Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

My windows xp breakdown


  • This topic is locked This topic is locked
43 replies to this topic

#1 itlfl2

itlfl2

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 17 August 2010 - 04:22 PM

I had my desktop unplugged fo about 2 days. When I turned it back onmy verizon security package was no longer working. I tried to reinstall it but it says inadequate system. I have hd that seccurity suite with verizon for over a year and ot worked fine. When verizon runs its dignostics, it says everything is in oder but yet the suite wont run. I tried system restore but it seemed to cause more problems, now firefox is not working. Heres a combofix log. It says something is missing




ComboFix 10-08-17.02 - Owner 08/17/2010 16:49:16.4.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.447.277 [GMT -4:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\program files\Smart-Shopper
c:\windows\explorer(3).exe

.
((((((((((((((((((((((((( Files Created from 2010-07-17 to 2010-08-17 )))))))))))))))))))))))))))))))
.

2010-08-17 20:45 . 2010-08-17 20:44 375808 ----a-w- c:\windows\system32\CF25148.exe
2010-08-17 15:30 . 2010-08-17 15:30 -------- d-----w- c:\documents and settings\Owner\Application Data\SoftwareDetectionScripts
2010-08-17 15:25 . 2010-08-17 15:25 -------- d-----w- c:\windows\system32\wbem\Repository
2010-08-17 15:24 . 2010-08-17 15:24 -------- d-----w- c:\program files\Hawking
2010-08-17 15:20 . 2010-08-17 15:20 -------- d-----w- c:\program files\Raxco
2010-08-17 15:20 . 2010-08-17 15:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Raxco
2010-08-17 15:19 . 2010-08-17 15:20 -------- d-----w- c:\program files\Uniblue
2010-08-17 15:19 . 2010-08-17 15:23 -------- d-----w- c:\program files\uTorrent
2010-08-17 14:30 . 2010-08-17 15:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Raxco(4)
2010-08-16 16:10 . 2010-08-17 15:19 -------- d-----w- C:\RECYCLER(3)
2010-08-16 00:01 . 2010-08-17 15:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Radialpoint
2010-08-15 23:39 . 2010-08-15 23:39 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Citrix
2010-08-14 09:10 . 2010-08-14 09:10 -------- d-----w- C:\found.000
2010-08-04 19:14 . 2010-08-04 19:14 -------- d-----w- c:\documents and settings\All Users\Application Data\muvee Technologies

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-17 20:56 . 2009-08-01 06:33 -------- d-----w- c:\documents and settings\Owner\Application Data\uTorrent
2010-08-17 15:30 . 2008-10-05 15:26 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-08-17 15:25 . 2009-08-01 04:49 4370720 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2010-08-17 15:25 . 2009-08-01 04:49 383792 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2010-08-17 15:25 . 2009-08-01 05:13 894332 --sha-w- c:\windows\system32\drivers\fidbox.idx
2010-08-17 15:25 . 2009-08-01 05:13 70767904 --sha-w- c:\windows\system32\drivers\fidbox.dat
2010-08-17 15:24 . 2008-10-05 15:24 -------- d-----w- c:\program files\Xvid
2010-08-17 15:21 . 2004-04-02 09:49 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-17 15:20 . 2008-11-21 19:18 -------- d-----w- c:\program files\Verizon
2010-08-17 15:19 . 2009-08-01 04:14 -------- d-----w- c:\documents and settings\Owner\Application Data\Verizon
2010-08-17 15:19 . 2008-11-20 03:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Verizon
2010-08-10 14:04 . 2010-01-16 02:05 -------- d-----w- c:\documents and settings\Owner\Application Data\SuperNZB
2010-08-04 19:39 . 2009-01-14 02:32 -------- d-----w- c:\program files\Seagate
2010-08-03 15:35 . 2009-08-01 05:20 29832 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-07-12 13:03 . 2004-04-03 00:21 -------- d-----w- c:\program files\Easy Internet signup
2003-08-27 18:19 . 2004-07-21 22:02 36963 ----a-r- c:\program files\Common Files\SM1updtr.dll
2008-06-23 04:00 . 2008-06-23 01:00 0 --sha-w- c:\windows\SMINST\HPCD.sys
.

------- Sigcheck -------



[-] 2004-07-09 08:27 . 0E51BD586D186F61A9E4453DB8AEC774 . 1703936 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\system32\d3d9.dll
[-] 2003-05-31 00:00 . 7BA80564F369A96AF84E3AA27E75E90B . 1634304 . . [5.3.0000001.902 built by: DIRECTX] . . c:\windows\LastGood\System32\d3d9.dll

