Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect- unstoppable :(


  • This topic is locked This topic is locked
2 replies to this topic

#1 TK05

TK05

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 22 October 2009 - 12:28 AM

I've tried everything and its still here. PLEASE help me get rid of this thing. It keeps rdirecting all my searches to this r3953724.cn sire then to random sites

I have XP and ie 8 just installed, ive run the following with no avail. Malwarebytes, Supersntispyware, Hijacktis, Combofix, Ccleaner and some other ones.

Hijack this log
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:13:39 AM, on 10/22/2009
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:WINDOWSSystem32smss.exe
C:WINDOWSsystem32winlogon.exe
C:WINDOWSsystem32services.exe
C:WINDOWSsystem32lsass.exe
C:WINDOWSsystem32svchost.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
C:WINDOWSExplorer.EXE
C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
C:WINDOWSsystem32spoolsv.exe
C:Program FilesSymantec AntiVirusDefWatch.exe
C:Program FilesJavajre6binjqs.exe
C:WINDOWSSystem32nvsvc32.exe
C:WINDOWSSystem32svchost.exe
C:Program FilesSymantec AntiVirusRtvscan.exe
C:Program FilesLinksys Wireless-G USB Wireless Network MonitorWLService.exe
C:Program FilesLinksys Wireless-G USB Wireless Network MonitorWUSB54Gv2.exe
C:WINDOWSsystem32wscntfy.exe
C:windowssystemhpsysdrv.exe
C:Program FilesHPhpcoretechhpcmpmgr.exe
C:WINDOWSSystem32hphmon05.exe
C:HPKBDKBD.EXE
C:WINDOWSsystem32RUNDLL32.EXE
C:Program FilesCommon FilesSymantec SharedccApp.exe
C:PROGRA~1SYMANT~1VPTray.exe
C:Program FilesJavajre6binjusched.exe
C:WINDOWSsystem32ctfmon.exe
C:Program FilesLinksys Wireless-G USB Wireless Network MonitorInfoMyCa.exe
C:Program FilesHPDigital Imagingbinhpqtra08.exe
C:Program FilesInterMutePopSubtractPopSub.exe
C:Program FilesHPhpcoretechcomphptskmgr.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesInternet Exploreriexplore.exe
C:Program FilesTrend MicroHijackThisHijackThis.exe

R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLMSoftwareMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLMSoftwareMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll
O3 - Toolbar: HP view - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:Program FilesHPDigital Imagingbinhpdtlk02.dll
O4 - HKLM..Run: [hpsysdrv] c:windowssystemhpsysdrv.exe
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSsystem32hkcmd.exe
O4 - HKLM..Run: [HP Component Manager] "C:Program FilesHPhpcoretechhpcmpmgr.exe"
O4 - HKLM..Run: [HPHUPD05] c:Program FilesHP{45B6180B-DCAB-4093-8EE8-6164457517F0}hphupd05.exe
O4 - HKLM..Run: [HPHmon05] C:WINDOWSSystem32hphmon05.exe
O4 - HKLM..Run: [KBD] C:HPKBDKBD.EXE
O4 - HKLM..Run: [Recguard] C:WINDOWSSMINSTRECGUARD.EXE
O4 - HKLM..Run: [PS2] C:WINDOWSsystem32ps2.exe
O4 - HKLM..Run: [NvCplDaemon] RUNDLL32.EXE C:WINDOWSSystem32NvCpl.dll,NvStartup
O4 - HKLM..Run: [nwiz] nwiz.exe /install
O4 - HKLM..Run: [NvMediaCenter] RUNDLL32.EXE C:WINDOWSSystem32NvMcTray.dll,NvTaskbarInit
O4 - HKLM..Run: [WUSB54Gv2] C:Program FilesLinksys Wireless-G USB Wireless Network MonitorInvokeSvc3.exe
O4 - HKLM..Run: [IgfxTray] C:WINDOWSsystem32igfxtray.exe
O4 - HKLM..Run: [ccApp] "C:Program FilesCommon FilesSymantec SharedccApp.exe"
O4 - HKLM..Run: [vptray] C:PROGRA~1SYMANT~1VPTray.exe
O4 - HKLM..Run: [SunJavaUpdateSched] "C:Program FilesJavajre6binjusched.exe"
O4 - HKCU..Run: [MSMSGS] "C:Program FilesMessengermsmsgs.exe" /background
O4 - HKCU..Run: [SUPERAntiSpyware] C:Program FilesSUPERAntiSpywareSUPERAntiSpyware.exe
O4 - HKCU..Run: [ctfmon.exe] C:WINDOWSsystem32ctfmon.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:Program FilesHPDigital Imagingbinhpqtra08.exe
O4 - Global Startup: PopSubtract.lnk = C:Program FilesInterMutePopSubtractPopSub.exe
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:PROGRA~1MI1933~1OFFICE11EXCEL.EXE/3000
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:PROGRA~1MI1933~1OFFICE11REFIEBAR.DLL
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:Program FilesAIMaim.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} (CTVUAxCtrl Object) - http://dl.tvunetworks.com/TVUAx.cab
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://www.update.microsoft.com/windowsupd...b?1230244735662
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} (GpcContainer Class) - https://lexisnexisevents.webex.com/client/T...ent/ieatgpc.cab
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O20 - Winlogon Notify: !SASWinLogon - C:Program FilesSUPERAntiSpywareSASWINLO.DLL
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:Program FilesSymantec AntiVirusDefWatch.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:Program FilesJavajre6binjqs.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:PROGRA~1SymantecLIVEUP~1LUCOMS~1.EXE
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:WINDOWSSystem32nvsvc32.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:Program FilesWinPcaprpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:Program FilesSymantec AntiVirusSavRoam.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe
O23 - Service: Symantec SPBBCSvc (SPBBCSvc) - Symantec Corporation - C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:Program FilesSymantec AntiVirusRtvscan.exe
O23 - Service: WUSB54Gv2SVC - GEMTEKS - C:Program FilesLinksys Wireless-G USB Wireless Network MonitorWLService.exe

--
End of file - 7129 bytes

OTL log using (%systemdrive%*.exe
%systemroot%system32drivers*.sys ) in the custom scan (I saw this in another thread so i included it)

OTL logfile created on: 10/22/2009 1:17:00 AM - Run 3
OTL by OldTimer - Version 3.0.21.0 Folder = C:Documents and SettingsOwnerDesktop
Windows XP Home Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.49 Gb Total Physical Memory | 0.78 Gb Available Physical Memory | 52.39% Memory free
3.35 Gb Paging File | 2.81 Gb Available in Paging File | 83.97% Paging File free
Paging file location(s): C:pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:WINDOWS | %ProgramFiles% = C:Program Files
Drive C: | 181.51 Gb Total Space | 126.72 Gb Free Space | 69.82% Space Free | Partition Type: NTFS
Drive D: | 4.79 Gb Total Space | 0.70 Gb Free Space | 14.56% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: YOUR-VP7X3S9CTM
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: On
Skip Microsoft Files: On
File Age = 14 Days
Output = Standard
Quick Scan

========== Processes (SafeList) ==========

PRC - [2009/10/22 01:16:41 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:Documents and SettingsOwnerDesktopOTL.exe
PRC - [2009/10/21 11:39:35 | 00,396,288 | ---- | M] (Trend Micro Inc.) -- C:Program FilesTrend MicroHijackThisHijackThis.exe
PRC - [2009/07/31 15:23:21 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:Program FilesJavajre6binjusched.exe
PRC - [2009/07/31 15:23:19 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:Program FilesJavajre6binjqs.exe
PRC - [2009/03/08 14:09:26 | 00,638,816 | ---- | M] (Microsoft Corporation) -- C:Program FilesInternet Exploreriexplore.exe
PRC - [2007/10/07 20:48:40 | 00,125,368 | ---- | M] (Symantec Corporation) -- C:Program FilesSymantec AntiVirusVPTray.exe
PRC - [2007/10/07 20:48:32 | 01,822,648 | ---- | M] (Symantec Corporation) -- C:Program FilesSymantec AntiVirusRtvscan.exe
PRC - [2007/10/07 20:48:24 | 00,031,160 | ---- | M] (Symantec Corporation) -- C:Program FilesSymantec AntiVirusDefWatch.exe
PRC - [2007/07/26 19:25:20 | 01,181,016 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe
PRC - [2007/05/29 16:33:36 | 00,169,576 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedccSetMgr.exe
PRC - [2007/05/29 16:33:26 | 00,192,104 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe
PRC - [2007/05/29 16:33:22 | 00,052,840 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedccApp.exe
PRC - [2007/04/19 13:26:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:WINDOWSSystem32nvsvc32.exe
PRC - [2004/08/04 03:56:57 | 00,013,824 | ---- | M] (Microsoft Corporation) -- C:WINDOWSSystem32wscntfy.exe
PRC - [2004/08/04 03:56:49 | 01,032,192 | ---- | M] (Microsoft Corporation) -- C:WINDOWSExplorer.EXE
PRC - [2004/05/06 16:22:28 | 02,401,280 | ---- | M] (Cisco Linksys Corporation) -- C:Program FilesLinksys Wireless-G USB Wireless Network MonitorWUSB54Gv2.exe
PRC - [2004/03/10 21:57:06 | 00,045,056 | ---- | M] () -- C:Program FilesLinksys Wireless-G USB Wireless Network MonitorInfoMyCa.exe
PRC - [2004/02/06 23:56:14 | 00,041,025 | ---- | M] (GEMTEKS) -- C:Program FilesLinksys Wireless-G USB Wireless Network MonitorWLService.exe
PRC - [2004/02/03 11:05:18 | 00,233,472 | ---- | M] (interMute, Inc.) -- C:Program FilesInterMutePopSubtractPopSub.exe
PRC - [2003/12/22 19:38:42 | 00,241,664 | ---- | M] (Hewlett-Packard Company) -- C:Program FilesHPhpcoretechhpcmpmgr.exe
PRC - [2003/12/22 19:38:40 | 00,135,168 | ---- | M] (Hewlett-Packard Company) -- C:Program FilesHPhpcoretechcomphptskmgr.exe
PRC - [2003/09/16 16:19:24 | 00,237,568 | ---- | M] (Hewlett-Packard Co.) -- C:Program FilesHPDigital Imagingbinhpqtra08.exe
PRC - [2003/08/21 07:15:48 | 00,483,328 | ---- | M] (Hewlett-Packard) -- C:WINDOWSSystem32hphmon05.exe
PRC - [2003/02/11 23:02:48 | 00,061,440 | ---- | M] (Hewlett-Packard Company) -- C:HPKBDKBD.EXE
PRC - [1998/05/07 20:04:38 | 00,052,736 | ---- | M] (Hewlett-Packard Company) -- C:windowssystemhpsysdrv.exe

