Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Haxdoor.hm Trojan On Vista Can't Change Wallpaper Or See Pics


  • This topic is locked This topic is locked
2 replies to this topic

#1 Belladonna13

Belladonna13

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:45 PM

Posted 21 August 2008 - 06:14 AM

Hi Guys!

Big fan of your work! You guys seem really friendly and helpful compared to some other malware forum sites...

Here's my problem. I have been complacent in my anti-malware upkeep on my new Dell laptop, thinking anti-virus was enough to keep out the nasties. I recently downloaded Spybot - Search and Destroy (due to paranoia created by an infected desktop, different trojan, not related, being fixed elsewhere) and found Haxdoor.hm in the following locations C:\\Windows\System32\skyx16.dll, ...qz.dll and ...qz.sys.

Now upon reboot, three black screens, each with the post scripts of the above mentioned baddies: skyx16.dll, qz.dll and qz.sys each with the question:
In Surrounding Boarder: C:\Windows\System32\cmd.exe
In Black box: 'C:\Windows\System32\skyx16.dll_old\*, Are you sure (Y/N)?_ '
I type at prompt: 'y'
I get the reply:

'C:\Windows\System32\readme.txt'
'Access is denied'.

I run another scan, according to Spybot S&D, they are still there. So effectively these files appear to have locked them selves as I have read trojans can do.

The other night in my flu induced delirium, I downloaded: Pocket Killbox and Unlocker from PC Hell (the name says it all).
I found the files I thought I was looking for Unlocked them and deleted them with the unlocker in Normal mode. Restarted, ran a Spybot: No Haxdoor listed!

Until today... Reluctantly ran Spybot S&D: Haxdoor.hm is back... :thumbsup:

So far it is affecting:

My document links to programs like Word and Excel (I'm doing my honours thesis so this is not the time to be wasting on this)
It will not display pictures unless I scroll through the View options, otherwise my icons look pixelated (i.e.. boxy)
My desktop will not change to anything other than a black wall.

Prior to this epiphany I have downloaded and run:
  • Bughunter
  • Malwarebytes Anti Malware (MBAM)= comes up with 67 infections
  • SUPERAntiSpyware = comes up with 111 infections including trojans
  • Threatfire
  • Malware Immunizer
  • Trend Micro Internet Security (paid version)
  • Trend Micro RUBotted
  • COMODO Firewall
  • Windows Advanced Care 3
  • Avenger
  • ComboFix (which I cannot get to work with Vista)
  • CWShredder
  • MGTools inc. HijackThis (HJT)
  • Stinger
  • Rootkit Buster
  • Decards System Scanner (DSS)
None of them have worked using the online guides from here or MajorGeeks and I am now at my wits end. I have almost every program known to man.

Can someone please HELP ME????

What logs do you want first? I have hundreds... I'll give you DSS to start...

Deckard's System Scanner v20071014.68
Run by Belladonna on 2008-08-21 20:59:17
Computer is in Normal Mode.
--------------------------------------------------------------------------------



-- HijackThis (run as Belladonna.exe) ------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:00:32 PM, on 21/08/2008
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16711)
Boot mode: Normal

Running processes:
C:\Windows\System32\smss.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\csrss.exe
C:\Windows\system32\services.exe
C:\Windows\system32\lsass.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\winlogon.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\SYSTEM32\WISPTIS.EXE
C:\Windows\system32\WLANExt.exe
C:\Program Files\Common Files\microsoft shared\ink\TabTip.exe
C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
C:\Windows\Explorer.EXE
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\svchost.exe
C:\Program Files\IObit\IObit SmartDefrag\IObit SmartDefrag.exe
C:\Windows\sttray.exe
C:\Program Files\ThreatFire\TFTray.exe
C:\Program Files\COMODO\Firewall\cfp.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe
C:\Program Files\COMODO\Firewall\cmdagent.exe
C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
C:\Program Files\Dell Network Assistant\hnm_svc.exe
C:\Windows\system32\svchost.exe
C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Trend Micro\RUBotted\TMRUBotted.exe
C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
C:\Windows\system32\svchost.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Program Files\ThreatFire\TFService.exe
C:\Windows\system32\WTablet\Wacom_TabletUser.exe
C:\Windows\system32\Wacom_Tablet.exe
C:\Windows\System32\svchost.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Trend Micro\BM\TMBMSRV.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\System32\alg.exe
C:\Windows\system32\taskeng.exe
C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe
C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Program Files\IObit\Advanced WindowsCare 3 Beta\Awc.exe
C:\Program Files\Microsoft Office\Office12\WINWORD.EXE
C:\Program Files\IObit\Advanced WindowsCare 3 Beta\Sup_SmartRAM.exe
C:\Program Files\Windows Live\Messenger\usnsvc.exe
C:\PROGRA~1\ENDNOT~1\EndNote.EXE
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\system32\ntvdm.exe
C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Windows\system32\cmd.exe
C:\Windows\system32\ntvdm.exe
C:\Program Files\Common Files\Microsoft Shared\MSInfo\msinfo32.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Users\Belladonna\Desktop\Malwear Removal\dss.exe
C:\MGTools\Belladonna.exe
C:\Windows\system32\SearchFilterHost.exe

R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Window Title = Internet Explorer provided by Dell
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: QFX Software KeyScrambler - {2B9F5787-88A5-4945-90E7-C4B18563BC5E} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: EpsonToolBandKicker Class - {E99421FB-68DD-40F0-B4AC-B7027CAE2F1A} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: EPSON Web-To-Page - {EE5D279F-081B-4404-994D-C6B60AAEBA6D} - C:\Program Files\EPSON\EPSON Web-To-Page\EPSON Web-To-Page.dll
O3 - Toolbar: SciFinder Scholar Bar - {4e16a8fb-0521-46d1-aa2c-d0fc7abf6af9} - mscoree.dll (file missing)
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [ThreatFire] C:\Program Files\ThreatFire\TFTray.exe
O4 - HKLM\..\Run: [COMODO Firewall Pro] "C:\Program Files\COMODO\Firewall\cfp.exe" -h
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre6\bin\jusched.exe"
O4 - HKLM\..\Run: [UfSeAgnt.exe] "C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe"
O4 - HKLM\..\Run: [DellSupportCenter] "C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter
O4 - HKCU\..\Run: [ccleaner] "C:\Program Files\CCleaner\CCleaner.exe" /AUTO
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [OE] "C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe"
O4 - HKCU\..\Run: [SmartRAM] "C:\Program Files\IObit\Advanced WindowsCare 3 Beta\Sup_SmartRAM.exe" /m
O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Send image to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O8 - Extra context menu item: Send page to &Bluetooth Device... - c:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: (no name) - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra 'Tools' menuitem: &KeyScrambler... - {5C106A59-CC3C-4caa-81A4-6D909B5ACE23} - C:\Program Files\KeyScrambler\KeyScramblerIE.dll
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O16 - DPF: {5D86DDB5-BDF9-441B-9E9E-D4730F4EE499} (BDSCANONLINE Control) - http://download.bitdefender.com/resources/scan8/oscan8.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Lavasoft Ad-Aware Service (aawservice) - Lavasoft - C:\Program Files\Lavasoft\Ad-Aware\aawservice.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: COMODO Firewall Pro Helper Service (cmdAgent) - Unknown owner - C:\Program Files\COMODO\Firewall\cmdagent.exe
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Advanced Networking Service (hnmsvc) - SingleClick Systems - C:\Program Files\Dell Network Assistant\hnm_svc.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: RoxMediaDB9 - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxMediaDB9.exe
O23 - Service: Roxio Hard Drive Watcher 9 (RoxWatch9) - Sonic Solutions - C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
O23 - Service: Trend Micro RUBotted Service (RUBotted) - Trend Micro Inc. - C:\Program Files\Trend Micro\RUBotted\TMRUBotted.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: Trend Micro Central Control Component (SfCtlCom) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\SfCtlCom.exe
O23 - Service: SupportSoft Sprocket Service (dellsupportcenter) (sprtsvc_dellsupportcenter) - SupportSoft, Inc. - C:\Program Files\Dell Support Center\bin\sprtsvc.exe
O23 - Service: SigmaTel Audio Service (STacSV) - SigmaTel, Inc. - C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
O23 - Service: TabletServiceWacom - Wacom Technology, Corp. - C:\Windows\system32\Wacom_Tablet.exe
O23 - Service: ThreatFire - PC Tools - C:\Program Files\ThreatFire\TFService.exe
O23 - Service: Trend Micro Unauthorized Change Prevention Service (TMBMServer) - Trend Micro Inc. - C:\Program Files\Trend Micro\BM\TMBMSRV.exe
O23 - Service: Trend Micro Personal Firewall (TmPfw) - Trend Micro Inc. - C:\PROGRA~1\TRENDM~1\INTERN~1\TmPfw.exe
O23 - Service: Trend Micro Proxy Service (tmproxy) - Trend Micro Inc. - C:\Program Files\Trend Micro\Internet Security\TmProxy.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 11648 bytes

