr2n.sys
+ 2010-01-10 13:56 . 2001-08-17 08:40 35913 c:\windows\system32\dllcache\smcirda.sys
+ 2010-01-10 13:56 . 2001-08-17 08:42 24576 c:\windows\system32\dllcache\smc8000n.sys
+ 2010-01-10 13:56 . 2004-08-03 19:37 16128 c:\windows\system32\dllcache\smbbatt.sys
+ 2010-01-10 13:56 . 2001-08-17 19:06 45568 c:\windows\system32\dllcache\smb3w.dll
+ 2010-01-10 13:56 . 2001-08-17 19:06 33792 c:\windows\system32\dllcache\smb0w.dll
+ 2010-01-10 13:56 . 2001-08-17 19:06 28672 c:\windows\system32\dllcache\sma0w.dll
+ 2010-01-10 13:56 . 2001-08-17 19:06 28160 c:\windows\system32\dllcache\sm91w.dll
+ 2010-01-10 13:56 . 2004-08-03 19:11 13240 c:\windows\system32\dllcache\slwdmsup.sys
+ 2010-01-10 13:56 . 2004-08-03 21:26 73796 c:\windows\system32\dllcache\slserv.exe
+ 2010-01-10 13:56 . 2004-08-03 21:26 32866 c:\windows\system32\dllcache\slrundll.exe
+ 2010-01-10 13:56 . 2004-08-03 19:11 95424 c:\windows\system32\dllcache\slnthal.sys
+ 2010-01-10 13:56 . 2004-08-03 21:26 73832 c:\windows\system32\dllcache\slcoinst.dll
+ 2010-01-10 13:56 . 2004-08-03 19:01 63547 c:\windows\system32\dllcache\sla30nd5.sys
+ 2010-01-10 13:56 . 2001-08-17 08:42 91294 c:\windows\system32\dllcache\skfpwin.sys
+ 2010-01-10 13:56 . 2001-08-17 08:42 94698 c:\windows\system32\dllcache\sk98xwin.sys
+ 2010-01-10 13:56 . 2001-08-17 09:20 50432 c:\windows\system32\dllcache\sisv.sys
+ 2010-01-10 13:56 . 2004-08-03 19:01 32768 c:\windows\system32\dllcache\sisnic.sys
+ 2010-01-10 13:56 . 2004-08-03 19:37 41088 c:\windows\system32\dllcache\sisagp.sys
+ 2010-01-10 13:56 . 2001-08-17 09:20 68608 c:\windows\system32\dllcache\sis6306p.sys
+ 2010-01-10 13:56 . 2001-07-21 10:59 18400 c:\windows\system32\dllcache\sgsmld.sys
+ 2010-01-10 13:56 . 2001-08-17 09:21 98080 c:\windows\system32\dllcache\sgiulnt5.sys
+ 2010-01-10 13:56 . 2001-08-17 08:49 36480 c:\windows\system32\dllcache\sfmanm.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 11392 c:\windows\system32\dllcache\sfloppy.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 10240 c:\windows\system32\dllcache\sffp_sd.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 11136 c:\windows\system32\dllcache\sffdisk.sys
+ 2010-01-10 13:56 . 2001-08-17 10:18 17664 c:\windows\system32\dllcache\sermouse.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 64896 c:\windows\system32\dllcache\serial.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 15488 c:\windows\system32\dllcache\serenum.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 29184 c:\windows\system32\dllcache\sdhcinst.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 67584 c:\windows\system32\dllcache\sdbus.sys
+ 2010-01-10 13:56 . 2001-08-17 10:23 10880 c:\windows\system32\dllcache\scsiscan.sys
+ 2010-01-10 13:56 . 2001-08-17 10:22 11648 c:\windows\system32\dllcache\scsiprnt.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 96256 c:\windows\system32\dllcache\scsiport.sys
+ 2010-01-10 13:56 . 2001-08-17 10:21 17280 c:\windows\system32\dllcache\scr111.sys
+ 2010-01-10 13:56 . 2001-08-17 10:21 16640 c:\windows\system32\dllcache\scmstcs.sys
+ 2010-01-10 13:56 . 2001-08-17 10:21 23936 c:\windows\system32\dllcache\sccmusbm.sys
+ 2010-01-10 13:56 . 2001-08-17 10:21 23936 c:\windows\system32\dllcache\sccmn50m.sys
+ 2010-01-10 13:56 . 2004-08-03 19:29 43136 c:\windows\system32\dllcache\sbp2port.sys
+ 2010-01-10 13:56 . 2001-08-17 09:20 75392 c:\windows\system32\dllcache\s3savmxm.sys
+ 2010-01-10 13:55 . 2001-08-17 09:20 77824 c:\windows\system32\dllcache\s3sav4m.sys
+ 2010-01-10 13:55 . 2001-08-17 09:20 61504 c:\windows\system32\dllcache\s3sav3dm.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 62496 c:\windows\system32\dllcache\s3mtrio.dll
+ 2010-01-10 13:55 . 2001-08-17 09:20 41216 c:\windows\system32\dllcache\s3mt3d.sys
+ 2010-01-10 13:55 . 2001-08-17 10:27 65664 c:\windows\system32\dllcache\s3legacy.sys
+ 2010-01-10 13:47 . 2001-08-17 11:26 66048 c:\windows\system32\dllcache\s3legacy.dll
+ 2010-01-10 13:55 . 2001-08-17 19:06 82432 c:\windows\system32\dllcache\rwia450.dll
+ 2010-01-10 13:55 . 2001-08-17 19:06 79872 c:\windows\system32\dllcache\rwia430.dll
+ 2010-01-10 13:55 . 2001-08-17 19:06 26624 c:\windows\system32\dllcache\rw450ext.dll
+ 2010-01-10 13:55 . 2001-08-17 19:06 24576 c:\windows\system32\dllcache\rw430ext.dll
+ 2007-08-04 16:05 . 2004-08-03 22:31 20992 c:\windows\system32\dllcache\rtl8139.sys
+ 2010-01-10 13:55 . 2001-08-17 08:42 19017 c:\windows\system32\dllcache\rtl8029.sys
+ 2010-01-10 13:55 . 2001-08-17 08:49 30720 c:\windows\system32\dllcache\rthwcls.sys
+ 2010-01-10 13:55 . 2004-08-03 19:29 79104 c:\windows\system32\dllcache\rocket.sys
+ 2010-01-10 13:55 . 2004-08-03 19:34 30080 c:\windows\system32\dllcache\rndismpx.sys
+ 2010-01-10 13:55 . 2001-08-17 08:42 37563 c:\windows\system32\dllcache\rlnet5.sys
+ 2001-08-17 13:24 . 2004-08-04 00:07 12032 c:\windows\system32\dllcache\riodrv.sys
+ 2001-08-17 13:24 . 2004-08-04 00:07 12032 c:\windows\system32\dllcache\rio8drv.sys
+ 2010-01-10 13:55 . 2004-08-03 19:40 59648 c:\windows\system32\dllcache\rfcomm.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 86097 c:\windows\system32\dllcache\reslog32.dll
+ 2007-08-04 16:06 . 2004-08-03 22:59 57472 c:\windows\system32\dllcache\redbook.sys
+ 2010-01-10 13:55 . 2004-08-03 19:11 13776 c:\windows\system32\dllcache\recagent.sys
+ 2010-01-10 13:55 . 2001-08-17 10:21 19584 c:\windows\system32\dllcache\rasirda.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 41472 c:\windows\system32\dllcache\qvusd.dll
+ 2010-01-10 13:55 . 2001-08-17 10:22 49024 c:\windows\system32\dllcache\ql1280.sys
+ 2010-01-10 13:55 . 2001-08-17 10:22 40448 c:\windows\system32\dllcache\ql1240.sys
+ 2010-01-10 13:55 . 2001-08-17 10:22 45312 c:\windows\system32\dllcache\ql12160.sys
+ 2010-01-10 13:55 . 2001-08-17 10:22 33152 c:\windows\system32\dllcache\ql10wnt.sys
+ 2010-01-10 13:55 . 2001-08-17 10:22 40320 c:\windows\system32\dllcache\ql1080.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 35328 c:\windows\system32\dllcache\psisload.dll
+ 2010-01-10 13:55 . 2001-08-17 10:21 16128 c:\windows\system32\dllcache\pscr.sys
+ 2004-08-03 22:59 . 2004-08-04 00:07 35328 c:\windows\system32\dllcache\processr.sys
+ 2010-01-10 13:55 . 2004-08-03 19:30 17664 c:\windows\system32\dllcache\ppa3.sys
+ 2010-01-10 13:55 . 2001-08-17 10:23 17792 c:\windows\system32\dllcache\ppa.sys
+ 2004-08-04 00:56 . 2004-08-04 00:07 15360 c:\windows\system32\dllcache\pjlmon.dll
+ 2004-08-04 00:56 . 2004-08-04 00:07 35328 c:\windows\system32\dllcache\pid.dll
+ 2010-01-10 13:55 . 2001-08-17 10:37 19840 c:\windows\system32\dllcache\philtune.sys
+ 2010-01-10 13:55 . 2001-08-17 10:34 92416 c:\windows\system32\dllcache\phildec.sys
+ 2010-01-10 13:55 . 2001-08-17 10:34 75776 c:\windows\system32\dllcache\philcam1.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 16384 c:\windows\system32\dllcache\philcam1.dll
+ 2010-01-10 13:55 . 2004-08-03 19:36 28032 c:\windows\system32\dllcache\perm3.sys
+ 2010-01-10 13:55 . 2004-08-03 19:36 27904 c:\windows\system32\dllcache\perm2.sys
+ 2010-01-10 13:55 . 2001-08-17 10:37 27296 c:\windows\system32\dllcache\perc2.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 86016 c:\windows\system32\dllcache\pctspk.exe
+ 2010-01-10 13:55 . 2001-08-17 08:41 35328 c:\windows\system32\dllcache\pcntpci5.sys
+ 2010-01-10 13:55 . 2001-08-17 08:41 29769 c:\windows\system32\dllcache\pcntn5m.sys
+ 2010-01-10 13:55 . 2001-08-17 08:41 30282 c:\windows\system32\dllcache\pcntn5hl.sys
+ 2010-01-10 13:55 . 2001-08-17 08:42 26153 c:\windows\system32\dllcache\pcmlm56.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 25088 c:\windows\system32\dllcache\pciidex.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 68224 c:\windows\system32\dllcache\pci.sys
+ 2010-01-10 13:55 . 2004-08-03 19:01 29502 c:\windows\system32\dllcache\pca200e.sys
+ 2010-01-10 13:55 . 2001-08-17 08:42 30495 c:\windows\system32\dllcache\pc100nds.sys
+ 2004-08-03 22:59 . 2004-08-04 00:07 80128 c:\windows\system32\dllcache\parport.sys
+ 2004-08-03 22:59 . 2004-08-04 00:07 42496 c:\windows\system32\dllcache\p3.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 41984 c:\windows\system32\dllcache\ovui2rc.dll
+ 2010-01-10 13:55 . 2001-08-17 19:06 44544 c:\windows\system32\dllcache\ovui2.dll
+ 2010-01-10 13:55 . 2001-08-17 10:35 25216 c:\windows\system32\dllcache\ovsound2.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 39424 c:\windows\system32\dllcache\ovcoms.exe
+ 2010-01-10 13:54 . 2001-08-17 10:35 31872 c:\windows\system32\dllcache\ovce.sys
+ 2010-01-10 13:54 . 2001-08-17 10:35 28032 c:\windows\system32\dllcache\ovcd.sys
+ 2010-01-10 13:54 . 2001-08-17 10:35 48000 c:\windows\system32\dllcache\ovcam2.sys
+ 2010-01-10 13:54 . 2001-08-17 10:35 25088 c:\windows\system32\dllcache\ovca.sys