========== Win32 Services (SafeList) ==========

SRV - File not found -- -- (WUSB54Gv2SVC [Auto | Running])
SRV - [2009/07/31 15:23:19 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:Program FilesJavajre6binjqs.exe -- (JavaQuickStarterService [Auto | Running])
SRV - [2007/11/06 16:22:26 | 00,092,792 | ---- | M] (CACE Technologies) -- C:Program FilesWinPcaprpcapd.exe -- (rpcapd [On_Demand | Stopped])
SRV - [2007/10/07 20:48:36 | 00,116,664 | ---- | M] (symantec) -- C:Program FilesSymantec AntiVirusSavRoam.exe -- (SavRoam [On_Demand | Stopped])
SRV - [2007/10/07 20:48:32 | 01,822,648 | ---- | M] (Symantec Corporation) -- C:Program FilesSymantec AntiVirusRtvscan.exe -- (Symantec AntiVirus [Auto | Running])
SRV - [2007/10/07 20:48:24 | 00,031,160 | ---- | M] (Symantec Corporation) -- C:Program FilesSymantec AntiVirusDefWatch.exe -- (DefWatch [Auto | Running])
SRV - [2007/08/28 19:04:25 | 02,999,664 | ---- | M] (Symantec Corporation) -- C:Program FilesSymantecLiveUpdateLuComServer_3_2.EXE -- (LiveUpdate [On_Demand | Stopped])
SRV - [2007/08/27 17:14:00 | 00,214,408 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedSNDSrvc.exe -- (SNDSrvc [On_Demand | Stopped])
SRV - [2007/07/26 19:25:20 | 01,181,016 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedSPBBCSPBBCSvc.exe -- (SPBBCSvc [Auto | Running])
SRV - [2007/05/29 16:33:36 | 00,169,576 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedccSetMgr.exe -- (ccSetMgr [Auto | Running])
SRV - [2007/05/29 16:33:26 | 00,192,104 | ---- | M] (Symantec Corporation) -- C:Program FilesCommon FilesSymantec SharedccEvtMgr.exe -- (ccEvtMgr [Auto | Running])
SRV - [2007/04/19 13:26:00 | 00,159,810 | ---- | M] (NVIDIA Corporation) -- C:WINDOWSSystem32nvsvc32.exe -- (NVSvc [Auto | Running])
SRV - [2006/10/18 21:05:24 | 00,913,408 | ---- | M] (Microsoft Corporation) -- C:Program FilesWindows Media Playerwmpnetwk.exe -- (WMPNetworkSvc [On_Demand | Stopped])
SRV - [2004/08/04 03:56:44 | 00,038,912 | ---- | M] (Microsoft Corporation) -- C:WINDOWSPCHealthHelpCtrBinariespchsvc.dll -- (helpsvc [Auto | Running])
SRV - [2004/07/15 02:49:26 | 00,032,768 | ---- | M] (Microsoft Corporation) -- C:WINDOWSMicrosoft.NETFrameworkv1.1.4322aspnet_state.exe -- (aspnet_state [On_Demand | Stopped])
SRV - [2003/07/28 13:28:22 | 00,089,136 | ---- | M] (Microsoft Corporation) -- C:Program FilesCommon FilesMicrosoft SharedSource EngineOSE.EXE -- (ose [On_Demand | Stopped])

========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Default_Secondary_Page_URL = [binary data]
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Extensions Off Page = about:NoAdd-ons
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSsystem32blank.htm
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Security Risk Page = about:SecurityRisk
IE - HKLMSOFTWAREMicrosoftInternet ExplorerMain,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
IE - HKLMSOFTWAREMicrosoftInternet ExplorerSearch,CustomizeSearch = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchcust.htm
IE - HKLMSOFTWAREMicrosoftInternet ExplorerSearch,SearchAssistant = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm

IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Local Page = C:WINDOWSsystem32blank.htm
IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Page_Transitions = 1
IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Search Page = http://www.microsoft.com/isapi/redir.dll?p...amp;ar=iesearch
IE - HKCUSOFTWAREMicrosoftInternet ExplorerMain,Start Page = http://www.google.com/
IE - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings: "ProxyEnable" = 0
IE - HKCUSoftwareMicrosoftWindowsCurrentVersionInternet Settings: "ProxyOverride" = localhost

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}:6.0.03
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}:6.0.05
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}:6.0.07
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}:6.0.13
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}:6.0.15
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}:6.0.16
FF - prefs.js..extensions.enabledItems: {972ce4c6-7e08-4474-a285-3208198ce6fd}:3.0.8
FF - prefs.js..network.proxy.no_proxies_on: "localhost"

FF - HKLMsoftwaremozillaFirefoxextensionsjqs@sun.com: C:Program FilesJavajre6libdeployjqsff [2008/12/18 15:49:28 | 00,000,000 | ---D | M]
FF - HKLMsoftwaremozillaMozilla Firefox 3.0.8extensionsComponents: C:Program FilesMozilla Firefoxcomponents [2009/07/19 05:27:16 | 00,000,000 | ---D | M]
FF - HKLMsoftwaremozillaMozilla Firefox 3.0.8extensionsPlugins: C:Program FilesMozilla Firefoxplugins [2009/08/27 23:45:20 | 00,000,000 | ---D | M]

[2009/04/12 03:52:49 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DatamozillaExtensions
[2009/04/12 03:52:49 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DatamozillaExtensions{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
[2009/04/13 00:08:24 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DatamozillaFirefoxProfiles3wvk4r3i.defaultextensions
[2009/10/14 19:54:36 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions
[2009/04/12 03:52:14 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{972ce4c6-7e08-4474-a285-3208198ce6fd}
[2007/02/26 14:35:47 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{AF8637B0-18E3-44D3-86B7-55E09D9C4261}
[2008/02/23 17:04:41 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
[2008/03/18 14:33:04 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
[2008/08/19 14:41:22 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
[2009/05/29 19:00:22 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{CAFEEFAC-0016-0000-0013-ABCDEFFEDCBA}
[2009/09/03 16:03:09 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2009/10/14 19:54:37 | 00,000,000 | ---D | M] -- C:Program Filesmozilla firefoxextensions{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}
[2009/03/26 21:21:37 | 00,023,032 | ---- | M] (Mozilla Foundation) -- C:Program Filesmozilla firefoxcomponentsbrowserdirprovider.dll
[2009/03/26 21:21:37 | 00,134,648 | ---- | M] (Mozilla Foundation) -- C:Program Filesmozilla firefoxcomponentsbrwsrcmp.dll
[2009/04/15 16:24:54 | 01,044,480 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:Program Filesmozilla firefoxpluginslibdivx.dll
[2006/02/07 16:41:38 | 00,049,152 | ---- | M] (Macromedia, Inc.) -- C:Program Filesmozilla firefoxpluginsnp32dsw.dll
[2009/07/31 15:23:11 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:Program Filesmozilla firefoxpluginsnpdeploytk.dll
[2009/04/15 16:24:36 | 01,337,648 | ---- | M] (DivX,Inc.) -- C:Program Filesmozilla firefoxpluginsnpdivx32.dll
[2009/04/15 16:24:44 | 00,098,304 | ---- | M] (DivX, Inc) -- C:Program Filesmozilla firefoxpluginsnpDivxPlayerPlugin.dll
[2009/03/26 21:21:37 | 00,065,528 | ---- | M] (mozilla.org) -- C:Program Filesmozilla firefoxpluginsnpnul32.dll
[2008/09/10 15:56:44 | 00,144,960 | ---- | M] (RealNetworks, Inc.) -- C:Program Filesmozilla firefoxpluginsnppl3260.dll
[2006/10/21 20:29:41 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin.dll
[2006/10/21 20:29:41 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin2.dll
[2006/10/21 20:29:41 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin3.dll
[2006/10/21 20:29:41 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin4.dll
[2006/10/21 20:29:41 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin5.dll
[2006/10/21 20:29:42 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin6.dll
[2006/10/21 20:29:43 | 00,131,072 | ---- | M] (Apple Computer, Inc.) -- C:Program Filesmozilla firefoxpluginsnpqtplugin7.dll
[2008/09/10 15:37:54 | 00,094,208 | ---- | M] (RealNetworks, Inc.) -- C:Program Filesmozilla firefoxpluginsnprpjplug.dll
[2005/08/09 14:42:53 | 00,057,344 | ---- | M] (America Online, Inc.) -- C:Program Filesmozilla firefoxpluginsnpunagi2.dll
[2009/04/15 16:24:54 | 00,200,704 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- C:Program Filesmozilla firefoxpluginsssldivx.dll
[2008/01/04 11:36:50 | 00,001,538 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsamazon-en-GB.xml
[2006/07/05 14:47:38 | 00,002,193 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsanswers.xml
[2008/01/04 11:36:50 | 00,000,947 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginschambers-en-GB.xml
[2008/03/08 05:35:22 | 00,001,534 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginscreativecommons.xml
[2008/09/22 15:14:04 | 00,000,759 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginseBay-en-GB.xml
[2008/04/16 00:08:20 | 00,001,706 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsgoogle.xml
[2008/03/28 14:11:14 | 00,001,178 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginswikipedia.xml
[2008/01/04 11:36:50 | 00,000,831 | ---- | M] () -- C:Program Filesmozilla firefoxsearchpluginsyahoo-en-GB.xml