-- Files created between 2008-07-21 and 2008-08-21 -----------------------------

2008-08-21 18:33:52 0 d-------- C:\perflogs
2008-08-19 13:01:07 90668 --a------ C:\Windows\system32\vobis32.dll
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\skyx16.dll
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\qz.sys
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\qz.dll
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\ppts16.dll
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\pptp32.dll
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\pptp24.sys
2008-08-19 12:44:19 0 dr-hs---- C:\Windows\system32\pptp16.dll
2008-08-19 12:44:19 256 -r-h----- C:\Program Files\spamblockerutility
2008-08-19 12:44:19 244 -r-h----- C:\Program Files\shopperreports
2008-08-19 12:44:19 240 -r-h----- C:\Program Files\pc mightymax
2008-08-19 12:43:15 0 dr-hs---- C:\Windows\farmmext.exe
2008-08-19 12:43:15 274 -r-h----- C:\Program Files\unspypc
2008-08-19 11:40:52 0 d-------- C:\Program Files\Remove on Reboot
2008-08-18 23:38:12 0 d-------- C:\!KillBox
2008-08-17 21:03:38 1868 --a------ C:\Windows\eReg.dat
2008-08-17 21:02:26 33792 -ra------ C:\Windows\NPSExec.exe <Not Verified; Electronic Arts; Electronic Arts NPSExec>
2008-08-17 21:02:22 0 d-------- C:\Program Files\Electronic Arts
2008-08-17 20:58:42 0 d-------- C:\Program Files\Maxis
2008-08-17 20:56:33 306688 --a------ C:\Windows\IsUninst.exe <Not Verified; InstallShield Software Corporation; InstallShield® unInstaller>
2008-08-17 20:02:34 56 --ah----- C:\Windows\system32\ezsidmv.dat
2008-08-17 19:56:14 0 d-------- C:\Program Files\Common Files\Skype
2008-08-17 19:56:12 0 dr------- C:\Program Files\Skype
2008-08-17 19:55:50 0 d-------- C:\Users\All Users\Skype
2008-08-17 15:47:06 0 d-------- C:\Users\All Users\Trend Micro
2008-08-16 10:58:48 0 d-------- C:\Windows\BDOSCAN8
2008-08-15 22:38:59 0 d-------- C:\Users\All Users\Flood Light Games
2008-08-15 21:54:42 0 d-------- C:\Users\Belladonna\.housecall6.6
2008-08-15 18:56:46 0 d-------- C:\Program Files\BHODemon 2
2008-08-13 20:04:52 0 d-------- C:\Program Files\Lavasoft
2008-08-13 18:28:22 11254 --a------ C:\Windows\system32\locate.com
2008-08-13 18:11:57 811008 --a------ C:\Program Files\gmer.exe
2008-08-13 18:11:03 811008 --a------ C:\gmer.exe
2008-08-13 17:54:48 1266515 --a------ C:\Windows\MGtools.exe
2008-08-13 17:30:53 0 d-------- C:\MGtools
2008-08-12 22:53:40 0 d-------- C:\327882R2FWJFW
2008-08-12 18:35:18 0 d-------- C:\Program Files\InterMute
2008-08-11 16:09:57 0 d-------- C:\Users\All Users\comodo
2008-08-11 16:09:30 0 d-------- C:\Program Files\COMODO
2008-08-11 15:52:04 0 d-------- C:\Program Files\SpywareBlaster
2008-08-11 15:36:18 0 d-------- C:\Program Files\Common Files\PC Tools
2008-08-11 15:36:02 0 d-------- C:\Program Files\PC Tools AntiVirus
2008-08-10 20:40:33 0 d-------- C:\Program Files\Trend Micro
2008-08-10 20:04:50 0 d-------- C:\SAV32CLI
2008-08-10 17:11:59 0 d-------- C:\Users\All Users\PC Tools
2008-08-10 17:11:59 0 d-------- C:\Program Files\ThreatFire
2008-08-10 17:10:19 0 d-------- C:\Users\All Users\Malwarebytes
2008-08-10 17:10:19 0 d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-08-09 22:38:31 0 d-------- C:\Program Files\Remedy
2008-08-09 21:42:41 0 d-------- C:\Program Files\Law & Order - The Vengeful Heart
2008-08-09 16:01:31 0 d-------- C:\Program Files\SpamMATTERS
2008-08-09 15:57:41 0 d-------- C:\Program Files\GanttProject
2008-08-09 02:38:30 0 d-------- C:\Program Files\iPod
2008-08-09 02:38:22 0 d-------- C:\Program Files\iTunes
2008-08-09 00:41:36 0 d--h----- C:\Windows\PIF
2008-08-08 18:15:34 0 -rahs---- C:\MSDOS.SYS
2008-08-08 18:15:34 0 -rahs---- C:\IO.SYS
2008-08-08 15:10:15 0 d-------- C:\Users\All Users\SUPERAntiSpyware.com
2008-08-08 15:09:19 0 d-------- C:\Program Files\SUPERAntiSpyware
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\zp.dll
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\zeropopupbar.dll
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\winwsl.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\wintbpx.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\wintbp.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\winrvl.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\winksl.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\update.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\servises.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\regperf.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\pnp.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\per.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\nvctrl.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\mssearchnet.exe
2008-08-08 15:03:39 0 d-------- C:\Windows\system32\msmsgs.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\mscornet.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\issearch.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\isnotify.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\ismon.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\ishost.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\bleep.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\dfrgsrv.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\dcomcfg.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\csm.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\botzor.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\system32\4ccc3cea.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\pnpasn32.exe
2008-08-08 15:03:39 0 dr-hs---- C:\Windows\hpsv.exe
2008-08-08 15:03:39 230 -r-h----- C:\Program Files\zsearch
2008-08-08 15:03:39 240 -r-h----- C:\Program Files\zeropopupbar
2008-08-08 15:03:39 226 -r-h----- C:\Program Files\zangoclient
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\winupie.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\winmuschi.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\vx2.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\updatewinlocator.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\wintft.dll
2008-08-08 15:03:38 0 d-------- C:\Windows\system32\winshow.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\winsb.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\winpup32.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\winpup.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\winlocatorhelper.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\winlocator.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\systemout.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\sysdll32.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\rx.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\pup.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\norton update.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\df_kme.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\bridge.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\axconfig.dll
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\system32\a.exe
2008-08-08 15:03:38 0 dr-hs---- C:\Windows\cdproxyserv.exe
2008-08-08 15:03:38 226 -r-h----- C:\Program Files\zango games
2008-08-08 15:03:38 228 -r-h----- C:\Program Files\xsoftware
2008-08-08 15:03:38 228 -r-h----- C:\Program Files\xpcspy
2008-08-08 15:03:38 232 -r-h----- C:\Program Files\winfixer 2005
2008-08-08 15:03:38 240 -r-h----- C:\Program Files\winfavorites
2008-08-08 15:03:38 246 -r-h----- C:\Program Files\windows adtools
2008-08-08 15:03:38 250 -r-h----- C:\Program Files\windows adcontrol
2008-08-08 15:03:38 230 -r-h----- C:\Program Files\win comm
2008-08-08 15:03:38 226 -r-h----- C:\Program Files\whenu
2008-08-08 15:03:38 236 -r-h----- C:\Program Files\web_rebates
2008-08-08 15:03:38 236 -r-h----- C:\Program Files\web_cpr
2008-08-08 15:03:38 226 -r-h----- C:\Program Files\vvsdl
2008-08-08 15:03:38 232 -r-h----- C:\Program Files\Common Files\winsoftware
2008-08-08 15:03:38 226 -r-h----- C:\Program Files\Common Files\ucontrol
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\windowsupd4.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\windowsupd2.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\windowsupd1.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\zlbw.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\winntcreate.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\wincom32.sys
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\vx2.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\vwix32.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\uninmyad.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\tps108.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\tisa.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\tips.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\tippcls.dat
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\tipp.dat
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\timesrv.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\ticont.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\ticads.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\tconini.dat
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\sysmonnt.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\spwgoc.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\se.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\sd16win.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\rvreg.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\rulesak.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\ppl.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\nordsys.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\myad.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\msview.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\msnavc32.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\messenger.lib.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\lut.dat
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\lspak.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\localnrd.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\lcch.dat
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\ladchkr.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\host.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\hook2.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\hook1.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\google.png.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\gdu.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\game3.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\game2.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\game1.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\dad.bat
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\cidrules.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\alsys.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\adchkr.exe
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\system32\6fo4svc.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\psapi.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\kernellos.dll
2008-08-08 15:03:37 222 -r-h----- C:\Windows\isrvs
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\iehelper.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\cleanhistories.dll
2008-08-08 15:03:37 0 dr-hs---- C:\Windows\ads.js
2008-08-08 15:03:37 234 -r-h----- C:\temp_kl
2008-08-08 15:03:37 224 -r-h----- C:\Program Files\vvsn
2008-08-08 15:03:37 226 -r-h----- C:\Program Files\vomba
2008-08-08 15:03:37 238 -r-h----- C:\Program Files\vmntoolbar
2008-08-08 15:03:37 232 -r-h----- C:\Program Files\ts trial
2008-08-08 15:03:37 232 -r-h----- C:\Program Files\topmoxie
2008-08-08 15:03:37 244 -r-h----- C:\Program Files\sys detective+
2008-08-08 15:03:37 240 -r-h----- C:\Program Files\surfsidekick
2008-08-08 15:03:37 240 -r-h----- C:\Program Files\surfsidekick 2
2008-08-08 15:03:37 232 -r-h----- C:\Program Files\netmeting
2008-08-08 15:03:37 222 -r-h----- C:\Program Files\hpdll
2008-08-08 15:03:37 222 -r-h----- C:\Program Files\autoupdate
2008-08-08 15:03:37 234 -r-h----- C:\archivos de programa
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\t2serv.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\t2serv.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\wshtlprh.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\wshnseri.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\winftsap.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\winftsap.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\w3sskbda.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\vsxmpgpc.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\vnetsmme.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\vb5dmspo.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\v4pbpt51.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\trafracp.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\snmpmssw.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\slbrmqtr.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\slbipsch.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\slbipsch.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\shfoxpob.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\secumsje.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\scp3jgaw.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\rdpwmsjt.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\rcbdwmpd.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\qdvtscf.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\oebdfc.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\msstersv.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\msnsxole.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\msnsxole.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\mslsicwd.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\msexcred.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\msafiasn.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\mqoacdmo.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\mqadscp3.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\mgmtmtxc.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\mcd3mscm.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\lmrtatkc.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\kbdpkbdr.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\kbdfwshe.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\jgsdrpcn.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\system32\jgsdrpcn.dll
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\sserrvv.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\serrv.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\reggserv.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\msupdtwiz.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\cserv32.exe
2008-08-08 15:03:36 0 dr-hs---- C:\Windows\ccsserv.exe
2008-08-08 15:03:36 232 -r-h----- C:\Program Files\superbar
2008-08-08 15:03:35 236 -r-h----- C:\Windows\winsecurity