c:\windows\System32\wscntfy.exe ... is missing !!
c:\windows\System32\xmlprov.dll ... is missing !!
.
((((((((((((((((((((((((((((( SnapShot_2009-08-25_01.40.24 )))))))))))))))))))))))))))))))))))))))))
.
+ 2004-04-29 21:08 . 2004-08-04 07:56 11776 c:\windows\system32\xolehlp(2).dll
+ 2009-10-03 18:58 . 2005-12-05 22:07 61136 c:\windows\system32\xinput9_1_0.dll
+ 2009-10-03 18:59 . 2006-03-31 16:39 62672 c:\windows\system32\xinput1_1.dll
+ 2004-04-29 21:08 . 2004-02-13 01:13 86016 c:\windows\system32\xactsrv(2).dll
+ 2009-10-03 18:58 . 2006-02-03 12:41 14032 c:\windows\system32\x3daudio1_0.dll
+ 2009-08-01 04:21 . 2009-08-06 23:24 44768 c:\windows\system32\wups2.dll
+ 2009-08-01 04:21 . 2009-08-06 23:24 35552 c:\windows\system32\wups.dll
+ 2004-04-29 21:08 . 2009-08-06 23:24 53472 c:\windows\system32\wuauclt.exe
+ 2004-04-29 21:08 . 2004-02-13 01:13 17408 c:\windows\system32\wtsapi32(2).dll
- 2004-04-02 08:43 . 2003-02-18 01:16 47104 c:\windows\system32\wstdecod.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 47104 c:\windows\system32\wstdecod.dll
+ 2004-04-29 21:08 . 2004-02-13 01:13 21504 c:\windows\system32\wsock32(2).dll
+ 2004-04-29 21:08 . 2004-02-13 01:13 17408 c:\windows\system32\wshtcpip(2).dll
+ 2004-04-29 21:08 . 2004-02-12 04:19 18944 c:\windows\system32\ws2help(2).dll
+ 2008-11-25 14:59 . 2006-08-16 12:14 70656 c:\windows\system32\ws2_32(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 10752 c:\windows\system32\wpdtrace.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 66560 c:\windows\system32\wpdmtpus.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 61952 c:\windows\system32\wpdconns.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 38912 c:\windows\system32\wpd_ci.dll
- 2004-04-02 08:45 . 2002-12-12 06:09 20480 c:\windows\system32\wmpui.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 20480 c:\windows\system32\wmpui.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 86016 c:\windows\system32\wmpshell.dll
- 2004-04-02 08:45 . 2002-12-12 06:09 20480 c:\windows\system32\wmpcore.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 20480 c:\windows\system32\wmpcore.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 20480 c:\windows\system32\wmpcd.dll
- 2004-04-02 08:45 . 2002-12-12 06:09 20480 c:\windows\system32\wmpcd.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 33792 c:\windows\system32\WMDMPS.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 28160 c:\windows\system32\WMDMLOG.dll
+ 2004-04-29 21:08 . 2004-02-12 03:51 86528 c:\windows\system32\wlnotify(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:49 93184 c:\windows\system32\winscard(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:49 14848 c:\windows\system32\winrnr(2).dll
+ 2008-11-25 14:59 . 2006-05-14 09:13 29184 c:\windows\system32\winipsec(2).dll
+ 2008-12-30 22:34 . 2006-01-04 03:37 64000 c:\windows\system32\webclnt(3).dll
+ 2008-12-30 22:34 . 2004-08-04 07:56 67584 c:\windows\system32\webclnt(2).dll
+ 2004-04-02 09:07 . 2001-08-18 13:37 22016 c:\windows\system32\wdmaud(2).drv
+ 2004-04-29 21:08 . 2004-02-13 01:13 46592 c:\windows\system32\wdigest(3).dll
+ 2004-04-29 21:08 . 2004-08-04 07:56 49152 c:\windows\system32\wdigest(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 38912 c:\windows\system32\wdfmgr.exe
+ 2005-01-28 17:44 . 2005-01-28 17:44 15872 c:\windows\system32\wdfapi.dll
+ 2003-08-01 10:06 . 2009-04-28 20:20 96752 c:\windows\system32\VXBLOCK.dll
+ 2004-09-17 21:37 . 2004-09-17 21:37 61440 c:\windows\system32\vuins32.dll
+ 2004-04-29 21:08 . 2004-02-12 03:53 16384 c:\windows\system32\version(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 47104 c:\windows\system32\uwdf.exe
+ 2004-04-29 21:08 . 2004-02-12 03:36 14848 c:\windows\system32\usbmon(2).dll
+ 2004-04-29 21:08 . 2004-02-12 04:21 81920 c:\windows\system32\trkwks(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:55 40448 c:\windows\system32\tcpmon(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:36 12800 c:\windows\system32\svchost(2).exe
+ 2004-04-29 21:06 . 2004-02-13 01:12 43008 c:\windows\system32\ssdpsrv(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:12 27136 c:\windows\system32\ssdpapi(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:12 63488 c:\windows\system32\srclient(2).dll
- 2009-08-01 04:28 . 2005-06-28 15:21 22752 c:\windows\system32\spupdsvc.exe
+ 2009-08-01 04:28 . 2005-06-28 14:21 22752 c:\windows\system32\spupdsvc.exe
+ 2008-11-25 14:59 . 2005-06-10 23:55 53248 c:\windows\system32\spoolsv(3).exe
+ 2008-11-25 14:59 . 2004-08-04 07:56 57856 c:\windows\system32\spoolsv(2).exe
+ 2004-04-29 21:06 . 2004-02-12 03:50 66560 c:\windows\system32\spoolss(2).dll
+ 2004-04-02 10:00 . 2007-04-09 17:23 46472 c:\windows\system32\spool\drivers\w32x86\3\New(2)\mdiui(2).dll
+ 2009-10-01 20:39 . 2009-08-06 23:24 44768 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups2.dll\7.4.7600.226\wups2.dll
+ 2009-10-01 20:39 . 2009-08-06 23:24 35552 c:\windows\system32\SoftwareDistribution\Setup\ServiceStartup\wups.dll\7.4.7600.226\wups.dll
+ 2004-04-29 21:06 . 2004-02-12 03:53 16896 c:\windows\system32\snmpapi(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:12 22528 c:\windows\system32\shfolder(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:04 36352 c:\windows\system32\sens(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:04 52224 c:\windows\system32\secur32(3).dll
+ 2004-04-29 21:06 . 2004-08-04 07:56 55808 c:\windows\system32\secur32(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:01 20992 c:\windows\system32\seclogon(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:50 39936 c:\windows\system32\rtutils(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:32 54784 c:\windows\system32\resutils(2).dll
+ 2009-09-24 09:47 . 2004-01-17 03:34 88363 c:\windows\system32\ReinstallBackups\0013\DriverFiles\AGRSMMSG.exe
+ 2009-09-24 09:47 . 2003-09-06 04:19 64512 c:\windows\system32\ReinstallBackups\0013\DriverFiles\agrsmdel.exe
+ 2009-09-24 09:47 . 2003-11-12 09:41 41984 c:\windows\system32\ReinstallBackups\0010\DriverFiles\fetnd5b.sys
+ 2004-04-29 21:06 . 2004-02-13 01:12 44032 c:\windows\system32\regapi(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:11 91136 c:\windows\system32\rastls(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:11 57856 c:\windows\system32\raschap(2).dll
+ 2009-08-01 04:08 . 2009-04-28 20:20 66032 c:\windows\system32\pxinsa64.exe
+ 2009-08-01 04:08 . 2009-04-28 20:20 72176 c:\windows\system32\pxhpinst.exe
+ 2009-08-01 04:08 . 2009-04-28 20:20 66544 c:\windows\system32\pxcpya64.exe
+ 2004-04-29 21:06 . 2004-02-12 04:04 25600 c:\windows\system32\pstorsvc(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:01 82944 c:\windows\system32\psbase(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:01 17408 c:\windows\system32\psapi(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:01 28672 c:\windows\system32\profmap(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:56 14848 c:\windows\system32\powrprof(2).dll
+ 2005-04-27 14:53 . 2005-04-27 14:53 34816 c:\windows\system32\PNGFILT(2).DLL
+ 2001-08-18 05:36 . 2004-02-12 11:02 12800 c:\windows\system32\pjlmon(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:47 23040 c:\windows\system32\perfos(2).dll
+ 2004-04-02 06:52 . 2010-06-30 23:31 65780 c:\windows\system32\perfc009.dat
+ 2008-11-25 14:58 . 2005-07-26 04:31 68608 c:\windows\system32\olecli32(4).dll
+ 2008-11-25 14:58 . 2005-01-14 08:55 74752 c:\windows\system32\olecli32(3).dll
+ 2008-11-25 14:58 . 2005-01-14 08:55 74752 c:\windows\system32\olecli32(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:58 38400 c:\windows\system32\ntlanman(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:56 64512 c:\windows\system32\ntdsapi(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:29 74752 c:\windows\system32\netui0(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:11 10752 c:\windows\system32\netrap(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:54 15360 c:\windows\system32\nddeapi(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:52 88064 c:\windows\system32\mydocs(2).dll
+ 2006-03-01 19:44 . 2004-08-04 07:56 90112 c:\windows\system32\mtxoci(3).dll
+ 2006-03-01 19:44 . 2004-08-04 07:56 90112 c:\windows\system32\mtxoci(2).dll
+ 2006-03-01 19:44 . 2006-03-01 19:44 64512 c:\windows\system32\mtxclu(4).dll
+ 2006-03-01 19:44 . 2004-08-04 07:56 66560 c:\windows\system32\mtxclu(3).dll
+ 2006-03-01 19:44 . 2004-08-04 07:56 66560 c:\windows\system32\mtxclu(2).dll
- 2004-04-02 08:43 . 2003-02-18 01:16 16896 c:\windows\system32\msyuv.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 16896 c:\windows\system32\msyuv.dll
+ 2004-04-29 21:06 . 2004-02-12 03:33 50688 c:\windows\system32\msvcirt(2).dll
+ 2004-04-29 23:03 . 2004-02-13 01:10 45056 c:\windows\system32\msprivs(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 25088 c:\windows\system32\MsPMSNSv.dll
+ 2004-04-29 23:03 . 2004-02-13 01:10 27136 c:\windows\system32\mspatcha(2).dll
+ 2004-04-29 23:03 . 2004-08-04 07:56 58880 c:\windows\system32\msdtclog(2).dll
+ 2002-12-12 15:14 . 2002-12-12 15:14 13312 c:\windows\system32\msdmo(2).dll
- 2003-02-21 09:43 . 2003-02-21 09:43 16896 c:\windows\system32\mscorier.dll
+ 2005-09-23 12:28 . 2003-02-21 09:43 16896 c:\windows\system32\mscorier.dll
+ 2008-11-25 14:58 . 2005-06-29 01:54 68608 c:\windows\system32\mscms(2).dll
+ 2004-04-02 06:52 . 2004-03-30 01:48 51712 c:\windows\system32\msasn1(3).dll
+ 2004-04-02 06:52 . 2004-08-04 07:56 57344 c:\windows\system32\msasn1(2).dll
+ 2004-04-29 23:03 . 2004-02-13 01:10 67072 c:\windows\system32\msacm32(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:59 79360 c:\windows\system32\mprapi(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:59 55808 c:\windows\system32\mpr(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:30 17920 c:\windows\system32\midimap(2).dll
+ 2004-04-29 23:03 . 2004-02-13 01:10 20992 c:\windows\system32\mfcsubs(2).dll
+ 2009-11-03 06:10 . 2009-11-03 06:10 85173 c:\windows\system32\Macromed\Flash\uninstall_plugin.exe
+ 2004-04-29 23:03 . 2004-02-13 01:10 11776 c:\windows\system32\lsass(2).exe
+ 2005-01-28 17:44 . 2005-01-28 17:44 96768 c:\windows\system32\logagent.exe
+ 2008-11-25 14:58 . 2005-09-01 01:49 16384 c:\windows\system32\linkinfo(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 18944 c:\windows\system32\linkinfo(2).dll
+ 2008-11-25 14:59 . 2006-08-16 12:14 83456 c:\windows\system32\iphlpapi(3).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 94720 c:\windows\system32\iphlpapi(2).dll
+ 2004-04-29 23:02 . 2004-02-12 04:02 68096 c:\windows\system32\inetpp(2).dll
+ 2008-11-25 14:59 . 2006-08-16 12:14 31232 c:\windows\system32\inetmib1(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:59 30208 c:\windows\system32\imgutil(2).dll
+ 2009-09-12 01:06 . 2002-08-29 07:40 20480 c:\windows\system32\hidserv.dll
+ 2009-09-12 01:06 . 2002-08-29 07:40 20480 c:\windows\system32\hidserv(2).dll
+ 2001-08-18 05:36 . 2004-02-12 11:02 22528 c:\windows\system32\hid(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:55 22016 c:\windows\system32\fxsmon(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:53 53760 c:\windows\system32\fxsevent(2).dll
+ 2004-04-29 23:02 . 2004-02-13 01:06 49152 c:\windows\system32\eventlog(2).dll
+ 2004-04-29 23:02 . 2004-02-13 01:06 19456 c:\windows\system32\ersvc(2).dll
+ 2009-10-03 18:46 . 2006-05-31 11:22 63768 c:\windows\system32\dxdllreg.exe
+ 2004-04-29 23:02 . 2004-02-12 03:57 11776 c:\windows\system32\drprov(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 96768 c:\windows\system32\drmstor.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 18688 c:\windows\system32\drivers\wstcodec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 18688 c:\windows\system32\drivers\wstcodec.sys
+ 2005-01-28 17:44 . 2005-01-28 17:44 18944 c:\windows\system32\drivers\wpdusb.sys
+ 2004-08-04 06:01 . 2002-08-29 17:00 77440 c:\windows\system32\drivers\wdmaud.sys
- 2004-04-02 09:08 . 2002-08-29 17:00 77440 c:\windows\system32\drivers\wdmaud.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 14976 c:\windows\system32\drivers\streamip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 14976 c:\windows\system32\drivers\streamip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:27 48512 c:\windows\system32\drivers\stream.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10880 c:\windows\system32\drivers\slip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10880 c:\windows\system32\drivers\slip.sys
+ 2003-08-01 10:09 . 2009-04-28 20:20 44944 c:\windows\system32\drivers\pxhelp20.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10112 c:\windows\system32\drivers\ndisip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10112 c:\windows\system32\drivers\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 83968 c:\windows\system32\drivers\nabtsfec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 83968 c:\windows\system32\drivers\nabtsfec.sys
- 2004-04-02 08:43 . 2003-02-18 01:21 52096 c:\windows\system32\drivers\msdv.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 52096 c:\windows\system32\drivers\msdv.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 15104 c:\windows\system32\drivers\mpe.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 15104 c:\windows\system32\drivers\mpe.sys
+ 2009-09-12 01:06 . 2001-08-17 17:48 13952 c:\windows\system32\drivers\kbdhid.sys
+ 2004-12-16 17:36 . 2004-12-16 17:36 42496 c:\windows\system32\drivers\fetnd5bv.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 16384 c:\windows\system32\drivers\ccdecode.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 16384 c:\windows\system32\drivers\ccdecode.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 11392 c:\windows\system32\drivers\bdasup.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 11392 c:\windows\system32\drivers\bdasup.sys
+ 2009-10-03 18:46 . 2004-07-09 08:27 79360 c:\windows\system32\dpwsockx.dll
+ 2003-03-25 00:00 . 2003-03-25 00:00 68096 c:\windows\system32\dpnhupnp(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:50 44032 c:\windows\system32\dnsrslvr(3).dll
+ 2004-04-29 23:02 . 2004-08-04 07:56 45568 c:\windows\system32\dnsrslvr(2).dll
+ 2004-04-29 21:08 . 2009-08-06 23:24 53472 c:\windows\system32\dllcache\wuauclt.exe
+ 2009-10-03 18:47 . 2004-07-09 08:26 47104 c:\windows\system32\dllcache\wstdecod.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 47104 c:\windows\system32\dllcache\wstdecod.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 18688 c:\windows\system32\dllcache\wstcodec.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 18688 c:\windows\system32\dllcache\wstcodec.sys
- 2004-04-02 08:45 . 2002-12-12 06:09 20480 c:\windows\system32\dllcache\wmpui.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 20480 c:\windows\system32\dllcache\wmpui.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 86016 c:\windows\system32\dllcache\wmpshell.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 73728 c:\windows\system32\dllcache\wmplayer.exe
- 2004-04-02 08:45 . 2002-12-12 08:27 73728 c:\windows\system32\dllcache\wmplayer.exe
- 2004-04-02 08:45 . 2002-12-12 06:09 20480 c:\windows\system32\dllcache\wmpcore.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 20480 c:\windows\system32\dllcache\wmpcore.dll
- 2004-04-02 08:45 . 2002-12-12 06:09 20480 c:\windows\system32\dllcache\wmpcd.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 20480 c:\windows\system32\dllcache\wmpcd.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 33792 c:\windows\system32\dllcache\WMDMPS.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 28160 c:\windows\system32\dllcache\WMDMLOG.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 14976 c:\windows\system32\dllcache\streamip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 14976 c:\windows\system32\dllcache\streamip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:27 48512 c:\windows\system32\dllcache\stream.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10880 c:\windows\system32\dllcache\slip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10880 c:\windows\system32\dllcache\slip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10112 c:\windows\system32\dllcache\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10112 c:\windows\system32\dllcache\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 83968 c:\windows\system32\dllcache\nabtsfec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 83968 c:\windows\system32\dllcache\nabtsfec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 16896 c:\windows\system32\dllcache\msyuv.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 16896 c:\windows\system32\dllcache\msyuv.dll
- 2004-04-02 08:43 . 2003-02-18 01:21 52096 c:\windows\system32\dllcache\msdv.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 52096 c:\windows\system32\dllcache\msdv.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 15104 c:\windows\system32\dllcache\mpe.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 15104 c:\windows\system32\dllcache\mpe.sys
+ 2005-01-28 17:44 . 2005-01-28 17:44 96768 c:\windows\system32\dllcache\logagent.exe
+ 2009-09-12 01:06 . 2001-08-17 17:48 13952 c:\windows\system32\dllcache\kbdhid.sys
+ 2009-09-12 01:06 . 2002-08-29 07:40 20480 c:\windows\system32\dllcache\hidserv.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 96768 c:\windows\system32\dllcache\drmstor.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 79360 c:\windows\system32\dllcache\dpwsockx.dll
+ 2004-04-29 23:01 . 2009-08-06 23:24 96480 c:\windows\system32\dllcache\cdm.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 16384 c:\windows\system32\dllcache\ccdecode.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 16384 c:\windows\system32\dllcache\ccdecode.sys
+ 2009-08-02 13:40 . 2008-10-16 18:09 51224 c:\windows\system32\dllcache\cache\wuauclt.exe
+ 2009-08-05 22:26 . 2006-08-16 12:14 70656 c:\windows\system32\dllcache\cache\ws2_32.dll
+ 2009-08-05 22:26 . 2004-02-12 03:46 22016 c:\windows\system32\dllcache\cache\userinit.exe
+ 2009-08-05 22:26 . 2004-02-12 03:36 12800 c:\windows\system32\dllcache\cache\svchost.exe
+ 2009-08-25 01:52 . 2004-02-13 01:12 43008 c:\windows\system32\dllcache\cache\ssdpsrv.dll
+ 2009-08-05 22:26 . 2005-06-10 23:55 53248 c:\windows\system32\dllcache\cache\spoolsv.exe
+ 2009-08-25 01:52 . 2004-02-12 03:29 51712 c:\windows\system32\dllcache\cache\regsvc.dll
+ 2009-08-05 22:26 . 2004-02-13 01:11 82944 c:\windows\system32\dllcache\cache\rasauto.dll
+ 2009-08-05 22:26 . 2004-02-12 03:56 14848 c:\windows\system32\dllcache\cache\powrprof.dll
+ 2009-08-05 22:26 . 2003-10-22 06:06 32256 c:\windows\system32\dllcache\cache\msgsvc.dll
+ 2009-08-05 22:26 . 2004-02-13 01:10 11776 c:\windows\system32\dllcache\cache\lsass.exe
+ 2009-08-05 22:26 . 2004-02-13 01:10 18944 c:\windows\system32\dllcache\cache\lpk.dll
+ 2009-08-25 01:52 . 2005-09-01 01:49 16384 c:\windows\system32\dllcache\cache\linkinfo.dll
+ 2009-08-05 22:26 . 2002-08-29 05:27 23424 c:\windows\system32\dllcache\cache\kbdclass.sys
+ 2009-08-25 01:52 . 2004-02-13 01:06 49152 c:\windows\system32\dllcache\cache\eventlog.dll
+ 2009-08-05 22:26 . 2004-02-12 03:48 13312 c:\windows\system32\dllcache\cache\ctfmon.exe
+ 2009-08-25 01:52 . 2003-03-26 07:40 53760 c:\windows\system32\dllcache\cache\cryptsvc.dll
+ 2009-08-25 01:52 . 2004-02-12 03:31 49152 c:\windows\system32\dllcache\cache\browser.dll
+ 2009-08-25 01:52 . 2004-02-12 03:57 13568 c:\windows\system32\dllcache\cache\asyncmac.sys
+ 2009-08-05 22:26 . 2004-02-13 00:58 11648 c:\windows\system32\dllcache\cache\acpiec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 11392 c:\windows\system32\dllcache\bdasup.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 11392 c:\windows\system32\dllcache\bdasup.sys
+ 2002-12-12 15:14 . 2002-12-12 15:14 24064 c:\windows\system32\ddrawex(2).dll
+ 2004-04-29 23:02 . 2004-02-13 01:05 22016 c:\windows\system32\davclnt(2).dll
+ 2008-11-25 14:59 . 2004-10-28 01:29 92160 c:\windows\system32\cscdll(2).dll
+ 2004-04-02 09:25 . 2003-03-26 07:40 53760 c:\windows\system32\cryptsvc(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:49 53248 c:\windows\system32\cryptnet(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:45 29184 c:\windows\system32\cryptdll(2).dll
+ 2009-11-26 14:06 . 2009-11-26 14:06 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\MSHist012009112620091127\index.dat
+ 2004-04-02 08:05 . 2010-08-17 15:29 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-04-02 08:05 . 2009-08-25 01:39 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2004-04-02 08:05 . 2010-08-17 15:29 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2004-04-02 08:05 . 2009-08-25 01:39 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
+ 2008-11-25 14:58 . 2005-07-26 04:30 62464 c:\windows\system32\colbact(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 62464 c:\windows\system32\colbact(2).dll
+ 2001-08-18 05:36 . 2004-02-12 11:02 45568 c:\windows\system32\cnbjmon(2).dll
+ 2004-04-29 23:01 . 2004-02-12 04:13 54272 c:\windows\system32\clusapi(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:55 16896 c:\windows\system32\cfgmgr32(2).dll
+ 2004-04-29 23:01 . 2009-08-06 23:24 96480 c:\windows\system32\cdm.dll
+ 2004-04-02 06:51 . 2004-02-12 10:46 59904 c:\windows\system32\cabinet(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:31 49152 c:\windows\system32\browser(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:31 62976 c:\windows\system32\browselc(2).dll
+ 2004-04-29 23:01 . 2004-02-13 00:59 27136 c:\windows\system32\batmeter(2).dll
+ 2004-04-29 23:01 . 2004-02-12 04:13 76288 c:\windows\system32\avifil32(3).dll
+ 2004-04-29 23:01 . 2004-08-04 07:56 84992 c:\windows\system32\avifil32(2).dll
+ 2005-03-02 18:20 . 2005-03-02 18:20 53760 c:\windows\system32\authz(3).dll
+ 2005-03-02 18:20 . 2004-08-04 07:56 56832 c:\windows\system32\authz(2).dll
+ 2004-04-29 23:01 . 2004-02-12 04:06 38912 c:\windows\system32\audiosrv(2).dll
+ 2003-03-19 02:05 . 2003-03-19 02:05 89088 c:\windows\system32\atl71.dll
+ 2004-04-29 23:01 . 2004-08-04 07:56 58880 c:\windows\system32\atl(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:51 41984 c:\windows\system32\alg(2).exe
+ 2004-04-29 23:01 . 2004-02-13 00:57 91136 c:\windows\system32\advpack(2).dll
+ 2004-04-29 23:01 . 2004-02-13 00:57 98304 c:\windows\system32\actxprxy(2).dll
- 2004-12-22 18:19 . 2004-09-22 23:46 86016 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpshell.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 86016 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpshell.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 73728 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmplayer.exe
+ 2009-10-03 19:07 . 2005-01-28 17:44 73728 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmplayer.exe
+ 2009-10-03 19:08 . 2005-01-28 17:44 28672 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpenc.exe
- 2004-12-22 18:19 . 2004-09-22 23:46 28672 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpenc.exe
+ 2009-10-03 19:08 . 2005-01-28 17:44 77824 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpband.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 77824 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpband.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 28672 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\custsat.dll
- 2004-12-22 18:19 . 2004-09-22 23:45 28672 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\custsat.dll
- 2004-12-22 18:19 . 2002-12-12 08:34 98304 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpshell.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 98304 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpshell.dll
- 2004-12-22 18:19 . 2002-12-12 08:27 73728 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmplayer.exe
+ 2009-10-03 18:52 . 2002-12-12 08:27 73728 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmplayer.exe
+ 2009-10-03 18:52 . 2004-09-22 23:46 28672 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpenc.exe
+ 2009-10-03 18:52 . 2002-12-12 08:27 94208 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpband.dll
- 2004-12-22 18:19 . 2002-12-12 08:27 94208 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpband.dll
+ 2009-10-03 19:10 . 2005-01-28 17:44 20480 c:\windows\RegisteredPackages\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}\wmpcd.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 20480 c:\windows\RegisteredPackages\{CFB4B314-0328-45E1-94AF-45A3F5F48E0B}\wmpcd.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 96768 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\drmstor.dll
+ 2009-10-03 19:01 . 2005-01-28 17:44 96768 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\drmstor.dll
- 2008-11-02 00:55 . 2002-12-12 08:34 82432 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\drmstor.dll
+ 2009-10-03 18:46 . 2002-12-12 08:34 82432 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\drmstor.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 96768 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\logagent.exe
+ 2009-10-03 19:03 . 2005-01-28 17:44 96768 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\logagent.exe
- 2008-11-02 00:55 . 2002-12-12 06:04 81408 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\logagent.exe
+ 2009-10-03 18:47 . 2002-12-12 06:04 81408 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\logagent.exe
- 2004-04-02 08:43 . 2003-02-18 01:16 47104 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\wstdecod.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 47104 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\wstdecod.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 18688 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\wstcodec.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 18688 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\wstcodec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 14976 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\streamip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 14976 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\streamip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10880 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\slip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10880 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\slip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10112 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10112 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 83968 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\nabtsfec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 83968 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\nabtsfec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 16896 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\msyuv.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 16896 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\msyuv.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 15104 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\mpe.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 15104 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\mpe.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 16384 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\ccdecode.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 16384 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\ccdecode.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 11392 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\bdasup.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 11392 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\bdasup.sys
- 2004-12-22 18:19 . 2005-01-28 18:44 18944 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdusb.sys
+ 2009-10-03 19:06 . 2005-01-28 17:44 18944 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdusb.sys
- 2004-12-22 18:19 . 2005-01-28 18:44 10752 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdtrace.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 10752 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdtrace.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 66560 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdmtpus.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 66560 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdmtpus.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 61952 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdconns.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 61952 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdconns.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 38912 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpd_ci.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 38912 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpd_ci.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 38912 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wdfmgr.exe
+ 2009-10-03 19:06 . 2005-01-28 17:44 38912 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wdfmgr.exe
+ 2009-10-03 19:06 . 2005-01-28 17:44 15872 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wdfapi.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 15872 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wdfapi.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 47104 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\uwdf.exe
+ 2009-10-03 19:06 . 2005-01-28 17:44 47104 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\uwdf.exe
- 2004-12-22 18:19 . 2004-09-22 23:46 20480 c:\windows\RegisteredPackages\{60204BB3-7078-4F70-8F69-68297621941C}\wmpui.dll
+ 2009-10-03 19:10 . 2005-01-28 17:44 20480 c:\windows\RegisteredPackages\{60204BB3-7078-4F70-8F69-68297621941C}\wmpui.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 20480 c:\windows\RegisteredPackages\{60204BB3-7078-4F70-8F69-68297621941C}\wmpcore.dll
+ 2009-10-03 19:10 . 2005-01-28 17:44 20480 c:\windows\RegisteredPackages\{60204BB3-7078-4F70-8F69-68297621941C}\wmpcore.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 48512 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\stream.sys
+ 2009-10-03 18:46 . 2002-12-12 04:14 46592 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdllreg.exe
+ 2009-10-03 18:46 . 2004-07-09 08:27 79360 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpwsockx.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 33792 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\WMDMPS.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 33792 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\WMDMPS.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 28160 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\WMDMLOG.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 28160 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\WMDMLOG.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 25088 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSNSv.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 25088 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSNSv.dll
+ 2009-10-03 18:49 . 2002-11-27 10:03 23552 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\WMDMPS.dll
- 2008-11-02 00:55 . 2002-11-27 10:03 23552 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\WMDMPS.dll
+ 2009-10-03 18:49 . 2002-11-27 10:03 27136 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\WMDMLOG.dll
- 2008-11-02 00:55 . 2002-11-27 10:03 27136 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\WMDMLOG.dll
+ 2009-10-03 18:49 . 2002-11-27 10:03 52224 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MsPMSNSv.dll
- 2008-11-02 00:55 . 2002-11-27 10:03 52224 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MsPMSNSv.dll
+ 2004-04-02 08:02 . 2009-11-26 03:08 81395 c:\windows\PCHealth\HelpCtr\OfflineCache\index.dat
+ 2004-04-29 21:06 . 2004-02-12 03:33 29696 c:\windows\PCHealth\HelpCtr\Binaries\pchsvc(2).dll
+ 2004-07-15 07:11 . 2003-02-21 11:10 31744 c:\windows\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll
- 2003-02-21 11:10 . 2003-02-21 11:10 31744 c:\windows\Microsoft.NET\Framework\v1.1.4322\WMINet_Utils.dll
+ 2004-07-15 19:28 . 2003-02-21 22:24 57344 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.RegularExpressions.dll
- 2003-02-21 22:24 . 2003-02-21 22:24 57344 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.RegularExpressions.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Security.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 64000 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.Thunk.dll
+ 2004-07-15 05:35 . 2003-02-21 10:09 64000 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.Thunk.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.DirectoryServices.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 86016 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.DirectoryServices.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegCode.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\RegCode.dll
+ 2004-07-15 05:34 . 2003-02-21 10:09 90112 c:\windows\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 90112 c:\windows\Microsoft.NET\Framework\v1.1.4322\PerfCounter.dll
+ 2004-07-15 05:33 . 2003-02-21 10:09 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsec.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 81920 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsec.dll
+ 2004-07-15 05:33 . 2003-02-21 10:09 98304 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 98304 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorld.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbc.dll
+ 2004-07-15 05:32 . 2003-02-21 10:09 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbc.dll
- 2003-02-21 22:25 . 2003-02-21 22:25 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPolWin.exe
+ 2004-07-15 19:28 . 2003-02-21 22:25 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPolWin.exe
+ 2004-07-15 19:28 . 2003-02-21 22:25 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPol.exe
- 2003-02-21 22:25 . 2003-02-21 22:25 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\MigPol.exe
- 2003-02-21 22:24 . 2003-02-21 22:24 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEHost.dll
+ 2004-07-15 19:31 . 2003-02-21 22:24 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEHost.dll
- 2003-02-22 01:20 . 2003-02-22 01:20 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\csc.exe
+ 2004-07-15 16:23 . 2003-02-22 01:20 49152 c:\windows\Microsoft.NET\Framework\v1.1.4322\csc.exe
- 2003-02-21 10:09 . 2003-02-21 10:09 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2004-07-15 05:32 . 2003-02-21 10:09 77824 c:\windows\Microsoft.NET\Framework\v1.1.4322\CORPerfMonExt.dll
+ 2004-07-15 06:49 . 2003-02-21 10:19 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
- 2003-02-21 10:19 . 2003-02-21 10:19 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_wp.exe
+ 2004-07-15 06:49 . 2003-02-21 10:19 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
- 2003-02-21 10:19 . 2003-02-21 10:19 32768 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
- 2003-02-21 10:19 . 2003-02-21 10:19 20480 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_regiis.exe
+ 2004-07-15 06:49 . 2003-02-21 10:19 20480 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_regiis.exe
+ 2005-09-23 12:28 . 2003-02-21 10:09 57344 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
- 2003-02-21 10:09 . 2003-02-21 10:09 57344 c:\windows\Microsoft.NET\Framework\NETFXSBS10.exe
+ 2009-10-03 18:59 . 2005-03-18 20:23 12800 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Diagnostics.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 53248 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.AudioVideoPlayback.dll
+ 2009-10-03 18:59 . 2006-02-03 12:41 14032 c:\windows\LastGood\System32\x3daudio1_0.dll
+ 2009-10-03 18:52 . 2003-02-18 01:16 47104 c:\windows\LastGood\System32\wstdecod.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 10752 c:\windows\LastGood\System32\wpdtrace.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 66560 c:\windows\LastGood\System32\wpdmtpus.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 61952 c:\windows\LastGood\System32\wpdconns.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 38912 c:\windows\LastGood\System32\wpd_ci.dll
+ 2009-10-03 18:56 . 2002-12-12 06:09 20480 c:\windows\LastGood\System32\wmpui.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 98304 c:\windows\LastGood\System32\wmpshell.dll
+ 2009-10-03 18:56 . 2002-12-12 06:09 20480 c:\windows\LastGood\System32\wmpcore.dll
+ 2009-10-03 18:56 . 2002-12-12 06:09 20480 c:\windows\LastGood\System32\wmpcd.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 38912 c:\windows\LastGood\System32\wdfmgr.exe
+ 2009-10-03 19:06 . 2005-01-28 17:44 15872 c:\windows\LastGood\System32\wdfapi.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 47104 c:\windows\LastGood\System32\uwdf.exe
+ 2009-10-03 18:49 . 2004-02-12 11:07 31744 c:\windows\LastGood\System32\pid.dll
+ 2009-10-03 18:52 . 2003-02-18 01:16 16896 c:\windows\LastGood\System32\msyuv.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 13312 c:\windows\LastGood\System32\msdmo.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 34304 c:\windows\LastGood\System32\mciqtz32.dll
+ 2009-10-03 18:48 . 2004-02-12 03:57 76800 c:\windows\LastGood\System32\gcdef.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 18944 c:\windows\LastGood\System32\encapi.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 44544 c:\windows\LastGood\System32\dxdllreg.exe
+ 2009-10-03 18:49 . 2002-12-12 15:14 18432 c:\windows\LastGood\System32\dswave.dll
+ 2009-10-03 18:53 . 2003-02-18 01:16 18688 c:\windows\LastGood\System32\DRIVERS\wstcodec.sys
+ 2009-10-03 19:07 . 2005-01-28 17:44 18944 c:\windows\LastGood\System32\DRIVERS\wpdusb.sys
+ 2009-09-11 23:27 . 2003-10-23 14:41 30464 c:\windows\LastGood\System32\DRIVERS\usbccgp.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 14976 c:\windows\LastGood\System32\DRIVERS\streamip.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 10880 c:\windows\LastGood\System32\DRIVERS\slip.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 10112 c:\windows\LastGood\System32\DRIVERS\ndisip.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 83968 c:\windows\LastGood\System32\DRIVERS\nabtsfec.sys
+ 2009-10-03 18:54 . 2003-02-18 01:21 52096 c:\windows\LastGood\System32\DRIVERS\msdv.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 15104 c:\windows\LastGood\System32\DRIVERS\mpe.sys
+ 2009-10-03 18:49 . 2004-02-12 04:12 10496 c:\windows\LastGood\System32\DRIVERS\dxapi.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 16384 c:\windows\LastGood\System32\DRIVERS\ccdecode.sys
+ 2009-10-03 18:52 . 2003-02-18 01:16 11392 c:\windows\LastGood\System32\DRIVERS\bdasup.sys
+ 2009-10-03 18:48 . 2002-12-12 15:14 76800 c:\windows\LastGood\System32\dpwsockx.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 80896 c:\windows\LastGood\System32\dpvsetup.exe
+ 2009-10-03 18:48 . 2002-12-12 15:14 19968 c:\windows\LastGood\System32\dpvacm.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 16896 c:\windows\LastGood\System32\dpnsvr.exe
+ 2009-10-03 18:48 . 2003-03-25 00:00 68096 c:\windows\LastGood\System32\dpnhupnp.dll
+ 2009-10-03 18:48 . 2003-03-25 00:00 32768 c:\windows\LastGood\System32\dpnhpast.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 77824 c:\windows\LastGood\System32\dpmodemx.dll
+ 2009-10-03 18:47 . 2002-12-12 15:14 28160 c:\windows\LastGood\System32\dplaysvr.exe
+ 2009-10-03 18:49 . 2002-12-12 15:14 98816 c:\windows\LastGood\System32\dmstyle.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 76800 c:\windows\LastGood\System32\dmscript.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 33280 c:\windows\LastGood\System32\dmloader.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 58368 c:\windows\LastGood\System32\dmcompos.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 27136 c:\windows\LastGood\System32\dmband.dll
+ 2009-10-03 18:54 . 2004-07-09 08:26 47104 c:\windows\LastGood\System32\DllCache\wstdecod.dll
+ 2009-10-03 18:51 . 2002-08-29 18:41 31744 c:\windows\LastGood\System32\DllCache\pid.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 13312 c:\windows\LastGood\System32\DllCache\msdmo.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 34304 c:\windows\LastGood\System32\DllCache\mciqtz32.dll
+ 2009-10-03 18:51 . 2004-02-12 03:57 76800 c:\windows\LastGood\System32\DllCache\gcdef.dll
+ 2009-10-03 18:51 . 2004-02-12 04:12 10496 c:\windows\LastGood\System32\DllCache\dxapi.sys
+ 2009-10-03 18:51 . 2002-12-12 15:14 18432 c:\windows\LastGood\System32\DllCache\dswave.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 79360 c:\windows\LastGood\System32\DllCache\dpwsockx.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 80896 c:\windows\LastGood\System32\DllCache\dpvsetup.exe
+ 2009-10-03 18:51 . 2002-12-12 15:14 19968 c:\windows\LastGood\System32\DllCache\dpvacm.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 16896 c:\windows\LastGood\System32\DllCache\dpnsvr.exe
+ 2009-10-03 18:51 . 2003-03-25 00:00 68096 c:\windows\LastGood\System32\DllCache\dpnhupnp.dll
+ 2009-10-03 18:51 . 2003-03-25 00:00 32768 c:\windows\LastGood\System32\DllCache\dpnhpast.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 77824 c:\windows\LastGood\System32\DllCache\dpmodemx.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 28160 c:\windows\LastGood\System32\DllCache\dplaysvr.exe
+ 2009-10-03 18:51 . 2002-12-12 15:14 98816 c:\windows\LastGood\System32\DllCache\dmstyle.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 76800 c:\windows\LastGood\System32\DllCache\dmscript.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 33280 c:\windows\LastGood\System32\DllCache\dmloader.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 58368 c:\windows\LastGood\System32\DllCache\dmcompos.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 27136 c:\windows\LastGood\System32\DllCache\dmband.dll
+ 2009-10-03 18:51 . 2004-02-12 03:35 44032 c:\windows\LastGood\System32\DllCache\dimap.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 24064 c:\windows\LastGood\System32\DllCache\ddrawex.dll
+ 2009-10-03 18:51 . 2004-02-12 04:32 47616 c:\windows\LastGood\System32\DllCache\d3dxof.dll
+ 2009-10-03 18:51 . 2004-02-12 04:32 34816 c:\windows\LastGood\System32\DllCache\d3dpmesh.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 64512 c:\windows\LastGood\System32\DllCache\amstream.dll
+ 2009-10-03 18:48 . 2004-02-12 03:35 44032 c:\windows\LastGood\System32\dimap.dll
+ 2009-10-03 18:47 . 2002-12-12 15:14 24064 c:\windows\LastGood\System32\ddrawex.dll
+ 2009-10-03 18:48 . 2004-02-12 04:32 47616 c:\windows\LastGood\System32\d3dxof.dll
+ 2009-10-03 18:48 . 2004-02-12 04:32 34816 c:\windows\LastGood\System32\d3dpmesh.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 64512 c:\windows\LastGood\System32\amstream.dll
+ 2009-10-03 18:55 . 2003-02-18 01:16 47104 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\wstdecod.dll
+ 2009-10-03 18:55 . 2003-02-18 01:16 18688 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\wstcodec.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 14976 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\streamip.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 10880 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\slip.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 10112 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\ndisip.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 83968 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\nabtsfec.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 16896 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\msyuv.dll
+ 2009-10-03 18:55 . 2003-02-18 01:16 15104 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\mpe.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 16384 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\ccdecode.sys
+ 2009-10-03 18:55 . 2003-02-18 01:16 11392 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\bdasup.sys
+ 2009-10-03 18:58 . 2002-12-12 15:14 45696 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\stream.sys
+ 2009-10-03 18:57 . 2002-12-12 15:14 13312 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\msdmo.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 34304 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\mciqtz32.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 18944 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\encapi.dll
+ 2009-10-03 18:58 . 2002-12-12 15:14 44544 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdllreg.exe
+ 2009-10-03 18:57 . 2002-12-12 15:14 18432 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dswave.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 76800 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpwsockx.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 80896 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvsetup.exe
+ 2009-10-03 18:57 . 2002-12-12 15:14 19968 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvacm.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 16896 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnsvr.exe
+ 2009-10-03 18:56 . 2003-03-25 00:00 68096 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnhupnp.dll
+ 2009-10-03 18:56 . 2003-03-25 00:00 32768 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnhpast.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 77824 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpmodemx.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 28160 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplaysvr.exe
+ 2009-10-03 18:57 . 2002-12-12 15:14 98816 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmstyle.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 76800 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmscript.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 33280 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmloader.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 58368 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmcompos.dll
+ 2009-10-03 18:58 . 2002-12-12 15:14 27136 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmband.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 24064 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\ddrawex.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 64512 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\amstream.dll
+ 2009-10-03 18:54 . 2003-02-18 01:16 18688 c:\windows\LastGood\Driver Cache\i386\wstcodec.sys
+ 2009-10-03 18:54 . 2003-02-18 01:16 14976 c:\windows\LastGood\Driver Cache\i386\streamip.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 45696 c:\windows\LastGood\Driver Cache\i386\stream.sys
+ 2009-10-03 18:54 . 2003-02-18 01:16 10880 c:\windows\LastGood\Driver Cache\i386\slip.sys
+ 2009-10-03 18:49 . 2002-08-29 18:41 31744 c:\windows\LastGood\Driver Cache\i386\pid.dll
+ 2009-10-03 18:54 . 2003-02-18 01:16 10112 c:\windows\LastGood\Driver Cache\i386\ndisip.sys
+ 2009-10-03 18:54 . 2003-02-18 01:16 83968 c:\windows\LastGood\Driver Cache\i386\nabtsfec.sys
+ 2009-10-03 18:54 . 2003-02-18 01:16 16896 c:\windows\LastGood\Driver Cache\i386\msyuv.dll
+ 2009-10-03 18:54 . 2003-02-18 01:21 52096 c:\windows\LastGood\Driver Cache\i386\msdv.sys
+ 2009-10-03 18:54 . 2003-02-18 01:16 15104 c:\windows\LastGood\Driver Cache\i386\mpe.sys
+ 2009-10-03 18:54 . 2003-02-18 01:16 16384 c:\windows\LastGood\Driver Cache\i386\ccdecode.sys
+ 2009-10-03 18:53 . 2003-02-18 01:16 11392 c:\windows\LastGood\Driver Cache\i386\bdasup.sys
+ 2009-11-11 17:35 . 2009-11-11 17:35 25214 c:\windows\Installer\{AC76BA86-7AD7-1033-7B44-A70000000000}\SC_Reader.exe
+ 2004-04-02 10:00 . 2010-05-12 14:19 23040 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 23040 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 27136 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2004-04-02 10:00 . 2010-05-12 14:19 27136 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 11264 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2004-04-02 10:00 . 2010-05-12 14:19 11264 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 12288 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2004-04-02 10:00 . 2010-05-12 14:18 12288 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
+ 2009-10-03 18:57 . 2009-10-03 18:57 10134 c:\windows\Installer\{478A4971-68B3-4BD9-A379-4EDD111A6BA7}\ARPPRODUCTICON.exe
+ 2009-01-19 22:10 . 2003-04-22 15:24 16606 c:\windows\hpomdl01.dat
+ 2009-01-19 22:10 . 2010-01-31 17:01 19558 c:\windows\hpoins01.dat
- 2004-04-02 08:43 . 2003-02-18 01:16 18688 c:\windows\Driver Cache\i386\wstcodec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 18688 c:\windows\Driver Cache\i386\wstcodec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 14976 c:\windows\Driver Cache\i386\streamip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 14976 c:\windows\Driver Cache\i386\streamip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:27 48512 c:\windows\Driver Cache\i386\stream.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10880 c:\windows\Driver Cache\i386\slip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10880 c:\windows\Driver Cache\i386\slip.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 10112 c:\windows\Driver Cache\i386\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 10112 c:\windows\Driver Cache\i386\ndisip.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 83968 c:\windows\Driver Cache\i386\nabtsfec.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 83968 c:\windows\Driver Cache\i386\nabtsfec.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 16896 c:\windows\Driver Cache\i386\msyuv.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 16896 c:\windows\Driver Cache\i386\msyuv.dll
- 2004-04-02 08:43 . 2003-02-18 01:21 52096 c:\windows\Driver Cache\i386\msdv.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 52096 c:\windows\Driver Cache\i386\msdv.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 15104 c:\windows\Driver Cache\i386\mpe.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 15104 c:\windows\Driver Cache\i386\mpe.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 16384 c:\windows\Driver Cache\i386\ccdecode.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 16384 c:\windows\Driver Cache\i386\ccdecode.sys
- 2004-04-02 08:43 . 2003-02-18 01:16 11392 c:\windows\Driver Cache\i386\bdasup.sys
+ 2009-10-03 18:47 . 2004-07-09 08:26 11392 c:\windows\Driver Cache\i386\bdasup.sys
+ 2009-10-03 18:59 . 2009-10-03 18:59 12800 c:\windows\assembly\GAC\Microsoft.DirectX.Diagnostics\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Diagnostics.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 53248 c:\windows\assembly\GAC\Microsoft.DirectX.AudioVideoPlayback\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.AudioVideoPlayback.dll
- 2004-04-02 09:12 . 2004-01-17 03:34 88363 c:\windows\AGRSMMSG.exe
+ 2004-06-29 13:06 . 2004-06-29 13:06 88363 c:\windows\AGRSMMSG.exe
- 2004-04-02 09:12 . 2003-09-06 04:19 64512 c:\windows\agrsmdel.exe
+ 2004-04-05 14:49 . 2004-04-05 14:49 64512 c:\windows\agrsmdel.exe
+ 2004-04-29 21:08 . 2004-02-13 01:13 9216 c:\windows\system32\wuauserv(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:53 5632 c:\windows\system32\wmi(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:55 6656 c:\windows\system32\spool\drivers\w32x86\3\FXSRES(2).DLL
+ 2004-04-29 21:06 . 2004-02-13 01:12 4096 c:\windows\system32\sfc(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:04 6144 c:\windows\system32\sensapi(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:04 5632 c:\windows\system32\security(2).dll
+ 2009-08-01 05:18 . 2004-08-02 18:20 4569 c:\windows\system32\secupd.dat
+ 2008-11-25 14:58 . 2006-06-26 17:47 6144 c:\windows\system32\rasadhlp(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 8192 c:\windows\system32\rasadhlp(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:59 4608 c:\windows\system32\msimg32(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:56 5120 c:\windows\system32\msidle(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 6656 c:\windows\system32\laprxy.dll
- 2004-04-02 08:46 . 2002-12-12 06:16 6656 c:\windows\system32\laprxy.dll
+ 2002-12-12 15:14 . 2002-12-12 15:14 4096 c:\windows\system32\ksuser(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:50 3072 c:\windows\system32\icmp(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:48 9216 c:\windows\system32\icaapi(2).dll
+ 2009-08-25 01:55 . 2009-08-25 01:55 6736 c:\windows\system32\drivers\PROCEXP90.SYS
+ 2005-01-28 17:44 . 2005-01-28 17:44 6656 c:\windows\system32\dllcache\laprxy.dll
- 2004-04-02 08:46 . 2002-12-12 06:16 6656 c:\windows\system32\dllcache\laprxy.dll
+ 2009-08-05 22:26 . 2004-02-13 01:12 4096 c:\windows\system32\dllcache\cache\sfc.dll
+ 2009-08-05 22:26 . 2004-02-12 04:01 2944 c:\windows\system32\dllcache\cache\null.sys
+ 2009-08-05 22:26 . 2004-02-13 00:59 4224 c:\windows\system32\dllcache\cache\beep.sys
+ 2005-01-28 17:44 . 2005-01-28 17:44 8192 c:\windows\system32\dllcache\asferror.dll
+ 2004-04-29 23:02 . 2004-02-13 01:05 7680 c:\windows\system32\dciman32(2).dll
+ 2004-04-29 23:02 . 2004-08-04 08:07 1788 c:\windows\system32\dcache.bin
+ 2004-04-29 23:01 . 2004-02-12 03:51 4096 c:\windows\system32\csrss(2).exe
+ 2005-01-28 17:44 . 2005-01-28 17:44 8192 c:\windows\system32\asferror.dll
- 2004-12-22 18:19 . 2004-09-22 23:45 8192 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\asferror.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 8192 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\asferror.dll
- 2004-12-22 18:19 . 2002-12-12 06:16 7680 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\asferror.dll
+ 2009-10-03 18:52 . 2002-12-12 06:16 7680 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\asferror.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 6656 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\laprxy.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 6656 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\laprxy.dll
- 2008-11-02 00:55 . 2002-12-12 06:16 6656 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\laprxy.dll
+ 2009-10-03 18:47 . 2002-12-12 06:16 6656 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\laprxy.dll
+ 2004-04-02 08:02 . 2009-11-26 03:08 3530 c:\windows\PCHealth\HelpCtr\PackageStore\SkuStore.bin
+ 2004-04-02 08:03 . 2009-11-26 03:03 9542 c:\windows\PCHealth\HelpCtr\Config\Cntstore.bin
- 2003-02-21 22:24 . 2003-02-21 22:24 7168 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExecRemote.dll
+ 2004-07-15 19:31 . 2003-02-21 22:24 7168 c:\windows\Microsoft.NET\Framework\v1.1.4322\IEExecRemote.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 5120 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2005-09-23 12:28 . 2003-02-21 10:09 5120 c:\windows\Microsoft.NET\Framework\sbscmp10.dll
+ 2009-10-03 18:50 . 2002-12-12 15:14 4096 c:\windows\LastGood\System32\DRIVERS\swenum.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 5504 c:\windows\LastGood\System32\DRIVERS\mstee.sys
+ 2009-10-03 18:49 . 2001-08-23 20:00 4608 c:\windows\LastGood\System32\DRIVERS\mspqm.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 5248 c:\windows\LastGood\System32\DRIVERS\mspclock.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 7424 c:\windows\LastGood\System32\DRIVERS\mskssrv.sys
+ 2009-10-03 18:48 . 2002-12-12 15:14 3072 c:\windows\LastGood\System32\dpnlobby.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 3072 c:\windows\LastGood\System32\dpnaddr.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 3072 c:\windows\LastGood\System32\DllCache\dpnlobby.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 3072 c:\windows\LastGood\System32\DllCache\dpnaddr.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 8192 c:\windows\LastGood\System32\DllCache\d3d8thk.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 8192 c:\windows\LastGood\System32\d3d8thk.dll
+ 2009-10-03 18:52 . 2002-12-12 06:16 7680 c:\windows\LastGood\System32\asferror.dll
+ 2009-10-03 18:58 . 2002-12-12 15:14 4096 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\swenum.sys
+ 2009-10-03 18:58 . 2002-12-12 15:14 5504 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\mstee.sys
+ 2009-10-03 18:57 . 2001-08-23 20:00 4608 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\mspqm.sys
+ 2009-10-03 18:58 . 2002-12-12 15:14 5248 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\mspclock.sys
+ 2009-10-03 18:58 . 2002-12-12 15:14 7424 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\mskssrv.sys
+ 2009-10-03 18:58 . 2002-12-12 15:14 4096 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\ksuser.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 3072 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnlobby.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 3072 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnaddr.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 8192 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\d3d8thk.dll
+ 2009-10-03 18:50 . 2002-12-12 15:14 4096 c:\windows\LastGood\Driver Cache\i386\swenum.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 5504 c:\windows\LastGood\Driver Cache\i386\mstee.sys
+ 2009-10-03 18:49 . 2001-08-23 20:00 4608 c:\windows\LastGood\Driver Cache\i386\mspqm.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 5248 c:\windows\LastGood\Driver Cache\i386\mspclock.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 7424 c:\windows\LastGood\Driver Cache\i386\mskssrv.sys
+ 2009-10-03 18:50 . 2002-12-12 15:14 4096 c:\windows\LastGood\Driver Cache\i386\ksuser.dll
- 2004-04-02 10:00 . 2009-08-12 07:11 4096 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2004-04-02 10:00 . 2010-05-12 14:19 4096 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2005-05-18 08:38 . 2004-02-12 11:04 4573 c:\windows\$NtServicePackUninstall$\secupd.dat
+ 2009-11-26 02:02 . 2004-02-12 11:04 4573 c:\windows\$NtServicePackUninstall$\secupd.dat
+ 2009-11-26 02:00 . 2004-02-13 01:05 1740 c:\windows\$NtServicePackUninstall$\dcache.bin
- 2005-05-18 08:37 . 2004-02-13 01:05 1740 c:\windows\$NtServicePackUninstall$\dcache.bin
+ 2009-07-12 06:12 . 2009-07-12 06:12 632656 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcr80(2)(3).dll
+ 2009-07-12 06:09 . 2009-07-12 06:09 554832 c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\msvcp80(2)(3).dll
+ 2009-10-03 18:59 . 2006-05-31 11:24 230168 c:\windows\system32\xactengine2_2.dll
+ 2009-10-03 18:59 . 2006-03-31 16:39 229584 c:\windows\system32\xactengine2_1.dll
+ 2009-10-03 18:58 . 2006-02-03 12:42 230096 c:\windows\system32\xactengine2_0.dll
+ 2004-04-02 09:33 . 2003-10-07 08:30 281088 c:\windows\system32\wzcsvc(2).dll
+ 2008-10-16 18:12 . 2009-08-06 23:24 209632 c:\windows\system32\wuweb.dll
+ 2009-08-01 04:21 . 2009-08-06 23:24 327896 c:\windows\system32\wucltui.dll
+ 2009-08-01 04:21 . 2009-08-06 23:23 575704 c:\windows\system32\wuapi.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 331264 c:\windows\system32\wpdsp.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 331776 c:\windows\system32\wpdmtpdr.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 114176 c:\windows\system32\wpdmtp.dll
+ 2004-04-29 21:08 . 2004-02-12 04:23 247808 c:\windows\system32\wow32(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 895736 c:\windows\system32\wmvdmod.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 940544 c:\windows\system32\wmspdmoe.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 413944 c:\windows\system32\wmspdmod.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 774904 c:\windows\system32\wmsdmod.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 175104 c:\windows\system32\wmpsrcwp.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 282624 c:\windows\system32\wmpdxm.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 135168 c:\windows\system32\wmpasf.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 150016 c:\windows\system32\wmidx.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 189440 c:\windows\system32\wmerror.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 290816 c:\windows\system32\WMDRMNet.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 335872 c:\windows\system32\WMDRMdev.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 224768 c:\windows\system32\wmasf.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 224768 c:\windows\system32\wmasf(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 716288 c:\windows\system32\wmadmoe.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 396528 c:\windows\system32\wmadmod.dll
+ 2004-04-29 21:08 . 2004-02-12 03:51 168448 c:\windows\system32\wldap32(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:49 166912 c:\windows\system32\wintrust(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:46 171520 c:\windows\system32\winmm(2).dll
+ 2006-06-23 15:33 . 2006-06-23 15:33 575488 c:\windows\system32\WININET(3).DLL
+ 2006-06-23 15:33 . 2004-08-04 07:56 656384 c:\windows\system32\wininet(2).dll
+ 2008-11-22 00:29 . 2004-07-01 22:08 331776 c:\windows\system32\winhttp(3).dll
+ 2008-11-22 00:29 . 2004-08-04 07:56 351232 c:\windows\system32\winhttp(2).dll
+ 2004-04-29 21:08 . 2004-02-13 01:13 258048 c:\windows\system32\webcheck(2).dll
+ 2004-04-29 21:08 . 2004-02-13 01:12 167936 c:\windows\system32\wbem\wbemdisp(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:48 174592 c:\windows\system32\wbem\framedyn(2).dll
+ 2004-04-29 21:08 . 2004-02-12 04:03 165376 c:\windows\system32\w32time(2).dll
+ 2004-04-29 21:08 . 2004-02-12 04:00 409088 c:\windows\system32\vssapi(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:51 479261 c:\windows\system32\vbscript(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:49 203264 c:\windows\system32\uxtheme(2).dll
+ 2006-08-31 00:42 . 2006-08-31 00:42 461824 c:\windows\system32\URLMON(3).DLL
+ 2006-08-31 00:42 . 2004-08-04 07:56 601088 c:\windows\system32\urlmon(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:32 106496 c:\windows\system32\url(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:32 120320 c:\windows\system32\upnp(2).dll
+ 2008-11-25 14:58 . 2005-08-23 03:51 111104 c:\windows\system32\umpnpmgr(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 118272 c:\windows\system32\umpnpmgr(2).dll
+ 2009-08-01 03:41 . 2004-08-04 07:56 101376 c:\windows\system32\txflog(2).dll
+ 2004-04-29 21:08 . 2004-02-12 04:00 384000 c:\windows\system32\themeui(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:58 200192 c:\windows\system32\termsrv(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:58 343552 c:\windows\system32\termmgr(2).dll
+ 2008-12-30 22:34 . 2005-07-08 16:09 238592 c:\windows\system32\tapisrv(3).dll
+ 2008-12-30 22:34 . 2004-08-04 07:56 246272 c:\windows\system32\tapisrv(2).dll
+ 2004-04-29 21:08 . 2004-02-12 03:53 165376 c:\windows\system32\tapi32(2).dll
+ 2008-11-25 14:59 . 2004-08-20 22:01 700928 c:\windows\system32\sxs(3).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 713216 c:\windows\system32\sxs(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:28 117760 c:\windows\system32\stobject(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:12 158720 c:\windows\system32\srsvc(2).dll
+ 2009-08-19 12:52 . 2002-08-29 07:41 197120 c:\windows\system32\spool\drivers\w32x86\3\UNIDRVUI(2).DLL
+ 2009-08-19 12:52 . 2002-08-29 07:41 252416 c:\windows\system32\spool\drivers\w32x86\3\UNIDRV(2).DLL
+ 2004-04-29 23:02 . 2004-02-12 03:55 185856 c:\windows\system32\spool\drivers\w32x86\3\FXSWZRD(2).DLL
+ 2004-04-29 23:02 . 2004-02-12 03:55 149504 c:\windows\system32\spool\drivers\w32x86\3\FXSUI(2).DLL
+ 2004-04-29 23:02 . 2004-02-12 03:55 391168 c:\windows\system32\spool\drivers\w32x86\3\FXSTIFF(2).DLL
+ 2004-04-29 23:02 . 2004-02-12 03:51 443392 c:\windows\system32\spool\drivers\w32x86\3\FXSAPI(2).DLL
+ 2008-11-25 14:59 . 2004-10-28 01:29 116736 c:\windows\system32\shsvcs(3).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 134656 c:\windows\system32\shsvcs(2).dll
+ 2008-11-25 14:58 . 2005-09-01 01:49 409088 c:\windows\system32\SHLWAPI(4).DLL
+ 2008-11-25 14:58 . 2004-08-04 07:56 473600 c:\windows\system32\shlwapi(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 473600 c:\windows\system32\shlwapi(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:12 548864 c:\windows\system32\shdoclc(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:12 133120 c:\windows\system32\sfc_os(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:01 147483 c:\windows\system32\scrrun(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:58 159232 c:\windows\system32\schedsvc(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:58 297984 c:\windows\system32\scesrv(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:56 174592 c:\windows\system32\scecli(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:47 133632 c:\windows\system32\rsaenh(2).dll
+ 2008-11-25 14:58 . 2005-07-26 04:31 276992 c:\windows\system32\rpcss(5).dll
+ 2008-11-25 14:58 . 2005-07-26 04:31 276992 c:\windows\system32\rpcss(4).dll
+ 2008-11-25 14:58 . 2005-01-14 08:55 395776 c:\windows\system32\rpcss(3).dll
+ 2008-11-25 14:58 . 2005-01-14 08:55 395776 c:\windows\system32\rpcss(2).dll
+ 2009-08-01 03:41 . 2004-03-06 02:16 535552 c:\windows\system32\rpcrt4(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:32 423424 c:\windows\system32\riched20(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:11 193536 c:\windows\system32\rasppp(2).dll