+ 2010-01-10 13:54 . 2001-08-17 09:58 54186 c:\windows\system32\dllcache\otcsercb.sys
+ 2010-01-10 13:54 . 2001-08-17 08:42 43689 c:\windows\system32\dllcache\otceth5.sys
+ 2010-01-10 13:54 . 2001-08-17 08:42 27209 c:\windows\system32\dllcache\otc06x5.sys
+ 2010-01-10 13:54 . 2001-08-17 08:50 54528 c:\windows\system32\dllcache\opl3sax.sys
+ 2010-01-10 13:54 . 2004-08-03 19:40 61056 c:\windows\system32\dllcache\ohci1394.sys
+ 2010-01-10 13:54 . 2001-08-17 09:19 51552 c:\windows\system32\dllcache\ntgrip.sys
+ 2010-01-10 13:54 . 2004-08-03 19:30 28672 c:\windows\system32\dllcache\nscirda.sys
+ 2010-01-10 13:54 . 2001-08-17 08:50 87040 c:\windows\system32\dllcache\nm6wdm.sys
+ 2001-08-17 13:24 . 2004-08-04 00:07 12032 c:\windows\system32\dllcache\nikedrv.sys
+ 2004-08-03 22:58 . 2004-08-04 00:07 61824 c:\windows\system32\dllcache\nic1394.sys
+ 2010-01-10 13:54 . 2001-08-17 08:42 32840 c:\windows\system32\dllcache\ngrpci.sys
+ 2010-01-10 13:54 . 2001-08-17 08:41 65278 c:\windows\system32\dllcache\netflx3.sys
+ 2010-01-10 13:54 . 2001-08-17 09:20 39264 c:\windows\system32\dllcache\neo20xx.sys
+ 2010-01-10 13:54 . 2001-08-17 19:06 60480 c:\windows\system32\dllcache\neo20xx.dll
+ 2010-01-10 13:54 . 2001-08-17 10:19 15872 c:\windows\system32\dllcache\ne2000.sys
+ 2004-08-03 23:03 . 2004-08-04 00:07 12928 c:\windows\system32\dllcache\ndisuio.sys
+ 2010-01-10 13:54 . 2001-08-17 11:26 91488 c:\windows\system32\dllcache\n9i3disp.dll
+ 2010-01-10 13:54 . 2001-08-17 09:20 27936 c:\windows\system32\dllcache\n9i3d.sys
+ 2010-01-10 13:54 . 2001-08-17 09:20 33088 c:\windows\system32\dllcache\n9i128v2.sys
+ 2010-01-10 13:54 . 2001-08-17 19:06 59104 c:\windows\system32\dllcache\n9i128v2.dll
+ 2010-01-10 13:54 . 2001-08-17 09:20 13664 c:\windows\system32\dllcache\n9i128.sys
+ 2010-01-10 13:54 . 2001-08-17 11:26 35392 c:\windows\system32\dllcache\n9i128.dll
+ 2010-01-10 13:54 . 2001-08-17 08:41 52255 c:\windows\system32\dllcache\n1000nt5.sys
+ 2010-01-10 13:54 . 2001-08-17 10:20 75520 c:\windows\system32\dllcache\mxport.sys
+ 2010-01-10 13:54 . 2001-08-17 10:19 19968 c:\windows\system32\dllcache\mxnic.sys
+ 2010-01-10 13:54 . 2001-08-17 19:06 19968 c:\windows\system32\dllcache\mxicfg.dll
+ 2010-01-10 13:54 . 2001-08-17 10:20 21888 c:\windows\system32\dllcache\mxcard.sys
+ 2010-01-10 13:54 . 2004-08-03 19:34 12672 c:\windows\system32\dllcache\mutohpen.sys
+ 2004-08-04 00:56 . 2004-08-04 00:07 17408 c:\windows\system32\dllcache\msyuv.dll
+ 2010-01-10 13:54 . 2004-08-03 19:40 49024 c:\windows\system32\dllcache\mstape.sys
+ 2004-08-03 23:07 . 2004-08-04 00:07 15488 c:\windows\system32\dllcache\mssmbios.sys
+ 2010-01-10 13:54 . 2001-08-17 10:18 12416 c:\windows\system32\dllcache\msriffwv.sys
+ 2010-01-10 13:53 . 2001-08-17 10:32 35200 c:\windows\system32\dllcache\msgame.sys
+ 2010-01-10 13:53 . 2004-08-03 19:40 51328 c:\windows\system32\dllcache\msdv.sys
+ 2010-01-10 13:53 . 2001-08-17 10:22 17280 c:\windows\system32\dllcache\mraid35x.sys
+ 2010-01-10 13:53 . 2004-08-03 19:40 15360 c:\windows\system32\dllcache\mpe.sys
+ 2010-01-10 13:53 . 2001-08-17 10:18 12160 c:\windows\system32\dllcache\mouhid.sys
+ 2004-08-03 22:58 . 2004-08-04 00:07 23040 c:\windows\system32\dllcache\mouclass.sys
+ 2010-01-10 13:53 . 2001-08-17 10:27 16128 c:\windows\system32\dllcache\modemcsa.sys
+ 2004-08-03 23:08 . 2004-08-04 00:07 30080 c:\windows\system32\dllcache\modem.sys
+ 2004-08-03 23:07 . 2004-08-04 00:07 63744 c:\windows\system32\dllcache\mf.sys
+ 2010-01-10 13:53 . 2004-08-03 19:30 26112 c:\windows\system32\dllcache\memstpci.sys
+ 2010-01-10 13:53 . 2001-08-17 19:06 47616 c:\windows\system32\dllcache\memgrp.dll
+ 2010-01-10 13:53 . 2001-08-17 08:49 48768 c:\windows\system32\dllcache\maestro.sys
+ 2010-01-10 13:53 . 2001-08-17 19:06 58880 c:\windows\system32\dllcache\m3092dc.dll
+ 2010-01-10 13:53 . 2001-08-17 19:06 58368 c:\windows\system32\dllcache\m3091dc.dll
+ 2010-01-10 13:53 . 2001-08-17 09:19 22848 c:\windows\system32\dllcache\lwusbhid.sys
+ 2010-01-10 13:53 . 2004-08-03 19:09 20864 c:\windows\system32\dllcache\lwadihid.sys
+ 2010-01-10 13:53 . 2001-08-17 08:42 70730 c:\windows\system32\dllcache\lne100tx.sys
+ 2010-01-10 13:53 . 2001-08-17 08:42 20573 c:\windows\system32\dllcache\lne100.sys
+ 2010-01-10 13:53 . 2001-08-17 08:41 25065 c:\windows\system32\dllcache\lmndis3.sys
+ 2010-01-10 13:53 . 2001-08-17 10:21 15744 c:\windows\system32\dllcache\lit220p.sys
+ 2010-01-10 13:53 . 2004-08-03 19:29 34688 c:\windows\system32\dllcache\lbrtfdc.sys
+ 2010-01-10 13:53 . 2001-08-17 08:42 26442 c:\windows\system32\dllcache\lanepic5.sys
+ 2010-01-10 13:53 . 2001-08-17 08:42 19016 c:\windows\system32\dllcache\ktc111.sys
+ 2010-01-10 13:53 . 2001-08-17 19:06 37376 c:\windows\system32\dllcache\kousd.dll
+ 2010-01-10 13:53 . 2001-08-17 19:06 45568 c:\windows\system32\dllcache\kdsui.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 24576 c:\windows\system32\dllcache\kbdclass.sys
+ 2004-08-04 00:56 . 2004-08-04 00:07 47616 c:\windows\system32\dllcache\iyuv_32.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 35840 c:\windows\system32\dllcache\isapnp.sys
+ 2010-01-10 13:52 . 2001-08-17 10:19 26624 c:\windows\system32\dllcache\irstusb.sys
+ 2010-01-10 13:52 . 2001-08-17 10:21 18688 c:\windows\system32\dllcache\irsir.sys
+ 2010-01-10 13:52 . 2004-08-03 21:26 27136 c:\windows\system32\dllcache\irmon.dll
+ 2010-01-10 13:52 . 2001-08-17 10:19 23552 c:\windows\system32\dllcache\irmk7.sys
+ 2010-01-10 13:52 . 2004-08-03 19:30 87424 c:\windows\system32\dllcache\irda.sys
+ 2010-01-10 13:52 . 2004-08-03 19:38 40832 c:\windows\system32\dllcache\irbus.sys
+ 2010-01-10 13:52 . 2001-08-17 08:42 45632 c:\windows\system32\dllcache\ip5515.sys
+ 2010-01-10 13:52 . 2001-08-17 19:06 90200 c:\windows\system32\dllcache\io8ports.dll
+ 2010-01-10 13:52 . 2001-08-17 10:20 38784 c:\windows\system32\dllcache\io8.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 36096 c:\windows\system32\dllcache\intelppm.sys
+ 2010-01-10 13:52 . 2001-08-17 10:17 13056 c:\windows\system32\dllcache\inport.sys
+ 2010-01-10 13:52 . 2001-08-17 10:22 16000 c:\windows\system32\dllcache\ini910u.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 41856 c:\windows\system32\dllcache\imapi.sys
+ 2010-01-10 13:52 . 2001-08-17 19:06 20480 c:\windows\system32\dllcache\icam5ext.dll
+ 2010-01-10 13:52 . 2001-08-17 19:06 45056 c:\windows\system32\dllcache\icam5com.dll
+ 2010-01-10 13:52 . 2001-08-17 19:06 61952 c:\windows\system32\dllcache\icam4ext.dll
+ 2010-01-10 13:52 . 2001-08-17 19:06 91136 c:\windows\system32\dllcache\icam4com.dll
+ 2010-01-10 13:52 . 2001-08-17 19:06 26624 c:\windows\system32\dllcache\icam3ext.dll
+ 2010-01-10 13:52 . 2001-08-17 10:36 38528 c:\windows\system32\dllcache\ibmvcap.sys
+ 2010-01-10 13:52 . 2001-08-17 08:41 28700 c:\windows\system32\dllcache\ibmexmp.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 52736 c:\windows\system32\dllcache\i8042prt.sys
+ 2010-01-10 13:52 . 2001-08-17 09:19 58592 c:\windows\system32\dllcache\i740nt5.sys
+ 2010-01-10 13:52 . 2004-08-03 19:30 18560 c:\windows\system32\dllcache\i2omp.sys
+ 2010-01-10 13:52 . 2004-08-03 21:26 32285 c:\windows\system32\dllcache\hsfcisp2.dll
+ 2010-01-10 13:52 . 2001-08-17 09:58 50751 c:\windows\system32\dllcache\hsf_tone.sys
+ 2010-01-10 13:52 . 2001-08-17 09:58 73279 c:\windows\system32\dllcache\hsf_spkp.sys
+ 2010-01-10 13:52 . 2001-08-17 09:58 44863 c:\windows\system32\dllcache\hsf_soar.sys
+ 2010-01-10 13:52 . 2001-08-17 09:58 57471 c:\windows\system32\dllcache\hsf_samp.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 67167 c:\windows\system32\dllcache\hsf_bsc2.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 19456 c:\windows\system32\dllcache\hr1w.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 13312 c:\windows\system32\dllcache\hpsjmcro.dll
+ 2010-01-10 13:51 . 2001-08-17 10:37 25952 c:\windows\system32\dllcache\hpn.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 32768 c:\windows\system32\dllcache\hpgtmcro.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 68608 c:\windows\system32\dllcache\hpgt53tk.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 31232 c:\windows\system32\dllcache\hpgt42tk.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 93696 c:\windows\system32\dllcache\hpgt42.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 48128 c:\windows\system32\dllcache\hpgt33tk.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 89088 c:\windows\system32\dllcache\hpgt33.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 83968 c:\windows\system32\dllcache\hpgt21.dll
+ 2010-01-10 13:51 . 2004-08-03 21:26 21504 c:\windows\system32\dllcache\hidserv.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 24960 c:\windows\system32\dllcache\hidparse.sys
