Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

infected by java/agent.ag,fwa,bkf,nvc rootkit.tdss and hijacker


  • This topic is locked This topic is locked
39 replies to this topic

#1 yukonrr

yukonrr

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 26 October 2010 - 01:10 PM

Hi not sure if this is in the right section for this post i'm just following the prep guide

i was about to reinstall my OS since i have done that in the past (had docs i didn't want to lose) so you will notice c:windows and c:windows2 files i'm curently using windows2, i did that because after a scan i deleted something i shouldn't have, after i did the restart my windows OS would not restart it would get to the blue screen that says windows is waiting to start and then it would shut down and restart so i HAD to reinstall my OS

i did scan (in safemode) with malwarebytes and avira (at different times)and was able to remove it... i think. after i restarted my pc i noticed some of my .dll and .exe files didn't work (i did manage to get them working) also i can't open my security folder by clicking on the shield icon by my system clock, it did say rundll.exe not found (untill i got .dll running) now it says cannot find path as well as some desk top icons for programs like nero 7 plus nero removaltool all said cannot find path or didn't have permission to access. i have uninstalled nero and divx but now can't reinstall nero i get cannot find nero installer (never tried divx) but wmp works fine. still there more, inside my folders look different (control panel, my docs etc.) there is no blue in the left column of folder when its open

also (after come to this site) ran tdssrootkiller which didn't find anything BUT i know the virus did damage some where on my system (windows xp) because when my GMER scan finished my pc froze so i'm in safe mode and rescaning.

ok i'm having problem with GMER scan it went to a blue screen and said problem caused by uwldapoy.sys (sp?) i hope thats right cause i had to hurry before the timer ran out so i'll post the other logs here and try the scan GMER again and post results later

dds txt


DDS (Ver_10-10-21.02) - NTFSx86
Run by ****** at 6:54:32.37 on 26/10/2010
Internet Explorer: 8.0.6001.18702
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.224.60 [GMT -7:00]

AV: AntiVir Desktop *On-access scanning enabled* (Updated) {AD166499-45F9-482A-A743-FDD3350758C7}

============== Running Processes ===============

C:\WINDOWS2\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS2\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS2\system32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
svchost.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\WINDOWS2\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\WINDOWS2\System32\svchost.exe -k imgsvc
C:\WINDOWS2\Explorer.EXE
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\WINDOWS2\System32\SiSAudUt.exe
C:\WINDOWS2\System32\khooker.exe
C:\WINDOWS2\system32\ctfmon.exe
C:\Documents and Settings\USER\Desktop\glo07kyc.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\USER\Desktop\Defogger.exe
C:\Documents and Settings\USER\Desktop\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.ca/
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [ctfmon.exe] c:\windows2\system32\ctfmon.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [SiS7012Utility] c:\windows2\system32\SiSAudUt.exe -wdm
mRun: [SiS KHooker] c:\windows2\system32\khooker.exe
dRun: [CTFMON.EXE] c:\windows2\system32\CTFMON.EXE
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683}
DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} - hxxp://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1276613199795
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276613322888
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93}
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA}
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab

================= FIREFOX ===================

FF - ProfilePath - c:\docume~1\USER\applic~1\mozilla\firefox\profiles\pyxqxe5j.default\
FF - prefs.js: browser.search.selectedEngine - Google
FF - prefs.js: browser.startup.homepage - hxxp://www.google.ca/
FF - prefs.js: keyword.URL - hxxp://radiobar.toolbarhome.com/search.aspx?srch=ku&q=
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npmozax.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows2\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0019-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified

============= SERVICES / DRIVERS ===============

R1 avgio;avgio;c:\program files\avira\antivir desktop\avgio.sys [2010-6-15 11608]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2010-6-15 135336]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2010-6-15 267432]
R2 avgntflt;avgntflt;c:\windows2\system32\drivers\avgntflt.sys [2010-6-15 60936]
R3 SiS7012;Service for AC'97 Sample Driver (WDM);c:\windows2\system32\drivers\sis7012.sys [2010-6-15 165760]
R3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows2\system32\drivers\wdcsam.sys [2008-5-6 11520]

============== File Associations ===============

chm.file="c:\windows\hh.exe" %1

=============== Created Last 30 ================

2010-10-26 09:30:31 -------- d-----w- c:\program files\Support Tools
2010-10-26 08:52:59 -------- dc----w- c:\windows2\system32\XPSViewer
2010-10-26 08:51:48 89088 -c--a-w- c:\windows2\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2010-10-26 08:50:56 89088 -c----w- c:\windows2\system32\dllcache\filterpipelineprintproc.dll
2010-10-26 08:50:56 117760 -c----w- c:\windows2\system32\prntvpt.dll
2010-10-26 08:50:55 597504 -c----w- c:\windows2\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2010-10-26 08:50:55 597504 -c----w- c:\windows2\system32\dllcache\printfilterpipelinesvc.exe
2010-10-26 08:50:54 575488 -c----w- c:\windows2\system32\xpsshhdr.dll
2010-10-26 08:50:54 575488 -c----w- c:\windows2\system32\dllcache\xpsshhdr.dll
2010-10-26 08:50:49 1676288 -c----w- c:\windows2\system32\xpssvcs.dll
2010-10-26 08:50:49 1676288 -c----w- c:\windows2\system32\dllcache\xpssvcs.dll
2010-10-25 16:25:12 -------- dc----w- c:\windows2\I386
2010-10-25 16:04:32 23040 -c--a-w- c:\windows2\system32\dllcache\xrxwbtmp.dll
2010-10-25 16:04:32 116224 -c--a-w- c:\windows2\system32\dllcache\xrxwiadr.dll
2010-10-25 16:04:30 18944 -c--a-w- c:\windows2\system32\dllcache\xrxscnui.dll
2010-10-25 16:04:29 4608 -c--a-w- c:\windows2\system32\dllcache\xrxflnch.exe
2010-10-25 16:04:29 27648 -c--a-w- c:\windows2\system32\dllcache\xrxftplt.exe
2010-10-25 16:04:27 99865 -c--a-w- c:\windows2\system32\dllcache\xlog.exe
2010-10-25 16:04:25 16970 -c--a-w- c:\windows2\system32\dllcache\xem336n5.sys
2010-10-25 16:04:23 19455 -c--a-w- c:\windows2\system32\dllcache\wvchntxx.sys
2010-10-25 16:04:20 19200 -c--a-w- c:\windows2\system32\dllcache\wstcodec.sys
2010-10-25 16:04:18 12063 -c--a-w- c:\windows2\system32\dllcache\wsiintxx.sys
2010-10-25 16:04:15 8192 -c--a-w- c:\windows2\system32\dllcache\wshirda.dll
2010-10-25 16:02:59 53760 -c--a-w- c:\windows2\system32\dllcache\vfwwdm32.dll
2010-10-25 16:01:58 32640 -c--a-w- c:\windows2\system32\dllcache\symc8xx.sys
2010-10-25 16:00:59 101760 -c--a-w- c:\windows2\system32\dllcache\sis300ip.sys
2010-10-25 15:59:50 19584 -c--a-w- c:\windows2\system32\dllcache\rasirda.sys
2010-10-25 15:58:58 28032 -c--a-w- c:\windows2\system32\dllcache\perm3.sys
2010-10-25 15:57:59 91488 -c--a-w- c:\windows2\system32\dllcache\n9i3disp.dll
2010-10-25 15:56:59 15232 -c--a-w- c:\windows2\system32\dllcache\mpe.sys
2010-10-25 15:55:55 14592 -c--a-w- c:\windows2\system32\dllcache\kbdhid.sys
2010-10-25 15:54:59 28700 -c--a-w- c:\windows2\system32\dllcache\ibmexmp.sys
2010-10-25 15:53:56 92160 -c--a-w- c:\windows2\system32\dllcache\fuusd.dll
2010-10-25 15:52:55 8320 -c--a-w- c:\windows2\system32\dllcache\dlttape.sys
2010-10-25 15:51:59 980034 -c--a-w- c:\windows2\system32\dllcache\cicap.sys
2010-10-25 15:50:59 2944 -c--a-w- c:\windows2\system32\dllcache\brfilt.sys
2010-10-25 15:49:31 46112 -c--a-w- c:\windows2\system32\dllcache\adptsf50.sys
2010-10-25 15:48:55 66048 -c--a-w- c:\windows2\system32\dllcache\s3legacy.dll
2010-10-25 15:06:08 -------- dc----w- c:\windows2\system32\wbem\repository\FS
2010-10-25 15:06:08 -------- dc----w- c:\windows2\system32\wbem\Repository
2010-10-25 15:05:36 -------- d-----w- c:\program files\DivX
2010-10-25 15:05:32 -------- d-----w- c:\program files\DivXCodec
2010-10-25 14:44:19 -------- dc----w- c:\windows2\SxsCaPendDel
2010-10-25 14:44:17 -------- d-----w- c:\program files\CCleaner
2010-10-25 13:59:35 -------- d-----w- c:\program files\COMODO
2010-10-25 13:57:37 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Comodo
2010-10-24 12:33:12 -------- dc----w- c:\windows2\ERUNT
2010-10-23 16:15:42 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\FileCure
2010-10-09 08:56:49 -------- d-----w- c:\docume~1\USER\applic~1\FreeFileViewer
2010-10-09 08:54:22 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Norton
2010-10-09 08:54:20 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\Symantec
2010-10-09 08:53:59 -------- d-----w- c:\docume~1\alluse~1.win\applic~1\NortonInstaller
2010-10-09 08:53:48 -------- d-----w- c:\program files\Free Offers from Freeze.com
2010-10-03 07:42:07 -------- d-----w- c:\docume~1\USER\locals~1\applic~1\Adobe
2010-10-02 12:53:33 5632 -c--a-w- c:\windows2\system32\ptpusb.dll
2010-10-02 12:53:33 15104 -c--a-w- c:\windows2\system32\drivers\usbscan.sys
2010-10-02 12:53:33 15104 -c--a-w- c:\windows2\system32\dllcache\usbscan.sys
2010-10-02 12:53:31 159232 -c--a-w- c:\windows2\system32\ptpusd.dll

==================== Find3M ====================

2010-09-18 19:23:26 974848 -c--a-w- c:\windows2\system32\mfc42u.dll
2010-09-18 06:53:25 974848 -c--a-w- c:\windows2\system32\mfc42.dll
2010-09-18 06:53:25 954368 -c--a-w- c:\windows2\system32\mfc40.dll
2010-09-18 06:53:25 953856 -c--a-w- c:\windows2\system32\mfc40u.dll
2010-09-10 05:58:08 916480 -c--a-w- c:\windows2\system32\wininet.dll
2010-09-10 05:58:06 43520 -c--a-w- c:\windows2\system32\licmgr10.dll
2010-09-10 05:58:06 1469440 -c----w- c:\windows2\system32\inetcpl.cpl
2010-09-01 11:51:14 285824 -c--a-w- c:\windows2\system32\atmfd.dll
2010-08-31 13:42:52 1852800 -c--a-w- c:\windows2\system32\win32k.sys
2010-08-28 14:08:54 22 -csha-w- c:\docume~1\USER\applic~1\Sys6925.Config Collection.sys
2010-08-28 10:45:38 22 -csha-w- c:\windows2\Sys3390 SettingsCollection.bin
2010-08-27 08:02:29 119808 -c--a-w- c:\windows2\system32\t2embed.dll
2010-08-27 05:57:43 99840 -c--a-w- c:\windows2\system32\srvsvc.dll
2010-08-26 12:52:45 5120 -c--a-w- c:\windows2\system32\xpsp4res.dll
2010-08-23 16:12:04 617472 -c--a-w- c:\windows2\system32\comctl32.dll
2010-08-17 13:17:06 58880 -c--a-w- c:\windows2\system32\spoolsv.exe
2010-08-16 08:45:00 590848 -c--a-w- c:\windows2\system32\rpcrt4.dll

============= FINISH: 6:56:41.39 ===============

Edited by yukonrr, 26 October 2010 - 01:20 PM.


BC AdBot (Login to Remove)

 


#2 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 26 October 2010 - 01:29 PM

forgot to zip DDS attach file

Attached Files



#3 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:09:24 PM

Posted 26 October 2010 - 01:35 PM

Hello yukonrr,


Download and Run MBR Rootkit Scan
  • Please download MBR Rootkit Detector and save it on your desktop.
  • Go to Start >> Run then copy and paste the following line into the run box

    cmd /c "%userprofile%\desktop\mbr.exe" -t& start mbr.log

  • Select Run when you recieve a Security Warning
  • The process is automatic, a black DOS window will appear and disappear suddenly. This is normal.
  • A log file will the be created on your desktop where you ran mbr.exe from.
  • Copy and paste the contents of mbr.log on your next reply.

unite.jpg


#4 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 26 October 2010 - 01:43 PM

ok here it is seems a little short thou :huh:

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: WDC_WD800BB-00CAA1 rev.17.07W17 -> \Device\Ide\IdeDeviceP0T0L0-3

device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x81B37030]
3 CLASSPNP[0xF9EECFD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\00000057[0x81AD3F18]
5 ACPI[0xF9E63620] -> nt!IofCallDriver[0x804E37D5] -> \Device\Ide\IdeDeviceP0T0L0-3[0x81AEB7F0]
kernel: MBR read successfully
user & kernel MBR OK

#5 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:09:24 PM

Posted 26 October 2010 - 02:05 PM

That is all the log. Are you having any problems like popups, search redirects or serious slow down of the computer, at the moment?



We need to create an OTL Report
  • Please download OTL from one of the following mirrors:
  • Save it to your desktop.
  • Double click on the Posted Image icon on your desktop.
  • Click the "Scan All Users" checkbox.
    Under the Custom Scans/Fixes box at the bottom, paste in the following bold text.
    %systemroot%\system32\*.dll /lockedfiles
    %systemroot%\Tasks\*.job /lockedfiles
    %systemroot%\*. /mp /s
    %SYSTEMDRIVE%\*.exe
    netsvcs
    msconfig
    drivers32
    CREATERESTOREPOINT

  • Push the Posted Image button.
  • Two reports will open, copy and paste them in a reply here:
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized

unite.jpg


#6 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 26 October 2010 - 02:16 PM

no slow downs it loaded pretty fast and same with running it, i did have FF browser open when i did it i'll try again in a bit i'm just in the middle of updating MS from when i crashed (blue screen) GMER MS said my drivers/ software needs updating WHICH i wasn't able to do it just went through the motions and said i was up to date but now i see i wasn't and i've had auto update on but once thats done i'll try GMER and the 2nd option you sent

#7 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:09:24 PM

Posted 26 October 2010 - 02:43 PM

It would be better if you didn't do any updates for the moment, as doing so when you are infected, can sometimes cause more problems. You can leave the Gmer scan for now, just run OTL and then post back with the logs.

Thanks

unite.jpg


#8 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 26 October 2010 - 11:03 PM

little late but here's the reports OTL

OTL TEXT

OTL logfile created on: 26/10/2010 3:04:15 PM - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\******\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

224.00 Mb Total Physical Memory | 26.00 Mb Available Physical Memory | 12.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): C:\pagefile.sys 2000 3000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS2 | %ProgramFiles% = C:\Program Files
Drive C: | 74.50 Gb Total Space | 21.67 Gb Free Space | 29.09% Space Free | Partition Type: NTFS
Drive D: | 473.55 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 297.44 Gb Total Space | 114.44 Gb Free Space | 38.48% Space Free | Partition Type: NTFS
Drive G: | 232.88 Gb Total Space | 23.60 Gb Free Space | 10.14% Space Free | Partition Type: NTFS

Computer Name: ****** | User Name: ****** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/10/26 15:01:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
PRC - [2010/10/22 01:49:55 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
PRC - [2010/03/02 11:28:31 | 000,282,792 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/01/14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS2\explorer.exe
PRC - [2001/12/13 09:27:08 | 000,290,816 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\system32\khooker.exe
PRC - [2001/11/21 04:39:08 | 000,294,912 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\system32\SISAUDUT.EXE


========== Modules (SafeList) ==========

MOD - [2010/10/26 15:01:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
MOD - [2010/08/23 09:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS2\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\WINDOWS2\System32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
SRV - File not found [Disabled | Stopped] -- -- (NMIndexingService)
SRV - File not found [On_Demand | Stopped] -- -- (NBService)
SRV - File not found [Disabled | Stopped] -- C:\WINDOWS2\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS2\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)


========== Driver Services (SafeList) ==========

DRV - [2010/03/01 10:05:24 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS2\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/02/16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS2\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009/05/11 12:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/05/11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS2\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2008/10/09 15:42:42 | 000,017,408 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008/05/06 16:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/04/13 11:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2002/02/06 23:30:02 | 000,177,792 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2001/11/26 07:00:08 | 000,165,760 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\sis7012.sys -- (SiS7012) Service for AC'97 Sample Driver (WDM)
DRV - [2001/09/28 13:16:46 | 000,031,744 | R--- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2001/09/28 04:52:04 | 000,027,008 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS2\System32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2001/08/18 05:00:00 | 000,542,879 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\HSF_MSFT.sys -- (hsf_msft)
DRV - [2001/08/18 05:00:00 | 000,488,383 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_V124.sys -- (V124)
DRV - [2001/08/18 05:00:00 | 000,391,199 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_K56K.sys -- (K56)
DRV - [2001/08/18 05:00:00 | 000,289,887 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_FALL.sys -- (Fallback)
DRV - [2001/08/18 05:00:00 | 000,199,711 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_FAXX.sys -- (SoftFax)
DRV - [2001/08/18 05:00:00 | 000,115,807 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_FSKS.sys -- (Fsks)
DRV - [2001/08/18 05:00:00 | 000,067,167 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\HSF_BSC2.sys -- (basic2)
DRV - [2001/08/18 05:00:00 | 000,057,471 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\HSF_SAMP.sys -- (Rksample)
DRV - [2001/08/18 05:00:00 | 000,050,751 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_TONE.sys -- (Tones)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS2\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS2\system32\blank.htm
IE - HKU\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKU\S-1-5-21-682003330-343818398-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.0.10
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.3.5
FF - prefs.js..extensions.enabledItems: firefox@ghostery.com:2.4
FF - prefs.js..keyword.URL: "http://radiobar.toolbarhome.com/search.aspx?srch=ku&q="

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/10/25 02:02:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/10/22 01:50:12 | 000,000,000 | ---D | M]

[2010/06/15 08:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Extensions
[2010/10/26 05:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions
[2010/10/08 05:03:48 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2010/10/19 00:56:16 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2010/08/18 19:06:56 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/10/20 02:41:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\firefox@ghostery.com
[2010/10/25 08:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\radiobar@toolbar
[2010/10/25 01:47:05 | 000,001,589 | ---- | M] () -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\searchplugins\web-search.xml
[2010/10/26 05:32:40 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/05/04 00:01:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/12/05 23:31:00 | 000,114,688 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npmozax.dll

O1 HOSTS File: ([2001/08/18 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS2\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll File not found
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [Cmaudio] File not found
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [SiS KHooker] C:\WINDOWS2\system32\khooker.exe (Silicon Integrated Systems Corporation)
O4 - HKLM..\Run: [SiS7012Utility] C:\WINDOWS2\System32\SiSAudUt.exe (Silicon Integrated Systems Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab (Windows Live Safety Center Base Module)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1276613199795 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276613322888 (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 198.135.216.162 199.85.225.226 198.235.200.135
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS2\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\******\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\******\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/14 20:24:07 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/08/18 05:00:00 | 000,000,110 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{75d73b3d-78ff-11df-bf8b-00e0189fd4e4}\Shell - "" = AutoRun
O33 - MountPoints2\{75d73b3d-78ff-11df-bf8b-00e0189fd4e4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{75d73b3d-78ff-11df-bf8b-00e0189fd4e4}\Shell\AutoRun\command - "" = F:\Launcher.exe -- File not found
O33 - MountPoints2\{8d57b14e-ca22-11df-bfb9-00e0189fd4e4}\Shell - "" = AutoRun
O33 - MountPoints2\{8d57b14e-ca22-11df-bfb9-00e0189fd4e4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8d57b14e-ca22-11df-bfb9-00e0189fd4e4}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - C:\WINDOWS2\System32\appmgmts.dll File not found
NetSvcs: HidServ - C:\WINDOWS2\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0

Drivers32: msacm.iac2 - C:\WINDOWS2\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS2\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS2\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS2\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS2\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS2\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS2\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS2\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS2\System32\ir50_32.dll (Intel Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)