+ 2008-11-25 14:59 . 2006-06-22 10:59 169984 c:\windows\system32\rasmans(3).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 174080 c:\windows\system32\rasmans(2).dll
+ 2004-04-29 21:06 . 2004-07-01 22:08 361984 c:\windows\system32\qmgr(2).dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 470528 c:\windows\system32\qdvd.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 316928 c:\windows\system32\qdv.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 221184 c:\windows\system32\qasf.dll
+ 2003-08-01 10:06 . 2009-04-28 20:20 436720 c:\windows\system32\pxwave.dll
+ 2003-08-01 10:06 . 2009-04-28 20:20 219632 c:\windows\system32\pxmas.dll
+ 2003-08-01 10:06 . 2009-04-28 20:20 551408 c:\windows\system32\pxdrv.dll
+ 2009-08-01 04:08 . 2009-04-28 20:20 129520 c:\windows\system32\pxafs.dll
+ 2003-08-01 10:06 . 2009-04-28 20:20 670192 c:\windows\system32\px.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 354816 c:\windows\system32\psisdecd.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 354816 c:\windows\system32\psisdecd.dll
+ 2004-04-02 06:52 . 2010-06-30 23:31 411734 c:\windows\system32\perfh009.dat
+ 2004-04-29 21:06 . 2004-02-13 01:11 117760 c:\windows\system32\oledlg(2).dll
+ 2008-11-25 14:59 . 2006-05-14 09:13 257536 c:\windows\system32\oakley(2).dll
+ 2002-08-29 08:04 . 2004-02-12 04:04 133632 c:\windows\system32\nwprovau.dll
- 2004-04-29 21:06 . 2004-02-12 04:04 133632 c:\windows\system32\nwprovau.dll
+ 2004-04-29 21:06 . 2004-02-12 04:01 137216 c:\windows\system32\ntshrui(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:58 112128 c:\windows\system32\ntmarta(2).dll
+ 2004-04-02 09:25 . 2003-02-01 06:46 238080 c:\windows\system32\newdev(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:29 230400 c:\windows\system32\netui1(2).dll
+ 2008-11-25 14:58 . 2005-08-22 18:36 154624 c:\windows\system32\netman(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 198144 c:\windows\system32\netman(2).dll
+ 2004-04-29 21:06 . 2004-02-13 01:11 399360 c:\windows\system32\netlogon(2).dll
+ 2004-04-29 21:06 . 2004-02-12 04:04 584192 c:\windows\system32\netcfgx(2).dll
+ 2008-12-30 22:34 . 2006-07-14 15:53 307200 c:\windows\system32\netapi32(3).dll
+ 2008-12-30 22:34 . 2004-08-04 07:56 332288 c:\windows\system32\netapi32(2).dll
+ 2008-10-16 18:07 . 2009-08-06 23:23 215920 c:\windows\system32\muweb.dll
+ 2009-08-01 04:22 . 2009-08-06 23:23 274288 c:\windows\system32\mucltui.dll
+ 2004-04-29 21:06 . 2004-02-12 03:37 228352 c:\windows\system32\mswsock(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 315904 c:\windows\system32\MSWMDM.dll
+ 2004-04-29 21:06 . 2004-02-12 03:45 113664 c:\windows\system32\msvfw32(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:34 323072 c:\windows\system32\msvcrt(2).dll
+ 2003-02-21 09:42 . 2003-02-21 09:42 348160 c:\windows\system32\msvcr71.dll
+ 2003-03-19 03:14 . 2003-03-19 03:14 499712 c:\windows\system32\msvcp71.dll
+ 2004-04-29 21:06 . 2004-02-12 03:33 401462 c:\windows\system32\msvcp60(2).dll
+ 2004-04-29 21:06 . 2004-02-12 03:33 103936 c:\windows\system32\mstlsapi(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 364784 c:\windows\system32\MSSCP.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 173568 c:\windows\system32\MsPMSP.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 142336 c:\windows\system32\msnetobj.dll
+ 2004-04-29 23:03 . 2004-02-12 03:59 143872 c:\windows\system32\MSIMTF(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:56 440320 c:\windows\system32\mshtmled(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:54 504832 c:\windows\system32\msftedit(2).dll
+ 2009-08-01 03:41 . 2004-08-04 07:56 949248 c:\windows\system32\msdtctm(3).dll
+ 2009-08-01 03:41 . 2004-08-04 07:56 949248 c:\windows\system32\msdtctm(2).dll
+ 2009-08-01 03:41 . 2004-08-04 07:56 425472 c:\windows\system32\msdtcprx(3).dll
+ 2009-08-01 03:41 . 2004-08-04 07:56 425472 c:\windows\system32\msdtcprx(2).dll
+ 2004-04-29 23:03 . 2004-02-12 03:33 266752 c:\windows\system32\MSCTF(2).dll
- 2003-02-21 10:09 . 2003-02-21 10:09 106496 c:\windows\system32\mscories.dll
+ 2005-09-23 12:28 . 2003-02-21 10:09 106496 c:\windows\system32\mscories.dll
- 2003-02-21 10:06 . 2003-02-21 10:06 155648 c:\windows\system32\mscoree.dll
+ 2005-09-23 12:28 . 2003-02-21 10:06 155648 c:\windows\system32\mscoree.dll
+ 2004-04-29 23:03 . 2004-02-12 03:45 577024 c:\windows\system32\mlang(2).dll
+ 2004-04-29 23:03 . 2004-02-13 01:10 995383 c:\windows\system32\mfc42(2).dll
+ 2009-07-18 03:21 . 2009-07-18 03:21 257440 c:\windows\system32\Macromed\Flash\NPSWF32_FlashUtil.exe
+ 2004-04-02 09:20 . 2004-02-13 01:09 295936 c:\windows\system32\localspl.dll
- 2004-04-29 23:03 . 2004-02-13 01:09 295936 c:\windows\system32\localspl.dll
+ 2008-11-25 14:59 . 2005-06-15 17:50 285184 c:\windows\system32\kerberos(3).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 294400 c:\windows\system32\kerberos(2).dll
+ 2006-05-18 05:58 . 2006-05-18 05:58 458752 c:\windows\system32\jscript(3).dll
+ 2006-05-18 05:58 . 2006-05-18 05:58 458752 c:\windows\system32\jscript(2).dll
+ 2008-11-25 14:59 . 2006-05-14 09:13 159744 c:\windows\system32\ipsecsvc(2).dll
+ 2009-08-01 03:42 . 2004-03-30 01:48 439808 c:\windows\system32\ipnathlp(2).dll
+ 2004-04-29 23:02 . 2004-02-13 01:08 240640 c:\windows\system32\hnetcfg(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:55 559616 c:\windows\system32\fxsst(2).dll
+ 2004-04-29 23:02 . 2004-02-12 03:51 443392 c:\windows\system32\fxsapi(2).dll
- 2004-04-01 23:56 . 2009-08-21 10:46 145216 c:\windows\system32\FNTCACHE.DAT
+ 2004-04-01 23:56 . 2010-08-17 14:08 145216 c:\windows\system32\FNTCACHE.DAT
+ 2009-08-01 04:36 . 2005-10-20 22:33 991232 c:\windows\system32\esent(3).dll
+ 2008-11-25 14:58 . 2005-07-26 04:31 227328 c:\windows\system32\es(4).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 243200 c:\windows\system32\es(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 243200 c:\windows\system32\es(2).dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 974848 c:\windows\system32\dxdiag.exe
+ 2004-04-29 23:02 . 2004-02-12 04:05 263680 c:\windows\system32\duser(2).dll
+ 2004-04-29 23:02 . 2004-02-12 04:02 124928 c:\windows\system32\dssenh(2).dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 381952 c:\windows\system32\dsound.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 381952 c:\windows\system32\dsound(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 502272 c:\windows\system32\drmv2clt.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 258296 c:\windows\system32\drmclien.dll
- 2004-04-29 21:06 . 2006-07-13 08:41 199936 c:\windows\system32\drivers\rmcast.sys
+ 2004-04-02 06:52 . 2006-07-13 08:41 199936 c:\windows\system32\drivers\rmcast.sys
+ 2004-04-02 06:52 . 2006-05-05 09:31 433152 c:\windows\system32\drivers\mrxsmb.sys
- 2004-04-02 06:52 . 2006-05-05 09:31 433152 c:\windows\system32\drivers\mrxsmb.sys
+ 2004-04-02 06:52 . 2005-04-26 01:58 173312 c:\windows\system32\drivers\mrxdav.sys
- 2004-04-29 23:03 . 2005-04-26 01:58 173312 c:\windows\system32\drivers\mrxdav.sys
- 2004-04-29 23:01 . 2004-02-13 00:58 131968 c:\windows\system32\drivers\afd.sys
+ 2004-04-02 06:52 . 2004-02-13 00:58 131968 c:\windows\system32\drivers\afd.sys
+ 2004-04-02 06:52 . 2002-08-29 14:16 142208 c:\windows\system32\drivers\aec.sys
- 2004-04-02 09:07 . 2002-08-29 14:16 142208 c:\windows\system32\drivers\aec.sys
+ 2009-10-03 18:46 . 2004-07-09 08:27 230400 c:\windows\system32\dplayx.dll
+ 2008-11-25 14:58 . 2006-06-26 17:47 140288 c:\windows\system32\dnsapi(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 148480 c:\windows\system32\dnsapi(2).dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 122880 c:\windows\system32\dmusic.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 181248 c:\windows\system32\dmime.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 895736 c:\windows\system32\dllcache\wmvdmod.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 774904 c:\windows\system32\dllcache\wmsdmod.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 224768 c:\windows\system32\dllcache\wmasf.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 716288 c:\windows\system32\dllcache\wmadmoe.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 396528 c:\windows\system32\dllcache\wmadmod.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 192512 c:\windows\system32\dllcache\unregmp2.exe
- 2004-04-02 08:45 . 2002-12-12 06:08 192512 c:\windows\system32\dllcache\unregmp2.exe
+ 2005-01-28 17:44 . 2005-01-28 17:44 819200 c:\windows\system32\dllcache\setup_wm.exe
+ 2009-10-03 18:47 . 2004-07-09 08:27 470528 c:\windows\system32\dllcache\qdvd.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 316928 c:\windows\system32\dllcache\qdv.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 221184 c:\windows\system32\dllcache\qasf.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 354816 c:\windows\system32\dllcache\psisdecd.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 354816 c:\windows\system32\dllcache\psisdecd.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 315904 c:\windows\system32\dllcache\MSWMDM.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 364784 c:\windows\system32\dllcache\MSSCP.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 173568 c:\windows\system32\dllcache\MsPMSP.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 142336 c:\windows\system32\dllcache\msnetobj.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 974848 c:\windows\system32\dllcache\dxdiag.exe
+ 2009-10-03 18:46 . 2004-07-09 08:27 381952 c:\windows\system32\dllcache\dsound.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 502272 c:\windows\system32\dllcache\drmv2clt.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 258296 c:\windows\system32\dllcache\drmclien.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 230400 c:\windows\system32\dllcache\dplayx.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 122880 c:\windows\system32\dllcache\dmusic.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 181248 c:\windows\system32\dllcache\dmime.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 292864 c:\windows\system32\dllcache\ddraw.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 164864 c:\windows\system32\dllcache\cewmdm.dll
+ 2009-08-05 22:26 . 2004-02-12 03:36 516608 c:\windows\system32\dllcache\cache\winlogon.exe
+ 2009-08-05 22:26 . 2006-06-23 15:33 575488 c:\windows\system32\dllcache\cache\WININET.DLL
+ 2009-08-05 22:26 . 2005-03-02 18:20 561152 c:\windows\system32\dllcache\cache\user32.dll
+ 2009-08-25 01:52 . 2004-02-12 03:32 164864 c:\windows\system32\dllcache\cache\upnphost.dll
+ 2009-08-05 22:26 . 2004-02-12 03:58 200192 c:\windows\system32\dllcache\cache\termsrv.dll
+ 2009-08-05 22:26 . 2006-04-20 11:38 340480 c:\windows\system32\dllcache\cache\tcpip.sys
+ 2009-08-25 01:52 . 2005-07-08 16:09 238592 c:\windows\system32\dllcache\cache\tapisrv.dll
+ 2009-08-05 22:26 . 2004-02-13 01:12 158720 c:\windows\system32\dllcache\cache\srsvc.dll
+ 2009-08-25 01:52 . 2004-10-28 01:29 116736 c:\windows\system32\dllcache\cache\shsvcs.dll
+ 2009-08-05 22:26 . 2004-02-12 04:26 101376 c:\windows\system32\dllcache\cache\services.exe
+ 2009-08-25 01:52 . 2004-02-12 03:58 159232 c:\windows\system32\dllcache\cache\schedsvc.dll
+ 2009-08-25 01:52 . 2004-02-12 03:56 174592 c:\windows\system32\dllcache\cache\scecli.dll
+ 2009-08-05 22:26 . 2005-07-26 04:31 276992 c:\windows\system32\dllcache\cache\rpcss.dll
+ 2009-08-05 22:26 . 2004-07-01 22:08 361984 c:\windows\system32\dllcache\cache\qmgr.dll
+ 2009-08-05 22:26 . 2004-02-12 04:01 392704 c:\windows\system32\dllcache\cache\ntmssvc.dll
+ 2009-08-25 01:52 . 2004-02-12 10:56 561920 c:\windows\system32\dllcache\cache\ntfs.sys
+ 2009-08-25 01:52 . 2005-08-22 18:36 154624 c:\windows\system32\dllcache\cache\netman.dll
+ 2009-08-05 22:26 . 2004-02-13 01:11 399360 c:\windows\system32\dllcache\cache\netlogon.dll
+ 2009-08-05 22:26 . 2003-10-04 14:54 168192 c:\windows\system32\dllcache\cache\ndis.sys
+ 2009-08-25 01:52 . 2004-02-12 03:37 228352 c:\windows\system32\dllcache\cache\mswsock.dll
+ 2009-08-05 22:26 . 2004-02-13 01:10 924432 c:\windows\system32\dllcache\cache\mfc40u.dll
+ 2009-08-05 22:26 . 2006-07-05 10:46 928768 c:\windows\system32\dllcache\cache\kernel32.dll
+ 2009-08-05 22:26 . 2004-02-12 03:59 103936 c:\windows\system32\dllcache\cache\imm32.dll
+ 2009-08-25 01:52 . 2005-07-26 04:31 227328 c:\windows\system32\dllcache\cache\es.dll
+ 2009-08-05 22:26 . 2004-02-13 01:00 792064 c:\windows\system32\dllcache\cache\comres.dll
+ 2009-08-05 22:26 . 2006-08-25 15:53 561664 c:\windows\system32\dllcache\cache\comctl32.dll
+ 2009-08-05 22:26 . 2002-08-29 14:16 142208 c:\windows\system32\dllcache\cache\aec.sys
+ 2005-01-28 17:44 . 2005-01-28 17:44 294912 c:\windows\system32\dllcache\blackbox.dll
+ 2003-05-31 00:00 . 2003-05-31 00:00 132608 c:\windows\system32\devenum(2).dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 292864 c:\windows\system32\ddraw.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 292864 c:\windows\system32\ddraw(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:48 307712 c:\windows\system32\cscui(2).dll
+ 2003-07-25 07:40 . 2003-07-25 07:40 477696 c:\windows\system32\cryptui(2).dll
+ 2004-04-02 09:25 . 2002-09-24 05:10 544256 c:\windows\system32\crypt32(2).dll
+ 2004-04-29 23:01 . 2004-02-12 03:45 158720 c:\windows\system32\credui(2).dll
+ 2004-04-29 23:01 . 2004-02-13 01:00 792064 c:\windows\system32\comres(2).dll
+ 2008-11-25 14:58 . 2005-07-26 04:30 497152 c:\windows\system32\clbcatq(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 501248 c:\windows\system32\clbcatq(2).dll
+ 2009-08-01 03:41 . 2004-08-04 07:56 110080 c:\windows\system32\clbcatex(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 164864 c:\windows\system32\cewmdm.dll
+ 2004-04-29 23:01 . 2004-02-12 03:51 186880 c:\windows\system32\certcli(2).dll
+ 2008-11-25 14:58 . 2005-07-26 04:30 581632 c:\windows\system32\catsrvut(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 628224 c:\windows\system32\catsrvut(2).dll
+ 2008-11-25 14:58 . 2005-07-26 04:30 220672 c:\windows\system32\catsrv(3).dll
+ 2008-11-25 14:58 . 2004-08-04 07:56 229888 c:\windows\system32\catsrv(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 294912 c:\windows\system32\blackbox.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 484352 c:\windows\system32\Audiodev.dll
+ 2004-04-29 23:01 . 2004-02-12 04:05 272768 c:\windows\system32\atmfd(2).dll
+ 2004-04-29 23:01 . 2004-02-13 00:57 139776 c:\windows\system32\adsldpc(2).dll
+ 2004-04-29 23:01 . 2004-02-13 00:57 181760 c:\windows\system32\activeds(2).dll
+ 2004-04-29 23:01 . 2004-02-13 00:57 107008 c:\windows\system32\aclui(2).dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 175104 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpsrcwp.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 175104 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpsrcwp.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 282624 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpdxm.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 282624 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpdxm.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 135168 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpasf.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 135168 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpasf.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 122880 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmlaunch.exe
- 2004-12-22 18:19 . 2004-09-22 23:46 122880 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmlaunch.exe
+ 2009-10-03 19:07 . 2005-01-28 17:44 189440 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmerror.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 189440 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmerror.dll
- 2004-12-22 18:19 . 2004-09-22 23:46 192512 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\unregmp2.exe
+ 2009-10-03 19:08 . 2005-01-28 17:44 192512 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\unregmp2.exe
+ 2009-10-03 19:07 . 2005-01-28 17:44 352256 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\mpvis.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 991232 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\migrate.exe
- 2004-12-22 18:19 . 2004-09-22 23:45 991232 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\migrate.exe
+ 2009-10-03 19:07 . 2005-01-28 17:44 484352 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\Audiodev.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 225280 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpdxm.dll
- 2004-12-22 18:19 . 2002-12-12 08:34 225280 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpdxm.dll
- 2004-12-22 18:19 . 2002-12-12 08:34 106496 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpasf.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 106496 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmpasf.dll
+ 2009-10-03 18:52 . 2004-09-22 23:46 122880 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmlaunch.exe
- 2004-12-22 18:19 . 2002-12-12 06:16 167936 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmerror.dll
+ 2009-10-03 18:52 . 2002-12-12 06:16 167936 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmerror.dll
+ 2009-10-03 18:52 . 2002-12-12 06:08 192512 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\unregmp2.exe
- 2004-12-22 18:19 . 2002-12-12 06:08 192512 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\unregmp2.exe
+ 2009-10-03 18:52 . 2002-12-12 06:16 352256 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\mpvis.dll
- 2004-12-22 18:19 . 2002-12-12 06:16 352256 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\mpvis.dll
- 2004-12-22 18:19 . 2002-12-12 06:08 782336 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\migrate.exe
+ 2009-10-03 18:52 . 2002-12-12 06:08 782336 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\migrate.exe
+ 2009-10-03 18:52 . 2002-07-07 09:01 114688 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\custsat.dll
- 2004-12-22 18:19 . 2002-07-07 09:01 114688 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\custsat.dll
+ 2009-10-03 19:01 . 2005-01-28 17:44 142336 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\msnetobj.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 142336 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\msnetobj.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 502272 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\drmv2clt.dll
+ 2009-10-03 19:01 . 2005-01-28 17:44 502272 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\drmv2clt.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 258296 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\drmclien.dll
+ 2009-10-03 19:01 . 2005-01-28 17:44 258296 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\drmclien.dll
+ 2009-10-03 19:01 . 2005-01-28 17:44 294912 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\blackbox.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 294912 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}\blackbox.dll
- 2008-11-02 00:55 . 2002-12-12 09:09 253952 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\msnetobj.dll
+ 2009-10-03 18:46 . 2002-12-12 09:09 253952 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\msnetobj.dll
- 2008-11-02 00:55 . 2002-12-12 09:09 678912 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\drmv2clt.dll
+ 2009-10-03 18:46 . 2002-12-12 09:09 678912 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\drmv2clt.dll
- 2008-11-02 00:55 . 2002-12-12 09:50 301712 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\drmclien.dll
+ 2009-10-03 18:46 . 2002-12-12 09:50 301712 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\drmclien.dll
- 2008-11-02 00:55 . 2002-12-12 09:09 232960 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\blackbox.dll
+ 2009-10-03 18:46 . 2002-12-12 09:09 232960 c:\windows\RegisteredPackages\{C5B8FBE9-645E-4484-A7AA-E8DA9A70DD77}$BACKUP$\System\blackbox.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 940544 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmspdmoe.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 940544 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmspdmoe.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 150016 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmidx.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 150016 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmidx.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 290816 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\WMDRMNet.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 290816 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\WMDRMNet.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 335872 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\WMDRMdev.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 335872 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\WMDRMdev.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 224768 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmasf.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 224768 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmasf.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 716288 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmadmoe.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 716288 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmadmoe.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 221184 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\qasf.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 221184 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\qasf.dll
+ 2009-10-03 18:47 . 2002-12-12 08:34 997888 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmvdmoe2.dll
- 2008-11-02 00:55 . 2002-12-12 08:34 997888 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmvdmoe2.dll
+ 2009-10-03 18:47 . 2002-12-12 08:34 892416 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmspdmoe.dll
- 2008-11-02 00:55 . 2002-12-12 08:34 892416 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmspdmoe.dll
- 2008-11-02 00:55 . 2002-12-12 08:23 981504 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmnetmgr.dll
+ 2009-10-03 18:47 . 2002-12-12 08:23 981504 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmnetmgr.dll
- 2008-11-02 00:55 . 2002-12-12 06:16 143360 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmidx.dll
+ 2009-10-03 18:47 . 2002-12-12 06:16 143360 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmidx.dll
- 2008-11-02 00:55 . 2002-12-12 08:23 218112 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmasf.dll
+ 2009-10-03 18:47 . 2002-12-12 08:23 218112 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmasf.dll
- 2008-11-02 00:55 . 2002-12-12 08:34 670208 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmadmoe.dll
+ 2009-10-03 18:47 . 2002-12-12 08:34 670208 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmadmoe.dll
- 2008-11-02 00:55 . 2002-12-12 08:34 241664 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\qasf.dll
+ 2009-10-03 18:47 . 2002-12-12 08:34 241664 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\qasf.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 354816 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\psisdecd.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 354816 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\psisdecd.dll
+ 2009-10-03 19:02 . 2005-01-28 17:44 895736 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmvdmod.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 895736 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmvdmod.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 413944 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmspdmod.dll
+ 2009-10-03 19:02 . 2005-01-28 17:44 413944 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmspdmod.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 774904 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmsdmod.dll
+ 2009-10-03 19:02 . 2005-01-28 17:44 774904 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmsdmod.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 396528 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmadmod.dll
+ 2009-10-03 19:02 . 2005-01-28 17:44 396528 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmadmod.dll
- 2008-11-02 00:55 . 2002-12-12 10:10 816264 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmvdmod.dll
+ 2009-10-03 18:46 . 2002-12-12 10:10 816264 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmvdmod.dll
+ 2009-10-03 18:46 . 2002-12-12 10:07 486536 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmspdmod.dll
- 2008-11-02 00:55 . 2002-12-12 10:07 486536 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmspdmod.dll
+ 2009-10-03 18:46 . 2002-12-12 10:12 760968 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmsdmod.dll
- 2008-11-02 00:55 . 2002-12-12 10:12 760968 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmsdmod.dll
+ 2009-10-03 18:46 . 2002-12-12 10:11 410248 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmadmod.dll
- 2008-11-02 00:55 . 2002-12-12 10:11 410248 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmadmod.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 331264 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdsp.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 331264 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdsp.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 331776 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdmtpdr.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 331776 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdmtpdr.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 114176 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdmtp.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 114176 c:\windows\RegisteredPackages\{981FB688-E76B-4246-987B-92083185B90A}\wpdmtp.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 470528 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qdvd.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 316928 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qdv.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 974848 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdiag.exe
+ 2009-10-03 18:46 . 2004-07-09 08:27 381952 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dsound.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 230400 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplayx.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 122880 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmusic.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 181248 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmime.dll
+ 2009-10-03 18:46 . 2004-07-09 08:27 292864 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\ddraw.dll
+ 2009-10-03 19:11 . 2005-01-28 17:44 819200 c:\windows\RegisteredPackages\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}\setup_wm.exe
- 2004-12-22 18:19 . 2004-09-22 23:46 819200 c:\windows\RegisteredPackages\{3FDF25EE-E592-4495-8391-6E9C504DAC2B}\setup_wm.exe
+ 2009-10-03 19:05 . 2005-01-28 17:44 315904 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MSWMDM.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 315904 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MSWMDM.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 364784 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MSSCP.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 364784 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MSSCP.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 173568 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSP.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 173568 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\MsPMSP.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 164864 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\cewmdm.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 164864 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}\cewmdm.dll
- 2008-11-02 00:55 . 2002-11-27 10:03 245760 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MSWMDM.dll
+ 2009-10-03 18:49 . 2002-11-27 10:03 245760 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MSWMDM.dll
+ 2009-10-03 18:49 . 2002-12-12 09:09 358912 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MSSCP.dll
- 2008-11-02 00:55 . 2002-12-12 09:09 358912 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MSSCP.dll
- 2008-11-02 00:55 . 2002-11-27 10:03 201728 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MsPMSP.dll
+ 2009-10-03 18:49 . 2002-11-27 10:03 201728 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\MsPMSP.dll
+ 2009-10-03 18:49 . 2002-11-27 10:03 159232 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\cewmdm.dll
- 2008-11-02 00:55 . 2002-11-27 10:03 159232 c:\windows\RegisteredPackages\{30C7234B-6482-4A55-A11D-ECD9030313F2}$BACKUP$\System\cewmdm.dll
+ 2010-06-26 14:28 . 2009-11-26 03:08 155670 c:\windows\PCHealth\HelpCtr\Config\Cache\Personal_32_1033.dat
- 2003-02-22 01:20 . 2003-02-22 01:20 737280 c:\windows\Microsoft.NET\Framework\v1.1.4322\vbc.exe
+ 2004-07-15 16:23 . 2003-02-22 01:20 737280 c:\windows\Microsoft.NET\Framework\v1.1.4322\vbc.exe
+ 2004-07-15 19:31 . 2003-02-21 22:27 569344 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Services.dll
- 2003-02-21 22:27 . 2003-02-21 22:27 569344 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Services.dll
+ 2004-07-15 19:28 . 2003-02-21 22:27 819200 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Mobile.dll
- 2003-02-21 22:27 . 2003-02-21 22:27 819200 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.Mobile.dll
+ 2004-07-15 19:28 . 2003-02-21 22:27 126976 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.ServiceProcess.dll
- 2003-02-21 22:27 . 2003-02-21 22:27 126976 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.ServiceProcess.dll
+ 2004-07-15 19:31 . 2003-02-21 22:26 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 131072 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Serialization.Formatters.Soap.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 323584 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Remoting.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 323584 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Runtime.Remoting.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Messaging.dll
+ 2004-07-15 19:31 . 2003-02-21 22:26 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Messaging.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 368640 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Management.dll
+ 2004-07-15 19:31 . 2003-02-21 22:26 368640 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Management.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 241664 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.EnterpriseServices.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 466944 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 466944 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Drawing.dll
+ 2004-07-15 19:31 . 2003-02-21 22:25 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.OracleClient.dll
- 2003-02-21 22:25 . 2003-02-21 22:25 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.OracleClient.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 319488 c:\windows\Microsoft.NET\Framework\v1.1.4322\SOS.dll
+ 2004-07-15 05:35 . 2003-02-21 10:09 319488 c:\windows\Microsoft.NET\Framework\v1.1.4322\SOS.dll
+ 2004-07-15 05:33 . 2003-02-21 10:09 143360 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorrc.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 143360 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorrc.dll
+ 2004-07-15 05:25 . 2003-02-21 10:06 311296 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
- 2003-02-21 10:06 . 2003-02-21 10:06 311296 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorjit.dll
+ 2004-07-15 05:32 . 2003-02-21 10:09 233472 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbi.dll
- 2003-02-21 10:09 . 2003-02-21 10:09 233472 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscordbi.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 299008 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.VisualBasic.dll
+ 2004-07-15 19:28 . 2003-02-21 22:26 716800 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 716800 c:\windows\Microsoft.NET\Framework\v1.1.4322\Microsoft.JScript.dll
+ 2004-07-15 05:35 . 2003-02-21 10:09 196608 c:\windows\Microsoft.NET\Framework\v1.1.4322\ilasm.exe
- 2003-02-21 10:09 . 2003-02-21 10:09 196608 c:\windows\Microsoft.NET\Framework\v1.1.4322\ilasm.exe
- 2003-02-21 10:06 . 2003-02-21 10:06 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
+ 2004-07-15 05:24 . 2003-02-21 10:06 282624 c:\windows\Microsoft.NET\Framework\v1.1.4322\fusion.dll
+ 2004-07-15 16:23 . 2003-02-22 01:21 626688 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscomp.dll
- 2003-02-22 01:21 . 2003-02-22 01:21 626688 c:\windows\Microsoft.NET\Framework\v1.1.4322\cscomp.dll
+ 2004-07-15 06:49 . 2003-02-21 10:19 253952 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
- 2003-02-21 10:19 . 2003-02-21 10:19 253952 c:\windows\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
- 2003-02-21 09:43 . 2003-02-21 09:43 131072 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2005-09-23 12:28 . 2003-02-21 09:43 131072 c:\windows\Microsoft.NET\Framework\v1.0.3705\mscormmc.dll
+ 2009-10-03 18:59 . 2006-03-31 15:27 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2911.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2006-02-03 11:40 578560 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2910.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-12-05 21:20 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2909.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-09-28 18:11 577536 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2908.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-07-22 21:21 577024 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2907.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-05-26 19:15 576000 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2906.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-03-18 21:23 567296 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2905.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-02-05 23:32 563712 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2904.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 223232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 178176 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectSound.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 364544 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectPlay.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 159232 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectInput.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 145920 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.DirectDraw.dll
+ 2009-10-03 18:59 . 2005-03-18 20:23 473600 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3D.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 331264 c:\windows\LastGood\System32\wpdsp.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 331776 c:\windows\LastGood\System32\wpdmtpdr.dll
+ 2009-10-03 19:06 . 2005-01-28 17:44 114176 c:\windows\LastGood\System32\wpdmtp.dll
+ 2009-10-03 19:09 . 2005-01-28 17:44 175104 c:\windows\LastGood\System32\wmpsrcwp.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 225280 c:\windows\LastGood\System32\wmpdxm.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 106496 c:\windows\LastGood\System32\wmpasf.dll
+ 2009-10-03 18:53 . 2002-12-12 06:16 167936 c:\windows\LastGood\System32\wmerror.dll
+ 2009-10-03 19:04 . 2005-01-28 17:44 290816 c:\windows\LastGood\System32\WMDRMNet.dll
+ 2009-10-03 19:05 . 2005-01-28 17:44 335872 c:\windows\LastGood\System32\WMDRMdev.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 733184 c:\windows\LastGood\System32\qedwipes.dll
+ 2009-10-03 18:49 . 2003-05-31 00:00 449024 c:\windows\LastGood\System32\qdvd.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 311808 c:\windows\LastGood\System32\qdv.dll
+ 2009-10-03 18:52 . 2003-02-18 01:16 354816 c:\windows\LastGood\System32\psisdecd.dll
+ 2009-10-02 14:36 . 2008-10-16 18:07 208744 c:\windows\LastGood\System32\muweb.dll
+ 2009-10-02 14:36 . 2008-10-16 18:06 268648 c:\windows\LastGood\System32\mucltui.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 324096 c:\windows\LastGood\System32\mswebdvd.dll
+ 2009-10-03 18:48 . 2003-05-31 00:00 937984 c:\windows\LastGood\System32\dxdiag.exe
+ 2009-10-03 18:48 . 2002-12-12 15:14 602624 c:\windows\LastGood\System32\dx7vb.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 355328 c:\windows\LastGood\System32\dsound.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 491520 c:\windows\LastGood\System32\dsdmoprp.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 186880 c:\windows\LastGood\System32\dsdmo.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 112128 c:\windows\LastGood\System32\dpvvox.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 381952 c:\windows\LastGood\System32\dpvoice.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 723968 c:\windows\LastGood\System32\dpnet.dll
+ 2009-10-03 18:47 . 2002-12-12 15:14 217600 c:\windows\LastGood\System32\dplayx.dll
+ 2009-10-03 18:50 . 2002-12-12 15:14 116736 c:\windows\LastGood\System32\dmusic.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 100864 c:\windows\LastGood\System32\dmsynth.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 171520 c:\windows\LastGood\System32\dmime.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 733184 c:\windows\LastGood\System32\DllCache\qedwipes.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 470528 c:\windows\LastGood\System32\DllCache\qdvd.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 316928 c:\windows\LastGood\System32\DllCache\qdv.dll
+ 2009-10-03 18:51 . 2005-01-28 17:44 221184 c:\windows\LastGood\System32\DllCache\qasf.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 324096 c:\windows\LastGood\System32\DllCache\mswebdvd.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 974848 c:\windows\LastGood\System32\DllCache\dxdiag.exe
+ 2009-10-03 18:51 . 2002-12-12 15:14 602624 c:\windows\LastGood\System32\DllCache\dx7vb.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 355328 c:\windows\LastGood\System32\DllCache\dsound.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 491520 c:\windows\LastGood\System32\DllCache\dsdmoprp.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 186880 c:\windows\LastGood\System32\DllCache\dsdmo.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 112128 c:\windows\LastGood\System32\DllCache\dpvvox.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 381952 c:\windows\LastGood\System32\DllCache\dpvoice.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 723968 c:\windows\LastGood\System32\DllCache\dpnet.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 230400 c:\windows\LastGood\System32\DllCache\dplayx.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 122880 c:\windows\LastGood\System32\DllCache\dmusic.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 100864 c:\windows\LastGood\System32\DllCache\dmsynth.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 181248 c:\windows\LastGood\System32\DllCache\dmime.dll
+ 2009-10-03 18:51 . 2004-02-12 03:35 168960 c:\windows\LastGood\System32\DllCache\dinput8.dll
+ 2009-10-03 18:51 . 2004-02-12 03:35 151552 c:\windows\LastGood\System32\DllCache\dinput.dll
+ 2009-10-03 18:51 . 2004-02-12 03:31 394240 c:\windows\LastGood\System32\DllCache\diactfrm.dll
+ 2009-10-03 18:51 . 2003-05-31 00:00 132608 c:\windows\LastGood\System32\DllCache\devenum.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 284160 c:\windows\LastGood\System32\DllCache\ddraw.dll
+ 2009-10-03 18:51 . 2004-02-12 04:32 350208 c:\windows\LastGood\System32\DllCache\d3drm.dll
+ 2009-10-03 18:51 . 2004-02-12 04:32 590336 c:\windows\LastGood\System32\DllCache\d3dramp.dll
+ 2009-10-03 18:51 . 2003-05-31 00:00 797184 c:\windows\LastGood\System32\DllCache\d3dim700.dll
+ 2009-10-03 18:51 . 2004-02-12 04:32 436224 c:\windows\LastGood\System32\DllCache\d3dim.dll
+ 2009-10-03 18:49 . 2004-02-12 03:35 168960 c:\windows\LastGood\System32\dinput8.dll
+ 2009-10-03 18:47 . 2004-02-12 03:35 151552 c:\windows\LastGood\System32\dinput.dll
+ 2009-10-03 18:48 . 2004-02-12 03:31 394240 c:\windows\LastGood\System32\diactfrm.dll
+ 2009-10-03 18:48 . 2003-05-31 00:00 132608 c:\windows\LastGood\System32\devenum.dll
+ 2009-10-03 18:47 . 2002-12-12 15:14 284160 c:\windows\LastGood\System32\ddraw.dll
+ 2009-10-03 18:48 . 2004-02-12 04:32 350208 c:\windows\LastGood\System32\d3drm.dll
+ 2009-10-03 18:48 . 2004-02-12 04:32 590336 c:\windows\LastGood\System32\d3dramp.dll
+ 2009-10-03 18:47 . 2003-05-31 00:00 797184 c:\windows\LastGood\System32\d3dim700.dll
+ 2009-10-03 18:48 . 2004-02-12 04:32 436224 c:\windows\LastGood\System32\d3dim.dll
+ 2009-10-03 19:09 . 2005-01-28 17:44 484352 c:\windows\LastGood\System32\Audiodev.dll
+ 2009-10-03 18:55 . 2003-02-18 01:16 354816 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\psisdecd.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 733184 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qedwipes.dll
+ 2009-10-03 18:57 . 2003-05-31 00:00 449024 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qdvd.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 311808 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qdv.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 257024 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qcap.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 173056 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qasf.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 324096 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\mswebdvd.dll
+ 2009-10-03 18:58 . 2002-12-12 15:14 130304 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\ks.sys
+ 2009-10-03 18:57 . 2003-05-31 00:00 937984 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dxdiag.exe
+ 2009-10-03 18:56 . 2002-12-12 15:14 602624 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dx7vb.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 355328 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dsound.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 491520 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dsdmoprp.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 186880 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dsdmo.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 112128 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvvox.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 381952 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpvoice.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 723968 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dpnet.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 217600 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dplayx.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 116736 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmusic.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 100864 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmsynth.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 171520 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dmime.dll
+ 2009-10-03 18:57 . 2003-05-31 00:00 132608 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\devenum.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 284160 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\ddraw.dll
+ 2009-10-03 18:56 . 2003-05-31 00:00 797184 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\d3dim700.dll
+ 2009-10-03 18:54 . 2002-12-12 06:08 192512 c:\windows\LastGood\INF\unregmp2.exe
+ 2009-10-03 18:53 . 2003-02-18 01:16 354816 c:\windows\LastGood\Driver Cache\i386\psisdecd.dll
+ 2009-10-03 18:50 . 2002-12-12 15:14 130304 c:\windows\LastGood\Driver Cache\i386\ks.sys
+ 2009-09-09 20:40 . 2009-09-09 20:40 632320 c:\windows\Installer\92b6905.msp
+ 2009-10-03 18:40 . 2009-10-03 18:40 414720 c:\windows\Installer\28493c8f.msi
- 2004-04-02 10:00 . 2009-08-12 07:11 409600 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2010-05-12 14:13 . 2010-05-12 14:18 409600 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2004-04-02 10:00 . 2010-05-12 14:18 286720 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 286720 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
+ 2004-04-02 10:00 . 2010-05-12 14:18 249856 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 249856 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\pptico.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 794624 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2004-04-02 10:00 . 2010-05-12 14:19 794624 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\outicon.exe
+ 2004-04-02 10:00 . 2010-05-12 14:18 135168 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2004-04-02 10:00 . 2009-08-12 07:11 135168 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\misc.exe
- 2009-07-11 12:02 . 2009-08-05 22:07 371894 c:\windows\Installer\{2B6EC03E-6FA0-4D7C-9CCE-1B03819AB613}\ARPPRODUCTICON.exe
+ 2009-07-11 12:02 . 2010-08-17 15:30 371894 c:\windows\Installer\{2B6EC03E-6FA0-4D7C-9CCE-1B03819AB613}\ARPPRODUCTICON.exe
+ 2007-04-19 17:53 . 2007-04-19 17:53 109408 c:\windows\Installer\$PatchCache$\Managed\9040211900063D11C8EF10054038389C\11.0.8173\OUTLCTL.DLL
+ 2007-05-10 18:35 . 2007-05-10 18:35 120160 c:\windows\Installer\$PatchCache$\Managed\9040211900063D11C8EF10054038389C\11.0.8173\MSCONV97.DLL
- 2004-04-02 08:45 . 2002-12-12 06:08 192512 c:\windows\inf\unregmp2.exe
+ 2005-01-28 17:44 . 2005-01-28 17:44 192512 c:\windows\inf\unregmp2.exe
- 2004-04-02 08:43 . 2003-02-18 01:16 354816 c:\windows\Driver Cache\i386\psisdecd.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 354816 c:\windows\Driver Cache\i386\psisdecd.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 223232 c:\windows\assembly\GAC\Microsoft.DirectX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 178176 c:\windows\assembly\GAC\Microsoft.DirectX.DirectSound\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectSound.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 364544 c:\windows\assembly\GAC\Microsoft.DirectX.DirectPlay\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectPlay.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 159232 c:\windows\assembly\GAC\Microsoft.DirectX.DirectInput\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectInput.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 145920 c:\windows\assembly\GAC\Microsoft.DirectX.DirectDraw\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.DirectDraw.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2911.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 578560 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2910.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2909.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 577536 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2908.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 577024 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2907.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 576000 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2906.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 567296 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2905.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 563712 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2904.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:59 . 2009-10-03 18:59 473600 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3D\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3D.dll
+ 2005-09-28 19:46 . 2005-09-28 19:46 1184984 c:\windows\system32\wvc1dmod.dll
+ 2004-04-29 21:08 . 2009-08-06 23:23 1929952 c:\windows\system32\wuaueng.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1003008 c:\windows\system32\wmvdmoe2.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 2370296 c:\windows\system32\wmvcore.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 2370296 c:\windows\system32\wmvcore(2).dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1512448 c:\windows\system32\WMVADVE.DLL
- 2005-03-04 16:11 . 2005-03-04 16:11 1218808 c:\windows\system32\wmvadvd.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1218808 c:\windows\system32\wmvadvd.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1119744 c:\windows\system32\wmsdmoe2.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 3371008 c:\windows\system32\wmploc.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1594880 c:\windows\system32\wmpencen.dll
+ 2005-01-28 17:44 . 2006-04-29 10:07 5533696 c:\windows\system32\wmp.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1027072 c:\windows\system32\wmnetmgr.dll
+ 2004-04-29 23:01 . 2004-02-12 04:00 1267712 c:\windows\system32\wbem\cimwin32(2).dll
+ 2008-11-25 14:59 . 2006-07-13 13:46 8353280 c:\windows\system32\shell32(4).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 8384000 c:\windows\system32\shell32(3).dll
+ 2008-11-25 14:59 . 2004-08-04 07:56 8384000 c:\windows\system32\shell32(2).dll
+ 2009-09-24 09:47 . 2004-01-17 03:58 1252940 c:\windows\system32\ReinstallBackups\0013\DriverFiles\AGRSM.sys
+ 2005-08-30 14:14 . 2005-08-30 14:14 1227776 c:\windows\system32\quartz(2).dll
+ 2009-08-01 04:08 . 2009-04-28 20:20 1858032 c:\windows\system32\pxsfs.dll
+ 2008-11-25 14:58 . 2005-07-26 04:31 1190400 c:\windows\system32\ole32(5).dll
+ 2008-11-25 14:58 . 2005-07-26 04:31 1190400 c:\windows\system32\ole32(4).dll
+ 2008-11-25 14:58 . 2005-01-14 08:55 1285120 c:\windows\system32\ole32(3).dll
+ 2008-11-25 14:58 . 2005-01-14 08:55 1285120 c:\windows\system32\ole32(2).dll
+ 2004-04-02 09:33 . 2003-10-07 08:30 1630208 c:\windows\system32\netshell(2).dll
+ 2009-08-19 22:07 . 2006-12-04 18:37 1317648 c:\windows\system32\msxml6.dll
- 2006-12-04 18:37 . 2006-12-04 18:37 1317648 c:\windows\system32\msxml6.dll
+ 2008-12-30 22:34 . 2006-09-13 05:09 1110528 c:\windows\system32\msxml3(3).dll
+ 2008-12-30 22:34 . 2006-09-13 05:09 1110528 c:\windows\system32\msxml3(2).dll
- 2004-04-02 08:43 . 2003-02-18 01:16 1230336 c:\windows\system32\msvidctl.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 1230336 c:\windows\system32\msvidctl.dll
+ 2004-04-29 23:03 . 2005-05-04 18:45 2890240 c:\windows\system32\msi(2).dll
+ 2009-07-18 03:21 . 2009-07-18 03:21 3883424 c:\windows\system32\Macromed\Flash\NPSWF32.dll
+ 2009-08-04 23:52 . 2009-08-04 23:52 1193832 c:\windows\system32\FM20.DLL
+ 2009-08-01 04:36 . 2004-08-04 07:56 1082368 c:\windows\system32\esent(2).dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 1769472 c:\windows\system32\dxdiagn.dll
+ 2004-06-29 13:07 . 2004-06-29 13:07 1268204 c:\windows\system32\drivers\AGRSM.sys
+ 2004-04-29 21:08 . 2009-08-06 23:23 1929952 c:\windows\system32\dllcache\wuaueng.dll
+ 2004-04-02 08:46 . 2005-01-28 17:44 2370296 c:\windows\system32\dllcache\wmvcore.dll
+ 2004-04-02 08:45 . 2005-01-28 17:44 3371008 c:\windows\system32\dllcache\wmploc.dll
+ 2005-01-28 17:44 . 2005-01-28 17:44 1027072 c:\windows\system32\dllcache\wmnetmgr.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 1230336 c:\windows\system32\dllcache\msvidctl.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 1230336 c:\windows\system32\dllcache\msvidctl.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 1201152 c:\windows\system32\dllcache\d3d8.dll
+ 2009-08-05 22:26 . 2004-02-13 01:12 1157632 c:\windows\system32\dllcache\cache\sfcfiles.dll
+ 2009-08-05 22:26 . 2005-03-02 01:33 2040832 c:\windows\system32\dllcache\cache\ntoskrnl.exe
+ 2009-08-05 22:26 . 2005-03-02 00:36 1955840 c:\windows\system32\dllcache\cache\ntkrnlpa.exe
+ 2009-08-05 22:26 . 2006-06-30 14:28 2703872 c:\windows\system32\dllcache\cache\MSHTML.DLL
+ 2009-08-05 22:26 . 2004-02-13 01:06 1004032 c:\windows\system32\dllcache\cache\explorer.exe
+ 2010-03-01 21:27 . 2009-09-04 22:29 1892184 c:\windows\system32\D3DX9_42.dll
+ 2010-03-01 21:25 . 2006-09-28 21:05 2414360 c:\windows\system32\d3dx9_31.dll
+ 2009-10-03 18:58 . 2006-03-31 16:40 2388176 c:\windows\system32\d3dx9_30.dll
+ 2009-10-03 18:58 . 2005-07-22 23:59 2319568 c:\windows\system32\d3dx9_27.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 1201152 c:\windows\system32\d3d8.dll
+ 2008-11-25 14:58 . 2005-07-26 04:30 1179136 c:\windows\system32\comsvcs(2).dll
+ 2006-09-04 06:23 . 2006-09-04 06:23 1027072 c:\windows\system32\BROWSEUI(3).DLL
+ 2006-09-04 06:23 . 2004-08-04 07:56 1016832 c:\windows\system32\browseui(2).dll
- 2004-12-22 18:19 . 2004-09-22 23:46 3371008 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmploc.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 3371008 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmploc.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 1594880 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmpencen.dll
+ 2009-10-03 19:07 . 2005-01-28 17:44 5525504 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}\wmp.dll
- 2004-12-22 18:19 . 2002-12-12 08:34 2940928 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmploc.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 2940928 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmploc.dll
+ 2009-10-03 18:51 . 2006-04-24 20:40 4730880 c:\windows\RegisteredPackages\{DD90D410-1823-43EB-9A16-A2331BF08799}$BACKUP$\System\wmp.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 1003008 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmvdmoe2.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 1003008 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmvdmoe2.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 2370296 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmvcore.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 2370296 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmvcore.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 1512448 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\WMVADVE.DLL
+ 2009-10-03 19:03 . 2005-01-28 17:44 1512448 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\WMVADVE.DLL
- 2004-12-22 18:19 . 2005-01-28 18:44 1119744 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmsdmoe2.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 1119744 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmsdmoe2.dll
+ 2009-10-03 19:03 . 2005-01-28 17:44 1027072 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmnetmgr.dll
- 2004-12-22 18:19 . 2005-01-28 18:44 1027072 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}\wmnetmgr.dll
+ 2009-10-03 18:47 . 2002-12-12 10:02 2058888 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmvcore.dll
- 2008-11-02 00:55 . 2002-12-12 10:02 2058888 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmvcore.dll
+ 2009-10-03 18:47 . 2002-12-12 08:34 1111040 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmsdmoe2.dll
- 2008-11-02 00:55 . 2002-12-12 08:34 1111040 c:\windows\RegisteredPackages\{AAC1D942-0B38-4E37-9E4E-5B96A9DD2170}$BACKUP$\System\wmsdmoe2.dll
+ 2009-10-03 18:47 . 2004-07-09 08:26 1230336 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\msvidctl.dll
- 2004-04-02 08:43 . 2003-02-18 01:16 1230336 c:\windows\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\msvidctl.dll
- 2004-12-22 18:18 . 2005-01-28 18:44 1218808 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmvadvd.dll
+ 2009-10-03 19:02 . 2005-01-28 17:44 1218808 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}\wmvadvd.dll
+ 2009-10-03 18:46 . 2005-03-04 16:11 1218808 c:\windows\RegisteredPackages\{A47B3654-48EE-48A5-B629-97D70175E58F}$BACKUP$\System\wmvadvd.dll
+ 2009-10-03 18:47 . 2004-07-09 08:27 1201152 c:\windows\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\d3d8.dll
+ 2004-07-15 13:15 . 2003-02-21 20:04 1032192 c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll
- 2003-02-21 20:04 . 2003-02-21 20:04 1032192 c:\windows\Microsoft.NET\Framework\v1.1.4322\VsaVb7rt.dll
- 2003-02-21 22:27 . 2003-02-21 22:27 1335296 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll
+ 2004-07-15 19:29 . 2003-02-21 22:27 1335296 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.XML.dll
- 2003-02-21 22:27 . 2003-02-21 22:27 2039808 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2004-07-15 19:32 . 2003-02-21 22:27 2039808 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Windows.Forms.dll
+ 2004-07-15 19:29 . 2003-02-21 22:27 1245184 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
- 2003-02-21 22:27 . 2003-02-21 22:27 1245184 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Web.dll
+ 2004-07-15 19:31 . 2003-02-21 22:26 1216512 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 1216512 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.dll
+ 2004-07-15 19:29 . 2003-02-21 22:26 1699840 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 1699840 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Design.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 1290240 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll
+ 2004-07-15 19:32 . 2003-02-21 22:26 1290240 c:\windows\Microsoft.NET\Framework\v1.1.4322\System.Data.dll
- 2003-02-21 10:08 . 2003-02-21 10:08 2482176 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2004-07-15 05:28 . 2003-02-21 10:08 2482176 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorwks.dll
+ 2004-07-15 05:26 . 2003-02-21 10:07 2494464 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
- 2003-02-21 10:07 . 2003-02-21 10:07 2494464 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorsvr.dll
- 2003-02-21 22:26 . 2003-02-21 22:26 2088960 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2004-07-15 19:29 . 2003-02-21 22:26 2088960 c:\windows\Microsoft.NET\Framework\v1.1.4322\mscorlib.dll
+ 2009-10-03 18:59 . 2004-12-01 19:53 2846720 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2903.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:58 . 2004-09-29 16:38 2676224 c:\windows\Microsoft.NET\DirectX for Managed Code\1.0.2902.0\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 19:04 . 2005-01-28 17:44 1512448 c:\windows\LastGood\System32\WMVADVE.DLL
+ 2009-10-03 18:46 . 2005-03-04 16:11 1218808 c:\windows\LastGood\System32\wmvadvd.dll
+ 2009-10-03 18:52 . 2002-12-12 08:34 2940928 c:\windows\LastGood\System32\wmploc.dll
+ 2009-10-03 19:09 . 2005-01-28 17:44 1594880 c:\windows\LastGood\System32\wmpencen.dll
+ 2009-10-03 18:52 . 2006-04-24 20:40 4730880 c:\windows\LastGood\System32\wmp.dll
+ 2009-10-03 18:49 . 2005-08-30 14:14 1227776 c:\windows\LastGood\System32\quartz.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 1798144 c:\windows\LastGood\System32\qedit.dll
+ 2009-10-03 18:52 . 2003-02-18 01:16 1230336 c:\windows\LastGood\System32\msvidctl.dll
+ 2009-10-03 18:51 . 2003-05-31 00:00 1675264 c:\windows\LastGood\System32\dxdiagn.dll
+ 2009-10-03 18:48 . 2003-05-31 00:00 1189888 c:\windows\LastGood\System32\dx8vb.dll
+ 2009-10-03 18:48 . 2002-12-12 15:14 1294336 c:\windows\LastGood\System32\dsound3d.dll
+ 2009-10-03 18:51 . 2005-08-30 14:14 1227776 c:\windows\LastGood\System32\DllCache\quartz.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 1798144 c:\windows\LastGood\System32\DllCache\qedit.dll
+ 2009-10-03 18:54 . 2004-07-09 08:26 1230336 c:\windows\LastGood\System32\DllCache\msvidctl.dll
+ 2009-10-03 18:51 . 2003-05-31 00:00 1189888 c:\windows\LastGood\System32\DllCache\dx8vb.dll
+ 2009-10-03 18:51 . 2002-12-12 15:14 1294336 c:\windows\LastGood\System32\DllCache\dsound3d.dll
+ 2009-10-03 18:51 . 2004-07-09 08:27 1201152 c:\windows\LastGood\System32\DllCache\d3d8.dll
+ 2009-10-03 18:49 . 2002-12-12 15:14 1177600 c:\windows\LastGood\System32\d3d8.dll
+ 2009-10-03 18:55 . 2003-02-18 01:16 1230336 c:\windows\LastGood\RegisteredPackages\{AA936DF4-2B08-4B1F-B071-72192E287704}\msvidctl.dll
+ 2009-10-03 18:57 . 2003-05-31 00:00 1962496 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\quartz.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 1798144 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\qedit.dll
+ 2009-10-03 18:56 . 2003-05-31 00:00 1189888 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dx8vb.dll
+ 2009-10-03 18:56 . 2002-12-12 15:14 1294336 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\dsound3d.dll
+ 2009-10-03 18:57 . 2002-12-12 15:14 1177600 c:\windows\LastGood\RegisteredPackages\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}\d3d8.dll
+ 2010-05-25 15:45 . 2010-05-25 15:45 8445440 c:\windows\Installer\f78f6bc.msp
+ 2010-07-01 02:52 . 2010-07-01 02:52 5522944 c:\windows\Installer\f78f6a8.msp
+ 2009-11-20 20:00 . 2009-11-20 20:00 5521408 c:\windows\Installer\92b6918.msp
+ 2009-11-11 17:35 . 2009-11-11 17:35 2727936 c:\windows\Installer\837992f.msi
+ 2010-02-04 23:11 . 2010-02-04 23:11 5526528 c:\windows\Installer\70c68.msp
+ 2010-01-27 22:53 . 2010-01-27 22:53 6820864 c:\windows\Installer\70c54.msp
+ 2010-03-11 16:03 . 2010-03-11 16:03 5524480 c:\windows\Installer\5a89a4b.msp
+ 2009-08-25 18:57 . 2009-08-25 18:57 5518336 c:\windows\Installer\4e65fa60.msp
+ 2009-08-21 14:14 . 2009-08-21 14:14 8363008 c:\windows\Installer\3b239eae.msp
+ 2009-08-20 09:02 . 2009-08-20 09:02 5204992 c:\windows\Installer\3b239e95.msp
+ 2009-09-29 13:08 . 2009-09-29 13:08 6747648 c:\windows\Installer\3b239e82.msp
+ 2009-09-21 20:53 . 2009-09-21 20:53 5518848 c:\windows\Installer\3b239e6f.msp
+ 2010-05-03 20:27 . 2010-05-03 20:27 6825472 c:\windows\Installer\3448becf.msp
+ 2010-05-05 02:25 . 2010-05-05 02:25 7681024 c:\windows\Installer\3448bebb.msp
+ 2010-05-10 21:17 . 2010-05-10 21:17 5520896 c:\windows\Installer\3448bea7.msp
+ 2010-05-03 20:06 . 2010-05-03 20:06 5053952 c:\windows\Installer\3448be93.msp
+ 2009-10-22 17:46 . 2009-10-22 17:46 6821888 c:\windows\Installer\2de5b26.msp
+ 2009-10-06 23:40 . 2009-10-06 23:40 7681024 c:\windows\Installer\2de5b13.msp
+ 2009-10-22 17:28 . 2009-10-22 17:28 5521408 c:\windows\Installer\2de5b00.msp
+ 2010-01-19 22:51 . 2010-01-19 22:51 5524480 c:\windows\Installer\2ce7b8b.msp
+ 2009-12-17 03:58 . 2009-12-17 03:58 5382144 c:\windows\Installer\2ce7b79.msp
+ 2010-01-19 23:29 . 2010-01-19 23:29 5050368 c:\windows\Installer\2ce7b67.msp
+ 2008-09-26 18:30 . 2008-09-26 18:30 2224640 c:\windows\Installer\28493c9a.msp
+ 2010-06-28 20:01 . 2010-06-28 20:01 7677952 c:\windows\Installer\18a1b56.msp
+ 2010-06-29 02:53 . 2010-06-29 02:53 6819840 c:\windows\Installer\18a1b42.msp
+ 2010-07-26 21:02 . 2010-07-26 21:02 5519360 c:\windows\Installer\18a1b2e.msp
+ 2009-10-16 22:07 . 2009-10-16 22:07 6115328 c:\windows\Installer\11e28875.msp
+ 2010-04-21 21:46 . 2010-04-21 21:46 5522432 c:\windows\Installer\11e28861.msp
+ 2007-04-19 17:49 . 2007-04-19 17:49 1661280 c:\windows\Installer\$PatchCache$\Managed\9040211900063D11C8EF10054038389C\11.0.8173\PPTVIEW.EXE
+ 2007-06-06 14:53 . 2007-06-06 14:53 1195888 c:\windows\Installer\$PatchCache$\Managed\9040211900063D11C8EF10054038389C\11.0.8173\FM20.DLL
+ 2008-06-09 17:12 . 2008-06-09 17:12 1155728 c:\windows\Installer\$PatchCache$\Managed\1794A8743B869DB43A97E4DD11A1B67A\1.0.0\parent.exe
+ 2008-08-13 20:24 . 2008-08-13 20:24 3482256 c:\windows\Installer\$PatchCache$\Managed\1794A8743B869DB43A97E4DD11A1B67A\1.0.0\jswpreschool.exe
+ 2008-06-09 17:12 . 2008-06-09 17:12 1155728 c:\windows\Installer\$PatchCache$\Managed\1794A8743B869DB43A97E4DD11A1B67A\1.0.0\jswpre.exe
+ 2004-04-29 23:02 . 2004-02-13 01:06 1004032 c:\windows\explorer(4).exe
+ 2009-10-03 18:59 . 2009-10-03 18:59 2846720 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2903.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2009-10-03 18:58 . 2009-10-03 18:58 2676224 c:\windows\assembly\GAC\Microsoft.DirectX.Direct3DX\1.0.2902.0__31bf3856ad364e35\Microsoft.DirectX.Direct3DX.dll
+ 2006-06-30 21:24 . 2005-01-28 17:44 5525504 c:\windows\$NtUninstallKB917734_WMP10$\wmp.dll
+ 2009-08-04 02:20 . 2010-08-17 15:25 61820476 c:\windows\system32\Restore\rstrlog.dat
+ 2009-09-24 09:47 . 2009-12-01 20:06 25966024 c:\windows\system32\MRT.exe
+ 2010-05-11 15:30 . 2010-05-11 15:30 11194880 c:\windows\Installer\3448bee3.msp
.
-- Snapshot reset to current date --
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2009-04-02 16:47 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Uniblue RegistryBooster 2009"="c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe" [2008-08-26 2019624]
"uTorrent"="c:\program files\uTorrent\uTorrent.exe" [2010-03-01 319280]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Java\j2re1.4.2_03\bin\jusched.exe" [2004-04-02 32881]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-08 52736]
"KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2004-04-02 151597]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2004-01-17 229376]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472]
"VTTimer"="VTTimer.exe" [2004-01-16 49152]
"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 88363]
"PS2"="c:\windows\system32\ps2.exe" [2003-09-13 98304]
"VerizonServicepoint.exe"="c:\program files\Verizon\VSP\VerizonServicepoint.exe" [2009-03-12 2303216]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2010-01-13 37888]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 57344]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2008-10-28 181544]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2004-04-02 98304]