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\xkrdk.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\wiatwain.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\unsocul.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\sodahk.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\socul.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\replmap.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\jgdwadsn.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\jgdwadsn.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\iuennwcf.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\ir32racp.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\ipxwshel.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\ipxrmfc4.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\imesrdch.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\icmpdx3j.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\iaspdpus.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\i4n27vl.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\higehsg.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\hhselz32.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\fltlauto.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\fileserv.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\e1.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\dsseds32.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\dsseds32.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\dpugmswe.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\dnsrxpob.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\deskmcd3.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\ddemdmco.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\davctool.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\davctool.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\confbrw.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\comrkbdd.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\comploader.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\chkmfdep.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\camodpnm.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\brwstat.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\brwprf32.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\brwperf.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\brwmgr32.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\brwconf.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\avifipxr.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\admeiolo.dll
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\system32\actidmoc.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\ssmsgr.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\ssls.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\ssdgt.exe
2008-08-08 15:03:35 0 dr-hs---- C:\Windows\sscrg.exe
2008-08-08 15:03:35 236 -r-h----- C:\Windows\connectionstatus
2008-08-08 15:03:35 234 -r-h----- C:\spedia
2008-08-08 15:03:35 244 -r-h----- C:\Program Files\swagent
2008-08-08 15:03:35 244 -r-h----- C:\Program Files\stealthwatcher200
2008-08-08 15:03:35 230 -r-h----- C:\Program Files\spytech software
2008-08-08 15:03:35 234 -r-h----- C:\Program Files\spyonthis
2008-08-08 15:03:35 232 -r-h----- C:\Program Files\spyblast
2008-08-08 15:03:35 234 -r-h----- C:\Program Files\softomate
2008-08-08 15:03:35 226 -r-h----- C:\Program Files\p4p
2008-08-08 15:03:35 234 -r-h----- C:\Program Files\ietoolbar
2008-08-08 15:03:35 226 -r-h----- C:\Program Files\Common Files\sogou pxp
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\waladhpr.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\wzhelper.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\webalize.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\somatic.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\smdnn05.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\servehost.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\seqsb.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\searchupdate33.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\searchupdate31.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\searchsquire33.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\searchsquire3.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\searchsquire2.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\searchsquire.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\seantb.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\s4helper.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\reg2.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\pqhelper.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\mygeek.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\msqsb.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\mslspcg.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\mgeekremove.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\ifsomatic.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\ifhelper.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\iebrw.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\hotlink.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\homepage.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\hmepge.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\gsim.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\system32\barbho.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\svrmgr.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\skynetave.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\gsim.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\cssswd.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\csssupd.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\cfg32s.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\cfg32r.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\cfg32o.dll
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\cfg32.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\avserve3.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\avserve2.exe
2008-08-08 15:03:34 0 dr-hs---- C:\Windows\adrsb.exe
2008-08-08 15:03:34 232 -r-h----- C:\Program Files\valintines day card
2008-08-08 15:03:34 248 -r-h----- C:\Program Files\selectrebates
2008-08-08 15:03:34 234 -r-h----- C:\Program Files\searchnet
2008-08-08 15:03:34 240 -r-h----- C:\Program Files\searchlocate
2008-08-08 15:03:34 236 -r-h----- C:\Program Files\screenview
2008-08-08 15:03:34 230 -r-h----- C:\Program Files\savenow
2008-08-08 15:03:34 230 -r-h----- C:\Program Files\ezthemes_whenusavenow_installer
2008-08-08 15:03:34 242 -r-h----- C:\Program Files\dynamic toolbar
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\shnlog.exe
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\rlvknlg.exe
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\rkinstaller.exe
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\rk.exe
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\msplus4.dll
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\msplus3.dll
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\msplus2.dll
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\msplus1.dll
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\msplus.dll
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\system32\mrkscr.exe
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\napatch.exe
2008-08-08 15:03:33 0 dr-hs---- C:\Windows\lsasss.exe
2008-08-08 15:03:33 234 -r-h----- C:\Program Files\rxtoolbar
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\wserver.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\winlogon.scr
2008-08-08 15:03:32 0 d-------- C:\Windows\winlogon.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\vlcx052.dll
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\speeder.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\slpube03.dll
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\optserve.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\optserve.dll
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\mstc.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\msclt.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\lp.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\lp.dll
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\intmon.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\system32\auole4.dll
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\switpb.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\switpa.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\lansas.exe
2008-08-08 15:03:32 0 dr-hs---- C:\Windows\infodll.dll
2008-08-08 15:03:32 234 -r-h----- C:\Program Files\startup mechanic
2008-08-08 15:03:32 250 -r-h----- C:\Program Files\relevantknowledge
2008-08-08 15:03:32 234 -r-h----- C:\Program Files\rax search helper
2008-08-08 15:03:32 228 -r-h----- C:\Program Files\psupport
2008-08-08 15:03:32 228 -r-h----- C:\Program Files\exolon
2008-08-08 15:03:32 234 -r-h----- C:\Program Files\ddr
2008-08-08 15:03:32 236 -r-h----- C:\Program Files\Common Files\nsis
2008-08-08 15:03:32 234 -r-h----- C:\Program Files\arcade!
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\visualguard.exe
2008-08-08 15:03:31 0 d-------- C:\Windows\userconfig9x.dll
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\sysmonxp.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\symav.exe
2008-08-08 15:03:31 0 d-------- C:\Windows\services.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\pandaavengine.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\netmedia.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\msnmsgrs.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\maja.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\kasperskyaveng.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\jammer2nd.exe
2008-08-08 15:03:31 0 d-------- C:\Windows\fvprotect.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\fooding.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\firewallsvr.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\easyav.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\diskmonitor.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\comp.cpl
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\avprotect9x.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\avprotect.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\avpguard.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\avguard.exe
2008-08-08 15:03:31 0 dr-hs---- C:\Windows\avbgle.exe
2008-08-08 15:03:31 234 -r-h----- C:\Program Files\need2find
2008-08-08 15:03:31 226 -r-h----- C:\Program Files\ncase
2008-08-08 15:03:31 232 -r-h----- C:\Program Files\navexcel search toolbar
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\xpfirewall.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wpwmgrs.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winvnc.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wintasker.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winsyscfg.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winsys32.exe
2008-08-08 15:03:30 0 d-------- C:\Windows\system32\winsys.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winsvc32.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winstart.pif
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winnt.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wininfo.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winhlpapi.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wingmt32.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\winds.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\windowz.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\windowsfirewall.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\windasz-updote.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\win32.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\win24.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wid32.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wfdmgr.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wfdgmr.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\system32\wdns33.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\rundil32.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\rundil.exe
2008-08-08 15:03:30 0 dr-hs---- C:\Windows\phantom.exe
2008-08-08 15:03:30 232 -r-h----- C:\Program Files\navexcel
2008-08-08 15:03:30 238 -r-h----- C:\Program Files\mywebsearch
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\w32ntupdt.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\w1nt5k.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\twunk_65.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\timemanager.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\taskgmr32.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\taskgmr.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\taskgamr.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\tagmr.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\sysconf.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\sword.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\svshost.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\stagmr.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\sp2winfix.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\sp2fx.exe
2008-08-08 15:03:29 0 d-------- C:\Windows\system32\skybot.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\shell.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\service5.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\sd.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\scvhost32.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\scrigz.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\scalpe91.exe
2008-08-08 15:03:29 0 d-------- C:\Windows\system32\rundll.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\remote.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\protection.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\plugnplay32.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\picx.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\phantom.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\netcog.exe
2008-08-08 15:03:29 0 dr-hs---- C:\Windows\system32\mtrnqs.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\mswins.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\mssck.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\msplus32.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\msnl.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\msmgrxp.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\msgmr.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\msdev32.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\mouse.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\microupdate.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\memloader.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\mcscn.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\mailinfo.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\logitechwls.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\logic.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lienvdk.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lienvandekelder.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lientjeuh.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lien vd kelder.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lien vande kelder.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lien Van de kelderrr.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lien van de kelder.exe
2008-08-08 15:03:28 0 dr-hs---- C:\Windows\system32\lcd32.exe
2008-08-08 15:03:27 0 dr-hs---- C:\winssystem.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\patch31345.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\osalogbe.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\microsystem.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\jusched32.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\itunegui.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\internet.exe
2008-08-08 15:03:27 0 d-------- C:\Windows\system32\iexplorer.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\hostdrvxp.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\hbmail.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\gothica.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\fixupdattr.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\evil.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\ds.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\dcomuser.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\coolbot.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\ccsrs.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\avpr.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\abs.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\666.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\system32\1hellbot.exe
