Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Several Different antispywares installed


  • This topic is locked This topic is locked
3 replies to this topic

#1 michael_brancato

michael_brancato

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago
  • Local time:06:07 AM

Posted 03 August 2012 - 12:21 PM

I woke up one morning to find that several new programs were installed on my computer. I also learned that my IE homepage was changed to "my lazy sundays". I have since fixed that. My computer is running slow and im recieveing all kinds of alerts from these new programs. Please help.

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by michael at 3:51:32 on 2004-02-24
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.1023.110 [GMT -6:00]
.
AV: Microsoft Security Essentials *Enabled/Updated* {EDB4FA23-53B8-4AFA-8C5D-99752CCA7095}
.
============== Running Processes ===============
.
C:\PROGRA~1\ENIGMA~1\SPYHUN~1\SH4SER~1.EXE
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
c:\Program Files\Microsoft Security Client\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Microsoft\BingBar\7.1.361.0\BBSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\WINDOWS\System32\CTsvcCDA.exe
C:\WINDOWS\System32\svchost.exe -k HTTPFilter
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTBCM\Binn\sqlservr.exe
C:\WINDOWS\System32\nvsvc32.exe
C:\Program Files\Tenda\Common\RaRegistry.exe
C:\Program Files\Ascentive\Spyware Striker\SBAMSvc.exe
C:\Program Files\Dell Support Center\bin\sprtsvc.exe
C:\WINDOWS\System32\svchost.exe -k imgsvc
C:\WINDOWS\Explorer.EXE
C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDFME\WDFME.exe
C:\Program Files\Western Digital\WD SmartWare\Front Parlor\WDSC.exe
C:\WINDOWS\System32\MsPMSPSv.exe
C:\Program Files\Canon\CAL\CALMAIN.exe
C:\Program Files\Intel\Modem Event Monitor\IntelMEM.exe
C:\WINDOWS\system32\dla\tfswctrl.exe
C:\Program Files\2Wire\2PortalMon.exe
C:\Program Files\Dell Support Center\bin\sprtcmd.exe
C:\Program Files\Microsoft IntelliType Pro\itype.exe
C:\Program Files\Microsoft IntelliPoint\ipoint.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Hp\HP Software Update\HPWuSchd2.exe
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\PC HealthBoost\PCHealthBoost.exe
C:\Program Files\Enigma Software Group\SpyHunter\SpyHunter4.exe
C:\Program Files\Microsoft IntelliPoint\dpupdchk.exe
C:\Program Files\Ask.com\Updater\Updater.exe
C:\Program Files\Advanced System Protector\AdvancedSystemProtector.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Messenger\msmsgs.exe
C:\Program Files\Windows Media Player\WMPNSCFG.exe
C:\Program Files\Ascentive\Performance Center\APCMain.exe
C:\Program Files\Ascentive\Spyware Striker\SpywareStriker.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Western Digital\WD SmartWare\WD Drive Manager\WDDMStatus.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\WINDOWS\system32\wscntfy.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://search.live.com
uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7
uSearch Bar = hxxp://search.live.com/sphome.aspx
mSearch Bar = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchAssistant = hxxp://www.google.com/ie
uSearchURL,(Default) = hxxp://search.yahoo.com/search?fr=mcafee&p=%s
mSearchAssistant = hxxp://search.live.com/sphome.aspx
uURLSearchHooks: UrlSearchHook Class: {00000000-6e41-4fd3-8538-502f5495e5fc} - c:\program files\ask.com\GenericAskToolbar.dll
uURLSearchHooks: H - No File
mURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
BHO: HP Smart Print BHO: {1658d3a1-9e13-4196-a82a-d70d70880f36} - c:\program files\hewlett-packard\smartprint\QuickPrintBHO.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Bing Bar Helper: {1dad3af3-ef2f-4f64-ac4b-11789189fcb6} - c:\program files\microsoft\bingbar\7.1.361.0\BingExt.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_07\bin\ssv.dll
BHO: WOT Helper: {c920e44a-7f78-4e64-bdd7-a57026e7feb7} - c:\program files\wot\WOT.dll
BHO: Support.com Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn\YTSingleInstance.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn\yt.dll
TB: WOT: {71576546-354d-41c9-aae8-31f2ec22bf0d} - c:\program files\wot\WOT.dll
TB: Bing Bar: {eec0f710-38b5-4aba-99bf-ec87564a4e13} - "c:\program files\microsoft\bingbar\7.1.361.0\BingExt.dll"
TB: Support.com Toolbar: {d4027c7f-154a-4066-a1ad-4243d8127440} - c:\program files\ask.com\GenericAskToolbar.dll
TB: {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No File
TB: {2787EA8E-8D87-48AF-88AD-B30246C917AB} - No File
TB: {719D74AB-1AF9-43A1-8C62-D8750628D93E} - No File
EB: {32683183-48a0-441b-a342-7c2a440a9478} - No File
uRun: [Sonic RecordNow!]
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
uRun: [MSMSGS] "c:\program files\messenger\msmsgs.exe" /background
uRun: [WMPNSCFG] c:\program files\windows media player\WMPNSCFG.exe
uRun: [Google Update] "c:\documents and settings\temp\local settings\application data\google\update\GoogleUpdate.exe" /c
uRun: [Performance Center] c:\program files\ascentive\performance center\ApcMain.exe -m
uRun: [Spyware Striker Pro] c:\program files\ascentive\spyware striker\SpywareStriker.exe -m
uRun: [AROReminder] c:\program files\aro 2012\aro.exe -rem
uRun: [RDReminder] c:\program files\regclean pro\RegCleanPro.exe -rem
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRunOnce: [Shockwave Updater] c:\windows\system32\adobe\shockw~1\SWHELP~1.EXE -Update -1100465 -"Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1; GTB5; .NET CLR 1.1.4322; .NET CLR 2.0.50727; MSN Optimized;US; MSN Optimized;US; SPC 3.1 P1 Tc)" -"http://www.miniclip.com/games/on-the-run/en/"
mRun: [IntelMeM] c:\program files\intel\modem event monitor\IntelMEM.exe
mRun: [dla] c:\windows\system32\dla\tfswctrl.exe
mRun: [StorageGuard] "c:\program files\common files\sonic\update manager\sgtray.exe" /r
mRun: [DVDSentry] c:\windows\system32\_DSentry.exe
mRun: [IPInSightMonitor 01] "c:\program files\sbc yahoo!\connection manager\ip insight\IPMon32.exe"
mRun: [2wSysTray] c:\program files\2wire\2PortalMon.exe
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [DellSupportCenter] "c:\program files\dell support center\bin\sprtcmd.exe" /P DellSupportCenter
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\bin\AppleSyncNotifier.exe
mRun: [itype] "c:\program files\microsoft intellitype pro\itype.exe"
mRun: [IntelliPoint] "c:\program files\microsoft intellipoint\ipoint.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Adobe ARM] "c:\program files\common files\adobe\arm\1.0\AdobeARM.exe"
mRun: [HP Software Update] c:\program files\hp\hp software update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [PCHealthBoost] "c:\program files\pc healthboost\PCHealthBoost.exe" /s
mRun: [SpyHunter Security Suite] c:\program files\enigma software group\spyhunter\SpyHunter4.exe
mRun: [ApnUpdater] "c:\program files\ask.com\updater\Updater.exe"
mRun: [Advanced System Protector_startup] "c:\program files\advanced system protector\AdvancedSystemProtector.exe" autolaunch
StartupFolder: c:\docume~1\temp\startm~1\programs\startup\dropbox.lnk - c:\documents and settings\temp\application data\dropbox\bin\Dropbox.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\tendaw~1.lnk - c:\program files\tenda\common\RaUI.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\wddmst~1.lnk - c:\program files\western digital\wd smartware\wd drive manager\WDDMStatus.exe
mPolicies-explorer: <NO NAME> =
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office11\EXCEL.EXE/3000
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501}
IE: {2499216C-4BA5-11D5-BD9C-000103C116D5}
IE: {4528BBE0-4E08-11D5-AD55-00010333D0AD}
IE: {CD67F990-D8E9-11d2-98FE-00C0F0318AFE}
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2}
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office11\REFIEBAR.DLL
DPF: {17492023-C23A-453E-A040-C7C580BBF700} - hxxp://go.microsoft.com/fwlink/?linkid=39204
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} - c:\program files\yahoo!\common\Yinsthelper.dll
DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} - hxxp://download.mcafee.com/molbin/shared/mcinsctl/en-us/4,0,0,84/mcinsctl.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {BCC0FF27-31D9-4614-A68E-C18E1ADA4389} - hxxp://download.mcafee.com/molbin/shared/mcgdmgr/en-us/1,0,0,21/mcgdmgr.cab
DPF: {CAFEEFAC-0014-0002-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/products/plugin/autodl/jinstall-142-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {EF791A6B-FC12-4C68-99EF-FB9E207A39E6} - hxxp://download.mcafee.com/molbin/iss-loc/mcfscan/2,2,0,5005/mcfscan.cab
TCP: Interfaces\{2AD63E04-0122-4E11-B26C-75CF202E9B4C} : DhcpNameServer = 172.16.0.1
TCP: Interfaces\{6EA5C895-BC0D-44AB-B49C-D6B480DD940B} : DhcpNameServer = 172.16.0.1
Handler: wot - {C2A44D6B-CB9F-4663-88A6-DF2F26E4D952} - c:\program files\wot\WOT.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2012-3-20 171064]
R1 MpKsl7dc4dd55;MpKsl7dc4dd55;c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2cb2f7a9-e6d2-4cbd-b28e-c931726c18d1}\MpKsl7dc4dd55.sys [2004-2-23 29904]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [2011-4-29 101720]
R2 Scutum50;Scutum50 NDIS Protocol Driver;c:\windows\system32\drivers\Scutum50.sys [2012-7-13 19072]
S3 bfastfao;bfastfao;\??\c:\docume~1\michael\locals~1\temp\bfastfao.sys --> c:\docume~1\michael\locals~1\temp\bfastfao.sys [?]
S3 mbamchameleon;mbamchameleon;c:\windows\system32\drivers\mbamchameleon.sys [2012-7-15 35144]
S3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2007-3-9 79816]
S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2007-3-9 35272]
S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2007-3-9 34248]
S3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2007-3-9 40552]
S3 rt2870;Ralink 802.11n USB Wireless LAN Card Driver;c:\windows\system32\drivers\rt2870.sys [2012-7-13 827488]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2012-7-8 11520]
.
=============== Created Last 30 ================
.
2012-07-16 04:46:42 35144 ----a-w- c:\windows\system32\drivers\mbamchameleon.sys
2012-07-15 19:54:35 6762896 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\{2cb2f7a9-e6d2-4cbd-b28e-c931726c18d1}\mpengine.dll
2012-07-15 07:03:29 6762896 ----a-w- c:\documents and settings\all users\application data\microsoft\microsoft antimalware\definition updates\backup\mpengine.dll
2012-07-13 19:42:54 521728 ------w- c:\windows\system32\dllcache\jsdbgui.dll
2012-07-13 19:37:01 3072 ------w- c:\windows\system32\iacenc.dll
2012-07-13 19:37:01 3072 ------w- c:\windows\system32\dllcache\iacenc.dll
2012-07-13 19:17:57 237072 ------w- c:\windows\system32\MpSigStub.exe
2012-07-13 19:13:41 -------- d-----w- c:\program files\Microsoft Security Client
2012-07-13 14:27:03 796032 ----a-w- c:\windows\system32\Scutum.dll
2012-07-13 14:27:03 200704 ----a-w- c:\windows\system32\ssleay32.dll
2012-07-13 14:27:03 180224 ----a-w- c:\windows\system32\W32N55.dll
2012-07-13 14:27:02 19072 ----a-w- c:\windows\system32\drivers\Scutum50.sys
2012-07-13 14:27:02 152968 ----a-w- c:\windows\system32\RalinkGina.dll
2012-07-13 14:27:02 147456 ----a-w- c:\windows\system32\DiagFunc.dll
2012-07-13 14:27:02 1085440 ----a-w- c:\windows\system32\libeay32.dll
2012-07-13 14:26:39 -------- d-----w- c:\program files\Tenda
2012-07-13 14:26:17 827488 ----a-w- c:\windows\system32\drivers\rt2870.sys
2012-07-13 14:26:17 238944 ----a-w- c:\windows\system32\RaCoInst.dll
2012-07-13 14:26:10 -------- d-----w- c:\documents and settings\all users\application data\Tenda Driver
2012-07-09 01:57:11 -------- d-----w- c:\documents and settings\temp\local settings\application data\Western_Digital
2012-07-09 01:56:12 -------- d-----w- c:\documents and settings\temp\local settings\application data\Western Digital
2012-07-09 01:55:54 -------- d-----w- c:\documents and settings\all users\application data\Western Digital
2012-07-09 01:55:37 11520 ----a-w- c:\windows\system32\drivers\wdcsam.sys
2012-07-09 01:54:52 -------- d-----w- c:\program files\Western Digital
2012-07-09 01:50:03 -------- d-----w- c:\windows\system32\NtmsData
2012-05-23 06:36:48 491520 ----a-w- c:\windows\system32\AscConTest.dll
2012-04-16 00:46:11 -------- d-----w- c:\documents and settings\temp\local settings\application data\ESET
2012-04-11 20:17:10 2594632 ----a-w- c:\program files\common files\microsoft shared\vba\vba6\VBE6.DLL
2012-03-21 01:44:12 171064 ----a-w- c:\windows\system32\drivers\MpFilter.sys
