Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Aquired Curve-Torrent-Bitcoin Locker, unable to clean computer


  • This topic is locked This topic is locked
38 replies to this topic

#1 TravelingOne

TravelingOne

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 10 March 2015 - 03:07 PM

I believe I became infected with the Curve-Torrent-Bitcoin Locker trojan at the end of December.  I have tried to use Symantec, Malwarebytes and Avast.  While Malwarebytes and Avast quaratined and deleted files, they didn't seem to completely fix the infection.

 

Startup is slower than it use to be, the longer the computer runs after a normal startup the more often I get the "unable to complete task due to lack of resources."  Eventually, the screen stops refreshing and the computer freezes.

 

Thank you in advance for your time and efforts.

 

Please find 2 FRST logs below.

 

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-03-2015
Ran by Administrator (administrator) on PC on 10-03-2015 12:06:35
Running from C:\Documents and Settings\Administrator\Desktop
Loaded Profiles: Administrator (Available profiles: N310 & Jeff & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: IE)
Boot Mode: Safe Mode (with Networking)
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Microsoft Corporation) C:\Program Files\Internet Explorer\iexplore.exe
(Symantec Corporation) C:\PROGRA~1\Symantec\SYMANT~1\121533~1.105\Bin\DWHWizrd.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZoomingHook] => C:\WINDOWS\system32\ZoomingHook.exe [24576 2005-06-06] (TOSHIBA)
HKLM\...\Run: [Zooming] => C:\WINDOWS\system32\ZoomingHook.exe [24576 2005-06-06] (TOSHIBA)
HKLM\...\Run: [TPSMain] => C:\WINDOWS\system32\TPSMain.exe [268864 2009-09-30] (TOSHIBA Corporation)
HKLM\...\Run: [TPNF] => C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [86016 2009-10-09] (COMPAL ELECTRONIC INC.)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [611672 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [ThpSrv] => C:\WINDOWS\system32\thpsrv /logon
HKLM\...\Run: [TDispVol] => C:\WINDOWS\system32\TDispVol.exe [208896 2010-01-17] (TOSHIBA Corporation)
HKLM\...\Run: [TAccessibility] => C:\Program Files\TOSHIBA\Accessibility\TAccessibility.exe [110592 2009-10-09] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1586472 2009-10-15] (Synaptics Incorporated)
HKLM\...\Run: [SVPWUTIL] => C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe [90112 2009-04-28] (TOSHIBA)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe [159744 2007-04-09] (TOSHIBA Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18782720 2009-11-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [90448 2011-11-02] (Research In Motion Limited)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [NDSTray.exe] => NDSTray.exe
HKLM\...\Run: [masqform.exe] => C:\Program Files\PureEdge\Viewer 6.5\masqform.exe [643072 2005-07-04] (PureEdge™ Solutions Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe [28672 2004-05-01] (TOSHIBA CO.,LTD.)
HKLM\...\Run: [CFSServ.exe] => CFSServ.exe -NoClient
HKLM\...\Run: [CeEKEY] => C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [873840 2009-11-13] (COMPAL ELECTRONIC INC.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM\...\Run: [ACU] => C:\Program Files\Atheros\ACU.exe [471129 2009-10-08] (Atheros Communications, Inc.)
HKLM\...\Run: [acevents] => C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936 2009-06-03] (ActivIdentity)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2015-03-02] (AVAST Software)
HKLM\...\Run: [KernelFaultCheck] => %systemroot%\system32\dumprep 0 -k
Winlogon\Notify\ackpbsc: C:\Program Files\ActivIdentity\ActivClient\ackpbsc.dll (ActivIdentity)
Winlogon\Notify\acunlock: C:\Program Files\ActivIdentity\ActivClient\acunlock.dll (ActivIdentity)
HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-500\...\RunOnce: [FlashPlayerUpdate] => C:\WINDOWS\system32\Macromed\Flash\FlashUtil32_12_0_0_77_ActiveX.exe [841096 2014-03-22] (Adobe Systems Incorporated)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ActivClient Agent.lnk
ShortcutTarget: ActivClient Agent.lnk -> C:\Program Files\ActivIdentity\ActivClient\acsagent.exe (ActivIdentity)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\N310\Start Menu\Programs\Startup\USB Control Center.lnk
ShortcutTarget: USB Control Center.lnk -> C:\Program Files\Belkin\USB Control Center\Connect.exe (Belkin International, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=TSNB&bmod=TSNB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSNB&bmod=TSNB
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-21-2348835819-2973295498-3323505632-500\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-2348835819-2973295498-3323505632-500\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2348835819-2973295498-3323505632-500\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig?brand=TSNB&bmod=TSNB
SearchScopes: HKLM -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKU\S-1-5-21-2348835819-2973295498-3323505632-500 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKU\S-1-5-21-2348835819-2973295498-3323505632-500 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
BHO: No Name -> {0347C33E-8762-4905-BF09-768834316C61} ->  No File
BHO: No Name -> {0695F52A-89A2-4246-81B5-AFAD2D3B865F} ->  No File
BHO: No Name -> {53707962-6F74-2D53-2644-206D7942484F} ->  No File
BHO: Symantec Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\bin\IPS\IPSBHO.DLL [2014-09-13] (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-07-11] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-02] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} ->  No File
BHO: No Name -> {b54561db-0bbb-41b4-a814-df8301fe0a8e} ->  No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} ->  No File
BHO: No Name -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} ->  No File
Toolbar: HKLM - No Name - {b54561db-0bbb-41b4-a814-df8301fe0a8e} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://akamaicdn.webex.com/client/WBXclient-T27L10NSP32EP5-14362/webex/ieatgpc.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Handler: x-excid - {9D6CC632-1337-4a33-9214-2DA092E776F4} - c:\WINDOWS\Downloaded Program Files\mimectl.dll [2006-11-16] (Microsoft Corporation)
Handler: x-owacid2 - {5B290518-830E-4C57-A66B-E4F748900C27} - C:\Program Files\Microsoft\SMIME Client (2010)\mimectl.dll [2013-02-03] (Microsoft Corporation)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{505AA99E-5105-469C-9427-134D9473555A}: [NameServer] 208.67.222.222,208.67.220.220

