Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malware infection keeps opening browser windows


  • This topic is locked This topic is locked
12 replies to this topic

#1 arekayone

arekayone

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 23 November 2009 - 09:47 AM

Whenever I am in Firefox, or IE, new browser windows open. There are times that I check after about 15 minutes online and 20 new windows open with various sites, such as "insticlick", "People Search", "Gamevance" etc. I have run Malwarebytes Anti-malware to no avail. I have blocked popups so I know that they are not the problem.

I followed the instructions for posting logs to this forum and have had one major problem. I have tried running DDS.SCR and each time I do, it opens a Notepad window with a bunch of characters on it and nothing coherent. The .scr extension is associated with AutoCAD script files on my machine, which directs the file to notepad. I understand that the DDS.SCR needs to run through the XP DOS window, but I cannot figure out how to associate it. Running the cmd command opens the DOS window, but I cannot get the DDS.SCR to run. It is driving me mad. I posted on the Am I Infected? forum to get help with the DDS issue, but my post is getting buried with no response.

I am desperate as this is my work computer and the down time is killing me.

I was, however, able to run Root Repeal and have attached the log as follows:

ROOTREPEAL © AD, 2007-2009
==================================================
Scan Start Time: 2009/11/22 13:23
Program Version: Version 1.3.5.0
Windows Version: Windows XP SP3
==================================================

Drivers
-------------------
Name: dump_iastor.sys
Image Path: C:\WINDOWS\System32\Drivers\dump_iastor.sys
Address: 0xA997C000 Size: 851968 File Visible: No Signed: -
Status: -

Name: rootrepeal.sys
Image Path: C:\WINDOWS\system32\drivers\rootrepeal.sys
Address: 0xA2F14000 Size: 49152 File Visible: No Signed: -
Status: -

Hidden/Locked Files
-------------------
Path: c:\windows\temp\mcafee_5ive2e5odvgkcec
Status: Allocation size mismatch (API: 4096, Raw: 0)

Path: C:\WINDOWS\SoftwareDistribution\Download\BIT2C.tmp
Status: Locked to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\BIT31.tmp
Status: Locked to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\1c8d82f6d46425decfccb3e7d8d0c30a
Status: Invisible to the Windows API!

Path: C:\WINDOWS\SoftwareDistribution\Download\72eb6a06ed5f96cfe5470fb5a9801995
Status: Visible to the Windows API, but not on disk.

Path: c:\documents and settings\bob kapolnek\local settings\temp\~romfn_000005e0
Status: Allocation size mismatch (API: 4096, Raw: 0)

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.ISOImage.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.ISOImage.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\DellDriverDownloadManager.exe.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\DellDriverDownloadManager.exe.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\DellDriverDownloadManager.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\DellDriverDownloadManager.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Core.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Core.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Dell.eSupport.DownloadManager.Localization.resources.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Interop.IWshRuntimeLibrary.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Interop.IWshRuntimeLibrary.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\stdole.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\stdole.manifest
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Xceed.Compression.cdf-ms
Status: Locked to the Windows API!

Path: C:\Documents and Settings\Bob Kapolnek\Local Settings\Apps\2.0\3XAX5L2L.6D0\9D2BNAQ7.4EJ\manifests\Xceed.Compression.manifest
Status: Locked to the Windows API!

==EOF==

BC AdBot (Login to Remove)

 


#2 etavares

etavares

    Bleepin' Remover


  • Malware Response Team
  • 15,514 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:13 AM

Posted 29 November 2009 - 08:19 AM

Hello and welcome to Bleeping Computer

We apologize for the delay in responding to your request for help. Here at Bleeping Computer we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

Upon completing the steps below another staff member will review and take the steps necessary with you to get your machine back in working order clean and free of malware.

If you have already posted a log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.


Thanks and again sorry for the delay.

We need to see some information about what is happening in your machine. Please perform the following scan:
We need to create an OTL Report
  • Please download OTL from one of the following mirrors:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTListIt.txt <-- Will be opened
    • Extra.txt <-- Will be minimized
Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.


Also, please subscribe to this topic, so you are notified when someone replies. Please continue to check manually on occasion, as every now and then the email may be caught by your spam filter.
To enable topic notifications you should do the following:
  • Click on the My Controls link at the top of the page to enter your control panel.
  • Scroll down to the Options category in the left hand side menu bar and click on the Email Settings link.
  • Put a checkmark in the checkbox labeled Enable 'Email Notification' by default?.
  • Set the If ticked, choose default type: menu option to Immediate Email Notification to have an email sent immediately when someone replied.
Information on A/V control HERE


If I don't respond within 2 days, please feel free to PM me.
Please don't ask for help via PM. The forums are there for a reason. Please post in the forums so others may benefit as well.

Posted Image
Unified Network of Instructors and Trusted Eliminators
 


#3 arekayone

arekayone
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 29 November 2009 - 03:34 PM

I tried posting the log files, but I got a response saying my post was too long. The OTL file is very long.

What should I do?

Thanks

Bob

#4 etavares

etavares

    Bleepin' Remover


  • Malware Response Team
  • 15,514 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:13 AM

Posted 29 November 2009 - 03:47 PM

Hi arekayone,

please break it up into a few smaller posts. just please make sure you include it all. thanks!


If I don't respond within 2 days, please feel free to PM me.
Please don't ask for help via PM. The forums are there for a reason. Please post in the forums so others may benefit as well.

Posted Image
Unified Network of Instructors and Trusted Eliminators
 


#5 arekayone

arekayone
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 29 November 2009 - 04:53 PM

Part one of ??

OTL logfile created on: 11/29/2009 1:53:32 PM - Run 6
OTL by OldTimer - Version 3.1.11.2 Folder = C:\Documents and Settings\Bob Kapolnek\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.95 Gb Total Space | 123.08 Gb Free Space | 82.63% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KAP-618B041117D
Current User Name: Bob Kapolnek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/11/29 13:53:13 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe
PRC - [2009/11/11 08:08:06 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009/11/11 08:08:06 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/11/11 07:38:32 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/11/09 18:14:54 | 00,323,584 | ---- | M] () -- C:\Program Files\Internet Today\1.1.0.1090\InternetToday.exe
PRC - [2009/10/22 23:57:46 | 00,472,384 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.exe
PRC - [2009/10/22 23:55:38 | 00,282,824 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe
PRC - [2009/09/25 11:15:06 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\McShield.exe
PRC - [2009/09/25 11:13:32 | 00,014,144 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\EngineServer.exe
PRC - [2009/09/18 20:09:14 | 01,980,560 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
PRC - [2009/09/18 20:09:14 | 00,670,864 | R--- | M] (Carbonite, Inc.) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
PRC - [2009/05/08 16:26:32 | 00,893,112 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2008/12/21 12:48:50 | 00,200,704 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2008/12/08 15:50:04 | 00,054,576 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe
PRC - [2008/09/16 20:03:50 | 00,050,472 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2008/08/28 15:20:22 | 00,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2008/08/01 22:06:48 | 00,069,632 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe
PRC - [2008/08/01 22:04:48 | 01,486,848 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe
PRC - [2008/06/28 09:45:00 | 00,159,812 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2008/06/03 15:28:50 | 00,386,328 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
PRC - [2008/06/02 11:42:54 | 02,220,032 | ---- | M] (Dell Inc.) -- C:\WINDOWS\system32\WLTRAY.EXE
PRC - [2008/06/02 11:42:54 | 00,024,064 | ---- | M] () -- C:\WINDOWS\system32\WLTRYSVC.EXE
PRC - [2008/06/02 11:42:50 | 01,961,984 | ---- | M] (Dell Inc.) -- C:\WINDOWS\system32\BCMWLTRY.EXE
PRC - [2008/05/30 03:29:28 | 00,593,920 | ---- | M] (Dell, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe
PRC - [2008/05/26 22:19:14 | 00,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
PRC - [2008/05/22 17:32:08 | 00,221,273 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\DellXPM09B_6017v022\WDM\stacsv.exe
PRC - [2008/05/22 17:31:16 | 00,442,467 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008/05/20 16:21:30 | 00,466,944 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AESTFltr.exe
PRC - [2008/05/15 04:27:44 | 00,180,313 | ---- | M] () -- C:\Program Files\SHARP\Printer Status Monitor\Smon.exe
PRC - [2008/04/28 15:49:36 | 00,253,952 | ---- | M] (PIXELA CORPORATION) -- C:\Program Files\PIXELA\ImageMixer 3 SE Ver.3\CameraMonitor.exe
PRC - [2008/04/14 06:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007/11/26 14:47:40 | 00,598,856 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Washer\WasherSvc.exe
PRC - [2007/11/26 14:47:30 | 01,206,600 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Washer\wwDisp.exe
PRC - [2007/10/25 17:23:36 | 00,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2007/10/09 16:21:06 | 00,169,328 | ---- | M] (Maxtor Corporation) -- C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe
PRC - [2007/10/09 16:21:02 | 00,124,280 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
PRC - [2007/09/05 11:25:56 | 00,455,968 | ---- | M] () -- C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe
PRC - [2007/08/24 15:52:46 | 00,166,384 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
PRC - [2007/08/24 15:52:42 | 00,240,112 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe
PRC - [2007/08/24 15:52:38 | 01,083,888 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
PRC - [2007/08/24 15:52:02 | 00,018,928 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSHelpRunner10.exe
PRC - [2007/08/24 07:00:48 | 00,033,648 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2007/08/14 03:44:38 | 00,113,136 | ---- | M] () -- C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe
PRC - [2007/05/07 11:04:28 | 00,106,496 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\ScheduledLaunch\HP LaserJet P2050 Series\bin\hppschlnch.exe
PRC - [2007/01/31 14:55:42 | 00,096,370 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
PRC - [2006/09/11 04:40:32 | 00,218,032 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe


========== Modules (SafeList) ==========

MOD - [2009/11/29 13:53:13 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - File not found -- -- (SessionLauncher)
SRV - [2009/11/11 08:08:06 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/11/10 10:37:05 | 00,085,096 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2009/10/22 23:55:38 | 00,282,824 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe -- (myAgtSvc)
SRV - [2009/09/25 11:15:06 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\McShield.exe -- (McShield)
SRV - [2009/09/25 11:13:32 | 00,014,144 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\EngineServer.exe -- (EngineServer)
SRV - [2009/09/18 20:09:14 | 01,980,560 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe -- (CarboniteService)
SRV - [2009/05/08 16:26:32 | 00,893,112 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - [2008/08/01 22:06:48 | 00,069,632 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe -- (SMManager)
SRV - [2008/07/18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12)
SRV - [2008/07/18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12)
SRV - [2008/06/28 09:45:00 | 00,159,812 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2008/06/03 15:28:50 | 00,386,328 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe -- (buttonsvc32)
SRV - [2008/06/02 11:42:54 | 00,024,064 | ---- | M] () -- C:\WINDOWS\System32\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2008/05/22 17:32:08 | 00,221,273 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\DellXPM09B_6017v022\WDM\stacsv.exe -- (STacSV)
SRV - [2007/11/26 14:47:40 | 00,598,856 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Washer\WasherSvc.exe -- (wwEngineSvc)
SRV - [2007/10/09 16:21:02 | 00,124,280 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe -- (Basics Service)
SRV - [2007/09/05 11:25:56 | 00,455,968 | ---- | M] () -- C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe -- (psqlWGE)
SRV - [2007/08/24 15:53:16 | 00,362,992 | ---- | M] (Sonic Solutions) -- C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10)
SRV - [2007/08/24 15:53:14 | 00,072,176 | ---- | M] (Sonic Solutions) -- C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10)
SRV - [2007/08/24 15:52:48 | 00,309,744 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe -- (RoxLiveShare10)
SRV - [2007/08/24 15:52:46 | 00,166,384 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe -- (RoxWatch10)
SRV - [2007/08/24 15:52:38 | 01,083,888 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10)
SRV - [2007/08/24 06:59:20 | 00,068,464 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2007/08/24 03:19:12 | 00,443,776 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2007/07/11 09:33:28 | 00,069,632 | R--- | M] (MicroVision Development, Inc.) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2007/01/31 14:55:42 | 00,096,370 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2004/10/22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2009/08/06 08:50:06 | 00,214,664 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2009/08/06 08:50:06 | 00,079,816 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (MfeAVFK)
DRV - [2009/08/06 08:50:06 | 00,055,304 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfetdik.sys -- (mfetdik)
DRV - [2009/08/06 08:50:06 | 00,035,272 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (MfeBOPK)
DRV - [2009/08/06 08:50:06 | 00,034,248 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (MfeRKDK)
DRV - [2009/04/09 14:23:02 | 00,120,136 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\Mpfp.sys -- (MPFP)
DRV - [2008/11/05 23:20:24 | 00,048,128 | ---- | M] (REDC) -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2008/07/24 18:42:48 | 00,170,032 | ---- | M] (Alps Electric Co., Ltd.) -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008/06/28 09:45:00 | 06,591,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008/06/02 11:42:52 | 01,287,552 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2008/05/22 17:32:50 | 01,381,914 | ---- | M] (IDT, Inc.) -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2008/05/20 16:21:26 | 00,108,160 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud)
DRV - [2008/05/07 16:40:02 | 00,317,976 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\iastor.sys -- (iastor)
DRV - [2008/04/14 06:00:00 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/04/14 06:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008/04/14 06:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2008/04/04 13:40:50 | 00,244,368 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e1y5132.sys -- (e1yexpress) Intel®
DRV - [2007/08/18 03:09:04 | 00,057,328 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\RxFilter.sys -- (RxFilter)
DRV - [2007/07/26 03:00:00 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2007/07/23 15:05:20 | 00,009,104 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLADResM.SYS -- (DLADResM)
DRV - [2007/07/23 15:04:58 | 00,037,360 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2007/07/23 15:04:56 | 00,098,448 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2007/07/23 15:04:56 | 00,093,552 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2007/07/23 15:04:54 | 00,027,216 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2007/07/23 15:04:52 | 00,032,848 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2007/07/23 15:04:52 | 00,016,304 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2007/07/23 15:04:50 | 00,108,752 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2007/07/23 14:55:44 | 00,099,808 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2007/07/23 14:49:44 | 00,030,064 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2007/07/23 14:49:44 | 00,014,576 | ---- | M] (Roxio) -- C:\WINDOWS\System32\Drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2007/07/23 14:43:42 | 00,052,000 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2005/05/13 17:27:56 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbccid.sys -- (USBCCID)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-484763869-1767777339-1177238915-1003\S-1-5-21-484763869-1767777339-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: "http://www.theprizeday.com/today.php|http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {8141440E-08F0-4339-9959-5C31C6A69F23}:4.1.0.5050
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: {E889F097-B0BE-471B-89AD-B86B6F04B506}:3.1.0.1520
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7
FF - prefs.js..extensions.enabledItems: {E63605FC-D583-4C81-867F-9457BDB3EA1B}:3.1.0.1800

FF - HKLM\software\mozilla\Firefox\extensions\\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files\Web Search Operator\3.1.0.1800\FF [2009/11/15 19:21:27 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF [2009/11/15 19:21:34 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\extensions\\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF [2009/11/15 19:21:42 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/11 07:38:36 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/29 12:13:20 | 00,000,000 | ---D | M]

[2009/11/10 09:54:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Extensions
[2009/11/10 13:13:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions
[2009/11/10 13:13:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\{48405d3d-2674-4cd8-b1ef-9a719443bd3f}
[2009/11/10 13:13:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009/11/10 13:14:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2009/11/10 13:13:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\autopager@mozilla.org
[2009/11/10 13:13:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\staged-xpis
[2009/11/22 09:14:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\ir7k32ko.default\extensions
[2009/11/18 18:22:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\ir7k32ko.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/11/27 19:17:22 | 00,001,765 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\ir7k32ko.default\searchplugins\rapidshare--megaupload-file-search.xml
[2009/11/22 09:14:32 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOn.dll ()
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003\..\Toolbar\WebBrowser: (no name) - {D45817B8-3EAD-4D1D-8FCA-EC63A8E35DE2} - No CLSID value found.
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [basicsmssmenu] C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe (Maxtor Corporation)
O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.EXE (Dell Inc.)
O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [DellConnectionManager] C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe (Smith Micro Software, Inc.)
O4 - HKLM..\Run: [DellControlPoint] C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe (Dell, Inc.)
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe ()
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuschd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPPQVideo] C:\Program Files\HP\ScheduledLaunch\HP LaserJet P2050 Series\bin\hppschlnch.exe -r SOFTWARE\Hewlett-Packard\ScheduledLaunch\LJ_P2050_Series -f PQOptimizerVideo.xml File not found
O4 - HKLM..\Run: [Internet Today Task] C:\Program Files\Internet Today\1.1.0.1090\InternetToday.exe ()
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [McAfee Managed Services Tray] C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyagtTry.exe File not found
O4 - HKLM..\Run: [MVS Splash] C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PeachtreePrefetcher.exe] C:\Program Files\Sage Software\Peachtree\PeachtreePrefetcher.exe (Sage Software, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe (Sonic Solutions)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [ToolBoxFX] C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe (HP)
O4 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003..\Run: [ISUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003..\Run: [Window Washer] C:\Program Files\Webroot\Washer\wwDisp.exe (Webroot Software, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.3.lnk = C:\Program Files\PIXELA\ImageMixer 3 SE Ver.3\CameraMonitor.exe (PIXELA CORPORATION)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Printer Status Monitor.lnk = C:\Program Files\SHARP\Printer Status Monitor\Smon.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: //about.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Exclude.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //FWEvent.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //LanguageSelection.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Message.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryCmd.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryNag.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyNotification.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //NOCLessUpdate.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //quarantine.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //ScanNow.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //strings.vbs/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Template.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Update.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //VirFound.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKLM\..Trusted Domains: mcafee.com ([*] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafee.com ([*] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] https in Trusted sites)
O15 - HKLM\..Trusted Domains: 3 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 172.16.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\myrm {4D034FC3-013F-4b95-B544-44D49ABE3E76} - C:\Program Files\McAfee\Managed VirusScan\Agent\MyRmProt5.0.0.648.dll (McAfee, Inc.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/11/10 08:30:49 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %* File not found
O35 - exefile [open] -- "%1" %* File not found