2008-08-08 15:03:27 0 d-------- C:\Windows\system32\0.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\patch31345.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\msnarrator.exe
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\mrhop.dll
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\mpgcom.dll
2008-08-08 15:03:27 0 dr-hs---- C:\Windows\iempg2.dll
2008-08-08 15:03:27 0 dr-hs---- C:\hellmsn.exe
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb60.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb58.dll
2008-08-08 15:03:26 0 d-------- C:\Windows\system32\winnb57.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb56.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb52.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb51.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb42.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb41.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winnb40.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\windmy.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\winats.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\nn_bar31.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\nn_bar22.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\nn_bar21.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\nn_bar.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\myaccess.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\system32\msapasrc.dll
2008-08-08 15:03:26 0 d-------- C:\Windows\system32\msa64chk.dll
2008-08-08 15:03:26 0 dr-hs---- C:\Windows\iempg.dll
2008-08-08 15:03:25 240 -r-h----- C:\Windows\wintrim
2008-08-08 15:03:25 240 -r-h----- C:\Windows\winmgts
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\unstall.exe
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\vtlbar1.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\tubby.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\tbc.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\sys.exe
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\nas.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\mtc.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\mapisvc32.exe
2008-08-08 15:03:25 0 d-------- C:\Windows\system32\dll.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\system32\adv.dll
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\mmups.exe
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\mm63.ocx
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\mm21.ocx
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\mm20.ocx
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\imgurla.exe
2008-08-08 15:03:25 0 dr-hs---- C:\Windows\a64sddd.exe
2008-08-08 15:03:25 236 -r-h----- C:\Program Files\support software
2008-08-08 15:03:25 236 -r-h----- C:\Program Files\network essentials
2008-08-08 15:03:25 236 -r-h----- C:\Program Files\medialoads
2008-08-08 15:03:25 236 -r-h----- C:\Program Files\medialoads enhanced
2008-08-08 15:03:25 242 -r-h----- C:\Program Files\media gateway
2008-08-08 15:03:25 232 -r-h----- C:\Program Files\md
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\xwrm.exe
2008-08-08 15:03:24 240 -r-h----- C:\Windows\wincomp
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\wgavm.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\wgareg.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\version.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\updtscheduler.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\toolbar.dll
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\msxml4r.exe
2008-08-08 15:03:24 0 d-------- C:\Windows\system32\msklive.dll
2008-08-08 15:03:24 0 d-------- C:\Windows\system32\msegcompid.dll
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\mscache.dll
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\madise.dll
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\keyhost.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\keyactivex.ocx
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\jeired.dll
2008-08-08 15:03:24 0 d-------- C:\Windows\system32\iexplore.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\gcasctrl.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\duel.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\aupdate_uninstall.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\system32\aupdate.exe
2008-08-08 15:03:24 240 -r-h----- C:\Windows\navpmc
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\mscache.exe
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\mscache.dll
2008-08-08 15:03:24 240 -r-h----- C:\Windows\mc
2008-08-08 15:03:24 0 dr-hs---- C:\Windows\istsvc.exe
2008-08-08 15:03:24 234 -r-h----- C:\Program Files\powersearch
2008-08-08 15:03:24 234 -r-h----- C:\Program Files\perfectnav
2008-08-08 15:03:24 228 -r-h----- C:\Program Files\lstsvc
2008-08-08 15:03:24 244 -r-h----- C:\Program Files\kuaiso toolsbar
2008-08-08 15:03:24 242 -r-h----- C:\Program Files\kgb keylogger
2008-08-08 15:03:24 234 -r-h----- C:\Program Files\incredifind
2008-08-08 15:03:24 228 -r-h----- C:\Program Files\ebayshop
2008-08-08 15:03:24 234 -r-h----- C:\Program Files\Common Files\updmgr
2008-08-08 15:03:24 234 -r-h----- C:\Program Files\Common Files\updater
2008-08-08 15:03:24 234 -r-h----- C:\Program Files\Common Files\keenvalue
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\winstart001.exe
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\winsrm32.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\winenc32.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\windowsie.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\windec32.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\waeb.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\sbus.dll
2008-08-08 15:03:23 0 d-------- C:\Windows\system32\mseggrpid.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\ineb.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr29.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr27.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr26.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr25.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr24.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr23.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr22.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\iexplorr11.dll
2008-08-08 15:03:23 0 d-------- C:\Windows\system32\ia.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\gws.dll
2008-08-08 15:03:23 0 d-------- C:\Windows\system32\egdial.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\egdhtml_1027.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\egdhtml_1026.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\egdhtml_1025.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\egdhtml_1024.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\egdhtml_1023.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\drbr.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\chgrgs.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\bundler_mpb_sb.exe
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\bmeb.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\belop.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\absnro.dll
2008-08-08 15:03:23 0 dr-hs---- C:\Windows\system32\abeb.dll
2008-08-08 15:03:23 230 -r-h----- C:\Windows\ilookup
2008-08-08 15:03:23 0 d-------- C:\Windows\exedialer.exe
2008-08-08 15:03:23 266 -r-h----- C:\Program Files\invisible secrets toolbar
2008-08-08 15:03:23 240 -r-h----- C:\Program Files\instant buzz
2008-08-08 15:03:23 258 -r-h----- C:\Program Files\instant access
2008-08-08 15:03:23 248 -r-h----- C:\Program Files\install provider
2008-08-08 15:03:23 240 -r-h----- C:\Program Files\instafink
2008-08-08 15:03:22 232 -r-h----- C:\Windows\wqzq
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\winserv.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\winobject.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\wdskctl.exe
2008-08-08 15:03:22 232 -r-h----- C:\Windows\wcby
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\ts.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\winstart.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\update_rsp.DLL
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\update_removeold.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\update_hosts.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\update_com.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\update_bho.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\rsp001.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\rsp.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\internetfeatures.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\install_all.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\iemsg.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\iemonit.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\iehost.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\iehook.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\iefeaturesversion.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\iefeatures.exe
2008-08-08 15:03:22 232 -r-h----- C:\Windows\system32\iedriver
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\bho001.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\system32\bho.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\systb.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\systb.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\ssk.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\snbho.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\rgrt.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\pxckdlauninstall.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\pxckdla.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\offerssk.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\invitessk.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\iehook.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\id.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\extract.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\dsr.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\dsr.dll
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\dlgb.exe
2008-08-08 15:03:22 0 dr-hs---- C:\Windows\dinst.exe
2008-08-08 15:03:22 232 -r-h----- C:\Program Files\Common Files\wqzq
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\zopenssl.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvsvga.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvsvga.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvprgb.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvpp02.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvpp01.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvpp01.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\yvbb01.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\ydsvgd.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\ydsvgd.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\ycsvgd.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\ycsvga.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\ycsrgb.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xptptt.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xptp16.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xopptp.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xopptp.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xmsk64.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xmsk32.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xmm13g.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xdudtt.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xdpptp.sys
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\xcdmfree.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\wz.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\wxtwdx.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\wtoolsb.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\wndtx1.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\winm32.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\preload.ocx
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\msielink.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\msiein.dll
2008-08-08 15:03:21 0 d-------- C:\Windows\system32\ieaccess2.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\httper.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\eghtmldialer.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\dhtmlaccess.dll
2008-08-08 15:03:21 0 dr-hs---- C:\Windows\system32\btiein.dll
2008-08-08 15:03:21 228 -r-h----- C:\Program Files\system soap pro
2008-08-08 15:03:21 230 -r-h----- C:\Program Files\search toolbar
2008-08-08 15:03:21 228 -r-h----- C:\Program Files\httper
2008-08-08 15:03:21 228 -r-h----- C:\Program Files\hotbar
2008-08-08 15:03:21 244 -r-h----- C:\Program Files\homekeylogger
2008-08-08 15:03:21 228 -r-h----- C:\Program Files\hbtools
2008-08-08 15:03:21 228 -r-h----- C:\Program Files\hbinst
2008-08-08 15:03:21 230 -r-h----- C:\Program Files\Common Files\msiets
2008-08-08 15:03:21 230 -r-h----- C:\Program Files\Common Files\btlink
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\winlow.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\winf44.dll
2008-08-08 15:03:20 0 d-------- C:\Windows\system32\wd.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\w32_ss.exe
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\vtd_16.exe
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\vistax.dll
2008-08-08 15:03:20 0 d-------- C:\Windows\system32\vdnt32.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\vdmt16.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\twpr32.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\twpkad.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\tcpwrk.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\tcpr32.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\tcpgdc.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\tcpg4t.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\svkvpn.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\svkvpn.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\svjvpn.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\sndu32.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\snda32.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\smtapi.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\sksdrvr2.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\sksdll.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\sks2drvr.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\sertgs.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\semd32.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\se633mxx.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\se500mdm.dll
2008-08-08 15:03:20 0 d-------- C:\Windows\system32\sdmapi.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\sdcard98.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\satmmc.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\satdll.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\satau320.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\rsdapi.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\regp32.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\rdrvr2.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\qy.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\qo.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\qo.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\psksds.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\prwsks.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\prw76sks.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\printpnp.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\pdx.dll
2008-08-08 15:03:20 0 d-------- C:\Windows\system32\p_TROJptp16.dll
2008-08-08 15:03:20 0 d-------- C:\Windows\system32\p_TROJ_ptp32.dll
2008-08-08 15:03:20 0 d-------- C:\Windows\system32\p_p_TROJtp24.sys