c:\documents and settings\Owner\Start Menu\Programs\Startup\
IMStart.lnk - c:\program files\InterMute\IMStart.exe [2004-4-2 57344]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
Compaq Connections.lnk - c:\program files\Compaq Connections\1940576\Program\BackWeb-1940576.exe [2004-4-2 16384]
Google Updater.lnk - c:\program files\Google\Google Updater\GoogleUpdater.exe [2007-7-29 124912]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-5-21 229437]
PopSubtract.lnk - c:\program files\InterMute\PopSubtract\PopSub.exe [2008-12-20 233472]
Quicken Scheduled Updates.lnk - c:\program files\Quicken\bagent.exe [2003-7-30 57344]
SpySubtract.lnk - c:\program files\InterMute\SpySubtract\spysub.exe [2008-12-20 983040]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *

R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [9/25/2009 11:32 PM 161064]
R2 PD91Agent;PD91Agent;c:\program files\Raxco\PerfectDisk2008\PD91Agent.exe [9/22/2008 4:58 PM 693512]
R3 RadialpointSafeConnectDriver;RadialpointSafeConnectDriver;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectDriver.sys [11/14/2008 6:28 PM 161304]
R3 RadialpointSafeConnectFilter;RadialpointSafeConnectFilter;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectFilter.sys [11/14/2008 6:28 PM 29720]
R3 RadialpointSafeConnectShim;RadialpointSafeConnectShim;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectShim.sys [11/14/2008 6:28 PM 27376]
S2 mrtRate;mrtRate; [x]
S2 RadialpointSafeConnectAgent;Verizon Internet Security Suite SafeConnectAgent;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\bin\SanaAgent.exe [11/14/2008 6:28 PM 4937752]
S3 PD91Engine;PD91Engine;c:\program files\Raxco\PerfectDisk2008\PD91Engine.exe [9/22/2008 4:58 PM 910600]
S3 Radialpoint Security Services;Verizon Internet Security Suite;c:\program files\Verizon\Verizon Internet Security Suite\RpsSecurityAwareR.exe [4/22/2009 10:38 AM 170736]
.
Contents of the 'Scheduled Tasks' folder