+ 2010-01-10 13:51 . 2004-08-03 19:38 15104 c:\windows\system32\dllcache\hidir.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 36224 c:\windows\system32\dllcache\hidclass.sys
+ 2010-01-10 13:51 . 2004-08-03 19:40 25600 c:\windows\system32\dllcache\hidbth.sys
+ 2010-01-10 13:51 . 2001-08-17 10:28 19200 c:\windows\system32\dllcache\hidbatt.sys
+ 2004-08-04 00:56 . 2004-08-04 00:07 20992 c:\windows\system32\dllcache\hid.dll
+ 2010-01-10 13:51 . 2004-08-03 19:29 28288 c:\windows\system32\dllcache\grserial.sys
+ 2010-01-10 13:51 . 2001-08-17 10:21 82304 c:\windows\system32\dllcache\grclass.sys
+ 2010-01-10 13:51 . 2001-08-17 10:21 17408 c:\windows\system32\dllcache\gpr400.sys
+ 2010-01-10 13:51 . 2004-08-03 19:38 59136 c:\windows\system32\dllcache\gckernel.sys
+ 2010-01-10 13:51 . 2004-08-03 19:38 10624 c:\windows\system32\dllcache\gameenum.sys
+ 2007-08-04 16:06 . 2004-08-03 23:07 46464 c:\windows\system32\dllcache\gagp30kx.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 92160 c:\windows\system32\dllcache\fuusd.dll
+ 2001-08-17 13:57 . 2004-08-04 00:07 12160 c:\windows\system32\dllcache\fsvga.sys
+ 2010-01-10 13:51 . 2004-08-03 19:01 34173 c:\windows\system32\dllcache\forehe.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 71680 c:\windows\system32\dllcache\fnfilter.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 20480 c:\windows\system32\dllcache\flpydisk.sys
+ 2010-01-10 13:51 . 2001-08-17 08:43 27165 c:\windows\system32\dllcache\fetnd5.sys
+ 2010-01-10 13:51 . 2001-08-17 08:40 22090 c:\windows\system32\dllcache\fem556n5.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 27392 c:\windows\system32\dllcache\fdc.sys
+ 2010-01-10 13:51 . 2001-08-17 08:42 24618 c:\windows\system32\dllcache\fa410nd5.sys
+ 2010-01-10 13:51 . 2001-08-17 08:42 16074 c:\windows\system32\dllcache\fa312nd5.sys
+ 2010-01-10 13:51 . 2001-08-17 08:41 11850 c:\windows\system32\dllcache\f3ab18xj.sys
+ 2010-01-10 13:51 . 2001-08-17 08:41 12362 c:\windows\system32\dllcache\f3ab18xi.sys
+ 2010-01-10 13:51 . 2001-08-17 08:42 16998 c:\windows\system32\dllcache\ex10.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 45568 c:\windows\system32\dllcache\esunib.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 45568 c:\windows\system32\dllcache\esuni.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 34816 c:\windows\system32\dllcache\esuimg.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 43008 c:\windows\system32\dllcache\esucm.dll
+ 2010-01-10 13:51 . 2001-08-17 08:49 63360 c:\windows\system32\dllcache\ess.sys
+ 2010-01-10 13:51 . 2001-08-17 08:49 72192 c:\windows\system32\dllcache\es1969.sys
+ 2010-01-10 13:51 . 2001-08-17 08:49 40704 c:\windows\system32\dllcache\es1371mp.sys
+ 2010-01-10 13:51 . 2001-08-17 08:49 37120 c:\windows\system32\dllcache\es1370mp.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 61952 c:\windows\system32\dllcache\eqnloop.exe
+ 2010-01-10 13:51 . 2001-08-17 19:06 51200 c:\windows\system32\dllcache\eqnlogr.exe
+ 2010-01-10 13:51 . 2001-08-17 19:06 53248 c:\windows\system32\dllcache\eqndiag.exe
+ 2010-01-10 13:51 . 2001-08-17 08:42 18503 c:\windows\system32\dllcache\epro4.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 19996 c:\windows\system32\dllcache\em556n4.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 25159 c:\windows\system32\dllcache\elnk3.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 70174 c:\windows\system32\dllcache\el98xn5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 66591 c:\windows\system32\dllcache\el90xbc5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 77386 c:\windows\system32\dllcache\el656nd5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 69194 c:\windows\system32\dllcache\el656cd5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 26141 c:\windows\system32\dllcache\el589nd5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 69692 c:\windows\system32\dllcache\el575nd5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 24653 c:\windows\system32\dllcache\el574nd4.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 55999 c:\windows\system32\dllcache\el556nd5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:40 44103 c:\windows\system32\dllcache\el515.sys
+ 2010-01-10 13:50 . 2001-08-17 08:42 19594 c:\windows\system32\dllcache\e100isa4.sys
+ 2010-01-10 13:50 . 2001-08-17 08:42 50719 c:\windows\system32\dllcache\e1000nt5.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 71040 c:\windows\system32\dllcache\dxg.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 55296 c:\windows\system32\dllcache\dvdplay.exe
+ 2010-01-10 13:50 . 2001-08-17 10:37 20192 c:\windows\system32\dllcache\dpti2o.sys
+ 2010-01-10 13:50 . 2001-08-17 08:42 28062 c:\windows\system32\dllcache\dp83820.sys
+ 2007-08-04 16:07 . 2001-08-17 13:47 23808 c:\windows\system32\dllcache\dot4usb.sys
+ 2007-08-04 16:07 . 2001-08-17 13:47 12928 c:\windows\system32\dllcache\dot4prt.sys
+ 2004-08-04 00:56 . 2004-08-04 00:07 52224 c:\windows\system32\dllcache\dmutil.dll
+ 2010-01-10 13:50 . 2001-08-17 08:41 29696 c:\windows\system32\dllcache\dm9pci5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 26698 c:\windows\system32\dllcache\dlh5xnd5.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 29768 c:\windows\system32\dllcache\divasu.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 37962 c:\windows\system32\dllcache\divaprop.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 38985 c:\windows\system32\dllcache\disrvsu.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 31305 c:\windows\system32\dllcache\disrvpp.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 36352 c:\windows\system32\dllcache\disk.sys
+ 2010-01-10 13:50 . 2001-08-17 08:43 91305 c:\windows\system32\dllcache\dimaint.sys
+ 2010-01-10 13:50 . 2001-08-17 08:47 42432 c:\windows\system32\dllcache\digirlpt.sys
+ 2010-01-10 13:50 . 2001-08-17 08:44 21606 c:\windows\system32\dllcache\digiisdn.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 41046 c:\windows\system32\dllcache\digiisdn.dll
+ 2010-01-10 13:50 . 2001-08-17 08:47 90525 c:\windows\system32\dllcache\digifep5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:43 37735 c:\windows\system32\dllcache\digiasyn.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 65622 c:\windows\system32\dllcache\digiasyn.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 32256 c:\windows\system32\dllcache\diapi2NT.dll
+ 2010-01-10 13:50 . 2001-08-17 08:47 29531 c:\windows\system32\dllcache\dgapci.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 24649 c:\windows\system32\dllcache\dfe650d.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 24648 c:\windows\system32\dllcache\dfe650.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 24064 c:\windows\system32\dllcache\devldr32.exe
+ 2010-01-10 13:50 . 2001-08-17 08:41 20928 c:\windows\system32\dllcache\defpa.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 86016 c:\windows\system32\dllcache\dc240usd.dll
+ 2010-01-10 13:50 . 2001-08-17 08:42 63208 c:\windows\system32\dllcache\dc21x4.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 80896 c:\windows\system32\dllcache\dc210usd.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 25600 c:\windows\system32\dllcache\dc210_32.dll
+ 2010-01-10 13:50 . 2001-08-17 10:22 14720 c:\windows\system32\dllcache\dac960nt.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 27648 c:\windows\system32\dllcache\cyzports.dll
+ 2010-01-10 13:50 . 2001-08-17 10:20 49792 c:\windows\system32\dllcache\cyzport.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 27136 c:\windows\system32\dllcache\cyzcoins.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 27648 c:\windows\system32\dllcache\cyyports.dll
+ 2010-01-10 13:50 . 2001-08-17 10:20 50176 c:\windows\system32\dllcache\cyyport.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 28672 c:\windows\system32\dllcache\cyycoins.dll
+ 2010-01-10 13:50 . 2001-08-17 10:20 14848 c:\windows\system32\dllcache\cyclom-y.sys
+ 2010-01-10 13:50 . 2001-08-17 10:20 17152 c:\windows\system32\dllcache\cyclad-z.sys
+ 2010-01-10 13:50 . 2004-08-03 19:02 48640 c:\windows\system32\dllcache\cwrwdm.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 93952 c:\windows\system32\dllcache\cwcwdm.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 72832 c:\windows\system32\dllcache\cwbwdm.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 96256 c:\windows\system32\dllcache\ctlsb16.sys
+ 2004-08-03 22:59 . 2004-08-04 00:07 36480 c:\windows\system32\dllcache\crusoe.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 42112 c:\windows\system32\dllcache\crtaud.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 60970 c:\windows\system32\dllcache\cpqtrnd5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:43 21533 c:\windows\system32\dllcache\cpqndis5.sys