========== Files/Folders - Created Within 30 Days ==========

[2009/11/29 13:53:09 | 00,535,552 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe
[2009/11/27 19:34:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2009/11/26 20:56:56 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Bob Kapolnek\PrivacIE
[2009/11/26 18:50:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\WinRAR
[2009/11/26 18:49:51 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009/11/23 08:31:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Windows Search
[2009/11/22 13:22:30 | 00,472,064 | ---- | C] ( ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\RootRepeal.exe
[2009/11/22 12:55:24 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2009/11/22 11:15:12 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/11/22 11:04:25 | 00,000,000 | ---D | C] -- C:\VundoFix Backups
[2009/11/22 08:15:33 | 00,000,000 | ---D | C] -- C:\a73225c8d727ca5b1132502f1f90ca3b
[2009/11/22 08:09:06 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Bob Kapolnek\IETldCache
[2009/11/22 08:07:32 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2009/11/22 08:07:20 | 11,069,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2009/11/22 08:07:20 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2009/11/22 08:07:20 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2009/11/22 08:07:20 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2009/11/22 08:07:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2009/11/22 08:06:41 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/11/22 03:01:53 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2009/11/21 03:24:24 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2009/11/21 03:11:00 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2009/11/21 03:06:09 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2009/11/21 03:06:08 | 02,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2009/11/21 03:06:08 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2009/11/21 03:00:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2009/11/21 03:00:18 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2009/11/20 16:53:26 | 00,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2009/11/20 16:53:26 | 00,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2009/11/20 13:38:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Move Networks
[2009/11/20 13:24:51 | 00,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2009/11/20 09:40:45 | 00,000,000 | ---D | C] -- C:\temp
[2009/11/19 10:13:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\HpUpdate
[2009/11/19 10:13:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard
[2009/11/17 10:59:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Misc
[2009/11/17 07:36:02 | 00,093,360 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2009/11/17 07:21:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2009/11/16 13:24:38 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Webroot Shared
[2009/11/16 13:24:38 | 00,000,000 | ---D | C] -- C:\Program Files\Webroot
[2009/11/16 13:24:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Webroot
[2009/11/16 13:24:32 | 00,194,888 | ---- | C] (Webroot Software, Inc.) -- C:\WINDOWS\Unwash6.exe
[2009/11/16 10:40:44 | 00,000,000 | ---D | C] -- C:\Program Files\InterActual
[2009/11/16 09:37:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Roxio
[2009/11/16 09:35:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2009/11/16 09:35:52 | 00,000,000 | ---D | C] -- C:\Program Files\SmartSound Software
[2009/11/16 09:35:13 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2009/11/16 09:35:13 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2009/11/16 09:35:10 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2009/11/16 09:34:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2009/11/16 06:36:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PIXELA
[2009/11/16 05:19:36 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/11/16 05:19:34 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/11/16 05:19:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/11/16 05:19:33 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/11/16 04:53:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009/11/16 04:52:18 | 00,108,752 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAIFS_M.SYS
[2009/11/16 04:52:18 | 00,099,808 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\DRVMCDB.SYS
[2009/11/16 04:52:18 | 00,098,448 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAUDF_M.SYS
[2009/11/16 04:52:18 | 00,093,552 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAUDFAM.SYS
[2009/11/16 04:52:18 | 00,052,000 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DRVNDDM.SYS
[2009/11/16 04:52:18 | 00,037,360 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLABMFSM.SYS
[2009/11/16 04:52:18 | 00,032,848 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLABOIOM.SYS
[2009/11/16 04:52:18 | 00,027,216 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAOPIOM.SYS
[2009/11/16 04:52:18 | 00,016,304 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAPoolM.SYS
[2009/11/16 04:52:18 | 00,014,576 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLACDBHM.SYS
[2009/11/16 04:52:17 | 00,030,064 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLARTL_M.SYS
[2009/11/16 04:52:17 | 00,009,104 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLADResM.SYS
[2009/11/16 04:52:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SureThing Shared
[2009/11/16 04:51:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic
[2009/11/16 04:51:14 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2009/11/16 04:50:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared
[2009/11/16 04:50:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallShield
[2009/11/16 04:50:35 | 00,000,000 | ---D | C] -- C:\Program Files\Roxio
[2009/11/15 19:21:54 | 00,000,000 | ---D | C] -- C:\Program Files\Internet Today
[2009/11/15 19:21:54 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Internet Today
[2009/11/15 19:21:42 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer
[2009/11/15 19:21:41 | 00,000,000 | ---D | C] -- C:\Program Files\Customized Platform Advancer
[2009/11/15 19:21:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer
[2009/11/15 19:21:33 | 00,000,000 | ---D | C] -- C:\Program Files\Automated Content Enhancer
[2009/11/15 19:21:27 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Web Search Operator
[2009/11/15 19:21:26 | 00,000,000 | ---D | C] -- C:\Program Files\Web Search Operator
[2009/11/15 18:55:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ZoomBrowser
[2009/11/15 18:54:59 | 00,000,000 | ---D | C] -- C:\Program Files\Canon
[2009/11/15 18:53:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Canon
[2009/11/15 18:50:28 | 00,000,000 | ---D | C] -- C:\Program Files\PIXELA
[2009/11/13 15:27:56 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2009/11/13 06:47:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\McAfee
[2009/11/12 13:14:39 | 00,120,136 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\Mpfp.sys
[2009/11/12 13:14:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2009/11/12 13:14:34 | 00,214,664 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfehidk.sys
[2009/11/12 13:14:34 | 00,079,816 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfeavfk.sys
[2009/11/12 13:14:34 | 00,055,304 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfetdik.sys
[2009/11/12 13:14:34 | 00,035,272 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfebopk.sys
[2009/11/12 13:14:34 | 00,034,248 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mferkdk.sys
[2009/11/12 13:14:31 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee
[2009/11/12 13:14:31 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2009/11/12 07:27:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\deskPDF
[2009/11/12 07:24:14 | 00,000,000 | ---D | C] -- C:\Program Files\Docudesk
[2009/11/11 13:55:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\YMCA Sports
[2009/11/11 13:55:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\wps_files
[2009/11/11 13:28:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\work files
[2009/11/11 13:28:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Wine Related Stuff
[2009/11/11 13:27:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\TurboTax
[2009/11/11 13:27:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Thomas Residence
[2009/11/11 13:22:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Software Downloads
[2009/11/11 13:22:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Powerpoint DWF Files
[2009/11/11 13:22:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\new business files
[2009/11/11 12:56:10 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2009/11/11 12:55:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2009/11/11 12:55:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2009/11/11 12:55:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2009/11/11 12:37:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Scans
[2009/11/11 10:49:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Google Gadgets
[2009/11/11 10:49:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My CostWorks Projects
[2009/11/11 10:48:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Albums
[2009/11/11 10:39:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Memory transfer 31507
[2009/11/11 10:38:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\memory stick files 020109
[2009/11/11 10:38:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\MBA Folder
[2009/11/11 10:38:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Lottery
[2009/11/11 10:35:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\LightScribe
[2009/11/11 10:13:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\KAP Office Construction
[2009/11/11 09:52:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2009/11/11 09:52:03 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2009/11/11 09:52:03 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2009/11/11 08:48:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Peachtree
[2009/11/11 08:31:00 | 00,000,000 | ---D | C] -- C:\Program Files\SHARP
[2009/11/11 08:30:13 | 00,098,304 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SN0ELMON.dll
[2009/11/11 08:30:13 | 00,049,152 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SN0EMTNT.dll
[2009/11/11 08:29:59 | 00,075,933 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SCN2PM.dll
[2009/11/11 08:29:59 | 00,053,248 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SCN2PMR.dll
[2009/11/11 08:29:59 | 00,050,319 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SCN2PMUI.dll
[2009/11/11 08:26:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SCDRV
[2009/11/11 08:08:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009/11/11 08:08:12 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/11/11 08:08:12 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/11/11 08:08:12 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/11/11 08:08:12 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/11/11 08:08:12 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/11/11 08:08:05 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009/11/11 07:12:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2009/11/11 07:10:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2009/11/11 07:10:35 | 00,331,776 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppcpr13.dll
[2009/11/11 07:10:35 | 00,149,504 | ---- | C] (Hewlett-Packard Corporation) -- C:\WINDOWS\System32\hpcpn082.dll
[2009/11/11 07:10:35 | 00,059,928 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\fxcompchannel.dll
[2009/11/11 07:08:26 | 00,000,000 | ---D | C] -- C:\Program Files\HP
[2009/11/11 07:08:22 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2009/11/11 07:08:09 | 00,000,000 | -H-D | C] -- C:\Config.Msi
[2009/11/11 07:02:05 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2009/11/11 04:07:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\KAP Architecture Business Files
[2009/11/11 04:05:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Human Kinetics
[2009/11/10 16:58:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Guitar Stuff
[2009/11/10 16:57:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Grocery Lists
[2009/11/10 16:56:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Graphics Stuff
[2009/11/10 16:56:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\For Dan
[2009/11/10 16:56:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Financial Stuff
[2009/11/10 16:54:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\dan english
[2009/11/10 16:51:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\d41e8beae4131e88ad458b6957
[2009/11/10 16:35:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Bookmark file for netscape
[2009/11/10 16:35:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\bookmark backup
[2009/11/10 15:16:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\AutoCAD files
[2009/11/10 15:15:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Architecture License Information
[2009/11/10 15:15:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\AIA
[2009/11/10 15:12:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\acadfonts
[2009/11/10 14:59:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\2009 Vegetable Garden
[2009/11/10 14:59:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\2009 Holy Cross Track
[2009/11/10 14:55:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\2008 Vegetable Garden
[2009/11/10 14:55:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Wave Systems Corp
[2009/11/10 14:55:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\PowerDVD DX
[2009/11/10 14:55:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\PC_Drivers_Headquarters
[2009/11/10 14:47:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\IsolatedStorage
[2009/11/10 14:46:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\HP
[2009/11/10 14:46:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Downloaded Installations
[2009/11/10 14:45:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Bluebeam Software
[2009/11/10 14:38:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Adobe
[2009/11/10 14:26:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\ErrorLogs
[2009/11/10 14:24:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Webroot
[2009/11/10 14:24:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Wave Systems Corp
[2009/11/10 14:24:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\vlc
[2009/11/10 13:58:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Uniblue
[2009/11/10 13:46:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\miscellaneous
[2009/11/10 13:23:05 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/11/10 13:23:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/11/10 13:22:52 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/11/10 13:22:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Apple
[2009/11/10 13:22:46 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/11/10 13:22:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2009/11/10 13:22:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Apple Computer
[2009/11/10 13:16:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Sun
[2009/11/10 13:16:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Roxio
[2009/11/10 13:06:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Malwarebytes
[2009/11/10 12:59:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Macromedia
[2009/11/10 12:59:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Logitech
[2009/11/10 12:57:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Internet Cleaner
[2009/11/10 12:57:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\HP
[2009/11/10 12:51:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\GTek
[2009/11/10 12:51:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Google
[2009/11/10 12:51:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Dell
[2009/11/10 12:48:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\CyberScrub
[2009/11/10 12:45:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Apple Computer
[2009/11/10 12:44:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Adobe
[2009/11/10 12:35:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\.housecall6.6
[2009/11/10 12:35:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\MWorksGenerated
[2009/11/10 12:33:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Identities
[2009/11/10 12:33:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Windows Desktop Search
[2009/11/10 12:32:40 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2009/11/10 12:32:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2009/11/10 10:32:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Autodesk
[2009/11/10 10:32:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2009/11/10 10:32:52 | 00,000,000 | ---D | C] -- C:\Program Files\AutoCAD LT 2009
[2009/11/10 10:30:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009/11/10 10:30:13 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/11/10 10:30:01 | 00,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2009/11/10 10:29:11 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2009/11/10 10:29:11 | 00,000,000 | ---D | C] -- C:\Program Files\Autodesk
[2009/11/10 10:29:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Autodesk
[2009/11/10 10:25:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Aatrix Software
[2009/11/10 10:25:20 | 00,066,560 | ---- | C] (Smithware, Inc.) -- C:\WINDOWS\System32\s2dtconv.dll
[2009/11/10 10:25:20 | 00,024,576 | ---- | C] (Smithware, Inc.) -- C:\WINDOWS\System32\Sbtrvd32.dll
[2009/11/10 10:25:18 | 02,134,016 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf251.dll
[2009/11/10 10:24:43 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Peach
[2009/11/10 10:23:45 | 00,000,000 | ---D | C] -- C:\Program Files\Business Objects
[2009/11/10 10:22:37 | 00,000,000 | ---D | C] -- C:\Program Files\Pervasive Software
[2009/11/10 10:22:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Pervasive Software
[2009/11/10 10:22:11 | 00,000,000 | ---D | C] -- C:\Program Files\Sage Software
[2009/11/10 10:21:30 | 01,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71.dll
[2009/11/10 10:21:30 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp71.dll
[2009/11/10 10:21:30 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71.dll
[2009/11/10 10:21:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeachInst
[2009/11/10 10:12:07 | 00,032,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll
[2009/11/10 10:11:36 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2009/11/10 10:11:31 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009/11/10 10:11:23 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2009/11/10 10:11:23 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/11/10 10:11:08 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/11/10 10:09:48 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2009/11/10 10:09:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2009/11/10 10:09:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Microsoft Help
[2009/11/10 10:09:08 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009/11/10 10:09:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2009/11/10 10:08:54 | 00,000,000 | RH-D | C] -- C:\MSOCache
[2009/11/10 10:02:18 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2009/11/10 10:02:04 | 00,000,000 | ---D | C] -- C:\Program Files\Carbonite
[2009/11/10 10:02:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Carbonite
[2009/11/10 09:59:57 | 00,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2009/11/10 09:59:40 | 00,000,000 | ---D | C] -- C:\Program Files\Seagate
[2009/11/10 09:59:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Seagate
[2009/11/10 09:59:03 | 00,000,000 | ---D | C] -- C:\Seagate temp
[2009/11/10 09:57:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Downloads
[2009/11/10 09:54:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Mozilla
[2009/11/10 09:54:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla
[2009/11/10 09:54:30 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009/11/10 09:50:36 | 00,048,128 | ---- | C] (REDC) -- C:\WINDOWS\System32\drivers\rimmptsk.sys
[2009/11/10 09:49:37 | 00,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2009/11/10 09:49:25 | 00,000,000 | ---D | C] -- C:\Program Files\DellTPad
[2009/11/10 09:49:23 | 01,419,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01005.dll
[2009/11/10 09:49:23 | 00,170,032 | ---- | C] (Alps Electric Co., Ltd.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys
[2009/11/10 09:49:23 | 00,100,546 | ---- | C] (Alps Electric Co., Ltd.) -- C:\WINDOWS\System32\Vxdif.dll
[2009/11/10 09:47:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Deployment
[2009/11/10 09:39:15 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys
[2009/11/10 09:39:14 | 00,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys
[2009/11/10 09:39:13 | 00,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys
[2009/11/10 09:39:13 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2009/11/10 09:39:12 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2009/11/10 09:39:12 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2009/11/10 09:39:12 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2009/11/10 09:39:11 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys
[2009/11/10 09:39:10 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys
[2009/11/10 09:39:10 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys
[2009/11/10 09:39:09 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys
[2009/11/10 09:38:49 | 08,101,985 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\idtsg.cpl
[2009/11/10 09:38:49 | 02,473,984 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\stlang.dll
[2009/11/10 09:38:49 | 00,466,944 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\AESTFltr.exe
[2009/11/10 09:38:49 | 00,172,032 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\AESTCtrl.cpl
[2009/11/10 09:38:49 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2009/11/10 09:38:49 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2009/11/10 09:38:49 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2009/11/10 09:38:49 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2009/11/10 09:38:49 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2009/11/10 09:38:49 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2009/11/10 09:38:49 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2009/11/10 09:38:49 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2009/11/10 09:38:46 | 00,164,352 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\staco.dll
[2009/11/10 09:38:45 | 01,381,914 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\drivers\sthda.sys
[2009/11/10 09:38:45 | 00,442,473 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\stacapi.dll
[2009/11/10 09:38:44 | 00,108,160 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\drivers\AESTAud.sys
[2009/11/10 09:38:44 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2009/11/10 09:38:44 | 00,000,000 | ---D | C] -- C:\Program Files\IDT
[2009/11/10 09:38:42 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2009/11/10 09:38:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Videos
[2009/11/10 09:38:00 | 00,000,000 | ---D | C] -- C:\Program Files\Telespree
[2009/11/10 09:38:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Telespree
[2009/11/10 09:37:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dell
[2009/11/10 09:37:55 | 00,000,000 | ---D | C] -- C:\Program Files\AT&T
[2009/11/10 09:37:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AT&T
[2009/11/10 09:37:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2009/11/10 09:36:44 | 00,248,448 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\PROUnstl.exe
[2009/11/10 09:36:40 | 00,244,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1y5132.sys
[2009/11/10 09:36:40 | 00,121,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll
[2009/11/10 09:36:40 | 00,056,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll
[2009/11/10 09:36:40 | 00,028,272 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo2.dll
[2009/11/10 09:35:07 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2009/11/10 09:34:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2009/11/10 09:34:38 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2009/11/10 09:33:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2009/11/10 09:32:29 | 00,815,104 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMLogon.dll
[2009/11/10 09:32:28 | 05,029,888 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMWLCPL.CPL
[2009/11/10 09:32:28 | 02,682,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vcredist_x86.exe
[2009/11/10 09:32:28 | 02,670,592 | ---- | C] (BCGSoft Ltd) -- C:\WINDOWS\System32\WLBCGCBPRO731.DLL
[2009/11/10 09:32:28 | 02,220,032 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\WLTRAY.EXE
[2009/11/10 09:32:28 | 01,961,984 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMWLTRY.EXE
[2009/11/10 09:32:28 | 01,287,552 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\BCMWL5.SYS
[2009/11/10 09:32:28 | 00,286,720 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\bcmwlu00.exe
[2009/11/10 09:32:28 | 00,143,360 | ---- | C] (Broadcom Corp.) -- C:\WINDOWS\System32\bcmwlapi.dll
[2009/11/10 09:32:28 | 00,069,632 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\bcmwlpkt.dll
[2009/11/10 09:32:28 | 00,065,536 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\wltrynt.dll
[2009/11/10 09:32:28 | 00,033,664 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\drivers\BCMWLNPF.SYS
[2009/11/10 09:32:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\InstallShield
[2009/11/10 09:30:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\nView_Profiles
[2009/11/10 09:28:07 | 00,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2009/11/10 09:28:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\nview
[2009/11/10 09:27:56 | 00,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2009/11/10 09:27:49 | 02,670,592 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll
[2009/11/10 09:27:49 | 02,629,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll
[2009/11/10 09:27:49 | 00,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2009/11/10 09:27:49 | 00,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2009/11/10 09:27:49 | 00,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsesm.dll
[2009/11/10 09:27:49 | 00,323,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2009/11/10 09:27:49 | 00,319,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2009/11/10 09:27:49 | 00,315,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2009/11/10 09:27:49 | 00,311,296 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2009/11/10 09:27:49 | 00,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2009/11/10 09:27:49 | 00,212,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2009/11/10 09:27:49 | 00,196,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2009/11/10 09:27:49 | 00,167,936 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2009/11/10 09:27:49 | 00,163,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2009/11/10 09:27:48 | 04,141,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll
[2009/11/10 09:27:48 | 00,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2009/11/10 09:27:47 | 08,773,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2009/11/10 09:27:47 | 03,780,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll
[2009/11/10 09:27:47 | 00,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2009/11/10 09:27:47 | 00,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2009/11/10 09:27:47 | 00,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2009/11/10 09:27:47 | 00,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2009/11/10 09:27:47 | 00,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2009/11/10 09:27:47 | 00,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2009/11/10 09:27:47 | 00,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2009/11/10 09:27:47 | 00,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2009/11/10 09:27:47 | 00,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2009/11/10 09:27:47 | 00,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2009/11/10 09:27:47 | 00,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2009/11/10 09:27:47 | 00,159,812 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe
[2009/11/10 09:27:47 | 00,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2009/11/10 09:27:46 | 03,424,256 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll
[2009/11/10 09:27:46 | 02,854,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll
[2009/11/10 09:27:46 | 01,257,472 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll
[2009/11/10 09:27:46 | 00,458,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll
[2009/11/10 09:27:46 | 00,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2009/11/10 09:27:46 | 00,188,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll
[2009/11/10 09:27:46 | 00,090,112 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhotkey.dll
[2009/11/10 09:27:46 | 00,086,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2009/11/10 09:27:46 | 00,045,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccsrs.dll
[2009/11/10 09:27:45 | 03,391,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll
[2009/11/10 09:27:45 | 00,313,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvexpbar.dll
[2009/11/10 09:27:44 | 05,783,552 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll
[2009/11/10 09:27:44 | 03,981,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll
[2009/11/10 09:27:44 | 01,241,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2009/11/10 09:27:44 | 01,079,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll
[2009/11/10 09:27:44 | 00,768,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe
[2009/11/10 09:27:42 | 13,537,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2009/11/10 09:27:42 | 06,591,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2009/11/10 09:27:42 | 06,591,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2009/11/10 09:27:42 | 00,442,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2009/11/10 09:27:42 | 00,420,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl
[2009/11/10 09:27:42 | 00,147,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2009/11/10 09:27:42 | 00,118,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2009/11/10 09:27:42 | 00,118,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2009/11/10 09:27:41 | 06,271,232 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2009/11/10 09:27:41 | 06,271,232 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2009/11/10 09:24:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2009/11/10 09:24:02 | 00,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll
[2009/11/10 09:24:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2009/11/10 09:24:01 | 00,000,000 | ---D | C] -- C:\Program Files\Intel
[2009/11/10 09:23:50 | 00,000,000 | ---D | C] -- C:\Intel
[2009/11/10 09:10:27 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\vmm32
[2009/11/10 09:10:27 | 00,000,000 | ---D | C] -- C:\Program Files\Dell
[2009/11/10 08:35:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Identities
[2009/11/10 08:35:45 | 00,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2009/11/10 08:35:42 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Pictures
[2009/11/10 08:35:42 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Music
[2009/11/10 08:35:40 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Microsoft
[2009/11/10 08:35:40 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Bob Kapolnek\SendTo
[2009/11/10 08:35:40 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Bob Kapolnek\Recent
[2009/11/10 08:35:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\Start Menu
[2009/11/10 08:35:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents
[2009/11/10 08:35:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\Favorites
[2009/11/10 08:35:40 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Bob Kapolnek\Cookies
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\Templates
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\PrintHood
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\NetHood
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings
[2009/11/10 08:35:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Microsoft
[2009/11/10 08:35:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Desktop
[2009/11/10 08:35:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data
[2009/11/10 08:34:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2009/11/10 08:34:40 | 00,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2009/11/10 08:34:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2009/11/10 08:32:49 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2009/11/10 08:32:49 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2009/11/10 08:32:49 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2009/11/10 08:32:49 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2009/11/10 08:32:48 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2009/11/10 08:32:48 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2009/11/10 08:32:48 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2009/11/10 08:32:47 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2009/11/10 08:32:47 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2009/11/10 08:32:47 | 00,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2009/11/10 08:32:47 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2009/11/10 08:32:46 | 00,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2009/11/10 08:32:46 | 00,364,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2009/11/10 08:32:46 | 00,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2009/11/10 08:32:46 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2009/11/10 08:32:46 | 00,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2009/11/10 08:32:46 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2009/11/10 08:32:46 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2009/11/10 08:32:45 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2009/11/10 08:32:45 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2009/11/10 08:32:44 | 00,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2009/11/10 08:32:44 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2009/11/10 08:32:43 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2009/11/10 08:32:43 | 00,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2009/11/10 08:32:43 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2009/11/10 08:32:43 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2009/11/10 08:32:43 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2009/11/10 08:32:42 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2009/11/10 08:32:42 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2009/11/10 08:32:42 | 00,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2009/11/10 08:32:42 | 00,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2009/11/10 08:32:41 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2009/11/10 08:32:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2009/11/10 08:32:40 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2009/11/10 08:32:40 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2009/11/10 08:32:40 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2009/11/10 08:32:39 | 00,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2009/11/10 08:32:38 | 00,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2009/11/10 08:32:38 | 00,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2009/11/10 08:32:38 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2009/11/10 08:32:38 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2009/11/10 08:32:38 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2009/11/10 08:32:38 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2009/11/10 08:32:38 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2009/11/10 08:32:38 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2009/11/10 08:32:38 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2009/11/10 08:32:37 | 00,456,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2009/11/10 08:32:37 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2009/11/10 08:32:37 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2009/11/10 08:32:36 | 00,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2009/11/10 08:32:36 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2009/11/10 08:32:36 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2009/11/10 08:32:36 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2009/11/10 08:32:36 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2009/11/10 08:32:36 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2009/11/10 08:32:36 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2009/11/10 08:32:36 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2009/11/10 08:32:36 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2009/11/10 08:32:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2009/11/10 08:32:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2009/11/10 08:32:35 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2009/11/10 08:32:35 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2009/11/10 08:32:35 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2009/11/10 08:32:33 | 00,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2009/11/10 08:32:33 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2009/11/10 08:32:33 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2009/11/10 08:32:32 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2009/11/10 08:32:32 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2009/11/10 08:32:32 | 00,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2009/11/10 08:32:32 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2009/11/10 08:32:32 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2009/11/10 08:32:32 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2009/11/10 08:32:31 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2009/11/10 08:32:31 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2009/11/10 08:32:31 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2009/11/10 08:32:30 | 00,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2009/11/10 08:32:30 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2009/11/10 08:32:29 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2009/11/10 08:32:29 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2009/11/10 08:32:29 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2009/11/10 08:32:28 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2009/11/10 08:32:28 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2009/11/10 08:32:28 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2009/11/10 08:32:27 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2009/11/10 08:32:27 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2009/11/10 08:32:27 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2009/11/10 08:32:27 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2009/11/10 08:32:27 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2009/11/10 08:32:27 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2009/11/10 08:32:26 | 00,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2009/11/10 08:32:26 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2009/11/10 08:32:26 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2009/11/10 08:32:26 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2009/11/10 08:32:26 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2009/11/10 08:32:24 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2009/11/10 08:32:24 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2009/11/10 08:32:23 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2009/11/10 08:32:22 | 00,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2009/11/10 08:32:22 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2009/11/10 08:32:21 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2009/11/10 08:32:20 | 01,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2009/11/10 08:32:20 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2009/11/10 08:32:17 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2009/11/10 08:32:16 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2009/11/10 08:32:16 | 00,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2009/11/10 08:32:16 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2009/11/10 08:32:16 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2009/11/10 08:32:16 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2009/11/10 08:32:15 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2009/11/10 08:32:15 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2009/11/10 08:32:15 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2009/11/10 08:32:15 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2009/11/10 08:32:14 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2009/11/10 08:32:14 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2009/11/10 08:32:13 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2009/11/10 08:32:12 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2009/11/10 08:32:12 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2009/11/10 08:32:12 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2009/11/10 08:32:12 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2009/11/10 08:32:12 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2009/11/10 08:32:11 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2009/11/10 08:32:11 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2009/11/10 08:32:11 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2009/11/10 08:32:11 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2009/11/10 08:32:11 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2009/11/10 08:32:10 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2009/11/10 08:32:10 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2009/11/10 08:32:10 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2009/11/10 08:32:09 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2009/11/10 08:32:09 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2009/11/10 08:32:09 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2009/11/10 08:32:09 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2009/11/10 08:32:08 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2009/11/10 08:32:08 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2009/11/10 08:32:08 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2009/11/10 08:32:07 | 00,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2009/11/10 08:32:07 | 00,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2009/11/10 08:32:07 | 00,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2009/11/10 08:32:07 | 00,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2009/11/10 08:32:07 | 00,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2009/11/10 08:32:07 | 00,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2009/11/10 08:32:07 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2009/11/10 08:32:07 | 00,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2009/11/10 08:32:06 | 00,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2009/11/10 08:32:06 | 00,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2009/11/10 08:32:06 | 00,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2009/11/10 08:32:06 | 00,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2009/11/10 08:32:06 | 00,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2009/11/10 08:32:06 | 00,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2009/11/10 08:32:05 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2009/11/10 08:32:05 | 00,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2009/11/10 08:32:05 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2009/11/10 08:32:05 | 00,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2009/11/10 08:32:05 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2009/11/10 08:32:05 | 00,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2009/11/10 08:32:05 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2009/11/10 08:32:05 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2009/11/10 08:32:05 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2009/11/10 08:32:04 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2009/11/10 08:32:04 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2009/11/10 08:32:04 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2009/11/10 08:32:04 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2009/11/10 08:32:04 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2009/11/10 08:32:04 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2009/11/10 08:32:04 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2009/11/10 08:32:04 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2009/11/10 08:31:59 | 10,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2009/11/10 08:31:49 | 10,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2009/11/10 08:31:49 | 00,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2009/11/10 08:31:49 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2009/11/10 08:31:49 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2009/11/10 08:31:48 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2009/11/10 08:31:48 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2009/11/10 08:31:47 | 00,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2009/11/10 08:31:47 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2009/11/10 08:31:47 | 00,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2009/11/10 08:31:47 | 00,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2009/11/10 08:31:46 | 00,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2009/11/10 08:31:46 | 00,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2009/11/10 08:31:46 | 00,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2009/11/10 08:31:46 | 00,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2009/11/10 08:31:46 | 00,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2009/11/10 08:31:46 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2009/11/10 08:31:46 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2009/11/10 08:31:46 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2009/11/10 08:31:46 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2009/11/10 08:31:46 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2009/11/10 08:31:46 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2009/11/10 08:31:46 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2009/11/10 08:31:46 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2009/11/10 08:31:46 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2009/11/10 08:31:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2009/11/10 08:31:45 | 00,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2009/11/10 08:31:45 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2009/11/10 08:31:45 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2009/11/10 08:31:45 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2009/11/10 08:31:45 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2009/11/10 08:31:45 | 00,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2009/11/10 08:31:45 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2009/11/10 08:31:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2009/11/10 08:31:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2009/11/10 08:31:44 | 00,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll
[2009/11/10 08:31:44 | 00,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2009/11/10 08:31:44 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2009/11/10 08:31:43 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2009/11/10 08:31:43 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2009/11/10 08:31:43 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2009/11/10 08:31:43 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2009/11/10 08:31:43 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2009/11/10 08:31:43 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2009/11/10 08:31:43 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2009/11/10 08:31:42 | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2009/11/10 08:31:42 | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2009/11/10 08:31:42 | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2009/11/10 08:31:41 | 00,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2009/11/10 08:31:39 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2009/11/10 08:31:38 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2009/11/10 08:31:38 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2009/11/10 08:31:37 | 00,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2009/11/10 08:31:37 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2009/11/10 08:31:37 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2009/11/10 08:31:37 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2009/11/10 08:31:36 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2009/11/10 08:31:35 | 00,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2009/11/10 08:31:35 | 00,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2009/11/10 08:31:35 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2009/11/10 08:31:35 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2009/11/10 08:31:35 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2009/11/10 08:31:35 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2009/11/10 08:31:34 | 01,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2009/11/10 08:31:34 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2009/11/10 08:31:33 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2009/11/10 08:31:33 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2009/11/10 08:31:33 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2009/11/10 08:31:33 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2009/11/10 08:31:32 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2009/11/10 08:31:32 | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2009/11/10 08:31:32 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2009/11/10 08:31:32 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2009/11/10 08:31:27 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2009/11/10 08:31:26 | 00,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2009/11/10 08:31:26 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2009/11/10 08:31:26 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2009/11/10 08:31:26 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2009/11/10 08:31:25 | 00,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2009/11/10 08:31:25 | 00,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2009/11/10 08:31:25 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2009/11/10 08:31:25 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2009/11/10 08:31:23 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2009/11/10 08:31:23 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2009/11/10 08:31:23 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2009/11/10 08:31:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2009/11/10 08:31:21 | 00,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2009/11/10 08:31:21 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2009/11/10 08:31:21 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2009/11/10 08:31:20 | 02,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll
[2009/11/10 08:31:20 | 00,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2009/11/10 08:31:20 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2009/11/10 08:31:19 | 00,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2009/11/10 08:31:19 | 00,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2009/11/10 08:31:17 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2009/11/10 08:31:17 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2009/11/10 08:31:17 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2009/11/10 08:31:16 | 00,829,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2009/11/10 08:31:16 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2009/11/10 08:31:16 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2009/11/10 08:31:16 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2009/11/10 08:31:16 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2009/11/10 08:31:16 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2009/11/10 08:31:16 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2009/11/10 08:31:16 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2009/11/10 08:31:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2009/11/10 08:31:15 | 00,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2009/11/10 08:31:15 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2009/11/10 08:31:15 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2009/11/10 08:31:15 | 00,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2009/11/10 08:31:15 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2009/11/10 08:31:14 | 00,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2009/11/10 08:31:14 | 00,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2009/11/10 08:31:14 | 00,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2009/11/10 08:31:14 | 00,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2009/11/10 08:31:14 | 00,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2009/11/10 08:31:14 | 00,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2009/11/10 08:31:14 | 00,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2009/11/10 08:31:14 | 00,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2009/11/10 08:31:13 | 00,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2009/11/10 08:31:13 | 00,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2009/11/10 08:31:13 | 00,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2009/11/10 08:31:13 | 00,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2009/11/10 08:31:13 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2009/11/10 08:31:13 | 00,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2009/11/10 08:31:13 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2009/11/10 08:31:12 | 00,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2009/11/10 08:31:12 | 00,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2009/11/10 08:31:12 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2009/11/10 08:31:12 | 00,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2009/11/10 08:31:12 | 00,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2009/11/10 08:31:11 | 00,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2009/11/10 08:31:11 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2009/11/10 08:31:11 | 00,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2009/11/10 08:31:09 | 00,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2009/11/10 08:31:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2009/11/10 08:31:08 | 00,000,000 | ---D | C] -- C:\Program Files\xerox