========== Files/Folders - Created Within 30 Days ==========

[2010/10/26 15:01:55 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
[2010/10/26 13:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Application Data\Windows Desktop Search
[2010/10/26 12:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010/10/26 12:16:10 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\WindowsPowerShell
[2010/10/26 12:16:08 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\winrm
[2010/10/26 12:15:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS2\$968930Uinstall_KB968930$
[2010/10/26 12:13:57 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\GroupPolicy
[2010/10/26 12:09:45 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\URTTEMP
[2010/10/26 11:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Local Settings\Application Data\WinZip
[2010/10/26 11:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010/10/26 06:22:22 | 001,317,464 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\******\Desktop\tk123.com.exe
[2010/10/26 02:30:31 | 000,000,000 | ---D | C] -- C:\Program Files\Support Tools
[2010/10/26 01:52:59 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\XPSViewer
[2010/10/26 01:50:56 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\prntvpt.dll
[2010/10/26 01:50:56 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\filterpipelineprintproc.dll
[2010/10/26 01:50:55 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\printfilterpipelinesvc.exe
[2010/10/26 01:50:54 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\xpsshhdr.dll
[2010/10/26 01:50:49 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\xpssvcs.dll
[2010/10/26 01:50:49 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\xpssvcs.dll
[2010/10/25 23:58:35 | 000,000,000 | R-SD | C] -- C:\WINDOWS2\assembly
[2010/10/25 23:56:23 | 000,000,000 | ---D | C] -- C:\WINDOWS2\Microsoft.NET
[2010/10/25 09:25:12 | 000,000,000 | ---D | C] -- C:\WINDOWS2\I386
[2010/10/25 09:04:32 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS2\System32\dllcache\xrxwiadr.dll
[2010/10/25 09:04:32 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS2\System32\dllcache\xrxwbtmp.dll
[2010/10/25 09:04:29 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\xrxflnch.exe
[2010/10/25 09:04:27 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\xlog.exe
[2010/10/25 09:04:25 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS2\System32\dllcache\xem336n5.sys
[2010/10/25 09:04:23 | 000,019,455 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wvchntxx.sys
[2010/10/25 09:04:20 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wstcodec.sys
[2010/10/25 09:04:18 | 000,012,063 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wsiintxx.sys
[2010/10/25 09:04:15 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wshirda.dll
[2010/10/25 09:03:54 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wmiacpi.sys
[2010/10/25 09:03:50 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS2\System32\dllcache\wlluc48.sys
[2010/10/25 09:03:49 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS2\System32\dllcache\wlandrv2.sys
[2010/10/25 09:03:40 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS2\System32\dllcache\winacisa.sys
[2010/10/25 09:03:34 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wiafbdrv.dll
[2010/10/25 09:03:34 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wiamsmud.dll
[2010/10/25 09:03:29 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\wdhaalba.sys
[2010/10/25 09:03:27 | 000,023,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wch7xxnt.sys
[2010/10/25 09:03:25 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS2\System32\dllcache\wbfirdma.sys
[2010/10/25 09:03:25 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wceusbsh.sys
[2010/10/25 09:03:21 | 000,033,599 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\watv04nt.sys
[2010/10/25 09:03:20 | 000,019,551 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\watv02nt.sys
[2010/10/25 09:03:18 | 000,029,311 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\watv01nt.sys
[2010/10/25 09:03:16 | 000,011,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wadv05nt.sys
[2010/10/25 09:03:14 | 000,012,127 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wadv02nt.sys
[2010/10/25 09:03:13 | 000,012,415 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wadv01nt.sys
[2010/10/25 09:03:12 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS2\System32\dllcache\w940nd.sys
[2010/10/25 09:03:11 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS2\System32\dllcache\w840nd.sys
[2010/10/25 09:03:11 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS2\System32\dllcache\w926nd.sys
[2010/10/25 09:03:09 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS2\System32\dllcache\vvoice.sys
[2010/10/25 09:03:07 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS2\System32\dllcache\vpctcom.sys
[2010/10/25 09:03:05 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\vmodem.sys
[2010/10/25 09:03:04 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\vinwm.sys
[2010/10/25 09:03:03 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS2\System32\dllcache\viairda.sys
[2010/10/25 09:03:02 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\viaide.sys
[2010/10/25 09:02:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\vfwwdm32.dll
[2010/10/25 09:02:57 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usrwdxjs.sys
[2010/10/25 09:02:56 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usrti.sys
[2010/10/25 09:02:55 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usrpda.sys
[2010/10/25 09:02:55 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usroslba.sys
[2010/10/25 09:02:54 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usr1807a.sys
[2010/10/25 09:02:53 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usr1806v.sys
[2010/10/25 09:02:53 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usr1806.sys
[2010/10/25 09:02:52 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usr1801.sys
[2010/10/25 09:02:49 | 000,020,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbuhci.sys
[2010/10/25 09:02:48 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbser.sys
[2010/10/25 09:02:46 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbprint.sys
[2010/10/25 09:02:44 | 000,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbccgp.sys
[2010/10/25 09:02:42 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbaudio.sys
[2010/10/25 09:02:40 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS2\System32\dllcache\usb101et.sys
[2010/10/25 09:02:36 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxud32.dll
[2010/10/25 09:02:36 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxu40.dll
[2010/10/25 09:02:35 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxu12.dll
[2010/10/25 09:02:35 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxu22.dll
[2010/10/25 09:02:34 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS2\System32\dllcache\umaxscan.dll
[2010/10/25 09:02:34 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxpcls.sys
[2010/10/25 09:02:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxp60.dll
[2010/10/25 09:02:33 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxcam.dll
[2010/10/25 09:02:32 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS2\System32\dllcache\um34scan.dll
[2010/10/25 09:02:32 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS2\System32\dllcache\um54scan.dll
[2010/10/25 09:02:31 | 000,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\ultra.sys
[2010/10/25 09:02:30 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\twotrack.sys
[2010/10/25 09:02:27 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridxpm.sys
[2010/10/25 09:02:26 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridxp.dll
[2010/10/25 09:02:26 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridkbm.sys
[2010/10/25 09:02:25 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridkb.dll
[2010/10/25 09:02:25 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\trid3d.dll
[2010/10/25 09:02:25 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\trid3dm.sys
[2010/10/25 09:02:24 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\tpro4.sys
[2010/10/25 09:02:23 | 000,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\tp4res.dll
[2010/10/25 09:02:21 | 000,082,944 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\tp4mon.exe
[2010/10/25 09:02:20 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\tp4.dll
[2010/10/25 09:02:18 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\toside.sys
[2010/10/25 09:02:17 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS2\System32\dllcache\tosdvd02.sys
[2010/10/25 09:02:17 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS2\System32\dllcache\tosdvd03.sys
[2010/10/25 09:02:16 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS2\System32\dllcache\tos4mo.sys
[2010/10/25 09:02:15 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS2\System32\dllcache\tjisdn.sys
[2010/10/25 09:02:11 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tgiulnt5.sys
[2010/10/25 09:02:10 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tgiul50.dll
[2010/10/25 09:02:09 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS2\System32\dllcache\tffsport.sys
[2010/10/25 09:02:07 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS2\System32\dllcache\tdkcd31.sys
[2010/10/25 09:02:06 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS2\System32\dllcache\tdk100b.sys
[2010/10/25 09:02:04 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS2\System32\dllcache\tbatm155.sys
[2010/10/25 09:02:02 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\t2r4mini.sys
[2010/10/25 09:02:02 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\tandqic.sys
[2010/10/25 09:02:01 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS2\System32\dllcache\t2r4disp.dll
[2010/10/25 09:01:58 | 000,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS2\System32\dllcache\symc8xx.sys
[2010/10/25 09:01:58 | 000,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS2\System32\dllcache\symc810.sys
[2010/10/25 09:01:57 | 000,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS2\System32\dllcache\sym_u3.sys
[2010/10/25 09:01:57 | 000,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS2\System32\dllcache\sym_hi.sys
[2010/10/25 09:01:56 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\sx.sys
[2010/10/25 09:01:56 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\sxports.dll
[2010/10/25 09:01:55 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\swpidflt.dll
[2010/10/25 09:01:55 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\swpdflt2.dll
[2010/10/25 09:01:55 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\swusbflt.sys
[2010/10/25 09:01:54 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sw_wheel.dll
[2010/10/25 09:01:54 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sw_effct.dll
[2010/10/25 09:01:52 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\streamip.sys
[2010/10/25 09:01:51 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS2\System32\dllcache\stlnprop.dll
[2010/10/25 09:01:50 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS2\System32\dllcache\stlncoin.dll
[2010/10/25 09:01:49 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS2\System32\dllcache\stlnata.sys
[2010/10/25 09:01:48 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS2\System32\dllcache\stcusb.sys
[2010/10/25 09:01:46 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS2\System32\dllcache\srwlnd5.sys
[2010/10/25 09:01:45 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\srusd.dll
[2010/10/25 09:01:42 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS2\System32\dllcache\spxupchk.dll
[2010/10/25 09:01:40 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS2\System32\dllcache\spdports.dll
[2010/10/25 09:01:40 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS2\System32\dllcache\speed.sys
[2010/10/25 09:01:39 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS2\System32\dllcache\sparrow.sys
[2010/10/25 09:01:38 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonypvu1.sys
[2010/10/25 09:01:37 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonypi.dll
[2010/10/25 09:01:37 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonypi.sys
[2010/10/25 09:01:36 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonync.sys
[2010/10/25 09:01:36 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sonymc.sys
[2010/10/25 09:01:34 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sonyait.sys
[2010/10/25 09:01:33 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\snyaitmc.sys
[2010/10/25 09:01:26 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS2\System32\dllcache\smiminib.sys
[2010/10/25 09:01:25 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS2\System32\dllcache\smidispb.dll
[2010/10/25 09:01:23 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS2\System32\dllcache\smcpwr2n.sys
[2010/10/25 09:01:22 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS2\System32\dllcache\smcirda.sys
[2010/10/25 09:01:22 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS2\System32\dllcache\smc8000n.sys
[2010/10/25 09:01:21 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smbhc.sys
[2010/10/25 09:01:20 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smbclass.sys
[2010/10/25 09:01:18 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smbbatt.sys
[2010/10/25 09:01:17 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smb3w.dll
[2010/10/25 09:01:17 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smb0w.dll
[2010/10/25 09:01:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sma0w.dll
[2010/10/25 09:01:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sm91w.dll
[2010/10/25 09:01:08 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\slip.sys
[2010/10/25 09:01:05 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS2\System32\dllcache\sla30nd5.sys
[2010/10/25 09:01:04 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS2\System32\dllcache\skfpwin.sys
[2010/10/25 09:01:03 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sisv256.dll
[2010/10/25 09:01:03 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS2\System32\dllcache\sk98xwin.sys
[2010/10/25 09:01:02 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sisv.sys
[2010/10/25 09:01:01 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis6306v.dll
[2010/10/25 09:01:00 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis300iv.dll
[2010/10/25 09:01:00 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis6306p.sys
[2010/10/25 09:00:59 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis300ip.sys
[2010/10/25 09:00:52 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS2\System32\dllcache\sgsmusb.sys
[2010/10/25 09:00:51 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\sgiulnt5.sys
[2010/10/25 09:00:51 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS2\System32\dllcache\sgsmld.sys
[2010/10/25 09:00:50 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\sgiul50.dll
[2010/10/25 09:00:50 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\sfmanm.sys
[2010/10/25 09:00:47 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sermouse.sys
[2010/10/25 09:00:47 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\serscan.sys
[2010/10/25 09:00:45 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\seaddsmc.sys
[2010/10/25 09:00:43 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\scsiprnt.sys
[2010/10/25 09:00:43 | 000,011,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\scsiscan.sys
[2010/10/25 09:00:41 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS2\System32\dllcache\scr111.sys
[2010/10/25 09:00:40 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS2\System32\dllcache\sccmusbm.sys
[2010/10/25 09:00:40 | 000,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\scmstcs.sys
[2010/10/25 09:00:39 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS2\System32\dllcache\sccmn50m.sys
[2010/10/25 09:00:37 | 000,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sbp2port.sys
[2010/10/25 09:00:36 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\sblfx.dll
[2010/10/25 09:00:34 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS2\System32\dllcache\s3savmx.dll
[2010/10/25 09:00:34 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav4m.sys
[2010/10/25 09:00:34 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS2\System32\dllcache\s3savmxm.sys
[2010/10/25 09:00:33 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav4.dll
[2010/10/25 09:00:33 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav3dm.sys
[2010/10/25 09:00:31 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mvirge.dll
[2010/10/25 09:00:31 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav3d.dll
[2010/10/25 09:00:30 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mtrio.dll
[2010/10/25 09:00:30 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mt3d.sys
[2010/10/25 09:00:29 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mt3d.dll
[2010/10/25 09:00:29 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3m.sys
[2010/10/25 09:00:28 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rwia450.dll
[2010/10/25 09:00:28 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\s3legacy.sys
[2010/10/25 09:00:27 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rwia430.dll
[2010/10/25 09:00:24 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rw450ext.dll
[2010/10/25 09:00:23 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rw430ext.dll
[2010/10/25 09:00:19 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS2\System32\dllcache\rtl8139.sys
[2010/10/25 09:00:19 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS2\System32\dllcache\rtl8029.sys
[2010/10/25 09:00:18 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS2\System32\dllcache\rthwcls.sys
[2010/10/25 09:00:14 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\rsmgrstr.dll
[2010/10/25 09:00:13 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS2\System32\dllcache\rpfun.sys
[2010/10/25 09:00:08 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS2\System32\dllcache\rocket.sys
[2010/10/25 09:00:06 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS2\System32\dllcache\rlnet5.sys
[2010/10/25 09:00:02 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\reslog32.dll
[2010/10/25 08:59:50 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\rasirda.sys
[2010/10/25 08:59:45 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\r2mdmkxx.sys
[2010/10/25 08:59:44 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\r2mdkxga.sys
[2010/10/25 08:59:43 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\qvusd.dll
[2010/10/25 08:59:43 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\qv2kux.sys
[2010/10/25 08:59:38 | 000,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS2\System32\dllcache\ql1280.sys
[2010/10/25 08:59:38 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ql1240.sys
[2010/10/25 08:59:37 | 000,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS2\System32\dllcache\ql12160.sys
[2010/10/25 08:59:36 | 000,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS2\System32\dllcache\ql1080.sys
[2010/10/25 08:59:36 | 000,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ql10wnt.sys
[2010/10/25 08:59:34 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\qic157.sys
[2010/10/25 08:59:31 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\ptserlv.sys
[2010/10/25 08:59:31 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\ptserlp.sys
[2010/10/25 08:59:30 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\ptserli.sys
[2010/10/25 08:59:29 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ptpusd.dll
[2010/10/25 08:59:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ptpusb.dll
[2010/10/25 08:59:25 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\psisload.dll
[2010/10/25 08:59:22 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS2\System32\dllcache\pscr.sys
[2010/10/25 08:59:15 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ppa.sys
[2010/10/25 08:59:15 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ppa3.sys
[2010/10/25 08:59:13 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\powerfil.sys
[2010/10/25 08:59:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\pnrmc.sys
[2010/10/25 08:59:05 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\phvfwext.dll
[2010/10/25 08:59:03 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\phildec.sys
[2010/10/25 08:59:03 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philtune.sys
[2010/10/25 08:59:02 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philcam2.sys
[2010/10/25 08:59:02 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philcam1.sys
[2010/10/25 08:59:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philcam1.dll
[2010/10/25 08:59:01 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\phdsext.ax
[2010/10/25 08:59:00 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm3dd.dll
[2010/10/25 08:58:58 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm3.sys
[2010/10/25 08:58:57 | 000,211,584 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm2dll.dll
[2010/10/25 08:58:56 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm2.sys
[2010/10/25 08:58:54 | 000,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\perc2.sys
[2010/10/25 08:58:54 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\perc2hib.sys
[2010/10/25 08:58:52 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS2\System32\dllcache\pcx500.sys
[2010/10/25 08:58:52 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS2\System32\dllcache\pctspk.exe
[2010/10/25 08:58:51 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS2\System32\dllcache\pcntpci5.sys
[2010/10/25 08:58:50 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS2\System32\dllcache\pcntn5hl.sys
[2010/10/25 08:58:50 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS2\System32\dllcache\pcntn5m.sys
[2010/10/25 08:58:49 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS2\System32\dllcache\pcmlm56.sys
[2010/10/25 08:58:47 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS2\System32\dllcache\pc100nds.sys
[2010/10/25 08:58:47 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\pca200e.sys
[2010/10/25 08:58:43 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovui2.dll
[2010/10/25 08:58:43 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovui2rc.dll
[2010/10/25 08:58:42 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcoms.exe
[2010/10/25 08:58:42 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovsound2.sys
[2010/10/25 08:58:41 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcodek2.sys
[2010/10/25 08:58:41 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcomc.dll
[2010/10/25 08:58:40 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcodec2.dll
[2010/10/25 08:58:40 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovce.sys
[2010/10/25 08:58:39 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcam2.sys
[2010/10/25 08:58:39 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcd.sys
[2010/10/25 08:58:38 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\otcsercb.sys
[2010/10/25 08:58:38 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovca.sys
[2010/10/25 08:58:37 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\otceth5.sys
[2010/10/25 08:58:37 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\otc06x5.sys
[2010/10/25 08:58:36 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS2\System32\dllcache\opl3sax.sys
[2010/10/25 08:58:33 | 000,061,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ohci1394.sys
[2010/10/25 08:58:29 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS2\System32\dllcache\nv3.sys
[2010/10/25 08:58:28 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS2\System32\dllcache\nv3.dll
[2010/10/25 08:58:23 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS2\System32\dllcache\ntgrip.sys
[2010/10/25 08:58:21 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ntapm.sys
[2010/10/25 08:58:21 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\nsmmc.sys
[2010/10/25 08:58:20 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS2\System32\dllcache\nscirda.sys
[2010/10/25 08:58:15 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\nm5a2wdm.sys
[2010/10/25 08:58:15 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\nm6wdm.sys
[2010/10/25 08:58:11 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS2\System32\dllcache\ngrpci.sys
[2010/10/25 08:58:10 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS2\System32\dllcache\netwlan5.sys
[2010/10/25 08:58:06 | 000,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\netflx3.sys
[2010/10/25 08:58:05 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\neo20xx.sys
[2010/10/25 08:58:04 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\neo20xx.dll
[2010/10/25 08:58:04 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ne2000.sys
[2010/10/25 08:58:03 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ndisip.sys
[2010/10/25 08:58:00 | 000,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\nabtsfec.sys
[2010/10/25 08:57:59 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i3disp.dll
[2010/10/25 08:57:59 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i3d.sys
[2010/10/25 08:57:58 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128v2.sys
[2010/10/25 08:57:57 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128v2.dll
[2010/10/25 08:57:57 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128.sys
[2010/10/25 08:57:56 | 000,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\n100325.sys
[2010/10/25 08:57:56 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128.dll
[2010/10/25 08:57:55 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\mxport.sys
[2010/10/25 08:57:55 | 000,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\n1000nt5.sys
[2010/10/25 08:57:54 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS2\System32\dllcache\mxnic.sys
[2010/10/25 08:57:54 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS2\System32\dllcache\mxport.dll
[2010/10/25 08:57:53 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\mxcard.sys
[2010/10/25 08:57:53 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS2\System32\dllcache\mxicfg.dll
[2010/10/25 08:57:46 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS2\System32\dllcache\mtxvideo.sys
[2010/10/25 08:57:37 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mstee.sys
[2010/10/25 08:57:36 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mstape.sys
[2010/10/25 08:57:32 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msriffwv.sys
[2010/10/25 08:57:24 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msmpu401.sys
[2010/10/25 08:57:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msircomm.sys
[2010/10/25 08:57:09 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msgame.sys
[2010/10/25 08:57:08 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msfsio.sys
[2010/10/25 08:57:06 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msdv.sys
[2010/10/25 08:57:02 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS2\System32\dllcache\mraid35x.sys
[2010/10/25 08:56:59 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mpe.sys
[2010/10/25 08:56:56 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\modemcsa.sys
[2010/10/25 08:56:52 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\miniqic.sys
[2010/10/25 08:56:49 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\mgaum.sys
[2010/10/25 08:56:48 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\mgaud.dll
[2010/10/25 08:56:46 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\memgrp.dll
[2010/10/25 08:56:46 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\memstpci.sys
[2010/10/25 08:56:45 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\memcard.sys
[2010/10/25 08:56:44 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS2\System32\dllcache\mdgndis5.sys
[2010/10/25 08:56:41 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mammoth.sys
[2010/10/25 08:56:39 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\maestro.sys
[2010/10/25 08:56:38 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\m3092dc.dll
[2010/10/25 08:56:38 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\m3091dc.dll
[2010/10/25 08:56:37 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS2\System32\dllcache\lwusbhid.sys
[2010/10/25 08:56:36 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS2\System32\dllcache\lwadihid.sys
[2010/10/25 08:56:35 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltsmt.sys
[2010/10/25 08:56:34 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS2\System32\dllcache\ltsm.sys
[2010/10/25 08:56:34 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ltotape.sys
[2010/10/25 08:56:33 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltmdmntt.sys
[2010/10/25 08:56:32 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltmdmntl.sys
[2010/10/25 08:56:31 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\ltck000c.sys
[2010/10/25 08:56:31 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltmdmnt.sys
[2010/10/25 08:56:29 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\loop.sys
[2010/10/25 08:56:26 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS2\System32\dllcache\lne100tx.sys
[2010/10/25 08:56:26 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS2\System32\dllcache\lne100.sys
[2010/10/25 08:56:25 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS2\System32\dllcache\lmndis3.sys
[2010/10/25 08:56:24 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS2\System32\dllcache\lit220p.sys
[2010/10/25 08:56:23 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS2\System32\dllcache\lbrtfdc.sys
[2010/10/25 08:56:22 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS2\System32\dllcache\lanepic5.sys
[2010/10/25 08:56:21 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS2\System32\dllcache\ktc111.sys
[2010/10/25 08:56:20 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ksxbar.ax
[2010/10/25 08:56:19 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kswdmcap.ax
[2010/10/25 08:56:18 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kstvtune.ax
[2010/10/25 08:56:17 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kousd.dll
[2010/10/25 08:56:14 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kdsusd.dll
[2010/10/25 08:56:13 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kdsui.dll
[2010/10/25 08:56:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbdjpn.dll
[2010/10/25 08:56:01 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbdkor.dll
[2010/10/25 08:55:55 | 000,014,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbdhid.sys
[2010/10/25 08:55:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd106.dll
[2010/10/25 08:55:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd101c.dll
[2010/10/25 08:55:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd103.dll
[2010/10/25 08:55:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd101b.dll
[2010/10/25 08:55:41 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS2\System32\dllcache\irstusb.sys
[2010/10/25 08:55:41 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irsir.sys
[2010/10/25 08:55:40 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irmon.dll
[2010/10/25 08:55:39 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irftp.exe
[2010/10/25 08:55:39 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS2\System32\dllcache\irmk7.sys
[2010/10/25 08:55:38 | 000,088,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irda.sys
[2010/10/25 08:55:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ipsink.ax
[2010/10/25 08:55:33 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\io8ports.dll
[2010/10/25 08:55:33 | 000,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS2\System32\dllcache\ip5515.sys
[2010/10/25 08:55:32 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\io8.sys
[2010/10/25 08:55:31 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\intelide.sys
[2010/10/25 08:55:30 | 000,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\inport.sys
[2010/10/25 08:55:29 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ini910u.sys
[2010/10/25 08:55:05 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\iconf32.dll
[2010/10/25 08:55:04 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam5usb.sys
[2010/10/25 08:55:04 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam5com.dll
[2010/10/25 08:55:04 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam5ext.dll
[2010/10/25 08:55:03 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam4usb.sys
[2010/10/25 08:55:03 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam4ext.dll
[2010/10/25 08:55:02 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam4com.dll
[2010/10/25 08:55:02 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam3ext.dll
[2010/10/25 08:55:01 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam3.sys
[2010/10/25 08:55:01 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ibmvcap.sys
[2010/10/25 08:55:00 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\ibmtrp.sys
[2010/10/25 08:55:00 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\ibmtok.sys
[2010/10/25 08:55:00 | 000,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\ibmsgnet.dll
[2010/10/25 08:54:59 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS2\System32\dllcache\ibmexmp.sys
[2010/10/25 08:54:57 | 000,161,020 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\i81xnt5.sys
[2010/10/25 08:54:56 | 000,702,845 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\i81xdnt5.dll
[2010/10/25 08:54:55 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\i740dnt5.dll
[2010/10/25 08:54:55 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\i740nt5.sys
[2010/10/25 08:54:54 | 000,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\i2omp.sys
[2010/10/25 08:54:53 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\i2omgmt.sys
[2010/10/25 08:54:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hr1w.dll
[2010/10/25 08:54:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpsjmcro.dll
[2010/10/25 08:54:28 | 000,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpt4qic.sys
[2010/10/25 08:54:27 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpojwia.dll
[2010/10/25 08:54:27 | 000,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpn.sys
[2010/10/25 08:54:26 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS2\System32\dllcache\hpgt53tk.dll
[2010/10/25 08:54:26 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgtmcro.dll
[2010/10/25 08:54:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgt42tk.dll
[2010/10/25 08:54:24 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS2\System32\dllcache\hpgt34tk.dll
[2010/10/25 08:54:24 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgt33tk.dll
[2010/10/25 08:54:23 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgt21tk.dll
[2010/10/25 08:54:22 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpdigwia.dll