O1 HOSTS File: (686 bytes) - C:WINDOWSSystem32driversetcHosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:Program FilesAdobeAcrobat 7.0ActiveXAcroIEHelper.dll (Adobe Systems Incorporated)
O3 - HKLM..Toolbar: (no name) - - No CLSID value found.
O3 - HKLM..Toolbar: (HP view) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:Program FilesHPDigital Imagingbinhpdtlk02.dll (Hewlett-Packard Company)
O3 - HKCU..ToolbarShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKCU..ToolbarShellBrowser: (HP view) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:Program FilesHPDigital Imagingbinhpdtlk02.dll (Hewlett-Packard Company)
O3 - HKCU..ToolbarWebBrowser: (HP view) - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - c:Program FilesHPDigital Imagingbinhpdtlk02.dll (Hewlett-Packard Company)
O4 - HKLM..Run: [ccApp] C:Program FilesCommon FilesSymantec SharedccApp.exe (Symantec Corporation)
O4 - HKLM..Run: [HotKeysCmds] C:WINDOWSSystem32hkcmd.exe (Intel Corporation)
O4 - HKLM..Run: [HP Component Manager] C:Program FilesHPhpcoretechhpcmpmgr.exe (Hewlett-Packard Company)
O4 - HKLM..Run: [HPHmon05] C:WINDOWSSystem32hphmon05.exe (Hewlett-Packard)
O4 - HKLM..Run: [HPHUPD05] c:Program FilesHP{45B6180B-DCAB-4093-8EE8-6164457517F0}hphupd05.exe (Hewlett-Packard)
O4 - HKLM..Run: [hpsysdrv] c:windowssystemhpsysdrv.exe (Hewlett-Packard Company)
O4 - HKLM..Run: [IgfxTray] C:WINDOWSSystem32igfxtray.exe (Intel Corporation)
O4 - HKLM..Run: [KBD] C:HPKBDKBD.EXE (Hewlett-Packard Company)
O4 - HKLM..Run: [NvCplDaemon] C:WINDOWSSystem32NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..Run: [NvMediaCenter] C:WINDOWSSystem32NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..Run: [nwiz] C:WINDOWSSystem32nwiz.exe ()
O4 - HKLM..Run: [PS2] C:WINDOWSSystem32ps2.exe (Hewlett-Packard Company)
O4 - HKLM..Run: [Recguard] C:WINDOWSSMINSTRECGUARD.EXE ()
O4 - HKLM..Run: [SunJavaUpdateSched] C:Program FilesJavajre6binjusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..Run: [vptray] C:Program FilesSymantec AntiVirusVPTray.exe (Symantec Corporation)
O4 - HKLM..Run: [WUSB54Gv2] C:Program FilesLinksys Wireless-G USB Wireless Network MonitorInvokeSvc3.exe ()
O4 - HKCU..Run: [MSMSGS] C:Program FilesMessengermsmsgs.exe (Microsoft Corporation)
O4 - HKCU..Run: [SUPERAntiSpyware] C:Program FilesSUPERAntiSpywareSUPERAntiSpyware.exe (SUPERAntiSpyware.com)
O4 - Startup: C:Documents and SettingsAll UsersStart MenuProgramsStartupAdobe Reader Speed Launch.lnk = C:Program FilesAdobeAcrobat 7.0Readerreader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:Documents and SettingsAll UsersStart MenuProgramsStartupHP Digital Imaging Monitor.lnk = C:Program FilesHPDigital Imagingbinhpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:Documents and SettingsAll UsersStart MenuProgramsStartupPopSubtract.lnk = C:Program FilesInterMutePopSubtractPopSub.exe (interMute, Inc.)
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveAutoRun = 67108863
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 323
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDrives = 0
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: dontdisplaylastusername = 0
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: legalnoticecaption =
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: legalnoticetext =
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: shutdownwithoutlogon = 1
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: undockwithoutlogon = 1
O6 - HKLMSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: DisableRegistryTools = 0
O7 - HKCUSoftwarePoliciesMicrosoftInternet ExplorerControl Panel present
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveTypeAutoRun = 323
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDriveAutoRun = 67108863
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesExplorer: NoDrives = 0
O7 - HKCUSOFTWAREMicrosoftWindowsCurrentVersionpoliciesSystem: disableregistrytools = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - C:Program FilesMicrosoft OfficeOFFICE11EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:Program FilesMicrosoft OfficeOFFICE11REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:Program FilesAIMaim.exe (America Online, Inc.)
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:Program FilesMessengermsmsgs.exe (Microsoft Corporation)
O15 - HKLM..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwa...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://go.microsoft.com/fwlink/?linkid=39204 (Windows Genuine Advantage Validation Tool)
O16 - DPF: {3EA4FA88-E0BE-419A-A732-9B79B87A6ED0} http://dl.tvunetworks.com/TVUAx.cab (CTVUAxCtrl Object)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://www.update.microsoft.com/windowsupd...b?1230244735662 (WUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flash...r/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0014-0002-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl...indows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_16)
O16 - DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://lexisnexisevents.webex.com/client/T...ent/ieatgpc.cab (GpcContainer Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLMSystemCCSServicesTcpipParameters: DhcpNameServer = 68.105.28.12 68.105.29.12 68.105.28.11
O18 - ProtocolHandlercetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:Program FilesHPhpcoretechcomphpuiprot.dll (Hewlett-Packard Company)
O18 - ProtocolHandlerhttp0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandlerhttpoledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandlerhttps0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandlerhttpsoledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandleripp - No CLSID value found
O18 - ProtocolHandleripp0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandlermsdaipp - No CLSID value found
O18 - ProtocolHandlermsdaipp0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandlermsdaippoledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:Program FilesCommon FilesSYSTEMOLE DBmsdaipp.dll (Microsoft Corporation)
O18 - ProtocolHandlermso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:Program FilesCommon FilesMicrosoft SharedWeb Components10OWC10.DLL (Microsoft Corporation)
O18 - ProtocolHandlermso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:Program FilesCommon FilesMicrosoft SharedWeb Components11OWC11.DLL (Microsoft Corporation)
O18 - ProtocolFilter: - text/xml - C:Program FilesCommon FilesMicrosoft SharedOFFICE11MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:WINDOWSExplorer.exe (Microsoft Corporation)
O20 - WinlogonNotify!SASWinLogon: DllName - C:Program FilesSUPERAntiSpywareSASWINLO.DLL - C:Program FilesSUPERAntiSpywareSASWINLO.DLL (SUPERAntiSpyware.com)
O20 - WinlogonNotifyigfxcui: DllName - igfxsrvc.dll - C:WINDOWSSystem32igfxsrvc.dll (Intel Corporation)
O20 - WinlogonNotifyNavLogon: DllName - C:WINDOWSsystem32NavLogon.dll - C:WINDOWSSystem32NavLogon.dll (Symantec Corporation)
O24 - Desktop Components:0 (My Current Home Page) - About:Home
O31 - SafeBoot: AlternateShell - cmd.exe
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/04/01 02:00:15 | 00,000,000 | ---- | M] () - C:AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/07/28 06:07:38 | 00,000,000 | -HS- | M] () - D:AUTOEXEC.BAT -- [ FAT32 ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (autochk) - C:WINDOWSSystem32autochk.exe (Microsoft Corporation)
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

NetSvcs: 6to4 - Service key not found. File not found
NetSvcs: Ias - Service key not found. File not found
NetSvcs: Iprip - Service key not found. File not found
NetSvcs: Irmon - Service key not found. File not found
NetSvcs: NWCWorkstation - Service key not found. File not found
NetSvcs: Nwsapagent - Service key not found. File not found
NetSvcs: Wmi - C:WINDOWSSystem32wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp - Service key not found. File not found
NetSvcs: helpsvc - C:WINDOWSPCHealthHelpCtrBinariespchsvc.dll (Microsoft Corporation)

========== Files/Folders - Created Within 14 Days ==========

[2 C:WINDOWSSystem32*.tmp files]
[5 C:WINDOWS*.tmp files]
[1 C:Documents and SettingsOwnerApplication Data*.tmp files]
[1 C:Documents and SettingsOwnerApplication Data*.tmp files]
[1 C:Documents and SettingsOwnerDesktop*.tmp files]
[2009/10/21 11:08:17 | 00,000,000 | ---D | C] -- C:Program FilesCCleaner
[2009/10/21 10:33:35 | 00,000,000 | ---D | C] -- C:Program FilesMil Incorporated
[2009/10/21 12:36:02 | 00,000,000 | ---D | C] -- C:Program FilesPanda Security
[2009/10/21 11:39:35 | 00,000,000 | ---D | C] -- C:Program FilesTrend Micro
[2009/10/22 01:16:38 | 00,521,216 | ---- | C] (OldTimer Tools) -- C:Documents and SettingsOwnerDesktopOTL.exe
[2009/10/22 00:49:25 | 00,000,000 | ---D | C] -- C:Documents and SettingsOwnerDesktopsdfux
[2009/10/22 00:43:23 | 00,000,000 | ---D | C] -- C:_OTM
[2009/10/21 20:41:17 | 00,000,000 | ---D | C] -- C:WINDOWSie8updates
[2009/10/21 20:40:38 | 00,000,000 | ---D | C] -- C:WINDOWSWBEM
[2009/10/21 20:39:44 | 00,000,000 | -H-D | C] -- C:WINDOWSie8
[2009/10/21 20:39:44 | 00,000,000 | ---D | C] -- C:WINDOWSSystem32en-US
[2009/10/21 19:58:42 | 00,000,000 | ---D | C] -- C:WINDOWStemp
[2009/10/21 11:48:09 | 00,000,000 | ---D | C] -- C:WINDOWSERDNT
[2009/10/21 11:24:34 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:Documents and SettingsOwnerDesktopHJTInstall.exe
[2009/10/21 11:07:54 | 03,309,072 | ---- | C] (Piriform Ltd) -- C:Documents and SettingsOwnerDesktopccsetup224.exe