2012-02-29 14:10:16 148480 ------w- c:\windows\system32\dllcache\imagehlp.dll
2012-02-24 07:30:48 1618216 ----a-w- c:\program files\common files\microsoft shared\office12\OGL.DLL
2011-11-25 07:00:54 565827 ----a-w- c:\windows\system32\sqlite3.dll
2011-11-25 07:00:54 450560 ----a-w- c:\windows\system32\AscSQLite.dll
2011-11-18 12:35:08 60416 ------w- c:\windows\system32\dllcache\packager.exe
2011-11-09 00:46:53 6784 ----a-w- c:\windows\system32\drivers\serscan.sys
2011-11-09 00:46:53 6784 ----a-w- c:\windows\system32\dllcache\serscan.sys
2011-11-09 00:16:29 -------- d-----w- c:\program files\Microsoft
2011-11-09 00:13:03 527208 ------w- c:\windows\system32\HPDiscoPM5412.dll
2011-11-09 00:12:53 1792872 ----a-w- c:\windows\system32\HPScanMiniDrv_OJ6500_E710nz.dll
2011-11-09 00:12:50 267112 ----a-w- c:\windows\system32\hpinksts5412LM.dll
2011-11-09 00:12:50 232296 ----a-w- c:\windows\system32\hpinksts5412.dll
2011-11-09 00:12:50 213864 ----a-w- c:\windows\system32\hpinkcoi5412.dll
2011-11-09 00:10:58 -------- d-----w- c:\program files\HP
2011-11-04 11:13:36 1070352 ----a-w- c:\windows\system32\MSCOMCTL.OCX
2011-11-03 15:28:36 386048 ------w- c:\windows\system32\dllcache\qdvd.dll
2011-10-24 02:36:35 -------- d-----w- c:\windows\pss
2011-10-14 14:47:29 23040 ------w- c:\windows\system32\dllcache\mciseq.dll
2011-10-14 14:47:29 176128 ------w- c:\windows\system32\dllcache\winmm.dll
2011-10-05 09:52:30 756048 ----a-w- c:\program files\common files\microsoft shared\office12\MSPTLS.DLL
2011-10-03 01:11:37 -------- d-----w- c:\documents and settings\temp\application data\Dropbox
2011-09-03 10:17:37 599040 ------w- c:\windows\system32\dllcache\crypt32.dll
2011-08-10 18:08:11 139656 ------w- c:\windows\system32\dllcache\rdpwd.sys
2011-08-10 18:07:19 10496 ------w- c:\windows\system32\dllcache\ndistapi.sys
2011-08-04 01:53:14 17324928 ----a-w- c:\program files\common files\microsoft shared\office12\MSO.DLL
2011-07-27 11:33:08 1064296 ----a-w- c:\program files\common files\microsoft shared\office12\RICHED20.DLL
2011-07-23 19:51:12 -------- d-----w- c:\windows\Performance
2011-07-23 19:50:40 -------- d-----w- c:\program files\Microsoft Windows 7 Upgrade Advisor
2011-07-23 19:27:49 -------- d-----w- c:\program files\WOT
2011-07-22 16:32:36 11693904 ----a-w- c:\program files\common files\microsoft shared\office11\MSO.DLL
2011-07-20 10:15:44 1365832 ----a-w- c:\program files\common files\microsoft shared\office11\msxml5.dll
2011-06-18 15:05:59 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-06-18 14:35:38 105472 ------w- c:\windows\system32\dllcache\mup.sys
2011-06-07 17:35:34 103864 ----a-w- c:\program files\internet explorer\plugins\nppdf32.dll
2011-05-31 22:26:54 986000 ----a-w- c:\program files\common files\microsoft shared\office12\msoshext.dll
2011-05-26 08:03:34 44544 ----a-w- c:\windows\system32\msxml4a.dll
2011-05-26 08:03:30 32768 ----a-w- c:\windows\system32\Password.dll
2011-05-18 00:36:44 42832 ----a-w- c:\windows\system32\sbbd.exe
2011-05-17 16:30:52 1103784 ----a-w- c:\program files\common files\microsoft shared\office11\RICHED20.DLL
2011-04-29 20:15:42 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys
2011-02-09 13:53:52 270848 ------w- c:\windows\system32\dllcache\sbe.dll
2011-02-09 13:53:52 186880 ------w- c:\windows\system32\dllcache\encdec.dll
2011-02-02 07:58:35 2067456 ------w- c:\windows\system32\dllcache\lhmstscx.dll
2011-01-27 11:57:06 677888 ------w- c:\windows\system32\dllcache\lhmstsc.exe
2011-01-21 14:44:37 439296 ------w- c:\windows\system32\dllcache\shimgvw.dll
2011-01-14 19:32:33 -------- d-----w- c:\documents and settings\temp\local settings\application data\Live Search Club Toolbar
2010-12-20 17:32:15 551936 ------w- c:\windows\system32\dllcache\oleaut32.dll
2010-12-16 13:16:47 40960 ------w- c:\windows\system32\dllcache\ndproxy.sys
2010-12-16 13:12:52 45568 ------w- c:\windows\system32\dllcache\wab.exe
2010-12-05 01:55:13 -------- d-----w- c:\documents and settings\temp\local settings\application data\Temp
2010-12-05 01:54:42 -------- d-----w- c:\documents and settings\temp\local settings\application data\Deployment
2010-11-18 18:12:44 81920 ------w- c:\windows\system32\dllcache\isign32.dll
2010-11-09 14:52:35 536576 ------w- c:\windows\system32\dllcache\msado15.dll
2010-11-09 14:52:35 249856 ------w- c:\windows\system32\dllcache\odbc32.dll
2010-11-09 14:52:35 200704 ------w- c:\windows\system32\dllcache\msadox.dll
2010-11-09 14:52:35 180224 ------w- c:\windows\system32\dllcache\msadomd.dll
2010-11-09 14:52:35 143360 ------w- c:\windows\system32\dllcache\msadco.dll
2010-11-09 14:52:35 102400 ------w- c:\windows\system32\dllcache\msjro.dll
2010-10-13 04:47:34 954368 ------w- c:\windows\system32\dllcache\mfc40.dll
2010-10-13 04:47:33 978944 ------w- c:\windows\system32\dllcache\mfc42.dll
2010-10-13 04:47:33 953856 ------w- c:\windows\system32\dllcache\mfc40u.dll
2010-10-13 04:45:29 617472 ------w- c:\windows\system32\dllcache\comctl32.dll
2010-08-27 05:57:43 99840 ------w- c:\windows\system32\dllcache\srvsvc.dll
2010-08-17 13:17:06 58880 ------w- c:\windows\system32\dllcache\spoolsv.exe
2010-07-16 12:05:55 1288704 ------w- c:\windows\system32\dllcache\ole32.dll
2010-07-14 16:20:59 744448 ------w- c:\windows\system32\dllcache\helpsvc.exe
2010-07-03 03:55:25 -------- d-----w- c:\program files\iTunes
2010-07-03 03:55:25 -------- d-----w- c:\documents and settings\all users\application data\{429CAD59-35B1-4DBC-BB6D-1DB246563521}
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2010-07-03 03:50:11 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
2010-07-03 03:45:24 -------- d-----w- c:\program files\Bonjour
2010-06-18 17:45:17 293376 ------w- c:\windows\system32\dllcache\winsrv.dll
2010-06-12 02:36:27 -------- d-sh--w- c:\documents and settings\temp\IECompatCache
2010-06-12 02:08:13 743424 ------w- c:\windows\system32\dllcache\iedvtool.dll
2010-05-18 21:35:16 91424 ----a-w- c:\windows\system32\dnssd.dll
2010-05-18 21:35:16 197920 ----a-w- c:\windows\system32\dnssdX.dll
2010-05-18 21:35:16 107808 ----a-w- c:\windows\system32\dns-sd.exe
2010-04-20 05:30:08 290432 ------w- c:\windows\system32\dllcache\atmfd.dll
2010-04-16 15:36:56 406016 ------w- c:\windows\system32\dllcache\usp10.dll
2010-04-16 14:49:08 503296 ----a-w- c:\program files\common files\microsoft shared\office11\USP10.DLL
2010-04-03 19:04:06 -------- d-----w- c:\documents and settings\all users\application data\Symantec
2010-03-31 05:16:34 99176 ----a-w- c:\windows\system32\PresentationHostProxy.dll
2010-03-31 05:10:40 295264 ----a-w- c:\windows\system32\PresentationHost.exe
2010-03-30 17:24:40 317440 ------w- c:\windows\system32\dllcache\mp4sdecd.dll
2010-03-19 03:16:16 94208 ----a-w- c:\windows\system32\QuickTimeVR.qtx
2010-03-19 03:16:16 69632 ----a-w- c:\windows\system32\QuickTime.qts
2010-03-12 23:20:08 3558912 ------w- c:\windows\system32\dllcache\moviemk.exe
2010-03-05 14:37:40 65536 ------w- c:\windows\system32\dllcache\asycfilt.dll
2010-02-22 18:00:36 1430360 ----a-w- c:\program files\common files\system\msmapi\1033\MSMAPI32.DLL
2010-02-12 04:33:11 100864 ------w- c:\windows\system32\dllcache\6to4svc.dll
2010-01-20 12:19:59 21504 ----a-w- c:\windows\system32\drivers\hidserv.dll
2010-01-20 12:16:09 21760 ----a-w- c:\windows\system32\drivers\point32.sys
2010-01-20 12:15:37 -------- d-----w- c:\program files\Microsoft IntelliPoint
2010-01-20 12:15:02 14736 ----a-w- c:\windows\system32\drivers\nuidfltr.sys
2010-01-20 12:15:02 1418120 ----a-w- c:\windows\system32\wdfcoinstaller01005.dll
2010-01-20 12:14:27 -------- d-----w- c:\program files\Microsoft IntelliType Pro
2010-01-13 14:01:25 86016 ------w- c:\windows\system32\dllcache\cabview.dll
2010-01-13 02:20:08 471552 ------w- c:\windows\system32\dllcache\aclayers.dll
2010-01-08 04:25:36 22344 ----a-w- c:\windows\system32\drivers\mbam.sys
2009-12-25 23:58:08 -------- d-----w- c:\program files\Pod to PC
2009-12-24 06:59:40 177664 ------w- c:\windows\system32\dllcache\wintrust.dll
2009-12-16 18:43:27 343040 ------w- c:\windows\system32\dllcache\mspaint.exe
2009-12-16 03:01:19 -------- d-----w- c:\program files\Veoh Networks
2009-12-14 07:08:23 33280 ------w- c:\windows\system32\dllcache\csrsrv.dll
2009-11-27 17:11:44 17920 ------w- c:\windows\system32\dllcache\msyuv.dll
2009-11-27 16:07:34 48128 ------w- c:\windows\system32\dllcache\iyuv_32.dll
2009-11-27 16:07:34 11264 ------w- c:\windows\system32\dllcache\msrle32.dll
2009-11-07 06:07:08 49488 ----a-w- c:\windows\system32\netfxperf.dll
2009-11-07 06:07:04 297808 ----a-w- c:\windows\system32\mscoree.dll
2009-11-07 06:06:46 1130824 ----a-w- c:\windows\system32\dfshim.dll
2009-10-22 21:44:54 732488 ----a-w- c:\program files\common files\system\msmapi\1033\MSPST32.DLL
2009-10-21 05:38:36 75776 ------w- c:\windows\system32\dllcache\strmfilt.dll
2009-10-21 05:38:36 25088 ------w- c:\windows\system32\dllcache\httpapi.dll
2009-10-20 16:20:16 265728 ------w- c:\windows\system32\dllcache\http.sys
2009-10-16 01:53:59 -------- d-----w- c:\documents and settings\all users\application data\{755AC846-7372-4AC8-8550-C52491DAA8BD}
2009-10-13 10:30:16 270336 ------w- c:\windows\system32\dllcache\oakley.dll
2009-10-12 13:38:19 149504 ------w- c:\windows\system32\dllcache\rastls.dll
2009-10-12 13:38:18 79872 ------w- c:\windows\system32\dllcache\raschap.dll
2009-09-08 22:25:48 -------- d-----w- c:\program files\MSECache
2009-09-08 22:03:12 153088 ------w- c:\windows\system32\dllcache\triedit.dll
2009-09-04 21:03:36 58880 ------w- c:\windows\system32\dllcache\msasn1.dll
2009-08-20 09:25:09 1315328 ------w- c:\windows\system32\dllcache\msoe.dll
2009-08-13 20:03:20 -------- d-sh--w- c:\documents and settings\temp\PrivacIE
2009-08-13 13:45:07 -------- d-sh--w- c:\documents and settings\temp\IETldCache
2009-08-09 03:41:38 247808 ------w- c:\windows\system32\dllcache\ieproxy.dll
2009-08-09 03:41:38 12800 ------w- c:\windows\system32\dllcache\xpshims.dll
2009-08-09 03:41:33 -------- d-----w- c:\windows\ie8updates
2009-08-09 03:41:05 101376 ------w- c:\windows\system32\dllcache\iecompat.dll
2009-08-09 03:39:51 -------- dc-h--w- c:\windows\ie8
2009-08-09 03:04:22 -------- d-----w- c:\documents and settings\temp\application data\Malwarebytes
2009-08-09 02:36:33 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2009-08-09 02:36:33 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
2009-08-09 02:34:47 3942048 ------w- C:\inst.exe
2009-08-09 02:05:08 3942048 ------w- C:\mbam-setup.exe
2009-08-08 13:57:55 -------- d-----w- c:\program files\Citrix
2009-08-07 18:42:15 -------- d-----w- c:\documents and settings\temp\application data\Logs
2009-08-07 18:41:39 61440 ----a-w- c:\windows\system32\ndisapi.dll
2009-08-07 18:41:39 24576 ----a-w- c:\windows\system32\drivers\ndisrd.sys
2009-08-06 00:21:29 -------- d-----w- c:\windows\system32\XPSViewer
2009-08-06 00:20:51 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2009-08-06 00:20:23 89088 ------w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2009-08-06 00:20:23 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2009-08-06 00:20:23 597504 ------w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2009-08-06 00:20:23 575488 ------w- c:\windows\system32\xpsshhdr.dll
2009-08-06 00:20:23 575488 ------w- c:\windows\system32\dllcache\xpsshhdr.dll
2009-08-06 00:20:23 1676288 ------w- c:\windows\system32\xpssvcs.dll
2009-08-06 00:20:23 1676288 ------w- c:\windows\system32\dllcache\xpssvcs.dll
2009-08-06 00:20:23 117760 ------w- c:\windows\system32\prntvpt.dll
2009-08-05 09:01:48 204800 ------w- c:\windows\system32\dllcache\mswebdvd.dll
2009-08-05 00:52:22 1193832 ----a-w- c:\windows\system32\FM20.DLL
2009-08-03 21:07:42 403816 ----a-w- c:\windows\system32\OGACheckControl.dll
2009-08-03 21:07:42 322928 ----a-w- c:\windows\system32\OGAAddin.dll
2009-08-03 21:07:42 230768 ----a-w- c:\windows\system32\OGAEXEC.exe
2009-07-27 23:17:41 135168 ------w- c:\windows\system32\dllcache\shsvcs.dll
2009-07-21 06:05:40 1348432 ----a-w- c:\windows\system32\msxml4.dll
2009-07-18 16:05:06 1509888 ------w- c:\windows\system32\dllcache\shdocvw.dll
2009-07-17 19:01:06 58880 ------w- c:\windows\system32\dllcache\atl.dll
2009-07-17 16:22:18 1435648 ------w- c:\windows\system32\dllcache\query.dll
2009-07-12 03:37:20 641536 ----a-w- c:\program files\common files\microsoft shared\vc\msdia80.dll
2009-07-07 03:08:12 -------- d-----w- c:\documents and settings\temp\local settings\application data\Powercinema
2009-06-25 08:25:26 54272 ------w- c:\windows\system32\dllcache\wdigest.dll