+ 2001-08-17 13:24 . 2004-08-04 00:07 11776 c:\windows\system32\dllcache\cpqdap01.sys
+ 2010-01-10 13:50 . 2001-08-17 10:22 14976 c:\windows\system32\dllcache\cpqarray.sys
+ 2010-01-10 13:49 . 2001-08-17 08:41 39936 c:\windows\system32\dllcache\cnxt1803.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 44032 c:\windows\system32\dllcache\cnusd.dll
+ 2004-08-04 00:56 . 2004-08-04 00:07 47104 c:\windows\system32\dllcache\cnbjmon.dll
+ 2010-01-10 13:49 . 2001-08-17 10:21 20736 c:\windows\system32\dllcache\cmbp0wdm.sys
+ 2010-01-10 13:49 . 2004-08-03 19:37 14080 c:\windows\system32\dllcache\cmbatt.sys
+ 2010-01-10 13:49 . 2001-08-17 10:27 45696 c:\windows\system32\dllcache\cirrus.sys
+ 2010-01-10 13:49 . 2001-08-17 11:26 91264 c:\windows\system32\dllcache\cirrus.dll
+ 2010-01-10 13:49 . 2004-08-03 21:26 15423 c:\windows\system32\dllcache\ch7xxnt5.dll
+ 2010-01-10 13:49 . 2001-08-17 08:43 49182 c:\windows\system32\dllcache\cem56n5.sys
+ 2010-01-10 13:49 . 2001-08-17 08:43 22044 c:\windows\system32\dllcache\cem33n5.sys
+ 2010-01-10 13:49 . 2001-08-17 08:43 22044 c:\windows\system32\dllcache\cem28n5.sys
+ 2010-01-10 13:49 . 2001-08-17 08:43 27164 c:\windows\system32\dllcache\ce3n5.sys
+ 2010-01-10 13:49 . 2001-08-17 08:43 21530 c:\windows\system32\dllcache\ce2n5.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 49536 c:\windows\system32\dllcache\cdrom.sys
+ 2001-08-17 13:52 . 2004-08-04 00:07 18688 c:\windows\system32\dllcache\cdaudio.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 13952 c:\windows\system32\dllcache\cbidf2k.sys
+ 2010-01-10 13:49 . 2001-08-17 08:43 46108 c:\windows\system32\dllcache\cben5.sys
+ 2010-01-10 13:49 . 2001-08-17 08:42 39680 c:\windows\system32\dllcache\cb325.sys
+ 2010-01-10 13:49 . 2001-08-17 08:42 37916 c:\windows\system32\dllcache\cb102.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 74240 c:\windows\system32\dllcache\camexo20.dll
+ 2010-01-10 13:49 . 2001-08-17 10:21 13824 c:\windows\system32\dllcache\bulltlp3.sys
+ 2010-01-10 13:49 . 2004-08-03 19:40 18944 c:\windows\system32\dllcache\bthusb.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 30208 c:\windows\system32\dllcache\bthserv.dll
+ 2010-01-10 13:49 . 2004-08-03 19:40 35456 c:\windows\system32\dllcache\bthprint.sys
+ 2010-01-10 13:49 . 2004-08-03 19:40 38016 c:\windows\system32\dllcache\bthmodem.sys
+ 2010-01-10 13:49 . 2004-08-03 19:40 17024 c:\windows\system32\dllcache\bthenum.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 20992 c:\windows\system32\dllcache\bthci.dll
+ 2010-01-10 13:49 . 2001-08-17 08:41 31529 c:\windows\system32\dllcache\brzwlan.sys
+ 2010-01-10 13:49 . 2001-08-17 09:42 10368 c:\windows\system32\dllcache\brusbscn.sys
+ 2010-01-10 13:49 . 2001-08-17 09:42 11008 c:\windows\system32\dllcache\brusbmdm.sys
+ 2010-01-10 13:49 . 2001-08-17 09:42 60416 c:\windows\system32\dllcache\brserwdm.sys
+ 2010-01-10 13:49 . 2001-08-17 09:42 39552 c:\windows\system32\dllcache\brparwdm.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 41472 c:\windows\system32\dllcache\brmfusb.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 32256 c:\windows\system32\dllcache\brmfrsmg.exe
+ 2010-01-10 13:49 . 2001-08-17 19:06 29696 c:\windows\system32\dllcache\brmflpt.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 81408 c:\windows\system32\dllcache\brmfcwia.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 15360 c:\windows\system32\dllcache\brmfbidi.dll
+ 2010-01-10 13:49 . 2001-08-17 09:42 12160 c:\windows\system32\dllcache\brfiltlo.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 12800 c:\windows\system32\dllcache\brevif.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 19456 c:\windows\system32\dllcache\brbidiif.dll
+ 2010-01-10 13:49 . 2004-08-03 19:40 11776 c:\windows\system32\dllcache\bdasup.sys
+ 2010-01-10 13:48 . 2001-08-17 08:41 26568 c:\windows\system32\dllcache\bcm4e5.sys
+ 2010-01-10 13:48 . 2001-08-17 08:41 54271 c:\windows\system32\dllcache\bcm42xx5.sys
+ 2010-01-10 13:48 . 2001-08-17 08:41 66557 c:\windows\system32\dllcache\bcm42u.sys
+ 2010-01-10 13:48 . 2001-08-17 10:27 14080 c:\windows\system32\dllcache\battc.sys
+ 2010-01-10 13:48 . 2001-08-17 09:18 36128 c:\windows\system32\dllcache\banshee.sys
+ 2010-01-10 13:48 . 2001-08-17 08:41 96640 c:\windows\system32\dllcache\b57xp32.sys
+ 2010-01-10 13:48 . 2001-08-17 08:43 89952 c:\windows\system32\dllcache\b1cbase.sys
+ 2010-01-10 13:48 . 2001-08-17 08:49 36992 c:\windows\system32\dllcache\aztw2320.sys
+ 2010-01-10 13:48 . 2001-08-17 08:43 37568 c:\windows\system32\dllcache\avmwan.sys
+ 2010-01-10 13:48 . 2001-08-17 19:06 87552 c:\windows\system32\dllcache\avmcoxp.dll
+ 2010-01-10 13:48 . 2004-08-03 19:40 13696 c:\windows\system32\dllcache\avcstrm.sys
+ 2010-01-10 13:48 . 2001-08-17 10:31 36096 c:\windows\system32\dllcache\avcaudio.sys
+ 2010-01-10 13:48 . 2004-08-03 19:40 38912 c:\windows\system32\dllcache\avc.sys
+ 2010-01-10 13:48 . 2004-08-03 21:26 17279 c:\windows\system32\dllcache\atv10nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 14143 c:\windows\system32\dllcache\atv06nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 25471 c:\windows\system32\dllcache\atv04nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 11359 c:\windows\system32\dllcache\atv02nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 21183 c:\windows\system32\dllcache\atv01nt5.dll
+ 2010-01-10 13:48 . 2001-08-17 09:19 23552 c:\windows\system32\dllcache\atixbar.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 26624 c:\windows\system32\dllcache\ativxbar.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 19456 c:\windows\system32\dllcache\ativttxx.sys
+ 2010-01-10 13:48 . 2004-08-03 21:26 32768 c:\windows\system32\dllcache\ativtmxx.dll
+ 2010-01-10 13:48 . 2001-08-17 09:19 17152 c:\windows\system32\dllcache\atitvsnd.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 17152 c:\windows\system32\dllcache\atitunep.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 26880 c:\windows\system32\dllcache\atirtsnd.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 49920 c:\windows\system32\dllcache\atirtcap.sys
+ 2010-01-10 13:48 . 2001-08-17 09:18 70528 c:\windows\system32\dllcache\atiragem.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 10240 c:\windows\system32\dllcache\atipcxxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 63488 c:\windows\system32\dllcache\atinxsxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 31744 c:\windows\system32\dllcache\atinxbxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 73216 c:\windows\system32\dllcache\atintuxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 13824 c:\windows\system32\dllcache\atinttxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 28672 c:\windows\system32\dllcache\atinsnxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 52224 c:\windows\system32\dllcache\atinraxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 14336 c:\windows\system32\dllcache\atinpdxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 13824 c:\windows\system32\dllcache\atinmdxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 57856 c:\windows\system32\dllcache\atinbtxx.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 75136 c:\windows\system32\dllcache\atimpae.sys
+ 2010-01-10 13:48 . 2001-08-17 19:06 37376 c:\windows\system32\dllcache\atievxx.exe
+ 2010-01-10 13:48 . 2001-08-17 09:19 46464 c:\windows\system32\dllcache\atibt829.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 34735 c:\windows\system32\dllcache\ati1xsxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 29455 c:\windows\system32\dllcache\ati1xbxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 36463 c:\windows\system32\dllcache\ati1tuxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 21343 c:\windows\system32\dllcache\ati1ttxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 26367 c:\windows\system32\dllcache\ati1snxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 63663 c:\windows\system32\dllcache\ati1rvxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 30671 c:\windows\system32\dllcache\ati1raxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 12047 c:\windows\system32\dllcache\ati1pdxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 11615 c:\windows\system32\dllcache\ati1mdxx.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 56623 c:\windows\system32\dllcache\ati1btxx.sys
+ 2010-01-10 13:48 . 2001-08-17 10:27 77568 c:\windows\system32\dllcache\ati.sys
+ 2010-01-10 13:48 . 2001-08-17 11:25 96128 c:\windows\system32\dllcache\ati.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 95360 c:\windows\system32\dllcache\atapi.sys