[2010/10/25 08:54:19 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidswvd.sys
[2010/10/25 08:54:18 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidserv.dll
[2010/10/25 08:54:18 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidgame.sys
[2010/10/25 08:54:17 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidbatt.sys
[2010/10/25 08:54:15 | 000,907,456 | ---- | C] (Conexant) -- C:\WINDOWS2\System32\dllcache\hcf_msft.sys
[2010/10/25 08:54:13 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS2\System32\dllcache\grserial.sys
[2010/10/25 08:54:12 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS2\System32\dllcache\grclass.sys
[2010/10/25 08:54:12 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS2\System32\dllcache\gpr400.sys
[2010/10/25 08:54:09 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\gckernel.sys
[2010/10/25 08:54:08 | 000,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g400m.sys
[2010/10/25 08:54:07 | 001,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g400d.dll
[2010/10/25 08:54:07 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g200m.sys
[2010/10/25 08:54:06 | 000,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g200d.dll
[2010/10/25 08:54:06 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fxusbase.sys
[2010/10/25 08:53:56 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\fuusd.dll
[2010/10/25 08:53:55 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fus2base.sys
[2010/10/25 08:53:55 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fusbbase.sys
[2010/10/25 08:53:52 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fpnpbase.sys
[2010/10/25 08:53:50 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fpcibase.sys
[2010/10/25 08:53:50 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fpcmbase.sys
[2010/10/25 08:53:48 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\forehe.sys
[2010/10/25 08:53:47 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\fnfilter.dll
[2010/10/25 08:53:44 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS2\System32\dllcache\fetnd5.sys
[2010/10/25 08:53:43 | 000,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\fem556n5.sys
[2010/10/25 08:53:41 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS2\System32\dllcache\fa410nd5.sys
[2010/10/25 08:53:40 | 000,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS2\System32\dllcache\fa312nd5.sys
[2010/10/25 08:53:40 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS2\System32\dllcache\f3ab18xj.sys
[2010/10/25 08:53:39 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS2\System32\dllcache\f3ab18xi.sys
[2010/10/25 08:53:38 | 000,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\ex10.sys
[2010/10/25 08:53:38 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\exabyte2.sys
[2010/10/25 08:53:35 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esunib.dll
[2010/10/25 08:53:34 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esuni.dll
[2010/10/25 08:53:33 | 000,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esucm.dll
[2010/10/25 08:53:33 | 000,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esuimg.dll
[2010/10/25 08:53:32 | 000,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\essm2e.sys
[2010/10/25 08:53:31 | 000,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\ess.sys
[2010/10/25 08:53:30 | 000,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es56hpi.sys
[2010/10/25 08:53:30 | 000,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es56tpi.sys
[2010/10/25 08:53:29 | 000,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es56cvmp.sys
[2010/10/25 08:53:29 | 000,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es198x.sys
[2010/10/25 08:53:29 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS2\System32\dllcache\es1969.sys
[2010/10/25 08:53:28 | 000,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\es1371mp.sys
[2010/10/25 08:53:27 | 000,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqnloop.exe
[2010/10/25 08:53:27 | 000,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\es1370mp.sys
[2010/10/25 08:53:26 | 000,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqndiag.exe
[2010/10/25 08:53:26 | 000,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqnlogr.exe
[2010/10/25 08:53:25 | 000,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqn.sys
[2010/10/25 08:53:25 | 000,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\epstw2k.sys
[2010/10/25 08:53:25 | 000,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\epro4.sys
[2010/10/25 08:53:24 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\epcfw2k.sys
[2010/10/25 08:53:24 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\enum1394.sys
[2010/10/25 08:53:23 | 000,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\emu10k1m.sys
[2010/10/25 08:53:22 | 000,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\elnk3.sys
[2010/10/25 08:53:22 | 000,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\em556n4.sys
[2010/10/25 08:53:21 | 000,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el99xn51.sys
[2010/10/25 08:53:21 | 000,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el98xn5.sys
[2010/10/25 08:53:21 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\elmsmc.sys
[2010/10/25 08:53:20 | 000,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS2\System32\dllcache\el985n51.sys
[2010/10/25 08:53:20 | 000,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el90xnd5.sys
[2010/10/25 08:53:19 | 000,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el90xbc5.sys
[2010/10/25 08:53:18 | 000,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656se5.sys
[2010/10/25 08:53:18 | 000,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656nd5.sys
[2010/10/25 08:53:17 | 000,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656ct5.sys
[2010/10/25 08:53:17 | 000,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656cd5.sys
[2010/10/25 08:53:16 | 000,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el575nd5.sys
[2010/10/25 08:53:16 | 000,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el589nd5.sys
[2010/10/25 08:53:15 | 000,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el556nd5.sys
[2010/10/25 08:53:15 | 000,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el574nd4.sys
[2010/10/25 08:53:14 | 000,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el515.sys
[2010/10/25 08:53:13 | 000,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\e100isa4.sys
[2010/10/25 08:53:12 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\e100b325.sys
[2010/10/25 08:53:12 | 000,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\e1000nt5.sys
[2010/10/25 08:53:08 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dshowext.ax
[2010/10/25 08:53:07 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS2\System32\dllcache\ds1wdm.sys
[2010/10/25 08:53:05 | 000,020,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dpti2o.sys
[2010/10/25 08:53:02 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS2\System32\dllcache\dp83820.sys
[2010/10/25 08:53:01 | 000,023,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4usb.sys
[2010/10/25 08:53:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4scan.sys
[2010/10/25 08:53:00 | 000,206,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4.sys
[2010/10/25 08:53:00 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4prt.sys
[2010/10/25 08:52:55 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS2\System32\dllcache\dm9pci5.sys
[2010/10/25 08:52:55 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dlttape.sys
[2010/10/25 08:52:54 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\diwan.sys
[2010/10/25 08:52:54 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS2\System32\dllcache\dlh5xnd5.sys
[2010/10/25 08:52:52 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\ditrace.exe
[2010/10/25 08:52:52 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\disrvsu.dll
[2010/10/25 08:52:51 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\disrvpp.dll
[2010/10/25 08:52:51 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\disrvci.dll
[2010/10/25 08:52:49 | 000,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiview.exe
[2010/10/25 08:52:49 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\dimaint.sys
[2010/10/25 08:52:48 | 000,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS2\System32\dllcache\digirlpt.dll
[2010/10/25 08:52:48 | 000,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS2\System32\dllcache\digirlpt.sys
[2010/10/25 08:52:47 | 000,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiinf.dll
[2010/10/25 08:52:47 | 000,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiisdn.dll
[2010/10/25 08:52:47 | 000,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiisdn.sys
[2010/10/25 08:52:46 | 000,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digifwrk.dll
[2010/10/25 08:52:46 | 000,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digihlc.dll
[2010/10/25 08:52:45 | 000,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digidbp.dll
[2010/10/25 08:52:45 | 000,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digidxb.sys
[2010/10/25 08:52:45 | 000,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digifep5.sys
[2010/10/25 08:52:44 | 000,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiasyn.dll
[2010/10/25 08:52:44 | 000,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiasyn.sys
[2010/10/25 08:52:42 | 000,419,357 | ---- | C] (Digi International) -- C:\WINDOWS2\System32\dllcache\dgconfig.dll
[2010/10/25 08:52:41 | 000,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\dgapci.sys
[2010/10/25 08:52:41 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS2\System32\dllcache\dfe650d.sys
[2010/10/25 08:52:40 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS2\System32\dllcache\dfe650.sys
[2010/10/25 08:52:40 | 000,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\devldr32.exe
[2010/10/25 08:52:39 | 000,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\devcon32.dll
[2010/10/25 08:52:38 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS2\System32\dllcache\defpa.sys
[2010/10/25 08:52:38 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ddsmc.sys
[2010/10/25 08:52:36 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc260usd.dll
[2010/10/25 08:52:36 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc240usd.dll
[2010/10/25 08:52:36 | 000,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS2\System32\dllcache\dc21x4.sys
[2010/10/25 08:52:35 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc210usd.dll
[2010/10/25 08:52:35 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc210_32.dll
[2010/10/25 08:52:33 | 000,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dac960nt.sys
[2010/10/25 08:52:32 | 000,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS2\System32\dllcache\dac2w2k.sys
[2010/10/25 08:52:30 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\d100ib5.sys
[2010/10/25 08:52:30 | 000,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyzport.sys
[2010/10/25 08:52:30 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyzports.dll
[2010/10/25 08:52:29 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyyports.dll
[2010/10/25 08:52:29 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyzcoins.dll
[2010/10/25 08:52:28 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyyport.sys
[2010/10/25 08:52:28 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyycoins.dll
[2010/10/25 08:52:28 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyclom-y.sys
[2010/10/25 08:52:27 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwrwdm.sys
[2010/10/25 08:52:27 | 000,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyclad-z.sys
[2010/10/25 08:52:26 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwcspud.sys
[2010/10/25 08:52:26 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwcwdm.sys
[2010/10/25 08:52:25 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwbwdm.sys
[2010/10/25 08:52:25 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwcosnt5.sys
[2010/10/25 08:52:25 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwbmidi.sys
[2010/10/25 08:52:24 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwbase.sys
[2010/10/25 08:52:23 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS2\System32\dllcache\ctmasetp.dll
[2010/10/25 08:52:23 | 000,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\ctwdm32.dll
[2010/10/25 08:52:22 | 000,096,256 | ---- | C] (Copyright © Creative Technology Ltd. 1994-2001) -- C:\WINDOWS2\System32\dllcache\ctlsb16.sys
[2010/10/25 08:52:22 | 000,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\ctljystk.sys
[2010/10/25 08:52:21 | 000,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\ctlfacem.sys
[2010/10/25 08:52:20 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\csamsp.dll
[2010/10/25 08:52:19 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS2\System32\dllcache\cpscan.dll
[2010/10/25 08:52:19 | 000,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS2\System32\dllcache\crtaud.sys
[2010/10/25 08:52:18 | 000,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS2\System32\dllcache\cpqtrnd5.sys
[2010/10/25 08:52:17 | 000,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\cpqndis5.sys
[2010/10/25 08:52:17 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cpqarray.sys
[2010/10/25 08:52:12 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\compbatt.sys
[2010/10/25 08:52:10 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cnusd.dll
[2010/10/25 08:52:10 | 000,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS2\System32\dllcache\cnxt1803.sys
[2010/10/25 08:52:07 | 000,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\cmdide.sys
[2010/10/25 08:52:06 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS2\System32\dllcache\cmbp0wdm.sys
[2010/10/25 08:52:05 | 000,013,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cmbatt.sys
[2010/10/25 08:52:04 | 000,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cl546xm.sys
[2010/10/25 08:52:04 | 000,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cl546x.dll
[2010/10/25 08:52:03 | 000,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cl5465.dll
[2010/10/25 08:52:03 | 000,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cirrus.sys
[2010/10/25 08:52:02 | 000,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cirrus.dll
[2010/10/25 08:52:00 | 000,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\cinemclc.sys
[2010/10/25 08:51:59 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\cicap.sys
[2010/10/25 08:51:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\changer.sys
[2010/10/25 08:51:51 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cem56n5.sys
[2010/10/25 08:51:50 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\ce3n5.sys
[2010/10/25 08:51:50 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cem33n5.sys
[2010/10/25 08:51:50 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cem28n5.sys
[2010/10/25 08:51:49 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\ce2n5.sys
[2010/10/25 08:51:48 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cd20xrnt.sys
[2010/10/25 08:51:47 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cbmdmkxx.sys
[2010/10/25 08:51:47 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ccdecode.sys
[2010/10/25 08:51:46 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cben5.sys
[2010/10/25 08:51:46 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS2\System32\dllcache\cb325.sys
[2010/10/25 08:51:45 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS2\System32\dllcache\cb102.sys
[2010/10/25 08:51:44 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\diapi2.sys
[2010/10/25 08:51:44 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS2\System32\dllcache\diapi2NT.dll
[2010/10/25 08:51:42 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext30.dll
[2010/10/25 08:51:42 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext30.ax
[2010/10/25 08:51:41 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext20.ax
[2010/10/25 08:51:41 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext20.dll
[2010/10/25 08:51:40 | 000,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camdrv30.sys
[2010/10/25 08:51:40 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camexo20.dll
[2010/10/25 08:51:40 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camexo20.ax
[2010/10/25 08:51:39 | 000,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camdro21.sys
[2010/10/25 08:51:39 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camdrv21.sys
[2010/10/25 08:51:09 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\bulltlp3.sys
[2010/10/25 08:51:07 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS2\System32\dllcache\brzwlan.sys
[2010/10/25 08:51:07 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brusbmdm.sys
[2010/10/25 08:51:07 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brusbscn.sys
[2010/10/25 08:51:06 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brserwdm.sys
[2010/10/25 08:51:06 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brserif.dll
[2010/10/25 08:51:05 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS2\System32\dllcache\brscnrsm.dll
[2010/10/25 08:51:04 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brparwdm.sys
[2010/10/25 08:51:04 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brparimg.sys
[2010/10/25 08:51:03 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmfusb.dll
[2010/10/25 08:51:02 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmfrsmg.exe
[2010/10/25 08:51:01 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\brmfcwia.dll
[2010/10/25 08:51:01 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmflpt.dll
[2010/10/25 08:51:00 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmfbidi.dll
[2010/10/25 08:51:00 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brfiltup.sys
[2010/10/25 08:50:59 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brfiltlo.sys
[2010/10/25 08:50:59 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brfilt.sys
[2010/10/25 08:50:58 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brevif.dll
[2010/10/25 08:50:57 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brbidiif.dll
[2010/10/25 08:50:57 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brcoinst.dll
[2010/10/25 08:50:55 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\binlsvc.dll
[2010/10/25 08:50:54 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\bdasup.sys
[2010/10/25 08:50:53 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS2\System32\dllcache\bcmdm.sys
[2010/10/25 08:50:53 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\bdaplgin.ax
[2010/10/25 08:50:52 | 000,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\bcm42u.sys
[2010/10/25 08:50:52 | 000,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\bcm42xx5.sys
[2010/10/25 08:50:52 | 000,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\bcm4e5.sys
[2010/10/25 08:50:50 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\banshee.sys
[2010/10/25 08:50:50 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\battc.sys
[2010/10/25 08:50:49 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\banshee.dll
[2010/10/25 08:50:49 | 000,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\b57xp32.sys
[2010/10/25 08:50:48 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\b1cbase.sys
[2010/10/25 08:50:48 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS2\System32\dllcache\aztw2320.sys
[2010/10/25 08:50:47 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\avmenum.dll
[2010/10/25 08:50:47 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\avmwan.sys
[2010/10/25 08:50:46 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\avmcoxp.dll
[2010/10/25 08:50:45 | 000,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\avcstrm.sys
[2010/10/25 08:50:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\avc.sys
[2010/10/25 08:50:44 | 000,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\avcaudio.sys
[2010/10/25 08:50:38 | 000,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atiragem.sys
[2010/10/25 08:50:37 | 000,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atiraged.dll
[2010/10/25 08:50:35 | 000,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atimpab.sys
[2010/10/25 08:50:35 | 000,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atimtai.sys
[2010/10/25 08:50:35 | 000,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atimpae.sys
[2010/10/25 08:50:34 | 000,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atidvai.dll
[2010/10/25 08:50:34 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\atievxx.exe
[2010/10/25 08:50:33 | 000,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atidrab.dll
[2010/10/25 08:50:33 | 000,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atidrae.dll
[2010/10/25 08:50:29 | 000,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS2\System32\dllcache\ati.sys
[2010/10/25 08:50:28 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ati.dll
[2010/10/25 08:50:27 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS2\System32\dllcache\aspndis3.sys
[2010/10/25 08:50:27 | 000,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS2\System32\dllcache\asc3550.sys
[2010/10/25 08:50:26 | 000,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS2\System32\dllcache\asc.sys
[2010/10/25 08:50:26 | 000,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\asc3350p.sys
[2010/10/25 08:50:24 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\apmbatt.sys
[2010/10/25 08:50:23 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS2\System32\dllcache\an983.sys
[2010/10/25 08:50:22 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS2\System32\dllcache\amb8002.sys
[2010/10/25 08:50:22 | 000,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\amsint.sys
[2010/10/25 08:50:21 | 000,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\aliide.sys
[2010/10/25 08:50:20 | 000,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\ali5261.sys
[2010/10/25 08:50:20 | 000,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\alifir.sys
[2010/10/25 08:50:19 | 000,056,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\aic78xx.sys
[2010/10/25 08:50:18 | 000,055,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\aic78u2.sys
[2010/10/25 08:50:18 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\aha154x.sys
[2010/10/25 08:50:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\agcgauge.ax
[2010/10/25 08:49:31 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\adpu160m.sys
[2010/10/25 08:49:31 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS2\System32\dllcache\adptsf50.sys
[2010/10/25 08:49:30 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\adm8830.sys
[2010/10/25 08:49:30 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\admjoy.sys
[2010/10/25 08:49:29 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\adm8810.sys
[2010/10/25 08:49:29 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\adm8820.sys
[2010/10/25 08:49:28 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS2\System32\dllcache\adm8511.sys
[2010/10/25 08:49:28 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\adicvls.sys
[2010/10/25 08:49:26 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS2\System32\dllcache\acerscad.dll
[2010/10/25 08:49:25 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS2\System32\dllcache\ac97sis.sys
[2010/10/25 08:49:25 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS2\System32\dllcache\ac97via.sys
[2010/10/25 08:49:24 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\ac97ali.sys
[2010/10/25 08:49:24 | 000,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\ac97intc.sys
[2010/10/25 08:49:24 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\abp480n5.sys
[2010/10/25 08:49:23 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS2\System32\dllcache\a3dapi.dll
[2010/10/25 08:49:22 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\8514a.dll
[2010/10/25 08:49:21 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\3dfxvsm.sys
[2010/10/25 08:49:21 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\61883.sys
[2010/10/25 08:49:21 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\4mmdat.sys
[2010/10/25 08:49:20 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS2\System32\dllcache\3cwmcru.sys
[2010/10/25 08:49:20 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\3dfxvs.dll
[2010/10/25 08:49:19 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\1394vdbg.sys
[2010/10/25 08:49:18 | 000,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\1394bus.sys
[2010/10/25 08:48:55 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\s3legacy.dll
[2010/10/25 08:05:36 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2010/10/25 08:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\DivXCodec
[2010/10/25 07:56:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\******\Recent
[2010/10/25 07:44:19 | 000,000,000 | ---D | C] -- C:\WINDOWS2\SxsCaPendDel
[2010/10/25 07:44:17 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010/10/25 06:59:35 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2010/10/25 06:57:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\Comodo
[2010/10/24 05:33:12 | 000,000,000 | ---D | C] -- C:\WINDOWS2\ERUNT
[2010/10/23 10:15:01 | 006,776,168 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\******\My Documents\WindowsUpdateAgent30-x86.exe
[2010/10/23 09:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\FileCure
[2010/10/09 01:56:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Application Data\FreeFileViewer
[2010/10/09 01:54:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\Norton
[2010/10/09 01:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\Symantec
[2010/10/09 01:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\NortonInstaller
[2010/10/09 01:53:48 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2010/10/03 00:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Local Settings\Application Data\Adobe
[2010/10/02 05:58:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Application Data\U3
[2010/10/02 05:53:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbscan.sys
[2010/10/02 05:53:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\ptpusb.dll
[2010/10/02 05:53:31 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\ptpusd.dll
[4 C:\WINDOWS2\System32\*.tmp files -> C:\WINDOWS2\System32\*.tmp -> ]
[2 C:\WINDOWS2\System32\dllcache\*.tmp files -> C:\WINDOWS2\System32\dllcache\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2010/10/26 15:01:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
[2010/10/26 14:54:07 | 000,002,048 | --S- | M] () -- C:\WINDOWS2\bootstat.dat
[2010/10/26 12:53:35 | 000,523,254 | ---- | M] () -- C:\WINDOWS2\System32\perfh009.dat
[2010/10/26 12:53:35 | 000,095,044 | ---- | M] () -- C:\WINDOWS2\System32\perfc009.dat
[2010/10/26 12:17:32 | 000,001,393 | ---- | M] () -- C:\WINDOWS2\imsins.BAK
[2010/10/26 12:14:23 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Windows Search.lnk
[2010/10/26 12:03:50 | 000,013,002 | ---- | M] () -- C:\WINDOWS2\System32\wpa.dbl
[2010/10/26 11:39:06 | 000,080,384 | ---- | M] () -- C:\Documents and Settings\******\Desktop\mbr.exe
[2010/10/26 11:28:38 | 000,004,605 | ---- | M] () -- C:\Documents and Settings\******\Desktop\DDS Attach.zip
[2010/10/26 11:26:14 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS2\Desktop\WinZip.lnk
[2010/10/26 11:23:49 | 016,262,472 | ---- | M] () -- C:\Documents and Settings\******\My Documents\winzip145.exe
[2010/10/26 10:40:23 | 234,487,808 | ---- | M] () -- C:\WINDOWS2\MEMORY.DMP
[2010/10/26 06:54:09 | 000,545,280 | ---- | M] () -- C:\Documents and Settings\******\Desktop\dds.scr
[2010/10/26 06:51:18 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\******\defogger_reenable
[2010/10/26 06:50:04 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\******\Desktop\Defogger.exe
[2010/10/26 06:22:23 | 001,317,464 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\******\Desktop\tk123.com.exe
[2010/10/26 06:07:19 | 000,000,335 | ---- | M] () -- C:\Documents and Settings\******\Desktop\FixExe.reg
[2010/10/26 06:04:21 | 000,294,912 | ---- | M] () -- C:\Documents and Settings\******\Desktop\glo07kyc.exe
[2010/10/26 05:13:11 | 000,099,840 | ---- | M] () -- C:\Documents and Settings\******\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/26 04:16:06 | 000,000,167 | ---- | M] () -- C:\WINDOWS2\System32\spupdsvc.inf
[2010/10/26 02:13:37 | 000,095,072 | ---- | M] () -- C:\WINDOWS2\System32\FNTCACHE.DAT
[2010/10/25 01:44:51 | 000,001,324 | ---- | M] () -- C:\WINDOWS2\System32\d3d9caps.dat
[2010/10/24 07:14:04 | 000,000,290 | ---- | M] () -- C:\Documents and Settings\******\My Documents\cc_20101024_071401.reg
[2010/10/24 07:08:11 | 000,081,102 | ---- | M] () -- C:\Documents and Settings\******\My Documents\cc_20101024_070754.reg
[2010/10/24 07:05:14 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\******\Desktop\CCleaner.lnk
[2010/10/23 11:49:03 | 000,000,146 | ---- | M] () -- C:\Documents and Settings\******\default.pls
[2010/10/23 11:48:43 | 000,000,069 | ---- | M] () -- C:\WINDOWS2\NeroDigital.ini
[2010/10/23 10:15:07 | 006,776,168 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\******\My Documents\WindowsUpdateAgent30-x86.exe
[2010/10/23 09:41:00 | 003,327,000 | ---- | M] () -- C:\Documents and Settings\******\My Documents\WindowsXP-KB942288-v3-x86.exe
[2010/10/23 09:08:51 | 001,768,236 | ---- | M] () -- C:\Documents and Settings\******\My Documents\Windows6.0-KB942288-v2-x86.msu
[4 C:\WINDOWS2\System32\*.tmp files -> C:\WINDOWS2\System32\*.tmp -> ]
[2 C:\WINDOWS2\System32\dllcache\*.tmp files -> C:\WINDOWS2\System32\dllcache\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010/10/26 12:14:23 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Windows Search.lnk
[2010/10/26 11:40:56 | 000,000,646 | ---- | C] () -- C:\Documents and Settings\******\mbr.log
[2010/10/26 11:39:05 | 000,080,384 | ---- | C] () -- C:\Documents and Settings\******\Desktop\mbr.exe
[2010/10/26 11:28:38 | 000,004,605 | ---- | C] () -- C:\Documents and Settings\******\Desktop\DDS Attach.zip
[2010/10/26 11:26:14 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS2\Desktop\WinZip.lnk
[2010/10/26 11:23:29 | 016,262,472 | ---- | C] () -- C:\Documents and Settings\******\My Documents\winzip145.exe
[2010/10/26 06:54:08 | 000,545,280 | ---- | C] () -- C:\Documents and Settings\******\Desktop\dds.scr
[2010/10/26 06:51:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\******\defogger_reenable
[2010/10/26 06:50:03 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\******\Desktop\Defogger.exe
[2010/10/26 06:07:17 | 000,000,335 | ---- | C] () -- C:\Documents and Settings\******\Desktop\FixExe.reg
[2010/10/26 06:04:19 | 000,294,912 | ---- | C] () -- C:\Documents and Settings\******\Desktop\glo07kyc.exe
[2010/10/26 04:16:06 | 000,000,167 | ---- | C] () -- C:\WINDOWS2\System32\spupdsvc.inf
[2010/10/26 02:50:11 | 000,001,393 | ---- | C] () -- C:\WINDOWS2\imsins.BAK
[2010/10/25 09:04:30 | 000,018,944 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\xrxscnui.dll
[2010/10/25 09:04:29 | 000,027,648 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\xrxftplt.exe
[2010/10/25 08:59:26 | 000,033,280 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\psisrndr.ax
[2010/10/25 08:59:22 | 000,363,520 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\psisdecd.dll
[2010/10/25 08:57:07 | 000,056,832 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\msdvbnp.ax
[2010/10/25 08:54:26 | 000,165,888 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt53.dll
[2010/10/25 08:54:25 | 000,093,696 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt42.dll
[2010/10/25 08:54:24 | 000,101,376 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt34.dll
[2010/10/25 08:54:23 | 000,089,088 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt33.dll
[2010/10/25 08:54:22 | 000,083,968 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt21.dll
[2010/10/25 08:52:54 | 000,029,768 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\divasu.dll
[2010/10/25 08:52:53 | 000,037,962 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\divaprop.dll
[2010/10/25 08:52:53 | 000,006,216 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\divaci.dll
[2010/10/25 08:50:41 | 000,026,624 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\ativxbar.sys
[2010/10/25 08:50:41 | 000,023,552 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atixbar.sys
[2010/10/25 08:50:40 | 000,019,456 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\ativttxx.sys
[2010/10/25 08:50:40 | 000,009,472 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\ativmdcd.sys
[2010/10/25 08:50:39 | 000,017,152 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atitvsnd.sys
[2010/10/25 08:50:39 | 000,017,152 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atitunep.sys
[2010/10/25 08:50:38 | 000,049,920 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atirtcap.sys
[2010/10/25 08:50:38 | 000,026,880 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atirtsnd.sys
[2010/10/25 08:50:37 | 000,010,240 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atipcxxx.sys
[2010/10/25 08:50:32 | 000,046,464 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atibt829.sys
[2010/10/24 07:14:02 | 000,000,290 | ---- | C] () -- C:\Documents and Settings\******\My Documents\cc_20101024_071401.reg
[2010/10/24 07:07:58 | 000,081,102 | ---- | C] () -- C:\Documents and Settings\******\My Documents\cc_20101024_070754.reg
[2010/10/24 07:05:14 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\******\Desktop\CCleaner.lnk
[2010/10/23 11:46:36 | 000,000,069 | ---- | C] () -- C:\WINDOWS2\NeroDigital.ini
[2010/10/23 09:09:57 | 003,327,000 | ---- | C] () -- C:\Documents and Settings\******\My Documents\WindowsXP-KB942288-v3-x86.exe
[2010/10/23 09:08:50 | 001,768,236 | ---- | C] () -- C:\Documents and Settings\******\My Documents\Windows6.0-KB942288-v2-x86.msu
[2010/08/28 07:08:54 | 000,000,022 | -HS- | C] () -- C:\Documents and Settings\******\Application Data\Sys6925.Config Collection.sys
[2010/06/16 08:51:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS2\Irremote.ini
[2010/06/15 08:20:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS2\khooker.INI
[2010/06/15 08:06:13 | 000,151,552 | ---- | C] () -- C:\WINDOWS2\System32\setuplib.dll
[2010/06/15 08:05:33 | 000,002,942 | ---- | C] () -- C:\WINDOWS2\Ascd_tmp.ini
[2010/06/15 08:05:32 | 000,005,824 | ---- | C] () -- C:\WINDOWS2\System32\drivers\ASUSHWIO.SYS
[2010/06/14 20:57:06 | 000,099,840 | ---- | C] () -- C:\Documents and Settings\******\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/14 10:25:14 | 000,004,205 | ---- | C] () -- C:\WINDOWS2\ODBCINST.INI
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS2\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS2\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS2\System32\gthrctr.ini
[2006/07/05 02:46:23 | 000,049,498 | ---- | C] () -- C:\Program Files\ Terms.html
[2006/06/11 22:03:05 | 000,004,096 | ---- | C] () -- C:\Program Files\GameHistory.dat
[2003/02/19 01:26:28 | 000,028,672 | ---- | C] () -- C:\WINDOWS2\System32\cmirmdrv.dll