2009-06-25 08:25:26 301568 ------w- c:\windows\system32\dllcache\kerberos.dll
2009-06-25 08:25:26 136192 ------w- c:\windows\system32\dllcache\msv1_0.dll
2009-06-24 11:18:41 92928 ------w- c:\windows\system32\dllcache\ksecdd.sys
2009-06-16 14:36:30 81920 ------w- c:\windows\system32\dllcache\fontsub.dll
2009-06-16 14:36:30 119808 ------w- c:\windows\system32\dllcache\t2embed.dll
2009-06-12 12:31:40 80896 ------w- c:\windows\system32\dllcache\tlntsess.exe
2009-06-12 12:31:39 76288 ------w- c:\windows\system32\dllcache\telnet.exe
2009-06-10 20:42:29 -------- d-----w- c:\program files\LucasArts
2009-06-10 14:19:38 2066432 ------w- c:\windows\system32\dllcache\mstscax.dll
2009-06-10 14:13:29 84992 ------w- c:\windows\system32\dllcache\avifil32.dll
2009-06-10 06:14:49 132096 ------w- c:\windows\system32\dllcache\wkssvc.dll
2009-05-18 06:46:44 31048 ----a-w- c:\program files\common files\system\msmapi\1033\DUMPSTER.DLL
2009-05-16 01:16:34 -------- d-----w- c:\documents and settings\all users\application data\{8CD7F5AF-ECFA-4793-BF40-D8F42DBFF906}
2009-05-13 21:42:36 -------- d-----w- c:\program files\Windows Media Connect 2
2009-05-13 21:40:14 -------- d-----w- c:\windows\system32\LogFiles
2009-05-11 01:22:00 -------- d-----w- c:\documents and settings\all users\application data\Napster
2009-05-11 01:21:59 -------- d-----w- c:\program files\Napster
2009-05-07 15:32:35 345600 ------w- c:\windows\system32\dllcache\localspl.dll
2009-04-22 03:40:22 118616 ----a-w- c:\program files\common files\system\msmapi\1033\CONTAB32.DLL
2009-04-20 17:17:26 45568 ------w- c:\windows\system32\dllcache\dnsrslvr.dll
2009-04-15 14:51:25 590848 ------w- c:\windows\system32\dllcache\rpcrt4.dll
2009-04-14 22:20:19 401408 ------w- c:\windows\system32\dllcache\rpcss.dll
2009-04-14 22:20:19 35328 ------w- c:\windows\system32\dllcache\sc.exe
2009-04-14 22:20:19 284160 ------w- c:\windows\system32\dllcache\pdh.dll
2009-04-14 22:20:19 110592 ------w- c:\windows\system32\dllcache\services.exe
2009-04-14 22:20:18 473600 ------w- c:\windows\system32\dllcache\fastprox.dll
2009-04-14 22:20:18 227840 ------w- c:\windows\system32\dllcache\wmiprvse.exe
2009-04-14 22:20:17 453120 ------w- c:\windows\system32\dllcache\wmiprvsd.dll
2009-04-14 22:20:15 730112 ------w- c:\windows\system32\dllcache\lsasrv.dll
2009-04-14 22:20:14 617472 ------w- c:\windows\system32\dllcache\advapi32.dll
2009-04-14 22:20:13 718336 ------w- c:\windows\system32\dllcache\ntdll.dll
2009-04-14 22:16:29 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2009-04-14 22:16:27 218112 ------w- c:\windows\system32\dllcache\wordpad.exe
2009-03-28 16:14:27 -------- d-----w- c:\documents and settings\all users\application data\{00D89592-F643-4D8D-8F0F-AFAE0F14D4C3}
2009-03-28 16:06:02 3062048 ----a-w- c:\windows\system32\usbaaplrc.dll
2009-03-24 22:47:14 8058192 ----a-w- c:\program files\common files\microsoft shared\web components\11\OWC11.DLL
2009-03-21 14:06:58 989696 ------w- c:\windows\system32\dllcache\kernel32.dll
2009-03-13 01:04:30 709976 ----a-w- c:\program files\common files\system\msmapi\1033\EMSMDB32.DLL
2009-03-08 19:22:46 1241088 ------w- c:\windows\system32\ieframe.dll.mui
2009-03-08 19:22:30 49152 ------w- c:\windows\system32\msrating.dll.mui
2009-03-08 19:22:18 2560 ------w- c:\windows\system32\mshta.exe.mui
2009-03-08 19:21:06 4096 ------w- c:\windows\system32\ie4uinit.exe.mui
2009-03-08 19:21:06 10240 ------w- c:\windows\system32\advpack.dll.mui
2009-03-08 19:20:54 81920 ------w- c:\windows\system32\iedkcs32.dll.mui
2009-03-08 19:09:26 638816 ------w- c:\windows\system32\dllcache\iexplore.exe
2009-03-08 19:09:26 387584 ------w- c:\windows\system32\dllcache\iedkcs32.dll
2009-03-08 09:35:32 743424 ------w- c:\program files\internet explorer\iedvtool.dll
2009-03-08 09:35:12 233984 ------w- c:\program files\internet explorer\jsprofilerui.dll
2009-03-08 09:35:04 144384 ------w- c:\program files\internet explorer\ExtExport.exe
2009-03-08 09:35:04 118272 ------w- c:\program files\internet explorer\JSProfilerCore.dll
2009-03-08 09:35:04 101376 ------w- c:\program files\internet explorer\iecompat.dll
2009-03-08 09:35:02 521728 ------w- c:\program files\internet explorer\jsdbgui.dll
2009-03-08 09:35:02 121344 ------w- c:\program files\internet explorer\jsdebuggeride.dll
2009-03-08 09:34:48 236544 ------w- c:\windows\system32\dllcache\webcheck.dll
2009-03-08 09:34:30 43520 ------w- c:\windows\system32\dllcache\licmgr10.dll
2009-03-08 09:34:28 105984 ------w- c:\windows\system32\dllcache\url.dll
2009-03-08 09:34:18 206848 ------w- c:\windows\system32\dllcache\occache.dll
2009-03-08 09:33:50 247808 ----a-w- c:\program files\internet explorer\ieproxy.dll
2009-03-08 09:33:40 18944 ------w- c:\windows\system32\dllcache\corpol.dll
2009-03-08 09:33:18 12800 ----a-w- c:\program files\internet explorer\xpshims.dll
2009-03-08 09:33:08 229376 ------w- c:\windows\system32\dllcache\ieaksie.dll
2009-03-08 09:33:02 125952 ------w- c:\windows\system32\dllcache\ieakeng.dll
2009-03-08 09:32:56 72704 ------w- c:\windows\system32\dllcache\admparse.dll
2009-03-08 09:32:54 174080 ------w- c:\windows\system32\dllcache\ie4uinit.exe
2009-03-08 09:32:52 163840 ------w- c:\windows\system32\dllcache\ieakui.dll
2009-03-08 09:32:50 71680 ------w- c:\windows\system32\dllcache\iesetup.dll
2009-03-08 09:32:50 55808 ------w- c:\windows\system32\dllcache\iernonce.dll
2009-03-08 09:32:48 128512 ------w- c:\windows\system32\dllcache\advpack.dll
2009-03-08 09:31:38 34816 ------w- c:\windows\system32\dllcache\imgutil.dll
2009-03-08 09:31:18 48128 ------w- c:\windows\system32\dllcache\mshtmler.dll
2009-03-08 09:31:02 45568 ------w- c:\windows\system32\dllcache\mshta.exe
2009-03-08 09:24:28 68608 ------w- c:\windows\system32\dllcache\hmmapi.dll
2009-02-26 17:21:30 10340720 ----a-w- c:\program files\common files\microsoft shared\office12\1033\MSOINTL.DLL
2009-02-26 04:25:56 79744 ----a-w- c:\program files\common files\microsoft shared\office12\1033\xlsrvintl.dll
2009-02-16 05:25:30 135000 ----a-w- c:\program files\common files\system\msmapi\1033\EMSUI32.DLL
2009-02-16 05:25:22 657232 ----a-w- c:\program files\common files\system\msmapi\1033\OUTEX.DLL
2009-02-16 05:25:20 282968 ----a-w- c:\program files\common files\system\msmapi\1033\PSTPRX32.DLL
2009-02-16 05:25:18 265544 ----a-w- c:\program files\common files\system\msmapi\1033\EMSABP32.DLL
2009-02-16 05:25:18 240984 ----a-w- c:\program files\common files\system\msmapi\1033\SCNPST64.DLL
2009-02-16 05:25:14 232280 ----a-w- c:\program files\common files\system\msmapi\1033\SCNPST32.DLL
2009-02-03 19:59:07 56832 ------w- c:\windows\system32\dllcache\secur32.dll
2009-02-01 01:10:21 -------- d-----w- c:\documents and settings\temp\local settings\application data\Chat Republic Games
2009-01-08 22:22:08 -------- d-----w- c:\program files\Amazon
2009-01-07 23:20:54 134144 ------w- c:\windows\system32\dllcache\sqmapi.dll
2009-01-07 23:20:54 134144 ------w- c:\program files\internet explorer\sqmapi.dll
2009-01-07 23:20:52 474112 ------w- c:\windows\system32\dllcache\shlwapi.dll
2009-01-07 23:20:52 1022976 ------w- c:\windows\system32\dllcache\browseui.dll
2009-01-07 23:20:18 355832 ------w- c:\program files\internet explorer\pdm.dll
2009-01-07 23:20:18 265720 ----a-w- c:\windows\system32\msdbg2.dll
2008-12-16 12:30:34 354816 ------w- c:\windows\system32\dllcache\winhttp.dll
2008-12-05 06:54:55 152576 ------w- c:\windows\system32\dllcache\schannel.dll
2008-11-12 04:59:38 456320 ------w- c:\windows\system32\dllcache\mrxsmb.sys
2008-11-12 04:58:28 1172480 ------w- c:\windows\system32\dllcache\msxml3.dll
2008-10-29 03:50:38 -------- d-----w- c:\documents and settings\temp\local settings\application data\Apple
2008-10-23 23:09:39 337408 ------w- c:\windows\system32\dllcache\netapi32.dll
2008-10-23 12:36:14 286720 ------w- c:\windows\system32\dllcache\gdi32.dll
2008-10-21 00:58:50 -------- d-----w- c:\documents and settings\temp\application data\Skinux
2008-10-19 12:39:18 -------- d-----w- c:\program files\common files\Kodak
2008-10-19 12:39:00 -------- d-----w- c:\program files\Kodak
2008-10-19 12:35:24 -------- d-----w- c:\documents and settings\all users\application data\Kodak
2008-10-19 12:29:51 2297552 ----a-w- c:\windows\system32\d3dx9_26.dll
2008-10-19 12:26:23 -------- d-----w- c:\program files\Sony
2008-10-16 02:40:33 357888 ------w- c:\windows\system32\dllcache\srv.sys
2008-10-16 02:39:38 1866112 ------w- c:\windows\system32\dllcache\win32k.sys
2008-10-16 02:39:33 2192640 ------w- c:\windows\system32\dllcache\ntoskrnl.exe
2008-10-16 02:39:33 2148352 ------w- c:\windows\system32\dllcache\ntkrnlmp.exe
2008-10-16 02:39:32 2069120 ------w- c:\windows\system32\dllcache\ntkrnlpa.exe
2008-10-16 02:39:32 2026496 ------w- c:\windows\system32\dllcache\ntkrpamp.exe
2008-10-07 23:56:22 -------- d-----w- c:\documents and settings\temp\local settings\application data\Adobe
2008-10-01 06:42:57 -------- d-----w- c:\documents and settings\temp\local settings\application data\Google
2008-10-01 06:30:13 -------- d-----w- c:\documents and settings\temp\local settings\application data\Apple Computer
2008-10-01 06:30:11 -------- d-----w- c:\documents and settings\temp\local settings\application data\SupportSoft
2008-10-01 06:27:39 -------- d-----w- c:\documents and settings\temp\local settings\application data\BVRP Software
2008-09-25 02:31:11 -------- d-----w- c:\windows\system32\scripting
2008-09-25 02:31:10 -------- d-----w- c:\windows\l2schemas
2008-09-25 02:31:09 -------- d-----w- c:\windows\system32\en
2008-09-23 21:22:43 -------- d-----w- C:\SiteAdvisor
2008-09-19 13:14:46 276992 ------w- c:\windows\system32\wmphoto.dll
2008-09-19 13:14:44 69120 ------w- c:\windows\system32\wlanapi.dll
2008-09-19 13:14:42 346112 ------w- c:\windows\system32\windowscodecsext.dll
2008-09-19 13:14:41 712704 ------w- c:\windows\system32\windowscodecs.dll
2008-09-19 13:14:30 53248 ------w- c:\windows\system32\tsgqec.dll
2008-09-19 13:14:30 50688 ------w- c:\windows\system32\tspkg.dll
2008-09-19 13:14:11 10240 ------w- c:\windows\system32\drivers\sffp_mmc.sys
2008-09-19 13:14:10 32768 ------w- c:\windows\system32\setupn.exe
2008-09-19 13:14:04 290304 ------w- c:\windows\system32\rhttpaa.dll
2008-09-19 13:14:02 61952 ------w- c:\windows\system32\rasqec.dll
2008-09-19 13:14:00 76800 ------w- c:\windows\system32\qutil.dll
2008-09-19 13:12:49 37376 ------w- c:\windows\system32\l2gpstore.dll
2008-09-19 13:11:57 7168 ------w- c:\windows\system32\bitsprx4.dll
2008-09-19 13:11:57 233472 ------w- c:\windows\system32\azroles.dll
2008-09-19 13:11:46 136192 ------w- c:\windows\system32\aaclient.dll
2008-08-14 22:26:42 499712 ----a-w- c:\windows\system32\msvcp71.dll
2008-08-14 22:25:38 -------- d-----w- c:\windows\system32\Adobe
2008-08-12 20:39:31 331776 ------w- c:\windows\system32\dllcache\msadce.dll
2008-08-12 20:38:48 692736 ------w- c:\windows\system32\dllcache\inetcomm.dll
2008-08-12 03:10:13 5632 ----a-w- c:\windows\system32\ptpusb.dll
2008-08-12 03:10:13 15104 ----a-w- c:\windows\system32\drivers\usbscan.sys
2008-08-12 03:10:12 159232 ----a-w- c:\windows\system32\ptpusd.dll
2008-08-12 03:04:50 -------- d-----w- c:\documents and settings\all users\application data\ZoomBrowser
2008-08-12 03:04:25 -------- d-----w- c:\program files\Canon
2008-08-12 03:02:51 -------- d-----w- c:\program files\common files\Canon
2008-07-30 02:10:04 73720 ----a-w- c:\windows\system32\dxva2.dll
2008-07-30 02:10:04 493048 ----a-w- c:\windows\system32\evr.dll
2008-07-30 02:10:04 26112 ----a-w- c:\windows\system32\TsWpfWrp.exe
2008-07-30 00:59:58 781344 ----a-w- c:\windows\system32\PresentationNative_v0300.dll
2008-07-30 00:59:58 611328 ----a-w- c:\windows\system32\uiautomationcore.dll
2008-07-30 00:59:58 105016 ----a-w- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-07-30 00:24:50 97800 ----a-w- c:\windows\system32\infocardapi.dll
2008-07-30 00:24:50 622080 ----a-w- c:\windows\system32\icardagt.exe
2008-07-30 00:24:50 37384 ----a-w- c:\windows\system32\infocardcpl.cpl
2008-07-30 00:24:50 11264 ----a-w- c:\windows\system32\icardres.dll
2008-07-29 10:49:58 586240 ----a-w- c:\windows\system32\icardres.dll.mui
2008-07-25 16:16:58 83968 ----a-w- c:\windows\system32\mscories.dll
2008-07-25 16:16:58 158720 ----a-w- c:\windows\system32\mscorier.dll
2008-07-25 16:16:58 158720 ----a-w- c:\program files\internet explorer\mui\0409\mscorier.dll
2008-07-07 20:26:58 253952 ------w- c:\windows\system32\dllcache\es.dll