+ 2010-01-10 13:48 . 2001-08-17 08:42 97354 c:\windows\system32\dllcache\aspndis3.sys
+ 2010-01-10 13:48 . 2001-08-17 10:21 14848 c:\windows\system32\dllcache\asc3550.sys
+ 2010-01-10 13:48 . 2001-08-17 10:22 22400 c:\windows\system32\dllcache\asc3350p.sys
+ 2010-01-10 13:48 . 2001-08-17 10:22 26496 c:\windows\system32\dllcache\asc.sys
+ 2004-08-03 22:58 . 2004-08-04 00:07 60800 c:\windows\system32\dllcache\arp1394.sys
+ 2010-01-10 13:48 . 2004-08-03 19:01 36224 c:\windows\system32\dllcache\an983.sys
+ 2010-01-10 13:48 . 2001-08-17 10:22 12032 c:\windows\system32\dllcache\amsint.sys
+ 2004-08-03 22:59 . 2004-08-04 00:07 37376 c:\windows\system32\dllcache\amdk7.sys
+ 2004-08-03 22:59 . 2004-08-04 00:07 36992 c:\windows\system32\dllcache\amdk6.sys
+ 2010-01-10 13:48 . 2004-08-03 19:37 43008 c:\windows\system32\dllcache\amdagp.sys
+ 2010-01-10 13:48 . 2001-08-17 08:41 16969 c:\windows\system32\dllcache\amb8002.sys
+ 2010-01-10 13:48 . 2004-08-03 19:37 42752 c:\windows\system32\dllcache\alim1541.sys
+ 2010-01-10 13:48 . 2001-08-17 10:19 26624 c:\windows\system32\dllcache\alifir.sys
+ 2010-01-10 13:48 . 2001-08-17 08:41 27678 c:\windows\system32\dllcache\ali5261.sys
+ 2010-01-10 13:48 . 2001-08-17 10:37 56960 c:\windows\system32\dllcache\aic78xx.sys
+ 2010-01-10 13:48 . 2001-08-17 10:37 55168 c:\windows\system32\dllcache\aic78u2.sys
+ 2010-01-10 13:48 . 2001-08-17 10:22 12800 c:\windows\system32\dllcache\aha154x.sys
+ 2010-01-10 13:48 . 2004-08-03 19:37 44928 c:\windows\system32\dllcache\agpcpq.sys
+ 2010-01-10 13:48 . 2004-08-03 19:37 42368 c:\windows\system32\dllcache\agp440.sys
+ 2010-01-10 13:47 . 2001-08-17 08:41 46112 c:\windows\system32\dllcache\adptsf50.sys
+ 2010-01-10 13:47 . 2004-08-03 19:02 10880 c:\windows\system32\dllcache\admjoy.sys
+ 2010-01-10 13:47 . 2001-08-17 08:41 20160 c:\windows\system32\dllcache\adm8511.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 11648 c:\windows\system32\dllcache\acpiec.sys
+ 2010-01-10 13:47 . 2001-08-17 19:06 61440 c:\windows\system32\dllcache\acerscad.dll
+ 2010-01-10 13:47 . 2004-08-03 19:02 84480 c:\windows\system32\dllcache\ac97via.sys
+ 2010-01-10 13:47 . 2001-08-17 08:50 96256 c:\windows\system32\dllcache\ac97intc.sys
+ 2010-01-10 13:47 . 2001-08-17 10:22 23552 c:\windows\system32\dllcache\abp480n5.sys
+ 2010-01-10 13:47 . 2001-08-17 11:25 38400 c:\windows\system32\dllcache\8514a.dll
+ 2010-01-10 13:47 . 2004-08-03 19:40 48128 c:\windows\system32\dllcache\61883.sys
+ 2010-01-10 13:47 . 2004-08-03 19:30 12288 c:\windows\system32\dllcache\4mmdat.sys
+ 2010-01-10 13:47 . 2001-08-17 10:36 11264 c:\windows\system32\dllcache\1394vdbg.sys
+ 2010-01-10 13:47 . 2004-08-03 19:40 53248 c:\windows\system32\dllcache\1394bus.sys
+ 2010-01-10 03:41 . 2010-01-10 03:41 36864 c:\windows\Installer\34923e4.msi
+ 2010-01-10 03:40 . 2010-01-10 03:40 27648 c:\windows\Installer\34923de.msi
+ 2010-01-10 13:58 . 2004-08-03 21:26 8192 c:\windows\system32\dllcache\wshirda.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 3200 c:\windows\system32\dllcache\wowfax.dll
+ 2010-01-10 13:58 . 2004-08-03 19:37 8832 c:\windows\system32\dllcache\wmiacpi.sys
+ 2010-01-10 13:57 . 2004-08-03 19:29 5376 c:\windows\system32\dllcache\viaide.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 7556 c:\windows\system32\dllcache\usroslba.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 4736 c:\windows\system32\dllcache\usbd.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 8192 c:\windows\system32\dllcache\tsbyuv.dll
+ 2010-01-10 13:57 . 2001-08-17 10:21 4992 c:\windows\system32\dllcache\toside.sys
+ 2010-01-10 13:57 . 2001-08-17 10:22 7040 c:\windows\system32\dllcache\tandqic.sys
+ 2010-01-10 13:57 . 2001-08-17 10:32 3968 c:\windows\system32\dllcache\swusbflt.sys
+ 2004-08-03 22:58 . 2004-08-04 00:07 4352 c:\windows\system32\dllcache\swenum.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 8192 c:\windows\system32\dllcache\streamci.dll
+ 2010-01-10 13:56 . 2001-08-17 10:26 7552 c:\windows\system32\dllcache\sonypvu1.sys
+ 2010-01-10 13:56 . 2001-08-17 10:23 9600 c:\windows\system32\dllcache\sonymc.sys
+ 2010-01-10 13:56 . 2004-08-03 19:30 7552 c:\windows\system32\dllcache\sonyait.sys
+ 2010-01-10 13:56 . 2001-08-17 10:23 7040 c:\windows\system32\dllcache\snyaitmc.sys
+ 2010-01-10 13:56 . 2001-08-17 10:27 6784 c:\windows\system32\dllcache\smbhc.sys
+ 2010-01-10 13:56 . 2004-08-03 19:37 6912 c:\windows\system32\dllcache\smbclass.sys
+ 2010-01-10 13:56 . 2004-08-03 19:37 6016 c:\windows\system32\dllcache\smbali.sys
+ 2010-01-10 13:56 . 2004-08-03 21:26 3901 c:\windows\system32\dllcache\siint5.dll
+ 2010-01-10 13:56 . 2001-08-17 10:23 6784 c:\windows\system32\dllcache\serscan.sys
+ 2010-01-10 13:56 . 2001-08-17 10:23 6912 c:\windows\system32\dllcache\seaddsmc.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 9216 c:\windows\system32\dllcache\rsmgrstr.dll
+ 2010-01-10 13:55 . 2001-08-17 08:49 3840 c:\windows\system32\dllcache\rpfun.sys
+ 2010-01-10 13:55 . 2001-08-17 10:23 3328 c:\windows\system32\dllcache\qv2kux.sys
+ 2010-01-10 13:55 . 2004-08-03 19:30 6016 c:\windows\system32\dllcache\qic157.sys
+ 2010-01-10 13:55 . 2001-08-17 19:06 5632 c:\windows\system32\dllcache\ptpusb.dll
+ 2010-01-10 13:55 . 2001-08-17 10:23 7552 c:\windows\system32\dllcache\powerfil.sys
+ 2010-01-10 13:55 . 2001-08-17 10:23 7168 c:\windows\system32\dllcache\pnrmc.sys
+ 2010-01-10 13:55 . 2001-08-17 10:37 5504 c:\windows\system32\dllcache\perc2hib.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 3328 c:\windows\system32\dllcache\pciide.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 3456 c:\windows\system32\dllcache\oprghdlr.sys
+ 2010-01-10 13:54 . 2001-08-17 10:17 9344 c:\windows\system32\dllcache\ntapm.sys
+ 2010-01-10 13:54 . 2001-08-17 10:23 7552 c:\windows\system32\dllcache\nsmmc.sys
+ 2010-01-10 13:54 . 2001-08-17 19:06 7168 c:\windows\system32\dllcache\mxport.dll
+ 2010-01-10 13:54 . 2001-08-17 10:30 2944 c:\windows\system32\dllcache\msmpu401.sys
+ 2010-01-10 13:53 . 2001-08-17 10:18 6016 c:\windows\system32\dllcache\msfsio.sys
+ 2010-01-10 13:53 . 2001-08-17 10:22 6528 c:\windows\system32\dllcache\miniqic.sys
+ 2010-01-10 13:53 . 2001-08-17 10:28 8320 c:\windows\system32\dllcache\memcard.sys
+ 2010-01-10 13:53 . 2001-08-17 10:22 7424 c:\windows\system32\dllcache\mammoth.sys
+ 2010-01-10 13:53 . 2004-08-03 19:30 7040 c:\windows\system32\dllcache\ltotape.sys
+ 2010-01-10 13:53 . 2001-08-17 10:23 4992 c:\windows\system32\dllcache\loop.sys
+ 2010-01-10 13:52 . 2004-08-03 19:29 5504 c:\windows\system32\dllcache\intelide.sys
+ 2010-01-10 13:52 . 2001-08-17 19:04 9216 c:\windows\system32\dllcache\ibmsgnet.dll
+ 2010-01-10 13:52 . 2004-08-03 19:30 8192 c:\windows\system32\dllcache\i2omgmt.sys
+ 2010-01-10 13:51 . 2001-08-17 10:22 5760 c:\windows\system32\dllcache\hpt4qic.sys
+ 2010-01-10 13:51 . 2001-08-17 10:32 9600 c:\windows\system32\dllcache\hidusb.sys
+ 2010-01-10 13:51 . 2001-08-17 10:32 2688 c:\windows\system32\dllcache\hidswvd.sys
+ 2010-01-10 13:51 . 2001-08-17 10:32 8576 c:\windows\system32\dllcache\hidgame.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 7168 c:\windows\system32\dllcache\hccoin.dll
+ 2010-01-10 13:51 . 2001-08-17 10:22 7040 c:\windows\system32\dllcache\exabyte2.sys
+ 2010-01-10 13:50 . 2001-08-17 10:23 7296 c:\windows\system32\dllcache\elmsmc.sys
+ 2010-01-10 13:50 . 2001-08-17 10:17 8704 c:\windows\system32\dllcache\dot4scan.sys
+ 2010-01-10 13:50 . 2004-08-03 19:30 8320 c:\windows\system32\dllcache\dlttape.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 6216 c:\windows\system32\dllcache\divaci.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 6729 c:\windows\system32\dllcache\disrvci.dll
+ 2010-01-10 13:50 . 2001-08-17 10:22 7424 c:\windows\system32\dllcache\ddsmc.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 3584 c:\windows\system32\dllcache\cwcosnt5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 3072 c:\windows\system32\dllcache\cwbmidi.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 3072 c:\windows\system32\dllcache\cwbase.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 4096 c:\windows\system32\dllcache\ctwdm32.dll
+ 2010-01-10 13:50 . 2001-08-17 08:49 3712 c:\windows\system32\dllcache\ctljystk.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 6912 c:\windows\system32\dllcache\ctlfacem.sys
+ 2010-01-10 13:49 . 2001-08-17 10:21 6656 c:\windows\system32\dllcache\cmdide.sys
+ 2010-01-10 13:49 . 2004-08-03 19:30 8192 c:\windows\system32\dllcache\changer.sys
+ 2010-01-10 13:49 . 2001-08-17 10:22 7680 c:\windows\system32\dllcache\cd20xrnt.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 9728 c:\windows\system32\dllcache\brserif.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 5120 c:\windows\system32\dllcache\brscnrsm.dll