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\9xhi8b6y.default
FF DefaultSearchEngine: DuckDuckGo
FF Homepage: blank
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll [2015-01-28] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-07-11] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2013-10-01] (Simon Bünzli)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2012-12-13] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-11-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-06]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-02]

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-02]
CHR HKLM\...\Chrome\Extension: [jealjalmcelnenljclnadlblookmkmdc] - C:\DOCUME~1\N310\LOCALS~1\Temp\crx38.tmp [Not Found]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S2 ac.sharedstore; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [207400 2009-06-03] (ActivIdentity)
S2 ACS; C:\WINDOWS\system32\acs.exe [499797 2009-10-08] (Atheros) [File not signed]
S2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-03-02] (AVAST Software)
S2 Belkin USB Center Helper; C:\Program Files\Belkin\USB Control Center\Bkapcs.exe [49152 2013-12-10] () [File not signed]
S2 CFSvcs; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2005-01-17] (TOSHIBA CORPORATION) [File not signed]
S3 GameConsoleService; C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe [238328 2009-08-27] (WildTangent, Inc.)
S2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-07-11] (Oracle Corporation)
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE [3093880 2010-02-17] (Symantec Corporation)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SepMasterService; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe [144496 2014-09-13] (Symantec Corporation)
S2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
S3 SNAC; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\snac.exe [337248 2014-09-13] (Symantec Corporation)
S2 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2010-02-05] (TOSHIBA Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 actccid; C:\WINDOWS\System32\DRIVERS\actccid.sys [63608 2007-05-03] (ActivCard)
S3 akbus; C:\WINDOWS\System32\DRIVERS\akbus.sys [13619 2009-05-29] (ActivCard)
S3 akpcsc; C:\WINDOWS\System32\DRIVERS\akpcsc.sys [9493 2007-05-03] (ActivCard)
S3 aksbus; C:\WINDOWS\System32\DRIVERS\aksbus.sys [14639 2009-05-29] (ActivIdentity)
S3 akspcsc; C:\WINDOWS\System32\DRIVERS\akspcsc.sys [10193 2009-05-29] (ActivIdentity)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-05] (Creative)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1585728 2009-09-30] (Atheros Communications, Inc.)
S2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2015-03-02] ()
S2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2015-03-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2015-03-02] (AVAST Software)
S0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2015-03-02] ()
S1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2015-03-02] (AVAST Software)
S1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [422760 2015-03-02] (AVAST Software)
S1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2015-03-02] (AVAST Software)
S0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2015-03-02] ()
S1 BHDrvx86; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\BASHDefs\20141210.012\BHDrvx86.sys [1137368 2014-12-10] (Symantec Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 ccSettings_{7EC551EC-6FEE-44A6-BD12-987F87D7C525}; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\ccSetx86.sys [127064 2014-09-13] (Symantec Corporation)
S1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [378672 2014-11-25] (Symantec Corporation)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-01-19] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-01-19] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2009-08-26] (HP)
S3 IDSxpx86; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\IPSDefs\20150308.013\IDSxpx86.sys [453264 2015-02-06] (Symantec Corporation)
S2 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [54360 2014-11-21] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-04] (Creative Technology Ltd.)
S3 NAVENG; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150310.003\NAVENG.SYS [95704 2015-01-21] (Symantec Corporation)
S3 NAVEX15; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150310.003\NAVEX15.SYS [1636696 2015-01-21] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
S2 Netdevio; C:\WINDOWS\System32\DRIVERS\netdevio.sys [12032 2003-01-29] (TOSHIBA Corporation.) [File not signed]
S3 PGSUSFLT; C:\WINDOWS\System32\Drivers\pgsuspend.SYS [18816 2009-09-21] (Toshiba)
S3 rt2870; C:\WINDOWS\System32\DRIVERS\rt2870.sys [730240 2010-04-02] (Ralink Technology, Corp.)
S1 SRTSP; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSP.SYS [668888 2014-09-13] (Symantec Corporation)
S1 SRTSPX; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSPX.SYS [32984 2014-09-13] (Symantec Corporation)
S2 sxuptp; C:\WINDOWS\System32\DRIVERS\sxuptp.sys [259040 2013-12-10] (silex technology, Inc.)
S3 SyDvCtrl; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\SyDvCtrl32.sys [30736 2014-09-13] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\symefasi\0500010.01F\symefasi.sys [1278680 2015-02-06] (Symantec Corporation)
S3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142936 2015-02-06] (Symantec Corporation)
S1 SymIRON; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\Ironx86.SYS [209624 2014-09-13] (Symantec Corporation)
S1 SYMTDI; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SYMTDI.SYS [423256 2014-09-13] (Symantec Corporation)
S1 SysPlant; C:\WINDOWS\System32\Drivers\SysPlant.sys [131176 2015-02-06] (Symantec Corporation)
S3 tdcmdpst; C:\WINDOWS\System32\DRIVERS\tdcmdpst.sys [16128 2007-02-22] (TOSHIBA Corporation.) [File not signed]
R3 Teefer2; C:\WINDOWS\System32\DRIVERS\teefer.sys [152984 2014-09-13] (Symantec Corporation)
S1 TPwSav; C:\WINDOWS\system32\drivers\TPwSav.sys [17192 2008-07-24] (TOSHIBA )
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2012-12-13] (Apple, Inc.) [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2009-03-17] (Atheros Communications, Inc.)
S4 IntelIde; No ImagePath
U3 TlntSvr; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-10 12:06 - 2015-03-10 12:09 - 00021521 _____ () C:\Documents and Settings\Administrator\Desktop\FRST.txt
2015-03-10 12:05 - 2015-03-10 12:07 - 00000000 ____D () C:\FRST
2015-03-10 11:58 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\Administrator\Desktop\FRST.exe
2015-03-06 20:33 - 2015-03-06 20:33 - 00106496 _____ () C:\WINDOWS\Minidump\Mini030615-02.dmp
2015-03-06 20:20 - 2015-03-06 20:20 - 00005384 _____ () C:\Documents and Settings\N310\Desktop\Rkill.txt
2015-03-06 20:14 - 2015-03-06 20:14 - 00110592 _____ () C:\WINDOWS\Minidump\Mini030615-01.dmp
2015-03-06 20:01 - 2015-03-06 20:01 - 00013218 _____ () C:\Documents and Settings\N310\Desktop\Rkill 4.txt
2015-03-06 16:26 - 2015-03-06 16:43 - 00035118 _____ () C:\Documents and Settings\N310\Desktop\Rkill 3.txt
2015-03-03 07:06 - 2015-03-03 07:06 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Application Data\Symantec
2015-03-02 23:27 - 2015-03-02 23:26 - 00110592 _____ () C:\WINDOWS\Minidump\Mini030215-01.dmp
2015-03-02 12:57 - 2015-03-02 12:57 - 00000000 ____D () C:\Documents and Settings\N310\Application Data\AVAST Software
2015-03-02 12:50 - 2015-03-02 12:50 - 00000000 ____D () C:\WINDOWS\jumpshot.com
2015-03-02 11:17 - 2015-03-02 11:17 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\AVAST Software
2015-03-02 11:10 - 2015-03-02 11:10 - 00001742 _____ () C:\Documents and Settings\All Users\Desktop\Avast Free Antivirus.lnk
2015-03-02 11:10 - 2015-03-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVAST Software
2015-03-02 11:09 - 2015-03-10 10:37 - 00000312 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-03-02 11:09 - 2015-03-02 11:09 - 00422760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-03-02 11:09 - 2015-03-02 11:09 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-03-02 11:09 - 2015-03-02 11:09 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-03-02 11:09 - 2015-03-02 11:08 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-03-02 11:01 - 2015-03-02 11:01 - 00000000 ____D () C:\Program Files\AVAST Software