2008-06-26 01:52:39 -------- d-----w- c:\program files\Scratch
2008-06-24 16:43:16 74240 ------w- c:\windows\system32\dllcache\mscms.dll
2008-06-20 17:46:57 245248 ------w- c:\windows\system32\dllcache\mswsock.dll
2008-06-20 17:46:57 149504 ------w- c:\windows\system32\dllcache\dnsapi.dll
2008-06-20 11:51:12 361600 ------w- c:\windows\system32\dllcache\tcpip.sys
2008-06-20 11:40:08 138496 ------w- c:\windows\system32\dllcache\afd.sys
2008-06-20 11:08:27 226880 ------w- c:\windows\system32\dllcache\tcpip6.sys
2008-06-17 19:02:19 8462848 ------w- c:\windows\system32\dllcache\shell32.dll
2008-06-12 14:23:32 956928 ------w- c:\windows\system32\dllcache\msdtctm.dll
2008-06-12 14:23:32 91648 ------w- c:\windows\system32\dllcache\mtxoci.dll
2008-06-12 14:23:32 66560 ------w- c:\windows\system32\dllcache\mtxclu.dll
2008-06-12 14:23:32 58880 ------w- c:\windows\system32\dllcache\msdtclog.dll
2008-06-12 14:23:32 428032 ------w- c:\windows\system32\dllcache\msdtcprx.dll
2008-06-12 14:23:32 161792 ------w- c:\windows\system32\dllcache\msdtcuiu.dll
2008-06-10 21:57:30 203136 ------w- c:\windows\system32\dllcache\rmcast.sys
2008-06-10 21:57:24 272128 ------w- c:\windows\system32\dllcache\bthport.sys
2008-06-08 00:03:38 -------- d-----w- C:\WEEKEND
2008-05-26 18:24:21 -------- d-----w- c:\program files\Spybot - Search & Destroy
2008-05-26 18:24:21 -------- d-----w- c:\documents and settings\all users\application data\Spybot - Search & Destroy
2008-05-09 10:53:40 90112 ------w- c:\windows\system32\dllcache\wshext.dll
2008-05-09 10:53:40 420864 ----a-w- c:\windows\system32\dllcache\vbscript.dll
2008-05-09 10:53:40 172032 ------w- c:\windows\system32\dllcache\scrrun.dll
2008-05-09 10:53:39 726528 ----a-w- c:\windows\system32\dllcache\jscript.dll
2008-05-09 10:53:39 180224 ------w- c:\windows\system32\dllcache\scrobj.dll
2008-05-08 11:24:44 155648 ------w- c:\windows\system32\dllcache\wscript.exe
2008-05-07 09:07:23 135168 ------w- c:\windows\system32\dllcache\cscript.exe
2008-05-07 05:12:40 1292288 ------w- c:\windows\system32\dllcache\quartz.dll
2008-04-05 22:06:45 1409 -c--a-w- c:\windows\QTFont.for
2008-02-02 21:33:09 -------- d-----w- C:\THE_GAME_PLAN
2008-01-30 01:11:49 -------- d-----w- c:\program files\Red Kawa
2008-01-30 01:03:14 -------- d-----w- c:\program files\DVD Decrypter
2008-01-29 17:02:30 107368 ----a-w- c:\windows\system32\GEARAspi.dll
2008-01-29 17:01:28 26600 ----a-w- c:\windows\system32\drivers\GEARAspiWDM.sys
2008-01-27 00:15:21 249856 -c----w- c:\windows\Setup1.exe
2008-01-27 00:15:19 73216 ----a-w- c:\windows\ST6UNST.EXE
2008-01-14 01:40:18 69714 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\ctor.dll
2008-01-14 01:40:18 274432 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iscript.dll
2008-01-14 01:40:18 184320 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iuser.dll
2008-01-14 01:40:17 753664 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iKernel.dll
2008-01-14 01:40:10 200836 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\iGdi.dll
2008-01-14 01:40:09 331908 ----a-w- c:\program files\common files\installshield\professional\runtime\11\00\intel32\setup.dll
2007-12-31 01:33:40 41984 ----a-w- c:\windows\system32\drivers\usbaapl.sys
2007-12-22 16:26:08 69632 ----a-w- c:\windows\system32\lfgif13n.dll
2007-12-22 16:26:07 57344 ----a-w- c:\windows\system32\lfbmp13n.dll
2007-12-22 16:26:07 450560 ----a-w- c:\windows\system32\ltimg13n.dll
2007-12-22 16:26:07 401408 ----a-w- c:\windows\system32\lfcmp13n.dll
2007-12-22 16:26:07 299008 ----a-w- c:\windows\system32\ltdis13n.dll
2007-12-22 16:26:07 206336 ----a-w- c:\windows\system32\ltefx13n.dll
2007-12-22 16:26:07 163840 ----a-w- c:\windows\system32\ltfil13n.dll
2007-12-22 16:26:06 462848 ----a-w- c:\windows\system32\ltkrn13n.dll
2007-12-13 02:44:57 -------- d--h--w- c:\windows\msdownld.tmp
2007-12-13 02:44:03 -------- d-----w- c:\program files\Windows Live Toolbar
2007-12-08 13:46:57 629760 ------w- c:\windows\system32\dllcache\msfeeds.dll
2007-12-08 13:46:57 55296 ------w- c:\windows\system32\dllcache\msfeedsbs.dll
2007-12-08 13:46:56 445952 ----a-w- c:\windows\system32\dllcache\ieapfltr.dll
2007-12-08 13:46:56 3698584 ----a-w- c:\windows\system32\dllcache\ieapfltr.dat
2007-12-08 13:46:56 2000384 ------w- c:\windows\system32\dllcache\iertutil.dll
2007-12-08 13:46:56 13824 ------w- c:\windows\system32\dllcache\ieudinit.exe
2007-12-08 13:46:56 11111424 ------w- c:\windows\system32\dllcache\ieframe.dll
2007-12-08 13:46:55 59904 ----a-w- c:\windows\system32\dllcache\icardie.dll
2007-12-08 13:41:16 -------- d-----w- c:\windows\network diagnostic
2007-11-28 15:33:38 743424 ----a-w- c:\program files\common files\system\msmapi\1033\CDO.DLL
2007-11-20 02:59:36 119816 ----a-w- c:\program files\common files\microsoft shared\textconv\MSCONV97.DLL
2007-11-20 01:42:20 54280 ----a-w- c:\program files\common files\system\msmapi\1033\SCANOST.EXE
2007-11-20 01:38:20 109064 ----a-w- c:\program files\common files\system\msmapi\1033\EMABLT32.DLL
2007-11-19 13:01:58 73728 ----a-w- c:\windows\system32\javacpl.cpl
2007-11-18 13:32:01 -------- d-----w- c:\program files\Dell Support Center
2007-11-18 13:31:59 -------- d-----w- c:\program files\common files\supportsoft
2007-11-05 22:18:52 781312 ----a-w- c:\program files\common files\system\msmapi\1033\MAPIR.DLL
2007-10-15 01:54:36 19805 ------w- c:\windows\system32\drivers\usbio.sys
2007-10-15 01:51:49 -------- d-----w- c:\program files\MSXML 4.0
2007-10-15 01:50:36 -------- d-----w- c:\program files\Datel
2007-09-01 17:21:34 -------- d-----w- c:\program files\iWin
2007-08-28 22:51:53 -------- d-----w- c:\documents and settings\all users\application data\Trymedia
2007-08-28 22:51:45 -------- d-----w- c:\program files\BFG
2007-08-22 03:04:53 53760 ------w- c:\windows\system32\vfwwdm32.dll
2007-08-22 03:04:42 35107 ------w- c:\windows\system32\drivers\Capt905c.sys
2007-08-22 03:04:42 24569 ------w- c:\windows\system32\drivers\Camd905c.sys
2007-08-22 03:03:52 32768 ----a-w- c:\program files\common files\installshield\professional\runtime\Objectps.dll
2007-08-22 03:03:51 692224 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iKernel.dll
2007-08-22 03:03:51 57344 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\ctor.dll
2007-08-22 03:03:51 5632 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\DotNetInstaller.exe
2007-08-22 03:03:51 282756 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\setup.dll
2007-08-22 03:03:51 237568 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iscript.dll
2007-08-22 03:03:51 163972 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iGdi.dll
2007-08-22 03:03:51 155648 ----a-w- c:\program files\common files\installshield\professional\runtime\0701\intel32\iuser.dll
2007-07-05 23:16:39 -------- d-----w- c:\program files\Atari
2007-06-14 20:43:14 14728 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\1033\MSPFLTRS.DLL
2007-06-06 14:38:40 237568 ----a-w- c:\windows\system32\KPDPMUI.dll
2007-06-06 14:38:14 344064 ----a-w- c:\windows\system32\KPDPM.dll
2007-06-06 14:18:12 196608 ----a-w- c:\windows\system32\KPDRES.DLL
2007-05-31 18:50:10 1168736 ----a-w- c:\program files\common files\microsoft shared\web server extensions\60\bin\FPSRVUTL.DLL
2007-05-24 03:51:46 17136 ----a-w- c:\windows\system32\mucltui.dll.mui
2007-05-24 00:50:00 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2007-05-24 00:50:00 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2007-05-24 00:49:59 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2007-05-24 00:49:59 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2007-05-10 12:17:20 -------- d-----w- c:\program files\Lavasoft
2007-05-03 19:12:32 59744 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MSPOCRDC.EXE
2007-05-02 18:45:26 2123104 ----a-w- c:\program files\common files\system\ole db\MSOLAP80.DLL
2007-04-30 20:11:38 89440 ----a-w- c:\program files\common files\microsoft shared\web server extensions\60\bin\FPENCODE.DLL
2007-04-19 19:16:14 807256 ----a-w- c:\program files\common files\microsoft shared\web server extensions\60\bin\FPWEC.DLL
2007-04-19 19:10:38 131424 ----a-w- c:\program files\common files\microsoft shared\translat\MSB1CORE.DLL
2007-04-19 19:10:34 126304 ----a-w- c:\program files\common files\microsoft shared\msinfo\OINFOP11.EXE
2007-04-19 19:10:06 52576 ----a-w- c:\program files\common files\microsoft shared\translat\MSB1XTOR.DLL
2007-04-19 19:01:52 238424 ----a-w- c:\program files\common files\microsoft shared\msclientdatamgr\MSCDM.DLL
2007-04-19 18:58:26 34656 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\TWRECC.DLL
2007-04-19 18:57:40 46432 ----a-w- c:\program files\common files\microsoft shared\office11\MSOXMLMF.DLL
2007-04-19 18:56:58 29024 ----a-w- c:\program files\common files\microsoft shared\euro\MSOEURO.DLL
2007-04-19 18:55:16 53088 ----a-w- c:\program files\common files\microsoft shared\web components\11\DFUICOM.EXE
2007-04-19 18:55:16 148312 ----a-w- c:\program files\common files\microsoft shared\web components\11\ATP.DLL
2007-04-19 18:49:28 383328 ----a-w- c:\program files\common files\microsoft shared\msorun\MSORUN.DLL
2007-04-19 18:47:42 297304 ----a-w- c:\program files\common files\microsoft shared\smart tag\MOFL.DLL
2007-04-19 18:47:40 186208 ----a-w- c:\program files\common files\microsoft shared\smart tag\FPERSON.DLL
2007-04-19 18:47:40 171872 ----a-w- c:\program files\common files\microsoft shared\smart tag\FPLACE.DLL
2007-04-19 18:47:38 159072 ----a-w- c:\program files\common files\microsoft shared\smart tag\FSTOCK.DLL
2007-04-19 18:47:38 130904 ----a-w- c:\program files\common files\microsoft shared\smart tag\FNAME.DLL
2007-04-19 18:47:38 126808 ----a-w- c:\program files\common files\microsoft shared\smart tag\FDATE.DLL
2007-04-19 18:09:30 167256 ----a-w- c:\program files\common files\microsoft shared\smart tag\IETAG.DLL
2007-04-11 05:08:55 -------- d-----w- c:\windows\McAfee.com
2007-04-09 19:33:31 -------- d-----w- c:\program files\DellSupport
2007-04-09 18:24:06 1025416 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MSPCORE.DLL
2007-04-09 18:24:04 793480 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MSPFILT.DLL
2007-04-09 18:24:04 758664 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\drivers\MDIGRAPH.DLL
2007-04-09 18:24:04 453512 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MDIVWCTL.DLL
2007-04-09 18:24:00 367496 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MSPVIEW.EXE
2007-04-09 18:23:58 46472 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\drivers\MDIUI.DLL
2007-04-09 18:23:58 231816 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MDIINK.DLL
2007-04-09 18:23:58 130952 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MSPSCAN.EXE
2007-04-09 18:23:54 28552 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\drivers\MDIPPR.DLL
2007-04-09 18:23:54 28040 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\drivers\MDIMON.DLL
2007-04-09 18:23:52 25992 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\MSPGIMME.DLL
2007-04-04 22:08:56 158456 ----a-w- c:\windows\system32\pxwma.dll
2007-04-04 22:08:48 129784 ----a-w- c:\windows\system32\PxAFS.DLL
2007-03-30 15:54:06 1054856 ----a-w- c:\program files\common files\microsoft shared\proof\MSSP3ES.DLL
2007-03-29 13:56:14 120056 ----a-w- c:\windows\system32\pxcpyi64.exe
2007-03-29 13:56:14 118520 ----a-w- c:\windows\system32\pxinsi64.exe
2007-03-29 13:56:10 68344 ----a-w- c:\windows\system32\drvins64.exe
2007-03-29 08:00:00 43528 ----a-w- c:\windows\system32\drivers\pxhelp20.sys
2007-03-23 00:31:06 151904 ----a-w- c:\program files\common files\microsoft shared\office11\1033\ALRTINTL.DLL
2007-03-23 00:29:32 44888 ----a-w- c:\program files\common files\microsoft shared\office11\MSSH.DLL
2007-03-23 00:29:24 39256 ----a-w- c:\program files\common files\microsoft shared\web folders\MSOSV.DLL
2007-03-23 00:29:16 20824 ----a-w- c:\program files\common files\microsoft shared\office11\MSMH.DLL
2007-03-23 00:29:16 14704 ----a-w- c:\program files\common files\microsoft shared\smart tag\SmartTagInstall.exe
2007-03-23 00:29:14 1753952 ----a-w- c:\program files\common files\microsoft shared\office11\1033\MSOINTL.DLL
2007-03-23 00:29:10 13664 ----a-w- c:\program files\common files\microsoft shared\web folders\1033\MSOSVINT.DLL
2007-03-23 00:26:28 17248 ----a-w- c:\program files\common files\microsoft shared\textconv\WPEQU532.DLL
2007-03-23 00:25:54 124248 ----a-w- c:\program files\common files\microsoft shared\office11\UCS20.DLL