2004-04-03 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2004-04-03 08:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=presario&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
uInternet Settings,ProxyOverride = localhost
IE: Add To Compaq Organize... - c:\progra~1\HEWLET~1\COMPAQ~1\bin\core.hp.main\SendTo.html
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
IE: {{c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-17 16:55
Windows 5.1.2600 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(508)
c:\windows\system32\ODBC32.dll

- - - - - - - > 'lsass.exe'(568)
c:\windows\System32\dssenh.dll
.
Completion time: 2010-08-17 16:58:10
ComboFix-quarantined-files.txt 2010-08-17 20:57
ComboFix2.txt 2010-08-16 01:04
ComboFix3.txt 2009-08-25 01:54
ComboFix4.txt 2009-08-10 23:22
ComboFix5.txt 2010-08-17 20:47

Pre-Run: 124,093,960,192 bytes free
Post-Run: 124,067,438,592 bytes free

- - End Of File - - F847B2FD7BFAC20685113DC658D50199

Title was: why is my computer rejecting my verizon security suite, After 2 days unplugged my security suite can not start ~ OB

DDS (Ver_10-03-17.01) - NTFSx86
Run by Owner at 22:14:21.93 on Mon 08/23/2010
Internet Explorer: 6.0.2800.1106
Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.447.239 [GMT -4:00]


============== Running Processes ===============

C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Verizon\Verizon Internet Security Suite\Fws.exe
C:\WINDOWS\Explorer.EXE
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\System32\VTTimer.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Verizon\VSP\VerizonServicepoint.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\Compaq Connections\1940576\Program\BackWeb-1940576.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\InterMute\PopSubtract\PopSub.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\WINDOWS\System32\gearsec.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Bin\SanaMonitor.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=presario&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
uInternet Settings,ProxyOverride = localhost
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: PopKill Class: {3c060ea2-e6a9-4e49-a530-d4657b8c449a} - c:\program files\verizon\verizon internet security suite\pkR.dll
BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No File
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
EB: Media Band: {32683183-48a0-441b-a342-7c2a440a9478} - %SystemRoot%\System32\browseui.dll
uRun: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\RegistryBooster.exe /S
mRun: [SunJavaUpdateSched] c:\program files\java\j2re1.4.2_03\bin\jusched.exe
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [iTunesHelper] c:\program files\itunes\iTunesHelper.exe
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [VTTimer] VTTimer.exe
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [VerizonServicepoint.exe] "c:\program files\verizon\vsp\VerizonServicepoint.exe" /AUTORUN
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [MaxMenuMgr] "c:\program files\seagate\seagatemanager\freeagent status\StxMenuMgr.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
StartupFolder: c:\docume~1\owner\startm~1\programs\startup\imstart.lnk - c:\program files\intermute\IMStart.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\compaq~1.lnk - c:\program files\compaq connections\1940576\program\BackWeb-1940576.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\google~1.lnk - c:\program files\google\google updater\GoogleUpdater.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpoddt~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpotdd01.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\popsub~1.lnk - c:\program files\intermute\popsubtract\PopSub.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quicke~1.lnk - c:\program files\quicken\bagent.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\spysub~1.lnk - c:\program files\intermute\spysubtract\spysub.exe
IE: Add To Compaq Organize... - c:\progra~1\hewlet~1\compaq~1\bin\core.hp.main\SendTo.html
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: {c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\MSMSGS.EXE
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photo2.walgreens.com/WalgreensActivia.cab
DPF: {41564D57-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/0/A/9/0A9F8B32-9F8C-4D74-A130-E4CAB36EB01F/wmvadvd.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1249100481285
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1249100466237
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} - hxxps://remote.lifespan.org/dana-cached/setup/JuniperSetupSP1.cab
Notify: igfxcui - igfxsrvc.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\owner\applic~1\mozilla\firefox\profiles\9rfp74jn.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJPI142_03.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\real\realone player\netscape6\nppl3260.dll
FF - plugin: c:\program files\real\realone player\netscape6\nprjplug.dll
FF - plugin: c:\program files\real\realone player\netscape6\nprpjplug.dll
FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\verizon\vsp\nprpspa.dll

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R1 KLIF;KLIF;c:\windows\system32\drivers\klif.sys [2009-8-1 179984]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-9-25 161064]
R2 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk2008\PD91Agent.exe [2008-9-22 693512]
R3 RadialpointSafeConnectDriver;RadialpointSafeConnectDriver;c:\program files\verizon\verizon internet security suite\safeconnect\driver\platform_xp\SafeConnectDriver.sys [2008-11-14 161304]
R3 RadialpointSafeConnectFilter;RadialpointSafeConnectFilter;c:\program files\verizon\verizon internet security suite\safeconnect\driver\platform_xp\SafeConnectFilter.sys [2008-11-14 29720]
R3 RadialpointSafeConnectShim;RadialpointSafeConnectShim;c:\program files\verizon\verizon internet security suite\safeconnect\driver\platform_xp\SafeConnectShim.sys [2008-11-14 27376]
S2 mrtRate;mrtRate; [x]
S2 RadialpointSafeConnectAgent;Verizon Internet Security Suite SafeConnectAgent;c:\program files\verizon\verizon internet security suite\safeconnect\bin\SanaAgent.exe [2008-11-14 4937752]
S3 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk2008\PD91Engine.exe [2008-9-22 910600]
S3 Radialpoint Security Services;Verizon Internet Security Suite;c:\program files\verizon\verizon internet security suite\RpsSecurityAwareR.exe [2009-4-22 170736]

=============== Created Last 30 ================

2010-08-17 20:46:48 77312 ----a-w- c:\windows\MBR.exe
2010-08-17 20:45:35 375808 ----a-w- c:\windows\system32\CF25148.exe
2010-08-17 15:30:43 0 d-----w- c:\docume~1\owner\applic~1\SoftwareDetectionScripts
2010-08-17 15:25:24 0 d-----w- c:\windows\system32\wbem\Repository
2010-08-17 15:24:35 0 d-----w- c:\program files\Hawking
2010-08-17 15:20:48 0 d-----w- c:\program files\Raxco
2010-08-17 15:19:55 0 d-----w- c:\program files\Uniblue
2010-08-17 14:30:33 0 d-----w- c:\docume~1\alluse~1\applic~1\Raxco(4)
2010-08-16 16:10:47 0 d-----w- C:\RECYCLER(3)
2010-08-16 00:01:03 0 d-----w- c:\docume~1\alluse~1\applic~1\Radialpoint
2010-08-14 09:10:45 0 d-----w- C:\found.000

==================== Find3M ====================

2010-08-22 10:51:50 4370720 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2010-08-22 10:51:50 385448 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2010-08-22 10:51:49 901124 --sha-w- c:\windows\system32\drivers\fidbox.idx
2010-08-22 10:51:49 70767904 --sha-w- c:\windows\system32\drivers\fidbox.dat
2003-08-27 18:19:18 36963 ----a-r- c:\program files\common files\SM1updtr.dll
2008-06-23 04:00:58 0 --sha-w- c:\windows\sminst\HPCD.sys

============= FINISH: 22:16:20.37 ===============

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 7/31/2009 7:42:31 PM
System Uptime: 8/22/2010 6:52:17 AM (40 hours ago)

Motherboard: ASUSTek Computer INC. | | Kelut
Processor: AMD Athlon™ XP 3000+ | Socket A | 2099/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 145 GiB total, 115.421 GiB free.
D: is FIXED (FAT32) - 4 GiB total, 0.69 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is FIXED (NTFS) - 1863 GiB total, 1229.863 GiB free.

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP344: 5/26/2010 3:44:02 AM - System Checkpoint
RP345: 5/27/2010 5:47:24 AM - System Checkpoint
RP346: 5/28/2010 6:31:11 AM - System Checkpoint
RP347: 5/29/2010 11:27:09 AM - System Checkpoint
RP348: 5/31/2010 11:48:13 PM - Installed Verizon Media Manager.
RP349: 6/1/2010 11:51:28 PM - System Checkpoint
RP350: 6/2/2010 11:53:33 PM - System Checkpoint
RP351: 6/4/2010 2:09:09 AM - System Checkpoint
RP352: 6/5/2010 7:12:03 AM - System Checkpoint
RP353: 6/6/2010 11:57:40 AM - System Checkpoint
RP354: 6/7/2010 12:40:49 PM - System Checkpoint
RP355: 6/8/2010 1:42:35 PM - System Checkpoint
RP356: 6/9/2010 3:36:36 PM - System Checkpoint
RP357: 6/10/2010 8:25:01 PM - System Checkpoint
RP358: 6/11/2010 3:02:11 AM - Software Distribution Service 3.0
RP359: 6/12/2010 8:15:21 PM - System Checkpoint
RP360: 6/14/2010 7:08:40 AM - System Checkpoint
RP361: 6/15/2010 8:05:28 AM - System Checkpoint
RP362: 6/16/2010 8:13:02 AM - System Checkpoint
RP363: 6/17/2010 8:35:39 AM - System Checkpoint
RP364: 6/18/2010 12:42:37 PM - System Checkpoint
RP365: 6/20/2010 9:11:10 AM - System Checkpoint
RP366: 6/21/2010 10:43:36 AM - System Checkpoint
RP367: 6/22/2010 12:42:55 PM - System Checkpoint
RP368: 6/23/2010 3:51:36 PM - System Checkpoint
RP369: 6/24/2010 7:40:24 PM - System Checkpoint
RP370: 6/26/2010 2:50:36 AM - System Checkpoint
RP371: 6/27/2010 3:04:51 PM - System Checkpoint
RP372: 6/28/2010 3:50:12 PM - System Checkpoint
RP373: 6/29/2010 5:33:41 PM - System Checkpoint
RP374: 6/30/2010 5:43:38 PM - System Checkpoint
RP375: 7/1/2010 6:30:18 PM - System Checkpoint
RP376: 7/2/2010 8:52:45 PM - System Checkpoint
RP377: 7/3/2010 9:33:41 PM - System Checkpoint
RP378: 7/5/2010 5:34:08 AM - System Checkpoint
RP379: 7/6/2010 6:21:55 AM - System Checkpoint
RP380: 7/7/2010 6:34:07 AM - System Checkpoint
RP381: 7/8/2010 7:58:40 AM - System Checkpoint
RP382: 7/12/2010 11:46:49 AM - System Checkpoint
RP383: 7/13/2010 9:09:48 PM - System Checkpoint
RP384: 7/14/2010 9:17:25 PM - System Checkpoint
RP385: 7/15/2010 8:52:39 AM - Software Distribution Service 3.0
RP386: 7/16/2010 9:05:47 AM - System Checkpoint
RP387: 7/17/2010 9:06:26 AM - System Checkpoint
RP388: 7/18/2010 10:06:12 AM - System Checkpoint
RP389: 7/19/2010 2:23:44 PM - System Checkpoint
RP390: 7/20/2010 4:18:19 PM - System Checkpoint
RP391: 7/21/2010 8:35:32 PM - System Checkpoint
RP392: 7/22/2010 9:31:03 PM - System Checkpoint
RP393: 7/23/2010 9:54:07 PM - System Checkpoint
RP394: 7/25/2010 12:36:30 AM - System Checkpoint
RP395: 7/26/2010 2:49:40 AM - System Checkpoint
RP396: 7/27/2010 1:10:57 PM - System Checkpoint
RP397: 7/28/2010 1:18:46 PM - System Checkpoint
RP398: 7/29/2010 1:46:31 PM - System Checkpoint
RP399: 7/30/2010 2:24:33 PM - System Checkpoint
RP400: 7/31/2010 3:31:23 PM - System Checkpoint
RP401: 8/2/2010 10:02:46 AM - System Checkpoint
RP402: 8/3/2010 12:05:02 PM - System Checkpoint
RP403: 8/4/2010 1:27:29 PM - System Checkpoint
RP404: 8/4/2010 3:20:29 PM - Installed Windows Media Format Runtime
RP405: 8/4/2010 3:20:59 PM - Installed Seagate Manager Installer
RP406: 8/4/2010 3:36:33 PM - Installed muvee autoProducer 6.1 Seagate Edition
RP407: 8/4/2010 3:41:02 PM - Installed Seagate Manager Installer
RP408: 8/5/2010 3:08:45 AM - Software Distribution Service 3.0
RP409: 8/5/2010 8:33:58 AM - Removed Seagate Manager Installer
RP410: 8/6/2010 3:01:55 AM - Software Distribution Service 3.0
RP411: 8/7/2010 3:34:09 AM - System Checkpoint
RP412: 8/8/2010 5:16:15 AM - System Checkpoint
RP413: 8/9/2010 6:11:50 AM - System Checkpoint
RP414: 8/10/2010 6:33:29 AM - System Checkpoint
RP415: 8/11/2010 9:14:39 AM - System Checkpoint
RP416: 8/12/2010 5:08:18 AM - Software Distribution Service 3.0
RP417: 8/14/2010 5:51:14 AM - System Checkpoint
RP418: 8/15/2010 5:24:34 PM - Restore Operation
RP419: 8/16/2010 3:00:45 AM - Software Distribution Service 3.0
RP420: 8/17/2010 6:50:27 AM - System Checkpoint
RP421: 8/17/2010 10:00:07 AM - Restore Operation
RP422: 8/17/2010 10:46:04 AM - Restore Operation
RP423: 8/17/2010 11:08:12 AM - Restore Operation
RP424: 8/18/2010 3:16:18 AM - Software Distribution Service 3.0
RP425: 8/23/2010 12:07:41 AM - System Checkpoint
RP426: 8/23/2010 3:29:33 AM - Software Distribution Service 3.0

==== Installed Programs ======================


AAC Decoder
Adobe Flash Player 10 Plugin
Adobe Photoshop Album 2.0 Starter Edition
Adobe Reader 7.0
Agere Systems PCI Soft Modem
Ask Toolbar
AutoUpdate
Blackhawk Striker from Compaq (remove only)
Blasterball 2 from Compaq (remove only)
Bounce Symphony from Compaq (remove only)
Compaq Connections
Compaq Instant Support
Compaq Organize
Crystal Maze from Compaq (remove only)
DivX Codec
DivX Converter
DivX Plus DirectShow Filters
DivX Version Checker
Easy Internet Sign-up
Five Card Frenzy from Compaq (remove only)
H.264 Decoder
HijackThis 2.0.2
HpSdpAppCoreApp
IntelliMover Data Transfer Demo
InterVideo WinDVD Creator 2
InterVideo WinDVD Player
iTunes
Java 2 Runtime Environment, SE v1.4.2_03
JS3DPreSchool
JumpStart 3D Ages 3-5
KBD
LiveUpdate 1.90 (Symantec Corporation)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft Office Standard Edition 2003
Microsoft Plus! Digital Media Edition
Microsoft Works 7.0
MKV Splitter
Mozilla Firefox (3.6.8)
MSN
MSXML 6.0 Parser
Orbital from Compaq (remove only)
Otto from Compaq (remove only)
Overball from Compaq (remove only)
PC-Doctor for Windows
PerfectDisk 2008
Polar Bowler from Compaq (remove only)
PS2
Python 2.2 combined Win32 extensions
Python 2.2.1
Quicken 2004
QuickTime
RealOne Player
RPS Burn
RPS CRT
RPS Diagnostic Utility
RPS Firewall
RPS Ksdk
RPS ParentalControl
RPS PerfectDiskStub
RPS PopupBlocker
RPS RpsCore
RPS SafeConnect
S3 S3Display
S3 S3Gamma2
S3 S3Info2
S3 S3Overlay
Seagate Manager Installer
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905495)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB914798)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924496)
Slyder from Compaq (remove only)
SuperNZB v4.0.0
Tradewinds from Compaq (remove only)
TVHDX
Unity Web Player
Update for Windows XP (KB835409)
Update for Windows XP (KB898461)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
VC80CRTRedist - 8.0.50727.762
Verizon Internet Security Suite
Verizon Servicepoint 1.5.24
VIA Rhine-Family Fast Ethernet Adapter
VIA/S3G Display Driver
WebFldrs XP
Winamp
Winamp Detector Plug-in
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB810217
Windows XP Hotfix - KB821431
Windows XP Hotfix - KB823182
Windows XP Hotfix - KB824105
Windows XP Hotfix - KB824141
Windows XP Hotfix - KB825119
Windows XP Hotfix - KB826939
Windows XP Hotfix - KB826942
Windows XP Hotfix - KB828028
Windows XP Hotfix - KB828035
Windows XP Hotfix - KB828741
Windows XP Hotfix - KB833407
Windows XP Hotfix - KB835732
Windows XP Hotfix - KB842773
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB911567
Windows XP Hotfix - KB918439
Windows XP Hotfix - KB918899
Windows XP Hotfix - KB925486
Windows XP Hotfix (SP2) [See KB810243 for more information]
Windows XP Hotfix (SP2) [See q329256 for more information]
Windows XP Hotfix (SP2) Q327979
Windows XP Hotfix (SP2) Q329112
Windows XP Hotfix (SP2) Q331958
Windows XP Hotfix (SP2) Q811789
Windows XP Hotfix (SP2) Q814995
Windows XP Hotfix (SP2) Q815485
Windows XP Hotfix (SP2) Q817357
Word Symphony from Compaq (remove only)

==== Event Viewer Messages From Past Week ========

8/17/2010 7:05:28 AM, error: Service Control Manager [7001] - The Verizon Internet Security Suite SafeConnectAgent service depends on the RadialpointSafeConnectDriver service which failed to start because of the following error: The dependency service or group failed to start.
8/17/2010 7:05:28 AM, error: Service Control Manager [7001] - The RadialpointSafeConnectFilter service depends on the RadialpointSafeConnectShim service which failed to start because of the following error: The system cannot find the path specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7001] - The RadialpointSafeConnectDriver service depends on the RadialpointSafeConnectFilter service which failed to start because of the following error: The dependency service or group failed to start.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The wscsvc service failed to start due to the following error: The executable program that this service is configured to run in does not implement the service.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The Verizon Internet Security Suite Firewall service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The Security Services Driver (x86) service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The RadialpointSafeConnectShim service failed to start due to the following error: The system cannot find the path specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The PD91Agent service failed to start due to the following error: The system cannot find the path specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The DefragFS service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 6:43:04 AM, error: Service Control Manager [7034] - The Verizon Internet Security Suite service terminated unexpectedly. It has done this 1 time(s).
8/17/2010 6:10:51 AM, error: Service Control Manager [7022] - The PD91Agent service hung on starting.
8/17/2010 6:10:11 AM, error: Service Control Manager [7023] - The Task Scheduler service terminated with the following error: Not enough resources are available to complete this operation.
8/16/2010 2:37:13 PM, error: Service Control Manager [7023] - The HID Input Service service terminated with the following error: The specified module could not be found.

==== End Of File ===========================

Merged topics then posts. ~ OB

Attached Files

  • Attached File  log.txt   159.49KB   7 downloads

Edited by Orange Blossom, 23 August 2010 - 09:45 PM.
Moved from XP forum to Malware Removal Logs ~ Hamluis.


BC AdBot (Login to Remove)

 


#2 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 23 August 2010 - 10:03 PM

Moved to appropriate forum,Virus, Trojan, Spyware, and Malware Removal Logs
~~boopme

Here are the dds logs

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-03-17.01)

Microsoft Windows XP Home Edition
Boot Device: \Device\HarddiskVolume2
Install Date: 7/31/2009 7:42:31 PM
System Uptime: 8/22/2010 6:52:17 AM (40 hours ago)

Motherboard: ASUSTek Computer INC. | | Kelut
Processor: AMD Athlon™ XP 3000+ | Socket A | 2099/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 145 GiB total, 115.421 GiB free.
D: is FIXED (FAT32) - 4 GiB total, 0.69 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is Removable
H: is Removable
I: is Removable
J: is Removable
K: is FIXED (NTFS) - 1863 GiB total, 1229.863 GiB free.