2015-03-02 10:13 - 2015-03-02 10:14 - 00000000 ____D () C:\sfzone_profile
2015-03-02 08:45 - 2015-03-02 08:45 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2015-02-28 10:13 - 2015-02-28 10:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Temp
2015-02-28 09:43 - 2015-03-02 11:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2015-02-24 20:57 - 2015-02-24 20:57 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Symantec
2015-02-09 22:25 - 2015-02-09 22:25 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020915-04.dmp
2015-02-09 22:24 - 2015-02-09 22:24 - 00000000 _____ () C:\Documents and Settings\N310\Desktop\Shortcut to Administrative Tools.lnk
2015-02-09 17:58 - 2015-02-09 17:58 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020915-03.dmp
2015-02-09 17:01 - 2015-02-09 17:01 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020915-02.dmp
2015-02-09 16:05 - 2015-03-02 22:30 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-02-09 16:04 - 2015-02-09 19:46 - 00000788 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2015-02-09 16:04 - 2015-02-09 19:46 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2015-02-09 16:03 - 2015-02-09 19:46 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-02-09 16:03 - 2015-02-09 16:03 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-02-09 16:03 - 2014-11-21 06:14 - 00054360 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-02-09 16:03 - 2014-11-21 06:14 - 00023256 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
2015-02-09 16:01 - 2015-02-09 17:31 - 20447072 _____ (Malwarebytes Corporation ) C:\Documents and Settings\Administrator\Desktop\mbam-setup-2.0.4.1028.exe
2015-02-09 09:55 - 2015-02-09 09:55 - 00000000 __SHD () C:\Documents and Settings\Administrator\PrivacIE
2015-02-09 09:54 - 2015-02-09 09:54 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
2015-02-09 09:54 - 2015-02-09 09:54 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Mozilla
2015-02-09 08:24 - 2015-02-09 08:24 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020915-01.dmp
2015-02-08 23:07 - 2015-02-08 23:07 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020815-06.dmp
2015-02-08 16:52 - 2015-03-10 12:09 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2015-02-08 16:52 - 2015-03-02 23:09 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2015-02-08 16:52 - 2015-02-28 09:43 - 00056592 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-02-08 16:52 - 2015-02-09 09:55 - 00000000 ____D () C:\Documents and Settings\Administrator
2015-02-08 16:52 - 2015-01-29 10:20 - 00008554 _____ () C:\Documents and Settings\Administrator\Local Settings\HELP_DECRYPT.HTML
2015-02-08 16:52 - 2015-01-29 10:20 - 00008554 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.HTML
2015-02-08 16:52 - 2015-01-29 10:20 - 00008554 _____ () C:\Documents and Settings\Administrator\HELP_DECRYPT.HTML
2015-02-08 16:52 - 2015-01-29 10:20 - 00008554 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.HTML
2015-02-08 16:52 - 2015-01-29 10:20 - 00004220 _____ () C:\Documents and Settings\Administrator\Local Settings\HELP_DECRYPT.TXT
2015-02-08 16:52 - 2015-01-29 10:20 - 00004220 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-02-08 16:52 - 2015-01-29 10:20 - 00004220 _____ () C:\Documents and Settings\Administrator\HELP_DECRYPT.TXT
2015-02-08 16:52 - 2015-01-29 10:20 - 00004220 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.TXT
2015-02-08 16:52 - 2015-01-29 10:20 - 00000276 _____ () C:\Documents and Settings\Administrator\Local Settings\HELP_DECRYPT.URL
2015-02-08 16:52 - 2015-01-29 10:20 - 00000276 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.URL
2015-02-08 16:52 - 2015-01-29 10:20 - 00000276 _____ () C:\Documents and Settings\Administrator\HELP_DECRYPT.URL
2015-02-08 16:52 - 2015-01-29 10:20 - 00000276 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.URL
2015-02-08 16:52 - 2010-01-17 16:02 - 00000814 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
2015-02-08 16:52 - 2010-01-17 16:02 - 00000749 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
2015-02-08 16:52 - 2010-01-17 15:55 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\TOSHIBA_Corporation
2015-02-08 16:52 - 2010-01-17 15:18 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft Help
2015-02-08 16:52 - 2009-11-19 00:42 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\InstallShield
2015-02-08 16:52 - 2009-11-19 00:35 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Macromedia
2015-02-08 16:52 - 2009-11-19 00:35 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Adobe
2015-02-08 16:52 - 2009-11-19 00:29 - 00000000 __SHD () C:\Documents and Settings\Administrator\IETldCache
2015-02-08 16:52 - 2009-11-19 00:29 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2015-02-08 16:52 - 2009-11-19 00:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\toshiba
2015-02-08 16:52 - 2009-11-19 00:11 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Sun
2015-02-08 16:52 - 2009-11-18 23:30 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\WinBatch
2015-02-08 16:52 - 2009-11-18 23:26 - 00001610 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk
2015-02-08 16:51 - 2015-02-08 16:51 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020815-05.dmp
2015-02-08 16:45 - 2015-02-08 16:45 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020815-04.dmp
2015-02-08 16:38 - 2015-02-08 16:38 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020815-03.dmp
2015-02-08 09:07 - 2015-02-08 09:07 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020815-02.dmp
2015-02-08 07:01 - 2015-02-08 07:00 - 00110592 _____ () C:\WINDOWS\Minidump\Mini020815-01.dmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-10 12:04 - 2010-09-04 11:25 - 00000000 ___HD () C:\Documents and Settings\All Users\Application Data\Symantec
2015-03-10 11:01 - 2009-11-18 23:25 - 01217345 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-10 10:59 - 2009-11-19 14:44 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-03-10 10:57 - 2015-02-06 21:17 - 00393216 _____ () C:\WINDOWS\system32\config\Symantec.evt
2015-03-10 10:57 - 2012-01-18 14:26 - 00000420 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{8974E1E2-AB23-45FC-91FA-981FDC2E1561}.job
2015-03-10 10:57 - 2010-01-17 15:44 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt
2015-03-10 10:57 - 2009-11-18 23:28 - 00031914 _____ () C:\WINDOWS\SchedLgU.Txt
2015-03-10 10:57 - 2009-11-18 23:28 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-10 10:57 - 2009-11-18 15:23 - 00000275 _____ () C:\WINDOWS\wiadebug.log
2015-03-10 10:55 - 2015-01-29 09:44 - 00000238 ____H () C:\WINDOWS\Tasks\olkqvqf.job
2015-03-10 10:55 - 2009-11-18 15:23 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-03-10 10:48 - 2010-02-04 17:53 - 00000178 ___SH () C:\Documents and Settings\N310\ntuser.ini
2015-03-10 10:41 - 2010-02-04 17:53 - 00000000 ____D () C:\Documents and Settings\N310\Local Settings\Temp
2015-03-06 20:33 - 2011-01-09 14:31 - 00000000 ____D () C:\WINDOWS\Minidump
2015-03-06 16:31 - 2015-02-05 22:26 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-02 23:26 - 2009-11-18 15:21 - 01048565 _____ () C:\WINDOWS\setupapi.log
2015-02-28 08:13 - 2010-09-04 00:48 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2015-02-25 05:47 - 2015-01-29 09:43 - 00000000 ____D () C:\WINDOWS\FrameworkUpdate
2015-02-09 23:04 - 2010-02-04 17:53 - 00000000 ____D () C:\Documents and Settings\N310
2015-02-09 22:55 - 2014-01-27 20:17 - 00000000 ____D () C:\Documents and Settings\N310\Desktop\JSA RECEIPTS
2015-02-09 21:34 - 2009-11-18 23:38 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB953155$
2015-02-09 19:44 - 2015-01-03 00:38 - 00000000 ____D () C:\Documents and Settings\N310\Desktop\certs
2015-02-09 16:50 - 2012-08-15 20:17 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB2731847$
2015-02-09 10:23 - 2009-11-18 23:24 - 00000000 ____D () C:\WINDOWS\system32\Restore
2015-02-09 10:20 - 2009-11-19 14:46 - 00000212 __RSH () C:\boot.ini
2015-02-09 10:20 - 2009-11-19 14:44 - 00000617 _____ () C:\WINDOWS\win.ini
2015-02-09 10:20 - 2009-11-19 14:44 - 00000227 _____ () C:\WINDOWS\system.ini
2015-02-09 10:17 - 2011-07-18 11:27 - 00000000 ____D () C:\WINDOWS\pss
2015-02-08 15:00 - 2014-03-22 10:54 - 00000214 _____ () C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job