2007-03-23 00:23:30 19296 ----a-w- c:\program files\common files\microsoft shared\msinfo\OINFOS11.DLL
2007-03-23 00:17:04 35440 ----a-w- c:\windows\system32\FM20ENU.DLL
2007-03-23 00:16:52 542048 ----a-w- c:\program files\common files\microsoft shared\web components\11\1033\OWCI11.DLL
2007-03-23 00:13:38 58720 ----a-w- c:\program files\common files\microsoft shared\office11\MSOXMLED.EXE
2007-03-23 00:13:38 45408 ----a-w- c:\program files\common files\microsoft shared\office11\MSOXEV.DLL
2007-03-23 00:08:14 149856 ----a-w- c:\program files\common files\system\msmapi\1033\CNFNOT32.EXE
2007-03-23 00:07:14 45920 ----a-w- c:\program files\common files\system\msmapi\1033\SCANPST.EXE
2007-03-23 00:06:34 15712 ----a-w- c:\program files\common files\system\msmapi\1033\BJABLR32.DLL
2007-03-23 00:05:32 60256 ----a-w- c:\program files\common files\microsoft shared\office11\1033\LCCWIZ.DLL
2007-03-23 00:03:40 20832 ----a-w- c:\program files\common files\microsoft shared\smart tag\1033\STINTL.DLL
2007-03-17 19:58:27 -------- d-----w- c:\windows\system32\wbem\AutoRecover
2007-03-17 19:44:40 221184 ------w- c:\windows\system32\wmpns.dll
2007-03-17 19:41:36 -------- d-----w- c:\windows\provisioning
2007-03-17 19:39:16 -------- d-----w- c:\windows\ServicePackFiles
2007-03-17 19:31:19 -------- d-----w- c:\windows\EHome
2007-03-14 11:07:00 275696 ----a-w- c:\windows\system32\mucltui.dll
2007-03-13 12:35:32 1082368 ----a-w- c:\windows\system32\esent.dll
2007-03-13 12:26:26 -------- d-----w- c:\windows\system32\PreInstall
2007-03-13 12:26:22 26144 ----a-w- c:\windows\system32\spupdsvc.exe
2007-03-09 11:59:41 40552 ----a-w- c:\windows\system32\drivers\mfesmfk.sys
2007-03-09 11:59:41 35272 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2007-03-09 11:59:41 34248 ----a-w- c:\windows\system32\drivers\mferkdk.sys
2007-03-09 11:59:39 79816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2007-03-05 14:47:16 243200 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\1033\MSPLCRES.DLL
2007-03-05 14:47:10 6144 ----a-w- c:\program files\common files\microsoft shared\modi\11.0\OCRPS.DLL
2007-02-28 09:41:16 111504 ----a-w- c:\program files\common files\microsoft shared\dw\1061\DWINTL20.DLL
2007-02-28 09:40:46 114024 ----a-w- c:\program files\common files\microsoft shared\dw\1026\DWINTL20.DLL
2007-02-28 09:38:44 113040 ----a-w- c:\program files\common files\microsoft shared\dw\1051\DWINTL20.DLL
2007-02-28 09:37:52 111440 ----a-w- c:\program files\common files\microsoft shared\dw\1058\DWINTL20.DLL
2007-02-28 09:37:46 112552 ----a-w- c:\program files\common files\microsoft shared\dw\1063\DWINTL20.DLL
2007-02-28 09:37:20 112016 ----a-w- c:\program files\common files\microsoft shared\dw\1055\DWINTL20.DLL
2007-02-28 09:28:56 114600 ----a-w- c:\program files\common files\microsoft shared\dw\1027\DWINTL20.DLL
2007-02-28 09:25:50 113072 ----a-w- c:\program files\common files\microsoft shared\dw\1062\DWINTL20.DLL
2007-02-28 09:25:46 113048 ----a-w- c:\program files\common files\microsoft shared\dw\1050\DWINTL20.DLL
2007-02-28 09:23:46 113048 ----a-w- c:\program files\common files\microsoft shared\dw\1048\DWINTL20.DLL
2007-02-28 09:22:46 112536 ----a-w- c:\program files\common files\microsoft shared\dw\1060\DWINTL20.DLL
2007-02-26 07:01:00 816528 ----a-w- c:\program files\common files\microsoft shared\dw\DW20.EXE
2007-02-26 07:01:00 437160 ----a-w- c:\program files\common files\microsoft shared\dw\DWTRIG20.EXE
2007-02-25 18:10:48 5376 ------w- c:\windows\system32\drivers\dsunidrv.sys
2007-02-16 07:49:32 115576 ----a-w- c:\program files\common files\microsoft shared\dw\1032\DWINTL20.DLL
2007-02-16 07:38:22 111984 ----a-w- c:\program files\common files\microsoft shared\dw\1038\DWINTL20.DLL
2007-02-16 00:01:26 934792 ------w- c:\windows\system32\dllcache\WgaTray.exe
2007-02-16 00:00:26 239496 ------w- c:\windows\system32\dllcache\wgaLogon.dll
2007-02-08 06:40:10 64512 ----a-w- c:\windows\system32\ptpitcp.dll
2007-02-02 11:52:53 128 ------w- C:\a.bat
2007-02-02 08:00:00 9464 ----a-w- c:\windows\system32\drivers\cdralw2k.sys
2007-02-02 08:00:00 9336 ----a-w- c:\windows\system32\drivers\cdr4_xp.sys
2007-01-25 12:48:49 1212416 ------w- c:\windows\system32\dllcache\urlmon.dll
2007-01-24 20:46:18 113056 ----a-w- c:\program files\common files\microsoft shared\dw\2070\DWINTL20.DLL
2007-01-09 18:01:44 112528 ----a-w- c:\program files\common files\microsoft shared\dw\1029\DWINTL20.DLL
2007-01-04 13:37:08 916992 ------w- c:\windows\system32\dllcache\wininet.dll
2007-01-04 13:36:54 611840 ----a-w- c:\windows\system32\dllcache\mstime.dll
2007-01-04 13:36:54 46592 ----a-w- c:\windows\system32\dllcache\pngfilt.dll
2007-01-04 13:36:52 193536 ----a-w- c:\windows\system32\dllcache\msrating.dll
2007-01-04 13:36:51 67072 ----a-w- c:\windows\system32\dllcache\mshtmled.dll
2007-01-04 13:36:48 6007808 ------w- c:\windows\system32\dllcache\mshtml.dll
2007-01-04 13:36:38 94720 ----a-w- c:\windows\system32\dllcache\inseng.dll
2007-01-04 13:36:38 25600 ------w- c:\windows\system32\dllcache\jsproxy.dll
2007-01-04 13:36:37 55808 ----a-w- c:\windows\system32\dllcache\extmgr.dll
2007-01-04 13:36:37 184320 ------w- c:\windows\system32\dllcache\iepeers.dll
2007-01-04 13:36:36 348160 ----a-w- c:\windows\system32\dllcache\dxtmsft.dll
2007-01-04 13:36:36 216064 ----a-w- c:\windows\system32\dllcache\dxtrans.dll
2007-01-04 10:36:30 18432 ----a-w- c:\windows\system32\dllcache\iedw.exe
2007-01-03 04:59:50 109832 ----a-w- c:\program files\common files\microsoft shared\dw\1049\DWINTL20.DLL
2006-12-19 18:08:07 758784 ----a-w- c:\windows\system32\dllcache\vgx.dll
2006-12-19 12:14:24 -------- d-----w- c:\windows\system32\Dell
2006-12-09 06:11:00 109376 ----a-w- c:\program files\common files\microsoft shared\dw\1044\DWINTL20.DLL
2006-12-02 16:21:50 108872 ----a-w- c:\program files\common files\microsoft shared\dw\1030\DWINTL20.DLL
2006-12-02 16:18:26 108880 ----a-w- c:\program files\common files\microsoft shared\dw\1035\DWINTL20.DLL
2006-11-24 16:13:58 110928 ----a-w- c:\program files\common files\microsoft shared\dw\1045\DWINTL20.DLL
2006-11-24 16:13:00 110920 ----a-w- c:\program files\common files\microsoft shared\dw\1043\DWINTL20.DLL
2006-11-24 15:51:04 111440 ----a-w- c:\program files\common files\microsoft shared\dw\1040\DWINTL20.DLL
2006-11-24 15:50:30 108816 ----a-w- c:\program files\common files\microsoft shared\dw\1054\DWINTL20.DLL
2006-11-24 15:49:50 110416 ----a-w- c:\program files\common files\microsoft shared\dw\1046\DWINTL20.DLL
2006-11-24 15:48:20 109376 ----a-w- c:\program files\common files\microsoft shared\dw\1053\DWINTL20.DLL
2006-11-14 01:29:30 109840 ----a-w- c:\program files\common files\microsoft shared\dw\1081\DWINTL20.DLL
2006-11-02 13:39:58 1536 ----a-w- c:\program files\common files\microsoft shared\ink\PENUSA.DLL
2006-11-02 13:22:54 492000 ------w- c:\windows\system32\drivers\wdf01000.sys
2006-11-02 13:22:52 32224 ------w- c:\windows\system32\drivers\wdfldr.sys
2006-10-27 16:57:04 110936 ----a-w- c:\program files\common files\microsoft shared\dw\3082\DWINTL20.DLL
2006-10-27 14:46:36 112464 ----a-w- c:\program files\common files\microsoft shared\dw\1031\DWINTL20.DLL
2006-10-27 14:06:36 108824 ----a-w- c:\program files\common files\microsoft shared\dw\1037\DWINTL20.DLL
2006-10-27 14:04:04 108824 ----a-w- c:\program files\common files\microsoft shared\dw\1025\DWINTL20.DLL
2006-10-27 14:01:08 108816 ----a-w- c:\program files\common files\microsoft shared\dw\2052\DWINTL20.DLL
2006-10-27 12:59:44 111960 ----a-w- c:\program files\common files\microsoft shared\dw\1036\DWINTL20.DLL
2006-10-27 12:59:34 108816 ----a-w- c:\program files\common files\microsoft shared\dw\3076\DWINTL20.DLL
2006-10-27 12:55:12 108816 ----a-w- c:\program files\common files\microsoft shared\dw\1041\DWINTL20.DLL
2006-10-27 12:54:38 108816 ----a-w- c:\program files\common files\microsoft shared\dw\1028\DWINTL20.DLL
2006-10-27 12:52:08 108824 ----a-w- c:\program files\common files\microsoft shared\dw\1042\DWINTL20.DLL
2006-10-27 00:48:14 439568 ----a-w- c:\program files\common files\microsoft shared\dw\DWDCW20.DLL
2006-10-27 00:48:10 108872 ----a-w- c:\program files\common files\microsoft shared\dw\1033\DWINTL20.DLL
2006-10-19 01:05:26 204288 ------w- c:\program files\windows media player\wmpnscfg.exe
2006-10-19 01:05:24 913408 ------w- c:\program files\windows media player\wmpnetwk.exe
2006-10-19 01:04:40 493568 ------w- c:\program files\windows media player\wmdbexport.exe
2006-10-19 01:04:30 36864 ------w- c:\program files\windows media player\wmpshare.exe
2006-10-19 01:00:46 249856 ------w- c:\windows\system32\drmupgds.exe
2006-10-19 01:00:14 17408 ------w- c:\windows\system32\wpdshextautoplay.exe
2006-10-15 14:11:10 -------- d-----w- c:\program files\Where in Time is Carmen Sandiego v3.0
2006-10-14 08:13:25 974848 ------w- c:\windows\system32\dllcache\mfc42u.dll
2006-10-02 20:28:42 312128 ------w- c:\windows\system32\msdelta.dll
2006-09-29 01:13:26 95344 ------w- c:\windows\system32\WUDFCoinstaller.dll
2006-09-29 00:00:34 82944 ------w- c:\windows\system32\drivers\WudfRd.sys
2006-09-28 23:56:38 316416 ------w- c:\windows\system32\WUDFx.dll
2006-09-28 23:56:38 146432 ------w- c:\windows\system32\WudfHost.exe
2006-09-28 23:56:16 165376 ------w- c:\windows\system32\WudfPlatform.dll
2006-09-28 23:56:14 55808 ------w- c:\windows\system32\WudfSvc.dll
2006-09-28 23:55:50 77568 ------w- c:\windows\system32\drivers\WudfPf.sys
2006-09-28 22:13:44 162632 ----a-w- c:\program files\common files\microsoft shared\vba\vba6\1033\VBE6INTL.DLL
2006-09-13 10:27:46 101888 ----a-w- c:\program files\common files\microsoft shared\dw\2068\DWINTL20.DLL
2006-09-13 05:09:16 1172480 ----a-w- c:\windows\system32\msxml3.dll
2006-09-04 09:10:32 91912 ----a-w- c:\program files\common files\microsoft shared\office11\1033\msxml5r.dll
2006-08-25 09:14:17 2897920 ------w- c:\windows\system32\xpsp2res.dll
2006-08-24 21:15:06 150808 ----a-w- c:\windows\system32\rgb9rast_2.dll
2006-08-22 10:05:26 498742 ------w- c:\windows\system32\dllcache\dxmasf.dll
2006-08-22 02:08:18 551232 ----a-w- c:\program files\common files\microsoft shared\proof\MSSP3FR.DLL
2006-08-21 15:52:08 247326 ------w- c:\windows\system32\dllcache\strmdll.dll
2006-08-21 02:56:11 -------- d-----w- C:\California 2006 to edit
2006-08-16 12:14:23 82432 ----a-w- c:\windows\system32\ws2_32.dll
2006-08-16 12:14:23 59904 ------w- c:\windows\system32\ipv6mon.dll
2006-08-16 12:14:23 32768 ----a-w- c:\windows\system32\inetmib1.dll
2006-08-16 12:14:23 14336 ------w- c:\windows\system32\wship6.dll
2006-08-16 12:14:23 100864 ------w- c:\windows\system32\6to4svc.dll
2006-08-16 09:42:14 438784 ------w- c:\windows\system32\xpob2res.dll
2006-08-16 09:28:55 53248 ------w- c:\windows\system32\ipv6.exe
2006-08-16 09:27:50 86016 ------w- c:\windows\system32\netsh.exe
2006-08-16 09:27:12 12288 ------w- c:\windows\system32\drivers\tunmp.sys
2006-08-07 17:21:55 955589 -c--a-w- c:\windows\UninstGarage.exe
2006-08-04 21:19:40 1409 ------w- c:\windows\system32\tmpA5B48.FOT
2006-07-14 15:35:32 545280 ------w- c:\windows\system32\hhctrl.ocx
2006-07-11 22:50:13 -------- d-----w- c:\program files\Zero G Registry
2006-06-29 14:05:44 26112 ----a-w- c:\windows\system32\idndl.dll
2006-06-29 14:05:44 23552 ----a-w- c:\windows\system32\normaliz.dll
2006-06-28 23:59:26 24576 ----a-w- c:\windows\system32\nlsdl.dll
2006-06-28 00:00:26 410928 ------w- c:\program files\windows media player\LegitLibM.dll
2006-06-25 16:20:11 43520 ------w- c:\windows\system32\CmdLineExt03.dll
2006-06-25 16:17:30 -------- d-----w- c:\program files\Tilted Mill
2006-06-23 17:33:58 916992 ----a-w- c:\windows\system32\wininet.dll
2006-06-22 05:19:49 1435648 ------w- c:\windows\system32\query.dll
2006-06-17 20:23:54 1409 ------w- c:\windows\system32\tmpB2093.FOT
2006-06-17 20:23:54 1409 ------w- c:\windows\system32\tmpA5093.FOT
2006-06-04 21:25:40 -------- d-----w- c:\documents and settings\all users\application data\espionServerData
2006-06-04 21:16:32 47616 ----a-w- c:\program files\windows media player\msoobci.dll
2006-06-04 21:16:32 1669120 ----a-w- c:\program files\windows media player\wmsetsdk.exe
2006-05-14 09:13:41 384000 ------w- c:\windows\system32\ipsmsnap.dll
2006-05-14 09:13:41 349696 ------w- c:\windows\system32\ipsecsnp.dll
2006-05-14 09:13:41 32256 ----a-w- c:\windows\system32\winipsec.dll
2006-05-14 09:13:41 270336 ----a-w- c:\windows\system32\oakley.dll
2006-05-14 09:13:41 183808 ----a-w- c:\windows\system32\ipsecsvc.dll
2006-05-14 09:13:41 105472 ------w- c:\windows\system32\polstore.dll