part 2 of 3

[2009/11/10 08:31:08 | 00,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2009/11/10 08:30:54 | 00,000,000 | ---D | C] -- C:\DELL
[2009/11/10 08:30:39 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2009/11/10 08:30:00 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2009/11/10 08:29:51 | 00,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2009/11/10 08:29:50 | 00,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2009/11/10 08:29:41 | 00,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2009/11/10 08:29:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2009/11/10 08:29:15 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2009/11/10 08:29:15 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2009/11/10 08:29:15 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2009/11/10 08:29:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2009/11/10 08:29:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2009/11/10 08:29:15 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2009/11/10 08:29:02 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2009/11/10 08:29:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2009/11/10 08:29:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2009/11/10 08:29:00 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2009/11/10 08:29:00 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2009/11/10 08:29:00 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2009/11/10 08:28:59 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2009/11/10 08:28:59 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2009/11/10 08:28:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2009/11/10 08:28:55 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2009/11/10 08:28:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2009/11/10 08:28:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2009/11/10 08:28:55 | 00,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2009/11/10 08:28:54 | 00,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2009/11/10 08:28:54 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2009/11/10 08:28:54 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2009/11/10 08:28:54 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2009/11/10 08:28:54 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2009/11/10 08:28:54 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2009/11/10 08:28:53 | 00,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2009/11/10 08:28:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2009/11/10 08:28:49 | 00,726,078 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll
[2009/11/10 08:28:49 | 00,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll
[2009/11/10 08:28:48 | 03,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll
[2009/11/10 08:28:47 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll
[2009/11/10 08:28:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2009/11/10 08:28:46 | 00,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2009/11/10 08:28:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2009/11/10 08:28:45 | 01,669,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2009/11/10 08:28:45 | 00,243,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2009/11/10 08:28:45 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2009/11/10 08:28:44 | 00,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2009/11/10 08:28:44 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2009/11/10 08:28:44 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2009/11/10 08:28:44 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2009/11/10 08:28:43 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2009/11/10 08:28:43 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2009/11/10 08:28:43 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2009/11/10 08:28:42 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2009/11/10 08:28:42 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2009/11/10 08:28:42 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2009/11/10 08:28:42 | 00,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2009/11/10 08:28:42 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2009/11/10 08:28:42 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll
[2009/11/10 08:28:42 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2009/11/10 08:28:42 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2009/11/10 08:28:42 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll
[2009/11/10 08:28:41 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2009/11/10 08:28:41 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2009/11/10 08:28:41 | 00,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2009/11/10 08:28:41 | 00,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2009/11/10 08:28:41 | 00,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe
[2009/11/10 08:28:41 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2009/11/10 08:28:41 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2009/11/10 08:28:41 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll
[2009/11/10 08:28:41 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll
[2009/11/10 08:28:41 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2009/11/10 08:28:40 | 00,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll
[2009/11/10 08:28:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll
[2009/11/10 08:28:38 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll
[2009/11/10 08:28:37 | 04,256,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll
[2009/11/10 08:28:37 | 00,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll
[2009/11/10 08:28:37 | 00,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll
[2009/11/10 08:28:37 | 00,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll
[2009/11/10 08:28:37 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll
[2009/11/10 08:28:37 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll
[2009/11/10 08:28:35 | 03,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2009/11/10 08:28:35 | 00,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2009/11/10 08:28:16 | 00,565,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll
[2009/11/10 08:28:16 | 00,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll
[2009/11/10 08:28:16 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll
[2009/11/10 08:28:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll
[2009/11/10 08:28:15 | 00,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe
[2009/11/10 08:28:15 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2009/11/10 08:28:15 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll
[2009/11/10 08:28:11 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe
[2009/11/10 08:28:11 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2009/11/10 08:28:11 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll
[2009/11/10 08:28:11 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2009/11/10 08:28:11 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll
[2009/11/10 08:28:11 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2009/11/10 08:28:11 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll
[2009/11/10 08:28:10 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2009/11/10 08:28:10 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll
[2009/11/10 08:28:09 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll
[2009/11/10 08:28:09 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll
[2009/11/10 08:28:07 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe
[2009/11/10 08:28:07 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe
[2009/11/10 08:28:06 | 00,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe
[2009/11/10 08:28:06 | 00,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2009/11/10 08:28:05 | 00,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe
[2009/11/10 08:28:05 | 00,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys
[2009/11/10 08:28:05 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2009/11/10 08:28:05 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2009/11/10 08:28:05 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll
[2009/11/10 08:28:04 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2009/11/10 08:28:04 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll
[2009/11/10 08:28:04 | 00,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll
[2009/11/10 08:28:04 | 00,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys
[2009/11/10 08:28:04 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll
[2009/11/10 08:28:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2009/11/10 08:28:03 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2009/11/10 08:28:03 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll
[2009/11/10 08:28:03 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2009/11/10 08:28:03 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll
[2009/11/10 08:28:03 | 00,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2009/11/10 08:28:03 | 00,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll
[2009/11/10 08:28:02 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2009/11/10 08:28:02 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll
[2009/11/10 08:28:02 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll
[2009/11/10 08:28:02 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2009/11/10 08:28:02 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2009/11/10 08:28:02 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll
[2009/11/10 08:28:01 | 00,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll
[2009/11/10 08:28:01 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll
[2009/11/10 08:28:01 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll
[2009/11/10 08:28:00 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll
[2009/11/10 08:28:00 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll
[2009/11/10 08:28:00 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll
[2009/11/10 08:28:00 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll
[2009/11/10 08:27:59 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll
[2009/11/10 08:27:59 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll
[2009/11/10 08:27:59 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll
[2009/11/10 08:27:59 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll
[2009/11/10 08:27:59 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll
[2009/11/10 08:27:59 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll
[2009/11/10 08:27:59 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll
[2009/11/10 08:27:58 | 01,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe
[2009/11/10 08:27:58 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2009/11/10 08:27:58 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll
[2009/11/10 08:27:58 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2009/11/10 08:27:58 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll
[2009/11/10 08:27:58 | 00,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2009/11/10 08:27:57 | 00,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll
[2009/11/10 08:27:57 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll
[2009/11/10 08:27:57 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll
[2009/11/10 08:27:57 | 00,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2009/11/10 08:27:57 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll
[2009/11/10 08:27:57 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe
[2009/11/10 08:27:56 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2009/11/10 08:27:56 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll
[2009/11/10 08:27:56 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe
[2009/11/10 08:27:56 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2009/11/10 08:27:56 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll
[2009/11/10 08:27:55 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll
[2009/11/10 08:27:54 | 02,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll
[2009/11/10 08:27:53 | 00,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll
[2009/11/10 08:27:53 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll
[2009/11/10 08:27:53 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe
[2009/11/10 08:27:53 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe
[2009/11/10 08:27:53 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll
[2009/11/10 08:27:53 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2009/11/10 08:27:53 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe
[2009/11/10 08:27:53 | 00,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2009/11/10 08:27:52 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2009/11/10 08:27:52 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll
[2009/11/10 08:27:52 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2009/11/10 08:27:52 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll
[2009/11/10 08:27:52 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2009/11/10 08:27:52 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll
[2009/11/10 08:27:52 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2009/11/10 08:27:52 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll
[2009/11/10 08:27:50 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe
[2009/11/10 08:27:50 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll
[2009/11/10 08:27:50 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe
[2009/11/10 08:27:50 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll
[2009/11/10 08:27:50 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll
[2009/11/10 08:27:50 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll
[2009/11/10 08:27:50 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe
[2009/11/10 08:27:50 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe
[2009/11/10 08:27:49 | 00,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll
[2009/11/10 08:27:49 | 00,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll
[2009/11/10 08:27:48 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll
[2009/11/10 08:27:48 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll
[2009/11/10 08:27:48 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll
[2009/11/10 08:27:48 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll
[2009/11/10 08:27:48 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll
[2009/11/10 08:27:47 | 00,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll
[2009/11/10 08:27:47 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll
[2009/11/10 08:27:47 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll
[2009/11/10 08:27:47 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll
[2009/11/10 08:27:47 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll
[2009/11/10 08:27:47 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll
[2009/11/10 08:27:47 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll
[2009/11/10 08:27:47 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll
[2009/11/10 08:27:46 | 00,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2009/11/10 08:27:46 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll
[2009/11/10 08:27:46 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll
[2009/11/10 08:27:46 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll
[2009/11/10 08:27:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb
[2009/11/10 08:27:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb
[2009/11/10 08:27:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb
[2009/11/10 08:27:46 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb
[2009/11/10 08:27:46 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb
[2009/11/10 08:27:46 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll
[2009/11/10 08:27:46 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll
[2009/11/10 08:27:45 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2009/11/10 08:27:45 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll
[2009/11/10 08:27:45 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll
[2009/11/10 08:27:45 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll
[2009/11/10 08:27:45 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll
[2009/11/10 08:27:45 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll
[2009/11/10 08:27:45 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll
[2009/11/10 08:27:45 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll
[2009/11/10 08:27:45 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll
[2009/11/10 08:27:44 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2009/11/10 08:27:43 | 00,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2009/11/10 08:27:43 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2009/11/10 08:27:43 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2009/11/10 08:27:43 | 00,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2009/11/10 08:27:42 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2009/11/10 08:27:22 | 00,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2009/11/10 08:27:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2009/11/10 08:27:17 | 00,000,000 | ---D | C] -- C:\Program Files\Online Services
[2009/11/10 08:27:16 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2009/11/10 08:27:16 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2009/11/10 08:27:12 | 00,000,000 | ---D | C] -- C:\Program Files\Messenger
[2009/11/10 08:27:11 | 01,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2009/11/10 08:27:11 | 00,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2009/11/10 08:27:11 | 00,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2009/11/10 08:27:10 | 02,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2009/11/10 08:27:10 | 00,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2009/11/10 08:27:10 | 00,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2009/11/10 08:27:10 | 00,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2009/11/10 08:27:10 | 00,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2009/11/10 08:27:10 | 00,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2009/11/10 08:27:10 | 00,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2009/11/10 08:27:10 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2009/11/10 08:27:10 | 00,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2009/11/10 08:27:09 | 01,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2009/11/10 08:27:09 | 00,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2009/11/10 08:27:09 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2009/11/10 08:27:09 | 00,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2009/11/10 08:27:09 | 00,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2009/11/10 08:27:09 | 00,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2009/11/10 08:27:09 | 00,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2009/11/10 08:27:08 | 01,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2009/11/10 08:27:08 | 00,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2009/11/10 08:27:07 | 00,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2009/11/10 08:27:07 | 00,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2009/11/10 08:27:07 | 00,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2009/11/10 08:27:07 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2009/11/10 08:27:07 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2009/11/10 08:27:07 | 00,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2009/11/10 08:26:56 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2009/11/10 08:26:56 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2009/11/10 08:26:56 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2009/11/10 08:26:56 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2009/11/10 08:26:56 | 00,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2009/11/10 08:26:56 | 00,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2009/11/10 08:26:55 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2009/11/10 08:26:55 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2009/11/10 08:26:55 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2009/11/10 08:26:55 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2009/11/10 08:26:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2009/11/10 08:26:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2009/11/10 08:26:44 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2009/11/10 08:26:44 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2009/11/10 08:26:44 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2009/11/10 08:26:44 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2009/11/10 08:26:43 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2009/11/10 08:26:43 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2009/11/10 08:26:43 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2009/11/10 08:26:43 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2009/11/10 08:26:43 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2009/11/10 08:26:43 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2009/11/10 08:26:42 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2009/11/10 08:26:42 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2009/11/10 08:26:42 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2009/11/10 08:26:42 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2009/11/10 08:26:42 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2009/11/10 08:26:42 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2009/11/10 08:26:41 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2009/11/10 08:26:41 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2009/11/10 08:26:41 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2009/11/10 08:26:41 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2009/11/10 08:26:41 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2009/11/10 08:26:41 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2009/11/10 08:26:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2009/11/10 08:26:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2009/11/10 08:26:41 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2009/11/10 08:26:41 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2009/11/10 08:26:40 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2009/11/10 08:26:40 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2009/11/10 08:26:40 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2009/11/10 08:26:40 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2009/11/10 08:26:40 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2009/11/10 08:26:40 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2009/11/10 08:26:39 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2009/11/10 08:26:39 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2009/11/10 08:26:35 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2009/11/10 08:26:34 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2009/11/10 08:26:34 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2009/11/10 08:26:34 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2009/11/10 08:26:34 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2009/11/10 08:26:34 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2009/11/10 08:26:34 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2009/11/10 08:26:34 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2009/11/10 08:26:34 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2009/11/10 08:26:34 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2009/11/10 08:26:33 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2009/11/10 08:26:33 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2009/11/10 08:26:33 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2009/11/10 08:26:33 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2009/11/10 08:26:32 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2009/11/10 08:26:32 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2009/11/10 08:26:13 | 00,000,000 | ---D | C] -- C:\Program Files\MSN
[2009/11/10 08:26:12 | 00,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2009/11/10 08:26:12 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2009/11/10 08:26:12 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2009/11/10 08:26:12 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2009/11/10 08:26:12 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2009/11/10 08:26:12 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl
[2009/11/10 08:26:12 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2009/11/10 08:26:11 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe
[2009/11/10 08:26:11 | 00,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2009/11/10 08:26:11 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2009/11/10 08:26:11 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2009/11/10 08:26:10 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2009/11/10 08:26:10 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2009/11/10 08:26:10 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe
[2009/11/10 08:26:10 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2009/11/10 08:26:10 | 00,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2009/11/10 08:26:09 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2009/11/10 08:26:09 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2009/11/10 08:26:08 | 00,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2009/11/10 08:26:08 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2009/11/10 08:26:08 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll
[2009/11/10 08:26:08 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys
[2009/11/10 08:26:08 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys
[2009/11/10 08:26:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2009/11/10 08:26:07 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2009/11/10 08:26:07 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll
[2009/11/10 08:26:07 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll
[2009/11/10 08:26:07 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2009/11/10 08:26:07 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2009/11/10 08:26:07 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll
[2009/11/10 08:26:06 | 02,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll
[2009/11/10 08:26:05 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe
[2009/11/10 08:26:05 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe
[2009/11/10 08:26:05 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2009/11/10 08:26:05 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll
[2009/11/10 08:26:05 | 00,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2009/11/10 08:26:05 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2009/11/10 08:26:05 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2009/11/10 08:26:05 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll
[2009/11/10 08:26:05 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2009/11/10 08:26:05 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe
[2009/11/10 08:26:04 | 00,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll
[2009/11/10 08:26:04 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2009/11/10 08:26:04 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll
[2009/11/10 08:26:04 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2009/11/10 08:26:04 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2009/11/10 08:26:04 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2009/11/10 08:26:04 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll
[2009/11/10 08:26:03 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2009/11/10 08:26:03 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2009/11/10 08:26:03 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2009/11/10 08:26:03 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll
[2009/11/10 08:26:03 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll
[2009/11/10 08:26:03 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2009/11/10 08:26:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2009/11/10 08:26:02 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2009/11/10 08:26:02 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll
[2009/11/10 08:26:02 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2009/11/10 08:26:02 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll
[2009/11/10 08:26:02 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2009/11/10 08:26:02 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll
[2009/11/10 08:26:02 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2009/11/10 08:26:02 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll
[2009/11/10 08:26:02 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2009/11/10 08:26:01 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2009/11/10 08:26:00 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll
[2009/11/10 08:26:00 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll
[2009/11/10 08:26:00 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2009/11/10 08:26:00 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2009/11/10 08:26:00 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll
[2009/11/10 08:26:00 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2009/11/10 08:26:00 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll
[2009/11/10 08:26:00 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll
[2009/11/10 08:26:00 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2009/11/10 08:26:00 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe
[2009/11/10 08:26:00 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2009/11/10 08:26:00 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2009/11/10 08:26:00 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2009/11/10 08:26:00 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll
[2009/11/10 08:26:00 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2009/11/10 08:25:59 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll
[2009/11/10 08:25:59 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2009/11/10 08:25:59 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll
[2009/11/10 08:25:59 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2009/11/10 08:25:59 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll
[2009/11/10 08:25:59 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2009/11/10 08:25:59 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2009/11/10 08:25:59 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll
[2009/11/10 08:25:58 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll
[2009/11/10 08:25:58 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2009/11/10 08:25:58 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll
[2009/11/10 08:25:58 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2009/11/10 08:25:57 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll
[2009/11/10 08:25:57 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2009/11/10 08:25:57 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll
[2009/11/10 08:25:57 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2009/11/10 08:25:57 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll
[2009/11/10 08:25:57 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2009/11/10 08:25:56 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll
[2009/11/10 08:25:54 | 00,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe
[2009/11/10 08:25:54 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll
[2009/11/10 08:25:54 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll
[2009/11/10 08:25:54 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll
[2009/11/10 08:25:54 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll
[2009/11/10 08:25:54 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll
[2009/11/10 08:25:54 | 00,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2009/11/10 08:25:54 | 00,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll
[2009/11/10 08:25:54 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll
[2009/11/10 08:25:54 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll
[2009/11/10 08:25:54 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll
[2009/11/10 08:25:54 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll
[2009/11/10 08:25:54 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll
[2009/11/10 08:25:54 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll
[2009/11/10 08:25:53 | 00,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll
[2009/11/10 08:25:53 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll
[2009/11/10 08:25:53 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll
[2009/11/10 08:25:53 | 00,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll
[2009/11/10 08:25:53 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2009/11/10 08:25:53 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll
[2009/11/10 08:25:53 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll
[2009/11/10 08:25:53 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll
[2009/11/10 08:25:53 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2009/11/10 08:25:53 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll
[2009/11/10 08:25:53 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll
[2009/11/10 08:25:53 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll
[2009/11/10 08:25:52 | 00,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll
[2009/11/10 08:25:52 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll
[2009/11/10 08:25:52 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll
[2009/11/10 08:25:52 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2009/11/10 08:25:51 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll
[2009/11/10 08:25:51 | 00,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll
[2009/11/10 08:25:51 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll
[2009/11/10 08:25:51 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll
[2009/11/10 08:25:51 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll
[2009/11/10 08:25:51 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2009/11/10 08:25:50 | 00,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll
[2009/11/10 08:25:50 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll
[2009/11/10 08:25:48 | 01,358,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll
[2009/11/10 08:25:48 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2009/11/10 08:25:48 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll
[2009/11/10 08:25:48 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2009/11/10 08:25:48 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll
[2009/11/10 08:25:48 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2009/11/10 08:25:48 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll
[2009/11/10 08:25:47 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll
[2009/11/10 08:25:47 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2009/11/10 08:25:43 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2009/11/10 02:22:11 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2009/11/10 02:21:51 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2009/11/10 02:21:51 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbui.dll
[2009/11/10 02:21:45 | 00,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2009/11/10 02:21:03 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2009/11/10 02:21:03 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2009/11/10 02:21:02 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2009/11/10 02:21:01 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2009/11/10 02:21:00 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2009/11/10 02:20:59 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2009/11/10 02:20:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2009/11/10 02:20:58 | 00,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll
[2009/11/10 02:20:58 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl
[2009/11/10 02:20:58 | 00,000,000 | ---D | C] -- C:\Program Files
[2009/11/10 02:20:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2009/11/10 02:20:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files
[2009/11/10 02:20:57 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2009/11/10 02:20:57 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2009/11/10 02:20:57 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2009/11/10 02:20:56 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2009/11/10 02:20:56 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2009/11/10 02:20:56 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2009/11/10 02:20:54 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2009/11/10 02:20:54 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2009/11/10 02:20:54 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2009/11/10 02:20:54 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2009/11/10 02:20:54 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2009/11/10 02:20:54 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2009/11/10 02:20:49 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2009/11/10 02:20:49 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2009/11/10 02:20:49 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2009/11/10 02:20:49 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2009/11/10 02:20:49 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2009/11/10 02:20:49 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2009/11/10 02:20:49 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2009/11/10 02:20:49 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2009/11/10 02:20:49 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2009/11/10 02:20:49 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2009/11/10 02:20:49 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2009/11/10 02:20:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2009/11/10 02:20:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2009/11/10 02:20:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2009/11/10 02:20:48 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2009/11/10 02:20:48 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2009/11/10 02:20:48 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2009/11/10 02:20:48 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2009/11/10 02:20:48 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2009/11/10 02:20:48 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2009/11/10 02:20:48 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2009/11/10 02:20:48 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2009/11/10 02:20:47 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2009/11/10 02:20:47 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2009/11/10 02:20:46 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2009/11/10 02:20:46 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2009/11/10 02:20:46 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2009/11/10 02:20:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2009/11/10 02:20:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2009/11/10 02:20:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2009/11/10 02:20:46 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2009/11/10 02:20:46 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2009/11/10 02:20:45 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2009/11/10 02:20:45 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2009/11/10 02:20:45 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2009/11/10 02:20:45 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2009/11/10 02:20:45 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2009/11/10 02:20:45 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2009/11/10 02:20:42 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2009/11/10 02:20:42 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2009/11/10 02:20:42 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2009/11/10 02:20:42 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2009/11/10 02:20:42 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2009/11/10 02:20:42 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2009/11/10 02:20:42 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2009/11/10 02:20:42 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2009/11/10 02:20:42 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2009/11/10 02:20:42 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2009/11/10 02:20:41 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2009/11/10 02:20:41 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2009/11/10 02:20:41 | 00,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2009/11/10 02:20:41 | 00,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2009/11/10 02:20:41 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2009/11/10 02:20:41 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2009/11/10 02:20:41 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2009/11/10 02:20:40 | 00,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2009/11/10 02:20:40 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2009/11/10 02:20:40 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2009/11/10 02:20:40 | 00,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2009/11/10 02:20:40 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2009/11/10 02:20:40 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2009/11/10 02:20:40 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2009/11/10 02:20:40 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2009/11/10 02:20:39 | 00,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2009/11/10 02:20:39 | 00,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2009/11/10 02:20:39 | 00,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2009/11/10 02:20:39 | 00,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2009/11/10 02:20:39 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2009/11/10 02:20:39 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2009/11/10 02:20:38 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2009/11/10 02:20:38 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2009/11/10 02:20:38 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys
[2009/11/10 02:20:38 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll
[2009/11/10 02:20:38 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2009/11/10 02:20:37 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2009/11/10 02:20:37 | 00,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2009/11/10 02:20:36 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2009/11/10 02:20:33 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2009/11/10 02:20:33 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2009/11/10 02:20:33 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2009/11/10 02:20:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2009/11/10 02:20:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2009/11/10 02:20:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2009/11/10 02:20:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2009/11/10 02:20:14 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2009/11/10 02:20:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2009/11/10 02:19:48 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009/11/10 02:19:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings
[2009/11/10 02:10:37 | 00,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2009/11/10 02:10:37 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2009/11/10 02:10:37 | 00,000,000 | R--D | C] -- C:\WINDOWS\Web
[2009/11/10 02:10:37 | 00,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\system32
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\system
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\security
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\repair
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\mui
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Media
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\java
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\ime
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Help
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Dell
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Config
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\addins
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2009/11/07 07:16:24 | 04,045,552 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\mbam-setup.exe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009/11/29 13:53:13 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe
[2009/11/29 13:51:38 | 00,010,292 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF
[2009/11/29 13:43:14 | 00,556,412 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/11/29 13:43:14 | 00,466,136 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/11/29 13:43:14 | 00,079,836 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/11/29 13:40:12 | 00,036,244 | ---- | M] () -- C:\WINDOWS\System32\nvwsapps.xml
[2009/11/29 13:40:11 | 00,195,368 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2009/11/29 13:39:58 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/11/29 13:38:24 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/11/29 13:38:22 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/11/29 13:37:44 | 04,456,448 | -H-- | M] () -- C:\Documents and Settings\Bob Kapolnek\NTUSER.DAT
[2009/11/29 13:37:23 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\Bob Kapolnek\ntuser.ini
[2009/11/29 12:16:33 | 01,986,662 | -H-- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\IconCache.db
[2009/11/28 17:24:21 | 00,195,368 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2009/11/28 14:40:43 | 00,008,192 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/11/27 07:21:00 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/11/26 09:57:01 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/11/25 14:49:34 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/11/25 11:49:25 | 00,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/11/23 08:15:17 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\dds.scr
[2009/11/22 13:22:44 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\settings.dat
[2009/11/22 13:22:31 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\RootRepeal.exe
[2009/11/22 13:14:43 | 00,002,497 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Drive Manager.lnk
[2009/11/22 11:15:12 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\HijackThis.lnk
[2009/11/22 09:18:54 | 00,135,888 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/11/22 09:17:32 | 00,471,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/11/22 03:07:59 | 00,000,582 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/11/20 16:42:27 | 00,001,875 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Carbonite Backup Drive.lnk
[2009/11/20 13:24:46 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/11/20 13:24:46 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/11/19 06:46:33 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\rx_image.Cache
[2009/11/18 07:55:36 | 00,374,324 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\bookmarks-2009-11-18.json
[2009/11/17 07:35:58 | 00,093,360 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2009/11/16 13:24:43 | 00,001,596 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Window Washer.lnk
[2009/11/16 09:36:17 | 00,001,931 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Easy Media Creator 10 Suite.lnk
[2009/11/16 05:19:39 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/11/16 04:52:19 | 00,000,234 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2009/11/16 04:51:20 | 00,001,923 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Roxio Creator Home.lnk
[2009/11/15 18:55:45 | 00,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\EOS Utility.lnk
[2009/11/15 18:55:13 | 00,000,923 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ZoomBrowser EX.lnk
[2009/11/15 18:50:39 | 00,000,227 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PIXELA Product Registration.url
[2009/11/15 18:50:39 | 00,000,227 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer Homepage.url
[2009/11/15 18:50:28 | 00,000,701 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Ver.3.lnk
[2009/11/15 18:50:28 | 00,000,695 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Player Ver.3 .lnk
[2009/11/15 18:50:28 | 00,000,625 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.3.lnk
[2009/11/12 08:13:34 | 00,000,746 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Microsoft Word.lnk
[2009/11/12 07:24:16 | 00,001,587 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Convert with deskPDF.lnk
[2009/11/11 12:55:29 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009/11/11 09:52:10 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2009/11/11 08:31:55 | 00,001,750 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Printer Status Monitor.lnk
[2009/11/11 08:08:06 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/11/11 08:08:06 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/11/11 08:08:06 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/11/11 08:08:06 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/11/11 08:08:06 | 00,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/11/11 07:12:41 | 00,176,080 | ---- | M] () -- C:\WINDOWS\hppins13.dat
[2009/11/11 07:10:23 | 00,000,158 | ---- | M] () -- C:\WINDOWS\System32\AddPort.ini
[2009/11/11 07:10:22 | 00,000,730 | ---- | M] () -- C:\WINDOWS\hpntwksetup.ini
[2009/11/10 13:23:14 | 00,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/10 12:32:44 | 00,001,787 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2009/11/10 10:36:56 | 00,001,731 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AutoCAD LT 2009.lnk
[2009/11/10 10:29:18 | 00,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Autodesk Design Review.lnk
[2009/11/10 10:26:30 | 00,032,376 | ---- | M] () -- C:\WINDOWS\PeachWLog.XML
[2009/11/10 10:25:38 | 00,001,792 | ---- | M] () -- C:\WINDOWS\PCW160.ini
[2009/11/10 10:25:31 | 00,002,635 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Knowledge Center.lnk
[2009/11/10 10:25:31 | 00,002,635 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Business Checks and Forms.lnk
[2009/11/10 10:25:30 | 00,001,609 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Complete Accounting 2009.lnk
[2009/11/10 10:22:41 | 00,004,633 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2009/11/10 10:21:13 | 00,066,560 | ---- | M] (Smithware, Inc.) -- C:\WINDOWS\System32\s2dtconv.dll
[2009/11/10 10:21:13 | 00,024,576 | ---- | M] (Smithware, Inc.) -- C:\WINDOWS\System32\Sbtrvd32.dll
[2009/11/10 10:21:13 | 00,007,358 | ---- | M] () -- C:\WINDOWS\support.ICO
[2009/11/10 10:21:13 | 00,007,358 | ---- | M] () -- C:\WINDOWS\forms.ICO
[2009/11/10 10:21:13 | 00,005,222 | ---- | M] () -- C:\WINDOWS\ADOBE.ICO
[2009/11/10 10:21:13 | 00,000,766 | ---- | M] () -- C:\WINDOWS\ACTGPR2.ICO
[2009/11/10 09:54:35 | 00,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2009/11/10 09:50:22 | 04,064,976 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\RICOH_MULTI-DEVICE_A00_R215879.exe
[2009/11/10 09:49:43 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009/11/10 09:49:43 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2009/11/10 09:48:32 | 09,295,083 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\Dell_Touchpad----Pointing-St_A09_R212017.exe
[2009/11/10 08:33:50 | 00,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2009/11/10 08:33:03 | 00,000,290 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2009/11/10 08:30:49 | 00,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/11/10 08:30:49 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009/11/10 08:30:49 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2009/11/10 08:30:49 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009/11/10 08:30:47 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2009/11/10 08:29:50 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2009/11/10 08:29:50 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2009/11/10 08:27:24 | 00,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/11/10 08:27:22 | 00,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2009/11/10 08:27:22 | 00,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2009/11/10 08:25:02 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2009/11/10 02:21:07 | 00,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2009/11/10 02:20:57 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[2009/11/07 07:57:54 | 04,045,552 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\mbam-setup.exe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009/11/24 11:15:00 | 00,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/11/22 13:22:44 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\settings.dat
[2009/11/22 11:34:47 | 00,524,288 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\dds.scr
[2009/11/22 11:15:12 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\HijackThis.lnk
[2009/11/20 12:49:09 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/11/20 12:49:08 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/11/19 08:29:20 | 00,008,192 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/11/19 06:46:33 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\rx_image.Cache
[2009/11/18 07:55:36 | 00,374,324 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\bookmarks-2009-11-18.json
[2009/11/17 07:22:26 | 00,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/11/16 13:24:43 | 00,001,596 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Window Washer.lnk
[2009/11/16 09:36:17 | 00,001,931 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Easy Media Creator 10 Suite.lnk
[2009/11/16 05:19:39 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/11/16 04:52:17 | 00,001,109 | ---- | C] () -- C:\WINDOWS\System32\drivers\PConfig.DCF
[2009/11/16 04:52:17 | 00,000,234 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009/11/16 04:51:20 | 00,001,923 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Roxio Creator Home.lnk
[2009/11/15 18:55:45 | 00,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\EOS Utility.lnk
[2009/11/15 18:55:13 | 00,000,923 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ZoomBrowser EX.lnk
[2009/11/15 18:50:39 | 00,000,227 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\PIXELA Product Registration.url
[2009/11/15 18:50:28 | 00,000,701 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Ver.3.lnk
[2009/11/15 18:50:28 | 00,000,695 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Player Ver.3 .lnk
[2009/11/15 18:50:28 | 00,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.3.lnk
[2009/11/12 13:14:55 | 00,010,292 | ---- | C] () -- C:\WINDOWS\System32\Config.MPF
[2009/11/12 08:13:34 | 00,000,746 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Microsoft Word.lnk
[2009/11/12 07:24:35 | 00,018,790 | ---- | C] () -- C:\WINDOWS\System32\ddmon.dll
[2009/11/12 07:24:16 | 00,001,587 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Convert with deskPDF.lnk
[2009/11/11 12:55:29 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009/11/11 09:52:10 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2009/11/11 08:31:55 | 00,001,750 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Printer Status Monitor.lnk
[2009/11/11 08:30:14 | 00,004,907 | R--- | C] () -- C:\WINDOWS\font1.sii
[2009/11/11 08:30:13 | 00,009,834 | ---- | C] () -- C:\WINDOWS\System32\SN0EUD61.MCF
[2009/11/11 08:30:13 | 00,000,100 | ---- | C] () -- C:\WINDOWS\System32\SN0ELMON.dat
[2009/11/11 08:30:13 | 00,000,074 | ---- | C] () -- C:\WINDOWS\System32\SN0ELMON.mtx
[2009/11/11 08:30:04 | 00,172,128 | R--- | C] () -- C:\WINDOWS\_isusr32.dll
[2009/11/11 08:29:59 | 00,041,752 | ---- | C] () -- C:\WINDOWS\System32\SCN2PM.chm
[2009/11/11 08:29:59 | 00,009,773 | ---- | C] () -- C:\WINDOWS\System32\SCN2PM.HLP
[2009/11/11 08:29:59 | 00,000,397 | ---- | C] () -- C:\WINDOWS\System32\SCN2PM.DAT
[2009/11/11 08:29:55 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\_isusr2k.dll
[2009/11/11 08:26:57 | 00,006,686 | R--- | C] () -- C:\WINDOWS\sn0eins.sii
[2009/11/11 08:26:57 | 00,006,386 | R--- | C] () -- C:\WINDOWS\sn0fins.sii
[2009/11/11 08:26:57 | 00,006,149 | R--- | C] () -- C:\WINDOWS\sn0hins.sii
[2009/11/11 08:26:57 | 00,002,957 | R--- | C] () -- C:\WINDOWS\sn0jins.sii
[2009/11/11 07:10:35 | 00,000,619 | R--- | C] () -- C:\WINDOWS\System32\hppapr13.dat
[2009/11/11 07:10:23 | 00,000,158 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2009/11/11 07:09:33 | 00,000,730 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2009/11/11 07:07:13 | 00,176,080 | ---- | C] () -- C:\WINDOWS\hppins13.dat
[2009/11/11 07:07:13 | 00,000,236 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2009/11/11 07:07:12 | 00,005,682 | ---- | C] () -- C:\WINDOWS\hppmdl13.dat
[2009/11/10 14:55:59 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\WavXMapDrive.bat
[2009/11/10 13:23:14 | 00,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/10 13:22:48 | 00,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/11/10 12:32:44 | 00,001,787 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2009/11/10 10:36:56 | 00,001,731 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AutoCAD LT 2009.lnk
[2009/11/10 10:29:18 | 00,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Autodesk Design Review.lnk
[2009/11/10 10:25:31 | 00,002,635 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Knowledge Center.lnk
[2009/11/10 10:25:31 | 00,002,635 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Business Checks and Forms.lnk
[2009/11/10 10:25:30 | 00,007,358 | ---- | C] () -- C:\WINDOWS\support.ICO
[2009/11/10 10:25:30 | 00,007,358 | ---- | C] () -- C:\WINDOWS\forms.ICO
[2009/11/10 10:25:30 | 00,005,222 | ---- | C] () -- C:\WINDOWS\ADOBE.ICO
[2009/11/10 10:25:30 | 00,001,609 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Complete Accounting 2009.lnk
[2009/11/10 10:25:30 | 00,000,766 | ---- | C] () -- C:\WINDOWS\ACTGPR2.ICO
[2009/11/10 10:21:30 | 00,032,376 | ---- | C] () -- C:\WINDOWS\PeachWLog.XML
[2009/11/10 10:02:13 | 00,001,875 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Carbonite Backup Drive.lnk
[2009/11/10 09:59:43 | 00,002,497 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Drive Manager.lnk
[2009/11/10 09:54:35 | 00,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/11/10 09:50:06 | 04,064,976 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\RICOH_MULTI-DEVICE_A00_R215879.exe
[2009/11/10 09:49:43 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009/11/10 09:49:43 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2009/11/10 09:48:01 | 09,295,083 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\Dell_Touchpad----Pointing-St_A09_R212017.exe
[2009/11/10 09:37:14 | 00,000,664 | ---- | C] () -- C:\WINDOWS\System32\dellsysids.enc
[2009/11/10 09:36:44 | 00,001,904 | ---- | C] () -- C:\WINDOWS\System32\SetupBD.din
[2009/11/10 09:36:40 | 00,002,900 | ---- | C] () -- C:\WINDOWS\System32\e1y5132.din
[2009/11/10 09:32:28 | 00,753,664 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2009/11/10 09:32:28 | 00,024,064 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2009/11/10 09:32:28 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\vcredist_x86.bat
[2009/11/10 09:29:57 | 00,195,368 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/11/10 09:29:57 | 00,195,368 | ---- | C] () -- C:\WINDOWS\System32\nvModes.001
[2009/11/10 09:28:08 | 00,189,853 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2009/11/10 09:28:08 | 00,036,244 | ---- | C] () -- C:\WINDOWS\System32\nvwsapps.xml
[2009/11/10 09:28:07 | 00,018,335 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2009/11/10 09:27:49 | 01,630,208 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009/11/10 09:27:48 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/11/10 09:27:48 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/11/10 09:27:47 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009/11/10 09:27:47 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\nvtuicpl.cpl
[2009/11/10 09:27:46 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/11/10 09:27:45 | 01,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009/11/10 09:27:42 | 00,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009/11/10 09:27:41 | 00,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009/11/10 08:35:41 | 00,000,178 | -HS- | C] () -- C:\Documents and Settings\Bob Kapolnek\ntuser.ini
[2009/11/10 08:35:40 | 04,456,448 | -H-- | C] () -- C:\Documents and Settings\Bob Kapolnek\NTUSER.DAT
[2009/11/10 08:33:50 | 00,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2009/11/10 08:33:03 | 00,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/11/10 08:32:52 | 00,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2009/11/10 08:32:28 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2009/11/10 08:32:28 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2009/11/10 08:32:27 | 00,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2009/11/10 08:32:14 | 00,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2009/11/10 08:32:13 | 01,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2009/11/10 08:32:07 | 00,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2009/11/10 08:32:06 | 00,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2009/11/10 08:32:05 | 00,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2009/11/10 08:31:54 | 13,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2009/11/10 08:31:48 | 00,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2009/11/10 08:31:45 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2009/11/10 08:31:35 | 00,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2009/11/10 08:31:32 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2009/11/10 08:31:32 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2009/11/10 08:31:32 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2009/11/10 08:31:32 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2009/11/10 08:31:31 | 00,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2009/11/10 08:31:31 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2009/11/10 08:31:31 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2009/11/10 08:31:31 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2009/11/10 08:31:29 | 00,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2009/11/10 08:31:29 | 00,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2009/11/10 08:31:29 | 00,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2009/11/10 08:31:29 | 00,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2009/11/10 08:31:29 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2009/11/10 08:31:29 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2009/11/10 08:31:29 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2009/11/10 08:31:28 | 00,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2009/11/10 08:31:28 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2009/11/10 08:31:28 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2009/11/10 08:31:28 | 00,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2009/11/10 08:31:27 | 00,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2009/11/10 08:31:27 | 00,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2009/11/10 08:30:49 | 00,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/11/10 08:30:49 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2009/11/10 08:30:49 | 00,000,000 | RHS- | C] () -- C:\IO.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2009/11/10 08:30:45 | 00,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2009/11/10 08:29:50 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2009/11/10 08:29:50 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2009/11/10 08:29:31 | 04,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2009/11/10 08:29:12 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2009/11/10 08:29:11 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2009/11/10 08:29:02 | 00,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2009/11/10 08:28:07 | 00,376,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2009/11/10 08:27:24 | 00,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/11/10 08:26:47 | 00,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2009/11/10 08:26:47 | 00,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2009/11/10 08:26:47 | 00,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2009/11/10 08:26:47 | 00,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2009/11/10 08:26:46 | 00,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2009/11/10 08:26:46 | 00,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2009/11/10 08:26:46 | 00,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2009/11/10 08:26:46 | 00,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2009/11/10 08:26:46 | 00,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2009/11/10 08:26:46 | 00,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2009/11/10 08:26:46 | 00,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2009/11/10 08:26:45 | 00,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2009/11/10 08:26:45 | 00,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2009/11/10 08:26:45 | 00,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2009/11/10 08:26:45 | 00,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2009/11/10 08:26:45 | 00,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2009/11/10 08:26:44 | 00,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2009/11/10 08:26:44 | 00,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2009/11/10 08:26:44 | 00,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2009/11/10 08:26:42 | 00,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2009/11/10 08:26:41 | 00,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2009/11/10 08:26:40 | 00,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2009/11/10 08:26:32 | 00,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009/11/10 02:21:07 | 00,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2009/11/10 02:21:06 | 00,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2009/11/10 02:21:00 | 01,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2009/11/10 02:21:00 | 00,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2009/11/10 02:20:59 | 00,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2009/11/10 02:20:59 | 00,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2009/11/10 02:20:56 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2009/11/10 02:20:56 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2009/11/10 02:20:54 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2009/11/10 02:20:54 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2009/11/10 02:20:47 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2009/11/10 02:20:47 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2009/11/10 02:20:45 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls
[2009/11/10 02:20:45 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2009/11/10 02:20:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2009/11/10 02:20:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2009/11/10 02:20:38 | 00,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2009/11/10 02:20:32 | 00,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2009/11/10 02:20:32 | 00,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2009/11/10 02:20:32 | 00,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2009/11/10 02:20:32 | 00,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2009/11/10 02:20:32 | 00,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2009/11/10 02:20:32 | 00,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2009/11/10 02:20:32 | 00,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2009/11/10 02:20:32 | 00,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2009/11/10 02:20:32 | 00,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2009/11/10 02:20:32 | 00,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2009/11/10 02:20:32 | 00,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2009/11/10 02:20:32 | 00,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2009/11/10 02:20:32 | 00,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2009/11/10 02:20:32 | 00,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2009/11/10 02:20:32 | 00,007,710 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2009/11/10 02:20:32 | 00,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2009/11/10 02:20:31 | 02,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2009/11/10 02:20:31 | 01,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2009/11/10 02:20:31 | 00,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2009/11/10 02:19:47 | 00,471,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/11/10 02:19:01 | 00,000,211 | -HS- | C] () -- C:\boot.ini
[2009/11/10 02:19:00 | 00,000,290 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2009/06/12 10:15:32 | 00,036,618 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Application Data\Comma Separated Values (Windows).ADR
[2009/05/22 06:10:44 | 00,000,760 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Application Data\setup_ldm.iss
[2008/11/26 06:09:24 | 00,000,135 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\fusioncache.dat
[2008/08/01 22:02:58 | 00,652,800 | ---- | C] () -- C:\WINDOWS\System32\SMgina.dll
[2008/04/18 18:10:00 | 00,001,792 | ---- | C] () -- C:\WINDOWS\PCW160.ini
[2008/03/18 13:02:52 | 00,143,360 | R--- | C] () -- C:\WINDOWS\System32\preflib.dll
[2008/02/05 13:28:20 | 00,000,051 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\setup.txt
[2007/10/26 20:00:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2007/10/18 17:36:54 | 00,061,440 | ---- | C] () -- C:\WINDOWS\System32\deskMenu2.dll
[2007/09/27 10:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/03/16 17:00:00 | 00,003,403 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2004/01/30 15:07:46 | 00,245,408 | ---- | C] () -- C:\WINDOWS\System32\unicows.dll
< End of report >