========== Files - Modified Within 14 Days ==========

[2 C:WINDOWSSystem32*.tmp files]
[5 C:WINDOWS*.tmp files]
[1 C:Documents and SettingsOwnerApplication Data*.tmp files]
[1 C:Documents and SettingsOwnerDesktop*.tmp files]
[2009/10/22 01:16:41 | 00,521,216 | ---- | M] (OldTimer Tools) -- C:Documents and SettingsOwnerDesktopOTL.exe
[2009/10/22 00:38:37 | 00,065,579 | ---- | M] () -- C:WINDOWSSystem32nvapps.xml
[2009/10/22 00:38:30 | 00,000,248 | ---- | M] () -- C:WINDOWSSystemhpsysdrv.dat
[2009/10/22 00:37:59 | 00,000,006 | -H-- | M] () -- C:WINDOWStasksSA.DAT
[2009/10/22 00:37:52 | 00,002,048 | --S- | M] () -- C:WINDOWSbootstat.dat
[2009/10/22 00:37:47 | 16,017,53088 | -HS- | M] () -- C:hiberfil.sys
[2009/10/21 20:46:49 | 00,002,497 | ---- | M] () -- C:Documents and SettingsOwnerDesktopMicrosoft Office Word 2003 (2).lnk
[2009/10/21 20:44:45 | 00,023,392 | ---- | M] () -- C:WINDOWSSystem32nscompat.tlb
[2009/10/21 20:44:45 | 00,016,832 | ---- | M] () -- C:WINDOWSSystem32amcompat.tlb
[2009/10/21 19:54:26 | 00,000,227 | ---- | M] () -- C:WINDOWSsystem.ini
[2009/10/21 12:23:59 | 00,445,630 | ---- | M] () -- C:WINDOWSSystem32PerfStringBackup.INI
[2009/10/21 12:23:59 | 00,384,596 | ---- | M] () -- C:WINDOWSSystem32perfh009.dat
[2009/10/21 12:23:59 | 00,054,280 | ---- | M] () -- C:WINDOWSSystem32perfc009.dat
[2009/10/21 11:39:35 | 00,001,745 | ---- | M] () -- C:Documents and SettingsOwnerDesktopHijackThis.lnk
[2009/10/21 11:29:50 | 00,000,889 | ---- | M] () -- C:WINDOWSQUICKEN.INI
[2009/10/21 11:24:39 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:Documents and SettingsOwnerDesktopHJTInstall.exe
[2009/10/21 11:08:18 | 00,001,559 | ---- | M] () -- C:Documents and SettingsOwnerDesktopCCleaner.lnk
[2009/10/21 11:08:01 | 03,309,072 | ---- | M] (Piriform Ltd) -- C:Documents and SettingsOwnerDesktopccsetup224.exe
[2009/10/21 10:45:41 | 00,000,032 | ---- | M] () -- C:WINDOWSvb_mconf.ini
[2009/10/20 16:07:42 | 00,001,158 | ---- | M] () -- C:WINDOWSSystem32wpa.dbl
[2009/10/20 14:32:07 | 03,700,656 | -H-- | M] () -- C:Documents and SettingsOwnerLocal SettingsApplication DataIconCache.db
[2009/10/20 11:50:08 | 00,000,639 | ---- | M] () -- C:Documents and SettingsOwnerMy Documentsdotakeys.ini
[2009/10/14 02:17:15 | 00,018,944 | ---- | M] () -- C:Documents and SettingsOwnerDesktopSmolov.xls
[2009/10/13 20:38:40 | 00,019,968 | ---- | M] () -- C:Documents and SettingsOwnerDesktopwarcrat keys.doc
[2009/10/13 04:44:56 | 00,019,968 | ---- | M] () -- C:Documents and SettingsOwnerDesktophttp.doc
[2009/10/09 04:53:00 | 04,202,843 | ---- | M] () -- C:Documents and SettingsOwnerDesktopvideo.flv
[2009/10/08 14:12:48 | 00,021,504 | ---- | M] () -- C:Documents and SettingsOwnerDesktopThe Independent Felonious Purpose Limitation.doc