2006-03-25 01:34:18 -------- d-----w- c:\documents and settings\all users\application data\Electronic Arts
2006-03-17 00:49:30 28672 ------w- c:\windows\system32\verclsid.exe
2006-03-06 02:55:03 38160 ------w- c:\windows\system32\LMRTREND.dll
2006-03-06 02:55:03 140800 ------w- c:\windows\system32\tm20dec.ax
2006-03-06 02:55:02 182032 ------w- c:\windows\system32\dxtmsft3.dll
2006-03-06 02:55:00 63488 ------w- c:\windows\system32\unam4ie.exe
2006-03-06 02:54:59 5672 ------w- c:\windows\system32\quartz.vxd
2006-03-06 02:54:59 11776 ------w- c:\windows\system32\mciqtz.drv
2006-03-06 02:54:59 10240 ------w- c:\windows\system32\vidx16.dll
2006-03-06 02:54:58 4608 ------w- c:\windows\system32\w95inf32.dll
2006-03-06 02:54:58 2272 ------w- c:\windows\system32\w95inf16.dll
2006-03-06 02:54:58 194320 ------w- c:\windows\system32\qcut.dll
2006-03-01 19:44:39 956928 ------w- c:\windows\system32\msdtctm.dll
2006-03-01 19:44:39 91648 ------w- c:\windows\system32\mtxoci.dll
2006-03-01 19:44:39 66560 ----a-w- c:\windows\system32\mtxclu.dll
2006-03-01 19:44:39 428032 ------w- c:\windows\system32\msdtcprx.dll
2006-03-01 19:44:39 11776 ------w- c:\windows\system32\xolehlp.dll
2006-02-15 23:22:12 102912 ----a-w- c:\program files\common files\microsoft shared\dw\2074\DWINTL20.DLL
2006-01-14 03:02:12 38229 ------w- c:\windows\system32\drivers\StMp3Rec.sys
2006-01-14 03:02:01 -------- d-----w- c:\program files\iPod
2006-01-04 03:37:34 68096 ----a-w- c:\windows\system32\webclnt.dll
2006-01-03 01:03:21 -------- d-----w- c:\program files\United TravelDesk
2005-12-29 14:58:09 86016 ------w- c:\windows\system32\ZSPOOL.DLL
2005-12-29 14:58:09 28672 ------w- c:\windows\system32\IMF32.DLL
2005-12-29 14:58:09 24576 ------w- c:\windows\system32\ZTAG32.DLL
2005-12-29 14:58:08 86016 ------w- c:\windows\system32\ZLhp1020.dll
2005-12-29 14:58:08 49152 ------w- c:\windows\system32\spool\prtprocs\w32x86\IMFPRINT.DLL
2005-12-29 14:58:08 28672 ------w- c:\windows\system32\zlm.dll
2005-12-29 14:54:30 25856 ------w- c:\windows\system32\drivers\usbprint.sys
2005-12-29 14:52:14 143360 -c--a-r- c:\windows\apptune1020.exe
2005-12-29 14:52:09 397312 ------w- c:\windows\system32\zshp1020.exe
2005-12-29 14:52:09 106496 ------w- c:\windows\system32\vshp1020.dll
2005-12-29 14:52:07 -------- d-----w- c:\program files\Zenographics
2005-12-26 03:57:46 212992 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ILog.dll
2005-12-17 01:05:31 1409 ------w- c:\windows\system32\tmpA9EE0.FOT
2005-12-17 01:05:31 1409 ------w- c:\windows\system32\tmp9CEE0.FOT
2005-11-24 14:26:57 1409 ------w- c:\windows\system32\tmpE58BD.FOT
2005-11-24 14:26:57 1409 ------w- c:\windows\system32\tmp038BD.FOT
2005-10-23 18:11:44 -------- d-----w- c:\program files\Viva Media
2005-10-04 18:17:38 530120 ----a-w- c:\program files\common files\microsoft shared\equation\EQNEDT32.EXE
2005-09-20 17:33:58 843984 ----a-w- c:\program files\common files\system\ole db\MSDAIPP.DLL
2005-09-20 17:33:58 163536 ----a-w- c:\program files\common files\system\ole db\MSDAPML.DLL
2005-09-20 17:33:08 1293008 ----a-w- c:\program files\common files\microsoft shared\web folders\MSONSEXT.DLL
2005-09-20 07:10:03 -------- d-----w- c:\program files\common files\Scanner
2005-09-17 13:52:38 6736 ------w- c:\windows\system32\WINGDIB.DRV
2005-09-17 13:52:38 5024 ------w- c:\windows\system32\WINGPAL.WND
2005-09-17 13:52:38 188960 ------w- c:\windows\system32\WINGDE.DLL
2005-09-17 13:52:03 -------- d-----w- C:\TTL3Home
2005-09-01 01:49:29 19968 ----a-w- c:\windows\system32\linkinfo.dll
2005-08-30 15:14:00 1292288 ------w- c:\windows\system32\quartz.dll
2005-08-23 03:51:10 123392 ----a-w- c:\windows\system32\umpnpmgr.dll
2005-08-22 18:36:34 198144 ----a-w- c:\windows\system32\netman.dll
2005-07-26 04:31:13 74752 ----a-w- c:\windows\system32\olecli32.dll
2005-07-26 04:31:13 401408 ----a-w- c:\windows\system32\rpcss.dll
2005-07-26 04:31:13 1288704 ----a-w- c:\windows\system32\ole32.dll
2005-07-26 04:31:13 101376 ------w- c:\windows\system32\txflog.dll
2005-07-26 04:31:12 253952 ----a-w- c:\windows\system32\es.dll
2005-07-26 04:30:49 1267200 ----a-w- c:\windows\system32\comsvcs.dll
2005-07-26 04:30:41 60416 ----a-w- c:\windows\system32\colbact.dll
2005-07-26 04:30:41 498688 ----a-w- c:\windows\system32\clbcatq.dll
2005-07-26 04:30:38 625664 ----a-w- c:\windows\system32\catsrvut.dll
2005-07-26 04:30:38 110592 ------w- c:\windows\system32\clbcatex.dll
2005-07-26 04:30:34 226304 ----a-w- c:\windows\system32\catsrv.dll
2005-07-08 16:09:48 249856 ----a-w- c:\windows\system32\tapisrv.dll
2005-06-29 01:54:58 74240 ----a-w- c:\windows\system32\mscms.dll
2005-06-28 22:47:12 -------- d-----w- c:\windows\system32\SoftwareDistribution
2005-06-15 17:50:24 301568 ----a-w- c:\windows\system32\kerberos.dll
2005-06-10 23:55:46 58880 ----a-w- c:\windows\system32\spoolsv.exe
2005-05-26 10:19:32 214256 ----a-w- c:\windows\system32\muweb.dll
2005-05-04 06:06:32 1411816 ----a-w- c:\program files\common files\system\ole db\MSDMINE.DLL
2005-05-04 06:06:30 1071856 ----a-w- c:\program files\common files\system\ole db\MSMDGD80.DLL
2005-05-04 06:06:28 465640 ----a-w- c:\program files\common files\system\ole db\MSDMENG.DLL
2005-05-04 06:06:26 240360 ----a-w- c:\program files\common files\system\ole db\MSMDCB80.DLL
2005-05-04 06:06:26 228152 ----a-w- c:\program files\common files\system\ole db\MSOLUI80.DLL
2005-05-04 06:06:26 199408 ----a-w- c:\program files\common files\system\ole db\MSMDUN80.DLL
2005-05-02 23:48:17 -------- d-----w- c:\program files\Hasbro Interactive
2005-05-02 21:56:03 221184 -c--a-r- c:\windows\ltsModule.exe
2005-04-04 06:50:00 548963 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\_ISRES1033.dll
2005-04-04 06:41:46 778240 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\IDriver2.exe
2005-04-04 06:41:46 778240 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\IDriver.exe
2005-04-04 06:41:10 69632 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\IDriverT.exe
2005-04-04 05:04:10 421888 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\ISRT.dll
2005-04-04 05:02:12 200704 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\iGdiCnv.dll
2005-04-04 05:01:48 274432 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\IScrCnv.dll
2005-04-04 05:01:08 184320 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\IUserCnv.dll
2005-04-04 04:57:24 32768 ----a-w- c:\program files\common files\installshield\driver\11\intel 32\objpscnv.dll
2005-03-02 18:20:03 62464 ----a-w- c:\windows\system32\authz.dll
2005-01-28 19:44:28 276992 ----a-w- c:\windows\system32\audiodev.dll
2005-01-28 19:44:28 25600 ----a-w- c:\program files\windows media player\wmpenc.exe
2005-01-28 19:44:28 241664 ----a-w- c:\program files\windows media player\wmlaunch.exe
2005-01-28 19:44:28 232448 ----a-w- c:\windows\system32\l3codecp.acm
2005-01-28 19:44:28 204288 ----a-w- c:\windows\system32\wmpsrcwp.dll
2005-01-28 19:44:28 1661440 ----a-w- c:\windows\system32\wmpencen.dll
2005-01-26 23:49:00 364627 ----a-w- c:\program files\common files\microsoft shared\proof\MSTH3FR.DLL
2004-12-27 01:13:25 -------- d-----w- c:\program files\brighter child
2004-12-22 14:59:02 -------- d-----w- c:\program files\Fisher-Price
2004-12-17 07:21:40 -------- d-----w- c:\program files\common files\NSV
2004-12-15 06:46:10 -------- d--h--w- c:\windows\$hf_mig$
2004-11-17 17:57:01 347136 ------w- c:\windows\system32\hypertrm.dll
2004-11-16 21:32:24 72704 ------w- c:\windows\system32\hlink.dll
2004-11-15 22:18:50 1695232 ----a-w- c:\program files\messenger\msmsgs.exe
2004-10-28 18:06:29 218112 ----a-w- c:\program files\windows nt\accessories\wordpad.exe
2004-10-28 15:45:58 69120 ------w- c:\windows\system32\ciodm.dll
2004-10-28 01:29:54 101888 ----a-w- c:\windows\system32\cscdll.dll
2004-10-11 00:26:05 11264 ------w- c:\windows\system32\spnpinst.exe
2004-10-05 03:27:14 3166208 ----a-w- c:\program files\common files\microsoft shared\proof\1033\MSGR3EN.DLL
2004-09-14 19:23:48 1409 ------w- c:\windows\system32\tmpCDB44.FOT
2004-09-14 19:23:48 1409 ------w- c:\windows\system32\tmpB1C44.FOT
2004-08-21 07:54:17 338432 ------w- c:\windows\system32\zipfldr.dll
2004-08-20 22:01:15 87552 ------w- c:\windows\system32\fldrclnr.dll
2004-08-20 22:01:15 713216 ----a-w- c:\windows\system32\sxs.dll
2004-08-19 18:59:20 577048 ----a-w- c:\windows\system32\dllcache\wuapi.dll
2004-08-19 18:59:20 35864 ----a-w- c:\windows\system32\dllcache\wups.dll
2004-08-19 18:59:20 329240 ----a-w- c:\windows\system32\dllcache\wucltui.dll
2004-08-19 18:59:20 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2004-08-19 18:59:20 210968 ----a-w- c:\windows\system32\dllcache\wuweb.dll
2004-08-19 18:59:20 194328 ------w- c:\windows\system32\wuaueng1.dll
2004-08-19 18:59:20 172312 ------w- c:\windows\system32\wuauclt1.exe
2004-08-04 06:10:39 59136 ------w- c:\windows\system32\drivers\rfcomm.sys
2004-08-04 06:10:38 37888 ------w- c:\windows\system32\drivers\bthmodem.sys
2004-08-04 06:10:38 17024 ------w- c:\windows\system32\drivers\bthenum.sys
2004-08-04 06:10:37 36480 ------w- c:\windows\system32\drivers\bthprint.sys
2004-08-04 06:10:37 272128 ------w- c:\windows\system32\drivers\bthport.sys
2004-08-04 06:10:36 25600 ------w- c:\windows\system32\drivers\hidbth.sys
2004-08-04 06:10:34 18944 ------w- c:\windows\system32\drivers\bthusb.sys
2004-08-04 06:10:10 121984 ------w- c:\windows\system32\drivers\usbvideo.sys
2004-08-04 06:08:32 46592 ------w- c:\windows\system32\drivers\irbus.sys
2004-08-04 06:08:18 19200 ------w- c:\windows\system32\drivers\hidir.sys
2004-08-04 06:07:47 79232 ------w- c:\windows\system32\drivers\sdbus.sys
2004-08-04 06:07:47 15488 ------w- c:\windows\system32\drivers\mssmbios.sys
2004-08-04 06:07:43 46464 ------w- c:\windows\system32\drivers\gagp30kx.sys
2004-08-04 06:07:43 44672 ------w- c:\windows\system32\drivers\uagp35.sys
2004-08-04 06:07:36 5888 ------w- c:\windows\system32\drivers\smbali.sys
2004-08-04 06:04:52 14208 ------w- c:\windows\system32\drivers\wacompen.sys
2004-08-04 06:04:51 12672 ------w- c:\windows\system32\drivers\mutohpen.sys
2004-08-04 06:04:33 12800 ------w- c:\windows\system32\drivers\usb8023x.sys
2004-08-04 06:04:31 30592 ------w- c:\windows\system32\drivers\rndismpx.sys
2004-08-04 06:01:19 129792 ------w- c:\windows\system32\drivers\fltmgr.sys
2004-08-04 06:00:13 265728 ------w- c:\windows\system32\drivers\http.sys
2004-08-04 05:59:57 385024 ----a-w- c:\windows\system32\html.iec
2004-08-04 05:59:54 11904 ------w- c:\windows\system32\drivers\sffdisk.sys
2004-08-04 05:59:54 11008 ------w- c:\windows\system32\drivers\sffp_sd.sys
2004-08-04 05:59:34 9728 ------w- c:\windows\system32\comsdupd.exe
2004-08-04 05:59:19 36352 ------w- c:\windows\system32\drivers\intelppm.sys
2004-08-04 05:58:38 101120 ------w- c:\windows\system32\drivers\bthpan.sys
2004-08-04 05:41:55 11868 ------w- c:\windows\system32\drivers\mdmxsdk.sys
2004-08-04 05:41:54 1041536 ------w- c:\windows\system32\drivers\hsfdpsp2.sys
2004-08-04 05:41:48 685056 ------w- c:\windows\system32\drivers\hsfcxts2.sys
2004-08-04 05:41:46 220032 ------w- c:\windows\system32\drivers\hsfbs2s2.sys
2004-08-04 05:41:45 13240 ------w- c:\windows\system32\drivers\slwdmsup.sys
2004-08-04 05:41:44 95424 ------w- c:\windows\system32\drivers\slnthal.sys
2004-08-04 05:41:42 404990 ------w- c:\windows\system32\drivers\slntamr.sys
2004-08-04 05:41:40 129535 ------w- c:\windows\system32\drivers\slnt7554.sys
2004-08-04 05:41:39 180360 ------w- c:\windows\system32\drivers\ntmtlfax.sys
2004-08-04 05:41:39 13776 ------w- c:\windows\system32\drivers\recagent.sys
2004-08-04 05:41:38 126686 ------w- c:\windows\system32\drivers\mtlmnt5.sys
2004-08-04 05:41:37 1309184 ------w- c:\windows\system32\drivers\mtlstrm.sys
2004-07-31 18:40:56 -------- d-----w- c:\program files\Majestic Chess
2004-07-29 22:50:08 39424 ------w- c:\windows\system32\grpconv.exe
2004-07-18 19:20:07 -------- d-----w- C:\TIVOLA
2004-07-18 19:20:03 182528 -c--a-w- c:\windows\PI.EXE
2004-07-17 18:40:21 19528 -c--a-w- c:\windows\002487_.tmp
2004-07-16 06:30:54 540772 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\_ISRES1033.dll
2004-07-16 05:23:54 761856 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\IDriver2.exe
2004-07-16 05:23:54 761856 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\IDriver.exe
2004-07-16 05:21:58 409600 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\ISRT.dll
2004-07-16 05:19:58 180224 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\iGdiCnv.dll