#6 arekayone

arekayone
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 29 November 2009 - 04:55 PM

Last part (extra.txt file)

OTL Extras logfile created on: 11/29/2009 11:48:19 AM - Run 1
OTL by OldTimer - Version 3.1.11.2 Folder = C:\Documents and Settings\Bob Kapolnek\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.95 Gb Total Space | 122.82 Gb Free Space | 82.46% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KAP-618B041117D
Current User Name: Bob Kapolnek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[HKEY_USERS\S-1-5-21-484763869-1767777339-1177238915-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %* File not found
cmdfile [open] -- "%1" %* File not found
comfile [open] -- "%1" %* File not found
exefile [open] -- "%1" %* File not found
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %* File not found
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1" File not found
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S File not found
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 File not found
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1583:TCP" = 1583:TCP:*:Enabled:Pervasive DBEngine
"3351:TCP" = 3351:TCP:*:Enabled:Pervasive DBEngine

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe" = C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent -- (McAfee, Inc.)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe" = C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe:*:Enabled:Pervasive PSQL Workgroup Engine -- ()
"D:\setup\HPPNIPRINT01.EXE" = D:\setup\HPPNIPRINT01.EXE:*:Enabled:hppniprint01.exe -- File not found
"D:\setup\HPPNIPRINT64.EXE" = D:\setup\HPPNIPRINT64.EXE:*:Enabled:hppniprint64.exe -- File not found
"D:\setup\HPPNICIFS01.EXE" = D:\setup\HPPNICIFS01.EXE:*:Enabled:hppnicifs01.exe -- File not found
"D:\setup\CustomPrnDnld\HPPCSTPG.EXE" = D:\setup\CustomPrnDnld\HPPCSTPG.EXE:*:Enabled:hppcstpg.exe -- File not found
"D:\setup\hpbtpg.exe" = D:\setup\hpbtpg.exe:*:Enabled:hpbtpg.exe -- File not found
"D:\setup\LaunchApp.exe" = D:\setup\LaunchApp.exe:*:Enabled:launchapp.exe -- File not found
"C:\Program Files\SHARP\Printer Status Monitor\Smon.exe" = C:\Program Files\SHARP\Printer Status Monitor\Smon.exe:*:Enabled:smon -- ()
"C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe" = C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe:*:Enabled:Managed Services Agent -- (McAfee, Inc.)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{0394CDC8-FABD-4ED8-B104-03393876DFDF}" = Roxio Creator Tools
"{041F04B1-F985-44E8-A070-C3EB1A39369F}" = Dell ControlPoint Connection Manager
"{07159635-9DFE-4105-BFC0-2817DB540C68}" = Roxio Activation Module
"{08E81ABD-79F7-49C2-881F-FD6CB0975693}" = Roxio Central Data
"{098122AB-C605-4853-B441-C0A4EB359B75}" = DirectXInstallService
"{0A3238D7-AB32-4E15-B717-F3E3F18B4A8C}" = Pervasive PSQL v10 Workgroup (32-bit)
"{0C34B801-6AEC-4667-B053-03A67E2D0415}" = Apple Application Support
"{0D397393-9B50-4C52-84D5-77E344289F87}" = Roxio Creator Data
"{12292C7B-2B49-4EAA-A16C-878245229BF5}" = hpzTLBXFX
"{1B1DA779-84D3-4E44-B07D-F0E28AF8D4AD}" = hppTLBXFXP2050
"{1B683082-8791-4D00-8ADE-6C8986FCCC68}" = Roxio CinePlayer
"{1F54DAFA-9261-4A62-B59D-6C9F26B48FE4}" = Roxio Central Tools
"{2223FC2F-B862-4F83-BC9E-DDF2DADF2859}" = Intel® Network Connections 13.0.42.0
"{2614F54E-A828-49FA-93BA-45A3F756BFAA}" = 32 Bit HP CIO Components Installer
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java™ 6 Update 17
"{2B818257-E6C7-4841-8C29-C5C9A982BCE5}" = RICOH R5U241 / R5C847 Media Driver ver.2.04.01.00
"{2F4C24E6-CBD4-4AAC-B56F-C9FD44DE5668}" = Roxio Drag-to-Disc
"{30465B6C-B53F-49A1-9EBA-A3F187AD502E}" = Roxio Update Manager
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3A95D49D-0076-4DB7-A91E-0E685DC6D6AD}" = ImageMixer 3 SE Ver.3
"{3E67A8DA-FE7B-4160-8465-F5571EA18753}" = Roxio Disc Gallery
"{42929F0F-CE14-47AF-9FC7-FF297A603021}" = Dell Resource CD
"{44155EEF-2BFC-47F3-9C27-59D6B6D67445}" = hppManualsP2050
"{450063AA-643B-417C-8CF5-405BA3F4EF40}" = Autodesk Design Review 2009
"{47C3A2B9-9D4E-49BB-9FF2-84B718D6E803}" = hppusgP2050
"{48B0F38D-1913-44F3-99AA-D4C55A2B038E}" = Drive Manager
"{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"{5783F2D7-7009-0409-0002-0060B0CE6BBA}" = AutoCAD LT 2009 - English
"{5A06423A-210C-49FB-950E-CB0EB8C5CEC7}" = Roxio BackOnTrack
"{60B2315F-680F-4EB3-B8DD-CCDC86A7CCAB}" = Roxio File Backup
"{619CDD8A-14B6-43A1-AB6C-0F4EE48CE048}" = Roxio Creator Copy
"{6675CA7F-E51B-4F6A-99D4-F8F0124C6EAA}" = Roxio Express Labeler 3
"{67165ED2-C6C7-4A4D-8708-89C3BAA2CA93}" = hppPQVideoP2050
"{6956856F-B6B3-4BE0-BA0B-8F495BE32033}" = Apple Software Update
"{6F5E2F4A-377D-4700-B0E3-8F7F7507EA15}" = CustomerResearchQFolder
"{6F801026-6AF0-4520-9153-4C9B4CAAB361}" = HP LaserJet P2050 Series 1.0
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{73A4F29F-31AC-4EBD-AA1B-0CC5F18C8F83}" = Roxio Central Audio
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{809ABBD7-BEA4-4428-813B-FBF174C9AB06}" = Peachtree Accounting 2009
"{818ABC3C-635C-4651-8183-D0E9640B7DD1}" = HP Update
"{8215AC14-BFC2-4ECC-96D6-1030202F8BDF}" = Visual C++ 8.0 x86 Runtime Setup Package
"{83FFCFC7-88C6-41C6-8752-958A45325C82}" = Roxio Creator Audio
"{89B6F63A-7E0C-424A-9D39-C4EF59E96D78}" = hppQFolderP2050
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8BCB844B-0814-4354-A413-1063DB4618E9}" = PeachTree Signature Ready Forms
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Roxio CinePlayer Decoder Pack
"{90120000-0010-0409-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (English) 12
"{90120000-0015-0409-0000-0000000FF1CE}" = Microsoft Office Access MUI (English) 2007
"{90120000-0015-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0016-0409-0000-0000000FF1CE}" = Microsoft Office Excel MUI (English) 2007
"{90120000-0016-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0018-0409-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (English) 2007
"{90120000-0018-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0019-0409-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (English) 2007
"{90120000-0019-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001A-0409-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (English) 2007
"{90120000-001A-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001B-0409-0000-0000000FF1CE}" = Microsoft Office Word MUI (English) 2007
"{90120000-001B-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{3EC77D26-799B-4CD8-914F-C1565E796173}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-040C-0000-0000000FF1CE}" = Microsoft Office Proof (French) 2007
"{90120000-001F-040C-0000-0000000FF1CE}_ENTERPRISER_{430971B1-C31E-45DA-81E0-72C095BAB72C}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-001F-0C0A-0000-0000000FF1CE}" = Microsoft Office Proof (Spanish) 2007
"{90120000-001F-0C0A-0000-0000000FF1CE}_ENTERPRISER_{F7A31780-33C4-4E39-951A-5EC9B91D7BF1}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-002C-0409-0000-0000000FF1CE}" = Microsoft Office Proofing (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (English) 2007
"{90120000-0044-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-006E-0409-0000-0000000FF1CE}" = Microsoft Office Shared MUI (English) 2007
"{90120000-006E-0409-0000-0000000FF1CE}_ENTERPRISER_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00A1-0409-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (English) 2007
"{90120000-00A1-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-00BA-0409-0000-0000000FF1CE}" = Microsoft Office Groove MUI (English) 2007
"{90120000-00BA-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0114-0409-0000-0000000FF1CE}" = Microsoft Office Groove Setup Metadata MUI (English) 2007
"{90120000-0114-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0115-0409-0000-0000000FF1CE}" = Microsoft Office Shared Setup Metadata MUI (English) 2007
"{90120000-0115-0409-0000-0000000FF1CE}_ENTERPRISER_{FAD8A83E-9BAC-4179-9268-A35948034D85}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{90120000-0117-0409-0000-0000000FF1CE}" = Microsoft Office Access Setup Metadata MUI (English) 2007
"{90120000-0117-0409-0000-0000000FF1CE}_ENTERPRISER_{4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{BEE75E01-DD3F-4D5F-B96C-609E6538D419}" = 2007 Microsoft Office Suite Service Pack 1 (SP1)
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A9A1828-31D1-4590-A99F-022B7237AFAE}" = Roxio MediaShare
"{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = Dell Touchpad
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{A429C2AE-EBF1-4F81-A221-1C115CAADDAD}" = QuickTime
"{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2
"{B6A26DE5-F2B5-4D58-9570-4FC760E00FCD}" = Roxio Central Copy
"{B8DBED1E-8BC3-4d08-B94A-F9D7D88E9BBF}" = HPSSupply
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{BF83EFE2-C9F0-40D4-841C-2066668C1D7A}" = Roxio Easy Media Creator 10 Suite
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C484CC8D-03CF-4022-89C4-DB4F02E8A15B}" = Crystal Reports 2008 Runtime
"{C8B0680B-CDAE-4809-9F91-387B6DE00F7C}" = Roxio Creator DE
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CCB9B81A-167F-4832-B305-D2A0430840B3}" = WebReg
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D2E0F0CC-6BE0-490b-B08B-9267083E34C9}" = MarketResearch
"{D8AC1EB5-E8B0-44A0-B113-899407188A2F}" = hppFonts
"{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio
"{EC877639-07AB-495C-BFD1-D63AF9140810}" = Roxio Activation Module
"{ED439A64-F018-4DD4-8BA5-328D85AB09AB}" = Roxio Central Core
"3DSexVilla2-080.001" = thriXXX 3DSexVilla2-080.001
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"AutoCAD LT 2009 - English" = AutoCAD LT 2009 - English
"Autodesk Design Review 2009" = Autodesk Design Review 2009
"Broadcom 802.11b Network Adapter" = Dell Wireless WLAN Card Utility
"CAL" = Canon Camera Access Library
"CameraWindowDVC5" = Canon Utilities CameraWindow DC_DV 5 for ZoomBrowser EX
"CameraWindowDVC6" = Canon Utilities CameraWindow DC_DV 6 for ZoomBrowser EX
"CameraWindowLauncher" = Canon Utilities CameraWindow
"Carbonite Backup" = Carbonite
"CSCLIB" = Canon Camera Support Core Library
"deskPDF 2.5 Professional_is1" = deskPDF 2.5 Professional Edition
"ENTERPRISER" = Microsoft Office Enterprise 2007
"EOS Utility" = Canon Utilities EOS Utility
"GPL Ghostscript_is1" = Docudesk GPL Ghostscript 8.15
"HijackThis" = HijackThis 2.0.2
"HPExtendedCapabilities" = HP Customer Participation Program 10.0
"ie8" = Windows Internet Explorer 8
"InstallShield_{48B0F38D-1913-44F3-99AA-D4C55A2B038E}" = Drive Manager
"InstallShield_{4A7FDA4D-F4D7-4A49-934A-066D59A43C7E}" = SmartSound Quicktracks Plugin
"InstallShield_{809ABBD7-BEA4-4428-813B-FBF174C9AB06}" = Peachtree Complete Accounting 2009
"Integration Services" = Sage Software Integration Services
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"McAfee Managed Firewall" = McAfee Firewall Protection Service
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox (3.5.5)" = Mozilla Firefox (3.5.5)
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"MVS" = McAfee Virus and Spyware Protection Service
"MyCamera" = Canon Utilities MyCamera
"NVIDIA Drivers" = NVIDIA Drivers
"Printer Status Monitor" = Printer Status Monitor Version 4.2.0
"RAW Image Task" = Canon RAW Image Task for ZoomBrowser EX
"Red Light Center 3D Client" = Red Light Center 3D Client
"RemoteCaptureTask" = Canon Utilities RemoteCapture Task for ZoomBrowser EX
"SHARP MX-2300 2700 3500 4500 Series PCL PS Printer Driver" = SHARP MX Series PCL/PS Printer Driver
"Shop for HP Supplies" = Shop for HP Supplies
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Window Washer" = Window Washer
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"WinRAR archiver" = WinRAR archiver
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"ZoomBrowser EX" = Canon Utilities ZoomBrowser EX
"ZoomBrowser EX Memory Card Utility" = Canon ZoomBrowser EX Memory Card Utility

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-484763869-1767777339-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"309a46b1dc89b774" = Dell Driver Download Manager
"Move Media Player" = Move Media Player

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 11/17/2009 2:30:35 PM | Computer Name = KAP-618B041117D | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\BOB KAPOLNEK\MY DOCUMENTS\KAP
ARCHITECTURE BUSINESS FILES\FAIRBANKS RESIDENCE\FAIRBANKS HOUSE DRAWINGS2.DWL>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)

Error - 11/17/2009 2:30:35 PM | Computer Name = KAP-618B041117D | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\BOB KAPOLNEK\MY DOCUMENTS\KAP
ARCHITECTURE BUSINESS FILES\FAIRBANKS RESIDENCE\FAIRBANKS HOUSE DRAWINGS2.DWL2>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)

Error - 11/17/2009 2:30:35 PM | Computer Name = KAP-618B041117D | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\BOB KAPOLNEK\MY DOCUMENTS\KAP
ARCHITECTURE BUSINESS FILES\FAIRBANKS RESIDENCE\FAIRBANKS HOUSE DRAWINGS2.DWG>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)

Error - 11/17/2009 2:30:35 PM | Computer Name = KAP-618B041117D | Source = Windows Search Service | ID = 3013
Description = The entry <C:\DOCUMENTS AND SETTINGS\BOB KAPOLNEK\MY DOCUMENTS\KAP
ARCHITECTURE BUSINESS FILES\FAIRBANKS RESIDENCE\FAIRBANKS HOUSE DRAWINGS2.DWG>
in the hash map cannot be updated. Context: Application, SystemIndex Catalog Details:
A
device attached to the system is not functioning. (0x8007001f)

Error - 11/18/2009 2:39:22 AM | Computer Name = KAP-618B041117D | Source = Application Error | ID = 1000
Description = Faulting application SMManager.exe, version 1.0.4.0, faulting module
msvcr80.dll, version 8.0.50727.762, fault address 0x00008a8c.

Error - 11/22/2009 10:08:02 AM | Computer Name = KAP-618B041117D | Source = MSDTC Client | ID = 4427
Description = Failed to initialize the needed name objects. Error Specifics: d:\comxp_sp3\com\com1x\dtc\dtc\msdtcprx\src\dtcinit.cpp:215,
Pid: 5860 No Callstack, CmdLine: C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC7923

Error - 11/22/2009 10:08:02 AM | Computer Name = KAP-618B041117D | Source = COM+ | ID = 135763
Description = The run-time environment was unable to initialize for transactions
required to support transactional components. Make sure that MS-DTC is running.
(DtcGetTransactionManagerEx(): hr = 0x8004d02

[ System Events ]
Error - 11/19/2009 4:32:46 PM | Computer Name = KAP-618B041117D | Source = Service Control Manager | ID = 7034
Description = The Dell ControlPoint Button Service service terminated unexpectedly.
It has done this 1 time(s).

Error - 11/19/2009 5:49:23 PM | Computer Name = KAP-618B041117D | Source = Service Control Manager | ID = 7000
Description = The SessionLauncher service failed to start due to the following error:
%%3


< End of report >

#7 etavares

etavares

    Bleepin' Remover


  • Malware Response Team
  • 15,514 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:13 AM

Posted 03 December 2009 - 07:07 AM

Hello, arekayone.

I'm really sorry for the delay. Future posts will come much quicker.

Your computer definitely has some adware and trojans on your machine which explain the popups. A few things to note:
  • I'm a senior trainee here at Bleeping Computer. That means my posts will be checked by the staff before I can post, so there may be a slight delay (e.g.1-2days) in my responses at times.
  • Please try to respond within 3 days, or the thread may be closed. Each open thread ties up resources that could be helping others, so please be considerate.
  • Please stay with me until the end. A clean scan does NOT mean we are done. The malware may have opened up holes in your computer's security and newer threats may not be picked up by virus scans. Please wait until I say the machine is clean and stick with me until then.
  • If you're unsure about anything, please ask!
  • Finally, please do not run any scans or fix anything unless I tell you to. We can end up fighting each other and potentially lose the computer.
I know that you ran MBAM earlier, but their definitions are constantly updating, so we'll start with that.



Step 1

Please download Malwarebytes Anti-Malware and save it to your desktop.
alternate download link 1
alternate download link 2

MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.



Step 2

Please read and follow all these instructions very carefully.
  • Please download GooredFix and save it to your Desktop.
  • Double-click GooredFix.exe to run it.
  • A log will open, please post the contents of that log in your next reply (it can also be found on your desktop, called Goored.txt).


Step 3

In your reply, please post the MBAM log, the GooredFix log and a fresh DDS or OTL log. Thanks!


If I don't respond within 2 days, please feel free to PM me.
Please don't ask for help via PM. The forums are there for a reason. Please post in the forums so others may benefit as well.

Posted Image
Unified Network of Instructors and Trusted Eliminators
 


#8 arekayone

arekayone
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 03 December 2009 - 08:39 AM

Etavares -

Thanks so much for your help so far. I reinstalled Malwarebytes and ran it; it found quite a bit of Adware. I have attached the log, along with the Gooredfix and OTL logs. I have also noticed that whenever I open Firefox (Google search is my home page) an additional tab opens up with "hotebar.com", which appears to be some sort of search engine. It is still doing this after I completed the steps you have outlined.

I am sending in multiple posts as the OTL is very large again.

Regards,

Bob

Malwarebytes' Anti-Malware 1.41
Database version: 3284
Windows 5.1.2600 Service Pack 3

12/3/2009 6:59:59 AM
mbam-log-2009-12-03 (06-59-59).txt

Scan type: Quick Scan
Objects scanned: 121249
Time elapsed: 4 minute(s), 15 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 6
Registry Keys Infected: 19
Registry Values Infected: 4
Registry Data Items Infected: 0
Folders Infected: 30
Files Infected: 395

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
C:\Program Files\Web Search Operator\3.1.0.1800\WSOCommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACECommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\CPACommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\components\CPAFFAddOn.dll (Adware.Agent) -> Delete on reboot.

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\TypeLib\{565dd573-549e-4da9-8cd7-6ae3df25339a} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\Interface\{877f3eab-4462-44df-8475-6064eafd7fbf} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{1d74e9dd-8987-448b-b2cb-67fff2b8a932} (Adware.Agent) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{8ceb185e-81a5-46d3-bc20-c555d605afbd} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{a72522ba-9ff3-4c83-abc6-9b476728a396} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{c5762628-ae15-4ca6-96c4-b00dd17f3419} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CLASSES_ROOT\CLSID\{d062e03e-65ca-49e4-9b15-31938ba98922} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\{D45817B8-3EAD-4d1d-8FCA-EC63A8E35DE2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\AppDataLow\SOFTWARE\Internet Today (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Automated Content Enhancer (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_CURRENT_USER\SOFTWARE\Customized Platform Advancer (Adware.DoubleD) -> Quarantined and deleted successfully.

Registry Values Infected:
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Internet Explorer\Toolbar\WebBrowser\{d45817b8-3ead-4d1d-8fca-ec63a8e35de2} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{8141440e-08f0-4339-9959-5c31c6a69f23} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{e63605fc-d583-4c81-867f-9457bdb3ea1b} (Adware.DoubleD) -> Quarantined and deleted successfully.
HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla\Firefox\Extensions\{e889f097-b0be-471b-89ad-b86b6f04b506} (Adware.DoubleD) -> Quarantined and deleted successfully.

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
C:\Program Files\Internet Today\1.1.0.1090 (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800 (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050 (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520 (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\Data (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\chrome (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\chrome\content (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\components (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer (Adware.Agent) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050 (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520 (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Internet Today (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Web Search Operator (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Web Search Operator\3.1.0.1800 (Adware.DoubleD) -> Quarantined and deleted successfully.

Files Infected:
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOn.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\InternetToday.ico (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\InternetToday.skf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\mfc80.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\Microsoft.VC80.CRT.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\Microsoft.VC80.MFC.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\msvcr80.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\PixelLogExe.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\SkinCrafterDll.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Internet Today\1.1.0.1090\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\WSOCommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\wsopx.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\WSOAddOn.jar (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\content\WSOAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\chrome\content\WSOAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Web Search Operator\3.1.0.1800\FF\components\WSOFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACECommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOnSub.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\ACEIEAddOnSubL.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\acepx.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\ACEAddOn.jar (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\content\ACEAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\chrome\content\ACEAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Automated Content Enhancer\4.1.0.5050\FF\components\ACEFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\CPACommon.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\CPAHelper.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\CPAIEAddOnSub.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\CPAIEAddOnSubL.dll (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\unins000.dat (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\unins000.exe (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\Data\config.md (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\chrome.manifest (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\install.rdf (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\chrome\CPAAddOn.jar (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\chrome\content\CPAAddOn.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\chrome\content\CPAAddOn.xul (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\components\CPAFFAddOn.dll (Adware.Agent) -> Delete on reboot.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\components\CPAFFAddOn.xpt (Adware.Agent) -> Quarantined and deleted successfully.
C:\Program Files\Customized Platform Advancer\3.1.0.1520\FF\components\CPAFFHelperComponent.js (Adware.Agent) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\ipdata.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091115-192134.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091115-192203.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-045803.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-050543.312.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-051357.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-051400.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-051457.046.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-051602.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-051711.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-053216.000.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-055228.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-072534.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-083743.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-093104.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-105101.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-110028.359.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-115450.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-122805.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-123444.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-133133.125.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-143122.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-151549.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-153730.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-154848.468.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-180908.875.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-195017.796.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-195613.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-200056.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091116-200057.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-062534.171.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-064518.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-071031.000.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-074242.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-143400.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-151959.203.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-181134.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-201541.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091117-202433.578.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-072830.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-072833.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-075523.734.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-075632.046.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-110452.484.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-152635.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-163154.500.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-163155.218.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-164709.390.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-182258.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091118-182258.875.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-050126.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-061224.328.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-102405.906.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-104433.828.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-140756.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-155710.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-165544.843.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-165812.937.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-170454.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-171338.781.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-171506.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091119-172031.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-063148.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-115030.109.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-124216.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-124240.843.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-124243.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-124610.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-125154.796.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-125336.515.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-125505.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-132845.046.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-132945.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-163959.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-164007.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-202137.218.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091120-211718.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-044150.015.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-090822.640.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-103327.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-124352.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-172030.781.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-173209.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-195355.734.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091121-205033.171.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-080342.218.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-081401.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-091427.218.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-091429.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-100052.687.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-101240.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-110053.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-121347.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-131903.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-140924.640.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-140928.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-170103.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-181744.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-205522.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091122-223420.171.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-063343.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-101433.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-101730.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-102029.406.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-121900.859.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-153118.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-170012.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091123-183914.432.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091124-055426.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091124-073411.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091124-081916.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091124-111553.953.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091124-115114.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091124-125342.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-060220.937.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-115100.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091125-163150.515.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-204911.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091126-205654.859.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-070639.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-091013.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-092536.328.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-092751.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-112743.453.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-125245.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-161058.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-171611.703.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-174716.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-194442.937.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091127-210138.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-063328.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-100913.953.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-105802.468.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-112112.218.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-135743.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-145056.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-150132.921.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-172607.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-175450.171.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-203144.468.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091128-213308.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-081305.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-132543.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-135229.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-183035.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091129-193632.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-075832.171.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-095829.515.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-113642.828.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-121050.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-122635.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-123720.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-135240.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-163529.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091130-211133.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-073834.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-094640.453.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-095746.734.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-105335.156.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-143201.703.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-145536.953.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-165712.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-175647.437.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-185653.125.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-191536.828.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-202327.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091201-212237.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-054518.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-122419.343.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091202-145206.968.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\NP_20091203-055048.093.log (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Automated Content Enhancer\4.1.0.5050\rstatus.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091115-192142.359.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091115-192203.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-045803.328.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-050543.328.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-051358.000.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-051400.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-051457.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-051602.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-051711.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-053216.218.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-055228.046.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-072534.312.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-083743.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-093104.203.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-105101.734.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-110028.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-115450.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-122805.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-123444.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-133133.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-143122.109.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-151549.046.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-153730.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-154848.484.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-180908.890.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-195017.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-195613.828.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-200056.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091116-200057.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-062534.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-064518.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-071031.015.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-074242.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-143401.109.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-151959.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-181134.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-201541.828.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091117-202433.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-072830.625.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-072833.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-075523.750.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-110452.500.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-152635.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-163154.515.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-163155.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-164709.421.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-182258.046.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091118-182258.875.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-050126.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-061224.406.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-104434.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-140756.390.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-155710.343.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-165812.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-170454.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-171338.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-171506.625.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091119-172031.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-063148.703.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-115030.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-124216.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-124240.859.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-124243.687.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-124610.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-125154.812.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-125505.312.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-132845.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-132945.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-163959.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-164007.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-202137.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091120-211718.312.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-044150.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-090822.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-103327.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-124352.546.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-172030.796.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-173209.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-195355.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091121-205033.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-080342.453.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-081401.640.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-091427.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-091429.375.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-100052.750.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-101240.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-110053.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-121347.343.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-131903.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-140924.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-140928.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-170103.796.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-181744.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-205522.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091122-223420.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-063343.843.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-101433.781.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-101730.265.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-102029.421.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-121900.875.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-153118.625.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-170012.453.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091123-183915.057.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091124-055427.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091124-073411.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091124-081916.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091124-111554.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091124-115114.890.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091124-125342.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091125-060221.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091125-115100.734.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091125-163150.593.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091126-204911.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-070639.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-091013.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-092536.343.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-092751.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-112743.468.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-125245.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-161058.250.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-171611.718.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-174716.109.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-194442.968.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091127-210138.765.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-063328.671.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-100914.000.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-105802.484.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-112112.234.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-135743.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-145056.296.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-150132.937.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-172607.562.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-175450.187.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-203144.484.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091128-213308.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091129-081305.625.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091129-132543.609.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091129-135229.468.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091129-183036.921.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091129-193632.656.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-075832.875.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-095829.531.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-113642.890.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-121051.031.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-123720.156.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-135241.000.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-163530.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091130-211133.171.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-073835.062.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-094640.515.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-095747.000.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-105335.437.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-143201.875.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-145537.093.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-165712.687.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-175647.453.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-185653.140.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-191536.843.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-202327.781.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091201-212237.078.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091202-054518.281.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091202-122419.359.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091202-145206.984.log (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\HJHP_20091203-055048.109.log (Adware.DoubleD) -> Delete on reboot.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\ipdata.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Customized Platform Advancer\3.1.0.1520\rstatus.md (Adware.DoubleD) -> Quarantined and deleted successfully.
C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Web Search Operator\3.1.0.1800\config.md (Adware.DoubleD) -> Quarantined and deleted successfully.