========== Files - No Company Name ==========
[2009/10/21 11:39:35 | 00,001,745 | ---- | C] () -- C:Documents and SettingsOwnerDesktopHijackThis.lnk
[2009/10/21 11:08:18 | 00,001,559 | ---- | C] () -- C:Documents and SettingsOwnerDesktopCCleaner.lnk
[2009/10/21 10:33:39 | 00,000,032 | ---- | C] () -- C:WINDOWSvb_mconf.ini
[2009/10/21 09:36:42 | 16,017,53088 | -HS- | C] () -- C:hiberfil.sys
[2009/10/13 20:38:39 | 00,019,968 | ---- | C] () -- C:Documents and SettingsOwnerDesktopwarcrat keys.doc
[2009/10/13 04:44:56 | 00,019,968 | ---- | C] () -- C:Documents and SettingsOwnerDesktophttp.doc
[2009/10/09 04:54:08 | 04,202,843 | ---- | C] () -- C:Documents and SettingsOwnerDesktopvideo.flv
[2009/10/08 14:12:47 | 00,021,504 | ---- | C] () -- C:Documents and SettingsOwnerDesktopThe Independent Felonious Purpose Limitation.doc
[2009/08/29 22:16:10 | 00,007,680 | ---- | C] () -- C:WINDOWSSystem32ff_vfw.dll
[2009/08/29 22:16:10 | 00,000,547 | ---- | C] () -- C:WINDOWSSystem32ff_vfw.dll.manifest
[2009/07/16 18:48:44 | 00,010,240 | ---- | C] () -- C:WINDOWSSystem32virport.dll
[2009/03/28 06:27:42 | 00,000,035 | ---- | C] () -- C:Documents and SettingsOwnerApplication DataTheHunterSettings.cfg
[2009/03/13 21:49:47 | 00,168,448 | ---- | C] () -- C:WINDOWSSystem32unrar.dll
[2009/03/13 21:49:43 | 03,596,288 | ---- | C] () -- C:WINDOWSSystem32qt-dx331.dll
[2009/03/13 21:49:43 | 00,795,648 | ---- | C] () -- C:WINDOWSSystem32xvidcore.dll
[2009/03/13 21:49:43 | 00,130,048 | ---- | C] () -- C:WINDOWSSystem32xvidvfw.dll
[2008/12/30 21:02:59 | 00,000,262 | ---- | C] () -- C:WINDOWS{789289CA-F73A-4A16-A331-54D498CE069F}_WiseFW.ini
[2008/12/25 21:36:52 | 00,001,620 | ---- | C] () -- C:WINDOWSSystem32WLAN.INI
[2008/12/25 21:26:43 | 00,001,173 | ---- | C] () -- C:WINDOWSSystem32imbrmute.ini
[2008/12/25 20:26:40 | 00,094,208 | ---- | C] () -- C:WINDOWSSystem32GTW32N50.dll
[2008/12/25 19:35:56 | 01,703,936 | ---- | C] () -- C:WINDOWSSystem32nvwdmcpl.dll
[2008/12/25 19:35:56 | 01,474,560 | ---- | C] () -- C:WINDOWSSystem32nview.dll
[2008/12/25 19:35:56 | 01,019,904 | ---- | C] () -- C:WINDOWSSystem32nvwimg.dll
[2008/12/25 19:35:56 | 00,466,944 | ---- | C] () -- C:WINDOWSSystem32nvshell.dll
[2008/12/25 19:34:51 | 00,286,720 | ---- | C] () -- C:WINDOWSSystem32nvnt4cpl.dll
[2008/12/25 19:34:46 | 00,581,632 | ---- | C] () -- C:WINDOWSSystem32nvhwvid.dll
[2008/12/25 19:34:25 | 00,212,992 | ---- | C] () -- C:WINDOWSSystem32nvapi.dll
[2008/12/25 19:19:31 | 00,204,800 | ---- | C] () -- C:WINDOWSSystem32IVIresizeW7.dll
[2008/12/25 19:19:31 | 00,200,704 | ---- | C] () -- C:WINDOWSSystem32IVIresizeA6.dll
[2008/12/25 19:19:31 | 00,192,512 | ---- | C] () -- C:WINDOWSSystem32IVIresizeP6.dll
[2008/12/25 19:19:31 | 00,192,512 | ---- | C] () -- C:WINDOWSSystem32IVIresizeM6.dll
[2008/12/25 19:19:31 | 00,188,416 | ---- | C] () -- C:WINDOWSSystem32IVIresizePX.dll
[2008/12/25 19:19:31 | 00,020,480 | ---- | C] () -- C:WINDOWSSystem32IVIresize.dll
[2008/12/15 22:44:21 | 00,000,000 | ---- | C] () -- C:WINDOWSvpc32.INI
[2008/11/18 00:53:03 | 00,000,031 | ---- | C] () -- C:WINDOWSWebUpdateSvc4.INI
[2008/03/04 19:52:34 | 00,286,720 | ---- | C] () -- C:WINDOWSSystem32libcurl.dll
[2008/02/23 00:53:46 | 00,000,319 | ---- | C] () -- C:WINDOWSgame.ini
[2007/11/06 16:19:28 | 00,053,299 | ---- | C] () -- C:WINDOWSSystem32pthreadVC.dll
[2007/10/31 10:39:54 | 00,059,904 | ---- | C] () -- C:WINDOWSSystem32zlib1.dll
[2007/08/07 18:50:59 | 00,000,083 | ---- | C] () -- C:WINDOWSwwp.INI
[2007/05/23 16:09:14 | 00,000,023 | ---- | C] () -- C:WINDOWSBlendSettings.ini
[2007/05/17 14:58:10 | 00,143,360 | ---- | C] () -- C:WINDOWSSystem32libexpatw.dll
[2007/04/01 22:03:42 | 00,000,078 | ---- | C] () -- C:WINDOWSqwimp.ini
[2007/04/01 22:03:41 | 00,000,403 | ---- | C] () -- C:WINDOWSintuprof.ini
[2007/03/28 01:55:20 | 00,000,116 | ---- | C] () -- C:WINDOWSNeroDigital.ini
[2007/03/04 15:07:35 | 00,000,026 | ---- | C] () -- C:WINDOWSdvdSanta.INI
[2007/03/04 13:56:14 | 00,000,067 | ---- | C] () -- C:WINDOWSAVIConverter.INI
[2006/05/11 23:22:07 | 00,000,029 | ---- | C] () -- C:WINDOWSatid.ini
[2006/05/10 12:28:59 | 00,001,767 | ---- | C] () -- C:Documents and SettingsAll UsersApplication DataQTSBandwidthCache
[2004/10/31 11:56:57 | 00,038,632 | ---- | C] () -- C:Documents and SettingsOwnerApplication DataGDIPFONTCACHEV1.DAT
[2004/10/31 11:41:34 | 00,000,025 | ---- | C] () -- C:WINDOWScdplayer.ini
[2004/08/30 21:15:39 | 00,000,109 | ---- | C] () -- C:WINDOWSiPlayer.INI
[2004/08/29 00:28:04 | 00,166,912 | ---- | C] () -- C:Documents and SettingsOwnerLocal SettingsApplication DataDCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2004/08/24 20:49:14 | 00,061,632 | ---- | C] () -- C:Documents and SettingsOwnerLocal SettingsApplication DataGDIPFONTCACHEV1.DAT
[2004/08/22 17:04:56 | 00,069,120 | ---- | C] () -- C:WINDOWSdaemon.dll
[2004/05/12 01:31:54 | 00,005,654 | ---- | C] () -- C:WINDOWSPWRPLAY.INI
[2004/04/29 13:30:04 | 00,027,440 | ---- | C] () -- C:WINDOWSSystem32driverssecdrv.sys
[2004/04/02 19:33:15 | 00,000,000 | ---- | C] () -- C:WINDOWSSystem32VGAunistlog.ini
[2004/04/02 19:33:14 | 00,000,451 | ---- | C] () -- C:WINDOWSVGAsetup.ini
[2004/04/02 19:18:59 | 00,000,061 | ---- | C] () -- C:WINDOWSsmscfg.ini
[2004/04/01 17:32:44 | 00,028,672 | ---- | C] () -- C:WINDOWSSystem32JAWTAccessBridge.dll
[2004/04/01 17:32:21 | 00,086,016 | ---- | C] () -- C:WINDOWSSystem32PcdrKernelModeServices.dll
[2004/04/01 17:32:21 | 00,065,536 | ---- | C] () -- C:WINDOWSSystem32ProgressTrace.dll
[2004/04/01 17:31:04 | 00,000,128 | ---- | C] () -- C:Documents and SettingsOwnerLocal SettingsApplication Datafusioncache.dat
[2004/04/01 17:29:07 | 00,167,936 | ---- | C] () -- C:WINDOWSSystem32PCDrJNI_1_1.dll
[2004/04/01 17:14:02 | 00,028,734 | ---- | C] () -- C:WINDOWSSystem32CHODDI.SYS
[2004/04/01 17:13:21 | 00,045,056 | ---- | C] () -- C:WINDOWSSystem32hpreg.dll
[2004/04/01 04:57:30 | 00,000,376 | ---- | C] () -- C:WINDOWSODBC.INI
[2004/04/01 04:50:38 | 00,000,889 | ---- | C] () -- C:WINDOWSQUICKEN.INI
[2004/04/01 04:01:30 | 00,001,905 | ---- | C] () -- C:Documents and SettingsAll UsersApplication Datahpzinstall.log
[2004/04/01 03:55:37 | 00,001,793 | ---- | C] () -- C:WINDOWSSystem32fxsperf.ini
[2004/04/01 03:23:23 | 00,363,520 | ---- | C] () -- C:WINDOWSSystem32psisdecd.dll
[2004/04/01 03:14:18 | 00,299,073 | ---- | C] () -- C:WINDOWSSystem32PythonCOM22.dll
[2004/04/01 03:14:18 | 00,065,536 | ---- | C] () -- C:WINDOWSSystem32PyWinTypes22.dll
[2004/04/01 03:12:07 | 00,016,896 | ---- | C] () -- C:WINDOWSSystem32bcbmm.dll
[2004/04/01 02:58:48 | 03,700,656 | -H-- | C] () -- C:Documents and SettingsOwnerLocal SettingsApplication DataIconCache.db
[2004/04/01 02:03:26 | 00,000,802 | ---- | C] () -- C:WINDOWSorun32.ini
[2004/04/01 02:02:53 | 00,000,062 | -HS- | C] () -- C:Documents and SettingsOwnerApplication Datadesktop.ini
[2004/04/01 00:50:07 | 00,000,549 | ---- | C] () -- C:WINDOWSSystem32oeminfo.ini
[2004/04/01 00:50:00 | 00,000,633 | ---- | C] () -- C:WINDOWSwin.ini
[2004/04/01 00:49:58 | 00,000,227 | ---- | C] () -- C:WINDOWSsystem.ini
[2004/03/31 17:53:48 | 00,000,062 | -HS- | C] () -- C:Documents and SettingsAll UsersApplication Datadesktop.ini
[2003/03/07 02:53:16 | 00,012,288 | ---- | C] () -- C:WINDOWSSystem32hpnvr82.dll
[2003/01/07 16:05:08 | 00,002,695 | ---- | C] () -- C:WINDOWSSystem32OUTLPERF.INI

========== LOP Check ==========

[2009/10/20 16:12:02 | 00,000,000 | RH-D | M] -- C:Documents and SettingsAll UsersApplication Data
[2008/11/20 01:25:51 | 00,000,000 | -H-D | M] -- C:Documents and SettingsAll UsersApplication Data{24B7A525-6F51-44E9-889D-A9333BE30876}
[2006/11/08 21:24:07 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataAhead
[2009/08/29 17:11:31 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataAVS4YOU
[2008/04/12 17:53:50 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataCabela's African Safari Saves
[2007/03/22 09:24:18 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataCOMMON FILES
[2008/09/14 17:48:11 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataDVD Shrink
[2007/03/23 00:29:46 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataIntuit
[2004/04/01 17:31:08 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataMotive
[2005/02/02 10:10:35 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataMSN6
[2009/07/17 14:30:05 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataNCH Software
[2009/08/30 00:48:58 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataPinnacle
[2004/04/01 02:04:09 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataSBSI
[2008/11/18 00:53:43 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataSoftwareSecure
[2006/10/06 15:38:58 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataTrymedia
[2009/01/04 03:43:47 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataTVU Networks
[2007/01/18 10:50:48 | 00,000,000 | ---D | M] -- C:Documents and SettingsAll UsersApplication DataViewpoint
[1 C:Documents and SettingsOwnerApplication Data*.tmp files]
[2009/08/28 18:36:24 | 00,000,000 | RH-D | M] -- C:Documents and SettingsOwnerApplication Data
[2006/05/11 23:44:12 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication Dataacccore
[2007/03/24 01:12:45 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataAhead
[2008/12/30 21:00:37 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataAim
[2007/03/27 13:45:22 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataCommand & Conquer 3 Tiberium Wars Demo
[2008/02/09 22:21:13 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataDonationCoder
[2008/06/23 14:32:15 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication Datadvdcss
[2009/05/13 09:20:43 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataFOG Downloader
[2008/12/10 23:49:52 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataFrostWire
[2009/05/06 05:05:22 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataGetRightToGo
[2008/12/10 21:12:00 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataHamachi
[2008/05/15 03:02:35 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataHamachi-Backup
[2004/08/27 10:20:56 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataInterMute
[2004/08/27 17:59:34 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataInterVideo
[2007/03/22 09:31:59 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataIntuit
[2004/08/27 17:50:14 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataLeadertech
[2009/07/19 08:41:57 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DatamIRC
[2004/08/30 17:14:56 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataMotive
[2008/11/26 05:52:06 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataMoyea
[2005/02/02 10:13:03 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataMSN6
[2005/02/02 12:52:54 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataMSNInstaller
[2009/08/30 00:46:25 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataNCH Software
[2009/04/12 22:06:24 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataOrbit
[2007/09/24 13:37:13 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataPegasys Inc
[2007/03/18 21:08:21 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataRipIt4Me
[2004/04/01 17:49:28 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataSampleView
[2008/07/02 17:12:01 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataSkinux
[2004/08/21 15:11:20 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataTemplate
[2009/09/18 21:00:55 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataU3
[2009/06/20 20:44:22 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DatauTorrent
[2008/12/31 20:07:16 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataVentrilo
[2007/01/18 10:50:52 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication DataViewpoint
[2009/10/08 15:01:24 | 00,000,000 | ---D | M] -- C:Documents and SettingsOwnerApplication Datawebex
[2002/08/29 15:00:00 | 00,000,065 | RH-- | M] () -- C:WINDOWSTasksdesktop.ini
[2009/10/22 00:37:59 | 00,000,006 | -H-- | M] () -- C:WINDOWSTasksSA.DAT