+ 2010-01-10 13:49 . 2001-08-17 09:42 3168 c:\windows\system32\dllcache\brparimg.sys
+ 2010-01-10 13:49 . 2001-08-17 09:42 3968 c:\windows\system32\dllcache\brfiltup.sys
+ 2010-01-10 13:49 . 2001-08-17 09:42 2944 c:\windows\system32\dllcache\brfilt.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 9728 c:\windows\system32\dllcache\brcoinst.dll
+ 2007-08-04 16:07 . 2001-08-17 13:59 3072 c:\windows\system32\dllcache\audstub.sys
+ 2010-01-10 13:48 . 2001-08-17 09:19 9472 c:\windows\system32\dllcache\ativmdcd.sys
+ 2010-01-10 13:48 . 2001-08-17 10:17 6272 c:\windows\system32\dllcache\apmbatt.sys
+ 2010-01-10 13:48 . 2001-08-17 10:21 5248 c:\windows\system32\dllcache\aliide.sys
+ 2010-01-10 13:48 . 2004-08-03 21:26 3775 c:\windows\system32\dllcache\adv11nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 3711 c:\windows\system32\dllcache\adv09nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 3135 c:\windows\system32\dllcache\adv08nt5.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 3647 c:\windows\system32\dllcache\adv07nt5.dll
+ 2010-01-10 13:47 . 2004-08-03 21:26 3615 c:\windows\system32\dllcache\adv05nt5.dll
+ 2010-01-10 13:47 . 2004-08-03 21:26 4255 c:\windows\system32\dllcache\adv01nt5.dll
+ 2010-01-10 13:47 . 2001-08-17 10:23 7424 c:\windows\system32\dllcache\adicvls.sys
+ 2006-12-01 19:24 . 2006-12-01 19:24 626688 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcr80.dll
+ 2006-12-01 19:24 . 2006-12-01 19:24 548864 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcp80.dll
+ 2006-12-01 19:24 . 2006-12-01 19:24 479232 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\msvcm80.dll
+ 2006-06-06 07:11 . 2002-01-04 22:37 344064 c:\windows\system32\msvcr70.dll
+ 2009-11-03 00:24 . 2009-11-03 00:24 257440 c:\windows\system32\Macromed\Flash\FlashUtil10d.exe
+ 2007-08-04 16:03 . 2010-01-11 04:25 320336 c:\windows\system32\FNTCACHE.DAT
+ 2004-08-04 00:56 . 2004-08-04 00:07 359936 c:\windows\system32\dllcache\wzcsvc.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 108032 c:\windows\system32\dllcache\wshbth.dll
+ 2010-01-10 13:58 . 2004-08-03 19:01 154624 c:\windows\system32\dllcache\wlluc48.sys
+ 2010-01-10 13:58 . 2001-08-17 09:58 771581 c:\windows\system32\dllcache\winacisa.sys
+ 2010-01-10 13:58 . 2001-08-17 09:58 701386 c:\windows\system32\dllcache\wdhaalba.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 397502 c:\windows\system32\dllcache\vpctcom.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 604253 c:\windows\system32\dllcache\vmodem.sys
+ 2010-01-10 13:57 . 2001-08-17 08:44 249402 c:\windows\system32\dllcache\vinwm.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 687999 c:\windows\system32\dllcache\usrwdxjs.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 102457 c:\windows\system32\dllcache\usrv42a.dll
+ 2010-01-10 13:57 . 2001-08-17 09:58 765884 c:\windows\system32\dllcache\usrti.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 113762 c:\windows\system32\dllcache\usrpda.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 323641 c:\windows\system32\dllcache\usrdtea.dll
+ 2010-01-10 13:57 . 2001-08-17 09:58 224802 c:\windows\system32\dllcache\usr1807a.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 794399 c:\windows\system32\dllcache\usr1806v.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 793598 c:\windows\system32\dllcache\usr1806.sys
+ 2010-01-10 13:57 . 2001-08-17 09:58 794654 c:\windows\system32\dllcache\usr1801.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 142976 c:\windows\system32\dllcache\usbport.sys
+ 2010-01-10 13:57 . 2001-08-17 19:06 211968 c:\windows\system32\dllcache\um54scan.dll
+ 2010-01-10 13:57 . 2001-08-17 19:06 216064 c:\windows\system32\dllcache\um34scan.dll
+ 2010-01-10 13:57 . 2001-08-17 09:21 166784 c:\windows\system32\dllcache\tridxpm.sys
+ 2010-01-10 13:57 . 2001-08-17 19:06 525568 c:\windows\system32\dllcache\tridxp.dll
+ 2010-01-10 13:57 . 2001-08-17 09:21 159232 c:\windows\system32\dllcache\tridkbm.sys
+ 2010-01-10 13:57 . 2001-08-17 11:26 440576 c:\windows\system32\dllcache\tridkb.dll
+ 2010-01-10 13:57 . 2001-08-17 09:21 222336 c:\windows\system32\dllcache\trid3dm.sys
+ 2010-01-10 13:57 . 2001-08-17 11:26 315520 c:\windows\system32\dllcache\trid3d.dll
+ 2010-01-10 13:57 . 2001-08-17 10:32 230912 c:\windows\system32\dllcache\tosdvd03.sys
+ 2010-01-10 13:57 . 2001-08-17 10:31 241664 c:\windows\system32\dllcache\tosdvd02.sys
+ 2010-01-10 13:57 . 2001-08-17 08:44 123995 c:\windows\system32\dllcache\tjisdn.sys
+ 2010-01-10 13:57 . 2001-08-17 09:21 138528 c:\windows\system32\dllcache\tgiulnt5.sys
+ 2010-01-10 13:57 . 2004-08-03 19:30 149376 c:\windows\system32\dllcache\tffsport.sys
+ 2010-01-10 13:57 . 2001-08-17 11:26 172768 c:\windows\system32\dllcache\t2r4disp.dll
+ 2010-01-10 13:57 . 2001-08-17 10:20 103936 c:\windows\system32\dllcache\sx.sys
+ 2010-01-10 13:57 . 2001-08-17 19:06 155648 c:\windows\system32\dllcache\stlnprop.dll
+ 2010-01-10 13:57 . 2001-08-17 08:48 285760 c:\windows\system32\dllcache\stlnata.sys
+ 2010-01-10 13:56 . 2001-08-17 19:06 106584 c:\windows\system32\dllcache\spdports.dll
+ 2010-01-10 13:56 . 2001-08-17 19:06 114688 c:\windows\system32\dllcache\sonypi.dll
+ 2010-01-10 13:56 . 2001-08-17 11:26 147200 c:\windows\system32\dllcache\smidispb.dll
+ 2010-01-10 13:56 . 2004-08-03 19:11 404990 c:\windows\system32\dllcache\slntamr.sys
+ 2010-01-10 13:56 . 2004-08-03 19:11 129535 c:\windows\system32\dllcache\slnt7554.sys
+ 2010-01-10 13:56 . 2004-08-03 21:26 188508 c:\windows\system32\dllcache\slgen.dll
+ 2010-01-10 13:56 . 2004-08-03 21:26 286792 c:\windows\system32\dllcache\slextspk.dll
+ 2010-01-10 13:56 . 2001-08-17 11:26 157696 c:\windows\system32\dllcache\sisv256.dll
+ 2010-01-10 13:56 . 2001-08-17 19:06 238592 c:\windows\system32\dllcache\sisgrv.dll
+ 2010-01-10 13:56 . 2001-08-17 09:20 104064 c:\windows\system32\dllcache\sisgrp.sys
+ 2010-01-10 13:56 . 2001-08-17 11:26 150144 c:\windows\system32\dllcache\sis6306v.dll
+ 2010-01-10 13:56 . 2001-08-17 11:26 252032 c:\windows\system32\dllcache\sis300iv.dll
+ 2010-01-10 13:56 . 2001-08-17 09:20 101760 c:\windows\system32\dllcache\sis300ip.sys
+ 2010-01-10 13:56 . 2001-07-21 10:59 161568 c:\windows\system32\dllcache\sgsmusb.sys
+ 2010-01-10 13:56 . 2001-08-17 19:06 386560 c:\windows\system32\dllcache\sgiul50.dll
+ 2010-01-10 13:56 . 2001-08-17 19:06 495616 c:\windows\system32\dllcache\sblfx.dll
+ 2010-01-10 13:55 . 2001-08-17 11:26 198400 c:\windows\system32\dllcache\s3sav4.dll
+ 2010-01-10 13:55 . 2001-08-17 11:26 179264 c:\windows\system32\dllcache\s3sav3d.dll
+ 2010-01-10 13:55 . 2001-08-17 11:26 210496 c:\windows\system32\dllcache\s3mvirge.dll
+ 2010-01-10 13:55 . 2001-08-17 11:26 182272 c:\windows\system32\dllcache\s3mt3d.dll
+ 2010-01-10 13:55 . 2001-08-17 09:20 166720 c:\windows\system32\dllcache\s3m.sys
+ 2010-01-10 13:55 . 2004-08-03 18:59 166912 c:\windows\system32\dllcache\s3gnbm.sys
+ 2010-01-10 13:55 . 2004-08-03 21:26 397056 c:\windows\system32\dllcache\s3gnb.dll
+ 2007-08-04 12:40 . 2004-08-03 19:31 196864 c:\windows\system32\dllcache\rdpdr.sys
+ 2010-01-10 13:55 . 2001-08-17 09:58 714762 c:\windows\system32\dllcache\r2mdmkxx.sys
+ 2010-01-10 13:55 . 2001-08-17 09:58 899146 c:\windows\system32\dllcache\r2mdkxga.sys
+ 2010-01-10 13:55 . 2001-08-17 09:58 130942 c:\windows\system32\dllcache\ptserlv.sys
+ 2010-01-10 13:55 . 2001-08-17 09:58 112574 c:\windows\system32\dllcache\ptserlp.sys
+ 2010-01-10 13:55 . 2001-08-17 09:58 128286 c:\windows\system32\dllcache\ptserli.sys
+ 2010-01-10 13:55 . 2004-08-03 21:26 159232 c:\windows\system32\dllcache\ptpusd.dll
+ 2010-01-10 13:55 . 2004-08-03 21:26 363520 c:\windows\system32\dllcache\psisdecd.dll
+ 2010-01-10 13:55 . 2001-08-17 19:06 121344 c:\windows\system32\dllcache\phvfwext.dll
+ 2010-01-10 13:55 . 2001-08-17 10:34 173696 c:\windows\system32\dllcache\philcam2.sys
+ 2010-01-10 13:55 . 2004-08-03 21:26 259328 c:\windows\system32\dllcache\perm3dd.dll
+ 2010-01-10 13:55 . 2004-08-03 21:26 211712 c:\windows\system32\dllcache\perm2dll.dll
+ 2010-01-10 13:55 . 2004-08-03 18:36 169984 c:\windows\system32\dllcache\pcx500.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 119936 c:\windows\system32\dllcache\pcmcia.sys
+ 2001-08-17 22:36 . 2004-08-04 00:07 157696 c:\windows\system32\dllcache\paqsp.dll
+ 2010-01-10 13:54 . 2001-08-17 10:35 351616 c:\windows\system32\dllcache\ovcodek2.sys
+ 2010-01-10 13:54 . 2001-08-17 19:06 116736 c:\windows\system32\dllcache\ovcodec2.dll
+ 2010-01-10 13:54 . 2001-08-17 09:20 198144 c:\windows\system32\dllcache\nv3.sys
+ 2010-01-10 13:54 . 2001-08-17 19:06 123776 c:\windows\system32\dllcache\nv3.dll
+ 2010-01-10 13:54 . 2004-08-03 19:11 180360 c:\windows\system32\dllcache\ntmtlfax.sys
+ 2010-01-10 13:54 . 2001-08-17 08:50 126080 c:\windows\system32\dllcache\nm5a2wdm.sys