==================== Files in the root of some directories =======

2004-09-10 10:40 - 2004-09-10 10:40 - 0075264 _____ (Microsoft Corporation) C:\Program Files\DECCHECK.exe
2004-09-10 10:40 - 2004-09-10 10:40 - 0002688 _____ () C:\Program Files\eula.TXT.wqvksgj
2015-02-08 16:52 - 2015-01-29 10:20 - 0008554 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.HTML
2015-02-08 16:52 - 2015-01-29 10:20 - 0045663 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.PNG
2015-02-08 16:52 - 2015-01-29 10:20 - 0004220 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.TXT
2015-02-08 16:52 - 2015-01-29 10:20 - 0000276 _____ () C:\Documents and Settings\Administrator\Application Data\HELP_DECRYPT.URL
2015-02-08 16:52 - 2015-01-29 10:20 - 0008554 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.HTML
2015-02-08 16:52 - 2015-01-29 10:20 - 0045663 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.PNG
2015-02-08 16:52 - 2015-01-29 10:20 - 0004220 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-02-08 16:52 - 2015-01-29 10:20 - 0000276 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\HELP_DECRYPT.URL
2015-01-29 10:20 - 2015-01-29 10:20 - 0008554 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.HTML
2015-01-29 10:20 - 2015-01-29 10:20 - 0045663 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.PNG
2015-01-29 10:20 - 2015-01-29 10:20 - 0004220 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.TXT
2015-01-29 10:20 - 2015-01-29 10:20 - 0000276 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.URL