==== Disabled Device Manager Items =============

==== System Restore Points ===================

RP344: 5/26/2010 3:44:02 AM - System Checkpoint
RP345: 5/27/2010 5:47:24 AM - System Checkpoint
RP346: 5/28/2010 6:31:11 AM - System Checkpoint
RP347: 5/29/2010 11:27:09 AM - System Checkpoint
RP348: 5/31/2010 11:48:13 PM - Installed Verizon Media Manager.
RP349: 6/1/2010 11:51:28 PM - System Checkpoint
RP350: 6/2/2010 11:53:33 PM - System Checkpoint
RP351: 6/4/2010 2:09:09 AM - System Checkpoint
RP352: 6/5/2010 7:12:03 AM - System Checkpoint
RP353: 6/6/2010 11:57:40 AM - System Checkpoint
RP354: 6/7/2010 12:40:49 PM - System Checkpoint
RP355: 6/8/2010 1:42:35 PM - System Checkpoint
RP356: 6/9/2010 3:36:36 PM - System Checkpoint
RP357: 6/10/2010 8:25:01 PM - System Checkpoint
RP358: 6/11/2010 3:02:11 AM - Software Distribution Service 3.0
RP359: 6/12/2010 8:15:21 PM - System Checkpoint
RP360: 6/14/2010 7:08:40 AM - System Checkpoint
RP361: 6/15/2010 8:05:28 AM - System Checkpoint
RP362: 6/16/2010 8:13:02 AM - System Checkpoint
RP363: 6/17/2010 8:35:39 AM - System Checkpoint
RP364: 6/18/2010 12:42:37 PM - System Checkpoint
RP365: 6/20/2010 9:11:10 AM - System Checkpoint
RP366: 6/21/2010 10:43:36 AM - System Checkpoint
RP367: 6/22/2010 12:42:55 PM - System Checkpoint
RP368: 6/23/2010 3:51:36 PM - System Checkpoint
RP369: 6/24/2010 7:40:24 PM - System Checkpoint
RP370: 6/26/2010 2:50:36 AM - System Checkpoint
RP371: 6/27/2010 3:04:51 PM - System Checkpoint
RP372: 6/28/2010 3:50:12 PM - System Checkpoint
RP373: 6/29/2010 5:33:41 PM - System Checkpoint
RP374: 6/30/2010 5:43:38 PM - System Checkpoint
RP375: 7/1/2010 6:30:18 PM - System Checkpoint
RP376: 7/2/2010 8:52:45 PM - System Checkpoint
RP377: 7/3/2010 9:33:41 PM - System Checkpoint
RP378: 7/5/2010 5:34:08 AM - System Checkpoint
RP379: 7/6/2010 6:21:55 AM - System Checkpoint
RP380: 7/7/2010 6:34:07 AM - System Checkpoint
RP381: 7/8/2010 7:58:40 AM - System Checkpoint
RP382: 7/12/2010 11:46:49 AM - System Checkpoint
RP383: 7/13/2010 9:09:48 PM - System Checkpoint
RP384: 7/14/2010 9:17:25 PM - System Checkpoint
RP385: 7/15/2010 8:52:39 AM - Software Distribution Service 3.0
RP386: 7/16/2010 9:05:47 AM - System Checkpoint
RP387: 7/17/2010 9:06:26 AM - System Checkpoint
RP388: 7/18/2010 10:06:12 AM - System Checkpoint
RP389: 7/19/2010 2:23:44 PM - System Checkpoint
RP390: 7/20/2010 4:18:19 PM - System Checkpoint
RP391: 7/21/2010 8:35:32 PM - System Checkpoint
RP392: 7/22/2010 9:31:03 PM - System Checkpoint
RP393: 7/23/2010 9:54:07 PM - System Checkpoint
RP394: 7/25/2010 12:36:30 AM - System Checkpoint
RP395: 7/26/2010 2:49:40 AM - System Checkpoint
RP396: 7/27/2010 1:10:57 PM - System Checkpoint
RP397: 7/28/2010 1:18:46 PM - System Checkpoint
RP398: 7/29/2010 1:46:31 PM - System Checkpoint
RP399: 7/30/2010 2:24:33 PM - System Checkpoint
RP400: 7/31/2010 3:31:23 PM - System Checkpoint
RP401: 8/2/2010 10:02:46 AM - System Checkpoint
RP402: 8/3/2010 12:05:02 PM - System Checkpoint
RP403: 8/4/2010 1:27:29 PM - System Checkpoint
RP404: 8/4/2010 3:20:29 PM - Installed Windows Media Format Runtime
RP405: 8/4/2010 3:20:59 PM - Installed Seagate Manager Installer
RP406: 8/4/2010 3:36:33 PM - Installed muvee autoProducer 6.1 Seagate Edition
RP407: 8/4/2010 3:41:02 PM - Installed Seagate Manager Installer
RP408: 8/5/2010 3:08:45 AM - Software Distribution Service 3.0
RP409: 8/5/2010 8:33:58 AM - Removed Seagate Manager Installer
RP410: 8/6/2010 3:01:55 AM - Software Distribution Service 3.0
RP411: 8/7/2010 3:34:09 AM - System Checkpoint
RP412: 8/8/2010 5:16:15 AM - System Checkpoint
RP413: 8/9/2010 6:11:50 AM - System Checkpoint
RP414: 8/10/2010 6:33:29 AM - System Checkpoint
RP415: 8/11/2010 9:14:39 AM - System Checkpoint
RP416: 8/12/2010 5:08:18 AM - Software Distribution Service 3.0
RP417: 8/14/2010 5:51:14 AM - System Checkpoint
RP418: 8/15/2010 5:24:34 PM - Restore Operation
RP419: 8/16/2010 3:00:45 AM - Software Distribution Service 3.0
RP420: 8/17/2010 6:50:27 AM - System Checkpoint
RP421: 8/17/2010 10:00:07 AM - Restore Operation
RP422: 8/17/2010 10:46:04 AM - Restore Operation
RP423: 8/17/2010 11:08:12 AM - Restore Operation
RP424: 8/18/2010 3:16:18 AM - Software Distribution Service 3.0
RP425: 8/23/2010 12:07:41 AM - System Checkpoint
RP426: 8/23/2010 3:29:33 AM - Software Distribution Service 3.0

==== Installed Programs ======================


AAC Decoder
Adobe Flash Player 10 Plugin
Adobe Photoshop Album 2.0 Starter Edition
Adobe Reader 7.0
Agere Systems PCI Soft Modem
Ask Toolbar
AutoUpdate
Blackhawk Striker from Compaq (remove only)
Blasterball 2 from Compaq (remove only)
Bounce Symphony from Compaq (remove only)
Compaq Connections
Compaq Instant Support
Compaq Organize
Crystal Maze from Compaq (remove only)
DivX Codec
DivX Converter
DivX Plus DirectShow Filters
DivX Version Checker
Easy Internet Sign-up
Five Card Frenzy from Compaq (remove only)
H.264 Decoder
HijackThis 2.0.2
HpSdpAppCoreApp
IntelliMover Data Transfer Demo
InterVideo WinDVD Creator 2
InterVideo WinDVD Player
iTunes
Java 2 Runtime Environment, SE v1.4.2_03
JS3DPreSchool
JumpStart 3D Ages 3-5
KBD
LiveUpdate 1.90 (Symantec Corporation)
Malwarebytes' Anti-Malware
Microsoft .NET Framework 1.1
Microsoft Money 2004
Microsoft Money 2004 System Pack
Microsoft Office Standard Edition 2003
Microsoft Plus! Digital Media Edition
Microsoft Works 7.0
MKV Splitter
Mozilla Firefox (3.6.8)
MSN
MSXML 6.0 Parser
Orbital from Compaq (remove only)
Otto from Compaq (remove only)
Overball from Compaq (remove only)
PC-Doctor for Windows
PerfectDisk 2008
Polar Bowler from Compaq (remove only)
PS2
Python 2.2 combined Win32 extensions
Python 2.2.1
Quicken 2004
QuickTime
RealOne Player
RPS Burn
RPS CRT
RPS Diagnostic Utility
RPS Firewall
RPS Ksdk
RPS ParentalControl
RPS PerfectDiskStub
RPS PopupBlocker
RPS RpsCore
RPS SafeConnect
S3 S3Display
S3 S3Gamma2
S3 S3Info2
S3 S3Overlay
Seagate Manager Installer
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 9 (KB917734)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905495)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB914798)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924496)
Slyder from Compaq (remove only)
SuperNZB v4.0.0
Tradewinds from Compaq (remove only)
TVHDX
Unity Web Player
Update for Windows XP (KB835409)
Update for Windows XP (KB898461)
Update for Windows XP (KB908531)
Update for Windows XP (KB910437)
Update for Windows XP (KB911280)
VC80CRTRedist - 8.0.50727.762
Verizon Internet Security Suite
Verizon Servicepoint 1.5.24
VIA Rhine-Family Fast Ethernet Adapter
VIA/S3G Display Driver
WebFldrs XP
Winamp
Winamp Detector Plug-in
Windows Genuine Advantage Validation Tool (KB892130)
Windows Installer 3.1 (KB893803)
Windows Media Format Runtime
Windows Media Player 10
Windows XP Hotfix - KB810217
Windows XP Hotfix - KB821431
Windows XP Hotfix - KB823182
Windows XP Hotfix - KB824105
Windows XP Hotfix - KB824141
Windows XP Hotfix - KB825119
Windows XP Hotfix - KB826939
Windows XP Hotfix - KB826942
Windows XP Hotfix - KB828028
Windows XP Hotfix - KB828035
Windows XP Hotfix - KB828741
Windows XP Hotfix - KB833407
Windows XP Hotfix - KB835732
Windows XP Hotfix - KB842773
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB911567
Windows XP Hotfix - KB918439
Windows XP Hotfix - KB918899
Windows XP Hotfix - KB925486
Windows XP Hotfix (SP2) [See KB810243 for more information]
Windows XP Hotfix (SP2) [See q329256 for more information]
Windows XP Hotfix (SP2) Q327979
Windows XP Hotfix (SP2) Q329112
Windows XP Hotfix (SP2) Q331958
Windows XP Hotfix (SP2) Q811789
Windows XP Hotfix (SP2) Q814995
Windows XP Hotfix (SP2) Q815485
Windows XP Hotfix (SP2) Q817357
Word Symphony from Compaq (remove only)

==== Event Viewer Messages From Past Week ========

8/17/2010 7:05:28 AM, error: Service Control Manager [7001] - The Verizon Internet Security Suite SafeConnectAgent service depends on the RadialpointSafeConnectDriver service which failed to start because of the following error: The dependency service or group failed to start.
8/17/2010 7:05:28 AM, error: Service Control Manager [7001] - The RadialpointSafeConnectFilter service depends on the RadialpointSafeConnectShim service which failed to start because of the following error: The system cannot find the path specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7001] - The RadialpointSafeConnectDriver service depends on the RadialpointSafeConnectFilter service which failed to start because of the following error: The dependency service or group failed to start.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The wscsvc service failed to start due to the following error: The executable program that this service is configured to run in does not implement the service.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The Verizon Internet Security Suite Firewall service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The Security Services Driver (x86) service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The RadialpointSafeConnectShim service failed to start due to the following error: The system cannot find the path specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The PD91Agent service failed to start due to the following error: The system cannot find the path specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The mrtRate service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 7:05:28 AM, error: Service Control Manager [7000] - The DefragFS service failed to start due to the following error: The system cannot find the file specified.
8/17/2010 6:43:04 AM, error: Service Control Manager [7034] - The Verizon Internet Security Suite service terminated unexpectedly. It has done this 1 time(s).
8/17/2010 6:10:51 AM, error: Service Control Manager [7022] - The PD91Agent service hung on starting.
8/17/2010 6:10:11 AM, error: Service Control Manager [7023] - The Task Scheduler service terminated with the following error: Not enough resources are available to complete this operation.
8/16/2010 2:37:13 PM, error: Service Control Manager [7023] - The HID Input Service service terminated with the following error: The specified module could not be found.

==== End Of File ===========================

DDS (Ver_10-03-17.01) - NTFSx86
Run by Owner at 22:14:21.93 on Mon 08/23/2010
Internet Explorer: 6.0.2800.1106
Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.447.239 [GMT -4:00]


============== Running Processes ===============

C:\WINDOWS\system32\svchost -k rpcss
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Program Files\Verizon\Verizon Internet Security Suite\Fws.exe
C:\WINDOWS\Explorer.EXE
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\windows\system\hpsysdrv.exe
C:\HP\KBD\KBD.EXE
C:\Program Files\iTunes\iTunesHelper.exe
C:\WINDOWS\System32\VTTimer.exe
C:\WINDOWS\AGRSMMSG.exe
C:\Program Files\Verizon\VSP\VerizonServicepoint.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\ALCXMNTR.EXE
C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe
C:\Program Files\QuickTime\qttask.exe
C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
C:\Program Files\Compaq Connections\1940576\Program\BackWeb-1940576.exe
C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\InterMute\PopSubtract\PopSub.exe
C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
C:\WINDOWS\System32\gearsec.exe
C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Bin\SanaMonitor.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Owner\My Documents\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=presario&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
uInternet Settings,ProxyOverride = localhost
BHO: AcroIEHlprObj Class: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\adobe\acrobat 7.0\activex\AcroIEHelper.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\program files\askbardis\bar\bin\askBar.dll
BHO: PopKill Class: {3c060ea2-e6a9-4e49-a530-d4657b8c449a} - c:\program files\verizon\verizon internet security suite\pkR.dll
BHO: {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No File
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\program files\askbardis\bar\bin\askBar.dll
EB: Media Band: {32683183-48a0-441b-a342-7c2a440a9478} - %SystemRoot%\System32\browseui.dll
uRun: [Uniblue RegistryBooster 2009] c:\program files\uniblue\registrybooster\RegistryBooster.exe /S
mRun: [SunJavaUpdateSched] c:\program files\java\j2re1.4.2_03\bin\jusched.exe
mRun: [hpsysdrv] c:\windows\system\hpsysdrv.exe
mRun: [KBD] c:\hp\kbd\KBD.EXE
mRun: [TkBellExe] "c:\program files\common files\real\update_ob\realsched.exe" -osboot
mRun: [iTunesHelper] c:\program files\itunes\iTunesHelper.exe
mRun: [Recguard] c:\windows\sminst\RECGUARD.EXE
mRun: [VTTimer] VTTimer.exe
mRun: [AGRSMMSG] AGRSMMSG.exe
mRun: [PS2] c:\windows\system32\ps2.exe
mRun: [VerizonServicepoint.exe] "c:\program files\verizon\vsp\VerizonServicepoint.exe" /AUTORUN
mRun: [WinampAgent] "c:\program files\winamp\winampa.exe"
mRun: [AlcxMonitor] ALCXMNTR.EXE
mRun: [MaxMenuMgr] "c:\program files\seagate\seagatemanager\freeagent status\StxMenuMgr.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
StartupFolder: c:\docume~1\owner\startm~1\programs\startup\imstart.lnk - c:\program files\intermute\IMStart.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\adober~1.lnk - c:\program files\adobe\acrobat 7.0\reader\reader_sl.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\compaq~1.lnk - c:\program files\compaq connections\1940576\program\BackWeb-1940576.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\google~1.lnk - c:\program files\google\google updater\GoogleUpdater.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\hpoddt~1.lnk - c:\program files\hewlett-packard\digital imaging\bin\hpotdd01.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\popsub~1.lnk - c:\program files\intermute\popsubtract\PopSub.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\quicke~1.lnk - c:\program files\quicken\bagent.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\spysub~1.lnk - c:\program files\intermute\spysubtract\spysub.exe
IE: Add To Compaq Organize... - c:\progra~1\hewlet~1\compaq~1\bin\core.hp.main\SendTo.html
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office11\EXCEL.EXE/3000
IE: {c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\MSMSGS.EXE
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\mi1933~1\office11\REFIEBAR.DLL
DPF: {31435657-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/e/2/f/e2fcec4b-6c8b-48b7-adab-ab9c403a978f/wvc1dmo.cab
DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - hxxp://photo2.walgreens.com/WalgreensActivia.cab
DPF: {41564D57-9980-0010-8000-00AA00389B71} - hxxp://download.microsoft.com/download/0/A/9/0A9F8B32-9F8C-4D74-A130-E4CAB36EB01F/wmvadvd.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1249100481285
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1249100466237
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} - hxxps://remote.lifespan.org/dana-cached/setup/JuniperSetupSP1.cab
Notify: igfxcui - igfxsrvc.dll

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\owner\applic~1\mozilla\firefox\profiles\9rfp74jn.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=
FF - plugin: c:\program files\java\j2re1.4.2_03\bin\NPJPI142_03.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\real\realone player\netscape6\nppl3260.dll
FF - plugin: c:\program files\real\realone player\netscape6\nprjplug.dll
FF - plugin: c:\program files\real\realone player\netscape6\nprpjplug.dll
FF - plugin: c:\program files\unity\webplayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\verizon\vsp\nprpspa.dll

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\mozilla firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\mozilla firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\mozilla firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.ssl3.rsa_seed_sha", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);

============= SERVICES / DRIVERS ===============

R1 KLIF;KLIF;c:\windows\system32\drivers\klif.sys [2009-8-1 179984]
R2 FreeAgentGoNext Service;Seagate Service;c:\program files\seagate\seagatemanager\sync\FreeAgentService.exe [2009-9-25 161064]
R2 PD91Agent;PD91Agent;c:\program files\raxco\perfectdisk2008\PD91Agent.exe [2008-9-22 693512]
R3 RadialpointSafeConnectDriver;RadialpointSafeConnectDriver;c:\program files\verizon\verizon internet security suite\safeconnect\driver\platform_xp\SafeConnectDriver.sys [2008-11-14 161304]
R3 RadialpointSafeConnectFilter;RadialpointSafeConnectFilter;c:\program files\verizon\verizon internet security suite\safeconnect\driver\platform_xp\SafeConnectFilter.sys [2008-11-14 29720]
R3 RadialpointSafeConnectShim;RadialpointSafeConnectShim;c:\program files\verizon\verizon internet security suite\safeconnect\driver\platform_xp\SafeConnectShim.sys [2008-11-14 27376]
S2 mrtRate;mrtRate; [x]
S2 RadialpointSafeConnectAgent;Verizon Internet Security Suite SafeConnectAgent;c:\program files\verizon\verizon internet security suite\safeconnect\bin\SanaAgent.exe [2008-11-14 4937752]
S3 PD91Engine;PD91Engine;c:\program files\raxco\perfectdisk2008\PD91Engine.exe [2008-9-22 910600]
S3 Radialpoint Security Services;Verizon Internet Security Suite;c:\program files\verizon\verizon internet security suite\RpsSecurityAwareR.exe [2009-4-22 170736]

=============== Created Last 30 ================

2010-08-17 20:46:48 77312 ----a-w- c:\windows\MBR.exe
2010-08-17 20:45:35 375808 ----a-w- c:\windows\system32\CF25148.exe
2010-08-17 15:30:43 0 d-----w- c:\docume~1\owner\applic~1\SoftwareDetectionScripts
2010-08-17 15:25:24 0 d-----w- c:\windows\system32\wbem\Repository
2010-08-17 15:24:35 0 d-----w- c:\program files\Hawking
2010-08-17 15:20:48 0 d-----w- c:\program files\Raxco
2010-08-17 15:19:55 0 d-----w- c:\program files\Uniblue
2010-08-17 14:30:33 0 d-----w- c:\docume~1\alluse~1\applic~1\Raxco(4)
2010-08-16 16:10:47 0 d-----w- C:\RECYCLER(3)
2010-08-16 00:01:03 0 d-----w- c:\docume~1\alluse~1\applic~1\Radialpoint
2010-08-14 09:10:45 0 d-----w- C:\found.000

==================== Find3M ====================

2010-08-22 10:51:50 4370720 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2010-08-22 10:51:50 385448 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2010-08-22 10:51:49 901124 --sha-w- c:\windows\system32\drivers\fidbox.idx
2010-08-22 10:51:49 70767904 --sha-w- c:\windows\system32\drivers\fidbox.dat
2003-08-27 18:19:18 36963 ----a-r- c:\program files\common files\SM1updtr.dll
2008-06-23 04:00:58 0 --sha-w- c:\windows\sminst\HPCD.sys

============= FINISH: 22:16:20.37 ===============

EDIT: Another topic merged ~BP

Edited by Budapest, 24 August 2010 - 04:33 PM.


#3 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 25 August 2010 - 05:05 AM

Hello ,
And welcome.gif to the Bleeping Computer Malware Removal Forum
. My name is Elise and I'll be glad to help you with your computer problems.


I will be working on your malware issues, this may or may not solve other issues you may have with your machine.

Please note that whatever repairs we make, are for fixing your computer problems only and by no means should be used on another computer.
  • The cleaning process is not instant. Logs can take some time to research, so please be patient with me. I know that you need your computer working as quickly as possible, and I will work hard to help see that happen.
  • Please reply using the Add/Reply button in the lower right hand corner of your screen. Do not start a new topic.
  • The logs that you post should be pasted directly into the reply. Only attach them if requested or if they do not fit into the post.
  • Unfortunately, if I do not hear back from you within 5 days, I will be forced to close your topic. If you still need help after I have closed your topic, send me or a moderator a personal message with the address of the thread or feel free to create a new one.
You may want to keep the link to this topic in your favorites. Alternatively, you can click the button at the top bar of this topic and Track this Topic, where you can choose email notifications. The topics you are tracking are shown here.
-----------------------------------------------------------

If you have since resolved the original problem you were having, we would appreciate you letting us know. If not please perform the following steps below so we can have a look at the current condition of your machine.

If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.

If you have already posted a log, please do so again, as your situation may have changed.
Use the 'Add Reply' and add the new log to this thread.

We need to see some information about what is happening in your machine. Please perform the following scan:
  • Please download OTL from one of the following mirrors:
  • Save it to your desktop.
  • Double click on the icon on your desktop.
  • Click the "Scan All Users" checkbox.
  • Push the button.
  • Two reports will open, copy and paste them in a reply here:
    • OTListIt.txt <-- Will be opened
    • Extra.txt <-- Will be minimized

Please download Rootkit Unhooker and save it to your Desktop
  • Double-click on RKUnhookerLE to run it
  • Click the Report tab, then click Scan
  • Check Drivers, Stealth and uncheck the rest
  • Click OK
  • Wait until it's finished and then go to File > Save Report
  • Save the report to your Desktop
Copy the entire contents of the report and paste it in a reply here.

Note - you may get this warning it is ok, just ignore: "Rootkit Unhooker has detected a parasite inside itself!
It is recommended to remove parasite, okay?"


-------------------------------------------------------------
In the meantime please, do NOT install any new programs or update anything unless told to do so while we are fixing your problem

If you still need help, please include the following in your next reply
  • A detailed description of your problems
  • A new OTL log (don't forget extra.txt)
  • RKU log

Thanks and again sorry for the delay.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#4 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 26 August 2010 - 12:39 AM

Here are the logs you requested, thanks for your help.

OTL Extras logfile created on: 8/26/2010 1:22:32 AM - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Owner\My Documents\Downloads
Windows XP Home Edition Service Pack 1 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2800.1106)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

447.00 Mb Total Physical Memory | 228.00 Mb Available Physical Memory | 51.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 144.96 Gb Total Space | 115.42 Gb Free Space | 79.62% Space Free | Partition Type: NTFS
Drive D: | 4.07 Gb Total Space | 0.69 Gb Free Space | 16.94% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 1863.01 Gb Total Space | 1229.86 Gb Free Space | 66.01% Space Free | Partition Type: NTFS

Computer Name: YOUR-C8BH3JAGLT
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_USERS\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{11B569C2-4BF6-4ED0-9D17-A4273943CB24}" = Adobe Photoshop Album 2.0 Starter Edition
"{13F3917B56CD4C25848BDC69916971BB}" = DivX Converter
"{14589F05-C658-4594-9429-D437BA688686}" = IntelliMover Data Transfer Demo
"{18D10072035C4515918F7E37EAFAACFC}" = AutoUpdate
"{1D643CD7-4DD6-11D7-A4E0-000874180BB3}" = Microsoft Money 2004
"{1F7CCFA3-D926-4882-B2A5-A0217ED25597}" = PC-Doctor for Windows
"{258749E2-3A46-42B1-9A01-BF977AA06FAC}" = RPS CRT
"{2B6EC03E-6FA0-4D7C-9CCE-1B03819AB613}" = PerfectDisk 2008
"{2FCE4FC5-6930-40E7-A4F1-F862207424EF}" = InterVideo WinDVD Creator 2
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C7B1086-F873-4826-91A5-195CB5364C5B}" = RPS PerfectDiskStub
"{3FC7CBBC4C1E11DCA1A752EA55D89593}" = DivX Version Checker
"{44850125-B5A7-420F-BF19-FFF249F95896}" = RPS Firewall
"{478A4971-68B3-4BD9-A379-4EDD111A6BA7}" = JS3DPreSchool
"{4CB90CB9-DD58-4CCC-A053-08FA70A42941}" = Verizon Internet Security Suite
"{54DE0B75-6CD9-44C4-B10A-1F25DA9899D8}" = Quicken 2004
"{5DE3D989-A820-4247-8963-9287C28B3613}" = RPS Ksdk
"{61D85BCA-6150-4A90-938B-D426BF166777}" = RPS ParentalControl
"{7148F0A8-6813-11D6-A77B-00B0D0142030}" = Java 2 Runtime Environment, SE v1.4.2_03
"{71883667-71F2-48A1-AB72-28D518D8AC4A}" = Seagate Manager Installer
"{764D06D8-D8DE-411E-A1C8-D9E9380F8A84}" = Microsoft Works 7.0
"{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762
"{7B63B2922B174135AFC0E1377DD81EC2}" = DivX Codec
"{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Easy Internet Sign-up
"{8A708DD8-A5E6-11D4-A706-000629E95E20}" =
"{8C64E145-54BA-11D6-91B1-00500462BE80}" = Microsoft Money 2004 System Pack
"{91120409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Standard Edition 2003
"{9705A7E1-3DD1-4BAC-8CA9-FE7B1473BEC9}" = iTunes
"{98E8A2EF-4EAE-43B8-A172-74842B764777}" = InterVideo WinDVD Player
"{A43BF6A5-D5F0-4AAA-BF41-65995063EC44}" = MSXML 6.0 Parser
"{A486CFF9-A3E6-4312-A1B9-ABD28F9FC255}" = RPS PopupBlocker
"{A96E97134CA649888820BCDE5E300BBD}" = H.264 Decoder
"{AAC389499AEF40428987B3D30CFC76C9}" = MKV Splitter
"{AC76BA86-7AD7-1033-7B44-A70000000000}" = Adobe Reader 7.0
"{AEF9DC35ADDF4825B049ACBFD1C6EB37}" = AAC Decoder
"{B13A7C41581B411290FBC0395694E2A9}" = DivX Converter
"{C03B8026-694C-4326-88A8-1387097B50E8}" = RPS RpsCore
"{C6A7AF96-4EB1-4AAE-8318-1AB393C64F88}" = Microsoft Plus! Digital Media Edition
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{D0122362-6333-4DE4-93F6-A5A2F3CC101A}" = Compaq Organize
"{D55DA406-3031-42AB-B7C4-2183C00803F3}" = RPS SafeConnect
"{DB518BA6-CB74-4EB6-9ABD-880B6D6E1F38}" = HpSdpAppCoreApp
"{F573B950-CC14-4E55-8F29-F054485E11AA}" = RPS Diagnostic Utility
"{FFE078E6-0288-4405-B26D-05D38F20295E}" = RPS Burn
"0254DF9A-618A-4A2C-A5ED-FA7115988B02" = Word Symphony from Compaq (remove only)
"05E21449-3BA3-42BF-BBDA-95205F4EA40A" = Polar Bowler from Compaq (remove only)
"26DC0ED6-93A7-43C1-8DC5-EC16079580F9" = Orbital from Compaq (remove only)
"29FF6D07-4A15-41F1-9D5E-E0F3A58012C6" = Bounce Symphony from Compaq (remove only)
"2FDCC229-354D-4279-ABEF-CE17E355BFFA" = Five Card Frenzy from Compaq (remove only)
"66195170-D19D-46C5-8FB7-8A4630071ADC" = Tradewinds from Compaq (remove only)
"75528D5F-DD82-402E-BA7C-045B7DC6A712" = Blasterball 2 from Compaq (remove only)
"8A225900-C06D-41DD-B66C-43840D472758" = Otto from Compaq (remove only)
"8BA6F58B-7A91-461F-95F8-E34F8BD8AA4E" = Slyder from Compaq (remove only)
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Agere Systems Soft Modem" = Agere Systems PCI Soft Modem
"Ask Toolbar_is1" = Ask Toolbar
"BackWeb-1940576 Uninstaller" = Compaq Connections
"C43D84CD-EBFC-48D3-A330-7868C8AD415A" = Crystal Maze from Compaq (remove only)
"Compaq Instant Support" = Compaq Instant Support
"DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters
"F07504C6-20C5-4BFE-83A0-523FB2455E72" = Blackhawk Striker from Compaq (remove only)
"FA7F5211-C629-4711-BD82-7DFFB08CB518" = Overball from Compaq (remove only)
"HijackThis" = HijackThis 2.0.2
"InstallShield_{54DE0B75-6CD9-44C4-B10A-1F25DA9899D8}" = Quicken 2004
"InstallShield_{71883667-71F2-48A1-AB72-28D518D8AC4A}" = Seagate Manager Installer
"InstallShield_{8105684D-8CA6-440D-8F58-7E5FD67A499D}" = Easy Internet Sign-up
"InstallShield_{9705A7E1-3DD1-4BAC-8CA9-FE7B1473BEC9}" = iTunes
"JumpStart 3D Ages 3-5" = JumpStart 3D Ages 3-5
"LiveUpdate" = LiveUpdate 1.90 (Symantec Corporation)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Mozilla Firefox (3.6.8)" = Mozilla Firefox (3.6.8)
"MSNINST" = MSN
"NVIDIA" =
"PS2" = PS2
"Python 2.2 combined Win32 extensions" = Python 2.2 combined Win32 extensions
"Python 2.2.1" = Python 2.2.1
"Q327979" = Windows XP Hotfix (SP2) Q327979
"Q329112" = Windows XP Hotfix (SP2) Q329112
"q329256" = Windows XP Hotfix (SP2) [See q329256 for more information]
"Q331958" = Windows XP Hotfix (SP2) Q331958
"Q811789" = Windows XP Hotfix (SP2) Q811789
"Q814995" = Windows XP Hotfix (SP2) Q814995
"Q815485" = Windows XP Hotfix (SP2) Q815485
"Q817357" = Windows XP Hotfix (SP2) Q817357
"QuickTime" = QuickTime
"RadialpointClientGateway_is1" = Verizon Servicepoint 1.5.24
"RealPlayer 6.0" = RealOne Player
"S3" = VIA/S3G Display Driver
"SuperNZB_is1" = SuperNZB v4.0.0
"TVHDX" = TVHDX
"UnityWebPlayer" = Unity Web Player
"VN_VUIns_Rhine_VIA" = VIA Rhine-Family Fast Ethernet Adapter
"VTDisplay" = S3 S3Display
"VTGamma2" = S3 S3Gamma2
"VTInfo2" = S3 S3Info2
"VTOverlay" = S3 S3Overlay
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Winamp Detect" = Winamp Detector Plug-in

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 4/27/2010 9:57:45 AM | Computer Name = YOUR-C8BH3JAGLT | Source = Application Hang | ID = 1002
Description = Hanging application WCreator.exe, version 2.0.14.269, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 4/29/2010 10:30:11 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x2ee7

Error - 4/29/2010 10:30:18 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x8ca

Error - 5/1/2010 10:36:53 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x2ee7

Error - 5/1/2010 10:37:06 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x8ca

Error - 5/2/2010 1:06:45 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x2ee7

Error - 5/3/2010 12:57:25 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x2ee7

Error - 5/3/2010 12:57:35 AM | Computer Name = YOUR-C8BH3JAGLT | Source = crypt32 | ID = 131080
Description = Failed auto update retrieval of third-party root list sequence number
from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt>
with error: 0x8ca

Error - 5/3/2010 1:59:02 PM | Computer Name = YOUR-C8BH3JAGLT | Source = Application Error | ID = 1000
Description = Faulting application explorer.exe, version 6.0.2800.1106, faulting
module ntdll.dll, version 5.1.2600.1217, fault address 0x0000852f.