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\openglss.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\obbn13t.dll
2008-08-08 15:03:20 0 dr-hs---- C:\Windows\system32\nuclabdll.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\nkunpack.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\nkgfs.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\nclabydll.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\msplg7.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mmxf64.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mmxf32.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mmxeroxk.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mmx4xt.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mmx432.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mmx17g.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\memlow.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mdfpro.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mcfg7a.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\mcfcc4.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\lsd_f3.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\logon16x.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\ljjhh.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\lanmui.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\lanh32.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\klo5.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\jsdapi.exe
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\iesdl4l.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\ies4dll.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\ideusr50.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\hz.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\hpprintx.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\hm.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\gdwxp3.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\gdiwxp.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\gatexkey.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\fuxx32.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\flashdrvr.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\extxerox.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\extfpu.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\emldvc.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\eexvpn.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\eetvpn.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\eetvpn.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\dxtpdx.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\dvd4free.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\dvb06a.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\dvb03a.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\dvb03a.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\drct16.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\draw32.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\docent2.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\docent0.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\directut.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\directpt.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\debugg.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\ddirectz.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\cz.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\cm.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\cert32.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\c4.sys
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\c3.sys
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\c3.dll
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\bt848rom.dll
2008-08-08 15:03:19 0 d-------- C:\Windows\system32\boot32.sys
2008-08-08 15:03:19 0 dr-hs---- C:\Windows\system32\bmtdhh.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\zz.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\trk.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\td1.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\sysldr.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\support.exe
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\ss32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\ss.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\pdfzzy.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\pavb1u2.exe
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\otw0i.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\ofrg.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\n3tpa1p.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\msxver64.sqr
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\mpz300.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\mmview_101.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\mbr32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\lwz.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\lstb4drc.exe
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\lstb4drc.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\in10b6s.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\im64.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\ie.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\idleui.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\gr02.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\gold2.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\fwntoolbar.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\ftapp.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\fone.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\flt.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\flcp.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\favorite.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\favman.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\favboot.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\f1.dll
2008-08-08 15:03:18 0 d-------- C:\Windows\system32\emesx.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\dlh0st.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\casldr.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\axxt32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\axdebugl.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avpx64.sys
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avpx32.sys
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avpx32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avpp32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avpi32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avpe32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\avload32.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\atpartners.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\arb1tal.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\system32\aess2.dll
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\savestartdate.exe
2008-08-08 15:03:18 0 dr-hs---- C:\Windows\frsk.exe
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\xmod
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\xml
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\vcom
2008-08-08 15:03:18 246 -r-h----- C:\Program Files\sync manager demo
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\scom
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\reg2
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\pvm
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\primesoft
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\paymentone
2008-08-08 15:03:18 252 -r-h----- C:\Program Files\gsr
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\gsoft
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\gmsoft
2008-08-08 15:03:18 228 -r-h----- C:\Program Files\globe7
2008-08-08 15:03:18 240 -r-h----- C:\Program Files\globaldialer
2008-08-08 15:03:18 246 -r-h----- C:\Program Files\fwn toolbar
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\ftk
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\ftapp
2008-08-08 15:03:18 250 -r-h----- C:\Program Files\fsw
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\flt
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\fln
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\flcp
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\fla
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\filesubmit
2008-08-08 15:03:18 236 -r-h----- C:\Program Files\fen
2008-08-08 15:03:18 242 -r-h----- C:\Program Files\dialers
2008-08-08 15:03:18 226 -r-h----- C:\Program Files\browserenh
2008-08-08 15:03:17 248 -r-h----- C:\windowsupdate
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\woinstall.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\urncbc.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\urncb.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\skytown.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\rundnm.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\rmashlex.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\ptech.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\pruttct.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\prutsct.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\prutpct.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\nvrcr32.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\links.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\keymap.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\iniwin32.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\iebhos.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\goupdate.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\filgmo.exe
2008-08-08 15:03:17 252 -r-h----- C:\Windows\system32\fcyberalert
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\fastseekertoolbar.dll
2008-08-08 15:03:17 226 -r-h----- C:\Windows\system32\f0r0r
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\ezpopstub.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\expup.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\expext.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\estartlinkrotater.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\eros.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\ei.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\easywww3.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\easywww2.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\easywww.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\dreampopper.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\dolsp.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\dialeroffline.dll
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\diabolo.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\deltaclick.dll
2008-08-08 15:03:17 248 -r-h----- C:\Windows\system32\ctf
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\bkmsf32.dat
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\askearth17.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\system32\_epnt.sys
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\redirect5.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\pi1.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\iewwwint.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\iewww.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\goupdate.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\fastseekersetupv2.ocx
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\fastseekersetup.ocx
2008-08-08 15:03:17 226 -r-h----- C:\Windows\explorer
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\ewupdater.exe
2008-08-08 15:03:17 232 -r-h----- C:\Windows\elitetoolbar
2008-08-08 15:03:17 232 -r-h----- C:\Windows\elitesidebar
2008-08-08 15:03:17 232 -r-h----- C:\Windows\elitebar
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\easywww3.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\easywww2.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\easywww.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\dsearch1.bin
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\dsearch.bin
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\dlder.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\dhupdt.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\dhun.exe
2008-08-08 15:03:17 0 dr-hs---- C:\Windows\dhsvr.exe
2008-08-08 15:03:17 260 -r-h----- C:\Program Files\websearch
2008-08-08 15:03:17 260 -r-h----- C:\Program Files\webrebates
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\real-tens
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\movienetworks
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\mlh
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\medch
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\kfh
2008-08-08 15:03:17 258 -r-h----- C:\Program Files\keylog
2008-08-08 15:03:17 236 -r-h----- C:\Program Files\fastseeker
2008-08-08 15:03:17 226 -r-h----- C:\Program Files\ezurl
2008-08-08 15:03:17 246 -r-h----- C:\Program Files\exploreanywhere
2008-08-08 15:03:17 248 -r-h----- C:\Program Files\exact
2008-08-08 15:03:17 230 -r-h----- C:\Program Files\emedia codec
2008-08-08 15:03:17 260 -r-h----- C:\Program Files\ebatesmoemoneymaker
2008-08-08 15:03:17 260 -r-h----- C:\Program Files\ebates_moemoneymaker
2008-08-08 15:03:17 228 -r-h----- C:\Program Files\e2give
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\drivecleaner free
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\downloadware
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\downloadware engine
2008-08-08 15:03:17 244 -r-h----- C:\Program Files\dealio
2008-08-08 15:03:17 228 -r-h----- C:\Program Files\data19
2008-08-08 15:03:17 234 -r-h----- C:\Program Files\comsoft
2008-08-08 15:03:17 248 -r-h----- C:\Program Files\Common Files\eacceleration
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\Common Files\drivecleaner free
2008-08-08 15:03:17 228 -r-h----- C:\e2g
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\winnj32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\winmc.exe
2008-08-08 15:03:16 242 -r-h----- C:\Windows\winfj
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\xxxvideo.hta
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\xplugin.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\word10.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\winyw32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\winres.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\newmsrdk2.zip
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\hookpopup.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\dun.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\customtoolbar.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\crocopop32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\comload.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cdsync.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cdlsp.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cd_swf.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cd_load.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cd_htm.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cd_gif.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\cd_clint.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\system32\calsp.dll
2008-08-08 15:03:16 228 -r-h----- C:\Windows\system32\adcache
2008-08-08 15:03:16 242 -r-h----- C:\Windows\syspi
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\syslr.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\syskr.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\sysjq.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\sysea.exe
2008-08-08 15:03:16 242 -r-h----- C:\Windows\sysbj
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\sys.reg
2008-08-08 15:03:16 0 d-------- C:\Windows\sistem.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\sdkrr32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\sdkev.exe
2008-08-08 15:03:16 228 -r-h----- C:\Windows\roodyc
2008-08-08 15:03:16 0 d-------- C:\Windows\qttasks.exe