Some content of TEMP:
====================
C:\Documents and Settings\N310\Local Settings\Temp\afvbsw.exe
C:\Documents and Settings\N310\Local Settings\Temp\agtkxrhj.exe
C:\Documents and Settings\N310\Local Settings\Temp\aycyyp.exe
C:\Documents and Settings\N310\Local Settings\Temp\capibridge.dll
C:\Documents and Settings\N310\Local Settings\Temp\cmjtwm.exe
C:\Documents and Settings\N310\Local Settings\Temp\cynrm.exe
C:\Documents and Settings\N310\Local Settings\Temp\difxapi.dll
C:\Documents and Settings\N310\Local Settings\Temp\erudy.exe
C:\Documents and Settings\N310\Local Settings\Temp\exhug.exe
C:\Documents and Settings\N310\Local Settings\Temp\fhpywf.exe
C:\Documents and Settings\N310\Local Settings\Temp\frsghe.exe
C:\Documents and Settings\N310\Local Settings\Temp\gamad.exe
C:\Documents and Settings\N310\Local Settings\Temp\howcoagk.exe
C:\Documents and Settings\N310\Local Settings\Temp\hpqrrx08.exe
C:\Documents and Settings\N310\Local Settings\Temp\hpzmsi01.exe
C:\Documents and Settings\N310\Local Settings\Temp\hpzscr01.EXE
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u15-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u17-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u21-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u25-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u55-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u65-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\mgtbjv.exe
C:\Documents and Settings\N310\Local Settings\Temp\MSNDA.exe
C:\Documents and Settings\N310\Local Settings\Temp\nicpyanw.exe
C:\Documents and Settings\N310\Local Settings\Temp\npghxfc.exe
C:\Documents and Settings\N310\Local Settings\Temp\ouobphk.exe
C:\Documents and Settings\N310\Local Settings\Temp\ozevazvo.exe
C:\Documents and Settings\N310\Local Settings\Temp\pjwouod.exe
C:\Documents and Settings\N310\Local Settings\Temp\pkcs11smime.dll
C:\Documents and Settings\N310\Local Settings\Temp\pzbcq.exe
C:\Documents and Settings\N310\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\N310\Local Settings\Temp\sxtae.exe
C:\Documents and Settings\N310\Local Settings\Temp\taenbr.exe
C:\Documents and Settings\N310\Local Settings\Temp\trrxzg.exe
C:\Documents and Settings\N310\Local Settings\Temp\wnajl.exe
C:\Documents and Settings\N310\Local Settings\Temp\wnidawl.exe
C:\Documents and Settings\N310\Local Settings\Temp\xwswybv.exe
C:\Documents and Settings\N310\Local Settings\Temp\xyrrzj.exe
C:\Documents and Settings\N310\Local Settings\Temp\yjjie.exe
C:\Documents and Settings\N310\Local Settings\Temp\yyexnmss.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

 

 