========== Custom Scans ==========


< %systemroot%\system32\*.dll /lockedfiles >
[4 C:\WINDOWS2\system32\*.tmp files -> C:\WINDOWS2\system32\*.tmp -> ]

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*. /mp /s >

< %SYSTEMDRIVE%\*.exe >

========== Files - Unicode (All) ==========
[2007/05/31 18:05:20 | 000,000,000 | ---D | M](C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\Mіcrosoft
[2007/05/31 18:05:20 | 000,000,000 | ---D | M](C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\Mіcrosoft
[2007/05/21 18:24:32 | 000,000,000 | ---D | M](C:\Program Files\??stem) -- C:\Program Files\ѕуstem
[2007/05/21 18:24:32 | 000,000,000 | ---D | M](C:\Program Files\??stem) -- C:\Program Files\ѕуstem
[2007/04/28 03:55:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Мicrosoft.NET
[2007/04/28 03:55:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Мicrosoft.NET
[2007/03/16 01:31:07 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\ѕystem32
[2007/03/16 01:31:07 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\ѕystem32
[2007/03/15 00:26:23 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\sеcurity
[2007/03/15 00:26:23 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\sеcurity
[2007/02/21 01:38:41 | 000,000,000 | ---D | M](C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\WіnSxS
[2007/02/21 01:38:41 | 000,000,000 | ---D | M](C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\WіnSxS
[2007/02/09 02:26:09 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\ΑppPatch
[2007/02/09 02:26:09 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\ΑppPatch
[2007/02/03 02:33:54 | 000,000,000 | ---D | M](C:\Program Files\F?nts) -- C:\Program Files\Fоnts
[2007/02/03 02:33:54 | 000,000,000 | ---D | M](C:\Program Files\F?nts) -- C:\Program Files\Fоnts
[2007/02/02 02:49:07 | 000,000,000 | ---D | M](C:\Program Files\S?mantec) -- C:\Program Files\Sуmantec
[2007/02/02 02:49:07 | 000,000,000 | ---D | M](C:\Program Files\S?mantec) -- C:\Program Files\Sуmantec
[2007/01/31 01:22:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\Міcrosoft.NET
[2007/01/31 01:22:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\Міcrosoft.NET
[2007/01/30 01:33:39 | 000,000,000 | ---D | M](C:\Program Files\??crosoft.NET) -- C:\Program Files\Μіcrosoft.NET
[2007/01/30 01:33:39 | 000,000,000 | ---D | M](C:\Program Files\??crosoft.NET) -- C:\Program Files\Μіcrosoft.NET
[2007/01/24 16:08:49 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Оracle
[2007/01/24 16:08:49 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Оracle
[2007/01/19 20:51:19 | 000,000,000 | ---D | M](C:\Program Files\s?stem) -- C:\Program Files\sуstem
[2007/01/19 20:51:19 | 000,000,000 | ---D | M](C:\Program Files\s?stem) -- C:\Program Files\sуstem
[2007/01/16 22:14:33 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Μicrosoft.NET
[2007/01/16 22:14:33 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Μicrosoft.NET
[2006/12/29 11:39:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\Μicrosoft
[2006/12/29 11:39:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\Μicrosoft
[2006/12/28 11:02:26 | 000,000,000 | ---D | M](C:\Program Files\?ystem) -- C:\Program Files\ѕystem
[2006/12/28 11:02:26 | 000,000,000 | ---D | M](C:\Program Files\?ystem) -- C:\Program Files\ѕystem
[2006/12/09 12:07:08 | 000,000,000 | ---D | M](C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\aѕsembly
[2006/12/09 12:07:08 | 000,000,000 | ---D | M](C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\aѕsembly
[2006/11/28 13:37:44 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\sуmbols
[2006/11/28 13:37:44 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\sуmbols
[2006/11/27 12:49:36 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\ѕymbols
[2006/11/27 12:49:36 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\ѕymbols
[2006/11/25 12:14:59 | 000,000,000 | ---D | M](C:\Program Files\M?crosoft.NET) -- C:\Program Files\Mіcrosoft.NET
[2006/11/25 12:14:59 | 000,000,000 | ---D | M](C:\Program Files\M?crosoft.NET) -- C:\Program Files\Mіcrosoft.NET
[2006/11/17 19:49:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\Таsks
[2006/11/17 19:49:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\Таsks
[2006/11/16 20:48:08 | 000,000,000 | ---D | M](C:\Program Files\?ecurity) -- C:\Program Files\ѕecurity
[2006/11/16 20:48:08 | 000,000,000 | ---D | M](C:\Program Files\?ecurity) -- C:\Program Files\ѕecurity
[2006/11/09 17:15:41 | 000,000,000 | ---D | M](C:\Program Files\s?mbols) -- C:\Program Files\sуmbols
[2006/11/09 17:15:41 | 000,000,000 | ---D | M](C:\Program Files\s?mbols) -- C:\Program Files\sуmbols
[2006/10/27 02:24:40 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Οracle
[2006/10/27 02:24:40 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Οracle
[2006/10/24 03:04:56 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\ѕуmbols
[2006/10/24 03:04:56 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\ѕуmbols
[2006/10/21 01:59:32 | 000,000,000 | ---D | M](C:\Program Files\?dobe) -- C:\Program Files\Αdobe
[2006/10/21 01:59:32 | 000,000,000 | ---D | M](C:\Program Files\?dobe) -- C:\Program Files\Αdobe
[2006/10/13 01:19:12 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\Ѕуmantec
[2006/10/13 01:19:12 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\Ѕуmantec
(C:\Program Files\s?stem) -- C:\Program Files\sуstem
(C:\Program Files\s?mbols) -- C:\Program Files\sуmbols
(C:\Program Files\S?mantec) -- C:\Program Files\Sуmantec
(C:\Program Files\M?crosoft.NET) -- C:\Program Files\Mіcrosoft.NET
(C:\Program Files\F?nts) -- C:\Program Files\Fоnts
(C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\WіnSxS
(C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\sуmbols
(C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\sеcurity
(C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\Mіcrosoft
(C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\aѕsembly
(C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\ѕystem32
(C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\ѕymbols
(C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Оracle
(C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Οracle
(C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\ΑppPatch
(C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Мicrosoft.NET
(C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Μicrosoft.NET
(C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\Μicrosoft
(C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\Таsks
(C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\ѕуmbols
(C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\Ѕуmantec
(C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\Міcrosoft.NET
(C:\Program Files\?ystem) -- C:\Program Files\ѕystem
(C:\Program Files\?ecurity) -- C:\Program Files\ѕecurity
(C:\Program Files\?dobe) -- C:\Program Files\Αdobe
(C:\Program Files\??stem) -- C:\Program Files\ѕуstem
(C:\Program Files\??crosoft.NET) -- C:\Program Files\Μіcrosoft.NET

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\******\My Documents\WindowsXP-KB942288-v3-x86.exe:SummaryInformation
@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users.WINDOWS2\Application Data\TEMP:B63300D1
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users.WINDOWS2\Application Data\TEMP:D1B5B4F1

< End of report >

OTL EXTRA


OTL Extras logfile created on: 26/10/2010 3:04:15 PM - Run 1
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\******\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

224.00 Mb Total Physical Memory | 26.00 Mb Available Physical Memory | 12.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): C:\pagefile.sys 2000 3000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS2 | %ProgramFiles% = C:\Program Files
Drive C: | 74.50 Gb Total Space | 21.67 Gb Free Space | 29.09% Space Free | Partition Type: NTFS
Drive D: | 473.55 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 297.44 Gb Total Space | 114.44 Gb Free Space | 38.48% Space Free | Partition Type: NTFS
Drive G: | 232.88 Gb Total Space | 23.60 Gb Free Space | 10.14% Space Free | Partition Type: NTFS

Computer Name: ****** | User Name: ****** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- C:\WINDOWS\hh.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
chm.file [open] -- "C:\WINDOWS\hh.exe" %1 (Microsoft Corporation)
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" %1 File not found
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office10\msohtmed.exe" /p %1 File not found
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004
"445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005
"137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001
"138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002
"5985:TCP" = 5985:TCP:*:Disabled:Windows Remote Management
"80:TCP" = 80:TCP:*:Disabled:Windows Remote Management - Compatibility Mode (HTTP-In)

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{8398B542-3CC4-44D9-83DF-696CCE70124B}" = Windows Support Tools
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BD}" = WinZip 14.5
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D642E38E-0D24-486C-9A2D-E316DD696F4B}" = Microsoft XML Parser
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"CCleaner" = CCleaner
"C-Media Audio Driver" = C-Media WDM Audio Driver
"ie8" = Windows Internet Explorer 8
"jv16 PowerTools 2010" = jv16 PowerTools 2010
"Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Mozilla Firefox (3.6.11)" = Mozilla Firefox (3.6.11)
"SiS 650" = SiS 650
"SiS7012" = SiS Audio Driver
"SiSLan" = SiS 900 PCI Fast Ethernet Adapter Driver
"USB 2.0 Setup program" = USB 2.0 Setup program
"Windows Live OneCare safety scanner" = Windows Live OneCare safety scanner
"Windows Media Format Runtime" = Windows Media Format Runtime
"Windows Media Player" = Windows Media Player 10
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = WinRAR archiver

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework CA' could not be installed. Error code 1603. Additional information is
available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework CRT' could not be installed. Error code 1603. Additional information
is available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework PreXP' could not be installed. Error code 1603. Additional information
is available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update 'Dr.
Watson' could not be installed. Error code 1603. Additional information is available
in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework 1' could not be installed. Error code 1603. Additional information is
available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework 2' could not be installed. Error code 1603. Additional information is
available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework ASP .NET' could not be installed. Error code 1603. Additional information
is available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:09:11 AM | Computer Name = ****** | Source = MsiInstaller | ID = 1023
Description = Product: Microsoft .NET Framework 2.0 Service Pack 2 - Update '.NET
Framework WinForms' could not be installed. Error code 1603. Additional information
is available in the log file C:\DOCUME~1\******\LOCALS~1\Temp\dd_NET_Framework20_Setup78C7.txt.

Error - 26/10/2010 4:22:43 AM | Computer Name = ****** | Source = Application Hang | ID = 1002
Description = Hanging application Launcher.exe, version 1.2.1.4040, hang module
hungapp, version 0.0.0.0, hang address 0x00000000.

Error - 26/10/2010 4:22:58 AM | Computer Name = ****** | Source = Application Hang | ID = 1001
Description = Fault bucket 222971871.

[ System Events ]
Error - 26/10/2010 4:12:53 PM | Computer Name = ****** | Source = atapi | ID = 262153
Description = The device, \Device\Ide\IdePort0, did not respond within the timeout
period.

Error - 26/10/2010 4:14:09 PM | Computer Name = ****** | Source = atapi | ID = 262153
Description = The device, \Device\Ide\IdePort0, did not respond within the timeout
period.

Error - 26/10/2010 4:17:07 PM | Computer Name = ****** | Source = atapi | ID = 262153
Description = The device, \Device\Ide\IdePort0, did not respond within the timeout
period.

Error - 26/10/2010 4:17:13 PM | Computer Name = ****** | Source = atapi | ID = 262153
Description = The device, \Device\Ide\IdePort0, did not respond within the timeout
period.

Error - 26/10/2010 5:46:17 PM | Computer Name = ****** | Source = sr | ID = 1
Description = The System Restore filter encountered the unexpected error '0xC000009A'
while processing the file 'ngen_service.lock' on the volume 'HarddiskVolume1'.
It has stopped monitoring the volume.

Error - 26/10/2010 5:50:24 PM | Computer Name = ****** | Source = Srv | ID = 2019
Description = The server was unable to allocate from the system nonpaged pool because
the pool was empty.

Error - 26/10/2010 5:54:35 PM | Computer Name = ****** | Source = Service Control Manager | ID = 7000
Description = The PLFlash DeviceIoControl Service service failed to start due to
the following error: %%2

Error - 26/10/2010 5:56:43 PM | Computer Name = ****** | Source = Service Control Manager | ID = 7022
Description = The Avira AntiVir Guard service hung on starting.