GooredFix by jpshortstuff (27.11.09.1)
Log created at 07:09 on 03/12/2009 (Bob Kapolnek)
Firefox version 3.5.5 (en-US)

========== GooredScan ==========


========== GooredLog ==========

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd} [15:54 10/11/2009]
{CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} [14:08 11/11/2009]

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"jqs@sun.com"="C:\Program Files\Java\jre6\lib\deploy\jqs\ff" [14:08 11/11/2009]
"{20a82645-c095-46ed-80e3-08825760534b}"="c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\" [14:16 22/11/2009]

-=E.O.F=-

#9 arekayone

arekayone
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 03 December 2009 - 08:47 AM

Etavares -

OTL Log...gonna take multiple posts because it is so big.....

OTL logfile created on: 12/3/2009 7:24:45 AM - Run 7
OTL by OldTimer - Version 3.1.11.4 Folder = C:\Documents and Settings\Bob Kapolnek\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

2.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 100.00% Memory free
4.00 Gb Paging File | 4.00 Gb Available in Paging File | 100.00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 148.95 Gb Total Space | 71.74 Gb Free Space | 48.16% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KAP-618B041117D
Current User Name: Bob Kapolnek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2009/12/03 07:24:31 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe
PRC - [2009/11/12 16:33:10 | 00,141,600 | ---- | M] (Apple Inc.) -- C:\Program Files\iTunes\iTunesHelper.exe
PRC - [2009/11/12 16:33:00 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe
PRC - [2009/11/11 08:08:06 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2009/11/11 08:08:06 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009/11/11 07:38:32 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2009/10/22 23:57:46 | 00,472,384 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.exe
PRC - [2009/10/22 23:55:38 | 00,282,824 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe
PRC - [2009/09/25 11:15:06 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\McShield.exe
PRC - [2009/09/25 11:13:32 | 00,014,144 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\EngineServer.exe
PRC - [2009/09/18 20:09:14 | 01,980,560 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteService.exe
PRC - [2009/09/18 20:09:14 | 00,670,864 | R--- | M] (Carbonite, Inc.) -- C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe
PRC - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
PRC - [2009/05/08 16:26:32 | 00,893,112 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MpfSrv.exe
PRC - [2008/12/21 12:48:50 | 00,200,704 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\Apoint.exe
PRC - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe
PRC - [2008/12/08 15:50:04 | 00,054,576 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe
PRC - [2008/10/25 11:44:34 | 00,031,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2008/09/16 20:03:50 | 00,050,472 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApMsgFwd.exe
PRC - [2008/08/28 15:20:22 | 00,049,250 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\hidfind.exe
PRC - [2008/08/01 22:06:48 | 00,069,632 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe
PRC - [2008/08/01 22:04:48 | 01,486,848 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe
PRC - [2008/06/28 09:45:00 | 00,159,812 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2008/06/03 15:28:50 | 00,386,328 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe
PRC - [2008/06/02 11:42:54 | 02,220,032 | ---- | M] (Dell Inc.) -- C:\WINDOWS\system32\WLTRAY.EXE
PRC - [2008/06/02 11:42:54 | 00,024,064 | ---- | M] () -- C:\WINDOWS\system32\WLTRYSVC.EXE
PRC - [2008/06/02 11:42:50 | 01,961,984 | ---- | M] (Dell Inc.) -- C:\WINDOWS\system32\BCMWLTRY.EXE
PRC - [2008/05/30 03:29:28 | 00,593,920 | ---- | M] (Dell, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe
PRC - [2008/05/26 22:19:14 | 00,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Desktop Search\WindowsSearch.exe
PRC - [2008/05/22 17:32:08 | 00,221,273 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\DellXPM09B_6017v022\WDM\stacsv.exe
PRC - [2008/05/22 17:31:16 | 00,442,467 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe
PRC - [2008/05/20 16:21:30 | 00,466,944 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\AESTFltr.exe
PRC - [2008/05/15 04:27:44 | 00,180,313 | ---- | M] () -- C:\Program Files\SHARP\Printer Status Monitor\Smon.exe
PRC - [2008/04/28 15:49:36 | 00,253,952 | ---- | M] (PIXELA CORPORATION) -- C:\Program Files\PIXELA\ImageMixer 3 SE Ver.3\CameraMonitor.exe
PRC - [2008/04/14 06:00:00 | 01,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008/04/02 12:06:48 | 00,053,248 | ---- | M] (HP) -- C:\Program Files\HP\ToolboxFX\bin\HPTLBXFX.exe
PRC - [2007/11/26 14:47:40 | 00,598,856 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Washer\WasherSvc.exe
PRC - [2007/11/26 14:47:30 | 01,206,600 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Washer\wwDisp.exe
PRC - [2007/10/25 17:23:36 | 00,049,152 | ---- | M] (Alps Electric Co., Ltd.) -- C:\Program Files\DellTPad\ApntEx.exe
PRC - [2007/10/09 16:21:06 | 00,169,328 | ---- | M] (Maxtor Corporation) -- C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe
PRC - [2007/10/09 16:21:02 | 00,124,280 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe
PRC - [2007/09/05 11:25:56 | 00,455,968 | ---- | M] () -- C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe
PRC - [2007/08/24 15:52:46 | 00,166,384 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe
PRC - [2007/08/24 15:52:42 | 00,240,112 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe
PRC - [2007/08/24 15:52:38 | 01,083,888 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe
PRC - [2007/08/24 15:52:02 | 00,018,928 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\CPSHelpRunner10.exe
PRC - [2007/08/14 03:44:38 | 00,113,136 | ---- | M] () -- C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe
PRC - [2007/05/07 11:04:28 | 00,106,496 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\ScheduledLaunch\HP LaserJet P2050 Series\bin\hppschlnch.exe
PRC - [2007/01/31 14:55:42 | 00,096,370 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe
PRC - [2006/09/11 04:40:32 | 00,218,032 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe


========== Modules (SafeList) ==========

MOD - [2009/12/03 07:24:31 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe


========== Win32 Services (SafeList) ==========

SRV - File not found -- -- (SessionLauncher)
SRV - [2009/11/12 16:33:00 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service)
SRV - [2009/11/11 08:08:06 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009/11/10 10:37:05 | 00,085,096 | ---- | M] (Autodesk) -- C:\Program Files\Common Files\Autodesk Shared\Service\AdskScSrv.exe -- (Autodesk Licensing Service)
SRV - [2009/10/22 23:55:38 | 00,282,824 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\Agent\myAgtSvc.exe -- (myAgtSvc)
SRV - [2009/09/25 11:15:06 | 00,144,704 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\McShield.exe -- (McShield)
SRV - [2009/09/25 11:13:32 | 00,014,144 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\Managed VirusScan\VScan\EngineServer.exe -- (EngineServer)
SRV - [2009/09/18 20:09:14 | 01,980,560 | R--- | M] (Carbonite, Inc. (www.carbonite.com)) -- C:\Program Files\Carbonite\Carbonite Backup\carboniteservice.exe -- (CarboniteService)
SRV - [2009/08/28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009/05/08 16:26:32 | 00,893,112 | ---- | M] (McAfee, Inc.) -- C:\Program Files\McAfee\MPF\MPFSrv.exe -- (MpfService)
SRV - [2008/12/12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008/11/04 01:06:28 | 00,441,712 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008/10/25 11:44:08 | 00,065,888 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2008/08/01 22:06:48 | 00,069,632 | ---- | M] (Smith Micro Software, Inc.) -- C:\Program Files\Dell\Dell ControlPoint\Connection Manager\SMManager.exe -- (SMManager)
SRV - [2008/07/18 13:13:20 | 00,053,760 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12)
SRV - [2008/07/18 13:13:20 | 00,044,032 | ---- | M] (Hewlett-Packard) -- C:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12)
SRV - [2008/06/28 09:45:00 | 00,159,812 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)
SRV - [2008/06/03 15:28:50 | 00,386,328 | ---- | M] (Dell Inc.) -- C:\Program Files\Dell\Dell ControlPoint\DCPButtonSvc.exe -- (buttonsvc32)
SRV - [2008/06/02 11:42:54 | 00,024,064 | ---- | M] () -- C:\WINDOWS\System32\WLTRYSVC.EXE -- (wltrysvc)
SRV - [2008/05/22 17:32:08 | 00,221,273 | ---- | M] (IDT, Inc.) -- c:\Program Files\IDT\DellXPM09B_6017v022\WDM\stacsv.exe -- (STacSV)
SRV - [2007/11/26 14:47:40 | 00,598,856 | ---- | M] (Webroot Software, Inc.) -- C:\Program Files\Webroot\Washer\WasherSvc.exe -- (wwEngineSvc)
SRV - [2007/10/09 16:21:02 | 00,124,280 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\Basics\Service\SyncServicesBasics.exe -- (Basics Service)
SRV - [2007/09/05 11:25:56 | 00,455,968 | ---- | M] () -- C:\Program Files\Pervasive Software\PSQL\bin\w3dbsmgr.exe -- (psqlWGE)
SRV - [2007/08/24 15:53:16 | 00,362,992 | ---- | M] (Sonic Solutions) -- C:\Program Files\Roxio\Digital Home 10\RoxioUpnpService10.exe -- (Roxio Upnp Server 10)
SRV - [2007/08/24 15:53:14 | 00,072,176 | ---- | M] (Sonic Solutions) -- C:\Program Files\Roxio\Digital Home 10\RoxioUPnPRenderer10.exe -- (Roxio UPnP Renderer 10)
SRV - [2007/08/24 15:52:48 | 00,309,744 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxLiveShare10.exe -- (RoxLiveShare10)
SRV - [2007/08/24 15:52:46 | 00,166,384 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatch10.exe -- (RoxWatch10)
SRV - [2007/08/24 15:52:38 | 01,083,888 | ---- | M] (Sonic Solutions) -- C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxMediaDB10.exe -- (RoxMediaDB10)
SRV - [2007/07/11 09:33:28 | 00,069,632 | R--- | M] (MicroVision Development, Inc.) -- C:\Program Files\Common Files\SureThing Shared\stllssvr.exe -- (stllssvr)
SRV - [2007/01/31 14:55:42 | 00,096,370 | ---- | M] (Canon Inc.) -- C:\Program Files\Canon\CAL\CALMAIN.exe -- (CCALib8)
SRV - [2006/10/26 14:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2004/10/22 03:24:18 | 00,073,728 | ---- | M] (Macrovision Corporation) -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2009/08/28 19:42:52 | 00,040,448 | ---- | M] (Apple, Inc.) -- C:\WINDOWS\system32\drivers\usbaapl.sys -- (USBAAPL)
DRV - [2009/08/06 08:50:06 | 00,214,664 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfehidk.sys -- (mfehidk)
DRV - [2009/08/06 08:50:06 | 00,079,816 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfeavfk.sys -- (MfeAVFK)
DRV - [2009/08/06 08:50:06 | 00,055,304 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfetdik.sys -- (mfetdik)
DRV - [2009/08/06 08:50:06 | 00,035,272 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mfebopk.sys -- (MfeBOPK)
DRV - [2009/08/06 08:50:06 | 00,034,248 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\mferkdk.sys -- (MfeRKDK)
DRV - [2009/05/18 14:17:00 | 00,026,600 | ---- | M] (GEAR Software Inc.) -- C:\WINDOWS\system32\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009/04/09 14:23:02 | 00,120,136 | ---- | M] (McAfee, Inc.) -- C:\WINDOWS\system32\drivers\Mpfp.sys -- (MPFP)
DRV - [2008/11/05 23:20:24 | 00,048,128 | ---- | M] (REDC) -- C:\WINDOWS\system32\drivers\rimmptsk.sys -- (rimmptsk)
DRV - [2008/07/24 18:42:48 | 00,170,032 | ---- | M] (Alps Electric Co., Ltd.) -- C:\WINDOWS\system32\drivers\Apfiltr.sys -- (ApfiltrService)
DRV - [2008/06/28 09:45:00 | 06,591,872 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008/06/02 11:42:52 | 01,287,552 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2008/05/22 17:32:50 | 01,381,914 | ---- | M] (IDT, Inc.) -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA)
DRV - [2008/05/20 16:21:26 | 00,108,160 | ---- | M] (Andrea Electronics Corporation) -- C:\WINDOWS\system32\drivers\AESTAud.sys -- (AESTAud)
DRV - [2008/05/07 16:40:02 | 00,317,976 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\iastor.sys -- (iastor)
DRV - [2008/04/14 06:00:00 | 00,144,384 | ---- | M] (Windows ® Server 2003 DDK provider) -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2008/04/14 06:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008/04/14 06:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2008/04/04 13:40:50 | 00,244,368 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\drivers\e1y5132.sys -- (e1yexpress) Intel®
DRV - [2007/08/18 03:09:04 | 00,057,328 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\system32\drivers\RxFilter.sys -- (RxFilter)
DRV - [2007/07/26 03:00:00 | 00,043,872 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20)
DRV - [2007/07/23 15:05:20 | 00,009,104 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLADResM.SYS -- (DLADResM)
DRV - [2007/07/23 15:04:58 | 00,037,360 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLABMFSM.SYS -- (DLABMFSM)
DRV - [2007/07/23 15:04:56 | 00,098,448 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAUDF_M.SYS -- (DLAUDF_M)
DRV - [2007/07/23 15:04:56 | 00,093,552 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAUDFAM.SYS -- (DLAUDFAM)
DRV - [2007/07/23 15:04:54 | 00,027,216 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAOPIOM.SYS -- (DLAOPIOM)
DRV - [2007/07/23 15:04:52 | 00,032,848 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLABOIOM.SYS -- (DLABOIOM)
DRV - [2007/07/23 15:04:52 | 00,016,304 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAPoolM.SYS -- (DLAPoolM)
DRV - [2007/07/23 15:04:50 | 00,108,752 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLAIFS_M.SYS -- (DLAIFS_M)
DRV - [2007/07/23 14:55:44 | 00,099,808 | ---- | M] (Sonic Solutions) -- C:\WINDOWS\System32\Drivers\DRVMCDB.SYS -- (DRVMCDB)
DRV - [2007/07/23 14:49:44 | 00,030,064 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DLARTL_M.SYS -- (DLARTL_M)
DRV - [2007/07/23 14:49:44 | 00,014,576 | ---- | M] (Roxio) -- C:\WINDOWS\System32\Drivers\DLACDBHM.SYS -- (DLACDBHM)
DRV - [2007/07/23 14:43:42 | 00,052,000 | ---- | M] (Roxio) -- C:\WINDOWS\system32\drivers\DRVNDDM.SYS -- (DRVNDDM)
DRV - [2005/05/13 17:27:56 | 00,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drivers\usbccid.sys -- (USBCCID)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local



IE - HKU\S-1-5-21-484763869-1767777339-1177238915-1003\S-1-5-21-484763869-1767777339-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-484763869-1767777339-1177238915-1003\S-1-5-21-484763869-1767777339-1177238915-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..browser.search.update: false
FF - prefs.js..browser.startup.homepage: "http://www.theprizeday.com/today.php|http://www.google.com/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.1.1
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: moveplayer@movenetworks.com:7

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2009/11/30 12:20:39 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.5\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2009/11/30 12:20:39 | 00,000,000 | ---D | M]

[2009/11/10 09:54:43 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Extensions
[2009/11/10 13:13:51 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions
[2009/11/10 13:13:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\{48405d3d-2674-4cd8-b1ef-9a719443bd3f}
[2009/11/10 13:13:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2009/11/10 13:14:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\{DDC359D1-844A-42a7-9AA1-88A850A938A8}
[2009/11/10 13:13:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\autopager@mozilla.org
[2009/11/10 13:13:08 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\fp60mbkk.default\extensions\staged-xpis
[2009/11/22 09:14:32 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\ir7k32ko.default\extensions
[2009/11/18 18:22:58 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\ir7k32ko.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009/11/27 19:17:22 | 00,001,765 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla\Firefox\Profiles\ir7k32ko.default\searchplugins\rapidshare--megaupload-file-search.xml
[2009/11/22 09:14:32 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions

O1 HOSTS File: (734 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AESTFltr] C:\WINDOWS\System32\AESTFltr.exe (Andrea Electronics Corporation)
O4 - HKLM..\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe (Alps Electric Co., Ltd.)
O4 - HKLM..\Run: [basicsmssmenu] C:\Program Files\Seagate\Basics\Basics Status\MaxMenuMgrBasics.exe (Maxtor Corporation)
O4 - HKLM..\Run: [Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY.EXE (Dell Inc.)
O4 - HKLM..\Run: [Carbonite Backup] C:\Program Files\Carbonite\Carbonite Backup\CarboniteUI.exe (Carbonite, Inc.)
O4 - HKLM..\Run: [DellConnectionManager] C:\Program Files\Dell\Dell ControlPoint\Connection Manager\Dell.UCM.exe (Smith Micro Software, Inc.)
O4 - HKLM..\Run: [DellControlPoint] C:\Program Files\Dell\Dell ControlPoint\Dell.ControlPoint.exe (Dell, Inc.)
O4 - HKLM..\Run: [DMXLauncher] C:\Program Files\Roxio\CinePlayer\DMXLauncher.exe ()
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuschd2.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPPQVideo] C:\Program Files\HP\ScheduledLaunch\HP LaserJet P2050 Series\bin\hppschlnch.exe -r SOFTWARE\Hewlett-Packard\ScheduledLaunch\LJ_P2050_Series -f PQOptimizerVideo.xml File not found
O4 - HKLM..\Run: [iTunesHelper] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\Run: [Malwarebytes Anti-Malware (reboot)] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [McAfee Managed Services Tray] C:\Program Files\McAfee\Managed VirusScan\Agent\StartMyagtTry.exe File not found
O4 - HKLM..\Run: [MVS Splash] C:\Program Files\McAfee\Managed VirusScan\DesktopUI\XTray.exe (McAfee, Inc.)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [PeachtreePrefetcher.exe] C:\Program Files\Sage Software\Peachtree\PeachtreePrefetcher.exe (Sage Software, Inc.)
O4 - HKLM..\Run: [QuickTime Task] C:\Program Files\QuickTime\QTTask.exe (Apple Inc.)
O4 - HKLM..\Run: [RoxWatchTray] C:\Program Files\Common Files\Roxio Shared\10.0\SharedCOM\RoxWatchTray10.exe (Sonic Solutions)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.)
O4 - HKLM..\Run: [ToolBoxFX] C:\Program Files\HP\ToolBoxFX\bin\HPTLBXFX.exe (HP)
O4 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003..\Run: [ISUSPM] C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe (Macrovision Corporation)
O4 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003..\Run: [Window Washer] C:\Program Files\Webroot\Washer\wwDisp.exe (Webroot Software, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.3.lnk = C:\Program Files\PIXELA\ImageMixer 3 SE Ver.3\CameraMonitor.exe (PIXELA CORPORATION)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Printer Status Monitor.lnk = C:\Program Files\SHARP\Printer Status Monitor\Smon.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk = C:\Program Files\Windows Desktop Search\WindowsSearch.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-484763869-1767777339-1177238915-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O15 - HKLM\..Trusted Domains: //about.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Exclude.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //FWEvent.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //LanguageSelection.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Message.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryCmd.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyAgttryNag.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //MyNotification.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //NOCLessUpdate.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //quarantine.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //ScanNow.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //strings.vbs/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Template.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //Update.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: //VirFound.htm/ ([]myui in Trusted sites)
O15 - HKLM\..Trusted Domains: localhost ([]http in Local intranet)
O15 - HKLM\..Trusted Domains: mcafee.com ([*] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafee.com ([*] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([betavscan] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([vs] https in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] http in Trusted sites)
O15 - HKLM\..Trusted Domains: mcafeeasap.com ([www] https in Trusted sites)
O15 - HKLM\..Trusted Domains: 3 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-...indows-i586.cab (Java Plug-in 1.6.0_17)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\myrm {4D034FC3-013F-4b95-B544-44D49ABE3E76} - C:\Program Files\McAfee\Managed VirusScan\Agent\MyRmProt5.0.0.648.dll (McAfee, Inc.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/11/10 08:30:49 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2009/12/03 07:24:27 | 00,535,552 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe
[2009/12/03 07:21:51 | 00,341,504 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\TFC.exe
[2009/12/03 07:09:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Desktop\GooredFix Backups
[2009/12/03 07:08:50 | 00,070,778 | ---- | C] (jpshortstuff) -- C:\Documents and Settings\Bob Kapolnek\Desktop\GooredFix.exe
[2009/12/03 06:49:41 | 00,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2009/12/03 06:49:40 | 00,019,160 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2009/12/03 06:49:39 | 00,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2009/12/02 11:21:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\WINDOWS
[2009/12/01 09:48:52 | 00,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe
[2009/11/30 12:21:57 | 00,107,368 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\GEARAspi.dll
[2009/11/30 12:21:57 | 00,026,600 | ---- | C] (GEAR Software Inc.) -- C:\WINDOWS\System32\drivers\GEARAspiWDM.sys
[2009/11/30 12:21:12 | 00,000,000 | ---D | C] -- C:\Program Files\iPod
[2009/11/30 12:21:08 | 00,000,000 | ---D | C] -- C:\Program Files\iTunes
[2009/11/30 12:21:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
[2009/11/30 12:20:52 | 00,000,000 | ---D | C] -- C:\Program Files\Bonjour
[2009/11/30 12:20:10 | 00,000,000 | ---D | C] -- C:\Program Files\QuickTime
[2009/11/30 12:20:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple Computer
[2009/11/30 12:18:54 | 02,065,696 | ---- | C] (Apple, Inc.) -- C:\WINDOWS\System32\usbaaplrc.dll
[2009/11/30 12:18:54 | 00,040,448 | ---- | C] (Apple, Inc.) -- C:\WINDOWS\System32\drivers\usbaapl.sys
[2009/11/30 12:11:23 | 93,234,472 | ---- | C] (Apple Inc.) -- C:\Documents and Settings\Bob Kapolnek\Desktop\iTunesSetup.exe
[2009/11/27 19:34:58 | 00,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2009/11/26 20:56:56 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Bob Kapolnek\PrivacIE
[2009/11/26 18:50:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\WinRAR
[2009/11/26 18:49:51 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009/11/23 08:31:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Windows Search
[2009/11/22 13:22:30 | 00,472,064 | ---- | C] ( ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\RootRepeal.exe
[2009/11/22 12:55:24 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2009/11/22 11:15:12 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009/11/22 11:04:25 | 00,000,000 | ---D | C] -- C:\VundoFix Backups
[2009/11/22 08:15:33 | 00,000,000 | ---D | C] -- C:\a73225c8d727ca5b1132502f1f90ca3b
[2009/11/22 08:09:06 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Bob Kapolnek\IETldCache
[2009/11/22 08:07:32 | 00,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2009/11/22 08:07:20 | 11,069,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2009/11/22 08:07:20 | 01,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2009/11/22 08:07:20 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2009/11/22 08:07:20 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2009/11/22 08:07:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2009/11/22 08:06:41 | 00,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2009/11/22 03:01:53 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0
[2009/11/21 03:24:24 | 00,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2009/11/21 03:11:00 | 00,455,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2009/11/21 03:06:09 | 02,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2009/11/21 03:06:08 | 02,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2009/11/21 03:06:08 | 02,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2009/11/21 03:00:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2009/11/21 03:00:18 | 00,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2009/11/20 16:53:26 | 00,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2009/11/20 16:53:26 | 00,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2009/11/20 13:38:43 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Move Networks
[2009/11/20 13:24:51 | 00,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2009/11/20 09:40:45 | 00,000,000 | ---D | C] -- C:\temp
[2009/11/19 10:13:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\HpUpdate
[2009/11/19 10:13:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\Hewlett-Packard
[2009/11/17 10:59:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Misc
[2009/11/17 07:36:02 | 00,093,360 | ---- | C] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2009/11/17 07:21:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Lavasoft
[2009/11/16 13:24:38 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Webroot Shared
[2009/11/16 13:24:38 | 00,000,000 | ---D | C] -- C:\Program Files\Webroot
[2009/11/16 13:24:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Webroot
[2009/11/16 13:24:32 | 00,194,888 | ---- | C] (Webroot Software, Inc.) -- C:\WINDOWS\Unwash6.exe
[2009/11/16 10:40:44 | 00,000,000 | ---D | C] -- C:\Program Files\InterActual
[2009/11/16 09:37:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Roxio
[2009/11/16 09:35:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\SmartSound Software Inc
[2009/11/16 09:35:52 | 00,000,000 | ---D | C] -- C:\Program Files\SmartSound Software
[2009/11/16 09:35:13 | 01,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll
[2009/11/16 09:35:13 | 00,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll
[2009/11/16 09:35:10 | 03,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll
[2009/11/16 09:34:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2009/11/16 06:36:39 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\PIXELA
[2009/11/16 05:19:34 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2009/11/16 04:53:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Uninstall
[2009/11/16 04:52:18 | 00,108,752 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAIFS_M.SYS
[2009/11/16 04:52:18 | 00,099,808 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\DRVMCDB.SYS
[2009/11/16 04:52:18 | 00,098,448 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAUDF_M.SYS
[2009/11/16 04:52:18 | 00,093,552 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAUDFAM.SYS
[2009/11/16 04:52:18 | 00,052,000 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DRVNDDM.SYS
[2009/11/16 04:52:18 | 00,037,360 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLABMFSM.SYS
[2009/11/16 04:52:18 | 00,032,848 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLABOIOM.SYS
[2009/11/16 04:52:18 | 00,027,216 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAOPIOM.SYS
[2009/11/16 04:52:18 | 00,016,304 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLAPoolM.SYS
[2009/11/16 04:52:18 | 00,014,576 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLACDBHM.SYS
[2009/11/16 04:52:17 | 00,030,064 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLARTL_M.SYS
[2009/11/16 04:52:17 | 00,009,104 | ---- | C] (Roxio) -- C:\WINDOWS\System32\drivers\DLADResM.SYS
[2009/11/16 04:52:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SureThing Shared
[2009/11/16 04:51:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sonic
[2009/11/16 04:51:14 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Sonic Shared
[2009/11/16 04:50:46 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Roxio Shared
[2009/11/16 04:50:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\InstallShield
[2009/11/16 04:50:35 | 00,000,000 | ---D | C] -- C:\Program Files\Roxio
[2009/11/15 18:55:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\ZoomBrowser
[2009/11/15 18:54:59 | 00,000,000 | ---D | C] -- C:\Program Files\Canon
[2009/11/15 18:53:47 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Canon
[2009/11/15 18:50:28 | 00,000,000 | ---D | C] -- C:\Program Files\PIXELA
[2009/11/13 15:27:56 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2009/11/13 06:47:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\McAfee
[2009/11/12 13:14:39 | 00,120,136 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\Mpfp.sys
[2009/11/12 13:14:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\McAfee
[2009/11/12 13:14:34 | 00,214,664 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfehidk.sys
[2009/11/12 13:14:34 | 00,079,816 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfeavfk.sys
[2009/11/12 13:14:34 | 00,055,304 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfetdik.sys
[2009/11/12 13:14:34 | 00,035,272 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mfebopk.sys
[2009/11/12 13:14:34 | 00,034,248 | ---- | C] (McAfee, Inc.) -- C:\WINDOWS\System32\drivers\mferkdk.sys
[2009/11/12 13:14:31 | 00,000,000 | ---D | C] -- C:\Program Files\McAfee
[2009/11/12 13:14:31 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\McAfee
[2009/11/12 07:27:51 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\deskPDF
[2009/11/12 07:24:14 | 00,000,000 | ---D | C] -- C:\Program Files\Docudesk
[2009/11/11 13:55:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\YMCA Sports
[2009/11/11 13:55:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\wps_files
[2009/11/11 13:28:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\work files
[2009/11/11 13:28:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Wine Related Stuff
[2009/11/11 13:27:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\TurboTax
[2009/11/11 13:27:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Thomas Residence
[2009/11/11 13:22:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Software Downloads
[2009/11/11 13:22:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Powerpoint DWF Files
[2009/11/11 13:22:38 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\new business files
[2009/11/11 12:56:10 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2009/11/11 12:55:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2009/11/11 12:55:25 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2009/11/11 12:55:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2009/11/11 12:37:22 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Scans
[2009/11/11 10:49:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Google Gadgets
[2009/11/11 10:49:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My CostWorks Projects
[2009/11/11 10:48:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Albums
[2009/11/11 10:39:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Memory transfer 31507
[2009/11/11 10:38:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\memory stick files 020109
[2009/11/11 10:38:19 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\MBA Folder
[2009/11/11 10:38:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Lottery
[2009/11/11 10:35:02 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\LightScribe
[2009/11/11 10:13:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\KAP Office Construction
[2009/11/11 09:52:07 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2009/11/11 09:52:03 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2009/11/11 09:52:03 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe
[2009/11/11 08:48:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Peachtree
[2009/11/11 08:31:00 | 00,000,000 | ---D | C] -- C:\Program Files\SHARP
[2009/11/11 08:30:13 | 00,098,304 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SN0ELMON.dll
[2009/11/11 08:30:13 | 00,049,152 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SN0EMTNT.dll
[2009/11/11 08:29:59 | 00,075,933 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SCN2PM.dll
[2009/11/11 08:29:59 | 00,053,248 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SCN2PMR.dll
[2009/11/11 08:29:59 | 00,050,319 | ---- | C] (SHARP CORPORATION) -- C:\WINDOWS\System32\SCN2PMUI.dll
[2009/11/11 08:26:49 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SCDRV
[2009/11/11 08:08:39 | 00,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2009/11/11 08:08:12 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/11/11 08:08:12 | 00,149,280 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/11/11 08:08:12 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/11/11 08:08:12 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/11/11 08:08:12 | 00,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/11/11 08:08:05 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009/11/11 07:12:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\HP
[2009/11/11 07:10:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Hewlett-Packard
[2009/11/11 07:10:35 | 00,331,776 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppcpr13.dll
[2009/11/11 07:10:35 | 00,149,504 | ---- | C] (Hewlett-Packard Corporation) -- C:\WINDOWS\System32\hpcpn082.dll
[2009/11/11 07:10:35 | 00,059,928 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\fxcompchannel.dll
[2009/11/11 07:08:26 | 00,000,000 | ---D | C] -- C:\Program Files\HP
[2009/11/11 07:08:22 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbprint.sys
[2009/11/11 07:08:09 | 00,000,000 | -H-D | C] -- C:\Config.Msi
[2009/11/11 07:02:05 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2009/11/11 04:07:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\KAP Architecture Business Files
[2009/11/11 04:05:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Human Kinetics
[2009/11/10 23:08:24 | 00,094,208 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/11/10 23:08:24 | 00,069,632 | ---- | C] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2009/11/10 16:58:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Guitar Stuff
[2009/11/10 16:57:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Grocery Lists
[2009/11/10 16:56:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Graphics Stuff
[2009/11/10 16:56:50 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\For Dan
[2009/11/10 16:56:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Financial Stuff
[2009/11/10 16:54:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\dan english
[2009/11/10 16:51:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\d41e8beae4131e88ad458b6957
[2009/11/10 16:35:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Bookmark file for netscape
[2009/11/10 16:35:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\bookmark backup
[2009/11/10 15:16:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\AutoCAD files
[2009/11/10 15:15:45 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Architecture License Information
[2009/11/10 15:15:35 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\AIA
[2009/11/10 15:12:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\acadfonts
[2009/11/10 14:59:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\2009 Vegetable Garden
[2009/11/10 14:59:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\2009 Holy Cross Track
[2009/11/10 14:55:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\2008 Vegetable Garden
[2009/11/10 14:55:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Wave Systems Corp
[2009/11/10 14:55:56 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\PowerDVD DX
[2009/11/10 14:55:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\PC_Drivers_Headquarters
[2009/11/10 14:47:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\IsolatedStorage
[2009/11/10 14:46:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\HP
[2009/11/10 14:46:13 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Downloaded Installations
[2009/11/10 14:45:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Bluebeam Software
[2009/11/10 14:38:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Adobe
[2009/11/10 14:26:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\ErrorLogs
[2009/11/10 14:24:21 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Webroot
[2009/11/10 14:24:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Wave Systems Corp
[2009/11/10 14:24:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\vlc
[2009/11/10 13:58:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Uniblue
[2009/11/10 13:46:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\miscellaneous
[2009/11/10 13:22:52 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Apple
[2009/11/10 13:22:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Apple
[2009/11/10 13:22:46 | 00,000,000 | ---D | C] -- C:\Program Files\Apple Software Update
[2009/11/10 13:22:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Apple
[2009/11/10 13:22:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Apple Computer
[2009/11/10 13:16:57 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Sun
[2009/11/10 13:16:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Roxio
[2009/11/10 13:06:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Malwarebytes
[2009/11/10 12:59:32 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Macromedia
[2009/11/10 12:59:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Logitech
[2009/11/10 12:57:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Internet Cleaner
[2009/11/10 12:57:53 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\HP
[2009/11/10 12:51:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\GTek
[2009/11/10 12:51:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Google
[2009/11/10 12:51:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Dell
[2009/11/10 12:48:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\CyberScrub
[2009/11/10 12:45:31 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Apple Computer
[2009/11/10 12:44:18 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Adobe
[2009/11/10 12:35:14 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\.housecall6.6
[2009/11/10 12:35:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\MWorksGenerated
[2009/11/10 12:33:01 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Identities
[2009/11/10 12:33:00 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Windows Desktop Search
[2009/11/10 12:32:40 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2009/11/10 12:32:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2009/11/10 10:32:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Autodesk
[2009/11/10 10:32:52 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Autodesk
[2009/11/10 10:32:52 | 00,000,000 | ---D | C] -- C:\Program Files\AutoCAD LT 2009
[2009/11/10 10:30:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2009/11/10 10:30:13 | 00,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2009/11/10 10:30:01 | 00,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2009/11/10 10:29:11 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Autodesk Shared
[2009/11/10 10:29:11 | 00,000,000 | ---D | C] -- C:\Program Files\Autodesk
[2009/11/10 10:29:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Autodesk
[2009/11/10 10:25:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Aatrix Software
[2009/11/10 10:25:20 | 00,066,560 | ---- | C] (Smithware, Inc.) -- C:\WINDOWS\System32\s2dtconv.dll
[2009/11/10 10:25:20 | 00,024,576 | ---- | C] (Smithware, Inc.) -- C:\WINDOWS\System32\Sbtrvd32.dll
[2009/11/10 10:25:18 | 02,134,016 | ---- | C] (Amyuni Technologies
http://www.amyuni.com) -- C:\WINDOWS\System32\cdintf251.dll
[2009/11/10 10:24:43 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Peach
[2009/11/10 10:23:45 | 00,000,000 | ---D | C] -- C:\Program Files\Business Objects
[2009/11/10 10:22:37 | 00,000,000 | ---D | C] -- C:\Program Files\Pervasive Software
[2009/11/10 10:22:37 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Pervasive Software
[2009/11/10 10:22:11 | 00,000,000 | ---D | C] -- C:\Program Files\Sage Software
[2009/11/10 10:21:30 | 01,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71.dll
[2009/11/10 10:21:30 | 00,499,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcp71.dll
[2009/11/10 10:21:30 | 00,348,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71.dll
[2009/11/10 10:21:01 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeachInst
[2009/11/10 10:12:07 | 00,032,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll
[2009/11/10 10:11:36 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2009/11/10 10:11:31 | 00,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2009/11/10 10:11:23 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2009/11/10 10:11:23 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2009/11/10 10:11:08 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2009/11/10 10:09:48 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2009/11/10 10:09:22 | 00,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2009/11/10 10:09:10 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Microsoft Help
[2009/11/10 10:09:08 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2009/11/10 10:09:08 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2009/11/10 10:08:54 | 00,000,000 | RH-D | C] -- C:\MSOCache
[2009/11/10 10:02:18 | 00,000,000 | -HSD | C] -- C:\RECYCLER
[2009/11/10 10:02:04 | 00,000,000 | ---D | C] -- C:\Program Files\Carbonite
[2009/11/10 10:02:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Carbonite
[2009/11/10 09:59:57 | 00,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys
[2009/11/10 09:59:40 | 00,000,000 | ---D | C] -- C:\Program Files\Seagate
[2009/11/10 09:59:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Seagate
[2009/11/10 09:59:03 | 00,000,000 | ---D | C] -- C:\Seagate temp
[2009/11/10 09:57:11 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\Downloads
[2009/11/10 09:54:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Mozilla
[2009/11/10 09:54:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Mozilla
[2009/11/10 09:54:30 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2009/11/10 09:50:36 | 00,048,128 | ---- | C] (REDC) -- C:\WINDOWS\System32\drivers\rimmptsk.sys
[2009/11/10 09:49:37 | 00,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2009/11/10 09:49:25 | 00,000,000 | ---D | C] -- C:\Program Files\DellTPad
[2009/11/10 09:49:23 | 01,419,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WdfCoInstaller01005.dll
[2009/11/10 09:49:23 | 00,170,032 | ---- | C] (Alps Electric Co., Ltd.) -- C:\WINDOWS\System32\drivers\Apfiltr.sys
[2009/11/10 09:49:23 | 00,100,546 | ---- | C] (Alps Electric Co., Ltd.) -- C:\WINDOWS\System32\Vxdif.dll
[2009/11/10 09:47:20 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Deployment
[2009/11/10 09:39:15 | 00,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys
[2009/11/10 09:39:14 | 00,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys
[2009/11/10 09:39:13 | 00,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys
[2009/11/10 09:39:13 | 00,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2009/11/10 09:39:12 | 00,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2009/11/10 09:39:12 | 00,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2009/11/10 09:39:12 | 00,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2009/11/10 09:39:11 | 00,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys
[2009/11/10 09:39:10 | 00,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys
[2009/11/10 09:39:10 | 00,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys
[2009/11/10 09:39:09 | 00,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys
[2009/11/10 09:38:49 | 08,101,985 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\idtsg.cpl
[2009/11/10 09:38:49 | 02,473,984 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\stlang.dll
[2009/11/10 09:38:49 | 00,466,944 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\AESTFltr.exe
[2009/11/10 09:38:49 | 00,172,032 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\AESTCtrl.cpl
[2009/11/10 09:38:49 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2009/11/10 09:38:49 | 00,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys
[2009/11/10 09:38:49 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2009/11/10 09:38:49 | 00,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2009/11/10 09:38:49 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2009/11/10 09:38:49 | 00,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2009/11/10 09:38:49 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2009/11/10 09:38:49 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2009/11/10 09:38:46 | 00,164,352 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\staco.dll
[2009/11/10 09:38:45 | 01,381,914 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\drivers\sthda.sys
[2009/11/10 09:38:45 | 00,442,473 | ---- | C] (IDT, Inc.) -- C:\WINDOWS\System32\stacapi.dll
[2009/11/10 09:38:44 | 00,108,160 | ---- | C] (Andrea Electronics Corporation) -- C:\WINDOWS\System32\drivers\AESTAud.sys
[2009/11/10 09:38:44 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2009/11/10 09:38:44 | 00,000,000 | ---D | C] -- C:\Program Files\IDT
[2009/11/10 09:38:42 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2009/11/10 09:38:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Videos
[2009/11/10 09:38:00 | 00,000,000 | ---D | C] -- C:\Program Files\Telespree
[2009/11/10 09:38:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Telespree
[2009/11/10 09:37:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dell
[2009/11/10 09:37:55 | 00,000,000 | ---D | C] -- C:\Program Files\AT&T
[2009/11/10 09:37:55 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\AT&T
[2009/11/10 09:37:26 | 00,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations
[2009/11/10 09:36:44 | 00,248,448 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\PROUnstl.exe
[2009/11/10 09:36:40 | 00,244,368 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e1y5132.sys
[2009/11/10 09:36:40 | 00,121,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\e1000msg.dll
[2009/11/10 09:36:40 | 00,056,440 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicInstE.dll
[2009/11/10 09:36:40 | 00,028,272 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NicCo2.dll
[2009/11/10 09:35:07 | 00,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2009/11/10 09:34:54 | 00,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2009/11/10 09:34:38 | 00,000,000 | ---D | C] -- C:\Program Files\MSXML 6.0
[2009/11/10 09:33:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2009/11/10 09:32:29 | 00,815,104 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMLogon.dll
[2009/11/10 09:32:28 | 05,029,888 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMWLCPL.CPL
[2009/11/10 09:32:28 | 02,682,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vcredist_x86.exe
[2009/11/10 09:32:28 | 02,670,592 | ---- | C] (BCGSoft Ltd) -- C:\WINDOWS\System32\WLBCGCBPRO731.DLL
[2009/11/10 09:32:28 | 02,220,032 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\WLTRAY.EXE
[2009/11/10 09:32:28 | 01,961,984 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\BCMWLTRY.EXE
[2009/11/10 09:32:28 | 01,287,552 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\BCMWL5.SYS
[2009/11/10 09:32:28 | 00,286,720 | ---- | C] (Dell Inc.) -- C:\WINDOWS\System32\bcmwlu00.exe
[2009/11/10 09:32:28 | 00,143,360 | ---- | C] (Broadcom Corp.) -- C:\WINDOWS\System32\bcmwlapi.dll
[2009/11/10 09:32:28 | 00,069,632 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\bcmwlpkt.dll
[2009/11/10 09:32:28 | 00,065,536 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\wltrynt.dll
[2009/11/10 09:32:28 | 00,033,664 | ---- | C] (CACE Technologies) -- C:\WINDOWS\System32\drivers\BCMWLNPF.SYS
[2009/11/10 09:32:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\InstallShield
[2009/11/10 09:30:25 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\nView_Profiles
[2009/11/10 09:28:07 | 00,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvudisp.exe
[2009/11/10 09:28:07 | 00,000,000 | ---D | C] -- C:\WINDOWS\nview
[2009/11/10 09:27:56 | 00,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2009/11/10 09:27:49 | 02,670,592 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwssr.dll
[2009/11/10 09:27:49 | 02,629,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwss.dll
[2009/11/10 09:27:49 | 00,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrses.dll
[2009/11/10 09:27:49 | 00,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsfr.dll
[2009/11/10 09:27:49 | 00,327,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsesm.dll
[2009/11/10 09:27:49 | 00,323,584 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsit.dll
[2009/11/10 09:27:49 | 00,319,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsptb.dll
[2009/11/10 09:27:49 | 00,315,392 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsru.dll
[2009/11/10 09:27:49 | 00,311,296 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsde.dll
[2009/11/10 09:27:49 | 00,294,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrspl.dll
[2009/11/10 09:27:49 | 00,212,992 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsja.dll
[2009/11/10 09:27:49 | 00,196,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrsko.dll
[2009/11/10 09:27:49 | 00,167,936 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszht.dll
[2009/11/10 09:27:49 | 00,163,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwrszhc.dll
[2009/11/10 09:27:48 | 04,141,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvsr.dll
[2009/11/10 09:27:48 | 00,081,920 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2009/11/10 09:27:47 | 08,773,632 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2009/11/10 09:27:47 | 03,780,608 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvvitvs.dll
[2009/11/10 09:27:47 | 00,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2009/11/10 09:27:47 | 00,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2009/11/10 09:27:47 | 00,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2009/11/10 09:27:47 | 00,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2009/11/10 09:27:47 | 00,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2009/11/10 09:27:47 | 00,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2009/11/10 09:27:47 | 00,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2009/11/10 09:27:47 | 00,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2009/11/10 09:27:47 | 00,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2009/11/10 09:27:47 | 00,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2009/11/10 09:27:47 | 00,225,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2009/11/10 09:27:47 | 00,159,812 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvsvc32.exe
[2009/11/10 09:27:47 | 00,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2009/11/10 09:27:46 | 03,424,256 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgamesr.dll
[2009/11/10 09:27:46 | 02,854,912 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmoblsr.dll
[2009/11/10 09:27:46 | 01,257,472 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmobls.dll
[2009/11/10 09:27:46 | 00,458,752 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccssr.dll
[2009/11/10 09:27:46 | 00,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccs.dll
[2009/11/10 09:27:46 | 00,188,416 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccss.dll
[2009/11/10 09:27:46 | 00,090,112 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvhotkey.dll
[2009/11/10 09:27:46 | 00,086,016 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2009/11/10 09:27:46 | 00,045,056 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmccsrs.dll
[2009/11/10 09:27:45 | 03,391,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgames.dll
[2009/11/10 09:27:45 | 00,313,888 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvexpbar.dll
[2009/11/10 09:27:44 | 05,783,552 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispsr.dll
[2009/11/10 09:27:44 | 03,981,312 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdisps.dll
[2009/11/10 09:27:44 | 01,241,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2009/11/10 09:27:44 | 01,079,840 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpluir.dll
[2009/11/10 09:27:44 | 00,768,544 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcplui.exe
[2009/11/10 09:27:42 | 13,537,280 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2009/11/10 09:27:42 | 06,591,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2009/11/10 09:27:42 | 06,591,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2009/11/10 09:27:42 | 00,442,368 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2009/11/10 09:27:42 | 00,420,384 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.cpl
[2009/11/10 09:27:42 | 00,147,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2009/11/10 09:27:42 | 00,118,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcodins.dll
[2009/11/10 09:27:42 | 00,118,784 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcod.dll
[2009/11/10 09:27:41 | 06,271,232 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2009/11/10 09:27:41 | 06,271,232 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2009/11/10 09:24:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2009/11/10 09:24:02 | 00,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\WINDOWS\System32\CSVer.dll
[2009/11/10 09:24:02 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2009/11/10 09:24:01 | 00,000,000 | ---D | C] -- C:\Program Files\Intel
[2009/11/10 09:23:50 | 00,000,000 | ---D | C] -- C:\Intel
[2009/11/10 09:10:27 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\vmm32
[2009/11/10 09:10:27 | 00,000,000 | ---D | C] -- C:\Program Files\Dell
[2009/11/10 08:35:47 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Identities
[2009/11/10 08:35:45 | 00,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2009/11/10 08:35:42 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Pictures
[2009/11/10 08:35:42 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents\My Music
[2009/11/10 08:35:40 | 00,000,000 | --SD | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data\Microsoft
[2009/11/10 08:35:40 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Bob Kapolnek\SendTo
[2009/11/10 08:35:40 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Bob Kapolnek\Recent
[2009/11/10 08:35:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\Start Menu
[2009/11/10 08:35:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\My Documents
[2009/11/10 08:35:40 | 00,000,000 | R--D | C] -- C:\Documents and Settings\Bob Kapolnek\Favorites
[2009/11/10 08:35:40 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\Bob Kapolnek\Cookies
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\Templates
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\PrintHood
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\NetHood
[2009/11/10 08:35:40 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings
[2009/11/10 08:35:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\Microsoft
[2009/11/10 08:35:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Desktop
[2009/11/10 08:35:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Bob Kapolnek\Application Data
[2009/11/10 08:34:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2009/11/10 08:34:40 | 00,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2009/11/10 08:34:40 | 00,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2009/11/10 08:32:49 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2009/11/10 08:32:49 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2009/11/10 08:32:49 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2009/11/10 08:32:49 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2009/11/10 08:32:48 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2009/11/10 08:32:48 | 00,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2009/11/10 08:32:48 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2009/11/10 08:32:47 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2009/11/10 08:32:47 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2009/11/10 08:32:47 | 00,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2009/11/10 08:32:47 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2009/11/10 08:32:46 | 00,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2009/11/10 08:32:46 | 00,364,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2009/11/10 08:32:46 | 00,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2009/11/10 08:32:46 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2009/11/10 08:32:46 | 00,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2009/11/10 08:32:46 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2009/11/10 08:32:46 | 00,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2009/11/10 08:32:45 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2009/11/10 08:32:45 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2009/11/10 08:32:44 | 00,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2009/11/10 08:32:44 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2009/11/10 08:32:43 | 00,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2009/11/10 08:32:43 | 00,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2009/11/10 08:32:43 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2009/11/10 08:32:43 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2009/11/10 08:32:43 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2009/11/10 08:32:42 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2009/11/10 08:32:42 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2009/11/10 08:32:42 | 00,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2009/11/10 08:32:42 | 00,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2009/11/10 08:32:41 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2009/11/10 08:32:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2009/11/10 08:32:40 | 00,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2009/11/10 08:32:40 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2009/11/10 08:32:40 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2009/11/10 08:32:39 | 00,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2009/11/10 08:32:38 | 00,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2009/11/10 08:32:38 | 00,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2009/11/10 08:32:38 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2009/11/10 08:32:38 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2009/11/10 08:32:38 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2009/11/10 08:32:38 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2009/11/10 08:32:38 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2009/11/10 08:32:38 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2009/11/10 08:32:38 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2009/11/10 08:32:37 | 00,456,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2009/11/10 08:32:37 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2009/11/10 08:32:37 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll
[2009/11/10 08:32:36 | 00,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2009/11/10 08:32:36 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2009/11/10 08:32:36 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2009/11/10 08:32:36 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2009/11/10 08:32:36 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2009/11/10 08:32:36 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2009/11/10 08:32:36 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2009/11/10 08:32:36 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2009/11/10 08:32:36 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2009/11/10 08:32:36 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2009/11/10 08:32:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2009/11/10 08:32:36 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2009/11/10 08:32:35 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2009/11/10 08:32:35 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2009/11/10 08:32:35 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2009/11/10 08:32:33 | 00,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll
[2009/11/10 08:32:33 | 00,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2009/11/10 08:32:33 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2009/11/10 08:32:32 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2009/11/10 08:32:32 | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2009/11/10 08:32:32 | 00,029,184 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2009/11/10 08:32:32 | 00,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2009/11/10 08:32:32 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll
[2009/11/10 08:32:32 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2009/11/10 08:32:31 | 00,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2009/11/10 08:32:31 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2009/11/10 08:32:31 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2009/11/10 08:32:30 | 00,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2009/11/10 08:32:30 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2009/11/10 08:32:29 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2009/11/10 08:32:29 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2009/11/10 08:32:29 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2009/11/10 08:32:28 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2009/11/10 08:32:28 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2009/11/10 08:32:28 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2009/11/10 08:32:27 | 00,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2009/11/10 08:32:27 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2009/11/10 08:32:27 | 00,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2009/11/10 08:32:27 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2009/11/10 08:32:27 | 00,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2009/11/10 08:32:27 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2009/11/10 08:32:26 | 00,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2009/11/10 08:32:26 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2009/11/10 08:32:26 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2009/11/10 08:32:26 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2009/11/10 08:32:26 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2009/11/10 08:32:24 | 00,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2009/11/10 08:32:24 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2009/11/10 08:32:23 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2009/11/10 08:32:22 | 00,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2009/11/10 08:32:22 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2009/11/10 08:32:21 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe
[2009/11/10 08:32:20 | 01,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2009/11/10 08:32:20 | 00,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2009/11/10 08:32:17 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2009/11/10 08:32:16 | 00,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2009/11/10 08:32:16 | 00,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2009/11/10 08:32:16 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2009/11/10 08:32:16 | 00,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2009/11/10 08:32:16 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2009/11/10 08:32:15 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2009/11/10 08:32:15 | 00,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2009/11/10 08:32:15 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2009/11/10 08:32:15 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2009/11/10 08:32:14 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2009/11/10 08:32:14 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2009/11/10 08:32:13 | 00,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2009/11/10 08:32:12 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2009/11/10 08:32:12 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2009/11/10 08:32:12 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2009/11/10 08:32:12 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2009/11/10 08:32:12 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2009/11/10 08:32:12 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2009/11/10 08:32:11 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2009/11/10 08:32:11 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2009/11/10 08:32:11 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2009/11/10 08:32:11 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2009/11/10 08:32:11 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2009/11/10 08:32:11 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2009/11/10 08:32:10 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2009/11/10 08:32:10 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2009/11/10 08:32:10 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2009/11/10 08:32:10 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2009/11/10 08:32:10 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2009/11/10 08:32:09 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2009/11/10 08:32:09 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2009/11/10 08:32:09 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2009/11/10 08:32:09 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2009/11/10 08:32:08 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2009/11/10 08:32:08 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2009/11/10 08:32:08 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2009/11/10 08:32:07 | 00,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2009/11/10 08:32:07 | 00,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2009/11/10 08:32:07 | 00,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2009/11/10 08:32:07 | 00,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2009/11/10 08:32:07 | 00,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2009/11/10 08:32:07 | 00,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2009/11/10 08:32:07 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2009/11/10 08:32:07 | 00,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2009/11/10 08:32:06 | 00,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2009/11/10 08:32:06 | 00,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2009/11/10 08:32:06 | 00,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2009/11/10 08:32:06 | 00,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2009/11/10 08:32:06 | 00,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2009/11/10 08:32:06 | 00,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2009/11/10 08:32:05 | 00,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2009/11/10 08:32:05 | 00,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2009/11/10 08:32:05 | 00,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2009/11/10 08:32:05 | 00,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2009/11/10 08:32:05 | 00,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2009/11/10 08:32:05 | 00,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2009/11/10 08:32:05 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2009/11/10 08:32:05 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2009/11/10 08:32:05 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2009/11/10 08:32:04 | 00,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2009/11/10 08:32:04 | 00,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2009/11/10 08:32:04 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2009/11/10 08:32:04 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2009/11/10 08:32:04 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2009/11/10 08:32:04 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2009/11/10 08:32:04 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2009/11/10 08:32:04 | 00,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2009/11/10 08:31:59 | 10,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2009/11/10 08:31:49 | 10,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2009/11/10 08:31:49 | 00,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2009/11/10 08:31:49 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2009/11/10 08:31:49 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2009/11/10 08:31:48 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2009/11/10 08:31:48 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2009/11/10 08:31:47 | 00,400,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2009/11/10 08:31:47 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2009/11/10 08:31:47 | 00,154,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2009/11/10 08:31:47 | 00,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2009/11/10 08:31:46 | 00,562,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2009/11/10 08:31:46 | 00,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2009/11/10 08:31:46 | 00,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2009/11/10 08:31:46 | 00,267,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2009/11/10 08:31:46 | 00,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2009/11/10 08:31:46 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2009/11/10 08:31:46 | 00,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2009/11/10 08:31:46 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2009/11/10 08:31:46 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2009/11/10 08:31:46 | 00,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2009/11/10 08:31:46 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2009/11/10 08:31:46 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2009/11/10 08:31:46 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2009/11/10 08:31:46 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2009/11/10 08:31:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2009/11/10 08:31:45 | 00,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2009/11/10 08:31:45 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2009/11/10 08:31:45 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2009/11/10 08:31:45 | 00,125,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2009/11/10 08:31:45 | 00,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2009/11/10 08:31:45 | 00,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2009/11/10 08:31:45 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2009/11/10 08:31:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2009/11/10 08:31:45 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2009/11/10 08:31:44 | 00,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll
[2009/11/10 08:31:44 | 00,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2009/11/10 08:31:44 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2009/11/10 08:31:43 | 00,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2009/11/10 08:31:43 | 00,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2009/11/10 08:31:43 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2009/11/10 08:31:43 | 00,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2009/11/10 08:31:43 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2009/11/10 08:31:43 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2009/11/10 08:31:43 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2009/11/10 08:31:42 | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2009/11/10 08:31:42 | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2009/11/10 08:31:42 | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2009/11/10 08:31:41 | 00,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2009/11/10 08:31:39 | 00,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2009/11/10 08:31:38 | 00,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2009/11/10 08:31:38 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2009/11/10 08:31:37 | 00,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2009/11/10 08:31:37 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2009/11/10 08:31:37 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2009/11/10 08:31:37 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2009/11/10 08:31:36 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2009/11/10 08:31:35 | 00,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2009/11/10 08:31:35 | 00,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2009/11/10 08:31:35 | 00,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2009/11/10 08:31:35 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2009/11/10 08:31:35 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2009/11/10 08:31:35 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2009/11/10 08:31:34 | 01,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2009/11/10 08:31:34 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2009/11/10 08:31:33 | 00,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2009/11/10 08:31:33 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2009/11/10 08:31:33 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2009/11/10 08:31:33 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2009/11/10 08:31:32 | 00,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2009/11/10 08:31:32 | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2009/11/10 08:31:32 | 00,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2009/11/10 08:31:32 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2009/11/10 08:31:27 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2009/11/10 08:31:26 | 00,369,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2009/11/10 08:31:26 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2009/11/10 08:31:26 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2009/11/10 08:31:26 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2009/11/10 08:31:25 | 00,331,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2009/11/10 08:31:25 | 00,108,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2009/11/10 08:31:25 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2009/11/10 08:31:25 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2009/11/10 08:31:24 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2009/11/10 08:31:23 | 00,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2009/11/10 08:31:23 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2009/11/10 08:31:23 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2009/11/10 08:31:23 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2009/11/10 08:31:21 | 00,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2009/11/10 08:31:21 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2009/11/10 08:31:21 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2009/11/10 08:31:20 | 02,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll
[2009/11/10 08:31:20 | 00,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll
[2009/11/10 08:31:20 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2009/11/10 08:31:19 | 00,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2009/11/10 08:31:19 | 00,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2009/11/10 08:31:17 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2009/11/10 08:31:17 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2009/11/10 08:31:17 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2009/11/10 08:31:16 | 00,829,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2009/11/10 08:31:16 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2009/11/10 08:31:16 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2009/11/10 08:31:16 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2009/11/10 08:31:16 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2009/11/10 08:31:16 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2009/11/10 08:31:16 | 00,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2009/11/10 08:31:16 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2009/11/10 08:31:16 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2009/11/10 08:31:15 | 00,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2009/11/10 08:31:15 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2009/11/10 08:31:15 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2009/11/10 08:31:15 | 00,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2009/11/10 08:31:15 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2009/11/10 08:31:14 | 00,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2009/11/10 08:31:14 | 00,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2009/11/10 08:31:14 | 00,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2009/11/10 08:31:14 | 00,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2009/11/10 08:31:14 | 00,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2009/11/10 08:31:14 | 00,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2009/11/10 08:31:14 | 00,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2009/11/10 08:31:14 | 00,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2009/11/10 08:31:13 | 00,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2009/11/10 08:31:13 | 00,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2009/11/10 08:31:13 | 00,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2009/11/10 08:31:13 | 00,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2009/11/10 08:31:13 | 00,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2009/11/10 08:31:13 | 00,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2009/11/10 08:31:13 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2009/11/10 08:31:12 | 00,275,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2009/11/10 08:31:12 | 00,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2009/11/10 08:31:12 | 00,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2009/11/10 08:31:12 | 00,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2009/11/10 08:31:12 | 00,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2009/11/10 08:31:11 | 00,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2009/11/10 08:31:11 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2009/11/10 08:31:11 | 00,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2009/11/10 08:31:09 | 00,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll

Part 2 of OTL log....