Error - 5/3/2010 2:00:18 PM | Computer Name = YOUR-C8BH3JAGLT | Source = Application Hang | ID = 1002
Description = Hanging application firefox.exe, version 1.9.0.3725, hang module hungapp,
version 0.0.0.0, hang address 0x00000000.

[ System Events ]
Error - 8/24/2010 11:30:35 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:34:17 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:36:35 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:41:34 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:43:39 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:44:42 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:48:27 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:49:37 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:51:41 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.

Error - 8/24/2010 11:57:44 PM | Computer Name = YOUR-C8BH3JAGLT | Source = DCOM | ID = 10010
Description = The server {A0717E52-8AC8-4DD9-8682-0B76775125E6} did not register
with DCOM within the required timeout.


< End of report >
OTL logfile created on: 8/26/2010 1:22:31 AM - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Owner\My Documents\Downloads
Windows XP Home Edition Service Pack 1 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2800.1106)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

447.00 Mb Total Physical Memory | 228.00 Mb Available Physical Memory | 51.00% Memory free
1.00 Gb Paging File | 1.00 Gb Available in Paging File | 78.00% Paging File free
Paging file location(s): C:\pagefile.sys 672 1344 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 144.96 Gb Total Space | 115.42 Gb Free Space | 79.62% Space Free | Partition Type: NTFS
Drive D: | 4.07 Gb Total Space | 0.69 Gb Free Space | 16.94% Space Free | Partition Type: FAT32
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Drive K: | 1863.01 Gb Total Space | 1229.86 Gb Free Space | 66.01% Space Free | Partition Type: NTFS

Computer Name: YOUR-C8BH3JAGLT
Current User Name: Owner
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010/08/26 01:21:30 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
PRC - [2010/07/22 22:06:53 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/01/13 18:44:52 | 000,037,888 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Winamp\winampa.exe
PRC - [2009/04/22 10:37:48 | 000,371,440 | ---- | M] (Verizon) -- C:\Program Files\Verizon\Verizon Internet Security Suite\Fws.exe
PRC - [2009/03/12 12:31:54 | 002,303,216 | ---- | M] (Verizon) -- C:\Program Files\Verizon\VSP\VerizonServicepoint.exe
PRC - [2008/11/14 18:28:12 | 000,592,408 | ---- | M] (Sana Security) -- C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\bin\SanaMonitor.exe
PRC - [2008/10/28 16:42:12 | 000,181,544 | ---- | M] (Seagate LLC) -- C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
PRC - [2008/09/22 16:58:44 | 000,693,512 | ---- | M] (Raxco Software, Inc.) -- C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe
PRC - [2008/08/26 12:48:09 | 002,019,624 | ---- | M] (Uniblue Software) -- C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe
PRC - [2008/07/30 15:23:26 | 000,161,064 | ---- | M] (Seagate Technology LLC) -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
PRC - [2004/04/02 20:03:59 | 000,016,384 | ---- | M] () -- C:\Program Files\Compaq Connections\1940576\Program\BackWeb-1940576.exe
PRC - [2004/04/02 04:49:02 | 000,032,881 | ---- | M] () -- C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
PRC - [2004/02/12 21:06:00 | 001,004,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/02/03 11:05:18 | 000,233,472 | ---- | M] (interMute, Inc.) -- C:\Program Files\InterMute\PopSubtract\PopSub.exe
PRC - [2004/01/16 07:33:44 | 000,049,152 | ---- | M] (S3 Graphics, Inc.) -- C:\WINDOWS\system32\VTTimer.exe
PRC - [2003/11/03 23:47:08 | 000,053,248 | ---- | M] (GEAR Software) -- C:\WINDOWS\system32\gearsec.exe
PRC - [2003/05/21 19:37:08 | 000,229,437 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe


========== Modules (SafeList) ==========

MOD - [2010/08/26 01:21:30 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Owner\My Documents\Downloads\OTL.exe
MOD - [2006/08/25 11:53:52 | 000,925,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.1891_x-ww_7d3bbc01\comctl32.dll
MOD - [2004/04/02 20:03:59 | 000,024,576 | ---- | M] (BackWeb) -- C:\Documents and Settings\Owner\Local Settings\Temp\IadHide4.dll
MOD - [2004/02/11 23:29:00 | 000,106,547 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\xmlprov.dll -- (xmlprov)
SRV - File not found [Auto | Stopped] -- C:\WINDOWS\System32\wscsvc.dll -- (wscsvc)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)
SRV - [2009/04/22 10:38:40 | 000,170,736 | ---- | M] (Verizon) [On_Demand | Stopped] -- C:\Program Files\Verizon\Verizon Internet Security Suite\RpsSecurityAwareR.exe -- (Radialpoint Security Services)
SRV - [2009/04/22 10:37:48 | 000,371,440 | ---- | M] (Verizon) [Auto | Running] -- C:\Program Files\Verizon\Verizon Internet Security Suite\Fws.exe -- (RP_FWS)
SRV - [2008/11/14 18:28:10 | 004,937,752 | R--- | M] (Sana Security) [Auto | Stopped] -- C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Bin\SanaAgent.exe -- (RadialpointSafeConnectAgent)
SRV - [2008/09/22 16:58:48 | 000,910,600 | ---- | M] (Raxco Software, Inc.) [On_Demand | Stopped] -- C:\Program Files\Raxco\PerfectDisk2008\PD91Engine.exe -- (PD91Engine)
SRV - [2008/09/22 16:58:44 | 000,693,512 | ---- | M] (Raxco Software, Inc.) [Auto | Running] -- C:\Program Files\Raxco\PerfectDisk2008\PD91Agent.exe -- (PD91Agent)
SRV - [2008/07/30 15:23:26 | 000,161,064 | ---- | M] (Seagate Technology LLC) [Auto | Running] -- C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2003/11/03 23:47:08 | 000,053,248 | ---- | M] (GEAR Software) [Auto | Running] -- C:\WINDOWS\system32\gearsec.exe -- (GEARSecurity)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\Owner\LOCALS~1\Temp\catchme.sys -- (catchme)
DRV - [2009/04/03 14:51:32 | 000,179,984 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\klif.sys -- (KLIF)
DRV - [2008/11/26 15:19:56 | 000,053,192 | ---- | M] (Radialpoint Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\rp_skt32.sys -- (RPSKT) Security Services Driver (x86)
DRV - [2008/11/14 18:28:36 | 000,161,304 | R--- | M] (Sana Security, Inc. ) [Kernel | On_Demand | Running] -- C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectDriver.sys -- (RadialpointSafeConnectDriver)
DRV - [2008/11/14 18:28:36 | 000,029,720 | R--- | M] (Sana Security, Inc. ) [Kernel | On_Demand | Running] -- C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectFilter.sys -- (RadialpointSafeConnectFilter)
DRV - [2008/11/14 18:28:36 | 000,027,376 | ---- | M] (Sana Security, Inc. ) [Kernel | On_Demand | Running] -- C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectShim.sys -- (RadialpointSafeConnectShim)
DRV - [2008/08/28 13:16:40 | 000,071,184 | ---- | M] (Raxco Software, Inc.) [File_System | Auto | Running] -- C:\WINDOWS\System32\drivers\DefragFS.sys -- (DefragFS)
DRV - [2004/10/01 10:24:02 | 002,279,424 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004/06/29 09:07:18 | 001,268,204 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AGRSM.sys -- (AgereSoftModem)
DRV - [2004/01/03 00:05:48 | 000,011,520 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\srvkp.sys -- (SiSkp)
DRV - [2004/01/02 23:20:40 | 000,432,000 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2003/12/12 10:54:14 | 000,391,424 | ---- | M] (Sensaura Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2003/12/02 22:23:20 | 000,142,336 | ---- | M] (Promise Technology, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\fasttx2k.sys -- (fasttx2k)
DRV - [2003/09/19 01:47:00 | 000,010,368 | ---- | M] (Padus, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\pfc.sys -- (Pfc)
DRV - [2003/07/18 20:58:20 | 000,036,992 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\SISAGPX.sys -- (SISAGP)
DRV - [2003/07/02 15:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\viaagp1.sys -- (viaagp1)
DRV - [2002/10/04 21:04:10 | 000,046,976 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\R8139n51.sys -- (rtl8139)
DRV - [2002/07/30 01:43:50 | 000,023,808 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PS2.sys -- (Ps2)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://ie.redirect.hp.com/svs/rdr?TYPE=3&a...&pf=desktop
IE - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com/
IE - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = localhost

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Winamp Search"
FF - prefs.js..browser.search.defaulturl: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query="
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.yahoo.com/"
FF - prefs.js..extensions.enabledItems: {B13721C7-F507-4982-B2E5-502A71474FED}:2.2.0.102
FF - prefs.js..extensions.enabledItems: {635abd67-4fe9-1b23-4f01-e679fa7484c1}:1.6.6.20090220
FF - prefs.js..keyword.URL: "http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query="
FF - prefs.js..network.proxy.no_proxies_on: "localhost"


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/08/18 08:45:40 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.8\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/08/18 08:45:39 | 000,000,000 | ---D | M]

[2009/08/01 10:40:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Mozilla\Extensions
[2009/08/01 02:34:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\extensions
[2009/08/01 02:34:18 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D}
[2010/08/24 22:38:19 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\9rfp74jn.default\extensions
[2010/03/01 17:01:59 | 000,000,000 | ---D | M] (Yahoo! Toolbar) -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\9rfp74jn.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}
[2010/03/01 13:49:26 | 000,001,196 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\9rfp74jn.default\searchplugins\winamp-search.xml
[2010/08/24 23:57:39 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/08/17 11:24:46 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\browserhighlighter@ebay.com
[2010/01/13 18:46:00 | 000,063,488 | ---- | M] (Nullsoft, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npwachk.dll

O1 HOSTS File: ([2010/08/17 16:55:20 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (PopKill Class) - {3C060EA2-E6A9-4E49-A530-D4657B8C449A} - C:\Program Files\Verizon\Verizon Internet Security Suite\pkR.dll (Verizon)
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKLM\..\Toolbar: (&Radio) - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\system32\msdxm.ocx ()
O3 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\..\Toolbar\ShellBrowser: (no name) - {42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} - No CLSID value found.
O3 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com)
O4 - HKLM..\Run: [MaxMenuMgr] C:\Program Files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe (Seagate LLC)
O4 - HKLM..\Run: [PS2] C:\WINDOWS\system32\ps2.EXE (Hewlett-Packard Company)
O4 - HKLM..\Run: [Recguard] C:\WINDOWS\SMINST\Recguard.exe ()
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe ()
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKLM..\Run: [VerizonServicepoint.exe] C:\Program Files\Verizon\VSP\VerizonServicepoint.exe (Verizon)
O4 - HKLM..\Run: [VTTimer] C:\WINDOWS\System32\VTTimer.exe (S3 Graphics, Inc.)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe (Nullsoft, Inc.)
O4 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003..\Run: [Uniblue RegistryBooster 2009] C:\Program Files\Uniblue\RegistryBooster\RegistryBooster.exe (Uniblue Software)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe (Adobe Systems Incorporated)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Compaq Connections.lnk = C:\Program Files\Compaq Connections\1940576\Program\BackWeb-1940576.exe ()
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Google Updater.lnk = C:\Program Files\Google\Google Updater\GoogleUpdater.exe (Google)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\hpoddt01.exe.lnk = C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\PopSubtract.lnk = C:\Program Files\InterMute\PopSubtract\PopSub.exe (interMute, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe (Intuit Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\SpySubtract.lnk = C:\Program Files\InterMute\SpySubtract\spysub.exe (InterMute, Inc.)
O4 - Startup: C:\Documents and Settings\Owner\Start Menu\Programs\Startup\IMStart.lnk = C:\Program Files\InterMute\IMStart.exe ()
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-3748576474-3038468039-2016132539-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add To Compaq Organize... - C:\Program Files\Hewlett-Packard\Compaq Organize\bin\core.hp.main\SendTo.html ()
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - Reg Error: Key error. File not found
O9 - Extra Button: @shdoclc.dll,-866 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm File not found
O9 - Extra 'Tools' menuitem : @shdoclc.dll,-864 - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm File not found
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation)
O16 - DPF: {31435657-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/e/2...78f/wvc1dmo.cab (Reg Error: Key error.)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://photo2.walgreens.com/WalgreensActivia.cab (Snapfish Activia)
O16 - DPF: {41564D57-9980-0010-8000-00AA00389B71} http://download.microsoft.com/download/0/A...01F/wmvadvd.cab (Reg Error: Key error.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/microsoftupdat...b?1249100481285 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://update.microsoft.com/microsoftupdat...b?1249100466237 (MUWebControl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwa...ash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} https://remote.lifespan.org/dana-cached/set...perSetupSP1.cab (JuniperSetupSP1 Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 71.243.0.12
O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx ()
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxsrvc.dll - C:\WINDOWS\System32\igfxsrvc.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Owner\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/04/02 04:03:32 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/07/28 06:07:38 | 000,000,000 | -HS- | M] () - D:\AUTOEXEC.BAT -- [ FAT32 ]
O32 - AutoRun File - [2009/11/27 18:46:52 | 000,000,205 | ---- | M] () - K:\Autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (PDBoot.exe) - C:\WINDOWS\System32\PDBoot.exe (Raxco Software, Inc.)
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010/08/18 08:45:17 | 008,573,648 | ---- | C] (Mozilla) -- C:\Documents and Settings\Owner\Desktop\Firefox Setup 3.6.8.exe
[2010/08/18 08:22:26 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010/08/17 16:58:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2010/08/17 16:45:35 | 000,375,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CF25148.exe
[2010/08/17 11:30:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Application Data\SoftwareDetectionScripts
[2010/08/17 11:24:35 | 000,000,000 | ---D | C] -- C:\Program Files\Hawking
[2010/08/17 11:20:48 | 000,000,000 | ---D | C] -- C:\Program Files\Raxco
[2010/08/17 11:20:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Raxco
[2010/08/17 11:19:55 | 000,000,000 | ---D | C] -- C:\Program Files\Uniblue
[2010/08/17 10:30:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Raxco(4)
[2010/08/16 12:10:47 | 000,000,000 | ---D | C] -- C:\RECYCLER(3)
[2010/08/15 20:01:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Radialpoint
[2010/08/15 19:39:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Owner\Local Settings\Application Data\Citrix
[2010/08/14 05:10:45 | 000,000,000 | ---D | C] -- C:\found.000
[2010/08/04 15:14:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\muvee Technologies
[2004/07/21 18:02:18 | 000,036,963 | R--- | C] (Cypress Semiconductor) -- C:\Program Files\Common Files\SM1updtr.dll
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/08/24 00:02:25 | 000,074,752 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/08/23 22:43:28 | 000,041,596 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\EventStore.xml
[2010/08/23 22:28:06 | 004,194,304 | ---- | M] () -- C:\Documents and Settings\Owner\ntuser.dat
[2010/08/23 21:52:37 | 000,001,742 | ---- | M] () -- C:\Documents and Settings\Owner\Desktop\HijackThis.lnk
[2010/08/22 06:52:56 | 000,000,840 | ---- | M] () -- C:\Documents and Settings\All Users\Application Data\SharedProperties.xml
[2010/08/22 06:52:53 | 000,000,247 | ---- | M] () -- C:\WINDOWS\System\hpsysdrv.dat
[2010/08/22 06:52:51 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010/08/22 06:52:44 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010/08/22 06:52:42 | 469,291,008 | -HS- | M] () -- C:\hiberfil.sys
[2010/08/22 06:51:50 | 004,370,720 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.dat
[2010/08/22 06:51:50 | 000,385,448 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox2.idx
[2010/08/22 06:51:49 | 070,767,904 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.dat
[2010/08/22 06:51:49 | 000,901,124 | -HS- | M] () -- C:\WINDOWS\System32\drivers\fidbox.idx
[2010/08/22 06:51:22 | 000,000,280 | -HS- | M] () -- C:\Documents and Settings\Owner\ntuser.ini
[2010/08/22 06:50:47 | 000,000,475 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\CampaignStore.xml
[2010/08/22 06:50:47 | 000,000,471 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\UpdateStore.xml
[2010/08/22 06:50:47 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\SoftwarePackageStore.xml
[2010/08/22 06:50:47 | 000,000,376 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\ConfigurationStore.xml
[2010/08/18 08:45:44 | 000,001,628 | ---- | M] () -- C:\Documents and Settings\Owner\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2010/08/18 08:45:44 | 000,001,610 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk
[2010/08/18 08:45:17 | 008,573,648 | ---- | M] (Mozilla) -- C:\Documents and Settings\Owner\Desktop\Firefox Setup 3.6.8.exe
[2010/08/18 03:17:26 | 000,000,603 | ---- | M] () -- C:\WINDOWS\win.ini
[2010/08/17 16:55:31 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010/08/17 16:55:20 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010/08/17 16:46:08 | 003,818,754 | R--- | M] () -- C:\Documents and Settings\Owner\Desktop\ComboFix.exe
[2010/08/17 16:44:52 | 000,375,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\CF25148.exe
[2010/08/17 10:08:39 | 000,001,158 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010/08/17 10:08:36 | 000,145,216 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010/08/03 11:35:50 | 000,029,832 | ---- | M] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/08/23 21:52:37 | 000,001,742 | ---- | C] () -- C:\Documents and Settings\Owner\Desktop\HijackThis.lnk
[2010/08/17 16:46:48 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010/08/17 10:46:07 | 000,000,475 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\CampaignStore.xml
[2010/08/17 10:46:07 | 000,000,471 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\UpdateStore.xml
[2010/08/17 10:13:06 | 000,041,596 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\EventStore.xml
[2010/08/17 10:13:06 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\SoftwarePackageStore.xml
[2010/08/17 10:13:06 | 000,000,376 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\ConfigurationStore.xml
[2010/08/17 10:13:04 | 000,204,906 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\client_gateway.log.2
[2010/08/17 10:13:04 | 000,204,874 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\client_gateway.log.3
[2010/08/17 10:13:04 | 000,204,862 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\client_gateway.log.1
[2010/08/17 10:13:04 | 000,204,850 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\client_gateway.log.4
[2010/08/17 10:13:04 | 000,191,277 | ---- | C] () -- C:\Documents and Settings\Owner\Application Data\client_gateway.log
[2010/08/17 10:13:04 | 000,000,840 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\SharedProperties.xml
[2010/08/15 19:45:24 | 000,004,765 | ---- | C] () -- C:\Documents and Settings\Owner\udinstaller.log
[2010/08/04 15:27:42 | 000,001,871 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Seagate Manager.lnk
[2009/10/03 14:47:07 | 000,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2009/10/03 14:41:30 | 000,000,062 | ---- | C] () -- C:\WINDOWS\ka.ini
[2009/07/31 23:58:20 | 000,074,752 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/07/31 23:41:38 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009/07/31 23:41:38 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009/07/31 23:41:38 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009/07/31 23:41:38 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009/07/31 23:41:38 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009/07/31 23:41:38 | 000,020,480 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2008/12/25 08:08:44 | 000,000,238 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2008/12/14 12:07:30 | 000,000,148 | ---- | C] () -- C:\WINDOWS\refpt.ini
[2008/10/14 16:09:12 | 000,005,504 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen_x86.sys
[2008/07/10 14:34:14 | 000,000,000 | ---- | C] () -- C:\WINDOWS\iPlayer.INI
[2008/06/16 12:35:11 | 000,004,221 | ---- | C] () -- C:\Documents and Settings\All Users\Application Data\hpzinstall.log
[2008/02/01 18:33:56 | 000,000,078 | ---- | C] () -- C:\WINDOWS\qwimp.ini
[2008/02/01 18:33:55 | 000,000,508 | ---- | C] () -- C:\WINDOWS\intuprof.ini
[2005/08/30 10:14:00 | 001,227,776 | ---- | C] () -- C:\WINDOWS\System32\quartz(2).dll
[2005/04/08 19:01:08 | 000,000,547 | ---- | C] () -- C:\WINDOWS\cdplayer.ini
[2005/04/08 12:28:18 | 000,000,004 | ---- | C] () -- C:\WINDOWS\msoffice.ini
[2004/12/13 18:23:53 | 000,000,022 | ---- | C] () -- C:\WINDOWS\kodakpcd.Owner.ini
[2004/11/30 13:09:47 | 000,000,177 | ---- | C] () -- C:\WINDOWS\upst.ini
[2004/11/30 13:09:47 | 000,000,021 | ---- | C] () -- C:\WINDOWS\atid.ini
[2004/11/29 08:03:59 | 000,010,298 | ---- | C] () -- C:\WINDOWS\hpdj3600.ini
[2004/11/25 10:57:23 | 000,000,219 | ---- | C] () -- C:\WINDOWS\satmat.ini
[2004/10/22 20:10:01 | 000,001,433 | ---- | C] () -- C:\WINDOWS\disney.ini
[2004/10/22 19:54:18 | 000,001,712 | ---- | C] () -- C:\WINDOWS\FACTORY.INI
[2004/10/22 19:54:17 | 000,002,003 | ---- | C] () -- C:\WINDOWS\PAINT.INI
[2004/10/22 19:54:17 | 000,000,034 | ---- | C] () -- C:\WINDOWS\PROF_ROM.INI
[2004/09/17 17:37:42 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll
[2004/04/29 17:06:50 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2004/04/03 04:18:54 | 000,000,061 | ---- | C] () -- C:\WINDOWS\smscfg.ini
[2004/04/03 03:36:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\VGAunistlog.ini
[2004/04/03 03:36:39 | 000,000,451 | ---- | C] () -- C:\WINDOWS\VGAsetup.ini
[2004/04/02 20:19:03 | 000,028,672 | ---- | C] () -- C:\WINDOWS\System32\JAWTAccessBridge.dll
[2004/04/02 20:18:38 | 000,086,016 | ---- | C] () -- C:\WINDOWS\System32\PcdrKernelModeServices.dll
[2004/04/02 20:18:38 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\ProgressTrace.dll
[2004/04/02 20:17:14 | 000,000,128 | ---- | C] () -- C:\Documents and Settings\Owner\Local Settings\Application Data\fusioncache.dat
[2004/04/02 20:15:40 | 000,167,936 | ---- | C] () -- C:\WINDOWS\System32\PCDrJNI_1_1.dll
[2004/04/02 20:00:40 | 000,027,752 | ---- | C] () -- C:\WINDOWS\System32\CHODDI.SYS
[2004/04/02 20:00:02 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\hpreg.dll
[2004/04/02 06:01:01 | 000,000,376 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2004/04/02 05:52:33 | 000,000,907 | ---- | C] () -- C:\WINDOWS\QUICKEN.INI
[2004/04/02 05:14:52 | 000,001,793 | ---- | C] () -- C:\WINDOWS\System32\fxsperf.ini
[2004/04/02 04:34:53 | 000,299,073 | ---- | C] () -- C:\WINDOWS\System32\PythonCOM22.dll
[2004/04/02 04:34:53 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\PyWinTypes22.dll
[2004/04/02 04:34:35 | 000,016,896 | ---- | C] () -- C:\WINDOWS\System32\bcbmm.dll
[2004/04/02 04:08:11 | 000,000,802 | ---- | C] () -- C:\WINDOWS\orun32.ini
[2004/04/02 02:52:53 | 000,000,553 | ---- | C] () -- C:\WINDOWS\System32\oeminfo.ini
[2003/05/30 20:00:02 | 000,132,608 | ---- | C] () -- C:\WINDOWS\System32\devenum(2).dll
[2003/01/08 02:05:08 | 000,002,695 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002/12/12 11:14:32 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\msdmo(2).dll

========== Files - Unicode (All) ==========
[2009/08/01 00:47:36 | 000,000,036 | ---- | M] ()(C:\WINDOWS\System32\????????????????????4???????????????????????) -- C:\WINDOWS\System32\㩃停潲牧浡䘠汩獥噜牥穩湯噜牥穩湯䤠瑮牥敮⁴敓畣楲祴匠極整卜晡䍥湯敮瑣䍜湯楦屧噘敩⹷潣普杩
[2009/08/01 00:47:36 | 000,000,036 | ---- | C] ()(C:\WINDOWS\System32\????????????????????4???????????????????????) -- C:\WINDOWS\System32\㩃停潲牧浡䘠汩獥噜牥穩湯噜牥穩湯䤠瑮牥敮⁴敓畣楲祴匠極整卜晡䍥湯敮瑣䍜湯楦屧噘敩⹷潣普杩