+ 2010-01-10 13:54 . 2004-08-03 19:01 132695 c:\windows\system32\dllcache\netwlan5.sys
+ 2010-01-10 13:54 . 2001-08-17 08:41 128000 c:\windows\system32\dllcache\n100325.sys
+ 2010-01-10 13:54 . 2001-08-17 09:20 103296 c:\windows\system32\dllcache\mtxvideo.sys
+ 2010-01-10 13:54 . 2004-08-03 18:59 452736 c:\windows\system32\dllcache\mtxparhm.sys
+ 2010-01-10 13:54 . 2004-08-03 19:11 126686 c:\windows\system32\dllcache\mtlmnt5.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 451456 c:\windows\system32\dllcache\mrxsmb.sys
+ 2010-01-10 13:53 . 2001-08-17 09:20 320384 c:\windows\system32\dllcache\mgaum.sys
+ 2010-01-10 13:53 . 2001-08-17 11:26 235648 c:\windows\system32\dllcache\mgaud.dll
+ 2001-08-17 22:36 . 2004-08-04 00:07 147968 c:\windows\system32\dllcache\mdwmdmsp.dll
+ 2010-01-10 13:53 . 2001-08-17 08:42 164586 c:\windows\system32\dllcache\mdgndis5.sys
+ 2010-01-10 13:53 . 2001-08-17 09:58 797500 c:\windows\system32\dllcache\ltsmt.sys
+ 2010-01-10 13:53 . 2001-08-17 09:58 802683 c:\windows\system32\dllcache\ltsm.sys
+ 2010-01-10 13:53 . 2004-08-03 19:11 420992 c:\windows\system32\dllcache\ltmdmntt.sys
+ 2010-01-10 13:53 . 2001-08-17 09:58 576746 c:\windows\system32\dllcache\ltmdmntl.sys
+ 2010-01-10 13:53 . 2004-08-03 19:11 606684 c:\windows\system32\dllcache\ltmdmnt.sys
+ 2010-01-10 13:53 . 2001-08-17 09:58 727786 c:\windows\system32\dllcache\ltck000c.sys
+ 2010-01-10 13:53 . 2001-08-17 19:06 242176 c:\windows\system32\dllcache\kdsusd.dll
+ 2010-01-10 13:52 . 2004-08-03 21:26 152576 c:\windows\system32\dllcache\irftp.exe
+ 2010-01-10 13:52 . 2001-08-17 19:06 372824 c:\windows\system32\dllcache\iconf32.dll
+ 2010-01-10 13:52 . 2001-08-17 10:36 100992 c:\windows\system32\dllcache\icam5usb.sys
+ 2010-01-10 13:52 . 2001-08-17 10:36 154496 c:\windows\system32\dllcache\icam4usb.sys
+ 2010-01-10 13:52 . 2001-08-17 10:35 141056 c:\windows\system32\dllcache\icam3.sys
+ 2010-01-10 13:52 . 2001-08-17 08:42 109085 c:\windows\system32\dllcache\ibmtrp.sys
+ 2010-01-10 13:52 . 2001-08-17 08:42 100936 c:\windows\system32\dllcache\ibmtok.sys
+ 2010-01-10 13:52 . 2004-08-03 18:59 161020 c:\windows\system32\dllcache\i81xnt5.sys
+ 2010-01-10 13:52 . 2004-08-03 21:26 702845 c:\windows\system32\dllcache\i81xdnt5.dll
+ 2010-01-10 13:52 . 2001-08-17 11:26 353184 c:\windows\system32\dllcache\i740dnt5.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 263040 c:\windows\system32\dllcache\http.sys
+ 2010-01-10 13:52 . 2004-08-03 19:11 685056 c:\windows\system32\dllcache\hsfcxts2.sys
+ 2010-01-10 13:52 . 2004-08-03 19:11 220032 c:\windows\system32\dllcache\hsfbs2s2.sys
+ 2010-01-10 13:52 . 2001-08-17 09:58 488383 c:\windows\system32\dllcache\hsf_v124.sys
+ 2010-01-10 13:52 . 2001-08-17 09:58 542879 c:\windows\system32\dllcache\hsf_msft.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 391199 c:\windows\system32\dllcache\hsf_k56k.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 115807 c:\windows\system32\dllcache\hsf_fsks.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 199711 c:\windows\system32\dllcache\hsf_faxx.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 289887 c:\windows\system32\dllcache\hsf_fall.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 150239 c:\windows\system32\dllcache\hsf_amos.sys
+ 2010-01-10 13:51 . 2001-08-17 19:06 324608 c:\windows\system32\dllcache\hpojwia.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 165888 c:\windows\system32\dllcache\hpgt53.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 126976 c:\windows\system32\dllcache\hpgt34tk.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 101376 c:\windows\system32\dllcache\hpgt34.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 123392 c:\windows\system32\dllcache\hpgt21tk.dll
+ 2010-01-10 13:51 . 2001-08-17 19:06 119296 c:\windows\system32\dllcache\hpdigwia.dll
+ 2010-01-10 13:51 . 2001-08-17 09:58 907456 c:\windows\system32\dllcache\hcf_msft.sys
+ 2010-01-10 13:51 . 2001-08-17 09:19 322432 c:\windows\system32\dllcache\g400m.sys
+ 2010-01-10 13:51 . 2001-08-17 09:19 320384 c:\windows\system32\dllcache\g200m.sys
+ 2010-01-10 13:51 . 2001-08-17 11:26 470144 c:\windows\system32\dllcache\g200d.dll
+ 2010-01-10 13:51 . 2001-08-17 08:45 454912 c:\windows\system32\dllcache\fxusbase.sys
+ 2010-01-10 13:51 . 2001-08-17 08:45 455296 c:\windows\system32\dllcache\fusbbase.sys
+ 2010-01-10 13:51 . 2001-08-17 08:45 455680 c:\windows\system32\dllcache\fus2base.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 125056 c:\windows\system32\dllcache\ftdisk.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 193024 c:\windows\system32\dllcache\fsquirt.exe
+ 2010-01-10 13:51 . 2001-08-17 08:45 442240 c:\windows\system32\dllcache\fpnpbase.sys
+ 2010-01-10 13:51 . 2001-08-17 08:44 441728 c:\windows\system32\dllcache\fpcmbase.sys
+ 2010-01-10 13:51 . 2001-08-17 08:44 444416 c:\windows\system32\dllcache\fpcibase.sys
+ 2010-01-10 13:51 . 2004-08-03 19:02 137088 c:\windows\system32\dllcache\essm2e.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 347550 c:\windows\system32\dllcache\es56tpi.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 594238 c:\windows\system32\dllcache\es56hpi.sys
+ 2010-01-10 13:51 . 2001-08-17 09:58 595647 c:\windows\system32\dllcache\es56cvmp.sys
+ 2010-01-10 13:51 . 2001-08-17 08:49 174464 c:\windows\system32\dllcache\es198x.sys
+ 2010-01-10 13:51 . 2001-08-17 08:47 629952 c:\windows\system32\dllcache\eqn.sys
+ 2010-01-10 13:51 . 2001-08-17 10:20 114944 c:\windows\system32\dllcache\epstw2k.sys
+ 2010-01-10 13:51 . 2001-08-17 10:20 144896 c:\windows\system32\dllcache\epcfw2k.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 283904 c:\windows\system32\dllcache\emu10k1m.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 171520 c:\windows\system32\dllcache\el99xn51.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 455199 c:\windows\system32\dllcache\el985n51.sys
+ 2010-01-10 13:50 . 2001-08-17 08:41 153631 c:\windows\system32\dllcache\el90xnd5.sys
+ 2010-01-10 13:50 . 2001-08-17 09:58 241206 c:\windows\system32\dllcache\el656se5.sys
+ 2010-01-10 13:50 . 2001-08-17 09:58 634134 c:\windows\system32\dllcache\el656ct5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:42 117760 c:\windows\system32\dllcache\e100b325.sys
+ 2010-01-10 13:50 . 2001-08-17 08:50 334208 c:\windows\system32\dllcache\ds1wdm.sys
+ 2007-08-04 16:07 . 2004-08-03 22:58 207360 c:\windows\system32\dllcache\dot4.sys
+ 2010-01-10 13:50 . 2001-08-17 08:44 952007 c:\windows\system32\dllcache\diwan.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 236060 c:\windows\system32\dllcache\ditrace.exe
+ 2010-01-10 13:50 . 2001-08-17 19:06 614429 c:\windows\system32\dllcache\digiview.exe
+ 2010-01-10 13:50 . 2001-08-17 19:06 110621 c:\windows\system32\dllcache\digirlpt.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 102484 c:\windows\system32\dllcache\digiinf.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 159828 c:\windows\system32\dllcache\digihlc.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 229462 c:\windows\system32\dllcache\digifwrk.dll
+ 2010-01-10 13:50 . 2001-08-17 08:43 103044 c:\windows\system32\dllcache\digidxb.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 131156 c:\windows\system32\dllcache\digidbp.dll
+ 2010-01-10 13:49 . 2001-08-17 08:43 164923 c:\windows\system32\dllcache\diapi2.sys
+ 2010-01-10 13:50 . 2001-08-17 19:06 419357 c:\windows\system32\dllcache\dgconfig.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 256512 c:\windows\system32\dllcache\devcon32.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 110592 c:\windows\system32\dllcache\dc260usd.dll
+ 2010-01-10 13:50 . 2001-08-17 10:22 179584 c:\windows\system32\dllcache\dac2w2k.sys
+ 2010-01-10 13:50 . 2001-08-17 08:42 117760 c:\windows\system32\dllcache\d100ib5.sys
+ 2010-01-10 13:50 . 2001-08-17 08:49 111872 c:\windows\system32\dllcache\cwcspud.sys
+ 2010-01-10 13:50 . 2004-08-03 21:26 249856 c:\windows\system32\dllcache\ctmasetp.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 175104 c:\windows\system32\dllcache\csamsp.dll
+ 2010-01-10 13:50 . 2001-08-17 19:06 216064 c:\windows\system32\dllcache\cpscan.dll
+ 2010-01-10 13:49 . 2001-08-17 10:27 248064 c:\windows\system32\dllcache\cl546xm.sys
+ 2010-01-10 13:49 . 2001-08-17 11:26 170880 c:\windows\system32\dllcache\cl546x.dll
+ 2010-01-10 13:49 . 2001-08-17 11:26 111232 c:\windows\system32\dllcache\cl5465.dll
+ 2001-08-17 14:02 . 2004-08-04 00:07 262528 c:\windows\system32\dllcache\cinemst2.sys
+ 2010-01-10 13:49 . 2001-08-17 10:32 272640 c:\windows\system32\dllcache\cinemclc.sys
+ 2010-01-10 13:49 . 2001-08-17 08:43 980034 c:\windows\system32\dllcache\cicap.sys