[2009/11/10 08:31:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2009/11/10 08:31:08 | 00,000,000 | ---D | C] -- C:\Program Files\xerox
[2009/11/10 08:31:08 | 00,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2009/11/10 08:30:54 | 00,000,000 | ---D | C] -- C:\DELL
[2009/11/10 08:30:39 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2009/11/10 08:30:00 | 00,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2009/11/10 08:29:51 | 00,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2009/11/10 08:29:50 | 00,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2009/11/10 08:29:41 | 00,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2009/11/10 08:29:23 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2009/11/10 08:29:15 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2009/11/10 08:29:15 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2009/11/10 08:29:15 | 00,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2009/11/10 08:29:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2009/11/10 08:29:15 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2009/11/10 08:29:15 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2009/11/10 08:29:02 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2009/11/10 08:29:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2009/11/10 08:29:01 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2009/11/10 08:29:00 | 00,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2009/11/10 08:29:00 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2009/11/10 08:29:00 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2009/11/10 08:28:59 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2009/11/10 08:28:59 | 00,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2009/11/10 08:28:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2009/11/10 08:28:55 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2009/11/10 08:28:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2009/11/10 08:28:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2009/11/10 08:28:55 | 00,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2009/11/10 08:28:54 | 00,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2009/11/10 08:28:54 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2009/11/10 08:28:54 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2009/11/10 08:28:54 | 00,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2009/11/10 08:28:54 | 00,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2009/11/10 08:28:54 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2009/11/10 08:28:53 | 00,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2009/11/10 08:28:53 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2009/11/10 08:28:49 | 00,726,078 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll
[2009/11/10 08:28:49 | 00,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll
[2009/11/10 08:28:48 | 03,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll
[2009/11/10 08:28:47 | 00,759,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\VGX.dll
[2009/11/10 08:28:47 | 00,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2009/11/10 08:28:46 | 00,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2009/11/10 08:28:46 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2009/11/10 08:28:45 | 01,669,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2009/11/10 08:28:45 | 00,243,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2009/11/10 08:28:45 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2009/11/10 08:28:44 | 00,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2009/11/10 08:28:44 | 00,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2009/11/10 08:28:44 | 00,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2009/11/10 08:28:44 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2009/11/10 08:28:43 | 00,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2009/11/10 08:28:43 | 00,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2009/11/10 08:28:43 | 00,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2009/11/10 08:28:42 | 01,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2009/11/10 08:28:42 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2009/11/10 08:28:42 | 00,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2009/11/10 08:28:42 | 00,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2009/11/10 08:28:42 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2009/11/10 08:28:42 | 00,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll
[2009/11/10 08:28:42 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2009/11/10 08:28:42 | 00,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2009/11/10 08:28:42 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll
[2009/11/10 08:28:41 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2009/11/10 08:28:41 | 00,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2009/11/10 08:28:41 | 00,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2009/11/10 08:28:41 | 00,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2009/11/10 08:28:41 | 00,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe
[2009/11/10 08:28:41 | 00,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2009/11/10 08:28:41 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2009/11/10 08:28:41 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll
[2009/11/10 08:28:41 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll
[2009/11/10 08:28:41 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll
[2009/11/10 08:28:41 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2009/11/10 08:28:40 | 00,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll
[2009/11/10 08:28:38 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll
[2009/11/10 08:28:38 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll
[2009/11/10 08:28:37 | 04,256,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll
[2009/11/10 08:28:37 | 00,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll
[2009/11/10 08:28:37 | 00,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll
[2009/11/10 08:28:37 | 00,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll
[2009/11/10 08:28:37 | 00,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll
[2009/11/10 08:28:37 | 00,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll
[2009/11/10 08:28:35 | 03,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2009/11/10 08:28:35 | 00,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2009/11/10 08:28:16 | 00,565,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll
[2009/11/10 08:28:16 | 00,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll
[2009/11/10 08:28:16 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll
[2009/11/10 08:28:16 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll
[2009/11/10 08:28:15 | 00,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe
[2009/11/10 08:28:15 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe
[2009/11/10 08:28:15 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll
[2009/11/10 08:28:11 | 00,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe
[2009/11/10 08:28:11 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2009/11/10 08:28:11 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll
[2009/11/10 08:28:11 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2009/11/10 08:28:11 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll
[2009/11/10 08:28:11 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2009/11/10 08:28:11 | 00,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll
[2009/11/10 08:28:10 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2009/11/10 08:28:10 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll
[2009/11/10 08:28:09 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll
[2009/11/10 08:28:09 | 00,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll
[2009/11/10 08:28:07 | 00,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe
[2009/11/10 08:28:07 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe
[2009/11/10 08:28:06 | 00,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe
[2009/11/10 08:28:06 | 00,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2009/11/10 08:28:05 | 00,380,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe
[2009/11/10 08:28:05 | 00,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys
[2009/11/10 08:28:05 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe
[2009/11/10 08:28:05 | 00,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe
[2009/11/10 08:28:05 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll
[2009/11/10 08:28:04 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2009/11/10 08:28:04 | 00,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll
[2009/11/10 08:28:04 | 00,171,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll
[2009/11/10 08:28:04 | 00,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys
[2009/11/10 08:28:04 | 00,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll
[2009/11/10 08:28:04 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2009/11/10 08:28:03 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2009/11/10 08:28:03 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll
[2009/11/10 08:28:03 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2009/11/10 08:28:03 | 00,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll
[2009/11/10 08:28:03 | 00,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2009/11/10 08:28:03 | 00,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll
[2009/11/10 08:28:02 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2009/11/10 08:28:02 | 00,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll
[2009/11/10 08:28:02 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll
[2009/11/10 08:28:02 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe
[2009/11/10 08:28:02 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2009/11/10 08:28:02 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll
[2009/11/10 08:28:01 | 00,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll
[2009/11/10 08:28:01 | 00,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll
[2009/11/10 08:28:01 | 00,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll
[2009/11/10 08:28:00 | 00,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll
[2009/11/10 08:28:00 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll
[2009/11/10 08:28:00 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll
[2009/11/10 08:28:00 | 00,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll
[2009/11/10 08:27:59 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll
[2009/11/10 08:27:59 | 00,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll
[2009/11/10 08:27:59 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll
[2009/11/10 08:27:59 | 00,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll
[2009/11/10 08:27:59 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll
[2009/11/10 08:27:59 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll
[2009/11/10 08:27:59 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll
[2009/11/10 08:27:58 | 01,032,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe
[2009/11/10 08:27:58 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2009/11/10 08:27:58 | 00,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll
[2009/11/10 08:27:58 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2009/11/10 08:27:58 | 00,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll
[2009/11/10 08:27:58 | 00,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2009/11/10 08:27:57 | 00,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll
[2009/11/10 08:27:57 | 00,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll
[2009/11/10 08:27:57 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll
[2009/11/10 08:27:57 | 00,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2009/11/10 08:27:57 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll
[2009/11/10 08:27:57 | 00,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe
[2009/11/10 08:27:56 | 00,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2009/11/10 08:27:56 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll
[2009/11/10 08:27:56 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe
[2009/11/10 08:27:56 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2009/11/10 08:27:56 | 00,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll
[2009/11/10 08:27:55 | 00,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll
[2009/11/10 08:27:54 | 02,479,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll
[2009/11/10 08:27:53 | 00,274,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll
[2009/11/10 08:27:53 | 00,192,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll
[2009/11/10 08:27:53 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe
[2009/11/10 08:27:53 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe
[2009/11/10 08:27:53 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll
[2009/11/10 08:27:53 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2009/11/10 08:27:53 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe
[2009/11/10 08:27:53 | 00,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2009/11/10 08:27:52 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2009/11/10 08:27:52 | 00,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll
[2009/11/10 08:27:52 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2009/11/10 08:27:52 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll
[2009/11/10 08:27:52 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2009/11/10 08:27:52 | 00,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll
[2009/11/10 08:27:52 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2009/11/10 08:27:52 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll
[2009/11/10 08:27:50 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe
[2009/11/10 08:27:50 | 00,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll
[2009/11/10 08:27:50 | 00,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe
[2009/11/10 08:27:50 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll
[2009/11/10 08:27:50 | 00,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll
[2009/11/10 08:27:50 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll
[2009/11/10 08:27:50 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe
[2009/11/10 08:27:50 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe
[2009/11/10 08:27:49 | 00,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll
[2009/11/10 08:27:49 | 00,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll
[2009/11/10 08:27:48 | 00,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll
[2009/11/10 08:27:48 | 00,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll
[2009/11/10 08:27:48 | 00,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll
[2009/11/10 08:27:48 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll
[2009/11/10 08:27:48 | 00,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll
[2009/11/10 08:27:47 | 00,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll
[2009/11/10 08:27:47 | 00,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll
[2009/11/10 08:27:47 | 00,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll
[2009/11/10 08:27:47 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll
[2009/11/10 08:27:47 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll
[2009/11/10 08:27:47 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll
[2009/11/10 08:27:47 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll
[2009/11/10 08:27:47 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll
[2009/11/10 08:27:47 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll
[2009/11/10 08:27:46 | 00,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2009/11/10 08:27:46 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll
[2009/11/10 08:27:46 | 00,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll
[2009/11/10 08:27:46 | 00,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll
[2009/11/10 08:27:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb
[2009/11/10 08:27:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb
[2009/11/10 08:27:46 | 00,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb
[2009/11/10 08:27:46 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb
[2009/11/10 08:27:46 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb
[2009/11/10 08:27:46 | 00,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll
[2009/11/10 08:27:46 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll
[2009/11/10 08:27:45 | 00,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2009/11/10 08:27:45 | 00,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll
[2009/11/10 08:27:45 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll
[2009/11/10 08:27:45 | 00,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll
[2009/11/10 08:27:45 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll
[2009/11/10 08:27:45 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll
[2009/11/10 08:27:45 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll
[2009/11/10 08:27:45 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll
[2009/11/10 08:27:45 | 00,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll
[2009/11/10 08:27:45 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll
[2009/11/10 08:27:44 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2009/11/10 08:27:43 | 00,638,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe
[2009/11/10 08:27:43 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll
[2009/11/10 08:27:43 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe
[2009/11/10 08:27:43 | 00,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2009/11/10 08:27:42 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2009/11/10 08:27:22 | 00,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2009/11/10 08:27:20 | 00,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2009/11/10 08:27:17 | 00,000,000 | ---D | C] -- C:\Program Files\Online Services
[2009/11/10 08:27:16 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2009/11/10 08:27:16 | 00,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2009/11/10 08:27:12 | 00,000,000 | ---D | C] -- C:\Program Files\Messenger
[2009/11/10 08:27:11 | 01,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2009/11/10 08:27:11 | 00,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2009/11/10 08:27:11 | 00,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2009/11/10 08:27:10 | 02,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2009/11/10 08:27:10 | 00,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2009/11/10 08:27:10 | 00,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2009/11/10 08:27:10 | 00,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2009/11/10 08:27:10 | 00,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2009/11/10 08:27:10 | 00,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2009/11/10 08:27:10 | 00,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2009/11/10 08:27:10 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2009/11/10 08:27:10 | 00,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2009/11/10 08:27:09 | 01,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2009/11/10 08:27:09 | 00,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2009/11/10 08:27:09 | 00,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2009/11/10 08:27:09 | 00,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2009/11/10 08:27:09 | 00,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2009/11/10 08:27:09 | 00,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2009/11/10 08:27:09 | 00,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2009/11/10 08:27:08 | 01,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2009/11/10 08:27:08 | 00,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2009/11/10 08:27:07 | 00,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2009/11/10 08:27:07 | 00,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2009/11/10 08:27:07 | 00,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2009/11/10 08:27:07 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2009/11/10 08:27:07 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2009/11/10 08:27:07 | 00,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2009/11/10 08:26:56 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2009/11/10 08:26:56 | 00,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2009/11/10 08:26:56 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2009/11/10 08:26:56 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2009/11/10 08:26:56 | 00,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2009/11/10 08:26:56 | 00,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2009/11/10 08:26:55 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2009/11/10 08:26:55 | 00,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2009/11/10 08:26:55 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2009/11/10 08:26:55 | 00,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2009/11/10 08:26:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2009/11/10 08:26:55 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2009/11/10 08:26:44 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2009/11/10 08:26:44 | 00,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2009/11/10 08:26:44 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2009/11/10 08:26:44 | 00,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2009/11/10 08:26:43 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2009/11/10 08:26:43 | 00,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2009/11/10 08:26:43 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2009/11/10 08:26:43 | 00,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2009/11/10 08:26:43 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2009/11/10 08:26:43 | 00,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2009/11/10 08:26:42 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2009/11/10 08:26:42 | 00,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2009/11/10 08:26:42 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2009/11/10 08:26:42 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2009/11/10 08:26:42 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2009/11/10 08:26:42 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2009/11/10 08:26:41 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2009/11/10 08:26:41 | 00,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2009/11/10 08:26:41 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2009/11/10 08:26:41 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2009/11/10 08:26:41 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2009/11/10 08:26:41 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2009/11/10 08:26:41 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2009/11/10 08:26:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2009/11/10 08:26:41 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2009/11/10 08:26:41 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2009/11/10 08:26:41 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2009/11/10 08:26:41 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2009/11/10 08:26:40 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2009/11/10 08:26:40 | 00,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2009/11/10 08:26:40 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2009/11/10 08:26:40 | 00,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2009/11/10 08:26:40 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2009/11/10 08:26:40 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2009/11/10 08:26:39 | 00,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2009/11/10 08:26:39 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2009/11/10 08:26:35 | 00,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2009/11/10 08:26:34 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2009/11/10 08:26:34 | 00,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2009/11/10 08:26:34 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2009/11/10 08:26:34 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2009/11/10 08:26:34 | 00,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2009/11/10 08:26:34 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2009/11/10 08:26:34 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2009/11/10 08:26:34 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2009/11/10 08:26:34 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2009/11/10 08:26:33 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2009/11/10 08:26:33 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2009/11/10 08:26:33 | 00,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2009/11/10 08:26:33 | 00,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2009/11/10 08:26:32 | 00,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2009/11/10 08:26:32 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2009/11/10 08:26:13 | 00,000,000 | ---D | C] -- C:\Program Files\MSN
[2009/11/10 08:26:12 | 00,281,088 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe
[2009/11/10 08:26:12 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe
[2009/11/10 08:26:12 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2009/11/10 08:26:12 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2009/11/10 08:26:12 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe
[2009/11/10 08:26:12 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl
[2009/11/10 08:26:12 | 00,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2009/11/10 08:26:11 | 00,539,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe
[2009/11/10 08:26:11 | 00,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2009/11/10 08:26:11 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2009/11/10 08:26:11 | 00,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2009/11/10 08:26:10 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2009/11/10 08:26:10 | 00,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe
[2009/11/10 08:26:10 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe
[2009/11/10 08:26:10 | 00,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2009/11/10 08:26:10 | 00,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2009/11/10 08:26:09 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2009/11/10 08:26:09 | 00,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe
[2009/11/10 08:26:08 | 00,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2009/11/10 08:26:08 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2009/11/10 08:26:08 | 00,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll
[2009/11/10 08:26:08 | 00,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys
[2009/11/10 08:26:08 | 00,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys
[2009/11/10 08:26:08 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2009/11/10 08:26:07 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2009/11/10 08:26:07 | 00,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll
[2009/11/10 08:26:07 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll
[2009/11/10 08:26:07 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2009/11/10 08:26:07 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2009/11/10 08:26:07 | 00,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll
[2009/11/10 08:26:06 | 02,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll
[2009/11/10 08:26:05 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe
[2009/11/10 08:26:05 | 00,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe
[2009/11/10 08:26:05 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2009/11/10 08:26:05 | 00,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll
[2009/11/10 08:26:05 | 00,141,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe
[2009/11/10 08:26:05 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2009/11/10 08:26:05 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe
[2009/11/10 08:26:05 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll
[2009/11/10 08:26:05 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2009/11/10 08:26:05 | 00,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe
[2009/11/10 08:26:04 | 00,295,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll
[2009/11/10 08:26:04 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2009/11/10 08:26:04 | 00,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll
[2009/11/10 08:26:04 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2009/11/10 08:26:04 | 00,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2009/11/10 08:26:04 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe
[2009/11/10 08:26:04 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2009/11/10 08:26:04 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll
[2009/11/10 08:26:03 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2009/11/10 08:26:03 | 00,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll
[2009/11/10 08:26:03 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2009/11/10 08:26:03 | 00,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll
[2009/11/10 08:26:03 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll
[2009/11/10 08:26:03 | 00,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2009/11/10 08:26:03 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2009/11/10 08:26:02 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2009/11/10 08:26:02 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll
[2009/11/10 08:26:02 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2009/11/10 08:26:02 | 00,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll
[2009/11/10 08:26:02 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2009/11/10 08:26:02 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll
[2009/11/10 08:26:02 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2009/11/10 08:26:02 | 00,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll
[2009/11/10 08:26:02 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe
[2009/11/10 08:26:01 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe
[2009/11/10 08:26:00 | 00,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll
[2009/11/10 08:26:00 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll
[2009/11/10 08:26:00 | 00,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2009/11/10 08:26:00 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2009/11/10 08:26:00 | 00,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll
[2009/11/10 08:26:00 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2009/11/10 08:26:00 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll
[2009/11/10 08:26:00 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll
[2009/11/10 08:26:00 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2009/11/10 08:26:00 | 00,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe
[2009/11/10 08:26:00 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe
[2009/11/10 08:26:00 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2009/11/10 08:26:00 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2009/11/10 08:26:00 | 00,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll
[2009/11/10 08:26:00 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2009/11/10 08:25:59 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll
[2009/11/10 08:25:59 | 00,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2009/11/10 08:25:59 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll
[2009/11/10 08:25:59 | 00,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2009/11/10 08:25:59 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll
[2009/11/10 08:25:59 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2009/11/10 08:25:59 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2009/11/10 08:25:59 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll
[2009/11/10 08:25:58 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll
[2009/11/10 08:25:58 | 00,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2009/11/10 08:25:58 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll
[2009/11/10 08:25:58 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2009/11/10 08:25:57 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll
[2009/11/10 08:25:57 | 01,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2009/11/10 08:25:57 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll
[2009/11/10 08:25:57 | 00,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2009/11/10 08:25:57 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll
[2009/11/10 08:25:57 | 00,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2009/11/10 08:25:56 | 00,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll
[2009/11/10 08:25:54 | 00,358,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe
[2009/11/10 08:25:54 | 00,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll
[2009/11/10 08:25:54 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll
[2009/11/10 08:25:54 | 00,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll
[2009/11/10 08:25:54 | 00,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll
[2009/11/10 08:25:54 | 00,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll
[2009/11/10 08:25:54 | 00,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe
[2009/11/10 08:25:54 | 00,095,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll
[2009/11/10 08:25:54 | 00,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll
[2009/11/10 08:25:54 | 00,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll
[2009/11/10 08:25:54 | 00,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll
[2009/11/10 08:25:54 | 00,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll
[2009/11/10 08:25:54 | 00,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll
[2009/11/10 08:25:54 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll
[2009/11/10 08:25:53 | 00,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll
[2009/11/10 08:25:53 | 00,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll
[2009/11/10 08:25:53 | 00,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll
[2009/11/10 08:25:53 | 00,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll
[2009/11/10 08:25:53 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe
[2009/11/10 08:25:53 | 00,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll
[2009/11/10 08:25:53 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll
[2009/11/10 08:25:53 | 00,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll
[2009/11/10 08:25:53 | 00,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe
[2009/11/10 08:25:53 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll
[2009/11/10 08:25:53 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll
[2009/11/10 08:25:53 | 00,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll
[2009/11/10 08:25:52 | 00,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll
[2009/11/10 08:25:52 | 00,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll
[2009/11/10 08:25:52 | 00,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll
[2009/11/10 08:25:52 | 00,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe
[2009/11/10 08:25:51 | 00,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll
[2009/11/10 08:25:51 | 00,123,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll
[2009/11/10 08:25:51 | 00,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll
[2009/11/10 08:25:51 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll
[2009/11/10 08:25:51 | 00,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll
[2009/11/10 08:25:51 | 00,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe
[2009/11/10 08:25:50 | 00,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll
[2009/11/10 08:25:50 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll
[2009/11/10 08:25:48 | 01,358,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll
[2009/11/10 08:25:48 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2009/11/10 08:25:48 | 00,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll
[2009/11/10 08:25:48 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2009/11/10 08:25:48 | 00,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll
[2009/11/10 08:25:48 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2009/11/10 08:25:48 | 00,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll
[2009/11/10 08:25:47 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll
[2009/11/10 08:25:47 | 00,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2009/11/10 08:25:43 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2009/11/10 02:22:11 | 00,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2009/11/10 02:21:51 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2009/11/10 02:21:51 | 00,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbui.dll
[2009/11/10 02:21:45 | 00,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2009/11/10 02:21:03 | 00,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2009/11/10 02:21:03 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2009/11/10 02:21:02 | 00,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2009/11/10 02:21:01 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2009/11/10 02:21:00 | 00,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2009/11/10 02:20:59 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2009/11/10 02:20:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2009/11/10 02:20:58 | 00,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll
[2009/11/10 02:20:58 | 00,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl
[2009/11/10 02:20:58 | 00,000,000 | ---D | C] -- C:\Program Files
[2009/11/10 02:20:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2009/11/10 02:20:58 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files
[2009/11/10 02:20:57 | 00,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll
[2009/11/10 02:20:57 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll
[2009/11/10 02:20:57 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll
[2009/11/10 02:20:56 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll
[2009/11/10 02:20:56 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll
[2009/11/10 02:20:56 | 00,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll
[2009/11/10 02:20:54 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2009/11/10 02:20:54 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2009/11/10 02:20:54 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2009/11/10 02:20:54 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2009/11/10 02:20:54 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2009/11/10 02:20:54 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2009/11/10 02:20:52 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2009/11/10 02:20:52 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2009/11/10 02:20:49 | 00,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2009/11/10 02:20:49 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2009/11/10 02:20:49 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2009/11/10 02:20:49 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2009/11/10 02:20:49 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2009/11/10 02:20:49 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2009/11/10 02:20:49 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2009/11/10 02:20:49 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2009/11/10 02:20:49 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2009/11/10 02:20:49 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2009/11/10 02:20:49 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2009/11/10 02:20:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2009/11/10 02:20:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2009/11/10 02:20:49 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2009/11/10 02:20:48 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2009/11/10 02:20:48 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2009/11/10 02:20:48 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2009/11/10 02:20:48 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2009/11/10 02:20:48 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2009/11/10 02:20:48 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2009/11/10 02:20:48 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2009/11/10 02:20:48 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2009/11/10 02:20:47 | 00,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2009/11/10 02:20:47 | 00,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2009/11/10 02:20:46 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2009/11/10 02:20:46 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2009/11/10 02:20:46 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2009/11/10 02:20:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2009/11/10 02:20:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2009/11/10 02:20:46 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2009/11/10 02:20:46 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2009/11/10 02:20:46 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2009/11/10 02:20:45 | 00,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2009/11/10 02:20:45 | 00,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2009/11/10 02:20:45 | 00,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2009/11/10 02:20:45 | 00,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2009/11/10 02:20:45 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2009/11/10 02:20:45 | 00,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2009/11/10 02:20:45 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2009/11/10 02:20:45 | 00,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2009/11/10 02:20:42 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2009/11/10 02:20:42 | 00,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2009/11/10 02:20:42 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2009/11/10 02:20:42 | 00,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2009/11/10 02:20:42 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2009/11/10 02:20:42 | 00,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2009/11/10 02:20:42 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2009/11/10 02:20:42 | 00,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2009/11/10 02:20:42 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2009/11/10 02:20:42 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2009/11/10 02:20:41 | 00,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2009/11/10 02:20:41 | 00,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2009/11/10 02:20:41 | 00,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2009/11/10 02:20:41 | 00,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2009/11/10 02:20:41 | 00,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2009/11/10 02:20:41 | 00,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2009/11/10 02:20:41 | 00,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2009/11/10 02:20:40 | 00,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2009/11/10 02:20:40 | 00,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2009/11/10 02:20:40 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2009/11/10 02:20:40 | 00,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2009/11/10 02:20:40 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2009/11/10 02:20:40 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2009/11/10 02:20:40 | 00,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2009/11/10 02:20:40 | 00,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2009/11/10 02:20:39 | 00,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2009/11/10 02:20:39 | 00,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2009/11/10 02:20:39 | 00,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2009/11/10 02:20:39 | 00,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2009/11/10 02:20:39 | 00,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2009/11/10 02:20:39 | 00,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2009/11/10 02:20:38 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2009/11/10 02:20:38 | 00,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2009/11/10 02:20:38 | 00,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys
[2009/11/10 02:20:38 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll
[2009/11/10 02:20:38 | 00,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2009/11/10 02:20:37 | 00,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV
[2009/11/10 02:20:37 | 00,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2009/11/10 02:20:36 | 00,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2009/11/10 02:20:33 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2009/11/10 02:20:33 | 00,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2009/11/10 02:20:33 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2009/11/10 02:20:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2009/11/10 02:20:33 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2009/11/10 02:20:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2009/11/10 02:20:19 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2009/11/10 02:20:14 | 00,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2009/11/10 02:20:14 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2009/11/10 02:19:48 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009/11/10 02:19:48 | 00,000,000 | ---D | C] -- C:\Documents and Settings
[2009/11/10 02:10:37 | 00,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2009/11/10 02:10:37 | 00,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2009/11/10 02:10:37 | 00,000,000 | R--D | C] -- C:\WINDOWS\Web
[2009/11/10 02:10:37 | 00,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\system32
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\system
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\security
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\repair
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\mui
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Media
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\java
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\ime
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Help
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Dell
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\Config
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\addins
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2009/11/10 02:10:37 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2009/11/07 07:16:24 | 04,045,544 | ---- | C] (Malwarebytes Corporation ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\mbam-setup.exe
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2009/12/03 07:24:31 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\OTL.exe
[2009/12/03 07:21:52 | 00,341,504 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Bob Kapolnek\Desktop\TFC.exe
[2009/12/03 07:20:06 | 00,195,368 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2009/12/03 07:08:50 | 00,070,778 | ---- | M] (jpshortstuff) -- C:\Documents and Settings\Bob Kapolnek\Desktop\GooredFix.exe
[2009/12/03 07:07:33 | 00,556,412 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2009/12/03 07:07:33 | 00,466,136 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2009/12/03 07:07:33 | 00,079,836 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2009/12/03 07:03:04 | 00,036,244 | ---- | M] () -- C:\WINDOWS\System32\nvwsapps.xml
[2009/12/03 07:02:34 | 00,010,938 | ---- | M] () -- C:\WINDOWS\System32\Config.MPF
[2009/12/03 07:02:21 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2009/12/03 07:02:18 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2009/12/03 07:02:17 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2009/12/03 07:01:09 | 04,456,448 | -H-- | M] () -- C:\Documents and Settings\Bob Kapolnek\NTUSER.DAT
[2009/12/03 07:00:32 | 04,313,430 | -H-- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\IconCache.db
[2009/12/03 06:49:44 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/12/03 06:48:25 | 04,045,544 | ---- | M] (Malwarebytes Corporation ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\mbam-setup.exe
[2009/12/02 05:24:48 | 00,195,368 | ---- | M] () -- C:\WINDOWS\System32\nvModes.dat
[2009/12/01 13:37:15 | 00,019,456 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/12/01 07:21:00 | 00,000,472 | ---- | M] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/12/01 07:09:13 | 00,000,178 | -HS- | M] () -- C:\Documents and Settings\Bob Kapolnek\ntuser.ini
[2009/12/01 07:07:38 | 00,135,888 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2009/12/01 03:20:53 | 00,471,576 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/12/01 03:01:04 | 00,000,582 | ---- | M] () -- C:\WINDOWS\win.ini
[2009/11/30 14:38:01 | 00,002,137 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/11/30 12:43:32 | 00,002,497 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Drive Manager.lnk
[2009/11/30 12:20:31 | 00,001,604 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/30 12:16:29 | 93,234,472 | ---- | M] (Apple Inc.) -- C:\Documents and Settings\Bob Kapolnek\Desktop\iTunesSetup.exe
[2009/11/30 10:34:35 | 61,981,353 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\NFPA.rar
[2009/11/30 10:18:03 | 06,498,386 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\nfpa_25.pdf
[2009/11/26 09:57:01 | 00,000,284 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/11/25 14:49:34 | 00,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2009/11/25 11:49:25 | 00,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/11/23 08:15:17 | 00,524,288 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\dds.scr
[2009/11/22 13:22:44 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\settings.dat
[2009/11/22 13:22:31 | 00,472,064 | ---- | M] ( ) -- C:\Documents and Settings\Bob Kapolnek\Desktop\RootRepeal.exe
[2009/11/22 11:15:12 | 00,001,734 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\HijackThis.lnk
[2009/11/20 16:42:27 | 00,001,875 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Carbonite Backup Drive.lnk
[2009/11/20 13:24:46 | 00,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/11/20 13:24:46 | 00,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/11/19 06:46:33 | 00,000,000 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\rx_image.Cache
[2009/11/18 07:55:36 | 00,374,324 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\bookmarks-2009-11-18.json
[2009/11/17 07:35:58 | 00,093,360 | ---- | M] (Sunbelt Software) -- C:\WINDOWS\System32\drivers\SBREDrv.sys
[2009/11/16 13:24:43 | 00,001,596 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Window Washer.lnk
[2009/11/16 09:36:17 | 00,001,931 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Easy Media Creator 10 Suite.lnk
[2009/11/16 04:52:19 | 00,000,234 | ---- | M] () -- C:\WINDOWS\wininit.ini
[2009/11/16 04:51:20 | 00,001,923 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Roxio Creator Home.lnk
[2009/11/15 18:55:45 | 00,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\EOS Utility.lnk
[2009/11/15 18:55:13 | 00,000,923 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ZoomBrowser EX.lnk
[2009/11/15 18:50:39 | 00,000,227 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\PIXELA Product Registration.url
[2009/11/15 18:50:39 | 00,000,227 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer Homepage.url
[2009/11/15 18:50:28 | 00,000,701 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Ver.3.lnk
[2009/11/15 18:50:28 | 00,000,695 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Player Ver.3 .lnk
[2009/11/15 18:50:28 | 00,000,625 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.3.lnk
[2009/11/12 08:13:34 | 00,000,746 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Microsoft Word.lnk
[2009/11/12 07:24:16 | 00,001,587 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Convert with deskPDF.lnk
[2009/11/11 12:55:29 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009/11/11 09:52:10 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2009/11/11 08:31:55 | 00,001,750 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Printer Status Monitor.lnk
[2009/11/11 08:08:06 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2009/11/11 08:08:06 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2009/11/11 08:08:06 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2009/11/11 08:08:06 | 00,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2009/11/11 08:08:06 | 00,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2009/11/11 07:12:41 | 00,176,080 | ---- | M] () -- C:\WINDOWS\hppins13.dat
[2009/11/11 07:10:23 | 00,000,158 | ---- | M] () -- C:\WINDOWS\System32\AddPort.ini
[2009/11/11 07:10:22 | 00,000,730 | ---- | M] () -- C:\WINDOWS\hpntwksetup.ini
[2009/11/10 23:08:24 | 00,094,208 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTimeVR.qtx
[2009/11/10 23:08:24 | 00,069,632 | ---- | M] (Apple Inc.) -- C:\WINDOWS\System32\QuickTime.qts
[2009/11/10 12:32:44 | 00,001,787 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2009/11/10 10:36:56 | 00,001,731 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\AutoCAD LT 2009.lnk
[2009/11/10 10:29:18 | 00,001,819 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Autodesk Design Review.lnk
[2009/11/10 10:26:30 | 00,032,376 | ---- | M] () -- C:\WINDOWS\PeachWLog.XML
[2009/11/10 10:25:38 | 00,001,792 | ---- | M] () -- C:\WINDOWS\PCW160.ini
[2009/11/10 10:25:31 | 00,002,635 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Knowledge Center.lnk
[2009/11/10 10:25:31 | 00,002,635 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Business Checks and Forms.lnk
[2009/11/10 10:25:30 | 00,001,609 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Complete Accounting 2009.lnk
[2009/11/10 10:22:41 | 00,004,633 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2009/11/10 10:21:13 | 00,066,560 | ---- | M] (Smithware, Inc.) -- C:\WINDOWS\System32\s2dtconv.dll
[2009/11/10 10:21:13 | 00,024,576 | ---- | M] (Smithware, Inc.) -- C:\WINDOWS\System32\Sbtrvd32.dll
[2009/11/10 10:21:13 | 00,007,358 | ---- | M] () -- C:\WINDOWS\support.ICO
[2009/11/10 10:21:13 | 00,007,358 | ---- | M] () -- C:\WINDOWS\forms.ICO
[2009/11/10 10:21:13 | 00,005,222 | ---- | M] () -- C:\WINDOWS\ADOBE.ICO
[2009/11/10 10:21:13 | 00,000,766 | ---- | M] () -- C:\WINDOWS\ACTGPR2.ICO
[2009/11/10 09:54:35 | 00,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2009/11/10 09:50:22 | 04,064,976 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\RICOH_MULTI-DEVICE_A00_R215879.exe
[2009/11/10 09:49:43 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009/11/10 09:49:43 | 00,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2009/11/10 09:48:32 | 09,295,083 | ---- | M] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\Dell_Touchpad----Pointing-St_A09_R212017.exe
[2009/11/10 08:33:50 | 00,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2009/11/10 08:33:03 | 00,000,290 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2009/11/10 08:30:49 | 00,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/11/10 08:30:49 | 00,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009/11/10 08:30:49 | 00,000,000 | RHS- | M] () -- C:\IO.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2009/11/10 08:30:49 | 00,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2009/11/10 08:30:47 | 00,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2009/11/10 08:29:50 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2009/11/10 08:29:50 | 00,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2009/11/10 08:27:24 | 00,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/11/10 08:27:22 | 00,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2009/11/10 08:27:22 | 00,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[2009/11/10 08:25:02 | 00,000,211 | -HS- | M] () -- C:\boot.ini
[2009/11/10 02:21:07 | 00,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF
[2009/11/10 02:20:57 | 00,000,231 | ---- | M] () -- C:\WINDOWS\system.ini
[3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[2 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2009/12/03 06:49:44 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Malwarebytes' Anti-Malware.lnk
[2009/11/30 12:22:00 | 00,002,137 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\iTunes.lnk
[2009/11/30 12:20:31 | 00,001,604 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\QuickTime Player.lnk
[2009/11/30 10:27:17 | 61,981,353 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\NFPA.rar
[2009/11/30 10:16:56 | 06,498,386 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\nfpa_25.pdf
[2009/11/24 11:15:00 | 00,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2009/11/22 13:22:44 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\settings.dat
[2009/11/22 11:34:47 | 00,524,288 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\dds.scr
[2009/11/22 11:15:12 | 00,001,734 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\HijackThis.lnk
[2009/11/20 12:49:09 | 00,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2009/11/20 12:49:08 | 00,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2009/11/19 08:29:20 | 00,019,456 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/11/19 06:46:33 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\rx_image.Cache
[2009/11/18 07:55:36 | 00,374,324 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\bookmarks-2009-11-18.json
[2009/11/17 07:22:26 | 00,000,472 | ---- | C] () -- C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
[2009/11/16 13:24:43 | 00,001,596 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Window Washer.lnk
[2009/11/16 09:36:17 | 00,001,931 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Easy Media Creator 10 Suite.lnk
[2009/11/16 04:52:17 | 00,001,109 | ---- | C] () -- C:\WINDOWS\System32\drivers\PConfig.DCF
[2009/11/16 04:52:17 | 00,000,234 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2009/11/16 04:51:20 | 00,001,923 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Roxio Creator Home.lnk
[2009/11/15 18:55:45 | 00,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\EOS Utility.lnk
[2009/11/15 18:55:13 | 00,000,923 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ZoomBrowser EX.lnk
[2009/11/15 18:50:39 | 00,000,227 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\PIXELA Product Registration.url
[2009/11/15 18:50:28 | 00,000,701 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Ver.3.lnk
[2009/11/15 18:50:28 | 00,000,695 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\ImageMixer 3 SE Player Ver.3 .lnk
[2009/11/15 18:50:28 | 00,000,625 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ImageMixer 3 SE Camera Monitor Ver.3.lnk
[2009/11/12 13:14:55 | 00,010,938 | ---- | C] () -- C:\WINDOWS\System32\Config.MPF
[2009/11/12 08:13:34 | 00,000,746 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Desktop\Microsoft Word.lnk
[2009/11/12 07:24:35 | 00,018,790 | ---- | C] () -- C:\WINDOWS\System32\ddmon.dll
[2009/11/12 07:24:16 | 00,001,587 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Convert with deskPDF.lnk
[2009/11/11 12:55:29 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2009/11/11 09:52:10 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Adobe Reader 9.lnk
[2009/11/11 08:31:55 | 00,001,750 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Printer Status Monitor.lnk
[2009/11/11 08:30:14 | 00,004,907 | R--- | C] () -- C:\WINDOWS\font1.sii
[2009/11/11 08:30:13 | 00,009,834 | ---- | C] () -- C:\WINDOWS\System32\SN0EUD61.MCF
[2009/11/11 08:30:13 | 00,000,100 | ---- | C] () -- C:\WINDOWS\System32\SN0ELMON.dat
[2009/11/11 08:30:13 | 00,000,074 | ---- | C] () -- C:\WINDOWS\System32\SN0ELMON.mtx
[2009/11/11 08:30:04 | 00,172,128 | R--- | C] () -- C:\WINDOWS\_isusr32.dll
[2009/11/11 08:29:59 | 00,041,752 | ---- | C] () -- C:\WINDOWS\System32\SCN2PM.chm
[2009/11/11 08:29:59 | 00,009,773 | ---- | C] () -- C:\WINDOWS\System32\SCN2PM.HLP
[2009/11/11 08:29:59 | 00,000,397 | ---- | C] () -- C:\WINDOWS\System32\SCN2PM.DAT
[2009/11/11 08:29:55 | 00,045,056 | ---- | C] () -- C:\WINDOWS\System32\_isusr2k.dll
[2009/11/11 08:26:57 | 00,006,686 | R--- | C] () -- C:\WINDOWS\sn0eins.sii
[2009/11/11 08:26:57 | 00,006,386 | R--- | C] () -- C:\WINDOWS\sn0fins.sii
[2009/11/11 08:26:57 | 00,006,149 | R--- | C] () -- C:\WINDOWS\sn0hins.sii
[2009/11/11 08:26:57 | 00,002,957 | R--- | C] () -- C:\WINDOWS\sn0jins.sii
[2009/11/11 07:10:35 | 00,000,619 | R--- | C] () -- C:\WINDOWS\System32\hppapr13.dat
[2009/11/11 07:10:23 | 00,000,158 | ---- | C] () -- C:\WINDOWS\System32\AddPort.ini
[2009/11/11 07:09:33 | 00,000,730 | ---- | C] () -- C:\WINDOWS\hpntwksetup.ini
[2009/11/11 07:07:13 | 00,176,080 | ---- | C] () -- C:\WINDOWS\hppins13.dat
[2009/11/11 07:07:13 | 00,000,236 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2009/11/11 07:07:12 | 00,005,682 | ---- | C] () -- C:\WINDOWS\hppmdl13.dat
[2009/11/10 14:55:59 | 00,000,000 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\WavXMapDrive.bat
[2009/11/10 13:22:48 | 00,000,284 | ---- | C] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2009/11/10 12:32:44 | 00,001,787 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Windows Search.lnk
[2009/11/10 10:36:56 | 00,001,731 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\AutoCAD LT 2009.lnk
[2009/11/10 10:29:18 | 00,001,819 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Autodesk Design Review.lnk
[2009/11/10 10:25:31 | 00,002,635 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Knowledge Center.lnk
[2009/11/10 10:25:31 | 00,002,635 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Business Checks and Forms.lnk
[2009/11/10 10:25:30 | 00,007,358 | ---- | C] () -- C:\WINDOWS\support.ICO
[2009/11/10 10:25:30 | 00,007,358 | ---- | C] () -- C:\WINDOWS\forms.ICO
[2009/11/10 10:25:30 | 00,005,222 | ---- | C] () -- C:\WINDOWS\ADOBE.ICO
[2009/11/10 10:25:30 | 00,001,609 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Peachtree Complete Accounting 2009.lnk
[2009/11/10 10:25:30 | 00,000,766 | ---- | C] () -- C:\WINDOWS\ACTGPR2.ICO
[2009/11/10 10:21:30 | 00,032,376 | ---- | C] () -- C:\WINDOWS\PeachWLog.XML
[2009/11/10 10:02:13 | 00,001,875 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Carbonite Backup Drive.lnk
[2009/11/10 09:59:43 | 00,002,497 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Drive Manager.lnk
[2009/11/10 09:54:35 | 00,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2009/11/10 09:50:06 | 04,064,976 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\RICOH_MULTI-DEVICE_A00_R215879.exe
[2009/11/10 09:49:43 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2009/11/10 09:49:43 | 00,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_Apfiltr_01005.Wdf
[2009/11/10 09:48:01 | 09,295,083 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\My Documents\Dell_Touchpad----Pointing-St_A09_R212017.exe
[2009/11/10 09:37:14 | 00,000,664 | ---- | C] () -- C:\WINDOWS\System32\dellsysids.enc
[2009/11/10 09:36:44 | 00,001,904 | ---- | C] () -- C:\WINDOWS\System32\SetupBD.din
[2009/11/10 09:36:40 | 00,002,900 | ---- | C] () -- C:\WINDOWS\System32\e1y5132.din
[2009/11/10 09:32:28 | 00,753,664 | ---- | C] () -- C:\WINDOWS\System32\bcm1xsup.dll
[2009/11/10 09:32:28 | 00,024,064 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE
[2009/11/10 09:32:28 | 00,000,416 | ---- | C] () -- C:\WINDOWS\System32\vcredist_x86.bat
[2009/11/10 09:29:57 | 00,195,368 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat
[2009/11/10 09:29:57 | 00,195,368 | ---- | C] () -- C:\WINDOWS\System32\nvModes.001
[2009/11/10 09:28:08 | 00,189,853 | ---- | C] () -- C:\WINDOWS\System32\nvapps.xml
[2009/11/10 09:28:08 | 00,036,244 | ---- | C] () -- C:\WINDOWS\System32\nvwsapps.xml
[2009/11/10 09:28:07 | 00,018,335 | ---- | C] () -- C:\WINDOWS\System32\nvdisp.nvu
[2009/11/10 09:27:49 | 01,630,208 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe
[2009/11/10 09:27:48 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2009/11/10 09:27:48 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2009/11/10 09:27:47 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2009/11/10 09:27:47 | 00,073,728 | ---- | C] () -- C:\WINDOWS\System32\nvtuicpl.cpl
[2009/11/10 09:27:46 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2009/11/10 09:27:45 | 01,339,392 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe
[2009/11/10 09:27:42 | 00,442,368 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe
[2009/11/10 09:27:41 | 00,425,984 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe
[2009/11/10 08:35:41 | 00,000,178 | -HS- | C] () -- C:\Documents and Settings\Bob Kapolnek\ntuser.ini
[2009/11/10 08:35:40 | 04,456,448 | -H-- | C] () -- C:\Documents and Settings\Bob Kapolnek\NTUSER.DAT
[2009/11/10 08:33:50 | 00,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2009/11/10 08:33:03 | 00,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2009/11/10 08:32:52 | 00,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2009/11/10 08:32:28 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2009/11/10 08:32:28 | 00,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2009/11/10 08:32:27 | 00,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2009/11/10 08:32:14 | 00,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2009/11/10 08:32:13 | 01,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2009/11/10 08:32:07 | 00,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2009/11/10 08:32:06 | 00,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2009/11/10 08:32:05 | 00,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2009/11/10 08:31:54 | 13,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2009/11/10 08:31:48 | 00,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2009/11/10 08:31:45 | 00,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2009/11/10 08:31:35 | 00,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2009/11/10 08:31:32 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2009/11/10 08:31:32 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2009/11/10 08:31:32 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2009/11/10 08:31:32 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2009/11/10 08:31:31 | 00,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2009/11/10 08:31:31 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2009/11/10 08:31:31 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2009/11/10 08:31:31 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2009/11/10 08:31:31 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2009/11/10 08:31:30 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2009/11/10 08:31:29 | 00,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2009/11/10 08:31:29 | 00,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2009/11/10 08:31:29 | 00,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2009/11/10 08:31:29 | 00,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2009/11/10 08:31:29 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2009/11/10 08:31:29 | 00,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2009/11/10 08:31:29 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2009/11/10 08:31:29 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2009/11/10 08:31:28 | 00,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2009/11/10 08:31:28 | 00,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2009/11/10 08:31:28 | 00,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2009/11/10 08:31:28 | 00,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2009/11/10 08:31:28 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2009/11/10 08:31:27 | 00,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2009/11/10 08:31:27 | 00,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2009/11/10 08:30:49 | 00,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2009/11/10 08:30:49 | 00,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2009/11/10 08:30:49 | 00,000,000 | RHS- | C] () -- C:\IO.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2009/11/10 08:30:49 | 00,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2009/11/10 08:30:45 | 00,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2009/11/10 08:29:50 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2009/11/10 08:29:50 | 00,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2009/11/10 08:29:44 | 00,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2009/11/10 08:29:31 | 04,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2009/11/10 08:29:12 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2009/11/10 08:29:11 | 00,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2009/11/10 08:29:02 | 00,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2009/11/10 08:28:07 | 00,376,832 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll
[2009/11/10 08:27:24 | 00,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2009/11/10 08:26:47 | 00,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2009/11/10 08:26:47 | 00,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2009/11/10 08:26:47 | 00,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2009/11/10 08:26:47 | 00,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2009/11/10 08:26:46 | 00,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2009/11/10 08:26:46 | 00,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2009/11/10 08:26:46 | 00,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2009/11/10 08:26:46 | 00,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2009/11/10 08:26:46 | 00,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2009/11/10 08:26:46 | 00,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2009/11/10 08:26:46 | 00,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2009/11/10 08:26:45 | 00,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2009/11/10 08:26:45 | 00,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2009/11/10 08:26:45 | 00,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2009/11/10 08:26:45 | 00,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2009/11/10 08:26:45 | 00,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2009/11/10 08:26:44 | 00,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2009/11/10 08:26:44 | 00,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2009/11/10 08:26:44 | 00,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2009/11/10 08:26:42 | 00,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2009/11/10 08:26:41 | 00,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2009/11/10 08:26:40 | 00,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2009/11/10 08:26:32 | 00,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009/11/10 02:21:07 | 00,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF
[2009/11/10 02:21:06 | 00,001,393 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2009/11/10 02:21:00 | 01,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2009/11/10 02:21:00 | 00,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2009/11/10 02:20:59 | 00,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2009/11/10 02:20:59 | 00,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2009/11/10 02:20:56 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2009/11/10 02:20:56 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2009/11/10 02:20:54 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2009/11/10 02:20:54 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2009/11/10 02:20:54 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2009/11/10 02:20:51 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2009/11/10 02:20:49 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2009/11/10 02:20:49 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2009/11/10 02:20:47 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2009/11/10 02:20:47 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2009/11/10 02:20:47 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2009/11/10 02:20:45 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls
[2009/11/10 02:20:45 | 00,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2009/11/10 02:20:45 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2009/11/10 02:20:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2009/11/10 02:20:43 | 00,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2009/11/10 02:20:38 | 00,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2009/11/10 02:20:32 | 00,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2009/11/10 02:20:32 | 00,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2009/11/10 02:20:32 | 00,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2009/11/10 02:20:32 | 00,112,918 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2009/11/10 02:20:32 | 00,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2009/11/10 02:20:32 | 00,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2009/11/10 02:20:32 | 00,034,063 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2009/11/10 02:20:32 | 00,026,991 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn7.cat
[2009/11/10 02:20:32 | 00,016,535 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2009/11/10 02:20:32 | 00,014,433 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msn9.cat
[2009/11/10 02:20:32 | 00,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2009/11/10 02:20:32 | 00,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2009/11/10 02:20:32 | 00,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2009/11/10 02:20:32 | 00,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2009/11/10 02:20:32 | 00,007,710 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2009/11/10 02:20:32 | 00,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2009/11/10 02:20:31 | 02,144,487 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2009/11/10 02:20:31 | 01,296,669 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT
[2009/11/10 02:20:31 | 00,522,220 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2009/11/10 02:19:47 | 00,471,576 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2009/11/10 02:19:01 | 00,000,211 | -HS- | C] () -- C:\boot.ini
[2009/11/10 02:19:00 | 00,000,290 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2009/06/12 10:15:32 | 00,036,618 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Application Data\Comma Separated Values (Windows).ADR
[2009/05/22 06:10:44 | 00,000,760 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Application Data\setup_ldm.iss
[2008/11/26 06:09:24 | 00,000,135 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\fusioncache.dat
[2008/08/01 22:02:58 | 00,652,800 | ---- | C] () -- C:\WINDOWS\System32\SMgina.dll
[2008/04/18 18:10:00 | 00,001,792 | ---- | C] () -- C:\WINDOWS\PCW160.ini
[2008/03/18 13:02:52 | 00,143,360 | R--- | C] () -- C:\WINDOWS\System32\preflib.dll
[2008/02/05 13:28:20 | 00,000,051 | ---- | C] () -- C:\Documents and Settings\Bob Kapolnek\Local Settings\Application Data\setup.txt
[2007/10/26 20:00:50 | 00,000,000 | ---- | C] () -- C:\WINDOWS\System32\px.ini
[2007/10/18 17:36:54 | 00,061,440 | ---- | C] () -- C:\WINDOWS\System32\deskMenu2.dll
[2007/09/27 10:51:02 | 00,020,698 | ---- | C] () -- C:\WINDOWS\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 00,030,628 | ---- | C] () -- C:\WINDOWS\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 00,031,698 | ---- | C] () -- C:\WINDOWS\System32\gthrctr.ini
[2007/03/16 17:00:00 | 00,003,403 | ---- | C] () -- C:\WINDOWS\System32\hptcpmon.ini
[2004/01/30 15:07:46 | 00,245,408 | ---- | C] () -- C:\WINDOWS\System32\unicows.dll
< End of report >