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-03-2015
Ran by Administrator at 2015-03-10 12:11:25
Running from C:\Documents and Settings\Administrator\Desktop
Boot Mode: Safe Mode (with Networking)
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Enabled - Out of date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Symantec Endpoint Protection (Disabled - Up to date) {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: Symantec Endpoint Protection (Disabled) {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
470_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
470_Readme (Version: 1.00.0000 - Hewlett-Packard) Hidden
7500_7600_7700_Help1 (Version: 1.00.0000 - Hewlett-Packard) Hidden
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
ActivClient CAC x86 (HKLM\...\{1BE8806A-84F8-4655-A381-0D5524430944}) (Version: 6.2 - ActivIdentity)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
AiO_Scan (Version: 43.0.217.000 - Hewlett-Packard) Hidden
A-PDF Scan Optimizer (HKLM\...\A-PDF Scan Optimizer_is1) (Version:  - A-PDF Solution)
Apple Application Support (HKLM\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{235EBB33-3DA1-46DF-AADE-9955123409CB}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Client Utility (HKLM\...\{16E8BF9A-B419-4A44-A020-30F8CFB84B9D}) (Version:  - Atheros)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.2 - Atheros)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Bejeweled 2 Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\BlackBerry_Desktop) (Version: 7.1.0.37 - Research In Motion Ltd.)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.37 - Research In Motion Ltd.) Hidden
Blackhawk Striker 2 (Version: 2.2.0.82 - WildTangent) Hidden
Bombardier SmartPubs Desktop Viewer Version 3 (HKLM\...\InstallShield_{599C950C-72C0-41B7-8451-B1A4611F8385}) (Version: 3.0.8 - Bombardier)
Bombardier SmartPubs Desktop Viewer Version 3 (Version: 3.0.8 - Bombardier) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_HPSU (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan_Carrier (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 140.0.000.000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 140.0.213.000 - Hewlett-Packard) Hidden
Canon MF4700 Series (HKLM\...\{47A8DB42-4E21-4d55-9931-D4F44CC3F03B}) (Version: 4.1.0.1 - CANON INC.)
Cisco WebEx Meetings (HKLM\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
DBsign Web Signer (HKLM\...\{F522E59E-7168-4B4A-885E-1030009BEE56}) (Version: 3.0 - Gradkell Systems, Inc.)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
Device Installer x86 (HKLM\...\{2E16BD80-4F7B-4FFA-90AD-9CA57D4D408B}) (Version: 2.2 - ActivIdentity)
DeviceDiscovery (Version: 140.0.213.000 - Hewlett-Packard) Hidden
DJ_SF_05_D2600_Software_Min (Version: 140.0.690.000 - Hewlett-Packard) Hidden
DocProc (Version: 140.0.100.000 - Hewlett-Packard) Hidden
Faerie Solitaire (Version: 2.2.0.82 - WildTangent) Hidden
Fax (Version: 140.0.213.000 - Hewlett-Packard) Hidden
FileZilla Client 3.3.2-rc2 (HKLM\...\FileZilla Client) (Version: 3.3.2-rc2 - )
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
GPBaseService2 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
H470 (Version: 50.0.165.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet D2600 Printer Driver 14.0 Rel. 5 (HKLM\...\{7B8E0D63-C8FB-4F04-8B3A-029C4707693A}) (Version: 14.0 - HP)
HP Image Zone 4.2 (HKLM\...\HP Photo & Imaging) (Version: 4.2 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Officejet H470 Series (HKLM\...\{5A15F754-086E-4185-96F4-0BC31F1A2382}) (Version: 1.0 - HP)
HP OfficeJet L7300/L7500/7600/7700 (HKLM\...\{9D6C64CC-EA60-47A6-9C97-82C38231EDAE}) (Version: 14.0 - HP)
HP PSC & OfficeJet 4.2 (HKLM\...\{A1062847-0846-427A-92A1-BB8251A91E91}) (Version:  - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
HPProductAssistant (Version: 140.0.213.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 6.14.10.5182 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{5D928931-D1D2-4A93-A82D-BF60D0E7CFA5}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.650 - Oracle)
L7500 (Version: 140.0.000.000 - Hewlett-Packard) Hidden
LiveUpdate 3.3 (Symantec Corporation) (HKLM\...\LiveUpdate) (Version: 3.3.0.96 - Symantec Corporation)
MagicBerry for Blackberry version 3.5 (HKLM\...\{404CBB42-3EF1-4ECF-BFBD-A557807CBF3B}_is1) (Version: 3.5 - Mena Step Innovative Solutions (Ashraf Awwad))
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MarketResearch (Version: 140.0.214.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Media Player Codec Pack 4.3.5 (HKLM\...\Media Player - Codec Pack) (Version: 4.3.5 - Media Player Codec Pack)
MetaWeb (HKLM\...\{2A518E58-E9F1-4D94-8611-2E55B51E6351}) (Version: 3.1.1 - CGM Technology Services)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version:  - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Outlook Web Access S/MIME (HKLM\...\{6CF08AD2-00C5-4A63-B74B-2EFFFAFEBE1A}) (Version: 6.5.7651.60 - Microsoft)
Microsoft S/MIME (HKLM\...\{D932D6AE-786B-4ECD-B6FE-B9C0EB059B3C}) (Version: 14.3.123.2 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM\...\DECCHECK) (Version:  - )
Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MPM (HKLM\...\{B5A4C902-1636-48DB-8E38-F0DB102DDB59}) (Version: 1.00.0000 - Hewlett-Packard)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery P.I. - The Vegas Heist (Version: 2.2.0.82 - WildTangent) Hidden
NAVFIT98A (HKLM\...\{9F666AE6-7182-4A0D-BB0E-B39F9ACF8D0C}) (Version: 1.0.0 - SPAWAR System Center Atlantic)
Network (Version: 140.0.215.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Polar Bowler (Version: 2.2.0.82 - WildTangent) Hidden
ProductContext (Version: 140.0.000.000 - Hewlett-Packard) Hidden
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PureEdge Viewer 6.5 (HKLM\...\{E0000650-0650-0650-0650-000000000650}) (Version:  - )
QFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Quickbooks Financial Center (HKLM\...\{3B843B38-04B1-4CE6-8888-586273E0F289}) (Version: 2.02 - TOSHIBA Corporation)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
REALTEK GbE & FE Ethernet PCI-E NIC Driver (HKLM\...\{C9BED750-1211-4480-B1A5-718A3BE15525}) (Version: 1.24.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5982 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30105 - Realtek Semiconductor Corp.)
Safari (HKLM\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (Version: 140.0.167.000 - Hewlett-Packard) Hidden
SelectiveSuspend (HKLM\...\InstallShield_{7833B48D-8CCD-4588-A7A0-AE01C96ACAA4}) (Version: 1.0.0.2 - TOSHIBA Corporation)
SelectiveSuspend (Version: 1.0.0.2 - TOSHIBA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SmartWebPrinting (Version: 140.0.213.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 140.0.214.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Status (Version: 140.0.256.000 - Hewlett-Packard) Hidden
SumatraPDF 2.4 (HKLM\...\SumatraPDF) (Version: 2.4 - Krzysztof Kowalczyk)
Symantec Endpoint Protection (HKLM\...\{0E251D4D-316C-4F8B-A4C5-2722000764BE}) (Version: 12.1.5337.5000 - Symantec Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.11.0 - Synaptics Incorporated)
TeLL me More CJ (HKLM\...\TellmeMoreV50) (Version:  - )
Toolbox (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TOSHIBA Accessibility (HKLM\...\InstallShield_{3A57482F-BEBC-47E4-ADA1-6302403C7E50}) (Version: 1.62.0.7C - TOSHIBA)
TOSHIBA Application and Driver Installer (HKLM\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.1.1 - TOSHIBA)
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version:  - )
TOSHIBA ConfigFree (HKLM\...\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}) (Version: 5.90.18 - )
TOSHIBA Fn-esse (HKLM\...\Fn-esse) (Version: 1.0.0.3013C - )
TOSHIBA Hardware Setup (HKLM\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.62.0.9C - TOSHIBA CORPORATION)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.3.0.0 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.0.6 - TOSHIBA Corporation)
TOSHIBA Hotkey Utility (HKLM\...\InstallShield_{7900D3A6-A9E8-4954-ACCB-AB15867978BF}) (Version: 1.62.0.18C - TOSHIBA)
Toshiba Online Backup (HKLM\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.0.38 - Toshiba)
TOSHIBA PC Diagnostic Tool (HKLM\...\InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}) (Version: 3.2.14 - TOSHIBA Corporation)
TOSHIBA Power Saver (HKLM\...\{8F7AC250-4D7D-431D-AC4E-94FB78EA3F8B}) (Version: 7.05.04.U - TOSHIBA)
TOSHIBA Quality Application (HKLM\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.3 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 1.1.0.0 - TOSHIBA Corporation)
TOSHIBA Supervisor Password (HKLM\...\InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) (Version: 1.62.0.5C - TOSHIBA CORPORATION)
TOSHIBA USB Sleep and Charge Utility (HKLM\...\{E487EE7D-EAAA-4E2A-9116-E3B477D8A74F}) (Version: 1.3.2.0 - TOSHIBA Corporation)
TOSHIBA Zooming Utility (HKLM\...\InstallShield_{02EED746-8C5A-43C8-BB3D-D29C8B363A4D}) (Version: 1.62.0.3C - TOSHIBA)
ToshibaRegistration (HKLM\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.0.3 - Toshiba)
TouchPad On/Off Utility (HKLM\...\InstallShield_{80977342-27E8-4FF7-8B6A-D8D89461DA7F}) (Version: 1.62.0.6C - TOSHIBA)
TouchPad On/Off Utility (Version: 1.62.0.6C - TOSHIBA) Hidden
TrayApp (Version: 140.0.213.000 - Hewlett-Packard) Hidden
USB Control Center (HKLM\...\Belkin USB Control Center) (Version: 2.0.0 - Belkin International, Inc.)
Utility Common Driver (Version: 1.0.50.25C - TOSHIBA) Hidden
Virtual Families (Version: 2.2.0.82 - WildTangent) Hidden
Virtual Villagers - The Secret City (Version: 2.2.0.82 - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 140.0.213.017 - Hewlett-Packard) Hidden
WildTangent Games (HKLM\...\WildTangent toshiba Master Uninstall) (Version: 1.0.0.80 - WildTangent)
WildTangent ORB Game Console (Version:  - WildTangent) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version:  - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