Error - 26/10/2010 5:58:05 PM | Computer Name = ****** | Source = Service Control Manager | ID = 7009
Description = Timeout (30000 milliseconds) waiting for the Application Layer Gateway
Service service to connect.

Error - 26/10/2010 5:58:05 PM | Computer Name = ****** | Source = Service Control Manager | ID = 7000
Description = The Application Layer Gateway Service service failed to start due
to the following error: %%1053


< End of report >

#9 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:09:24 PM

Posted 27 October 2010 - 06:01 AM

It looks like you have been replacing your username in the logs, with astrix's, if you have, before you run this OTL script, please go through it and change any entries with the astrix's back to your username. After you have run the OTL script, please try running Gmer once more and let me know if you are still having any other problems.


Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :OTL
    SRV - File not found [Auto | Stopped] -- C:\WINDOWS2\System32\IoctlSvc.exe -- (PLFlash DeviceIoControl Service)
    SRV - File not found [Disabled | Stopped] -- -- (NMIndexingService)
    SRV - File not found [On_Demand | Stopped] -- -- (NBService)
    FF - prefs.js..keyword.URL: "http://radiobar.toolbarhome.com/search.aspx?srch=ku&q="
    [2010/10/25 08:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\radiobar@toolbar
    O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll File not found
    O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll File not found
    O4 - HKLM..\Run: [Cmaudio] File not found
    O4 - HKLM..\Run: [KernelFaultCheck] File not found
    O9 - Extra Button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
    O9 - Extra 'Tools' menuitem : Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - Reg Error: Value error. File not found
    O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} Reg Error: Value error. (Java Plug-in 1.6.0_21)
    O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_21)
    O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} Reg Error: Value error. (Java Plug-in 1.6.0_21)
    O33 - MountPoints2\{75d73b3d-78ff-11df-bf8b-00e0189fd4e4}\Shell - "" = AutoRun
    O33 - MountPoints2\{75d73b3d-78ff-11df-bf8b-00e0189fd4e4}\Shell\AutoRun - "" = Auto&Play
    O33 - MountPoints2\{75d73b3d-78ff-11df-bf8b-00e0189fd4e4}\Shell\AutoRun\command - "" = F:\Launcher.exe -- File not found
    [2010/10/09 01:53:48 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com[2007/05/31 18:05:20 | 000,000,000 | ---D | M](C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\M?crosoft
    [2007/05/31 18:05:20 | 000,000,000 | ---D | M](C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\M?crosoft
    [2007/05/21 18:24:32 | 000,000,000 | ---D | M](C:\Program Files\??stem) -- C:\Program Files\??stem
    [2007/05/21 18:24:32 | 000,000,000 | ---D | M](C:\Program Files\??stem) -- C:\Program Files\??stem
    [2007/04/28 03:55:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\?icrosoft.NET
    [2007/04/28 03:55:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\?icrosoft.NET
    [2007/03/16 01:31:07 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\?ystem32
    [2007/03/16 01:31:07 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\?ystem32
    [2007/03/15 00:26:23 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\s?curity
    [2007/03/15 00:26:23 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\s?curity
    [2007/02/21 01:38:41 | 000,000,000 | ---D | M](C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\W?nSxS
    [2007/02/21 01:38:41 | 000,000,000 | ---D | M](C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\W?nSxS
    [2007/02/09 02:26:09 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\?ppPatch
    [2007/02/09 02:26:09 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\?ppPatch
    [2007/02/03 02:33:54 | 000,000,000 | ---D | M](C:\Program Files\F?nts) -- C:\Program Files\F?nts
    [2007/02/03 02:33:54 | 000,000,000 | ---D | M](C:\Program Files\F?nts) -- C:\Program Files\F?nts
    [2007/02/02 02:49:07 | 000,000,000 | ---D | M](C:\Program Files\S?mantec) -- C:\Program Files\S?mantec
    [2007/02/02 02:49:07 | 000,000,000 | ---D | M](C:\Program Files\S?mantec) -- C:\Program Files\S?mantec
    [2007/01/31 01:22:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\??crosoft.NET
    [2007/01/31 01:22:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\??crosoft.NET
    [2007/01/30 01:33:39 | 000,000,000 | ---D | M](C:\Program Files\??crosoft.NET) -- C:\Program Files\??crosoft.NET
    [2007/01/30 01:33:39 | 000,000,000 | ---D | M](C:\Program Files\??crosoft.NET) -- C:\Program Files\??crosoft.NET
    [2007/01/24 16:08:49 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\?racle
    [2007/01/24 16:08:49 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\?racle
    [2007/01/19 20:51:19 | 000,000,000 | ---D | M](C:\Program Files\s?stem) -- C:\Program Files\s?stem
    [2007/01/19 20:51:19 | 000,000,000 | ---D | M](C:\Program Files\s?stem) -- C:\Program Files\s?stem
    [2007/01/16 22:14:33 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\?icrosoft.NET
    [2007/01/16 22:14:33 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\?icrosoft.NET
    [2006/12/29 11:39:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\?icrosoft
    [2006/12/29 11:39:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\?icrosoft
    [2006/12/28 11:02:26 | 000,000,000 | ---D | M](C:\Program Files\?ystem) -- C:\Program Files\?ystem
    [2006/12/28 11:02:26 | 000,000,000 | ---D | M](C:\Program Files\?ystem) -- C:\Program Files\?ystem
    [2006/12/09 12:07:08 | 000,000,000 | ---D | M](C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\a?sembly
    [2006/12/09 12:07:08 | 000,000,000 | ---D | M](C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\a?sembly
    [2006/11/28 13:37:44 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\s?mbols
    [2006/11/28 13:37:44 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\s?mbols
    [2006/11/27 12:49:36 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\?ymbols
    [2006/11/27 12:49:36 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\?ymbols
    [2006/11/25 12:14:59 | 000,000,000 | ---D | M](C:\Program Files\M?crosoft.NET) -- C:\Program Files\M?crosoft.NET
    [2006/11/25 12:14:59 | 000,000,000 | ---D | M](C:\Program Files\M?crosoft.NET) -- C:\Program Files\M?crosoft.NET
    [2006/11/17 19:49:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\??sks
    [2006/11/17 19:49:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\??sks
    [2006/11/16 20:48:08 | 000,000,000 | ---D | M](C:\Program Files\?ecurity) -- C:\Program Files\?ecurity
    [2006/11/16 20:48:08 | 000,000,000 | ---D | M](C:\Program Files\?ecurity) -- C:\Program Files\?ecurity
    [2006/11/09 17:15:41 | 000,000,000 | ---D | M](C:\Program Files\s?mbols) -- C:\Program Files\s?mbols
    [2006/11/09 17:15:41 | 000,000,000 | ---D | M](C:\Program Files\s?mbols) -- C:\Program Files\s?mbols
    [2006/10/27 02:24:40 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\?racle
    [2006/10/27 02:24:40 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\?racle
    [2006/10/24 03:04:56 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\??mbols
    [2006/10/24 03:04:56 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\??mbols
    [2006/10/21 01:59:32 | 000,000,000 | ---D | M](C:\Program Files\?dobe) -- C:\Program Files\?dobe
    [2006/10/21 01:59:32 | 000,000,000 | ---D | M](C:\Program Files\?dobe) -- C:\Program Files\?dobe
    [2006/10/13 01:19:12 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\??mantec
    [2006/10/13 01:19:12 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\??mantec
    (C:\Program Files\s?stem) -- C:\Program Files\s?stem
    (C:\Program Files\s?mbols) -- C:\Program Files\s?mbols
    (C:\Program Files\S?mantec) -- C:\Program Files\S?mantec
    (C:\Program Files\M?crosoft.NET) -- C:\Program Files\M?crosoft.NET
    (C:\Program Files\F?nts) -- C:\Program Files\F?nts
    (C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\W?nSxS
    (C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\s?mbols
    (C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\s?curity
    (C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\M?crosoft
    (C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\a?sembly
    (C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\?ystem32
    (C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\?ymbols
    (C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\?racle
    (C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\?racle
    (C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\?ppPatch
    (C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\?icrosoft.NET
    (C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\?icrosoft.NET
    (C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\?icrosoft
    (C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\??sks
    (C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\??mbols
    (C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\??mantec
    (C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\??crosoft.NET
    (C:\Program Files\?ystem) -- C:\Program Files\?ystem
    (C:\Program Files\?ecurity) -- C:\Program Files\?ecurity
    (C:\Program Files\?dobe) -- C:\Program Files\?dobe
    (C:\Program Files\??stem) -- C:\Program Files\??stem
    (C:\Program Files\??crosoft.NET) -- C:\Program Files\??crosoft.NET
    :Commands
    [emptytemp]
    [emptyflash]
    
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot when it is done
  • You will get a log that shows the results of the fix. Please post it.
  • Then also run a new OTL scan by clicking Run Scan and post the new OTL logs.

unite.jpg


#10 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 27 October 2010 - 08:01 AM

SORRY i messed up by running the scan not thinking it would overwrite the FIX LOG, MY pc was faster at turning on after the reboot, avira started as soon as the icon apeared which i had to wait for before, I WILL try GMER now and post after its done


OTL RESCAN

OTL logfile created on: 27/10/2010 5:21:12 AM - Run 2
OTL by OldTimer - Version 3.2.17.1 Folder = C:\Documents and Settings\******\Desktop
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

224.00 Mb Total Physical Memory | 33.00 Mb Available Physical Memory | 15.00% Memory free
2.00 Gb Paging File | 2.00 Gb Available in Paging File | 86.00% Paging File free
Paging file location(s): C:\pagefile.sys 2000 3000 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS2 | %ProgramFiles% = C:\Program Files
Drive C: | 74.50 Gb Total Space | 24.32 Gb Free Space | 32.65% Space Free | Partition Type: NTFS
Drive D: | 473.55 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 297.44 Gb Total Space | 114.48 Gb Free Space | 38.49% Space Free | Partition Type: NTFS
Drive G: | 232.88 Gb Total Space | 23.60 Gb Free Space | 10.14% Space Free | Partition Type: NTFS

Computer Name: ****** | User Name: ****** | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2010/10/26 15:01:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
PRC - [2010/10/22 01:49:55 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2010/03/02 11:28:31 | 000,282,792 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2010/01/14 22:11:00 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2008/04/13 17:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS2\explorer.exe
PRC - [2001/12/13 09:27:08 | 000,290,816 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\system32\khooker.exe
PRC - [2001/11/21 04:39:08 | 000,294,912 | ---- | M] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\system32\SISAUDUT.EXE


========== Modules (SafeList) ==========

MOD - [2010/10/26 15:01:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
MOD - [2010/08/23 09:12:02 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS2\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- C:\WINDOWS2\System32\hidserv.dll -- (HidServ)
SRV - File not found [On_Demand | Stopped] -- C:\WINDOWS2\System32\appmgmts.dll -- (AppMgmt)
SRV - [2010/04/01 13:33:19 | 000,267,432 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2010/03/18 16:47:22 | 000,035,160 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2010/03/18 13:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2010/03/18 13:16:28 | 000,124,240 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWS2\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe -- (NetTcpPortSharing)
SRV - [2010/02/24 10:28:09 | 000,135,336 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)


========== Driver Services (SafeList) ==========

DRV - [2010/03/01 10:05:24 | 000,124,784 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS2\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2010/02/16 14:24:01 | 000,060,936 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS2\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009/05/11 12:49:19 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2009/05/11 10:12:49 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS2\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2008/10/09 15:42:42 | 000,017,408 | ---- | M] (Windows ® Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008/05/06 16:06:00 | 000,011,520 | ---- | M] (Western Digital Technologies) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\wdcsam.sys -- (WDC_SAM)
DRV - [2008/04/13 11:45:29 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2002/02/06 23:30:02 | 000,177,792 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\sisgrp.sys -- (SiS315)
DRV - [2001/11/26 07:00:08 | 000,165,760 | R--- | M] (Silicon Integrated Systems Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\sis7012.sys -- (SiS7012) Service for AC'97 Sample Driver (WDM)
DRV - [2001/09/28 13:16:46 | 000,031,744 | R--- | M] (SiS Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS2\system32\drivers\sisnic.sys -- (SISNIC)
DRV - [2001/09/28 04:52:04 | 000,027,008 | ---- | M] (Silicon Integrated Systems Corporation) [Kernel | Boot | Running] -- C:\WINDOWS2\System32\DRIVERS\sisagp.sys -- (sisagp)
DRV - [2001/08/18 05:00:00 | 000,542,879 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\HSF_MSFT.sys -- (hsf_msft)
DRV - [2001/08/18 05:00:00 | 000,488,383 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_V124.sys -- (V124)
DRV - [2001/08/18 05:00:00 | 000,391,199 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_K56K.sys -- (K56)
DRV - [2001/08/18 05:00:00 | 000,289,887 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_FALL.sys -- (Fallback)
DRV - [2001/08/18 05:00:00 | 000,199,711 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_FAXX.sys -- (SoftFax)
DRV - [2001/08/18 05:00:00 | 000,115,807 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_FSKS.sys -- (Fsks)
DRV - [2001/08/18 05:00:00 | 000,067,167 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\HSF_BSC2.sys -- (basic2)
DRV - [2001/08/18 05:00:00 | 000,057,471 | ---- | M] (Conexant) [Kernel | On_Demand | Stopped] -- C:\WINDOWS2\system32\drivers\HSF_SAMP.sys -- (Rksample)
DRV - [2001/08/18 05:00:00 | 000,050,751 | ---- | M] (Conexant) [Kernel | Auto | Running] -- C:\WINDOWS2\system32\drivers\HSF_TONE.sys -- (Tones)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS2\system32\blank.htm


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-20\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWS2\system32\blank.htm
IE - HKU\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKU\S-1-5-21-682003330-343818398-725345543-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.defaultenginename: "Web Search..."
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "http://www.google.ca/"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:4.0.10
FF - prefs.js..extensions.enabledItems: {73a6fe31-595d-460b-a920-fcc0f8843232}:2.0.3.5
FF - prefs.js..extensions.enabledItems: firefox@ghostery.com:2.4

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010/10/25 02:02:21 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010/10/22 01:50:12 | 000,000,000 | ---D | M]

[2010/06/15 08:32:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Extensions
[2010/10/26 05:32:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions
[2010/10/08 05:03:48 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b}
[2010/10/19 00:56:16 | 000,000,000 | ---D | M] (NoScript) -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\{73a6fe31-595d-460b-a920-fcc0f8843232}
[2010/08/18 19:06:56 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2010/10/20 02:41:55 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\firefox@ghostery.com
[2010/10/25 08:05:25 | 000,000,000 | ---D | M] -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\extensions\radiobar@toolbar
[2010/10/25 01:47:05 | 000,001,589 | ---- | M] () -- C:\Documents and Settings\******\Application Data\Mozilla\Firefox\Profiles\pyxqxe5j.default\searchplugins\web-search.xml
[2010/10/26 05:32:40 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010/05/04 00:01:14 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010/07/17 05:00:04 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2005/12/05 23:31:00 | 000,114,688 | ---- | M] () -- C:\Program Files\Mozilla Firefox\plugins\npmozax.dll

O1 HOSTS File: ([2001/08/18 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS2\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [SiS KHooker] C:\WINDOWS2\system32\khooker.exe (Silicon Integrated Systems Corporation)
O4 - HKLM..\Run: [SiS7012Utility] C:\WINDOWS2\System32\SiSAudUt.exe (Silicon Integrated Systems Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-682003330-343818398-725345543-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O16 - DPF: {5ED80217-570B-4DA9-BF44-BE107C0EC166} http://cdn.scan.onecare.live.com/resource/download/scanner/wlscbase6770.cab (Windows Live Safety Center Base Module)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1276613199795 (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1276613322888 (MUWebControl Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 198.135.216.162 199.85.225.226 198.235.200.135
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS2\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\******\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\******\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MSNLNamespaceMgr.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010/06/14 20:24:07 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2001/08/18 05:00:00 | 000,000,110 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\{8d57b14e-ca22-11df-bfb9-00e0189fd4e4}\Shell - "" = AutoRun
O33 - MountPoints2\{8d57b14e-ca22-11df-bfb9-00e0189fd4e4}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8d57b14e-ca22-11df-bfb9-00e0189fd4e4}\Shell\AutoRun\command - "" = E:\LaunchU3.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - C:\WINDOWS2\System32\appmgmts.dll File not found
NetSvcs: HidServ - C:\WINDOWS2\System32\hidserv.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: Irmon - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found

MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 0

Drivers32: msacm.iac2 - C:\WINDOWS2\system32\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\WINDOWS2\system32\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\WINDOWS2\System32\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\WINDOWS2\System32\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\WINDOWS2\System32\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\WINDOWS2\System32\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\WINDOWS2\System32\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\WINDOWS2\System32\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\WINDOWS2\System32\ir50_32.dll (Intel Corporation)

CREATERESTOREPOINT
Restore point Set: OTL Restore Point (16902109354000384)