2004-07-16 05:19:36 266240 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\IScrCnv.dll
2004-07-16 05:18:58 172032 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\IUserCnv.dll
2004-07-16 05:16:34 32768 ----a-w- c:\program files\common files\installshield\driver\10\intel 32\objpscnv.dll
2004-07-14 11:07:35 274944 ------w- c:\windows\system32\mstask.dll
2004-07-14 11:07:35 192512 ----a-w- c:\windows\system32\schedsvc.dll
2004-07-14 11:07:35 12288 ------w- c:\windows\system32\mstinit.exe
2004-07-14 11:07:19 138240 ------w- c:\windows\system32\itss.dll
2004-07-14 11:07:01 -------- d-----w- c:\windows\system32\bits
2004-07-14 11:06:52 8192 ------w- c:\windows\system32\bitsprx2.dll
2004-07-14 11:06:52 7168 ------w- c:\windows\system32\bitsprx3.dll
2004-07-14 11:06:52 354816 ----a-w- c:\windows\system32\winhttp.dll
2004-07-14 11:06:52 18944 ----a-w- c:\windows\system32\qmgrprxy.dll
2004-07-11 16:14:53 -------- d-----w- C:\Nancy Drew
2004-06-24 20:54:44 510976 ----a-w- c:\program files\common files\system\wab32.dll
2004-06-20 16:11:32 6215168 ----a-w- c:\program files\common files\microsoft shared\proof\1036\MSGR3FR.DLL
2004-06-18 19:40:50 33280 ----a-w- c:\windows\muninst.exe
2004-06-17 17:58:35 26112 ------w- c:\windows\system32\vdmdbg.dll
2004-06-17 17:58:35 15360 ------w- c:\windows\system32\ntvdmd.dll
2004-06-17 00:24:49 18944 ------w- c:\windows\system32\nddenb32.dll
2004-06-16 18:32:52 111104 ------w- c:\windows\system32\netdde.exe
2004-06-13 14:05:42 -------- d-----w- C:\CWONDERS
2004-06-13 14:05:34 92208 ------w- c:\windows\system32\WING.DLL
2004-06-13 14:05:34 345600 ----a-r- c:\windows\system\QTIM32.DLL
2004-06-13 13:54:45 -------- d-----w- C:\hegames
2004-06-08 03:49:22 -------- d-----w- c:\program files\Nancy Drew
2004-06-08 03:38:11 -------- d-----w- c:\program files\directx
2004-06-07 22:08:59 -------- d-----w- c:\program files\Carmen Math Detective
2004-06-07 19:19:46 692736 ------w- c:\windows\system32\inetcomm.dll
2004-06-05 23:50:37 -------- d-----w- c:\program files\Broderbund Software
2004-06-04 22:35:41 -------- d-----w- c:\program files\common files\Imaginext™
2004-06-04 22:35:39 -------- d-----w- c:\documents and settings\all users\application data\Imaginext™
2004-06-04 00:43:01 264192 ----a-w- c:\windows\system32\wow32.dll
2004-06-02 05:10:36 108336 ------w- c:\windows\system32\MSWINSCK.OCX
2004-06-02 05:10:34 -------- d-----w- C:\EPGYK-7
2004-06-02 04:26:34 -------- d-----w- c:\windows\Cache
2004-06-02 04:11:48 -------- d-----w- c:\windows\system32\appmgmt
2004-05-29 14:39:17 -------- d-----w- c:\program files\common files\Knowledge Adventure
2004-05-29 14:39:17 -------- d-----w- c:\documents and settings\all users\application data\Knowledge Adventure
2004-05-26 19:26:42 1315328 ----a-w- c:\program files\outlook express\msoe.dll
2004-05-23 03:11:19 56832 ------w- c:\windows\system32\ECBTEG.DLL
2004-05-23 03:11:17 -------- d-----w- c:\program files\EPSON
2004-05-23 03:10:48 -------- d-----w- C:\EPSON
2004-05-22 19:04:11 -------- d-----w- C:\Tlcwin
2004-05-20 01:04:16 -------- d-----w- c:\windows\BBSTORE
2004-05-17 22:48:03 92224 ------w- c:\windows\system32\krnl386.exe
2004-05-17 22:43:09 35424 ------w- c:\windows\system32\ntio412.sys
2004-05-17 22:43:07 34560 ------w- c:\windows\system32\ntio404.sys
2004-05-17 22:43:06 34560 ------w- c:\windows\system32\ntio804.sys
2004-05-17 22:43:04 35648 ------w- c:\windows\system32\ntio411.sys
2004-05-17 22:43:02 33840 ------w- c:\windows\system32\ntio.sys
2004-05-08 13:33:52 -------- d-----w- C:\MM12QXXTEMP
2004-05-08 13:32:02 -------- d-----w- c:\program files\Windows Journal Viewer
2004-05-08 13:29:55 -------- d-----w- c:\windows\PeerNet
2004-05-08 13:27:44 -------- d-----w- c:\program files\HighMAT CD Writing Wizard
2004-05-08 13:27:42 -------- d-----w- c:\windows\Downloaded Installations
2004-05-08 13:19:26 -------- d-----w- C:\WUTemp
2004-05-08 12:50:44 -------- d-----w- c:\program files\SBC Yahoo!
2004-05-08 12:50:05 65536 ------w- c:\windows\system32\YCRWin32.dll
2004-05-08 12:50:01 84992 ------w- c:\windows\system32\ATL70.DLL
2004-05-08 12:50:00 -------- d-----w- c:\program files\Yahoo!
2004-05-08 12:45:13 68672 ------w- c:\windows\system32\drivers\2WirePCP.sys
2004-05-08 12:42:05 45056 -c--a-w- c:\windows\NCUNINST.EXE
2004-05-08 12:40:43 -------- d-----w- c:\program files\common files\SWF Studio
2004-05-08 12:38:41 -------- d-----w- c:\program files\2Wire
2004-05-03 00:44:33 3584 ------w- c:\documents and settings\all users\application data\microsoft\usmt\iconlib.dll
2004-05-02 19:32:48 -------- d-----w- c:\windows\DISNEY
2004-05-02 01:01:31 1409 ------w- c:\windows\system32\tmp307B3.FOT
2004-05-02 01:01:06 -------- d-----w- c:\program files\Disney Interactive
2004-05-01 18:54:55 299520 ----a-w- c:\windows\uninst.exe
2004-05-01 02:56:39 -------- d-----w- c:\documents and settings\all users\application data\The Learning Company
2004-05-01 02:56:14 274432 -c--a-w- c:\windows\TLCUninstall.exe
2004-05-01 02:56:09 -------- d-----w- c:\program files\The Learning Company
2004-05-01 02:21:31 21504 ----a-w- c:\windows\system32\hidserv.dll
2004-05-01 02:21:30 12160 ------w- c:\windows\system32\drivers\mouhid.sys
2004-05-01 02:21:28 14592 ------w- c:\windows\system32\drivers\kbdhid.sys
2004-05-01 02:21:26 10368 ------w- c:\windows\system32\drivers\hidusb.sys
2004-04-28 14:03:11 -------- d-----w- c:\documents and settings\all users\application data\McAfee.com
2004-04-28 14:03:02 -------- d-----w- c:\program files\McAfee.com
2004-04-28 14:02:56 -------- d-----w- c:\program files\Your Company Name
.
==================== Find3M ====================
.
2012-07-16 20:25:06 17320 ----a-w- c:\windows\system32\roboot.exe
2012-06-13 13:19:59 1866112 ------w- c:\windows\system32\win32k.sys
2012-06-05 15:50:25 1372672 ----a-w- c:\windows\system32\msxml6.dll
2012-06-04 04:32:08 152576 ----a-w- c:\windows\system32\schannel.dll
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-11 14:42:33 43520 ----a-w- c:\windows\system32\licmgr10.dll
2012-05-11 14:42:33 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-05-04 13:16:13 2148352 ------w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32:19 2026496 ------w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46:36 139656 ------w- c:\windows\system32\drivers\rdpwd.sys
2012-02-29 14:10:16 177664 ----a-w- c:\windows\system32\wintrust.dll
2012-02-29 14:10:16 148480 ------w- c:\windows\system32\imagehlp.dll
2012-01-25 18:00:48 17136 ----a-w- c:\windows\system32\sasnative32.exe
2011-11-25 21:57:19 293376 ----a-w- c:\windows\system32\winsrv.dll
2011-11-18 12:35:08 60416 ------w- c:\windows\system32\packager.exe
2011-11-03 15:28:36 386048 ------w- c:\windows\system32\qdvd.dll
2011-10-28 05:31:48 33280 ------w- c:\windows\system32\csrsrv.dll
2011-10-18 11:13:22 186880 ------w- c:\windows\system32\encdec.dll
2011-10-14 14:47:29 23040 ------w- c:\windows\system32\mciseq.dll
2011-10-14 14:47:29 176128 ----a-w- c:\windows\system32\winmm.dll
2011-09-26 16:41:20 220160 ----a-w- c:\windows\system32\oleacc.dll
2011-09-26 16:41:14 20480 ----a-w- c:\windows\system32\oleaccrc.dll
2011-08-17 13:49:54 138496 ------w- c:\windows\system32\drivers\afd.sys
2011-07-15 13:29:31 456320 ------w- c:\windows\system32\drivers\mrxsmb.sys
2011-07-08 14:02:00 10496 ------w- c:\windows\system32\drivers\ndistapi.sys
2011-04-21 13:37:43 105472 ------w- c:\windows\system32\drivers\mup.sys
2011-03-04 06:37:06 420864 ----a-w- c:\windows\system32\vbscript.dll
2011-02-17 13:18:03 357888 ------w- c:\windows\system32\drivers\srv.sys
2011-02-15 12:56:39 290432 ----a-w- c:\windows\system32\atmfd.dll
2011-02-09 13:53:52 270848 ------w- c:\windows\system32\sbe.dll
2011-02-08 13:33:55 978944 ----a-w- c:\windows\system32\mfc42.dll
2011-02-08 13:33:55 974848 ------w- c:\windows\system32\mfc42u.dll
2011-02-02 07:58:35 2067456 ------w- c:\windows\system32\mstscax.dll
2011-01-27 11:57:06 677888 ------w- c:\windows\system32\mstsc.exe
2011-01-21 14:44:37 439296 ------w- c:\windows\system32\shimgvw.dll
2010-12-20 17:32:15 551936 ------w- c:\windows\system32\oleaut32.dll
2010-12-20 17:26:00 730112 ------w- c:\windows\system32\lsasrv.dll
2010-12-09 15:15:09 718336 ------w- c:\windows\system32\ntdll.dll
2010-11-18 18:12:44 81920 ------w- c:\windows\system32\isign32.dll
2010-11-09 14:52:35 249856 ----a-w- c:\windows\system32\odbc32.dll
2010-11-02 15:17:02 40960 ------w- c:\windows\system32\drivers\ndproxy.sys
2010-09-18 06:53:25 954368 ------w- c:\windows\system32\mfc40.dll
2010-09-18 06:53:25 953856 ------w- c:\windows\system32\mfc40u.dll
2010-08-27 08:02:29 119808 ------w- c:\windows\system32\t2embed.dll
2010-08-27 05:57:43 99840 ------w- c:\windows\system32\srvsvc.dll
2010-08-23 16:12:04 617472 ------w- c:\windows\system32\comctl32.dll
2010-08-16 08:45:00 590848 ----a-w- c:\windows\system32\rpcrt4.dll
2010-06-17 14:03:00 80384 ------w- c:\windows\system32\iccvid.dll
2010-06-15 16:17:24 143422 ------w- c:\windows\system32\l3codecx.ax
2010-06-14 14:31:20 744448 ----a-w- c:\windows\pchealth\helpctr\binaries\helpsvc.exe
2010-04-16 15:36:56 406016 ------w- c:\windows\system32\usp10.dll
2010-03-30 17:24:40 317440 ------w- c:\windows\system32\mp4sdecd.dll
2010-03-30 05:52:26 262416 ------w- c:\windows\system32\mpg4ds32.ax
2010-03-05 14:37:40 65536 ----a-w- c:\windows\system32\asycfilt.dll
2010-02-11 12:02:15 226880 ------w- c:\windows\system32\drivers\tcpip6.sys
2010-01-29 14:43:39 307260 ------w- c:\windows\system32\l3codeca.acm
2010-01-13 14:01:25 86016 ------w- c:\windows\system32\cabview.dll
2009-12-16 18:43:27 343040 ------w- c:\windows\system32\mspaint.exe
2009-11-27 17:11:44 17920 ------w- c:\windows\system32\msyuv.dll
2009-11-27 16:07:35 8704 ------w- c:\windows\system32\tsbyuv.dll
2009-11-27 16:07:35 28672 ------w- c:\windows\system32\msvidc32.dll
2009-11-27 16:07:34 84992 ------w- c:\windows\system32\avifil32.dll
2009-11-27 16:07:34 48128 ------w- c:\windows\system32\iyuv_32.dll
2009-11-27 16:07:34 11264 ------w- c:\windows\system32\msrle32.dll
2009-11-21 15:51:04 471552 ----a-w- c:\windows\apppatch\aclayers.dll
2009-10-21 05:38:36 75776 ----a-w- c:\windows\system32\strmfilt.dll
2009-10-21 05:38:36 25088 ----a-w- c:\windows\system32\httpapi.dll
2009-10-15 16:28:26 81920 ------w- c:\windows\system32\fontsub.dll
2009-10-12 13:38:19 149504 ----a-w- c:\windows\system32\rastls.dll
2009-10-12 13:38:18 79872 ----a-w- c:\windows\system32\raschap.dll
2009-09-11 14:18:39 136192 ----a-w- c:\windows\system32\msv1_0.dll
2009-09-04 21:03:36 58880 ----a-w- c:\windows\system32\msasn1.dll
2009-09-01 14:46:07 282654 ------w- c:\windows\system32\msaud32.acm
2009-08-26 08:00:21 247326 ------w- c:\windows\system32\strmdll.dll
2009-08-05 09:01:48 204800 ------w- c:\windows\system32\mswebdvd.dll
2009-07-17 19:01:06 58880 ----a-w- c:\windows\system32\atl.dll
2009-07-14 04:43:24 286208 ----a-w- c:\windows\system32\wmpdxm.dll
2009-06-25 08:25:26 56832 ----a-w- c:\windows\system32\secur32.dll
2009-06-25 08:25:26 54272 ----a-w- c:\windows\system32\wdigest.dll
2009-06-24 11:18:41 92928 ------w- c:\windows\system32\drivers\ksecdd.sys
2009-06-12 12:31:40 80896 ------w- c:\windows\system32\tlntsess.exe
2009-06-12 12:31:39 76288 ------w- c:\windows\system32\telnet.exe
2009-06-10 06:14:49 132096 ------w- c:\windows\system32\wkssvc.dll
2009-05-07 15:32:35 345600 ------w- c:\windows\system32\localspl.dll
2009-04-20 17:17:26 45568 ----a-w- c:\windows\system32\dnsrslvr.dll
2009-04-02 04:02:22 604160 ----a-w- c:\windows\system32\wmspdmod.dll
2009-03-08 09:33:40 18944 ----a-w- c:\windows\system32\corpol.dll
2009-03-08 09:32:56 72704 ----a-w- c:\windows\system32\admparse.dll
2009-03-08 09:32:50 71680 ----a-w- c:\windows\system32\iesetup.dll
2009-03-08 09:31:38 34816 ----a-w- c:\windows\system32\imgutil.dll
2009-03-08 09:31:18 48128 ----a-w- c:\windows\system32\mshtmler.dll
2009-03-08 09:31:02 45568 ----a-w- c:\windows\system32\mshta.exe
2009-03-08 09:31:02 1638912 ----a-w- c:\windows\system32\mshtml.tlb
2009-03-08 09:30:56 66560 ----a-w- c:\windows\system32\tdc.ocx
2009-03-08 09:22:38 156160 ----a-w- c:\windows\system32\msls31.dll
2009-03-06 14:22:18 284160 ------w- c:\windows\system32\pdh.dll
2009-02-09 12:10:48 617472 ------w- c:\windows\system32\advapi32.dll
2009-02-09 12:10:48 473600 ----a-w- c:\windows\system32\wbem\fastprox.dll
2009-02-09 12:10:48 453120 ----a-w- c:\windows\system32\wbem\wmiprvsd.dll
2009-02-06 11:11:05 110592 ------w- c:\windows\system32\services.exe
.
============= FINISH: 4:05:16.31 ===============