==================== Restore Points  =========================

10-03-2015 10:41:59 System Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-11-19 14:42 - 2008-04-14 05:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\olkqvqf.job => C:\DOCUME~1\N310\LOCALS~1\Temp\riyshwa.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{8974E1E2-AB23-45FC-91FA-981FDC2E1561}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) ==============

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Documents and Settings\N310\Local Settings:init
AlternateDataStreams: C:\Documents and Settings\N310\Desktop\gimp-2.8.4-setup.exe:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\N310\Desktop\gimp-2.8.4-setup.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ccSettings_{7EC551EC-6FEE-44A6-BD12-987F87D7C525}.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="2"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2348835819-2973295498-3323505632-500\Control Panel\Desktop\\Wallpaper -> C:\WINDOWS\web\wallpaper\Bliss.bmp
DNS Servers: 208.67.222.222 - 208.67.220.220

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== Accounts: =============================

Administrator (S-1-5-21-2348835819-2973295498-3323505632-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-2348835819-2973295498-3323505632-1004 - Limited - Enabled)
Guest (S-1-5-21-2348835819-2973295498-3323505632-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-2348835819-2973295498-3323505632-1005 - Limited - Disabled)
Jeff (S-1-5-21-2348835819-2973295498-3323505632-1007 - Limited - Enabled) => %SystemDrive%\Documents and Settings\Jeff
N310 (S-1-5-21-2348835819-2973295498-3323505632-1006 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\N310
SUPPORT_388945a0 (S-1-5-21-2348835819-2973295498-3323505632-1002 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: HP LaserJet 200 colorMFP M276nw
Description: HP LaserJet 200 colorMFP M276nw
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet P2035n
Description: HP LaserJet P2035n
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP Color LaserJet 3600
Description: HP Color LaserJet 3600
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet M1536dnf MFP
Description: HP LaserJet M1536dnf MFP
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 6700
Description: Officejet 6700
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet Professional P1102w
Description: HP LaserJet Professional P1102w
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet Professional M1212nf MFP
Description: HP LaserJet Professional M1212nf MFP
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet 400 MFP M425dn
Description: HP LaserJet 400 MFP M425dn
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet Pro L7500
Description: Officejet Pro L7500
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: SXUPTP Driver
Description: SXUPTP Driver
Class Guid: {4D36E97D-E325-11CE-BFC1-08002BE10318}
Manufacturer: silex technology, Inc.
Service: sxuptp
Problem: : Windows cannot initialize the device driver for this hardware. (Code 37)
Resolution: The driver returned failure from its DriverEntry routine. Uninstall the driver, and then click "Scan for hardware changes" to reinstall or upgrade the driver.

==================== Event log errors: =========================

Application errors:
==================
Error: (03/10/2015 00:10:01 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (03/10/2015 00:08:54 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:53 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:53 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:50 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:49 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:48 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:48 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:48 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/10/2015 00:08:46 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

System errors:
=============
Error: (03/10/2015 11:01:20 AM) (Source: DCOM) (EventID: 10005) (User: PC)
Description: DCOM got error "%%1058" attempting to start the service wuauserv with arguments ""
in order to run the server:
{E60687F7-01A1-40AA-86AC-DB1CBF673334}

Error: (03/10/2015 11:00:22 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
aswRvrt
aswSnx
aswSP
aswTdi
aswVmm
atapi
BHDrvx86
eeCtrl
Fips
intelppm
PCIIde
SRTSP
SRTSPX
SymIRON
SYMTDI
SysPlant
TPwSav

Error: (03/10/2015 10:59:46 AM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (03/10/2015 10:56:07 AM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atapi
PCIIde

Error: (03/10/2015 10:55:12 AM) (Source: SCardSvr) (EventID: 602) (User: )
Description: WDM Reader driver initialization cannot open reader device:  The system cannot find the path specified.

Error: (03/10/2015 10:45:51 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generate Activation Context failed for C:\WINDOWS\system32\taskmgr.exe.
Reference error message: The operation completed successfully.
.

Error: (03/10/2015 10:45:51 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: Insufficient system resources exist to complete the requested service.
.

Error: (03/10/2015 10:45:51 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Generate Activation Context failed for C:\WINDOWS\system32\taskmgr.exe.
Reference error message: The operation completed successfully.
.

Error: (03/10/2015 10:45:51 AM) (Source: SideBySide) (EventID: 59) (User: )
Description: Resolve Partial Assembly failed for Microsoft.Windows.Common-Controls.
Reference error message: Insufficient system resources exist to complete the requested service.
.

Error: (03/10/2015 10:41:59 AM) (Source: 0) (EventID: 1) (User: )
Description: 0xC000009AMini030615-02.dmpHarddiskVolume1

Microsoft Office Sessions:
=========================
Error: (10/21/2013 08:43:01 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 3475 seconds with 2820 seconds of active time.  This session ended with a crash.