========== Files/Folders - Created Within 30 Days ==========

[2010/10/27 04:56:57 | 000,000,000 | ---D | C] -- C:\_OTL
[2010/10/27 04:03:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Local Settings\Application Data\ApplicationHistory
[2010/10/26 15:01:55 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
[2010/10/26 13:05:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Application Data\Windows Desktop Search
[2010/10/26 12:28:34 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010/10/26 12:16:10 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\WindowsPowerShell
[2010/10/26 12:16:08 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\winrm
[2010/10/26 12:15:56 | 000,000,000 | -H-D | C] -- C:\WINDOWS2\$968930Uinstall_KB968930$
[2010/10/26 12:13:57 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\GroupPolicy
[2010/10/26 12:09:45 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\URTTEMP
[2010/10/26 11:26:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Local Settings\Application Data\WinZip
[2010/10/26 11:25:31 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010/10/26 06:22:22 | 001,317,464 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\******\Desktop\tk123.com.exe
[2010/10/26 02:30:31 | 000,000,000 | ---D | C] -- C:\Program Files\Support Tools
[2010/10/26 01:52:59 | 000,000,000 | ---D | C] -- C:\WINDOWS2\System32\XPSViewer
[2010/10/26 01:50:56 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\prntvpt.dll
[2010/10/26 01:50:56 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\filterpipelineprintproc.dll
[2010/10/26 01:50:55 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\printfilterpipelinesvc.exe
[2010/10/26 01:50:54 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\xpsshhdr.dll
[2010/10/26 01:50:49 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\xpssvcs.dll
[2010/10/26 01:50:49 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\xpssvcs.dll
[2010/10/25 23:58:35 | 000,000,000 | R-SD | C] -- C:\WINDOWS2\assembly
[2010/10/25 23:56:23 | 000,000,000 | ---D | C] -- C:\WINDOWS2\Microsoft.NET
[2010/10/25 09:25:12 | 000,000,000 | ---D | C] -- C:\WINDOWS2\I386
[2010/10/25 09:04:32 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS2\System32\dllcache\xrxwiadr.dll
[2010/10/25 09:04:32 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS2\System32\dllcache\xrxwbtmp.dll
[2010/10/25 09:04:29 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\xrxflnch.exe
[2010/10/25 09:04:27 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\xlog.exe
[2010/10/25 09:04:25 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS2\System32\dllcache\xem336n5.sys
[2010/10/25 09:04:23 | 000,019,455 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wvchntxx.sys
[2010/10/25 09:04:20 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wstcodec.sys
[2010/10/25 09:04:18 | 000,012,063 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wsiintxx.sys
[2010/10/25 09:04:15 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wshirda.dll
[2010/10/25 09:03:54 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wmiacpi.sys
[2010/10/25 09:03:50 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS2\System32\dllcache\wlluc48.sys
[2010/10/25 09:03:49 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS2\System32\dllcache\wlandrv2.sys
[2010/10/25 09:03:40 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS2\System32\dllcache\winacisa.sys
[2010/10/25 09:03:34 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wiafbdrv.dll
[2010/10/25 09:03:34 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wiamsmud.dll
[2010/10/25 09:03:29 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\wdhaalba.sys
[2010/10/25 09:03:27 | 000,023,615 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wch7xxnt.sys
[2010/10/25 09:03:25 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS2\System32\dllcache\wbfirdma.sys
[2010/10/25 09:03:25 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\wceusbsh.sys
[2010/10/25 09:03:21 | 000,033,599 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\watv04nt.sys
[2010/10/25 09:03:20 | 000,019,551 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\watv02nt.sys
[2010/10/25 09:03:18 | 000,029,311 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\watv01nt.sys
[2010/10/25 09:03:16 | 000,011,775 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wadv05nt.sys
[2010/10/25 09:03:14 | 000,012,127 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wadv02nt.sys
[2010/10/25 09:03:13 | 000,012,415 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\wadv01nt.sys
[2010/10/25 09:03:12 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS2\System32\dllcache\w940nd.sys
[2010/10/25 09:03:11 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS2\System32\dllcache\w840nd.sys
[2010/10/25 09:03:11 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS2\System32\dllcache\w926nd.sys
[2010/10/25 09:03:09 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS2\System32\dllcache\vvoice.sys
[2010/10/25 09:03:07 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS2\System32\dllcache\vpctcom.sys
[2010/10/25 09:03:05 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\vmodem.sys
[2010/10/25 09:03:04 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\vinwm.sys
[2010/10/25 09:03:03 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS2\System32\dllcache\viairda.sys
[2010/10/25 09:03:02 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\viaide.sys
[2010/10/25 09:02:59 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\vfwwdm32.dll
[2010/10/25 09:02:57 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usrwdxjs.sys
[2010/10/25 09:02:56 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usrti.sys
[2010/10/25 09:02:55 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usrpda.sys
[2010/10/25 09:02:55 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usroslba.sys
[2010/10/25 09:02:54 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS2\System32\dllcache\usr1807a.sys
[2010/10/25 09:02:53 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usr1806v.sys
[2010/10/25 09:02:53 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usr1806.sys
[2010/10/25 09:02:52 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS2\System32\dllcache\usr1801.sys
[2010/10/25 09:02:49 | 000,020,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbuhci.sys
[2010/10/25 09:02:48 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbser.sys
[2010/10/25 09:02:46 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbprint.sys
[2010/10/25 09:02:44 | 000,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbccgp.sys
[2010/10/25 09:02:42 | 000,060,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbaudio.sys
[2010/10/25 09:02:40 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS2\System32\dllcache\usb101et.sys
[2010/10/25 09:02:36 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxud32.dll
[2010/10/25 09:02:36 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxu40.dll
[2010/10/25 09:02:35 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxu12.dll
[2010/10/25 09:02:35 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxu22.dll
[2010/10/25 09:02:34 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS2\System32\dllcache\umaxscan.dll
[2010/10/25 09:02:34 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxpcls.sys
[2010/10/25 09:02:33 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxp60.dll
[2010/10/25 09:02:33 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\umaxcam.dll
[2010/10/25 09:02:32 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS2\System32\dllcache\um34scan.dll
[2010/10/25 09:02:32 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS2\System32\dllcache\um54scan.dll
[2010/10/25 09:02:31 | 000,036,736 | ---- | C] (Promise Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\ultra.sys
[2010/10/25 09:02:30 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\twotrack.sys
[2010/10/25 09:02:27 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridxpm.sys
[2010/10/25 09:02:26 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridxp.dll
[2010/10/25 09:02:26 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridkbm.sys
[2010/10/25 09:02:25 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tridkb.dll
[2010/10/25 09:02:25 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\trid3d.dll
[2010/10/25 09:02:25 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\trid3dm.sys
[2010/10/25 09:02:24 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\tpro4.sys
[2010/10/25 09:02:23 | 000,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\tp4res.dll
[2010/10/25 09:02:21 | 000,082,944 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\tp4mon.exe
[2010/10/25 09:02:20 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\tp4.dll
[2010/10/25 09:02:18 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\toside.sys
[2010/10/25 09:02:17 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS2\System32\dllcache\tosdvd02.sys
[2010/10/25 09:02:17 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS2\System32\dllcache\tosdvd03.sys
[2010/10/25 09:02:16 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS2\System32\dllcache\tos4mo.sys
[2010/10/25 09:02:15 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS2\System32\dllcache\tjisdn.sys
[2010/10/25 09:02:11 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tgiulnt5.sys
[2010/10/25 09:02:10 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\tgiul50.dll
[2010/10/25 09:02:09 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS2\System32\dllcache\tffsport.sys
[2010/10/25 09:02:07 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS2\System32\dllcache\tdkcd31.sys
[2010/10/25 09:02:06 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS2\System32\dllcache\tdk100b.sys
[2010/10/25 09:02:04 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS2\System32\dllcache\tbatm155.sys
[2010/10/25 09:02:02 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\t2r4mini.sys
[2010/10/25 09:02:02 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\tandqic.sys
[2010/10/25 09:02:01 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS2\System32\dllcache\t2r4disp.dll
[2010/10/25 09:01:58 | 000,032,640 | ---- | C] (LSI Logic) -- C:\WINDOWS2\System32\dllcache\symc8xx.sys
[2010/10/25 09:01:58 | 000,016,256 | ---- | C] (Symbios Logic Inc.) -- C:\WINDOWS2\System32\dllcache\symc810.sys
[2010/10/25 09:01:57 | 000,030,688 | ---- | C] (LSI Logic) -- C:\WINDOWS2\System32\dllcache\sym_u3.sys
[2010/10/25 09:01:57 | 000,028,384 | ---- | C] (LSI Logic) -- C:\WINDOWS2\System32\dllcache\sym_hi.sys
[2010/10/25 09:01:56 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\sx.sys
[2010/10/25 09:01:56 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\sxports.dll
[2010/10/25 09:01:55 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\swpidflt.dll
[2010/10/25 09:01:55 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\swpdflt2.dll
[2010/10/25 09:01:55 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\swusbflt.sys
[2010/10/25 09:01:54 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sw_wheel.dll
[2010/10/25 09:01:54 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sw_effct.dll
[2010/10/25 09:01:52 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\streamip.sys
[2010/10/25 09:01:51 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS2\System32\dllcache\stlnprop.dll
[2010/10/25 09:01:50 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS2\System32\dllcache\stlncoin.dll
[2010/10/25 09:01:49 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS2\System32\dllcache\stlnata.sys
[2010/10/25 09:01:48 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS2\System32\dllcache\stcusb.sys
[2010/10/25 09:01:46 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS2\System32\dllcache\srwlnd5.sys
[2010/10/25 09:01:45 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\srusd.dll
[2010/10/25 09:01:42 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS2\System32\dllcache\spxupchk.dll
[2010/10/25 09:01:40 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS2\System32\dllcache\spdports.dll
[2010/10/25 09:01:40 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS2\System32\dllcache\speed.sys
[2010/10/25 09:01:39 | 000,019,072 | ---- | C] (Adaptec, Inc.) -- C:\WINDOWS2\System32\dllcache\sparrow.sys
[2010/10/25 09:01:38 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonypvu1.sys
[2010/10/25 09:01:37 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonypi.dll
[2010/10/25 09:01:37 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonypi.sys
[2010/10/25 09:01:36 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\sonync.sys
[2010/10/25 09:01:36 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sonymc.sys
[2010/10/25 09:01:34 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sonyait.sys
[2010/10/25 09:01:33 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\snyaitmc.sys
[2010/10/25 09:01:26 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS2\System32\dllcache\smiminib.sys
[2010/10/25 09:01:25 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS2\System32\dllcache\smidispb.dll
[2010/10/25 09:01:23 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS2\System32\dllcache\smcpwr2n.sys
[2010/10/25 09:01:22 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS2\System32\dllcache\smcirda.sys
[2010/10/25 09:01:22 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS2\System32\dllcache\smc8000n.sys
[2010/10/25 09:01:21 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smbhc.sys
[2010/10/25 09:01:20 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smbclass.sys
[2010/10/25 09:01:18 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smbbatt.sys
[2010/10/25 09:01:17 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smb3w.dll
[2010/10/25 09:01:17 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\smb0w.dll
[2010/10/25 09:01:16 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sma0w.dll
[2010/10/25 09:01:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sm91w.dll
[2010/10/25 09:01:08 | 000,011,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\slip.sys
[2010/10/25 09:01:05 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS2\System32\dllcache\sla30nd5.sys
[2010/10/25 09:01:04 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS2\System32\dllcache\skfpwin.sys
[2010/10/25 09:01:03 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sisv256.dll
[2010/10/25 09:01:03 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS2\System32\dllcache\sk98xwin.sys
[2010/10/25 09:01:02 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sisv.sys
[2010/10/25 09:01:01 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis6306v.dll
[2010/10/25 09:01:00 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis300iv.dll
[2010/10/25 09:01:00 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis6306p.sys
[2010/10/25 09:00:59 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS2\System32\dllcache\sis300ip.sys
[2010/10/25 09:00:52 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS2\System32\dllcache\sgsmusb.sys
[2010/10/25 09:00:51 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\sgiulnt5.sys
[2010/10/25 09:00:51 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS2\System32\dllcache\sgsmld.sys
[2010/10/25 09:00:50 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS2\System32\dllcache\sgiul50.dll
[2010/10/25 09:00:50 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\sfmanm.sys
[2010/10/25 09:00:47 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sermouse.sys
[2010/10/25 09:00:47 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\serscan.sys
[2010/10/25 09:00:45 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\seaddsmc.sys
[2010/10/25 09:00:43 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\scsiprnt.sys
[2010/10/25 09:00:43 | 000,011,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\scsiscan.sys
[2010/10/25 09:00:41 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS2\System32\dllcache\scr111.sys
[2010/10/25 09:00:40 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS2\System32\dllcache\sccmusbm.sys
[2010/10/25 09:00:40 | 000,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\scmstcs.sys
[2010/10/25 09:00:39 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS2\System32\dllcache\sccmn50m.sys
[2010/10/25 09:00:37 | 000,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\sbp2port.sys
[2010/10/25 09:00:36 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\sblfx.dll
[2010/10/25 09:00:34 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS2\System32\dllcache\s3savmx.dll
[2010/10/25 09:00:34 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav4m.sys
[2010/10/25 09:00:34 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS2\System32\dllcache\s3savmxm.sys
[2010/10/25 09:00:33 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav4.dll
[2010/10/25 09:00:33 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav3dm.sys
[2010/10/25 09:00:31 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mvirge.dll
[2010/10/25 09:00:31 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3sav3d.dll
[2010/10/25 09:00:30 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mtrio.dll
[2010/10/25 09:00:30 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mt3d.sys
[2010/10/25 09:00:29 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3mt3d.dll
[2010/10/25 09:00:29 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS2\System32\dllcache\s3m.sys
[2010/10/25 09:00:28 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rwia450.dll
[2010/10/25 09:00:28 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\s3legacy.sys
[2010/10/25 09:00:27 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rwia430.dll
[2010/10/25 09:00:24 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rw450ext.dll
[2010/10/25 09:00:23 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\rw430ext.dll
[2010/10/25 09:00:19 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS2\System32\dllcache\rtl8139.sys
[2010/10/25 09:00:19 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS2\System32\dllcache\rtl8029.sys
[2010/10/25 09:00:18 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS2\System32\dllcache\rthwcls.sys
[2010/10/25 09:00:14 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\rsmgrstr.dll
[2010/10/25 09:00:13 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS2\System32\dllcache\rpfun.sys
[2010/10/25 09:00:08 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS2\System32\dllcache\rocket.sys
[2010/10/25 09:00:06 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS2\System32\dllcache\rlnet5.sys
[2010/10/25 09:00:02 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\reslog32.dll
[2010/10/25 08:59:50 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\rasirda.sys
[2010/10/25 08:59:45 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\r2mdmkxx.sys
[2010/10/25 08:59:44 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\r2mdkxga.sys
[2010/10/25 08:59:43 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\qvusd.dll
[2010/10/25 08:59:43 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\qv2kux.sys
[2010/10/25 08:59:38 | 000,049,024 | ---- | C] (QLogic Corporation) -- C:\WINDOWS2\System32\dllcache\ql1280.sys
[2010/10/25 08:59:38 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ql1240.sys
[2010/10/25 08:59:37 | 000,045,312 | ---- | C] (QLogic Corporation) -- C:\WINDOWS2\System32\dllcache\ql12160.sys
[2010/10/25 08:59:36 | 000,040,320 | ---- | C] (QLogic Corporation) -- C:\WINDOWS2\System32\dllcache\ql1080.sys
[2010/10/25 08:59:36 | 000,033,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ql10wnt.sys
[2010/10/25 08:59:34 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\qic157.sys
[2010/10/25 08:59:31 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\ptserlv.sys
[2010/10/25 08:59:31 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\ptserlp.sys
[2010/10/25 08:59:30 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS2\System32\dllcache\ptserli.sys
[2010/10/25 08:59:29 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ptpusd.dll
[2010/10/25 08:59:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ptpusb.dll
[2010/10/25 08:59:25 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\psisload.dll
[2010/10/25 08:59:22 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS2\System32\dllcache\pscr.sys
[2010/10/25 08:59:15 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ppa.sys
[2010/10/25 08:59:15 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ppa3.sys
[2010/10/25 08:59:13 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\powerfil.sys
[2010/10/25 08:59:12 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\pnrmc.sys
[2010/10/25 08:59:05 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\phvfwext.dll
[2010/10/25 08:59:03 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\phildec.sys
[2010/10/25 08:59:03 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philtune.sys
[2010/10/25 08:59:02 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philcam2.sys
[2010/10/25 08:59:02 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philcam1.sys
[2010/10/25 08:59:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\philcam1.dll
[2010/10/25 08:59:01 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\phdsext.ax
[2010/10/25 08:59:00 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm3dd.dll
[2010/10/25 08:58:58 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm3.sys
[2010/10/25 08:58:57 | 000,211,584 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm2dll.dll
[2010/10/25 08:58:56 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS2\System32\dllcache\perm2.sys
[2010/10/25 08:58:54 | 000,027,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\perc2.sys
[2010/10/25 08:58:54 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\perc2hib.sys
[2010/10/25 08:58:52 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS2\System32\dllcache\pcx500.sys
[2010/10/25 08:58:52 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS2\System32\dllcache\pctspk.exe
[2010/10/25 08:58:51 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS2\System32\dllcache\pcntpci5.sys
[2010/10/25 08:58:50 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS2\System32\dllcache\pcntn5hl.sys
[2010/10/25 08:58:50 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS2\System32\dllcache\pcntn5m.sys
[2010/10/25 08:58:49 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS2\System32\dllcache\pcmlm56.sys
[2010/10/25 08:58:47 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS2\System32\dllcache\pc100nds.sys
[2010/10/25 08:58:47 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\pca200e.sys
[2010/10/25 08:58:43 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovui2.dll
[2010/10/25 08:58:43 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovui2rc.dll
[2010/10/25 08:58:42 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcoms.exe
[2010/10/25 08:58:42 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovsound2.sys
[2010/10/25 08:58:41 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcodek2.sys
[2010/10/25 08:58:41 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcomc.dll
[2010/10/25 08:58:40 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcodec2.dll
[2010/10/25 08:58:40 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovce.sys
[2010/10/25 08:58:39 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcam2.sys
[2010/10/25 08:58:39 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovcd.sys
[2010/10/25 08:58:38 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\otcsercb.sys
[2010/10/25 08:58:38 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ovca.sys
[2010/10/25 08:58:37 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\otceth5.sys
[2010/10/25 08:58:37 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\otc06x5.sys
[2010/10/25 08:58:36 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS2\System32\dllcache\opl3sax.sys
[2010/10/25 08:58:33 | 000,061,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ohci1394.sys
[2010/10/25 08:58:29 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS2\System32\dllcache\nv3.sys
[2010/10/25 08:58:28 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS2\System32\dllcache\nv3.dll
[2010/10/25 08:58:23 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS2\System32\dllcache\ntgrip.sys
[2010/10/25 08:58:21 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ntapm.sys
[2010/10/25 08:58:21 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\nsmmc.sys
[2010/10/25 08:58:20 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS2\System32\dllcache\nscirda.sys
[2010/10/25 08:58:15 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\nm5a2wdm.sys
[2010/10/25 08:58:15 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\nm6wdm.sys
[2010/10/25 08:58:11 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS2\System32\dllcache\ngrpci.sys
[2010/10/25 08:58:10 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS2\System32\dllcache\netwlan5.sys
[2010/10/25 08:58:06 | 000,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\netflx3.sys
[2010/10/25 08:58:05 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\neo20xx.sys
[2010/10/25 08:58:04 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS2\System32\dllcache\neo20xx.dll
[2010/10/25 08:58:04 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ne2000.sys
[2010/10/25 08:58:03 | 000,010,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ndisip.sys
[2010/10/25 08:58:00 | 000,085,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\nabtsfec.sys
[2010/10/25 08:57:59 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i3disp.dll
[2010/10/25 08:57:59 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i3d.sys
[2010/10/25 08:57:58 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128v2.sys
[2010/10/25 08:57:57 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128v2.dll
[2010/10/25 08:57:57 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128.sys
[2010/10/25 08:57:56 | 000,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\n100325.sys
[2010/10/25 08:57:56 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS2\System32\dllcache\n9i128.dll
[2010/10/25 08:57:55 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\mxport.sys
[2010/10/25 08:57:55 | 000,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\n1000nt5.sys
[2010/10/25 08:57:54 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS2\System32\dllcache\mxnic.sys
[2010/10/25 08:57:54 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS2\System32\dllcache\mxport.dll
[2010/10/25 08:57:53 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS2\System32\dllcache\mxcard.sys
[2010/10/25 08:57:53 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS2\System32\dllcache\mxicfg.dll
[2010/10/25 08:57:46 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS2\System32\dllcache\mtxvideo.sys
[2010/10/25 08:57:37 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mstee.sys
[2010/10/25 08:57:36 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mstape.sys
[2010/10/25 08:57:32 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msriffwv.sys
[2010/10/25 08:57:24 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msmpu401.sys
[2010/10/25 08:57:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msircomm.sys
[2010/10/25 08:57:09 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msgame.sys
[2010/10/25 08:57:08 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msfsio.sys
[2010/10/25 08:57:06 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\msdv.sys
[2010/10/25 08:57:02 | 000,017,280 | ---- | C] (American Megatrends Inc.) -- C:\WINDOWS2\System32\dllcache\mraid35x.sys
[2010/10/25 08:56:59 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mpe.sys
[2010/10/25 08:56:56 | 000,016,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\modemcsa.sys
[2010/10/25 08:56:52 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\miniqic.sys
[2010/10/25 08:56:49 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\mgaum.sys
[2010/10/25 08:56:48 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\mgaud.dll
[2010/10/25 08:56:46 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\memgrp.dll
[2010/10/25 08:56:46 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS2\System32\dllcache\memstpci.sys
[2010/10/25 08:56:45 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\memcard.sys
[2010/10/25 08:56:44 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS2\System32\dllcache\mdgndis5.sys
[2010/10/25 08:56:41 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\mammoth.sys
[2010/10/25 08:56:39 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\maestro.sys
[2010/10/25 08:56:38 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\m3092dc.dll
[2010/10/25 08:56:38 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\m3091dc.dll
[2010/10/25 08:56:37 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS2\System32\dllcache\lwusbhid.sys
[2010/10/25 08:56:36 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS2\System32\dllcache\lwadihid.sys
[2010/10/25 08:56:35 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltsmt.sys
[2010/10/25 08:56:34 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS2\System32\dllcache\ltsm.sys
[2010/10/25 08:56:34 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ltotape.sys
[2010/10/25 08:56:33 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltmdmntt.sys
[2010/10/25 08:56:32 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltmdmntl.sys
[2010/10/25 08:56:31 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\ltck000c.sys
[2010/10/25 08:56:31 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS2\System32\dllcache\ltmdmnt.sys
[2010/10/25 08:56:29 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\loop.sys
[2010/10/25 08:56:26 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS2\System32\dllcache\lne100tx.sys
[2010/10/25 08:56:26 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS2\System32\dllcache\lne100.sys
[2010/10/25 08:56:25 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS2\System32\dllcache\lmndis3.sys
[2010/10/25 08:56:24 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS2\System32\dllcache\lit220p.sys
[2010/10/25 08:56:23 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS2\System32\dllcache\lbrtfdc.sys
[2010/10/25 08:56:22 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS2\System32\dllcache\lanepic5.sys
[2010/10/25 08:56:21 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS2\System32\dllcache\ktc111.sys
[2010/10/25 08:56:20 | 000,043,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ksxbar.ax
[2010/10/25 08:56:19 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kswdmcap.ax
[2010/10/25 08:56:18 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kstvtune.ax
[2010/10/25 08:56:17 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kousd.dll
[2010/10/25 08:56:14 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kdsusd.dll
[2010/10/25 08:56:13 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kdsui.dll
[2010/10/25 08:56:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbdjpn.dll
[2010/10/25 08:56:01 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbdkor.dll
[2010/10/25 08:55:55 | 000,014,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbdhid.sys