Attached Files



BC AdBot (Login to Remove)

 


#2 michael_brancato

michael_brancato
  • Topic Starter

  • Members
  • 24 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Chicago
  • Local time:06:07 AM

Posted 03 August 2012 - 01:44 PM

I now have windows antivirus machine running, i know that is a trojan. I also noticed that when i shut down it take almost 30 sec and the IE icon flashes blue every couple of seconds ( a sign that something is useing it). Due to windows antivirus machine, i now cannot even use IE to see where it is going.

#3 nasdaq

nasdaq

  • Malware Response Team
  • 40,741 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:07 AM

Posted 08 August 2012 - 09:51 AM

Hello, Welcome to BleepingComputer.
I'm nasdaq and will be helping you.

If you can please print this topic it will make it easier for you to follow the instructions and complete all of the necessary steps.
===

Please download ComboFix from one of these locations:

Link 1
Link 2

* IMPORTANT !!! Save ComboFix.exe to your Desktop

  • Disable your Anti-Virus and Anti-Spyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
  • Close any open browsers, and all other programs working. Make sure you save your file if working on a document.
  • Do not install any other programs until this if fixed.[/b]
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.
  • Some Rookit infection may damage your boot sector. The Windows Recovery Console may be needed to restore it. Do not bypass this installation. You may regret it.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Posted Image


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

Posted Image

Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

Note: If you have difficulty properly disabling your protection programs, refer to this link --> http://www.bleepingcomputer.com/forums/topic114351.html

Do not mouse click ComboFix's window while it's running. That may cause it to stall

Note: If after running ComboFix you get this error message "Illegal operation attempted on a registry key that has been marked for deletion." when attempting to run a program all you need to do is restart the computer to reset the registry.
===

Third party programs if not up to date can be the cause of infiltration an infection.

Please run this security check for my review.

Download Security Check by screen317 from here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.
===

Please download AdwCleaner by Xplode onto your Desktop.
  • Double click on AdwCleaner.exe to run the tool.
  • Click on Search.
  • A logfile will automatically open after the scan has finished.
  • Please post the content of that logfile in your reply.
  • You can find the logfile at C:\AdwCleaner[Rn].txt as well - n is the order number.

Please post the logs and let me know if the problem persists.

#4 nasdaq

nasdaq

  • Malware Response Team
  • 40,741 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Montreal, QC. Canada
  • Local time:07:07 AM

Posted 14 August 2012 - 08:25 AM

Due to the lack of feedback, this topic is now closed.

In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users