2008-08-08 15:03:16 0 d-------- C:\Windows\olehelp.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\ntyo32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\ntyk32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\ntwn.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\ntwg.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\navext.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\my.css
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\mszv32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\msnc32.exe
2008-08-08 15:03:16 242 -r-h----- C:\Windows\msew
2008-08-08 15:03:16 0 d-------- C:\Windows\msconfd.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\mfcui32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\mfckb.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\mfcbm32.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\kk8pwxm634.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\ipyx32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\ipog.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\image.dll
2008-08-08 15:03:16 0 d-------- C:\Windows\iexplorer.exe
2008-08-08 15:03:16 242 -r-h----- C:\Windows\ieoo
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\help_ecc.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\help_dcc.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dpe.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhsigned.ocx
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhp2.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhp.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhkw1.bin
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhkw.bin
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhdomp1.bin
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhdomp.bin
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhdom1.bin
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhdom.bin
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhbrwsr.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dhbrowser.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\default.css
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\dealhlpr.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\d3zg.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\d3ue.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\d3nr32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\d3fl32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\d3fd32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\d3cq.exe
2008-08-08 15:03:16 0 d-------- C:\Windows\ctrlpan.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\crvl.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\bipw.exe
2008-08-08 15:03:16 0 d-------- C:\Windows\avpcc.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\atlrl32.dll
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\atlfs32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\appwn32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\appsh.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\apivt.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\apijn32.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\apigj.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\apifb.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\apiac.exe
2008-08-08 15:03:16 0 dr-hs---- C:\Windows\addkc32.exe
2008-08-08 15:03:16 236 -r-h----- C:\Program Files\dealhelper
2008-08-08 15:03:16 234 -r-h----- C:\Program Files\dateregon
2008-08-08 15:03:16 238 -r-h----- C:\Program Files\date manager
2008-08-08 15:03:16 236 -r-h----- C:\Program Files\commonname
2008-08-08 15:03:16 226 -r-h----- C:\Program Files\Common Files\cpush
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\winproc32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\winns32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\winlo.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\winlink.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\winga.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\wer1306.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\webinfo.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\wcadw.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\toolband.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\sys_ext.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\submithook.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\sqlbgb.dll
2008-08-08 15:03:15 242 -----n--- C:\Windows\system32\services
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\searchaddon.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\sdkly.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\sdkhb32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\sdkdh.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\pnkeb.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\opc.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\olehelp.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\oipa.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\oifhhio.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ntdx.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\netjh32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\navext.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mupdate.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mtwirl32.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\msxmlpp.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\msupdate.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mssz32.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\msspi.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mssearch.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\msph32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\msiesh.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mshelper.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\msconfd.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mid.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mgs_32.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mfcuo.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mfcqc32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\mfcgt32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\kncjmlb.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\kha.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\jehmbyxrubdb.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ipst32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ippy.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\iphj32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ipgs.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\iewe32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ieug32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ietoolbar.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\iehost34.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\iefy.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\iefi.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\iefeatsl.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\hlmk.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\googlems.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\gln.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\gejafa.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\gegnba.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\famcff.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\excel10.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\dxm8vb.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\dreplace.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\dnsrelay.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\dnserr.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\dnse.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\delj.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\d3ul32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\d3gj.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\d3fm.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ctrlpan.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\ctfmon32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\crxa.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\crsw32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\crko.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\criticalupdater.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\crcz.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\crby32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\coolwebsearch-info.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\bpln.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\bootconf.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\avpcc.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\autosearch.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\atlpv32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\atlkt32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\atlhy.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\astctl32.ocx
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\astctl32.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\appoe32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\appjc32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\appis32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\appio.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\apivy.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\apioe.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\apica.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\addwh32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\addgp32.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\adddx.dll
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\system32\1.00.07.dll
2008-08-08 15:03:15 0 d-------- C:\Windows\smss.exe
2008-08-08 15:03:15 0 dr-hs---- C:\Windows\conscorr.exe
2008-08-08 15:03:15 234 -r-h----- C:\Windows\configsys
2008-08-08 15:03:15 240 -r-h----- C:\Windows\coder
2008-08-08 15:03:15 262 -r-h----- C:\Program Files\colej_uk design toolbar
2008-08-08 15:03:15 234 -r-h----- C:\Program Files\clocksync
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\uptodate.exe
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\stlbupdt.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\stlbdist.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\stlbad123.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\rundll16.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\rsstoolbar.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msongn.exe
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msobfl.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msnkmi.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msncjk.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msmm.exe
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msmdld.DLL
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msmc.exe
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mslefh.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mskpkc.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mskhhe.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mskehb.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mskceo.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msjfbl.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msibkd.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msgdmf.exe
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msfaol.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msenfh.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mseffm.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msedah.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mseclk.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msdlgk.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msdaim.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mscpbo.exe
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\mscdka.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\msccof.exe
2008-08-08 15:03:14 0 d-------- C:\Windows\system32\ipv6mons.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\ietie.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\ie_clrsch.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\disable1.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\disable.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\ctbhooks.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\csie.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\bpv2t.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\bpv2s.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\system32\bpv1a.dll
2008-08-08 15:03:14 0 dr-hs---- C:\Windows\rundll16.dll
2008-08-08 15:03:14 244 -r-h----- C:\Windows\ctb3_shared
2008-08-08 15:03:14 238 -r-h----- C:\Program Files\lycos
2008-08-08 15:03:14 228 -r-h----- C:\Program Files\gator.com
2008-08-08 15:03:14 238 -r-h----- C:\Program Files\csbb
2008-08-08 15:03:14 236 -r-h----- C:\Program Files\Common Files\psd tools
2008-08-08 15:03:14 228 -r-h----- C:\Program Files\Common Files\gmt
2008-08-08 15:03:14 228 -r-h----- C:\Program Files\Common Files\cmeii
2008-08-08 15:03:14 238 -r-h----- C:\Program Files\cntrc
2008-08-08 15:03:14 234 -r-h----- C:\Program Files\clipgenie
2008-08-08 15:03:14 234 -r-h----- C:\Program Files\clientman
2008-08-08 15:03:14 0 d-------- C:\csrss.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\zeta.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\winxp.exeopenopenopenopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\winxp.exeopenopenopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\winxp.exeopenopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\winxp.exeopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\winxp.exe
2008-08-08 15:03:13 0 d-------- C:\Windows\system32\wintems.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\winhost.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\wingo.exeopenopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\wingo.exeopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\wingo.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\windll.exeopenopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\windll.exeopen
2008-08-08 15:03:13 0 d-------- C:\Windows\system32\windll.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\windirect.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\win32lib.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx3x.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx3.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx2x.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx2.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx1x.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx1.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx0x.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\vx0.nls
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\unstsa2.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\sys_xp.exeopenopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\sys_xp.exeopen
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\sys_xp.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\re_file.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\quicklaunchie.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\nvms.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\netut80ex.vxd
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\msxct.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\msiefr40.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\msexreg.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\mscb.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\msbe.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\mqexdlm.srg
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\javexulm.vxd
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\javex80.vxd