[2010/10/25 08:55:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd106.dll
[2010/10/25 08:55:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd101c.dll
[2010/10/25 08:55:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd103.dll
[2010/10/25 08:55:44 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\kbd101b.dll
[2010/10/25 08:55:41 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS2\System32\dllcache\irstusb.sys
[2010/10/25 08:55:41 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irsir.sys
[2010/10/25 08:55:40 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irmon.dll
[2010/10/25 08:55:39 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irftp.exe
[2010/10/25 08:55:39 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS2\System32\dllcache\irmk7.sys
[2010/10/25 08:55:38 | 000,088,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\irda.sys
[2010/10/25 08:55:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ipsink.ax
[2010/10/25 08:55:33 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\io8ports.dll
[2010/10/25 08:55:33 | 000,045,632 | ---- | C] (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) -- C:\WINDOWS2\System32\dllcache\ip5515.sys
[2010/10/25 08:55:32 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS2\System32\dllcache\io8.sys
[2010/10/25 08:55:31 | 000,005,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\intelide.sys
[2010/10/25 08:55:30 | 000,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\inport.sys
[2010/10/25 08:55:29 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ini910u.sys
[2010/10/25 08:55:05 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\iconf32.dll
[2010/10/25 08:55:04 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam5usb.sys
[2010/10/25 08:55:04 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam5com.dll
[2010/10/25 08:55:04 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam5ext.dll
[2010/10/25 08:55:03 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam4usb.sys
[2010/10/25 08:55:03 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam4ext.dll
[2010/10/25 08:55:02 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam4com.dll
[2010/10/25 08:55:02 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam3ext.dll
[2010/10/25 08:55:01 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\icam3.sys
[2010/10/25 08:55:01 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ibmvcap.sys
[2010/10/25 08:55:00 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\ibmtrp.sys
[2010/10/25 08:55:00 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\ibmtok.sys
[2010/10/25 08:55:00 | 000,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS2\System32\dllcache\ibmsgnet.dll
[2010/10/25 08:54:59 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS2\System32\dllcache\ibmexmp.sys
[2010/10/25 08:54:57 | 000,161,020 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\i81xnt5.sys
[2010/10/25 08:54:56 | 000,702,845 | ---- | C] (Intel® Corporation) -- C:\WINDOWS2\System32\dllcache\i81xdnt5.dll
[2010/10/25 08:54:55 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\i740dnt5.dll
[2010/10/25 08:54:55 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\i740nt5.sys
[2010/10/25 08:54:54 | 000,018,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\i2omp.sys
[2010/10/25 08:54:53 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\i2omgmt.sys
[2010/10/25 08:54:28 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hr1w.dll
[2010/10/25 08:54:28 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpsjmcro.dll
[2010/10/25 08:54:28 | 000,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpt4qic.sys
[2010/10/25 08:54:27 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpojwia.dll
[2010/10/25 08:54:27 | 000,025,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpn.sys
[2010/10/25 08:54:26 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS2\System32\dllcache\hpgt53tk.dll
[2010/10/25 08:54:26 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgtmcro.dll
[2010/10/25 08:54:25 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgt42tk.dll
[2010/10/25 08:54:24 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS2\System32\dllcache\hpgt34tk.dll
[2010/10/25 08:54:24 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgt33tk.dll
[2010/10/25 08:54:23 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpgt21tk.dll
[2010/10/25 08:54:22 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hpdigwia.dll
[2010/10/25 08:54:19 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidswvd.sys
[2010/10/25 08:54:18 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidserv.dll
[2010/10/25 08:54:18 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidgame.sys
[2010/10/25 08:54:17 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\hidbatt.sys
[2010/10/25 08:54:15 | 000,907,456 | ---- | C] (Conexant) -- C:\WINDOWS2\System32\dllcache\hcf_msft.sys
[2010/10/25 08:54:13 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS2\System32\dllcache\grserial.sys
[2010/10/25 08:54:12 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS2\System32\dllcache\grclass.sys
[2010/10/25 08:54:12 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS2\System32\dllcache\gpr400.sys
[2010/10/25 08:54:09 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\gckernel.sys
[2010/10/25 08:54:08 | 000,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g400m.sys
[2010/10/25 08:54:07 | 001,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g400d.dll
[2010/10/25 08:54:07 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g200m.sys
[2010/10/25 08:54:06 | 000,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS2\System32\dllcache\g200d.dll
[2010/10/25 08:54:06 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fxusbase.sys
[2010/10/25 08:53:56 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\fuusd.dll
[2010/10/25 08:53:55 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fus2base.sys
[2010/10/25 08:53:55 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fusbbase.sys
[2010/10/25 08:53:52 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fpnpbase.sys
[2010/10/25 08:53:50 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fpcibase.sys
[2010/10/25 08:53:50 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\fpcmbase.sys
[2010/10/25 08:53:48 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS2\System32\dllcache\forehe.sys
[2010/10/25 08:53:47 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\fnfilter.dll
[2010/10/25 08:53:44 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS2\System32\dllcache\fetnd5.sys
[2010/10/25 08:53:43 | 000,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\fem556n5.sys
[2010/10/25 08:53:41 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS2\System32\dllcache\fa410nd5.sys
[2010/10/25 08:53:40 | 000,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS2\System32\dllcache\fa312nd5.sys
[2010/10/25 08:53:40 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS2\System32\dllcache\f3ab18xj.sys
[2010/10/25 08:53:39 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS2\System32\dllcache\f3ab18xi.sys
[2010/10/25 08:53:38 | 000,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\ex10.sys
[2010/10/25 08:53:38 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\exabyte2.sys
[2010/10/25 08:53:35 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esunib.dll
[2010/10/25 08:53:34 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esuni.dll
[2010/10/25 08:53:33 | 000,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esucm.dll
[2010/10/25 08:53:33 | 000,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS2\System32\dllcache\esuimg.dll
[2010/10/25 08:53:32 | 000,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\essm2e.sys
[2010/10/25 08:53:31 | 000,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\ess.sys
[2010/10/25 08:53:30 | 000,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es56hpi.sys
[2010/10/25 08:53:30 | 000,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es56tpi.sys
[2010/10/25 08:53:29 | 000,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es56cvmp.sys
[2010/10/25 08:53:29 | 000,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\es198x.sys
[2010/10/25 08:53:29 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS2\System32\dllcache\es1969.sys
[2010/10/25 08:53:28 | 000,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\es1371mp.sys
[2010/10/25 08:53:27 | 000,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqnloop.exe
[2010/10/25 08:53:27 | 000,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\es1370mp.sys
[2010/10/25 08:53:26 | 000,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqndiag.exe
[2010/10/25 08:53:26 | 000,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqnlogr.exe
[2010/10/25 08:53:25 | 000,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS2\System32\dllcache\eqn.sys
[2010/10/25 08:53:25 | 000,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\epstw2k.sys
[2010/10/25 08:53:25 | 000,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\epro4.sys
[2010/10/25 08:53:24 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\epcfw2k.sys
[2010/10/25 08:53:24 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\enum1394.sys
[2010/10/25 08:53:23 | 000,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\emu10k1m.sys
[2010/10/25 08:53:22 | 000,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\elnk3.sys
[2010/10/25 08:53:22 | 000,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\em556n4.sys
[2010/10/25 08:53:21 | 000,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el99xn51.sys
[2010/10/25 08:53:21 | 000,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el98xn5.sys
[2010/10/25 08:53:21 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\elmsmc.sys
[2010/10/25 08:53:20 | 000,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS2\System32\dllcache\el985n51.sys
[2010/10/25 08:53:20 | 000,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el90xnd5.sys
[2010/10/25 08:53:19 | 000,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el90xbc5.sys
[2010/10/25 08:53:18 | 000,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656se5.sys
[2010/10/25 08:53:18 | 000,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656nd5.sys
[2010/10/25 08:53:17 | 000,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656ct5.sys
[2010/10/25 08:53:17 | 000,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el656cd5.sys
[2010/10/25 08:53:16 | 000,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el575nd5.sys
[2010/10/25 08:53:16 | 000,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el589nd5.sys
[2010/10/25 08:53:15 | 000,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el556nd5.sys
[2010/10/25 08:53:15 | 000,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el574nd4.sys
[2010/10/25 08:53:14 | 000,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS2\System32\dllcache\el515.sys
[2010/10/25 08:53:13 | 000,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\e100isa4.sys
[2010/10/25 08:53:12 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\e100b325.sys
[2010/10/25 08:53:12 | 000,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\e1000nt5.sys
[2010/10/25 08:53:08 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dshowext.ax
[2010/10/25 08:53:07 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS2\System32\dllcache\ds1wdm.sys
[2010/10/25 08:53:05 | 000,020,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dpti2o.sys
[2010/10/25 08:53:02 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS2\System32\dllcache\dp83820.sys
[2010/10/25 08:53:01 | 000,023,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4usb.sys
[2010/10/25 08:53:01 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4scan.sys
[2010/10/25 08:53:00 | 000,206,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4.sys
[2010/10/25 08:53:00 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dot4prt.sys
[2010/10/25 08:52:55 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS2\System32\dllcache\dm9pci5.sys
[2010/10/25 08:52:55 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dlttape.sys
[2010/10/25 08:52:54 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\diwan.sys
[2010/10/25 08:52:54 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS2\System32\dllcache\dlh5xnd5.sys
[2010/10/25 08:52:52 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\ditrace.exe
[2010/10/25 08:52:52 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\disrvsu.dll
[2010/10/25 08:52:51 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\disrvpp.dll
[2010/10/25 08:52:51 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\disrvci.dll
[2010/10/25 08:52:49 | 000,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiview.exe
[2010/10/25 08:52:49 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\dimaint.sys
[2010/10/25 08:52:48 | 000,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS2\System32\dllcache\digirlpt.dll
[2010/10/25 08:52:48 | 000,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS2\System32\dllcache\digirlpt.sys
[2010/10/25 08:52:47 | 000,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiinf.dll
[2010/10/25 08:52:47 | 000,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiisdn.dll
[2010/10/25 08:52:47 | 000,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiisdn.sys
[2010/10/25 08:52:46 | 000,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digifwrk.dll
[2010/10/25 08:52:46 | 000,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digihlc.dll
[2010/10/25 08:52:45 | 000,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digidbp.dll
[2010/10/25 08:52:45 | 000,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digidxb.sys
[2010/10/25 08:52:45 | 000,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digifep5.sys
[2010/10/25 08:52:44 | 000,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiasyn.dll
[2010/10/25 08:52:44 | 000,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\digiasyn.sys
[2010/10/25 08:52:42 | 000,419,357 | ---- | C] (Digi International) -- C:\WINDOWS2\System32\dllcache\dgconfig.dll
[2010/10/25 08:52:41 | 000,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS2\System32\dllcache\dgapci.sys
[2010/10/25 08:52:41 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS2\System32\dllcache\dfe650d.sys
[2010/10/25 08:52:40 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS2\System32\dllcache\dfe650.sys
[2010/10/25 08:52:40 | 000,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\devldr32.exe
[2010/10/25 08:52:39 | 000,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\devcon32.dll
[2010/10/25 08:52:38 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS2\System32\dllcache\defpa.sys
[2010/10/25 08:52:38 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ddsmc.sys
[2010/10/25 08:52:36 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc260usd.dll
[2010/10/25 08:52:36 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc240usd.dll
[2010/10/25 08:52:36 | 000,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS2\System32\dllcache\dc21x4.sys
[2010/10/25 08:52:35 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc210usd.dll
[2010/10/25 08:52:35 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dc210_32.dll
[2010/10/25 08:52:33 | 000,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\dac960nt.sys
[2010/10/25 08:52:32 | 000,179,584 | ---- | C] (Mylex Corporation) -- C:\WINDOWS2\System32\dllcache\dac2w2k.sys
[2010/10/25 08:52:30 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\d100ib5.sys
[2010/10/25 08:52:30 | 000,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyzport.sys
[2010/10/25 08:52:30 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyzports.dll
[2010/10/25 08:52:29 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyyports.dll
[2010/10/25 08:52:29 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyzcoins.dll
[2010/10/25 08:52:28 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyyport.sys
[2010/10/25 08:52:28 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyycoins.dll
[2010/10/25 08:52:28 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyclom-y.sys
[2010/10/25 08:52:27 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwrwdm.sys
[2010/10/25 08:52:27 | 000,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cyclad-z.sys
[2010/10/25 08:52:26 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwcspud.sys
[2010/10/25 08:52:26 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwcwdm.sys
[2010/10/25 08:52:25 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwbwdm.sys
[2010/10/25 08:52:25 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwcosnt5.sys
[2010/10/25 08:52:25 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwbmidi.sys
[2010/10/25 08:52:24 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS2\System32\dllcache\cwbase.sys
[2010/10/25 08:52:23 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS2\System32\dllcache\ctmasetp.dll
[2010/10/25 08:52:23 | 000,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\ctwdm32.dll
[2010/10/25 08:52:22 | 000,096,256 | ---- | C] (Copyright © Creative Technology Ltd. 1994-2001) -- C:\WINDOWS2\System32\dllcache\ctlsb16.sys
[2010/10/25 08:52:22 | 000,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\ctljystk.sys
[2010/10/25 08:52:21 | 000,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS2\System32\dllcache\ctlfacem.sys
[2010/10/25 08:52:20 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\csamsp.dll
[2010/10/25 08:52:19 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS2\System32\dllcache\cpscan.dll
[2010/10/25 08:52:19 | 000,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS2\System32\dllcache\crtaud.sys
[2010/10/25 08:52:18 | 000,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS2\System32\dllcache\cpqtrnd5.sys
[2010/10/25 08:52:17 | 000,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS2\System32\dllcache\cpqndis5.sys
[2010/10/25 08:52:17 | 000,014,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cpqarray.sys
[2010/10/25 08:52:12 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\compbatt.sys
[2010/10/25 08:52:10 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cnusd.dll
[2010/10/25 08:52:10 | 000,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS2\System32\dllcache\cnxt1803.sys
[2010/10/25 08:52:07 | 000,006,656 | ---- | C] (CMD Technology, Inc.) -- C:\WINDOWS2\System32\dllcache\cmdide.sys
[2010/10/25 08:52:06 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS2\System32\dllcache\cmbp0wdm.sys
[2010/10/25 08:52:05 | 000,013,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cmbatt.sys
[2010/10/25 08:52:04 | 000,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cl546xm.sys
[2010/10/25 08:52:04 | 000,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cl546x.dll
[2010/10/25 08:52:03 | 000,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cl5465.dll
[2010/10/25 08:52:03 | 000,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cirrus.sys
[2010/10/25 08:52:02 | 000,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cirrus.dll
[2010/10/25 08:52:00 | 000,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\cinemclc.sys
[2010/10/25 08:51:59 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS2\System32\dllcache\cicap.sys
[2010/10/25 08:51:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\changer.sys
[2010/10/25 08:51:51 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cem56n5.sys
[2010/10/25 08:51:50 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\ce3n5.sys
[2010/10/25 08:51:50 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cem33n5.sys
[2010/10/25 08:51:50 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cem28n5.sys
[2010/10/25 08:51:49 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\ce2n5.sys
[2010/10/25 08:51:48 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\cd20xrnt.sys
[2010/10/25 08:51:47 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cbmdmkxx.sys
[2010/10/25 08:51:47 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ccdecode.sys
[2010/10/25 08:51:46 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS2\System32\dllcache\cben5.sys
[2010/10/25 08:51:46 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS2\System32\dllcache\cb325.sys
[2010/10/25 08:51:45 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS2\System32\dllcache\cb102.sys
[2010/10/25 08:51:44 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS2\System32\dllcache\diapi2.sys
[2010/10/25 08:51:44 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS2\System32\dllcache\diapi2NT.dll
[2010/10/25 08:51:42 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext30.dll
[2010/10/25 08:51:42 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext30.ax
[2010/10/25 08:51:41 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext20.ax
[2010/10/25 08:51:41 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camext20.dll
[2010/10/25 08:51:40 | 000,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camdrv30.sys
[2010/10/25 08:51:40 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camexo20.dll
[2010/10/25 08:51:40 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camexo20.ax
[2010/10/25 08:51:39 | 000,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camdro21.sys
[2010/10/25 08:51:39 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\camdrv21.sys
[2010/10/25 08:51:09 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\bulltlp3.sys
[2010/10/25 08:51:07 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS2\System32\dllcache\brzwlan.sys
[2010/10/25 08:51:07 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brusbmdm.sys
[2010/10/25 08:51:07 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brusbscn.sys
[2010/10/25 08:51:06 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brserwdm.sys
[2010/10/25 08:51:06 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brserif.dll
[2010/10/25 08:51:05 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS2\System32\dllcache\brscnrsm.dll
[2010/10/25 08:51:04 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brparwdm.sys
[2010/10/25 08:51:04 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brparimg.sys
[2010/10/25 08:51:03 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmfusb.dll
[2010/10/25 08:51:02 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmfrsmg.exe
[2010/10/25 08:51:01 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\brmfcwia.dll
[2010/10/25 08:51:01 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmflpt.dll
[2010/10/25 08:51:00 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brmfbidi.dll
[2010/10/25 08:51:00 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brfiltup.sys
[2010/10/25 08:50:59 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brfiltlo.sys
[2010/10/25 08:50:59 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brfilt.sys
[2010/10/25 08:50:58 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brevif.dll
[2010/10/25 08:50:57 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS2\System32\dllcache\brbidiif.dll
[2010/10/25 08:50:57 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS2\System32\dllcache\brcoinst.dll
[2010/10/25 08:50:55 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\binlsvc.dll
[2010/10/25 08:50:54 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\bdasup.sys
[2010/10/25 08:50:53 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS2\System32\dllcache\bcmdm.sys
[2010/10/25 08:50:53 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\bdaplgin.ax
[2010/10/25 08:50:52 | 000,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\bcm42u.sys
[2010/10/25 08:50:52 | 000,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\bcm42xx5.sys
[2010/10/25 08:50:52 | 000,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\bcm4e5.sys
[2010/10/25 08:50:50 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\banshee.sys
[2010/10/25 08:50:50 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\battc.sys
[2010/10/25 08:50:49 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\banshee.dll
[2010/10/25 08:50:49 | 000,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS2\System32\dllcache\b57xp32.sys
[2010/10/25 08:50:48 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\b1cbase.sys
[2010/10/25 08:50:48 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS2\System32\dllcache\aztw2320.sys
[2010/10/25 08:50:47 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\avmenum.dll
[2010/10/25 08:50:47 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\avmwan.sys
[2010/10/25 08:50:46 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS2\System32\dllcache\avmcoxp.dll
[2010/10/25 08:50:45 | 000,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\avcstrm.sys
[2010/10/25 08:50:44 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\avc.sys
[2010/10/25 08:50:44 | 000,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\avcaudio.sys
[2010/10/25 08:50:38 | 000,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atiragem.sys
[2010/10/25 08:50:37 | 000,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atiraged.dll
[2010/10/25 08:50:35 | 000,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atimpab.sys
[2010/10/25 08:50:35 | 000,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atimtai.sys
[2010/10/25 08:50:35 | 000,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atimpae.sys
[2010/10/25 08:50:34 | 000,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atidvai.dll
[2010/10/25 08:50:34 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\atievxx.exe
[2010/10/25 08:50:33 | 000,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atidrab.dll
[2010/10/25 08:50:33 | 000,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS2\System32\dllcache\atidrae.dll
[2010/10/25 08:50:29 | 000,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS2\System32\dllcache\ati.sys
[2010/10/25 08:50:28 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\ati.dll
[2010/10/25 08:50:27 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS2\System32\dllcache\aspndis3.sys
[2010/10/25 08:50:27 | 000,014,848 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS2\System32\dllcache\asc3550.sys
[2010/10/25 08:50:26 | 000,026,496 | ---- | C] (Advanced System Products, Inc.) -- C:\WINDOWS2\System32\dllcache\asc.sys
[2010/10/25 08:50:26 | 000,022,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\asc3350p.sys
[2010/10/25 08:50:24 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\apmbatt.sys
[2010/10/25 08:50:23 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS2\System32\dllcache\an983.sys
[2010/10/25 08:50:22 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS2\System32\dllcache\amb8002.sys
[2010/10/25 08:50:22 | 000,012,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\amsint.sys
[2010/10/25 08:50:21 | 000,005,248 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\aliide.sys
[2010/10/25 08:50:20 | 000,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\ali5261.sys
[2010/10/25 08:50:20 | 000,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\alifir.sys
[2010/10/25 08:50:19 | 000,056,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\aic78xx.sys
[2010/10/25 08:50:18 | 000,055,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\aic78u2.sys
[2010/10/25 08:50:18 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\aha154x.sys
[2010/10/25 08:50:10 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\agcgauge.ax
[2010/10/25 08:49:31 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\adpu160m.sys
[2010/10/25 08:49:31 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS2\System32\dllcache\adptsf50.sys
[2010/10/25 08:49:30 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\adm8830.sys
[2010/10/25 08:49:30 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\admjoy.sys
[2010/10/25 08:49:29 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\adm8810.sys
[2010/10/25 08:49:29 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS2\System32\dllcache\adm8820.sys
[2010/10/25 08:49:28 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS2\System32\dllcache\adm8511.sys
[2010/10/25 08:49:28 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\adicvls.sys
[2010/10/25 08:49:26 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS2\System32\dllcache\acerscad.dll
[2010/10/25 08:49:25 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS2\System32\dllcache\ac97sis.sys
[2010/10/25 08:49:25 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS2\System32\dllcache\ac97via.sys
[2010/10/25 08:49:24 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS2\System32\dllcache\ac97ali.sys
[2010/10/25 08:49:24 | 000,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS2\System32\dllcache\ac97intc.sys
[2010/10/25 08:49:24 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\abp480n5.sys
[2010/10/25 08:49:23 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS2\System32\dllcache\a3dapi.dll
[2010/10/25 08:49:22 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\8514a.dll
[2010/10/25 08:49:21 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\3dfxvsm.sys
[2010/10/25 08:49:21 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\61883.sys
[2010/10/25 08:49:21 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\4mmdat.sys
[2010/10/25 08:49:20 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS2\System32\dllcache\3cwmcru.sys
[2010/10/25 08:49:20 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS2\System32\dllcache\3dfxvs.dll
[2010/10/25 08:49:19 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\1394vdbg.sys
[2010/10/25 08:49:18 | 000,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\1394bus.sys
[2010/10/25 08:48:55 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\s3legacy.dll
[2010/10/25 08:05:36 | 000,000,000 | ---D | C] -- C:\Program Files\DivX
[2010/10/25 08:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\DivXCodec
[2010/10/25 07:56:38 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\******\Recent
[2010/10/25 07:44:19 | 000,000,000 | ---D | C] -- C:\WINDOWS2\SxsCaPendDel
[2010/10/25 07:44:17 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2010/10/25 06:59:35 | 000,000,000 | ---D | C] -- C:\Program Files\COMODO
[2010/10/25 06:57:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\Comodo
[2010/10/24 05:33:12 | 000,000,000 | ---D | C] -- C:\WINDOWS2\ERUNT
[2010/10/23 10:15:01 | 006,776,168 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\******\My Documents\WindowsUpdateAgent30-x86.exe
[2010/10/23 09:15:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\FileCure
[2010/10/09 01:56:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\ljohns\Application Data\FreeFileViewer
[2010/10/09 01:54:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\Norton
[2010/10/09 01:54:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\Symantec
[2010/10/09 01:53:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS2\Application Data\NortonInstaller
[2010/10/09 01:53:48 | 000,000,000 | ---D | C] -- C:\Program Files\Free Offers from Freeze.com
[2010/10/03 00:42:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Local Settings\Application Data\Adobe
[2010/10/02 05:58:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\******\Application Data\U3
[2010/10/02 05:53:33 | 000,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\dllcache\usbscan.sys
[2010/10/02 05:53:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\ptpusb.dll
[2010/10/02 05:53:31 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS2\System32\ptpusd.dll