+ 2010-01-10 13:49 . 2001-08-17 09:58 714698 c:\windows\system32\dllcache\cbmdmkxx.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 119296 c:\windows\system32\dllcache\camext30.dll
+ 2010-01-10 13:49 . 2001-08-17 19:06 236032 c:\windows\system32\dllcache\camext20.dll
+ 2010-01-10 13:49 . 2001-08-17 10:34 171264 c:\windows\system32\dllcache\camdrv30.sys
+ 2010-01-10 13:49 . 2001-08-17 10:34 223232 c:\windows\system32\dllcache\camdrv21.sys
+ 2010-01-10 13:49 . 2001-08-17 10:35 314752 c:\windows\system32\dllcache\camdro21.sys
+ 2010-01-10 13:49 . 2004-08-03 19:40 274304 c:\windows\system32\dllcache\bthport.sys
+ 2010-01-10 13:49 . 2004-08-03 19:28 100992 c:\windows\system32\dllcache\bthpan.sys
+ 2010-01-10 13:49 . 2001-08-17 19:06 102400 c:\windows\system32\dllcache\binlsvc.dll
+ 2010-01-10 13:48 . 2001-08-17 11:26 342336 c:\windows\system32\dllcache\banshee.dll
+ 2010-01-10 13:48 . 2001-08-17 19:06 144384 c:\windows\system32\dllcache\avmenum.dll
+ 2007-08-04 16:06 . 2004-08-04 00:56 516768 c:\windows\system32\dllcache\ativvaxx.dll
+ 2010-01-10 13:48 . 2001-08-17 11:26 104832 c:\windows\system32\dllcache\atiraged.dll
+ 2010-01-10 13:48 . 2004-08-03 18:59 104960 c:\windows\system32\dllcache\atinrvxx.sys
+ 2010-01-10 13:48 . 2001-08-17 09:18 281600 c:\windows\system32\dllcache\atimtai.sys
+ 2010-01-10 13:48 . 2001-08-17 09:18 289664 c:\windows\system32\dllcache\atimpab.sys
+ 2010-01-10 13:48 . 2001-08-17 11:26 268160 c:\windows\system32\dllcache\atidvai.dll
+ 2010-01-10 13:48 . 2001-08-17 11:26 137216 c:\windows\system32\dllcache\atidrae.dll
+ 2010-01-10 13:48 . 2001-08-17 11:25 382592 c:\windows\system32\dllcache\atidrab.dll
+ 2007-08-04 16:06 . 2004-08-04 00:56 870784 c:\windows\system32\dllcache\ati3d1ag.dll
+ 2007-08-04 16:06 . 2004-08-03 22:29 701440 c:\windows\system32\dllcache\ati2mtag.sys
+ 2010-01-10 13:48 . 2004-08-03 18:59 327040 c:\windows\system32\dllcache\ati2mtaa.sys
+ 2007-08-04 16:06 . 2004-08-04 00:56 201728 c:\windows\system32\dllcache\ati2dvag.dll
+ 2010-01-10 13:48 . 2004-08-03 21:26 377984 c:\windows\system32\dllcache\ati2dvaa.dll
+ 2007-08-04 16:06 . 2004-08-04 00:56 229376 c:\windows\system32\dllcache\ati2cqag.dll
+ 2010-01-10 13:47 . 2001-08-17 10:37 101888 c:\windows\system32\dllcache\adpu160m.sys
+ 2010-01-10 13:47 . 2001-08-17 08:49 747392 c:\windows\system32\dllcache\adm8830.sys
+ 2010-01-10 13:47 . 2001-08-17 08:49 553984 c:\windows\system32\dllcache\adm8820.sys
+ 2010-01-10 13:47 . 2001-08-17 08:49 584448 c:\windows\system32\dllcache\adm8810.sys
+ 2004-08-04 00:07 . 2004-08-04 00:07 187776 c:\windows\system32\dllcache\acpi.sys
+ 2010-01-10 13:47 . 2001-08-17 08:50 297728 c:\windows\system32\dllcache\ac97sis.sys
+ 2010-01-10 13:47 . 2004-08-03 19:02 231552 c:\windows\system32\dllcache\ac97ali.sys
+ 2010-01-10 13:47 . 2001-08-17 19:06 462848 c:\windows\system32\dllcache\a3dapi.dll
+ 2010-01-10 13:47 . 2001-08-17 09:18 148352 c:\windows\system32\dllcache\3dfxvsm.sys
+ 2010-01-10 13:47 . 2001-08-17 11:25 689216 c:\windows\system32\dllcache\3dfxvs.dll
+ 2010-01-10 13:47 . 2001-08-17 09:58 762780 c:\windows\system32\dllcache\3cwmcru.sys
+ 2005-05-20 14:49 . 2003-04-18 12:46 1233920 c:\windows\system32\msxml4.dll
+ 2010-01-10 13:54 . 2004-08-03 18:59 1897408 c:\windows\system32\dllcache\nv4_mini.sys
+ 2010-01-10 13:54 . 2004-08-03 21:26 4274816 c:\windows\system32\dllcache\nv4_disp.dll
+ 2004-08-04 00:07 . 2004-08-04 00:07 2180992 c:\windows\system32\dllcache\ntoskrnl.exe
+ 2010-01-10 13:54 . 2004-08-03 19:29 2015232 c:\windows\system32\dllcache\ntkrpamp.exe
+ 2004-08-03 22:59 . 2004-08-04 00:07 2056832 c:\windows\system32\dllcache\ntkrnlpa.exe
+ 2010-01-10 13:47 . 2004-08-03 19:48 2148352 c:\windows\system32\dllcache\ntkrnlmp.exe
+ 2010-01-10 13:54 . 2004-08-03 21:26 1737856 c:\windows\system32\dllcache\mtxparhd.dll
+ 2010-01-10 13:54 . 2004-08-03 19:11 1309184 c:\windows\system32\dllcache\mtlstrm.sys
+ 2010-01-10 13:52 . 2004-08-03 19:11 1041536 c:\windows\system32\dllcache\hsfdpsp2.sys
+ 2010-01-10 13:51 . 2001-08-17 11:26 1733120 c:\windows\system32\dllcache\g400d.dll
+ 2007-08-04 16:06 . 2004-08-04 00:56 1888992 c:\windows\system32\dllcache\ati3duag.dll
+ 2007-08-04 14:34 . 2010-01-18 14:04 3817984 c:\windows\Installer\4be3b3.msi
- 2007-08-04 14:34 . 2009-12-21 10:00 3817984 c:\windows\Installer\4be3b3.msi
+ 2010-01-10 04:02 . 2010-01-10 04:02 3940352 c:\windows\Installer\35c410d.msi
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\program files\Google\GoogleToolbarNotifier\1.0.720.3640\GoogleToolbarNotifier.exe" [2007-08-04 155896]
"BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"="c:\program files\Common Files\Ahead\Lib\NMBgMonitor.exe" [2007-01-15 147456]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" [2004-08-03 1667584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IMJPMIG8.1"="c:\windows\IME\imjp8_1\IMJPMIG.EXE" [2004-08-04 208952]
"MSPY2002"="c:\windows\system32\IME\PINTLGNT\ImScInst.exe" [2004-08-04 59392]
"PHIME2002ASync"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"PHIME2002A"="c:\windows\system32\IME\TINTLGNT\TINTSETP.EXE" [2004-08-04 455168]
"SoundMan"="SOUNDMAN.EXE" [2003-01-07 46592]
"StatusClient"="c:\program files\Hewlett-Packard\Toolbox2.0\Apache Tomcat 4.0\webapps\Toolbox\StatusClient\StatusClient.exe" [2002-12-16 36864]
"TomcatStartup"="c:\program files\Hewlett-Packard\Toolbox2.0\hpbpsttp.exe" [2003-03-31 155648]
"ShStatEXE"="c:\program files\McAfee\VirusScan Enterprise\SHSTAT.EXE" [2006-11-29 112216]
"McAfeeUpdaterUI"="c:\program files\McAfee\Common Framework\UdaterUI.exe" [2006-11-17 136768]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2009-10-03 35696]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2009-09-04 935288]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Acrobat Assistant.lnk - c:\program files\Adobe\Acrobat 6.0\Distillr\acrotray.exe [2003-5-15 217193]
McAfee Security Scan.lnk - c:\program files\McAfee Security Scan\1.0.150\SSScheduler.exe [2009-7-28 199184]
WinZip Quick Pick.lnk - c:\program files\WinZip\WZQKPICK.EXE [2007-8-4 389120]

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\McAfee\\Common Framework\\FrameworkService.exe"=
"c:\\Program Files\\Hewlett-Packard\\Toolbox2.0\\Javasoft\\JRE\\1.3.1\\bin\\javaw.exe"=
"c:\\Program Files\\FlashGet\\flashget.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YahooMessenger.exe"=
"c:\\Program Files\\Yahoo!\\Messenger\\YServer.exe"=
"c:\\Program Files\\VIP Quality Software\\VIP Task Manager Professional\\DBAdminUtils\\BridgeService.exe"=
"c:\\Program Files\\VIP Quality Software\\VIP Task Manager Professional\\DBServer\\bin\\fbserver.exe"=
"c:\\Program Files\\PatentWizard, LLC\\PatentHunter3\\PatentHunter.exe"=

S1 SASDIFSV;SASDIFSV;\??\c:\docume~1\Behrooz\LOCALS~1\Temp\SuperAntiSpyware\SASDIFSV.SYS --> c:\docume~1\Behrooz\LOCALS~1\Temp\SuperAntiSpyware\SASDIFSV.SYS [?]
S1 SASKUTIL;SASKUTIL;\??\c:\docume~1\Behrooz\LOCALS~1\Temp\SuperAntiSpyware\SASKUTIL.sys --> c:\docume~1\Behrooz\LOCALS~1\Temp\SuperAntiSpyware\SASKUTIL.sys [?]
S2 FirebirdGuardianDefaultInstance;Firebird Guardian - DefaultInstance;c:\program files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe -s --> c:\program files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbguard.exe -s [?]
S2 VIPBridgeService;VIP DB Bridge Service;c:\program files\VIP Quality Software\VIP Task Manager Professional\DBAdminUtils\BridgeService.exe [09-11-24 08:31 4256768]
S3 FirebirdServerDefaultInstance;Firebird Server - DefaultInstance;c:\program files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe -s --> c:\program files\VIP Quality Software\VIP Task Manager Professional\DBServer\bin\fbserver.exe -s [?]
S3 SASENUM;SASENUM;\??\c:\docume~1\Behrooz\LOCALS~1\Temp\SuperAntiSpyware\SASENUM.SYS --> c:\docume~1\Behrooz\LOCALS~1\Temp\SuperAntiSpyware\SASENUM.SYS [?]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uSearch Page = hxxp://www.google.com
uSearch Bar = hxxp://www.google.com/ie
mStart Page = hxxp://www.limoonat.com
uInternet Settings,ProxyOverride = local
IE: &Download All with FlashGet - c:\program files\FlashGet\jc_all.htm
IE: &Download with FlashGet - c:\program files\FlashGet\jc_link.htm
IE: &PHToolBand -
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-01-19 08:04
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2010-01-19 08:06:10
ComboFix-quarantined-files.txt 2010-01-19 04:36
ComboFix2.txt 2009-12-29 04:29
ComboFix3.txt 2009-12-22 07:53
ComboFix4.txt 2009-12-22 05:00
ComboFix5.txt 2010-01-19 04:29

Pre-Run: 22,823,477,248 bytes free
Post-Run: 23,003,844,608 bytes free

- - End Of File - - 37B1379DD82F36B8A5031D99573B0A5F

Share this topic:


  • 2 Pages +
  • 1
  • 2
  • You cannot start a new topic
  • You cannot reply to this topic

1 User(s) are reading this topic
0 members, 1 guests, 0 anonymous users