========== Purity Check ==========



========== Custom Scans ==========


< %systemdrive%*.exe >

< %systemroot%system32drivers*.sys >
[2004/08/04 02:10:06 | 00,053,248 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivers1394bus.sys
[2004/08/04 02:07:38 | 00,187,776 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversacpi.sys
[2002/08/29 08:00:00 | 00,011,648 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversacpiec.sys
[2004/08/04 01:39:36 | 00,142,464 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversaec.sys
[2008/08/14 05:51:43 | 00,138,368 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversafd.sys
[2004/10/07 21:16:04 | 00,035,840 | ---- | M] (Oak Technology Inc.) -- C:WINDOWSsystem32driversAFS2K.SYS
[2004/08/04 02:07:42 | 00,042,368 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversagp440.sys
[2004/08/04 02:07:42 | 00,044,928 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversagpcpq.sys
[2003/12/12 10:54:14 | 00,391,424 | ---- | M] (Sensaura Ltd) -- C:WINDOWSsystem32driversALCXSENS.SYS
[2004/10/01 11:24:02 | 02,279,424 | ---- | M] (Realtek Semiconductor Corp.) -- C:WINDOWSsystem32driversALCXWDM.SYS
[2004/08/04 02:07:42 | 00,042,752 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversalim1541.sys
[2004/08/04 02:07:42 | 00,043,008 | ---- | M] (Advanced Micro Devices, Inc.) -- C:WINDOWSsystem32driversamdagp.sys
[2004/08/04 01:59:20 | 00,036,992 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversamdk6.sys
[2004/08/04 01:59:20 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversamdk7.sys
[2004/08/04 01:58:30 | 00,060,800 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversarp1394.sys
[2004/08/04 02:05:03 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversasyncmac.sys
[2004/08/04 01:59:42 | 00,095,360 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversatapi.sys
[2004/08/04 01:29:29 | 00,056,623 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1btxx.sys
[2004/08/04 01:29:29 | 00,011,615 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1mdxx.sys
[2004/08/04 01:29:29 | 00,012,047 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1pdxx.sys
[2004/08/04 01:29:30 | 00,030,671 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1raxx.sys
[2004/08/04 01:29:30 | 00,063,663 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1rvxx.sys
[2004/08/04 01:29:31 | 00,026,367 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1snxx.sys
[2004/08/04 01:29:31 | 00,021,343 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1ttxx.sys
[2004/08/04 01:29:31 | 00,036,463 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1tuxx.sys
[2004/08/04 01:29:31 | 00,029,455 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1xbxx.sys
[2004/08/04 01:29:31 | 00,034,735 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati1xsxx.sys
[2004/08/04 01:29:26 | 00,327,040 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati2mtaa.sys
[2004/08/04 01:29:26 | 00,701,440 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversati2mtag.sys
[2004/08/04 01:29:27 | 00,057,856 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinbtxx.sys
[2004/08/04 01:29:28 | 00,013,824 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinmdxx.sys
[2004/08/04 01:29:29 | 00,014,336 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinpdxx.sys
[2004/08/04 01:29:29 | 00,052,224 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinraxx.sys
[2004/08/04 01:29:30 | 00,104,960 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinrvxx.sys
[2004/08/04 01:29:30 | 00,028,672 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinsnxx.sys
[2004/08/04 01:29:30 | 00,013,824 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinttxx.sys
[2004/08/04 01:29:31 | 00,073,216 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatintuxx.sys
[2004/08/04 01:29:31 | 00,031,744 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinxbxx.sys
[2004/08/04 01:29:31 | 00,063,488 | ---- | M] (ATI Technologies Inc.) -- C:WINDOWSsystem32driversatinxsxx.sys
[2004/08/04 01:58:30 | 00,059,904 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversatmarpc.sys
[2002/08/29 08:00:00 | 00,031,360 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversatmepvc.sys
[2004/08/04 01:58:34 | 00,055,936 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversatmlane.sys
[2002/08/29 08:00:00 | 00,352,256 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversatmuni.sys
[2001/08/17 16:59:44 | 00,003,072 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversaudstub.sys
[2004/08/04 02:10:12 | 00,011,776 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbdasup.sys
[2002/08/29 08:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbeep.sys
[2004/08/04 01:59:57 | 00,071,552 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbridge.sys
[2004/08/04 02:10:38 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbthenum.sys
[2004/08/04 02:10:38 | 00,038,016 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbthmodem.sys
[2004/08/04 01:58:38 | 00,100,992 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbthpan.sys
[2008/06/13 09:10:50 | 00,272,128 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbthport.sys
[2004/08/04 02:10:38 | 00,035,456 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbthprint.sys
[2004/08/04 02:10:34 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversbthusb.sys
[2002/08/29 08:00:00 | 00,013,952 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverscbidf2k.sys
[2004/08/04 02:10:16 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversccdecode.sys
[2002/08/29 15:00:00 | 00,018,688 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverscdaudio.sys
[2004/08/04 02:14:10 | 00,063,744 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverscdfs.sys
[2007/03/07 19:51:00 | 00,009,336 | ---- | M] (Sonic Solutions) -- C:WINDOWSsystem32driverscdr4_xp.sys
[2007/03/07 19:51:00 | 00,009,464 | ---- | M] (Sonic Solutions) -- C:WINDOWSsystem32driverscdralw2k.sys
[2004/08/04 01:59:52 | 00,049,536 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverscdrom.sys
[2002/08/29 15:00:00 | 00,262,528 | ---- | M] (RAVISENT Technologies Inc.) -- C:WINDOWSsystem32driverscinemst2.sys
[2004/08/04 02:14:26 | 00,049,664 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversclasspnp.sys
[2002/08/29 15:00:00 | 00,011,776 | ---- | M] (Compaq Computer Corporation) -- C:WINDOWSsystem32driverscpqdap01.sys
[2004/08/04 01:59:20 | 00,036,480 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverscrusoe.sys
[2004/08/04 01:59:54 | 00,036,352 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdisk.sys
[2004/08/04 01:59:52 | 00,014,208 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdiskdump.sys
[2004/08/04 02:07:17 | 00,799,744 | ---- | M] (Microsoft Corp., Veritas Software) -- C:WINDOWSsystem32driversdmboot.sys
[2004/08/04 02:07:16 | 00,153,344 | ---- | M] (Microsoft Corp., Veritas Software) -- C:WINDOWSsystem32driversdmio.sys
[2002/08/29 08:00:00 | 00,005,888 | ---- | M] (Microsoft Corp., Veritas Software.) -- C:WINDOWSsystem32driversdmload.sys
[2004/08/04 02:07:38 | 00,052,864 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdmusic.sys
[2004/08/04 02:07:58 | 00,060,288 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdrmk.sys
[2004/08/04 02:07:58 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdrmkaud.sys
[2002/08/29 08:00:00 | 00,010,496 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdxapi.sys
[2004/08/04 02:00:54 | 00,071,040 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdxg.sys
[2002/08/29 08:00:00 | 00,003,328 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversdxgthk.sys
[2006/12/12 11:16:06 | 00,022,528 | ---- | M] (Pinnacle Systems GmbH) -- C:WINDOWSsystem32driversemAudio.sys
[2005/12/21 09:14:52 | 00,100,957 | ---- | M] (eMPIA Technology, Inc.) -- C:WINDOWSsystem32driversemDevice.sys
[2005/12/21 09:14:52 | 00,005,245 | ---- | M] (eMPIA Technology, Inc.) -- C:WINDOWSsystem32driversemFilter.sys
[2005/12/21 09:14:52 | 00,004,493 | ---- | M] (eMPIA Technology, Inc.) -- C:WINDOWSsystem32driversemScan.sys
[2005/12/21 09:14:52 | 00,024,269 | ---- | M] (eMPIA Technology, Inc.) -- C:WINDOWSsystem32driversemStream.sys
[2001/08/17 17:46:40 | 00,006,400 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversenum1394.sys
[2004/08/04 02:14:16 | 00,143,360 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversfastfat.sys
[2003/12/02 22:23:20 | 00,142,336 | ---- | M] (Promise Technology, Inc.) -- C:WINDOWSsystem32driversFasttx2k.sys
[2004/08/04 01:59:28 | 00,027,392 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversfdc.sys
[2002/08/29 08:00:00 | 00,034,944 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversfips.sys
[2004/08/04 01:59:28 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversflpydisk.sys
[2004/08/04 02:01:19 | 00,124,800 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversfltmgr.sys
[2002/08/29 15:00:00 | 00,012,160 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversfsvga.sys
[2002/08/29 08:00:00 | 00,007,936 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversfs_rec.sys
[2002/08/29 08:00:00 | 00,125,056 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversftdisk.sys
[2004/08/04 02:07:44 | 00,046,464 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversgagp30kx.sys
[2004/08/04 02:10:36 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivershidbth.sys
[2004/08/04 02:08:20 | 00,036,224 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivershidclass.sys
[2004/08/04 02:08:18 | 00,015,104 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivershidir.sys
[2004/08/04 02:08:16 | 00,024,960 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivershidparse.sys
[2002/08/29 08:00:00 | 00,009,600 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivershidusb.sys
[2005/10/22 08:22:48 | 00,021,568 | ---- | M] (HP) -- C:WINDOWSsystem32driversHPZius12.sys
[2004/08/04 01:41:46 | 00,220,032 | ---- | M] (Conexant Systems, Inc.) -- C:WINDOWSsystem32drivershsfbs2s2.sys
[2004/08/04 01:41:48 | 00,685,056 | ---- | M] (Conexant Systems, Inc.) -- C:WINDOWSsystem32drivershsfcxts2.sys
[2004/08/04 01:41:54 | 01,041,536 | ---- | M] (Conexant Systems, Inc.) -- C:WINDOWSsystem32drivershsfdpsp2.sys
[2004/08/04 02:00:14 | 00,263,040 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32drivershttp.sys