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\instsrv.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\inetp60.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\iesearchbar.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\highlighthelper.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exul3.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exul1.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exul.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exdl3.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exdl2.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exdl1.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exdl0.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exdl.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\exclean.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\broweraidtoolbar.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdeverify.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdesecureinstall.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdesecureinstall.cab
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdeinstall.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdeinsta2.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdefdi.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdedownloader.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bdedata2.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\bbchk.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\angelex.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\5_0_1browserhelper5.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\3_0_1browserhelper3.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\system32\2_0_1browserhelper2.dll
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\msxct.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\exul.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\exdl.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\exclean.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\cfg32p.dll
2008-08-08 15:03:13 222 -r-h----- C:\Windows\bde
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\bbchk.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\bargain4.exe
2008-08-08 15:03:13 0 dr-hs---- C:\Windows\ahcb.exe
2008-08-08 15:03:13 234 -r-h----- C:\Program Files\windowssa
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\tvs
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\rvp
2008-08-08 15:03:13 236 -r-h----- C:\Program Files\letssearch
2008-08-08 15:03:13 240 -r-h----- C:\Program Files\funcade
2008-08-08 15:03:13 240 -r-h----- C:\Program Files\cashback
2008-08-08 15:03:13 240 -r-h----- C:\Program Files\cardcrazy
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\btv
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\brp
2008-08-08 15:03:13 236 -r-h----- C:\Program Files\browser pal
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\bpt
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\bpc_search
2008-08-08 15:03:13 236 -r-h----- C:\Program Files\bonzibuddy
2008-08-08 15:03:13 222 -r-h----- C:\Program Files\bde
2008-08-08 15:03:13 238 -r-h----- C:\Program Files\bcpc
2008-08-08 15:03:13 240 -r-h----- C:\Program Files\bargain buddy
2008-08-08 15:03:13 222 -r-h----- C:\bde
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\zserv.dll
2008-08-08 15:03:12 0 d-------- C:\Windows\voiceip.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\unast.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\xxvyaj.exe
2008-08-08 15:03:12 248 -r-h----- C:\Windows\system32\win type
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\wbtvsffd.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\tfde.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\susp_reco.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\stmtreco.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\stcloader.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\safesearch.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\randreco.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\poller.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\polau2c.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\nnmzoq.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\msipcsv.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\msinfosys.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\loader_name.exeopenopen
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\loader_name.exeopen
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\loader_name.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\ln_reco.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\laziqn.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\ipclient.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\ipcclient.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\intfaxui.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\imgiant.dll
2008-08-08 15:03:12 248 -r-h----- C:\Windows\system32\ide
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\htmdeng.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\hldrrr.exe
2008-08-08 15:03:12 230 -r-h----- C:\Windows\system32\feeds
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\farmmext.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\ezxiiyv.exe
2008-08-08 15:03:12 236 -r-h----- C:\Windows\system32\exefld
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\drvddll.exeopenopen
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\drvddll.exeopen
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\drvddll.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\drpmon.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\doriot.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\dlgli.exe
2008-08-08 15:03:12 248 -r-h----- C:\Windows\system32\dhcp32
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\bik.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\bdle4012.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\bawindo.exeopenopen
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\bawindo.exeopen
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\bawindo.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\atmon.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\ast.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\aplsp.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\anti_troj.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\anadscb.ocx
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\anadsc.ocx
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\amcis3.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\amcis2.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\amcis.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\advertcontrolxcontrol.ocx
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\advert.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\adimage.dll
2008-08-08 15:03:12 0 d-------- C:\Windows\system32\7search.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\2searchinstaller.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\2ndsrch.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\2020search2.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\2020search.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\007guard.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\system32\_dll.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\svcproc.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\speeryox.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\speer2.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\pynix.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\pool32.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\nail.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\mxtarget.dll
2008-08-08 15:03:12 0 d-------- C:\Windows\mssvr.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ms spool32.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ms spool32.dat
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\morphacl.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\imguninst.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\imgiant.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ihsn.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ib.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\fejgl.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ejgekgpq.ini
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\druninst.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\dlmax.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ceres.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\buddy.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\btgrab.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\bolger.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\biprep.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\bi.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\banner.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\aurorahandler.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\aurora.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ast.exe
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\ac.aut
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\abiuninst.htm
2008-08-08 15:03:12 0 d-------- C:\Windows\2020search2.dll
2008-08-08 15:03:12 0 d-------- C:\Windows\2020search.dll
2008-08-08 15:03:12 0 dr-hs---- C:\Windows\2020install.exe
2008-08-08 15:03:12 230 -r-h----- C:\Program Files\the guard
2008-08-08 15:03:12 230 -r-h----- C:\Program Files\sysal
2008-08-08 15:03:12 246 -r-h----- C:\Program Files\netturbotrial
2008-08-08 15:03:12 246 -r-h----- C:\Program Files\mediaring talk
2008-08-08 15:03:12 228 -r-h----- C:\Program Files\fs
2008-08-08 15:03:12 230 -r-h----- C:\Program Files\cxtpls
2008-08-08 15:03:12 246 -r-h----- C:\Program Files\Common Files\betterinternet
2008-08-08 15:03:12 230 -r-h----- C:\Program Files\backweb
2008-08-08 15:03:12 244 -r-h----- C:\Program Files\arcaderockstar
2008-08-08 15:03:12 230 -r-h----- C:\Program Files\aproposclient
2008-08-08 15:03:12 228 -r-h----- C:\Program Files\altnet
2008-08-08 15:03:12 232 -r-h----- C:\Program Files\adstatus service
2008-08-08 15:03:12 228 -r-h----- C:\Program Files\acetoolbar
2008-08-08 15:03:12 246 -r-h----- C:\Program Files\accoona
2008-08-08 15:03:12 246 -r-h----- C:\Program Files\abetterinternet
2008-08-08 15:03:12 230 -r-h----- C:\Program Files\2search
2008-08-08 15:03:12 0 dr-hs---- C:\ntldr.exe
2008-08-08 15:03:11 0 d-------- C:\winstall.exe
2008-08-08 15:03:11 0 d-------- C:\Windows\xpupdate.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wnsinttr.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wnsintsv.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wnscpit.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wnscpcc.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wnsapisv.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wnsapisu.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\wintsvsu.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\winservs.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\winservn.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\twain32.dll
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\ndrv.exe
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\ndrv.dll
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\msietk1020.dll
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\msiebho.dll
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\ginuerep.dll
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\fk.dll
2008-08-08 15:03:11 0 d-------- C:\Windows\system32\filekiller.dll
2008-08-08 15:03:11 0 dr-hs---- C:\Windows\system32\dxmpp.dll
2008-08-08 15:03:11 277 -r-h----- C:\Program Files\winferno
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\softwaredoctor
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\security iguard
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\securemypc
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\secure pc solutions
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\scorpio software
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\scan & repair utilities 2007
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\psguard
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\privacy crusader demo
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\privacy champion
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\pestbot
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\perfectcleaner
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\pcsecurityshield
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\pcprivacysoftware.com
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\pal spyrem
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\neospace
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\malwarewipers
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\malwaresweeper.com
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\kazaap
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\guardbar
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\goodbye spy
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\froggie scan demo
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\flobo spyware clean
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\expertantivirus
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\easy erase spyware remover
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\curepcsolution
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\codeclean2007
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\cleanx2007
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\bulletproofsoft.com
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\bps remover
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\antivirusgoldenpro
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\antivirus solution
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\allume systems
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\adwareX eliminator
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\adwareremovergold.com
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\adware spyWare removal
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\adware remover
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\adware agent
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\ads adware remover
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\ad armor
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\1stantivirus
2008-08-08 15:03:10 0 dr-hs---- C:\Windows\system32\winutil4.dll
2008-08-08 15:03:10 0 dr-hs---- C:\Windows\system32\winupd.exe
2008-08-08 15:03:10 0 dr-hs---- C:\Windows\system32\winsvc.exe
2008-08-08 15:03:10 0 dr-hs---- C:\Windows\system32\winctl4.dll
2008-08-08 15:03:10 0 dr-hs---- C:\Windows\system32\winctl3.ocx
2008-08-08 15:03:10 0 d-------- C:\Windows\system32\svhost.exe
2008-08-08 15:03:10 0 d-------- C:\Windows\system32\svchost32.exe
2008-08-08 15:03:10 0 d-------- C:\Windows\system32\server.exe
2008-08-08 15:03:10 0 dr-hs---- C:\Windows\system32\regsvc32.exe
2008-08-08 15:03:10 0 d-------- C:\Windows\svchost.exe
2008-08-08 15:03:10 0 d-------- C:\Windows\rundll16.exe
2008-08-08 15:03:10 0 d-------- C:\Windows\explore.exe
2008-08-08 15:03:10 0 d-------- C:\Windows\csrss.exe
2008-08-08 15:03:10 284 -r-h----- C:\Program Files\fix my registry
2008-08-08 15:03:10 276 -r-h----- C:\Program Files\beclean
2008-08-08 14:40:06 0 d-------- C:\Program Files\Malware Immunizer
2008-08-08 14:36:29 0 d-------- C:\Users\All Users\Spybot - Search & Destroy
2008-08-08 14:26:47 0 d-------- C:\Program Files\IObit
2008-07-31 17:41:00 0 d-------- C:\Program Files\Common Files\Laplink
2008-07-26 00:07:00 0 d-------- C:\Users\All Users\Meridian93
2008-07-23 22:30:18 0 d-------- C:\Program Files\AVG
2008-07-22 23:30:49 0 d-------- C:\Program Files\James Patterson's Women's Murder Club - Death in Scarlet