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\mde-sg_atl_s1d7.sfv:SummaryInformation
@Alternate Data Stream - 118 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:5BB923A2
@Alternate Data Stream - 116 bytes -> C:\Documents and Settings\All Users\Application Data\TEMP:0F8F5844
< End of report >
RkU Version: 3.8.388.590, Type LE (SR2)
==============================================
OS Name: Windows XP
Version 5.1.2600 (Service Pack 1)
Number of processors #1
==============================================
>Drivers
==============================================
0xBF9B8000 C:\WINDOWS\System32\vtdisp.dll 3448832 bytes (VIA/S3 Graphics Co, Ltd., VIA/S3G Graphics Driver)
0xF682E000 C:\WINDOWS\system32\drivers\ALCXWDM.SYS 2281472 bytes (Realtek Semiconductor Corp., Realtek AC'97 Audio Driver (WDM))
0x804D7000 C:\WINDOWS\system32\ntoskrnl.exe 2040832 bytes (Microsoft Corporation, NT Kernel & System)
0x804D7000 PnpManager 2040832 bytes
0x804D7000 RAW 2040832 bytes
0x804D7000 WMIxWDM 2040832 bytes
0xBF800000 Win32k 1802240 bytes
0xBF800000 C:\WINDOWS\System32\win32k.sys 1802240 bytes (Microsoft Corporation, Multi-User Win32 Driver)
0xF6A9D000 C:\WINDOWS\System32\DRIVERS\AGRSM.sys 1269760 bytes (Agere Systems, SoftModem Device Driver)
0xF737E000 Ntfs.sys 565248 bytes (Microsoft Corporation, NT File System Driver)
0xF55FA000 C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 434176 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
0xF56DA000 C:\WINDOWS\System32\DRIVERS\tcpip.sys 344064 bytes (Microsoft Corporation, TCP/IP Protocol Driver)
0xF0194000 C:\WINDOWS\System32\DRIVERS\srv.sys 323584 bytes (Microsoft Corporation, Server driver)
0xF004B000 C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectDriver.sys 200704 bytes (Sana Security, Inc. , SafeConnect Application Activity Monitor Driver.)
0xF55CA000 C:\WINDOWS\System32\DRIVERS\klif.sys 196608 bytes (Kaspersky Lab, spuper-ptor)
0xF749C000 ACPI.sys 180224 bytes (Microsoft Corporation, ACPI Driver for NT)
0xF0283000 C:\WINDOWS\System32\DRIVERS\mrxdav.sys 176128 bytes (Microsoft Corporation, Windows NT WebDav Minirdr)
0xF6BE5000 C:\WINDOWS\System32\DRIVERS\vtmini.sys 176128 bytes (Copyright © VIA/S3 Graphics Co, Ltd., VIA/S3G Miniport Driver)
0xF7354000 NDIS.sys 172032 bytes (Microsoft Corporation, NDIS 5.1 wrapper driver)
0xF568C000 C:\WINDOWS\System32\DRIVERS\rdbss.sys 167936 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
0xF56B5000 C:\WINDOWS\System32\DRIVERS\netbt.sys 151552 bytes (Microsoft Corporation, MBT Transport driver)
0xF5506000 C:\WINDOWS\System32\Drivers\Fastfat.SYS 147456 bytes (Microsoft Corporation, Fast FAT File System Driver)
0xF7444000 fasttx2k.sys 143360 bytes (Promise Technology, Inc., Promise FastTrak Series Driver for WindowsXP)
0xF67B1000 C:\WINDOWS\System32\DRIVERS\update.sys 139264 bytes (Microsoft Corporation, Update Driver)
0xF6A5B000 C:\WINDOWS\System32\DRIVERS\USBPORT.SYS 139264 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
0xF0B7B000 C:\WINDOWS\System32\drivers\afd.sys 135168 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
0xF680D000 C:\WINDOWS\system32\drivers\portcls.sys 135168 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
0xF6A7D000 C:\WINDOWS\System32\DRIVERS\ks.sys 131072 bytes (Microsoft Corporation, Kernel CSA Library)
0x806CA000 ACPI_HAL 127872 bytes
0x806CA000 C:\WINDOWS\system32\hal.dll 127872 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
0xF747D000 ftdisk.sys 126976 bytes (Microsoft Corporation, FT Disk Driver)
0xF733A000 Mup.sys 106496 bytes (Microsoft Corporation, Multiple UNC Provider driver)
0xEF991000 C:\DOCUME~1\Owner\LOCALS~1\Temp\fgpiikow.sys 94208 bytes
0xF742D000 C:\WINDOWS\System32\DRIVERS\SCSIPORT.SYS 94208 bytes (Microsoft Corporation, SCSI Port Driver)
0xF7467000 atapi.sys 90112 bytes (Microsoft Corporation, IDE/ATAPI Port Driver)
0xF54F0000 C:\WINDOWS\System32\Drivers\dump_atapi.sys 90112 bytes
0xF67E4000 C:\WINDOWS\System32\DRIVERS\ndiswan.sys 90112 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
0xF0B9C000 C:\WINDOWS\System32\Drivers\DefragFS.SYS 81920 bytes (Raxco Software, Inc., Defragmentation Support Driver)
0xEFF6F000 C:\WINDOWS\System32\DRIVERS\ipnat.sys 81920 bytes (Microsoft Corporation, IP Network Address Translator)
0xF7408000 KSecDD.sys 81920 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
0xF572E000 C:\WINDOWS\System32\DRIVERS\ipsec.sys 77824 bytes (Microsoft Corporation, IPSec Driver)
0xF67FA000 C:\WINDOWS\System32\DRIVERS\parport.sys 77824 bytes (Microsoft Corporation, Parallel Port Driver)
0xF0730000 C:\WINDOWS\system32\drivers\wdmaud.sys 77824 bytes (Microsoft Corporation, MMSYSTEM Wave/Midi API mapper)
0xF6BD3000 C:\WINDOWS\System32\DRIVERS\VIDEOPRT.SYS 73728 bytes (Microsoft Corporation, Video Port Driver)
0xBFF80000 C:\WINDOWS\System32\drivers\dxg.sys 69632 bytes (Microsoft Corporation, DirectX Graphics Driver)
0xF67D3000 C:\WINDOWS\System32\DRIVERS\psched.sys 69632 bytes (Microsoft Corporation, MS QoS Packet Scheduler)
0xF741C000 sr.sys 69632 bytes (Microsoft Corporation, System Restore Filesystem Filter Driver)
0xF74E9000 pci.sys 65536 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator)
0xF7659000 C:\WINDOWS\System32\DRIVERS\serial.sys 65536 bytes (Microsoft Corporation, Serial Device Driver)
0xF054E000 C:\WINDOWS\System32\Drivers\Cdfs.SYS 61440 bytes (Microsoft Corporation, CD-ROM File System Driver)
0xF7639000 C:\WINDOWS\system32\drivers\drmk.sys 61440 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
0xF75A9000 C:\WINDOWS\System32\DRIVERS\nic1394.sys 61440 bytes (Microsoft Corporation, IEEE1394 Ndis Miniport and Call Manager)
0xF75B9000 C:\WINDOWS\System32\DRIVERS\arp1394.sys 57344 bytes (Microsoft Corporation, IP/1394 Arp Client)
0xF7509000 ohci1394.sys 57344 bytes (Microsoft Corporation, 1394 OpenHCI Port Driver)
0xF7629000 C:\WINDOWS\System32\DRIVERS\redbook.sys 57344 bytes (Microsoft Corporation, Redbook Audio Filter Driver)
0xF76D9000 C:\WINDOWS\System32\DRIVERS\rp_pkt32.sys 57344 bytes (Radialpoint, Inc., Radialpoint Filter)
0xF093B000 C:\WINDOWS\system32\drivers\sysaudio.sys 57344 bytes (Microsoft Corporation, System Audio WDM Filter)
0xF7519000 C:\WINDOWS\System32\DRIVERS\1394BUS.SYS 53248 bytes (Microsoft Corporation, 1394 Bus Device Driver)
0xF7709000 C:\WINDOWS\System32\DRIVERS\usbhub.sys 53248 bytes (Microsoft Corporation, Default Hub Driver for USB)
0xF7619000 C:\WINDOWS\System32\DRIVERS\cdrom.sys 49152 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
0xF7559000 C:\WINDOWS\System32\DRIVERS\CLASSPNP.SYS 49152 bytes (Microsoft Corporation, SCSI Class System Dll)
0xF7669000 C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 49152 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
0xF7689000 C:\WINDOWS\System32\DRIVERS\raspptp.sys 49152 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
0xF76A9000 C:\WINDOWS\System32\DRIVERS\rp_skt32.sys 49152 bytes (Radialpoint Inc., Radialpoint Filter)
0xF7539000 VolSnap.sys 49152 bytes (Microsoft Corporation, Volume Shadow Copy Driver)
0xF7649000 C:\WINDOWS\System32\DRIVERS\fetnd5bv.sys 45056 bytes (VIA Technologies, Inc. , NDIS 5.0 miniport driver)
0xF7609000 C:\WINDOWS\System32\DRIVERS\imapi.sys 40960 bytes (Microsoft Corporation, IMAPI Kernel Driver)
0xF7529000 MountMgr.sys 40960 bytes (Microsoft Corporation, Mount Manager)
0xF76E9000 C:\WINDOWS\System32\Drivers\NDProxy.SYS 40960 bytes (Microsoft Corporation, NDIS Proxy)
0xF7569000 PxHelp20.sys 40960 bytes (Sonic Solutions, Px Engine Device Driver for Windows 2000/XP)
0xF7679000 C:\WINDOWS\System32\DRIVERS\raspppoe.sys 40960 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
0xF02AE000 C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectFilter.sys 40960 bytes (Sana Security, Inc. , SafeConnect Application Activity Monitor Filter Driver.)
0xF7579000 SISAGPX.sys 40960 bytes (Silicon Integrated Systems Corporation, SiS AGPv3.5 Filter)
0xF76C9000 C:\WINDOWS\System32\DRIVERS\termdd.sys 40960 bytes (Microsoft Corporation, Terminal Server Driver)
0xF7549000 disk.sys 36864 bytes (Microsoft Corporation, PnP Disk Driver)
0xF7739000 C:\WINDOWS\System32\Drivers\Fips.SYS 36864 bytes (Microsoft Corporation, FIPS Crypto Driver)
0xF6C40000 C:\WINDOWS\System32\DRIVERS\HIDCLASS.SYS 36864 bytes (Microsoft Corporation, Hid Class Library)
0xF74F9000 isapnp.sys 36864 bytes (Microsoft Corporation, PNP ISA Bus Driver)
0xF7699000 C:\WINDOWS\System32\DRIVERS\msgpc.sys 36864 bytes (Microsoft Corporation, MS General Packet Classifier)
0xF7729000 C:\WINDOWS\System32\DRIVERS\netbios.sys 36864 bytes (Microsoft Corporation, NetBIOS interface driver)
0xEFAD7000 C:\WINDOWS\System32\Drivers\Normandy.SYS 36864 bytes (RKU Driver)
0xF7759000 C:\WINDOWS\System32\DRIVERS\wanarp.sys 36864 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
0xF78E1000 C:\WINDOWS\System32\Drivers\Modem.SYS 32768 bytes (Microsoft Corporation, Modem Device Driver)
0xF77E9000 C:\WINDOWS\System32\Drivers\Npfs.SYS 32768 bytes (Microsoft Corporation, NPFS Driver)
0xF78D9000 C:\WINDOWS\System32\DRIVERS\processr.sys 32768 bytes (Microsoft Corporation, Processor Device Driver)
0xF77F1000 C:\WINDOWS\System32\DRIVERS\usbccgp.sys 32768 bytes (Microsoft Corporation, USB Common Class Generic Parent Driver)
0xF7779000 viaagp1.sys 28672 bytes (VIA Technologies, Inc., VIA NT AGP Filter)
0xF77D1000 C:\WINDOWS\System32\DRIVERS\HIDPARSE.SYS 24576 bytes (Microsoft Corporation, Hid Parsing Library)
0xF77B9000 C:\WINDOWS\System32\DRIVERS\kbdclass.sys 24576 bytes (Microsoft Corporation, Keyboard Class Driver)
0xF77C1000 C:\WINDOWS\System32\DRIVERS\mouclass.sys 24576 bytes (Microsoft Corporation, Mouse Class Driver)
0xF7769000 C:\WINDOWS\System32\DRIVERS\PCIIDEX.SYS 24576 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
0xF77F9000 C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS 24576 bytes (Microsoft Corporation, USB Mass Storage Class Driver)
0xF77E1000 C:\WINDOWS\System32\Drivers\Msfs.SYS 20480 bytes (Microsoft Corporation, Mailslot driver)
0xF7771000 PartMgr.sys 20480 bytes (Microsoft Corporation, Partition Manager)
0xF77A9000 C:\WINDOWS\System32\DRIVERS\ptilink.sys 20480 bytes (Parallel Technologies, Inc., Parallel Technologies DirectParallel IO Library)
0xF77B1000 C:\WINDOWS\System32\DRIVERS\raspti.sys 20480 bytes (Microsoft Corporation, PTI DirectParallel® mini-port/call-manager driver)
0xF7849000 C:\Program Files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectShim.sys 20480 bytes (Sana Security, Inc. , SafeConnect Application Activity Monitor Loader Driver.)
0xF78F1000 C:\WINDOWS\System32\DRIVERS\usbehci.sys 20480 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
0xF78E9000 C:\WINDOWS\System32\DRIVERS\usbuhci.sys 20480 bytes (Microsoft Corporation, UHCI USB Miniport Driver)
0xF77D9000 C:\WINDOWS\System32\drivers\vga.sys 20480 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
0xF6ED7000 C:\WINDOWS\System32\DRIVERS\kbdhid.sys 16384 bytes (Microsoft Corporation, HID Mouse Filter Driver)
0xF0C08000 C:\WINDOWS\System32\DRIVERS\ndisuio.sys 16384 bytes (Microsoft Corporation, NDIS User mode I/O Driver)
0xF7981000 C:\WINDOWS\System32\DRIVERS\serenum.sys 16384 bytes (Microsoft Corporation, Serial Port Enumerator)
0xF7989000 C:\WINDOWS\System32\DRIVERS\TDI.SYS 16384 bytes (Microsoft Corporation, TDI Wrapper)
0xF576D000 C:\WINDOWS\System32\watchdog.sys 16384 bytes (Microsoft Corporation, Watchdog Driver)
0xF78F9000 C:\WINDOWS\system32\BOOTVID.dll 12288 bytes (Microsoft Corporation, VGA Boot Driver)
0xF5771000 C:\WINDOWS\System32\drivers\Dxapi.sys 12288 bytes (Microsoft Corporation, DirectX API Driver)
0xF7975000 C:\WINDOWS\SYSTEM32\DRIVERS\GEARAspiWDM.sys 12288 bytes (GEAR Software, Filter Driver for 2k and XP)
0xF6EDF000 C:\WINDOWS\System32\DRIVERS\hidusb.sys 12288 bytes (Microsoft Corporation, USB Miniport Driver for Input Devices)
0xF57AD000 C:\WINDOWS\System32\DRIVERS\mouhid.sys 12288 bytes (Microsoft Corporation, HID Mouse Filter Driver)
0xF7985000 C:\WINDOWS\System32\DRIVERS\ndistapi.sys 12288 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
0xF7971000 C:\WINDOWS\system32\drivers\pfc.sys 12288 bytes (Padus, Inc., Padus® ASPI Shell)
0xF79D5000 C:\WINDOWS\System32\DRIVERS\rasacd.sys 12288 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
0xF79DD000 C:\WINDOWS\System32\DRIVERS\srvkp.sys 12288 bytes (Silicon Integrated Systems Corporation, SiS VGA Driver Manager)
0xF7A45000 C:\WINDOWS\System32\Drivers\Beep.SYS 8192 bytes (Microsoft Corporation, BEEP Driver)
0xF7A6D000 C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS 8192 bytes
0xF7A43000 C:\WINDOWS\System32\Drivers\Fs_Rec.SYS 8192 bytes (Microsoft Corporation, File System Recognizer Driver)
0xF79EF000 intelide.sys 8192 bytes (Microsoft Corporation, Intel PCI IDE Driver)
0xF79E9000 C:\WINDOWS\system32\KDCOM.DLL 8192 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
0xF7A47000 C:\WINDOWS\System32\Drivers\mnmdd.SYS 8192 bytes (Microsoft Corporation, Frame buffer simulator)
0xF7A01000 C:\WINDOWS\System32\Drivers\ParVdm.SYS 8192 bytes (Microsoft Corporation, VDM Parallel Driver)
0xF7A49000 C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 8192 bytes (Microsoft Corporation, RDP Miniport)
0xF7A3F000 C:\WINDOWS\System32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)
0xF79ED000 viaide.sys 8192 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)
0xF79EB000 C:\WINDOWS\System32\DRIVERS\WMILIB.SYS 8192 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
0xF7AF8000 C:\WINDOWS\System32\DRIVERS\audstub.sys 4096 bytes (Microsoft Corporation, AudStub Driver)
0xF7B59000 C:\WINDOWS\System32\drivers\dxgthk.sys 4096 bytes (Microsoft Corporation, DirectX Graphics Driver Thunk)
0xF7ADD000 C:\WINDOWS\System32\Drivers\Null.SYS 4096 bytes (Microsoft Corporation, NULL Driver)
0xF7AB1000 pciide.sys 4096 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)
0xF7C13000 C:\WINDOWS\System32\DRIVERS\swenum.sys 4096 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
==============================================
>Stealth
==============================================


#5 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 26 August 2010 - 04:20 AM

Please click Start > Run, type sfc /scannow in the runbox and press enter. Let the system file checker run unhindered . Note - You may be prompted for your windows disk.

When done, download a new copy of combofix and run it. Post me the resulting log.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#6 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 26 August 2010 - 09:16 AM

I ran the sfc / scannow, did not get much of a response, a black screen flashed, no windows disk inquiry. i also ran the combofix (updated) that was on my desktop already because you did not provide a link so i assume that was what you meant. Here's the log.
ComboFix 10-08-25.01 - Owner 08/26/2010 10:00:18.5.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.1.1252.1.1033.18.447.129 [GMT -4:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
* Created a new restore point
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Application Data\Pribi
c:\documents and settings\All Users\Application Data\Pribi\spif.fil
c:\documents and settings\All Users\Application Data\Pribi\spif.ini
c:\documents and settings\All Users\Application Data\Setup
c:\documents and settings\All Users\Application Data\Setup\setup.fil
c:\documents and settings\All Users\Application Data\Setup\setup.ini
K:\Autorun.inf

.
((((((((((((((((((((((((( Files Created from 2010-07-26 to 2010-08-26 )))))))))))))))))))))))))))))))
.

2010-08-17 20:45 . 2010-08-17 20:44 375808 ----a-w- c:\windows\system32\CF25148.exe
2010-08-17 15:30 . 2010-08-17 15:30 -------- d-----w- c:\documents and settings\Owner\Application Data\SoftwareDetectionScripts
2010-08-17 15:25 . 2010-08-17 15:25 -------- d-----w- c:\windows\system32\wbem\Repository
2010-08-17 15:24 . 2010-08-17 15:24 -------- d-----w- c:\program files\Hawking
2010-08-17 15:20 . 2010-08-17 15:20 -------- d-----w- c:\program files\Raxco
2010-08-17 15:20 . 2010-08-17 15:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Raxco
2010-08-17 15:19 . 2010-08-17 15:20 -------- d-----w- c:\program files\Uniblue
2010-08-17 14:30 . 2010-08-17 15:15 -------- d-----w- c:\documents and settings\All Users\Application Data\Raxco(4)
2010-08-16 16:10 . 2010-08-17 15:19 -------- d-----w- C:\RECYCLER(3)
2010-08-16 00:01 . 2010-08-17 15:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Radialpoint
2010-08-15 23:39 . 2010-08-15 23:39 -------- d-----w- c:\documents and settings\Owner\Local Settings\Application Data\Citrix
2010-08-14 09:10 . 2010-08-14 09:10 -------- d-----w- C:\found.000
2010-08-04 19:14 . 2010-08-04 19:14 -------- d-----w- c:\documents and settings\All Users\Application Data\muvee Technologies

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-08-22 10:52 . 2008-10-05 15:26 -------- d---a-w- c:\documents and settings\All Users\Application Data\TEMP
2010-08-22 10:51 . 2009-08-01 04:49 4370720 --sha-w- c:\windows\system32\drivers\fidbox2.dat
2010-08-22 10:51 . 2009-08-01 04:49 385448 --sha-w- c:\windows\system32\drivers\fidbox2.idx
2010-08-22 10:51 . 2009-08-01 05:13 901124 --sha-w- c:\windows\system32\drivers\fidbox.idx
2010-08-22 10:51 . 2009-08-01 05:13 70767904 --sha-w- c:\windows\system32\drivers\fidbox.dat
2010-08-18 13:32 . 2009-08-01 06:33 -------- d-----w- c:\documents and settings\Owner\Application Data\uTorrent
2010-08-17 15:24 . 2008-10-05 15:24 -------- d-----w- c:\program files\Xvid
2010-08-17 15:21 . 2004-04-02 09:49 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-17 15:20 . 2008-11-21 19:18 -------- d-----w- c:\program files\Verizon
2010-08-17 15:19 . 2009-08-01 04:14 -------- d-----w- c:\documents and settings\Owner\Application Data\Verizon
2010-08-17 15:19 . 2008-11-20 03:04 -------- d-----w- c:\documents and settings\All Users\Application Data\Verizon
2010-08-10 14:04 . 2010-01-16 02:05 -------- d-----w- c:\documents and settings\Owner\Application Data\SuperNZB
2010-08-04 19:39 . 2009-01-14 02:32 -------- d-----w- c:\program files\Seagate
2010-08-03 15:35 . 2009-08-01 05:20 29832 ----a-w- c:\documents and settings\Owner\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2010-07-12 13:03 . 2004-04-03 00:21 -------- d-----w- c:\program files\Easy Internet signup
2003-08-27 18:19 . 2004-07-21 22:02 36963 ----a-r- c:\program files\Common Files\SM1updtr.dll
2008-06-23 04:00 . 2008-06-23 01:00 0 --sha-w- c:\windows\SMINST\HPCD.sys
.

------- Sigcheck -------



[-] 2004-07-09 08:27 . 0E51BD586D186F61A9E4453DB8AEC774 . 1703936 . . [5.3.0000001.0904 built by: private/Lab06_dev(DXBLD00)] . . c:\windows\system32\d3d9.dll
[-] 2003-05-31 00:00 . 7BA80564F369A96AF84E3AA27E75E90B . 1634304 . . [5.3.0000001.902 built by: DIRECTX] . . c:\windows\LastGood\System32\d3d9.dll

c:\windows\System32\wscntfy.exe ... is missing !!
c:\windows\System32\xmlprov.dll ... is missing !!
.
((((((((((((((((((((((((((((( SnapShot_2010-08-17_20.55.31 )))))))))))))))))))))))))))))))))))))))))
.
+ 2010-08-22 10:53 . 2010-08-22 10:53 32768 c:\windows\system32\config\systemprofile\Local Settings\Temporary Internet Files\Content.IE5\index.dat
+ 2004-04-02 08:05 . 2010-08-22 10:52 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
- 2004-04-02 08:05 . 2010-08-17 15:29 32768 c:\windows\system32\config\systemprofile\Local Settings\History\History.IE5\index.dat
+ 2010-08-22 10:53 . 2010-08-22 10:52 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2004-04-02 08:05 . 2010-08-17 15:29 16384 c:\windows\system32\config\systemprofile\Cookies\index.dat
- 2004-04-02 10:00 . 2010-05-12 14:19 23040 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 23040 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\unbndico.exe
- 2004-04-02 10:00 . 2010-05-12 14:19 27136 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 27136 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\oisicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:19 11264 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 11264 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\mspicons.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 12288 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:18 12288 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\cagicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:19 4096 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 4096 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\opwicon.exe
- 2010-05-12 14:13 . 2010-05-12 14:18 409600 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2010-05-12 14:13 . 2010-08-23 07:30 409600 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\xlicons.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 286720 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:18 286720 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\wordicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:18 249856 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 249856 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\pptico.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 794624 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:19 794624 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\outicon.exe
- 2004-04-02 10:00 . 2010-05-12 14:18 135168 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2004-04-02 10:00 . 2010-08-23 07:30 135168 c:\windows\Installer\{91120409-6000-11D3-8CFE-0150048383C9}\misc.exe
+ 2010-06-28 20:01 . 2010-06-28 20:01 7677952 c:\windows\Installer\46cdca4.msp
+ 2010-05-25 15:45 . 2010-05-25 15:45 8445440 c:\windows\Installer\3660b81.msp
+ 2010-06-29 02:53 . 2010-06-29 02:53 6819840 c:\windows\Installer\3660b6c.msp
+ 2010-07-26 21:02 . 2010-07-26 21:02 5519360 c:\windows\Installer\3660b58.msp
+ 2010-05-03 20:06 . 2010-05-03 20:06 5053952 c:\windows\Installer\3660b45.msp
+ 2010-05-11 15:30 . 2010-05-11 15:30 11194880 c:\windows\Installer\3660b95.msp
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2009-04-02 16:47 333192 ----a-w- c:\program files\AskBarDis\bar\bin\askBar.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]

[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Uniblue RegistryBooster 2009"="c:\program files\Uniblue\RegistryBooster\RegistryBooster.exe" [2008-08-26 2019624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SunJavaUpdateSched"="c:\program files\Java\j2re1.4.2_03\bin\jusched.exe" [2004-04-02 32881]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-08 52736]
"KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2004-04-02 151597]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2004-01-17 229376]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2004-04-14 233472]
"VTTimer"="VTTimer.exe" [2004-01-16 49152]
"AGRSMMSG"="AGRSMMSG.exe" [2004-06-29 88363]
"PS2"="c:\windows\system32\ps2.exe" [2003-09-13 98304]
"VerizonServicepoint.exe"="c:\program files\Verizon\VSP\VerizonServicepoint.exe" [2009-03-12 2303216]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2010-01-13 37888]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 57344]
"MaxMenuMgr"="c:\program files\Seagate\SeagateManager\FreeAgent Status\StxMenuMgr.exe" [2008-10-28 181544]
"QuickTime Task"="c:\program files\QuickTime\qttask.exe" [2004-04-02 98304]

c:\documents and settings\Owner\Start Menu\Programs\Startup\
IMStart.lnk - c:\program files\InterMute\IMStart.exe [2004-4-2 57344]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Adobe Reader Speed Launch.lnk - c:\program files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [2004-12-14 29696]
Compaq Connections.lnk - c:\program files\Compaq Connections\1940576\Program\BackWeb-1940576.exe [2004-4-2 16384]
Google Updater.lnk - c:\program files\Google\Google Updater\GoogleUpdater.exe [2007-7-29 124912]
hpoddt01.exe.lnk - c:\program files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe [2003-5-21 229437]
PopSubtract.lnk - c:\program files\InterMute\PopSubtract\PopSub.exe [2008-12-20 233472]
Quicken Scheduled Updates.lnk - c:\program files\Quicken\bagent.exe [2003-7-30 57344]
SpySubtract.lnk - c:\program files\InterMute\SpySubtract\spysub.exe [2008-12-20 983040]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ PDBoot.exe\0autocheck autochk *

R2 FreeAgentGoNext Service;Seagate Service;c:\program files\Seagate\SeagateManager\Sync\FreeAgentService.exe [9/25/2009 11:32 PM 161064]
R2 PD91Agent;PD91Agent;c:\program files\Raxco\PerfectDisk2008\PD91Agent.exe [9/22/2008 4:58 PM 693512]
R3 RadialpointSafeConnectDriver;RadialpointSafeConnectDriver;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectDriver.sys [11/14/2008 6:28 PM 161304]
R3 RadialpointSafeConnectFilter;RadialpointSafeConnectFilter;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectFilter.sys [11/14/2008 6:28 PM 29720]
R3 RadialpointSafeConnectShim;RadialpointSafeConnectShim;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\Driver\platform_XP\SafeConnectShim.sys [11/14/2008 6:28 PM 27376]
S2 mrtRate;mrtRate; [x]
S2 RadialpointSafeConnectAgent;Verizon Internet Security Suite SafeConnectAgent;c:\program files\Verizon\Verizon Internet Security Suite\SafeConnect\bin\SanaAgent.exe [11/14/2008 6:28 PM 4937752]
S3 PD91Engine;PD91Engine;c:\program files\Raxco\PerfectDisk2008\PD91Engine.exe [9/22/2008 4:58 PM 910600]
S3 Radialpoint Security Services;Verizon Internet Security Suite;c:\program files\Verizon\Verizon Internet Security Suite\RpsSecurityAwareR.exe [4/22/2009 10:38 AM 170736]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - FGPIIKOW
*NewlyCreated* - NORMANDY
*Deregistered* - fgpiikow
*Deregistered* - Normandy
.
Contents of the 'Scheduled Tasks' folder

2004-04-03 c:\windows\Tasks\Symantec NetDetect.job
- c:\program files\Symantec\LiveUpdate\NDETECT.EXE [2004-04-03 08:17]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.yahoo.com/
uDefault_Search_URL = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
mStart Page = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q304&bd=presario&pf=desktop
mSearch Bar = hxxp://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iesearch&locale=EN_US&c=Q304&bd=presario&pf=desktop
uInternet Settings,ProxyOverride = localhost
IE: Add To Compaq Organize... - c:\progra~1\HEWLET~1\COMPAQ~1\bin\core.hp.main\SendTo.html
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
IE: {{c95fe080-8f5d-11d2-a20b-00aa003c157a} - %SystemRoot%\web\related.htm
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\9rfp74jn.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.yahoo.com/
FF - prefs.js: keyword.URL - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampab&query=
FF - component: c:\program files\Mozilla Firefox\extensions\{B13721C7-F507-4982-B2E5-502A71474FED}\components\NPComponent.dll
FF - plugin: c:\program files\Java\j2re1.4.2_03\bin\NPJPI142_03.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npwachk.dll
FF - plugin: c:\program files\Real\RealOne Player\Netscape6\nppl3260.dll
FF - plugin: c:\program files\Real\RealOne Player\Netscape6\nprjplug.dll
FF - plugin: c:\program files\Real\RealOne Player\Netscape6\nprpjplug.dll
FF - plugin: c:\program files\Unity\WebPlayer\loader\npUnity3D32.dll
FF - plugin: c:\program files\Verizon\VSP\nprpspa.dll

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - truec:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.lu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nu", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.nz", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--p1ai", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbayh7gpa", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.tel", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.proxy.type", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.count", 24);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.buffer.cache.size", 4096);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("dom.ipc.plugins.timeoutSecs", 45);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accelerometer.enabled", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.nptest.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npswf32.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npctrl.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled.npqtplugin.dll", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("dom.ipc.plugins.enabled", false);
.

**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-08-26 10:07
Windows 5.1.2600 Service Pack 1 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(512)
c:\windows\system32\ODBC32.dll

- - - - - - - > 'lsass.exe'(568)
c:\windows\System32\dssenh.dll
.
Completion time: 2010-08-26 10:11:54
ComboFix-quarantined-files.txt 2010-08-26 14:11
ComboFix2.txt 2010-08-17 20:58
ComboFix3.txt 2010-08-16 01:04
ComboFix4.txt 2009-08-25 01:54
ComboFix5.txt 2010-08-26 13:57

Pre-Run: 123,863,093,248 bytes free
Post-Run: 123,903,979,520 bytes free

- - End Of File - - 50A6D7A7952702EA9315AE2801CAA9FC

Edited by itlfl2, 26 August 2010 - 09:17 AM.


#7 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 26 August 2010 - 09:33 AM

Please click Start > run, type CMD in the runbox, then press enter. Run the command again and let me know what you get back.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#8 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 26 August 2010 - 05:30 PM

It reads in a black box, microsoft windows xp version 5.1.2600, copyright 1985-2001 microsoft corp

#9 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 27 August 2010 - 05:20 AM

I mean, what does it read after entering [sfc /scannow[/b] there.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#10 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 27 August 2010 - 07:22 AM

when i make the sfc/scannow and press enter the black box flashes on the screen, thats the only response, nothing else.
When i enter CMD in the run box, the black box appears and just says windows xp and so on, nothing else
I enter sfc space then forward slash space scannow, thats when the box flashes
If I enter the command without the spaces, I'm prompted "windows cannot find 'sfc/scannow', make sure you type the name correctly and try again.

Edited by itlfl2, 27 August 2010 - 07:27 AM.


#11 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 27 August 2010 - 07:45 AM

Its SFC<space><slash>SCANNOW smile.gif

Try that and see if it works now.

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#12 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 27 August 2010 - 09:12 AM

It ran the protection file check, but once it was done, it gave no report

#13 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 27 August 2010 - 10:14 AM

No problem. Now please rerun Combofix (download a new copy).

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft


#14 itlfl2

itlfl2
  • Topic Starter

  • Members
  • 50 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Providence RI
  • Local time:02:34 PM

Posted 27 August 2010 - 10:25 AM

Can you give me a link to download anew copy of combofix

#15 Elise

Elise

    Bleepin' Blonde


  • Malware Study Hall Admin
  • 61,318 posts
  • ONLINE
  •  
  • Gender:Female
  • Location:Romania
  • Local time:09:34 PM

Posted 27 August 2010 - 10:34 AM

Sorry, here you go. smile.gif

http://www.bleepingcomputer.com/download/anti-virus/combofix

regards, Elise


"Now faith is the substance of things hoped for, the evidence of things not seen."

 

Follow BleepingComputer on: Facebook | Twitter | Google+ | lockerdome

 

Malware analyst @ Emsisoft





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users