[2004/08/04 02:14:36 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversi8042prt.sys
[2004/08/20 17:26:00 | 00,737,874 | ---- | M] (Intel Corporation) -- C:WINDOWSsystem32driversialmnt5.sys
[2004/08/04 02:00:16 | 00,041,856 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversimapi.sys
[2004/08/04 01:59:42 | 00,005,504 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversintelide.sys
[2004/08/04 01:59:20 | 00,036,096 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversintelppm.sys
[2004/08/04 02:00:06 | 00,029,056 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversip6fw.sys
[2002/08/29 08:00:00 | 00,032,896 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversipfltdrv.sys
[2004/08/04 02:04:45 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversipinip.sys
[2004/08/04 02:04:50 | 00,134,912 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversipnat.sys
[2004/08/04 02:14:28 | 00,074,752 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversipsec.sys
[2004/08/04 02:00:46 | 00,011,264 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversirenum.sys
[2002/08/29 08:00:00 | 00,035,840 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversisapnp.sys
[2004/08/04 01:58:32 | 00,024,576 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverskbdclass.sys
[2004/08/04 01:58:34 | 00,014,848 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverskbdhid.sys
[2004/08/04 02:07:48 | 00,171,776 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverskmixer.sys
[2004/08/04 02:15:22 | 00,140,928 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversks.sys
[2004/08/04 01:59:47 | 00,092,032 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversksecdd.sys
[2009/09/10 14:53:50 | 00,019,160 | ---- | M] (Malwarebytes Corporation) -- C:WINDOWSsystem32driversmbam.sys
[2009/09/10 14:54:06 | 00,038,224 | ---- | M] (Malwarebytes Corporation) -- C:WINDOWSsystem32driversmbamswissarmy.sys
[2002/08/29 08:00:00 | 00,007,680 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmcd.sys
[2008/12/25 21:37:03 | 00,015,781 | ---- | M] (Meetinghouse Data Communications) -- C:WINDOWSsystem32driversmdc8021x.sys
[2004/08/04 01:41:55 | 00,011,868 | ---- | M] (Conexant) -- C:WINDOWSsystem32driversmdmxsdk.sys
[2004/08/04 02:07:44 | 00,063,744 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmf.sys
[2002/08/29 08:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmnmdd.sys
[2004/08/04 02:08:06 | 00,030,080 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmodem.sys
[2004/08/04 01:58:32 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmouclass.sys
[2001/08/18 00:48:00 | 00,012,160 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmouhid.sys
[2004/08/04 01:58:30 | 00,042,240 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmountmgr.sys
[2004/08/04 02:10:12 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmpe.sys
[2004/08/04 02:00:56 | 00,181,248 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmrxdav.sys
[2008/10/24 07:10:42 | 00,453,632 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmrxsmb.sys
[2004/08/04 02:09:58 | 00,051,328 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmsdv.sys
[2004/08/04 02:00:41 | 00,019,072 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmsfs.sys
[2004/08/04 02:04:12 | 00,035,072 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmsgpc.sys
[2004/08/04 01:58:42 | 00,007,552 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmskssrv.sys
[2004/08/04 01:58:38 | 00,005,376 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmspclock.sys
[2004/08/04 01:58:40 | 00,004,992 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmspqm.sys
[2004/08/04 02:07:48 | 00,015,488 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmssmbios.sys
[2004/08/04 01:58:38 | 00,005,504 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmstee.sys
[2004/08/04 01:41:38 | 00,126,686 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversmtlmnt5.sys
[2004/08/04 01:41:37 | 01,309,184 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversmtlstrm.sys
[2004/08/04 01:29:36 | 00,452,736 | ---- | M] (Matrox Graphics Inc.) -- C:WINDOWSsystem32driversmtxparhm.sys
[2004/08/04 02:15:20 | 00,107,904 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmup.sys
[2004/08/04 02:04:52 | 00,012,672 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversmutohpen.sys
[2004/08/04 02:10:28 | 00,085,376 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnabtsfec.sys
[2004/08/04 02:14:28 | 00,182,912 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversndis.sys
[2004/08/04 02:10:12 | 00,010,880 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversndisip.sys
[2002/08/29 08:00:00 | 00,009,600 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversndistapi.sys
[2004/08/04 02:03:12 | 00,012,928 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversndisuio.sys
[2004/08/04 02:14:31 | 00,091,776 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversndiswan.sys
[2002/08/29 08:00:00 | 00,038,016 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversndproxy.sys
[2004/08/04 02:03:21 | 00,034,560 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnetbios.sys
[2004/08/04 02:14:37 | 00,162,816 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnetbt.sys
[2004/08/04 01:58:30 | 00,061,824 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnic1394.sys
[2002/08/29 15:00:00 | 00,012,032 | ---- | M] (S3/Diamond Multimedia Systems) -- C:WINDOWSsystem32driversnikedrv.sys
[2004/08/04 01:59:50 | 00,040,320 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnmnt.sys
[2007/11/06 16:22:06 | 00,034,064 | ---- | M] (CACE Technologies) -- C:WINDOWSsystem32driversnpf.sys
[2004/08/04 02:00:43 | 00,030,848 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnpfs.sys
[2004/08/04 02:15:09 | 00,574,592 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversntfs.sys
[2004/08/04 01:41:39 | 00,180,360 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversntmtlfax.sys
[2002/08/29 08:00:00 | 00,002,944 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnull.sys
[2007/04/19 13:26:00 | 03,988,384 | ---- | M] (NVIDIA Corporation) -- C:WINDOWSsystem32driversnv4_mini.sys
[2002/08/29 08:00:00 | 00,012,416 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnwlnkflt.sys
[2002/08/29 08:00:00 | 00,032,512 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnwlnkfwd.sys
[2004/08/04 02:03:35 | 00,088,448 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnwlnkipx.sys
[2002/08/29 08:00:00 | 00,063,232 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnwlnknb.sys
[2002/08/29 08:00:00 | 00,055,936 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversnwlnkspx.sys
[2004/08/04 02:10:08 | 00,061,056 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversohci1394.sys
[2002/08/29 08:00:00 | 00,003,456 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversoprghdlr.sys
[2004/08/04 01:59:20 | 00,042,496 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversp3.sys
[2004/08/04 01:59:06 | 00,080,128 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversparport.sys
[2002/08/29 08:00:00 | 00,018,688 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverspartmgr.sys
[2002/08/29 08:00:00 | 00,006,784 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversparvdm.sys
[2004/08/04 02:07:46 | 00,068,224 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverspci.sys
[2002/08/29 08:00:00 | 00,003,328 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverspciide.sys
[2004/08/04 01:59:42 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverspciidex.sys
[2004/08/04 02:07:46 | 00,119,936 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverspcmcia.sys
[2003/09/19 02:47:00 | 00,010,368 | ---- | M] (Padus, Inc.) -- C:WINDOWSsystem32driverspfc.sys
[2004/08/04 02:15:50 | 00,145,792 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversportcls.sys
[2004/08/04 01:59:18 | 00,035,328 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversprocessr.sys
[2001/06/04 17:00:00 | 00,014,112 | ---- | M] (Hewlett-Packard Company) -- C:WINDOWSsystem32driversPS2.sys
[2004/08/04 02:04:19 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverspsched.sys
[2002/08/29 08:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:WINDOWSsystem32driversptilink.sys
[2007/03/07 19:51:00 | 00,043,528 | ---- | M] (Sonic Solutions) -- C:WINDOWSsystem32driverspxhelp20.sys
[2002/10/04 21:04:10 | 00,046,976 | ---- | M] (Realtek Semiconductor Corporation ) -- C:WINDOWSsystem32driversR8139n51.sys
[2002/08/29 08:00:00 | 00,008,832 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrasacd.sys
[2004/08/04 02:14:22 | 00,051,328 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrasl2tp.sys
[2004/08/04 02:05:07 | 00,041,472 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversraspppoe.sys
[2004/08/04 02:14:26 | 00,048,384 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversraspptp.sys
[2002/08/29 08:00:00 | 00,016,512 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversraspti.sys
[2002/08/29 08:00:00 | 00,034,432 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrawwan.sys
[2006/05/05 05:47:57 | 00,174,592 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrdbss.sys
[2002/08/29 08:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrdpcdd.sys
[2004/08/04 02:01:16 | 00,196,864 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrdpdr.sys
[2005/06/10 00:09:46 | 00,139,528 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrdpwd.sys
[2004/08/04 01:41:39 | 00,013,776 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversrecagent.sys
[2004/08/04 01:59:38 | 00,057,472 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversredbook.sys
[2004/08/04 02:10:40 | 00,059,648 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrfcomm.sys
[2002/08/29 15:00:00 | 00,012,032 | ---- | M] (S3/Diamond Multimedia Systems) -- C:WINDOWSsystem32driversrio8drv.sys
[2002/08/29 15:00:00 | 00,012,032 | ---- | M] (S3/Diamond Multimedia Systems) -- C:WINDOWSsystem32driversriodrv.sys
[2008/05/08 08:28:49 | 00,202,752 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrmcast.sys
[2004/08/04 02:04:31 | 00,030,080 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrndismp.sys
[2004/08/04 02:04:32 | 00,030,080 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrndismpx.sys
[2002/08/29 08:00:00 | 00,005,888 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversrootmdm.sys