-- Find3M Report ---------------------------------------------------------------

2008-08-21 16:01:28 0 d-------- C:\Program Files\Mozilla Thunderbird
2008-08-21 16:01:22 0 d-------- C:\Users\Belladonna\AppData\Roaming\EndNote
2008-08-21 16:01:22 0 d-------- C:\Users\Belladonna\AppData\Roaming\Azureus
2008-08-21 16:01:12 0 d-------- C:\Program Files\Common Files\Risxtd
2008-08-21 16:01:09 0 d-------- C:\Program Files\Motorola Phone Tools
2008-08-21 16:01:09 0 d-------- C:\Program Files\LimeWire
2008-08-21 16:01:09 0 d-------- C:\Program Files\IncrediMail
2008-08-21 16:01:00 0 d-------- C:\Users\Belladonna\AppData\Roaming\uTorrent
2008-08-21 10:51:19 0 d-------- C:\Users\Belladonna\AppData\Roaming\WTablet
2008-08-21 10:49:00 4616 --a------ C:\Windows\bthservsdp.dat
2008-08-20 16:40:44 0 d-------- C:\Program Files\Common Files
2008-08-19 16:14:24 0 d-------- C:\Program Files\Microsoft Silverlight
2008-08-19 13:34:13 0 d-------- C:\Users\Belladonna\AppData\Roaming\IObit
2008-08-18 23:59:24 0 d-------- C:\Users\Belladonna\AppData\Roaming\Desktopicon
2008-08-18 21:24:11 0 d-------- C:\Users\Belladonna\AppData\Roaming\Skype
2008-08-18 18:38:55 0 d--h----- C:\Program Files\InstallShield Installation Information
2008-08-18 16:02:29 0 d-------- C:\Users\Belladonna\AppData\Roaming\skypePM
2008-08-18 12:48:41 0 d-------- C:\Program Files\Common Files\Wise Installation Wizard
2008-08-15 22:38:59 0 d-------- C:\Users\Belladonna\AppData\Roaming\Flood Light Games
2008-08-13 19:12:33 0 d-------- C:\Program Files\Java
2008-08-13 19:06:52 0 d-------- C:\Program Files\Azureus
2008-08-13 16:52:35 0 d-------- C:\Program Files\Windows Mail
2008-08-11 16:10:01 0 d-------- C:\Users\Belladonna\AppData\Roaming\Comodo
2008-08-10 19:09:36 0 d-------- C:\Users\Belladonna\AppData\Roaming\Adobe
2008-08-10 17:10:27 0 d-------- C:\Users\Belladonna\AppData\Roaming\Malwarebytes
2008-08-09 18:20:14 0 d-------- C:\Program Files\EndNote X1
2008-08-09 14:51:23 34 --a------ C:\Windows\system32\BD2040.DAT
2008-08-09 02:22:58 0 d-------- C:\Program Files\Winamp
2008-08-08 15:09:19 0 d-------- C:\Users\Belladonna\AppData\Roaming\SUPERAntiSpyware.com
2008-08-08 15:03:38 234 -r-h----- C:\Program Files\websnitch v3.0
2008-08-08 15:03:17 240 -r-h----- C:\Program Files\popcorn.net
2008-08-08 15:03:16 236 -r-h----- C:\Program Files\dealhelper.com inc
2008-08-08 15:03:14 236 -r-h----- C:\Program Files\buddylinks.net
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\scanspyware v3.8.0.4
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\prvdef4.0
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\killspy.net
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\btppdv2.2
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\antispyzone 5.0
2008-08-08 15:03:11 274 -r-h----- C:\Program Files\#1spywarekillerv2.1
2008-07-31 21:11:52 0 d-------- C:\Program Files\epson
2008-07-31 20:47:48 0 d-------- C:\Program Files\Brownie
2008-07-29 21:54:53 0 d-------- C:\Program Files\IncrediGames
2008-07-26 00:05:55 0 d-------- C:\Users\Belladonna\AppData\Roaming\Meridian93
2008-07-23 11:36:39 0 d-------- C:\Users\Belladonna\AppData\Roaming\Grisoft
2008-07-23 10:33:22 0 d-------- C:\Users\Belladonna\AppData\Roaming\Winamp
2008-07-23 10:12:55 0 d-------- C:\Program Files\KeyScrambler
2008-07-23 03:17:54 174 --ahs---- C:\Program Files\desktop.ini
2008-07-22 21:29:18 0 d-------- C:\Program Files\Bonjour
2008-07-06 11:07:28 0 d-------- C:\Program Files\Common Files\Symantec Shared
2008-07-05 21:47:50 167 --a------ C:\Users\Belladonna\AppData\Roaming\PLGComp.ini
2008-07-05 21:43:50 0 d-------- C:\Program Files\Focus Magic
2008-07-05 20:22:18 0 d-------- C:\Users\Belladonna\AppData\Roaming\Imatest
2008-07-05 01:01:49 0 d-------- C:\Program Files\Common Files\Adobe AIR
2008-07-05 00:59:29 0 d-------- C:\Program Files\Common Files\Adobe
2008-07-05 00:33:16 0 d-------- C:\Program Files\Opera
2008-07-04 21:21:37 28163 --a------ C:\Users\Belladonna\AppData\Roaming\Comma Separated Values (Windows).ADR
2008-07-04 20:06:41 0 d-------- C:\Program Files\Aspell
2008-07-02 21:21:14 0 d-------- C:\Program Files\Yahoo!
2008-07-01 10:43:57 0 d-------- C:\Program Files\Imatest
2008-06-27 14:28:10 0 d-------- C:\Program Files\Avanquest update
2008-06-25 11:10:20 0 d-------- C:\Users\Belladonna\AppData\Roaming\WinRAR
2008-06-25 00:26:57 0 d-------- C:\Program Files\bfgclient
2008-06-23 16:18:49 0 d-------- C:\Program Files\Crawler
2008-06-23 15:44:13 0 d-------- C:\Program Files\Defraggler
2008-06-23 15:11:51 0 d-------- C:\Users\Belladonna\AppData\Roaming\Mozilla
2008-06-23 14:19:54 0 d-------- C:\Program Files\QuickTime
2008-06-21 18:47:49 0 d-------- C:\Users\Belladonna\AppData\Roaming\Opera
2008-06-21 17:29:06 0 d-------- C:\Program Files\filehippo.com
2008-06-21 09:29:59 0 d-------- C:\Program Files\Apple Software Update


-- Registry Dump ---------------------------------------------------------------

*Note* empty entries & legit default entries are not shown


[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
11/06/2008 10:33 PM 75128 --a------ C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
09/08/2008 12:08 AM 34816 --a------ C:\Program Files\Java\jre6\bin\jp2ssv.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SigmatelSysTrayApp"="sttray.exe" [08/02/2007 03:11 PM C:\Windows\sttray.exe]
"ThreatFire"="C:\Program Files\ThreatFire\TFTray.exe" [24/04/2008 04:52 PM]
"COMODO Firewall Pro"="C:\Program Files\COMODO\Firewall\cfp.exe" [11/08/2008 04:09 PM]
"SunJavaUpdateSched"="C:\Program Files\Java\jre6\bin\jusched.exe" [09/08/2008 12:08 AM]
"UfSeAgnt.exe"="C:\Program Files\Trend Micro\Internet Security\UfSeAgnt.exe" [16/02/2008 12:56 AM]
"DellSupportCenter"="C:\Program Files\Dell Support Center\bin\sprtcmd.exe" [15/11/2007 08:23 AM]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"ccleaner"="C:\Program Files\CCleaner\CCleaner.exe" [29/07/2008 11:41 PM]
"SUPERAntiSpyware"="C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [28/05/2008 10:33 AM]
"OE"="C:\Program Files\Trend Micro\Internet Security\TMAS_OE\TMAS_OEMon.exe" [15/02/2008 11:39 PM]
"SmartRAM"="C:\Program Files\IObit\Advanced WindowsCare 3 Beta\Sup_SmartRAM.exe" [22/07/2008 03:42 PM]
"msnmsgr"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe" [07/11/2007 02:34 PM]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"=2 (0x2)
"EnableLUA"=0 (0x0)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [13/05/2008 10:13 AM 77824]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll 19/04/2007 01:41 PM 294912 C:\Program Files\SUPERAntiSpyware\SASWINLO.dll

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\aawservice]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AppInfo]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\KeyIso]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\NTDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ProfSvc]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\sacsvr]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SWPRV]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TabletInputService]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TBS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\TrustedInstaller]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\VDS]
@="Service"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgr.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\volmgrx.sys]
@="Driver"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{533C5B84-EC70-11D2-9505-00C04F79DEAF}]
@="Volume shadow copy"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{6BDD1FC1-810F-11D0-BEC7-08002BE2092F}]
@="IEEE 1394 Bus host controllers"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D48179BE-EC20-11D1-B6B8-00C04FA372A7}]
@="SBP2 IEEE 1394 Devices"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\{D94EE5D8-D189-4994-83D2-F68D7D41B0E6}]
@="SecurityDevices"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
"C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupportCenter]
"C:\Program Files\Dell Support Center\bin\sprtcmd.exe" /P DellSupportCenter

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus CX3900 Series]
C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBEP.EXE /FU "C:\Windows\TEMP\E_SC65C.tmp" /EF "HKLM"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus CX3900 Series (Copy 1)]
C:\Windows\system32\spool\DRIVERS\W32X86\3\E_FATIBEP.EXE /FU "C:\Windows\TEMP\E_S7783.tmp" /EF "HKCU"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\Windows\system32\igfxtray.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
"C:\Program Files\iTunes\iTunesHelper.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\msnmsgr]
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
C:\Windows\system32\igfxpers.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
"C:\Program Files\QuickTime\QTTask.exe" -atboottime

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
"C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Defender]
%ProgramFiles%\Windows Defender\MSASCui.exe -hide

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalSystemNetworkRestricted hidserv UxSms WdiSystemHost Netman trkwks AudioEndpointBuilder WUDFSvc irmon sysmain IPBusEnum dot3svc PcaSvc EMDMgmt TabletInputService wlansvc WPDBusEnum
bthsvcs BthServ


[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{041ca4bc-9633-11dc-b5b3-001dd9e717f0}]
AutoRun\command- H:\.\MigWiz\migsetup.exe


[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\>{22d6f312-b0f6-11d0-94ab-0080c74c7e95}]
C:\Windows\system32\unregmp2.exe /HideWMP

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
%SystemRoot%\system32\unregmp2.exe /FirstLogon /Shortcuts /RegBrowsers /ResetMUI



-- End of Deckard's System Scanner: finished at 2008-08-21 21:08:18 ------------

Edited by Belladonna13, 21 August 2008 - 08:37 PM.


BC AdBot (Login to Remove)

 


m

#2 Shaba

Shaba

    Koutsi


  • Members
  • 7,872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:08:45 AM

Posted 07 September 2008 - 05:21 AM

Hello and welcome to BC

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. We aim to provide the valuable service known to come from BC to every member we can, but sometimes it takes just a little longer to get to every request for help.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

Upon completing the steps below a staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

Thanks and again sorry for the delay.

Please see here for instructions
how to install HijackThis and make a logfile. Save it into convenient location and include it to your next reply, please.

Next
Please do a scan with Kaspersky Online Scanner

Note: If you are using Windows Vista, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.

Click on the Accept button and install any components it needs.
  • The program will install and then begin downloading the latest definition files.
  • After the files have been downloaded on the left side of the page in the Scan section select My Computer
  • This will start the program and scan your system.
  • The scan will take a while, so be patient and let it run.
  • Once the scan is complete, click on View scan report
  • Now, click on the Save Report as button.
  • Save the file to your desktop.
  • Copy and paste that information in your next post.
Please post back with HijackThis log and Kaspersky report.

Regards
Microsoft MVP Consumer Security
Posted Image

Posted Image

#3 Shaba

Shaba

    Koutsi


  • Members
  • 7,872 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Finland
  • Local time:08:45 AM

Posted 13 September 2008 - 05:33 AM

Due to the lack of feedback this Topic is closed.

If you need this topic reopened, please request this by sending the moderating team
a PM with the address of the thread. This applies only to the original topic starter.

Everyone else please begin a New Topic.
Microsoft MVP Consumer Security
Posted Image

Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users