#10 etavares

etavares

    Bleepin' Remover


  • Malware Response Team
  • 15,514 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:13 AM

Posted 04 December 2009 - 08:21 AM

Hello, arekayone.
That page is popping up since your Firefox has two homepages set...and one is hotebar.com. We can fix that. I also want to get a clean MBAM scan and a clean anti-virus scan here at this point. Please make sure to reboot immediately after the MBAM scan so it flushes out the remaining files.



Step 1

Let's get ride of hotebar.
  • Please launch firefox.
  • Please leave the google that is your home page, but close the hotebar.com tab.
  • Select Tools then Options.
  • You should be on the Main tab.
  • Near the top, there will be a text box with "Home Page:" and you should see the following:
    http://www.theprizeday.com/today.php|http://www.google.com/
  • Click "Use Current Page" and it should just have http://www.google.com there.
  • Click OK to close the options.
Now, close Firefox, then reopen...did hotebar.com come back? The adware probably changed that setting. It should be gone, but if it comes back...let me know.





Step 2

Please download Malwarebytes Anti-Malware and save it to your desktop.
alternate download link 1
alternate download link 2

MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.



Step 3

Please reboot here. Test firefox to see if you have hotebar.com back or if it's still gone.



Step 4

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Check Posted Image
  • Push the Start button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


Step 5

Please reply with the MBAM log, the ESET log (there will NOT be one if you were clean, just let me know there were no threats detected) and finally, the results of our fix for hotebar.com.


If I don't respond within 2 days, please feel free to PM me.
Please don't ask for help via PM. The forums are there for a reason. Please post in the forums so others may benefit as well.

Posted Image
Unified Network of Instructors and Trusted Eliminators
 


#11 arekayone

arekayone
  • Topic Starter

  • Members
  • 13 posts
  • OFFLINE
  •  
  • Local time:09:13 AM

Posted 04 December 2009 - 10:13 PM

Here you go....

Malwarebytes' Anti-Malware 1.42
Database version: 3297
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

12/4/2009 6:37:05 PM
mbam-log-2009-12-04 (18-37-05).txt

Scan type: Quick Scan
Objects scanned: 124080
Time elapsed: 4 minute(s), 51 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)



ESET did not find anything.

The hotebar.com page is gone.

I'm a happy camper. I didn't have any problems at all today.

I assume my computer is clean now and I appreciate all the help you gave me. Is there a way to make donations to the operations of your website?

Thanks again,

Bob

#12 etavares

etavares

    Bleepin' Remover


  • Malware Response Team
  • 15,514 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:13 AM

Posted 05 December 2009 - 10:38 AM

Hello, arekayone.
OK, great, we still have a few more steps to finish up to ensure you can't accidently get reinfected.

As for the donation, feel free to make one to the charity of your choice...unfortunately Grinler doesn't accept donations for Bleeping Computer.





Step 1

We need to purge your system restore so malware is not accidently restored. First, let's create a new restore point.
  • Go to Start --> All Programs --> Accessories --> System Tools --> System Restore.
  • Select Create a Restore Point and click Next.
  • Give the restore point a name and press create.
  • You'll see it work, then say that it was created sucessfully. Click Close.

Now, we need to remove the old, infected points using DiskCleanup.
  • Click on Start --> Run.
  • Type in cleanmgr into the run box and hit OK.
  • Select C: and press OK
  • Select the More Options tab.
  • Click on Clean up in the System Restore section..
  • Click OK.
  • You'll get a couple of prompts asking if you're sure you want do to this, select Yes and OK for them.
  • Disk cleanup will remove the old restore points that included the malware.



Step 2

Next, we need to remove the other tools we have used.
  • Please download OTC by OldTimer and save it to you desktop
  • Doubleclick the Posted Image icon to start the program.
  • Then, click the big Posted Image button.
  • You will get a prompt saying Begin Cleanup Process. Click Yes.
  • Restart your computer when prompted.


Step 3

You are using and outdated version of Adobe Reader. Adobe has since been updated and the update closes many security holes and provides new features.

First, uninstall earlier versions of Adobe Reader.
  • Go to Start > Settings > Control Panel, double-click on Add/Remove Programs and remove all versions of Adobe Reader.
  • Check (highlight) any item with Adobe Reader in the name.
  • Click the Remove or Change/Remove button.
  • Repeat as many times as necessary to remove each Adobe Reader version.
Please download the latest version from:
http://get.adobe.com/reader/

And install it. Once installed, launch it, select Help --> Check for Updates and install any updates.


You may also try the free Foxit PDF reader if you prefer:
http://www.foxitsoftware.com/pdf/reader/

Optional Items

Please take the time to read below to secure your machine and take the necessary steps to keep it that way.


System Still Slow?
You may wish to try StartupLite. Simply download this tool to your desktop and run it. It will explain any optional auto-start programs on your system, and offer the option to stop these programs from starting at startup. This will result in fewer programs running when you boot your system, and should improve preformance.
If that does not work, you can try the steps mentioned in Slow Computer/browser? Check Here First; It May Not Be Malware

Protect yourself from malicious sites
Please download HostMan. It safeguards you with a regularly updated Hosts-file that blocks dangerous sites from opening. This adds another bit of safety while surfing the Internet. For installlation and setting up, follow these steps:
  • Double-click the Downloaded installer and install the tool to a location of your choice
  • Via the Startmenu, navigate to HostsMan and run the program.
    • Click "Hosts" in the menu
    • Click "Manage Updates" in the submenu
    • Out of the three, select atleast one of the three (I have MVPS Host as my main one)
    • Click "Add Update." After that you will only need to click on the following button to retrieve updates:
      Posted Image
  • Click the X to exit the program.
  • Note: If you were using a custom Hosts file you will need to replace any of those entries yourself.

Keep Windows Up to Date
It is important that you visit http://www.windowsupdate.com regularly. This will ensure your computer has always the latest security updates available installed on your computer. If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.



Update your AntiVirus Software

It is imperative that you update your Antivirus software at least once a week (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out. If you use a commercial antivirus program you must make sure you keep renewing your subscription. Otherwise, once your subscription runs out, you may not be able to update the programs virus definitions.


Make sure your applications have all of their updates

It is also possible for other programs on your computer to have security vulnerability that can allow malware to infect you. Therefore, it is also a good idea to check for the latest versions of commonly installed applications that are regularly patched to fix vulnerabilities. You can check these by visiting Secunia Software Inspector and Calendar of Updates.



Install an AntiSpyware Program

A highly recommended AntiSpyware program is SuperAntiSpyware. You can download the free Home Version. or the Pro version for a 15 day trial period.

Other recommended, and free, AntiSpyware programs are Spybot - Search and Destroy and Ad-Aware Personal.

Installing these programs will provide spyware & hijacker protection on your computer alongside your virus protection. You should scan your computer with an AntiSpyware program on a regular basis just as you would an antivirus software.

Tutorials on using these programs can be found below:

Using Spybot - Search & Destroy to remove Spyware , Malware, and Hijackers

Using Ad-aware to remove Spyware, Malware, & Hijackers from Your Computer

Update all these programs regularly
Make sure you update all your programs regularly. Without regular updates you WILL NOT be protected when new malicious programs are released.

Follow this list and your potential for being infected again will reduce dramatically.

Good luck!


If I don't respond within 2 days, please feel free to PM me.
Please don't ask for help via PM. The forums are there for a reason. Please post in the forums so others may benefit as well.

Posted Image
Unified Network of Instructors and Trusted Eliminators
 


#13 kahdah

kahdah

  • Security Colleague
  • 11,138 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Florida
  • Local time:10:13 AM

Posted 12 December 2009 - 10:06 AM

Since this issue appears to be resolved ... this Topic has been closed. Glad we could help. :(

If your the topic starter, and need this topic reopened, please contact me via pm with the address of the thread.

Everyone else please begin a New Topic.
Please do not pm for help, post it in the forums instead.

If I am helping you and have not responded for 48 hours please send me a pm as I don't always get notifications.

My help is always free, however, if you would like to make a donation to me for the help I have provided please click here Posted Image




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users