[2005/04/13 17:31:30 | 00,239,488 | ---- | M] (Ralink Technology Inc.) -- C:WINDOWSsystem32driversrt2500usb.sys
[2004/08/04 01:31:32 | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) -- C:WINDOWSsystem32driversrtl8139.sys
[2004/08/04 01:29:51 | 00,166,912 | ---- | M] (S3 Graphics, Inc.) -- C:WINDOWSsystem32driverss3gnbm.sys
[2004/08/04 01:59:42 | 00,096,256 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversscsiport.sys
[2004/08/04 02:07:48 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssdbus.sys
[2002/08/29 08:00:00 | 00,027,440 | ---- | M] () -- C:WINDOWSsystem32driverssecdrv.sys
[2004/08/04 01:59:08 | 00,015,488 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversserenum.sys
[2004/08/04 02:15:52 | 00,064,896 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversserial.sys
[2004/08/04 01:59:54 | 00,011,136 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssffdisk.sys
[2004/08/04 01:59:54 | 00,010,240 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssffp_sd.sys
[2004/08/04 01:59:54 | 00,011,392 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssfloppy.sys
[2004/08/04 02:07:42 | 00,041,088 | ---- | M] (Silicon Integrated Systems Corporation) -- C:WINDOWSsystem32driverssisagp.sys
[2003/07/18 20:58:20 | 00,036,992 | ---- | M] (Silicon Integrated Systems Corporation) -- C:WINDOWSsystem32driversSISAGPX.SYS
[2004/01/02 23:20:40 | 00,432,000 | ---- | M] (Silicon Integrated Systems Corporation) -- C:WINDOWSsystem32driverssisgrp.sys
[2004/08/04 02:10:16 | 00,011,136 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversslip.sys
[2004/08/04 01:41:40 | 00,129,535 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversslnt7554.sys
[2004/08/04 01:41:42 | 00,404,990 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversslntamr.sys
[2004/08/04 01:41:44 | 00,095,424 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversslnthal.sys
[2004/08/04 01:41:45 | 00,013,240 | ---- | M] (Smart Link) -- C:WINDOWSsystem32driversslwdmsup.sys
[2004/08/04 02:07:36 | 00,006,016 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssmbali.sys
[2002/08/29 08:00:00 | 00,014,592 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssmclib.sys
[2004/08/04 02:09:56 | 00,025,472 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssonydcam.sys
[2004/08/04 02:07:48 | 00,006,400 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssplitter.sys
[2004/08/04 02:06:25 | 00,073,472 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssr.sys
[2008/08/28 06:04:17 | 00,333,056 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssrv.sys
[2004/01/03 00:05:48 | 00,011,520 | ---- | M] (Silicon Integrated Systems Corporation) -- C:WINDOWSsystem32driverssrvkp.sys
[2004/08/04 02:08:02 | 00,048,640 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversstream.sys
[2004/08/04 02:10:12 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversstreamip.sys
[2004/08/04 01:58:42 | 00,004,352 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversswenum.sys
[2001/08/17 18:00:52 | 00,054,272 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversswmidi.sys
[2007/08/27 17:13:16 | 00,012,680 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driverssymdns.sys
[2009/07/16 05:48:38 | 00,110,952 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driversSYMEVENT.SYS
[2007/08/27 17:13:20 | 00,097,672 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driverssymfw.sys
[2007/08/27 17:13:28 | 00,031,624 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driverssymids.sys
[2007/08/27 17:13:24 | 00,028,040 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driverssymndis.sys
[2007/08/27 17:13:32 | 00,023,944 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driverssymredrv.sys
[2007/08/27 17:13:36 | 00,189,320 | ---- | M] (Symantec Corporation) -- C:WINDOWSsystem32driverssymtdi.sys
[2004/08/04 02:15:56 | 00,060,800 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverssysaudio.sys
[2004/08/04 01:59:59 | 00,014,976 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstape.sys
[2006/04/20 07:51:50 | 00,359,808 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstcpip.sys
[2006/08/16 05:37:30 | 00,225,664 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstcpip6.sys
[2004/08/04 02:07:48 | 00,018,560 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstdi.sys
[2004/08/04 04:01:07 | 00,012,040 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstdpipe.sys
[2004/08/04 04:01:07 | 00,021,896 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstdtcp.sys
[2004/08/04 04:01:08 | 00,040,840 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstermdd.sys
[2002/08/29 15:00:00 | 00,051,712 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstosdvd.sys
[2002/08/29 15:00:00 | 00,021,376 | ---- | M] (Toshiba Corporation) -- C:WINDOWSsystem32driverstsbvcap.sys
[2004/08/04 02:03:18 | 00,012,416 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverstunmp.sys
[2004/08/04 02:07:44 | 00,044,672 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversuagp35.sys
[2004/08/04 02:00:31 | 00,066,176 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversudfs.sys
[2004/08/04 01:58:32 | 00,209,408 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversupdate.sys
[2004/08/04 02:04:32 | 00,012,672 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusb8023.sys
[2004/08/04 02:04:34 | 00,012,672 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusb8023x.sys
[2002/08/29 15:00:00 | 00,023,808 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbcamd.sys
[2002/08/29 15:00:00 | 00,023,936 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbcamd2.sys
[2004/08/04 02:08:46 | 00,031,616 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbccgp.sys
[2002/08/29 08:00:00 | 00,004,736 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbd.sys
[2004/08/04 02:08:38 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbehci.sys
[2004/08/04 02:08:42 | 00,057,600 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbhub.sys
[2004/08/04 02:08:58 | 00,016,000 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbintel.sys
[2004/08/04 02:08:36 | 00,017,024 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbohci.sys
[2004/08/04 02:08:42 | 00,142,976 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbport.sys
[2004/08/04 02:01:24 | 00,025,856 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbprint.sys
[2004/08/04 01:58:46 | 00,015,104 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbscan.sys
[2004/08/04 02:08:46 | 00,026,496 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbstor.sys
[2004/08/04 02:08:38 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbuhci.sys
[2004/08/04 02:10:10 | 00,078,464 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversusbvideo.sys
[2002/08/29 15:00:00 | 00,058,112 | ---- | M] (RAVISENT Technologies Inc.) -- C:WINDOWSsystem32driversvdmindvd.sys
[2004/08/04 02:07:06 | 00,020,992 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversvga.sys
[2004/08/04 02:07:42 | 00,042,240 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversviaagp.sys
[2003/07/02 15:42:00 | 00,027,904 | ---- | M] (VIA Technologies, Inc.) -- C:WINDOWSsystem32driversVIAAGP1.SYS
[2004/08/04 01:59:42 | 00,005,376 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversviaide.sys
[2004/08/04 02:07:05 | 00,079,744 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversvideoprt.sys
[2004/08/04 02:00:16 | 00,052,352 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversvolsnap.sys
[2004/02/04 21:28:00 | 00,134,144 | ---- | M] (Copyright © VIA/S3 Graphics, Inc.) -- C:WINDOWSsystem32driversvtmini.sys
[2004/08/04 02:04:52 | 00,013,568 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverswacompen.sys
[2004/08/04 01:29:38 | 00,011,807 | ---- | M] (Intel® Corporation) -- C:WINDOWSsystem32driverswadv07nt.sys
[2004/08/04 01:29:39 | 00,011,295 | ---- | M] (Intel® Corporation) -- C:WINDOWSsystem32driverswadv08nt.sys
[2004/08/04 01:29:40 | 00,011,871 | ---- | M] (Intel® Corporation) -- C:WINDOWSsystem32driverswadv09nt.sys
[2004/08/04 01:29:40 | 00,011,935 | ---- | M] (Intel® Corporation) -- C:WINDOWSsystem32driverswadv11nt.sys
[2004/08/04 02:04:57 | 00,034,560 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverswanarp.sys
[2004/08/04 01:29:44 | 00,022,271 | ---- | M] (Intel® Corporation) -- C:WINDOWSsystem32driverswatv06nt.sys
[2004/08/04 01:29:45 | 00,025,471 | ---- | M] (Intel® Corporation) -- C:WINDOWSsystem32driverswatv10nt.sys
[2004/08/04 02:15:04 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverswdmaud.sys
[2002/08/29 08:00:00 | 00,004,352 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverswmilib.sys
[2006/10/18 21:00:00 | 00,038,528 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverswpdusb.sys
[2002/08/29 08:00:00 | 00,012,032 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversws2ifsl.sys
[2004/08/04 02:10:22 | 00,019,328 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driverswstcodec.sys
[2006/09/28 19:55:50 | 00,077,568 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversWudfPf.sys
[2006/09/28 20:00:34 | 00,082,944 | ---- | M] (Microsoft Corporation) -- C:WINDOWSsystem32driversWudfRd.sys
[2004/04/23 23:43:00 | 00,374,752 | ---- | M] (Cisco-Linksys, LLC.) -- C:WINDOWSsystem32driversWUSBGXP.sys
< End of report >


PLEASE HELP

Malwarebytes full scan from safe mod log

Malwarebytes' Anti-Malware 1.41
Database version: 3001
Windows 5.1.2600 Service Pack 2 (Safe Mode)

10/21/2009 9:11:51 AM
mbam-log-2009-10-21 (09-11-51).txt

Scan type: Full Scan (C:|D:|)
Objects scanned: 241399
Time elapsed: 1 hour(s), 28 minute(s), 6 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

Merged posts. ~ OB

Edited by Orange Blossom, 23 October 2009 - 06:03 PM.


BC AdBot (Login to Remove)

 


#2 TK05

TK05
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:08:19 PM

Posted 30 October 2009 - 01:06 AM

resolved plz delete this post

#3 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:01:19 AM

Posted 30 October 2009 - 09:23 PM

Thanks for letting us know :(

Since this issue appears to be resolved ... this topic has been closed. Glad we could help. :(

If you're the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Posted Image
m0le is a proud member of UNITE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users