========== Files - Modified Within 30 Days ==========

[2010/10/27 05:03:27 | 000,002,048 | --S- | M] () -- C:\WINDOWS2\bootstat.dat
[2010/10/27 04:01:07 | 000,523,390 | ---- | M] () -- C:\WINDOWS2\System32\perfh009.dat
[2010/10/27 04:01:07 | 000,095,180 | ---- | M] () -- C:\WINDOWS2\System32\perfc009.dat
[2010/10/26 15:01:58 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\******\Desktop\OTL.exe
[2010/10/26 12:17:32 | 000,001,393 | ---- | M] () -- C:\WINDOWS2\imsins.BAK
[2010/10/26 12:14:23 | 000,001,791 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Windows Search.lnk
[2010/10/26 12:03:50 | 000,013,002 | ---- | M] () -- C:\WINDOWS2\System32\wpa.dbl
[2010/10/26 11:39:06 | 000,080,384 | ---- | M] () -- C:\Documents and Settings\******\Desktop\mbr.exe
[2010/10/26 11:28:38 | 000,004,605 | ---- | M] () -- C:\Documents and Settings\******\Desktop\DDS Attach.zip
[2010/10/26 11:26:14 | 000,001,734 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS2\Desktop\WinZip.lnk
[2010/10/26 11:23:49 | 016,262,472 | ---- | M] () -- C:\Documents and Settings\******\My Documents\winzip145.exe
[2010/10/26 10:40:23 | 234,487,808 | ---- | M] () -- C:\WINDOWS2\MEMORY.DMP
[2010/10/26 06:54:09 | 000,545,280 | ---- | M] () -- C:\Documents and Settings\******\Desktop\dds.scr
[2010/10/26 06:51:18 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\******\defogger_reenable
[2010/10/26 06:50:04 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\******\Desktop\Defogger.exe
[2010/10/26 06:22:23 | 001,317,464 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\******\Desktop\tk123.com.exe
[2010/10/26 06:07:19 | 000,000,335 | ---- | M] () -- C:\Documents and Settings\******\Desktop\FixExe.reg
[2010/10/26 06:04:21 | 000,294,912 | ---- | M] () -- C:\Documents and Settings\******\Desktop\glo07kyc.exe
[2010/10/26 05:13:11 | 000,099,840 | ---- | M] () -- C:\Documents and Settings\******\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/10/26 04:16:06 | 000,000,167 | ---- | M] () -- C:\WINDOWS2\System32\spupdsvc.inf
[2010/10/26 02:13:37 | 000,095,072 | ---- | M] () -- C:\WINDOWS2\System32\FNTCACHE.DAT
[2010/10/25 01:44:51 | 000,001,324 | ---- | M] () -- C:\WINDOWS2\System32\d3d9caps.dat
[2010/10/24 07:14:04 | 000,000,290 | ---- | M] () -- C:\Documents and Settings\******\My Documents\cc_20101024_071401.reg
[2010/10/24 07:08:11 | 000,081,102 | ---- | M] () -- C:\Documents and Settings\******\My Documents\cc_20101024_070754.reg
[2010/10/24 07:05:14 | 000,000,682 | ---- | M] () -- C:\Documents and Settings\******\Desktop\CCleaner.lnk
[2010/10/23 11:49:03 | 000,000,146 | ---- | M] () -- C:\Documents and Settings\******\default.pls
[2010/10/23 11:48:43 | 000,000,069 | ---- | M] () -- C:\WINDOWS2\NeroDigital.ini
[2010/10/23 10:15:07 | 006,776,168 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\******\My Documents\WindowsUpdateAgent30-x86.exe
[2010/10/23 09:41:00 | 003,327,000 | ---- | M] () -- C:\Documents and Settings\******\My Documents\WindowsXP-KB942288-v3-x86.exe
[2010/10/23 09:08:51 | 001,768,236 | ---- | M] () -- C:\Documents and Settings\******\My Documents\Windows6.0-KB942288-v2-x86.msu

========== Files Created - No Company Name ==========

[2010/10/26 12:14:23 | 000,001,791 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS2\Start Menu\Programs\Startup\Windows Search.lnk
[2010/10/26 11:40:56 | 000,000,646 | ---- | C] () -- C:\Documents and Settings\******\mbr.log
[2010/10/26 11:39:05 | 000,080,384 | ---- | C] () -- C:\Documents and Settings\******\Desktop\mbr.exe
[2010/10/26 11:28:38 | 000,004,605 | ---- | C] () -- C:\Documents and Settings\******\Desktop\DDS Attach.zip
[2010/10/26 11:26:14 | 000,001,734 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS2\Desktop\WinZip.lnk
[2010/10/26 11:23:29 | 016,262,472 | ---- | C] () -- C:\Documents and Settings\******\My Documents\winzip145.exe
[2010/10/26 06:54:08 | 000,545,280 | ---- | C] () -- C:\Documents and Settings\******\Desktop\dds.scr
[2010/10/26 06:51:18 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\******\defogger_reenable
[2010/10/26 06:50:03 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\******\Desktop\Defogger.exe
[2010/10/26 06:07:17 | 000,000,335 | ---- | C] () -- C:\Documents and Settings\******\Desktop\FixExe.reg
[2010/10/26 06:04:19 | 000,294,912 | ---- | C] () -- C:\Documents and Settings\******\Desktop\glo07kyc.exe
[2010/10/26 04:16:06 | 000,000,167 | ---- | C] () -- C:\WINDOWS2\System32\spupdsvc.inf
[2010/10/26 02:50:11 | 000,001,393 | ---- | C] () -- C:\WINDOWS2\imsins.BAK
[2010/10/25 09:04:30 | 000,018,944 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\xrxscnui.dll
[2010/10/25 09:04:29 | 000,027,648 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\xrxftplt.exe
[2010/10/25 08:59:26 | 000,033,280 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\psisrndr.ax
[2010/10/25 08:59:22 | 000,363,520 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\psisdecd.dll
[2010/10/25 08:57:07 | 000,056,832 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\msdvbnp.ax
[2010/10/25 08:54:26 | 000,165,888 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt53.dll
[2010/10/25 08:54:25 | 000,093,696 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt42.dll
[2010/10/25 08:54:24 | 000,101,376 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt34.dll
[2010/10/25 08:54:23 | 000,089,088 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt33.dll
[2010/10/25 08:54:22 | 000,083,968 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\hpgt21.dll
[2010/10/25 08:52:54 | 000,029,768 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\divasu.dll
[2010/10/25 08:52:53 | 000,037,962 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\divaprop.dll
[2010/10/25 08:52:53 | 000,006,216 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\divaci.dll
[2010/10/25 08:50:41 | 000,026,624 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\ativxbar.sys
[2010/10/25 08:50:41 | 000,023,552 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atixbar.sys
[2010/10/25 08:50:40 | 000,019,456 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\ativttxx.sys
[2010/10/25 08:50:40 | 000,009,472 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\ativmdcd.sys
[2010/10/25 08:50:39 | 000,017,152 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atitvsnd.sys
[2010/10/25 08:50:39 | 000,017,152 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atitunep.sys
[2010/10/25 08:50:38 | 000,049,920 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atirtcap.sys
[2010/10/25 08:50:38 | 000,026,880 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atirtsnd.sys
[2010/10/25 08:50:37 | 000,010,240 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atipcxxx.sys
[2010/10/25 08:50:32 | 000,046,464 | ---- | C] () -- C:\WINDOWS2\System32\dllcache\atibt829.sys
[2010/10/24 07:14:02 | 000,000,290 | ---- | C] () -- C:\Documents and Settings\******\My Documents\cc_20101024_071401.reg
[2010/10/24 07:07:58 | 000,081,102 | ---- | C] () -- C:\Documents and Settings\******\My Documents\cc_20101024_070754.reg
[2010/10/24 07:05:14 | 000,000,682 | ---- | C] () -- C:\Documents and Settings\******\Desktop\CCleaner.lnk
[2010/10/23 11:46:36 | 000,000,069 | ---- | C] () -- C:\WINDOWS2\NeroDigital.ini
[2010/10/23 09:09:57 | 003,327,000 | ---- | C] () -- C:\Documents and Settings\******\My Documents\WindowsXP-KB942288-v3-x86.exe
[2010/10/23 09:08:50 | 001,768,236 | ---- | C] () -- C:\Documents and Settings\******\My Documents\Windows6.0-KB942288-v2-x86.msu
[2010/08/28 07:08:54 | 000,000,022 | -HS- | C] () -- C:\Documents and Settings\******\Application Data\Sys6925.Config Collection.sys
[2010/06/16 08:51:13 | 000,000,000 | ---- | C] () -- C:\WINDOWS2\Irremote.ini
[2010/06/15 08:20:38 | 000,000,000 | ---- | C] () -- C:\WINDOWS2\khooker.INI
[2010/06/15 08:06:13 | 000,151,552 | ---- | C] () -- C:\WINDOWS2\System32\setuplib.dll
[2010/06/15 08:05:33 | 000,002,942 | ---- | C] () -- C:\WINDOWS2\Ascd_tmp.ini
[2010/06/15 08:05:32 | 000,005,824 | ---- | C] () -- C:\WINDOWS2\System32\drivers\ASUSHWIO.SYS
[2010/06/14 20:57:06 | 000,099,840 | ---- | C] () -- C:\Documents and Settings\******\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010/06/14 10:25:14 | 000,004,205 | ---- | C] () -- C:\WINDOWS2\ODBCINST.INI
[2007/09/27 10:51:02 | 000,020,698 | ---- | C] () -- C:\WINDOWS2\System32\idxcntrs.ini
[2007/09/27 10:48:48 | 000,030,628 | ---- | C] () -- C:\WINDOWS2\System32\gsrvctr.ini
[2007/09/27 10:48:28 | 000,031,698 | ---- | C] () -- C:\WINDOWS2\System32\gthrctr.ini
[2006/07/05 02:46:23 | 000,049,498 | ---- | C] () -- C:\Program Files\ Terms.html
[2006/06/11 22:03:05 | 000,004,096 | ---- | C] () -- C:\Program Files\GameHistory.dat
[2003/02/19 01:26:28 | 000,028,672 | ---- | C] () -- C:\WINDOWS2\System32\cmirmdrv.dll

========== Custom Scans ==========


< %systemroot%\system32\*.dll /lockedfiles >

< %systemroot%\Tasks\*.job /lockedfiles >

< %systemroot%\*. /mp /s >

< %SYSTEMDRIVE%\*.exe >

========== Files - Unicode (All) ==========
[2007/05/31 18:05:20 | 000,000,000 | ---D | M](C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\Mіcrosoft
[2007/05/31 18:05:20 | 000,000,000 | ---D | M](C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\Mіcrosoft
[2007/05/21 18:24:32 | 000,000,000 | ---D | M](C:\Program Files\??stem) -- C:\Program Files\ѕуstem
[2007/05/21 18:24:32 | 000,000,000 | ---D | M](C:\Program Files\??stem) -- C:\Program Files\ѕуstem
[2007/04/28 03:55:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Мicrosoft.NET
[2007/04/28 03:55:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Мicrosoft.NET
[2007/03/16 01:31:07 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\ѕystem32
[2007/03/16 01:31:07 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\ѕystem32
[2007/03/15 00:26:23 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\sеcurity
[2007/03/15 00:26:23 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\sеcurity
[2007/02/21 01:38:41 | 000,000,000 | ---D | M](C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\WіnSxS
[2007/02/21 01:38:41 | 000,000,000 | ---D | M](C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\WіnSxS
[2007/02/09 02:26:09 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\ΑppPatch
[2007/02/09 02:26:09 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\ΑppPatch
[2007/02/03 02:33:54 | 000,000,000 | ---D | M](C:\Program Files\F?nts) -- C:\Program Files\Fоnts
[2007/02/03 02:33:54 | 000,000,000 | ---D | M](C:\Program Files\F?nts) -- C:\Program Files\Fоnts
[2007/02/02 02:49:07 | 000,000,000 | ---D | M](C:\Program Files\S?mantec) -- C:\Program Files\Sуmantec
[2007/02/02 02:49:07 | 000,000,000 | ---D | M](C:\Program Files\S?mantec) -- C:\Program Files\Sуmantec
[2007/01/31 01:22:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\Міcrosoft.NET
[2007/01/31 01:22:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\Міcrosoft.NET
[2007/01/30 01:33:39 | 000,000,000 | ---D | M](C:\Program Files\??crosoft.NET) -- C:\Program Files\Μіcrosoft.NET
[2007/01/30 01:33:39 | 000,000,000 | ---D | M](C:\Program Files\??crosoft.NET) -- C:\Program Files\Μіcrosoft.NET
[2007/01/24 16:08:49 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Оracle
[2007/01/24 16:08:49 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Оracle
[2007/01/19 20:51:19 | 000,000,000 | ---D | M](C:\Program Files\s?stem) -- C:\Program Files\sуstem
[2007/01/19 20:51:19 | 000,000,000 | ---D | M](C:\Program Files\s?stem) -- C:\Program Files\sуstem
[2007/01/16 22:14:33 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Μicrosoft.NET
[2007/01/16 22:14:33 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Μicrosoft.NET
[2006/12/29 11:39:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\Μicrosoft
[2006/12/29 11:39:57 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\Μicrosoft
[2006/12/28 11:02:26 | 000,000,000 | ---D | M](C:\Program Files\?ystem) -- C:\Program Files\ѕystem
[2006/12/28 11:02:26 | 000,000,000 | ---D | M](C:\Program Files\?ystem) -- C:\Program Files\ѕystem
[2006/12/09 12:07:08 | 000,000,000 | ---D | M](C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\aѕsembly
[2006/12/09 12:07:08 | 000,000,000 | ---D | M](C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\aѕsembly
[2006/11/28 13:37:44 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\sуmbols
[2006/11/28 13:37:44 | 000,000,000 | ---D | M](C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\sуmbols
[2006/11/27 12:49:36 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\ѕymbols
[2006/11/27 12:49:36 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\ѕymbols
[2006/11/25 12:14:59 | 000,000,000 | ---D | M](C:\Program Files\M?crosoft.NET) -- C:\Program Files\Mіcrosoft.NET
[2006/11/25 12:14:59 | 000,000,000 | ---D | M](C:\Program Files\M?crosoft.NET) -- C:\Program Files\Mіcrosoft.NET
[2006/11/17 19:49:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\Таsks
[2006/11/17 19:49:31 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\Таsks
[2006/11/16 20:48:08 | 000,000,000 | ---D | M](C:\Program Files\?ecurity) -- C:\Program Files\ѕecurity
[2006/11/16 20:48:08 | 000,000,000 | ---D | M](C:\Program Files\?ecurity) -- C:\Program Files\ѕecurity
[2006/11/09 17:15:41 | 000,000,000 | ---D | M](C:\Program Files\s?mbols) -- C:\Program Files\sуmbols
[2006/11/09 17:15:41 | 000,000,000 | ---D | M](C:\Program Files\s?mbols) -- C:\Program Files\sуmbols
[2006/10/27 02:24:40 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Οracle
[2006/10/27 02:24:40 | 000,000,000 | ---D | M](C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Οracle
[2006/10/24 03:04:56 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\ѕуmbols
[2006/10/24 03:04:56 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\ѕуmbols
[2006/10/21 01:59:32 | 000,000,000 | ---D | M](C:\Program Files\?dobe) -- C:\Program Files\Αdobe
[2006/10/21 01:59:32 | 000,000,000 | ---D | M](C:\Program Files\?dobe) -- C:\Program Files\Αdobe
[2006/10/13 01:19:12 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\Ѕуmantec
[2006/10/13 01:19:12 | 000,000,000 | ---D | M](C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\Ѕуmantec
(C:\Program Files\s?stem) -- C:\Program Files\sуstem
(C:\Program Files\s?mbols) -- C:\Program Files\sуmbols
(C:\Program Files\S?mantec) -- C:\Program Files\Sуmantec
(C:\Program Files\M?crosoft.NET) -- C:\Program Files\Mіcrosoft.NET
(C:\Program Files\F?nts) -- C:\Program Files\Fоnts
(C:\Program Files\Common Files\W?nSxS) -- C:\Program Files\Common Files\WіnSxS
(C:\Program Files\Common Files\s?mbols) -- C:\Program Files\Common Files\sуmbols
(C:\Program Files\Common Files\s?curity) -- C:\Program Files\Common Files\sеcurity
(C:\Program Files\Common Files\M?crosoft) -- C:\Program Files\Common Files\Mіcrosoft
(C:\Program Files\Common Files\a?sembly) -- C:\Program Files\Common Files\aѕsembly
(C:\Program Files\Common Files\?ystem32) -- C:\Program Files\Common Files\ѕystem32
(C:\Program Files\Common Files\?ymbols) -- C:\Program Files\Common Files\ѕymbols
(C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Оracle
(C:\Program Files\Common Files\?racle) -- C:\Program Files\Common Files\Οracle
(C:\Program Files\Common Files\?ppPatch) -- C:\Program Files\Common Files\ΑppPatch
(C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Мicrosoft.NET
(C:\Program Files\Common Files\?icrosoft.NET) -- C:\Program Files\Common Files\Μicrosoft.NET
(C:\Program Files\Common Files\?icrosoft) -- C:\Program Files\Common Files\Μicrosoft
(C:\Program Files\Common Files\??sks) -- C:\Program Files\Common Files\Таsks
(C:\Program Files\Common Files\??mbols) -- C:\Program Files\Common Files\ѕуmbols
(C:\Program Files\Common Files\??mantec) -- C:\Program Files\Common Files\Ѕуmantec
(C:\Program Files\Common Files\??crosoft.NET) -- C:\Program Files\Common Files\Міcrosoft.NET
(C:\Program Files\?ystem) -- C:\Program Files\ѕystem
(C:\Program Files\?ecurity) -- C:\Program Files\ѕecurity
(C:\Program Files\?dobe) -- C:\Program Files\Αdobe
(C:\Program Files\??stem) -- C:\Program Files\ѕуstem
(C:\Program Files\??crosoft.NET) -- C:\Program Files\Μіcrosoft.NET

========== Alternate Data Streams ==========

@Alternate Data Stream - 88 bytes -> C:\Documents and Settings\******\My Documents\WindowsXP-KB942288-v3-x86.exe:SummaryInformation
@Alternate Data Stream - 136 bytes -> C:\Documents and Settings\All Users.WINDOWS2\Application Data\TEMP:B63300D1
@Alternate Data Stream - 104 bytes -> C:\Documents and Settings\All Users.WINDOWS2\Application Data\TEMP:D1B5B4F1

< End of report >

#11 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 27 October 2010 - 12:31 PM

GMER froze again after taking 4 plus hrs to scan, i did copy the pop up it said
windows was unable to save all the data for the file
\device\harddiskvolume1\$external\$usn.jrnl:$j.
the data has been lost. this error may be caused by a failure of your
computer hardware or network connection please try to save this file elsewhere


2nd scan
GMER still froze but after making sure fogger was on i got the same pop up as above but said
\device\harddiskvolume1\windows2\installer\$patchcache$\managed

also a second pop up that said
warning!
GMER has found system modification caused by rootkit activity


also after rebooting another pop up said
SIS audio utility
device path not found


i will try scanning with MBR and post again
did scan posted below

i'm going to try GMER again because i don't know if i had waited long enough for DEFOGGER to turn of my CD emulation programs the first time because i just closed the pop up after clicking Disable

Edited by yukonrr, 27 October 2010 - 03:28 PM.


#12 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 27 October 2010 - 12:38 PM

MBR scan

Stealth MBR rootkit/Mebroot/Sinowal/TDL4 detector 0.4.1 by Gmer, http://www.gmer.net
Windows 5.1.2600 Disk: WDC_WD800BB-00CAA1 rev.17.07W17 -> \Device\Ide\IdeDeviceP0T0L0-3

device: opened successfully
user: MBR read successfully
called modules: ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
1 nt!IofCallDriver[0x804E37D5] -> \Device\Harddisk0\DR0[0x81B37030]
3 CLASSPNP[0xF9EECFD7] -> nt!IofCallDriver[0x804E37D5] -> \Device\00000057[0x81AD3F18]
5 ACPI[0xF9E63620] -> nt!IofCallDriver[0x804E37D5] -> \Device\Ide\IdeDeviceP0T0L0-3[0x81AEB7F0]
kernel: MBR read successfully
user & kernel MBR OK

#13 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:09:24 PM

Posted 27 October 2010 - 04:01 PM

I don't think that you have a rootkit, the Gmer message could be a false positive, although it is hard to tell without the log. One of the errors might suggest some bad sectors on the hard drive, so it would be a good idea to run chkdsk on all your drives.



Run OTL
  • Under the Custom Scans/Fixes box at the bottom, paste in the following

    :Commands
    [purity]
    
  • Then click the Run Fix button at the top
  • Let the program run unhindered, reboot when it is done
  • You will get a log that shows the results of the fix. Please post it.
  • Then also run a new OTL scan by clicking Run Scan and post the new OTL log.



Please do a scan with ESET OnlineScan

Note: If you run this in a browser other than IE you will be asked to download and install esetsmartinstaller_enu.exe
  • Click the Posted Image button.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser and allow it to install the ActiveX control.
  • Check Posted Image
  • Push the Start button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


Then please post back here with the following logs:
  • OTL results
  • New OTL log
  • ESET report

Thanks

unite.jpg


#14 yukonrr

yukonrr
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:01:24 PM

Posted 27 October 2010 - 04:29 PM

OTL NEVER gave me results after reboot and when i did that scan it finished right away, could i be looking in the wrong place because it didn't overwrite the last log this time?

#15 syler

syler

  • Malware Response Team
  • 8,150 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Warrington, UK
  • Local time:09:24 PM

Posted 27 October 2010 - 04:52 PM

The OTL results should be located in C:\_OTL\Moved Files\ the name of the log will consist of the time+date when the fix was run. If the new scan completed right away, then it hasn't done the scan for some reason, please try doing it again.

unite.jpg





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users