Error: (10/20/2010 02:30:38 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 1640 seconds with 0 seconds of active time.  This session ended with a crash.

==================== Memory info ===========================

Processor:  Intel® Atom™ CPU N450 @ 1.66GHz
Percentage of memory in use: 91%
Total physical RAM: 1013.35 MB
Available physical RAM: 86.02 MB
Total Pagefile: 2962.39 MB
Available Pagefile: 2032.2 MB
Total Virtual: 2047.88 MB
Available Virtual: 1937.55 MB

==================== Drives ================================

Drive c: (TI105384P0E) (Fixed) (Total:137.78 GB) (Free:14.71 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: C778C778)
Partition 1: (Active) - (Size=137.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=11.3 GB) - (Type=1C)

==================== End Of Log ============================



BC AdBot (Login to Remove)

 


#2 Jo*

Jo*

  • Malware Response Team
  • 3,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:10 AM

Posted 11 March 2015 - 11:35 AM

:welcome:

Hello Traveling One,

my name is Jo and I will help you with your computer problems.


Please follow these guidelines:
  • Logs can take a while to research, so please be patient.
  • Read and follow the instructions in the sequence they are posted.
  • print or copy & save instructions.
  • back up all your private data / important files on another (external) drive before using our tools.
  • Do not install / uninstall any applications, unless otherwise instructed.
  • Use only that tools you have been instructed to use.
  • Copy and Paste the log files inside your post, unless otherwise instructed.
  • Ask for clarification, if you have any questions.
  • Stay with this topic til you get the all clean post.
  • My first language is not english. So please do not use slang or idioms. It could be hard for me to read. Thanks for your understanding.

***


Download Security Check by screen317 from here or here.
  • Save it to your Desktop.
  • Double click SecurityCheck.exe and follow the onscreen instructions inside of the black box.
    Vista / Windows 7/8 users right-click and select Run As Administrator.
  • A Notepad document should open automatically called checkup.txt; please post the contents of that document.

***


Please download Malwarebytes Anti-Rootkit and save it to your desktop.
  • Be sure to print out and follow the instructions provided on that same page.
  • Caution: This is a beta version so please be sure to read the disclaimer and back up all your data before using.
  • Scan your system for malware
With some infections, you may see two messages boxes.
  • 'Could not load protection driver'. Click 'OK'.
  • 'Could not load DDA driver'. Click 'Yes' to this message, to allow the driver to load after a restart. Allow the computer to restart. Continue with the rest of these instructions.
  • If malware is found - do not press the Clean up button, please go to the MBAR folder and then copy/paste the contents of the MBAR-log-***.txt file to your next reply.
  • If there is no malware found, please let me know as well.

***


Please download AdwCleaner by Xplode and save to your Desktop.
Double-click AdwCleaner.exe
Vista / Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin...be patient as the scan may take some time to complete.
    When the scan has finished, the actual line should say "Pending. Please uncheck elements you do not want to remove" => scan is complete.
  • After the scan has finished, click on the Report button...a logfile (AdwCleaner[R0].txt) will open in Notepad for review.
  • The contents of the log file may be confusing. Unless you see a program name that you know should not be removed, don't worry about it.
    If you see an entry you want to keep, let me know about it.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of all logfiles are saved in the C:\AdwCleaner folder which was created when running the tool.

***


Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#3 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 11 March 2015 - 12:12 PM

Hello Jo,

Thank you for your quick response.

Should I run the requested programs after a normal start-up or in safe mode?

#4 Jo*

Jo*

  • Malware Response Team
  • 3,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:10 AM

Posted 11 March 2015 - 12:22 PM

please use normal start-up and then run the tools

Edited by Jo*, 11 March 2015 - 12:22 PM.

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#5 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 11 March 2015 - 12:33 PM

Thank you.  Beginning download process now.



#6 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 12 March 2015 - 12:04 AM

Good morning Jo*,

After some effort I was able to run Security Check.  My first attempt didn't appear to run properly because I saw many lines of "unable to access" scroll by and no log was produced.  When I tried to open TASK MANAGER I received,

"This application failed to initialized properly (0xc000012d). Click okay to terminate the

application". 

I clicked okay and tried to run Security Check a second time.  I received,

"This application failed to initialized properly (0xc0000142). Click okay to terminate the application".

I rebooted and received,

"CTFMON.EXE This application failed to initialized properly (0xc0000142). Click okay to terminate the application".

And, "RUNDLL Error loading %application%\BTVstack.dll. The specified module could not be found". 
Also, "ERROR System was unable to generate an form. The error will be presented next on ......"

And, "SYSTEM SETTINGS System settings protector has encountered a problem and needs to close".

 

This was followed by the blue screen, reboot and CHKDSK.  The blue screen/reboot happened about 3 times without my intervention then warning my user profile could not be found.  Windows continued to load with four "System recovered from a serious error".  Security Check ran and produced a log and it is provided below.

 

Malwarebytes Anti-Root loaded, was updated and ran.  I neglected to disable Avast and Avast quarantined "C:\Windows\system32\ThpProp.exe" saying it dectected "WIN32:EVO - Gen(susp).  The log is provided below.

 

AdwCleaner ran and produced a log which is provided below.

 

After reboot my original user profile returned and the following errors were generated:

"TAccessibility.exe Application Error This application failed to initialized properly (0xc0000044). Click okay to terminate the application".

SVPWUTIL.EXE Application Error  This application failed to initialized properly (0xc000012d). Click okay to terminate the application".

"RUNDLL Error loading %application%\BTVstack.dll. The specified module could not be found"

"AvastUI failed to load CommonRes.dll"

"hpqSTE08.exe - Bad Image  DLL C:\Windows\system32\SXS.DLL not a valid Window image".

I had to reboot in safe mode W/ network to post this as Explorer would not open.

 

Results of screen317's Security Check version 0.99.97 
 Windows XP Service Pack 3 x86 (UAC is disabled!) 
 Internet Explorer 8 
``````````````Antivirus/Firewall Check:``````````````
 Windows Security Center service is not running! This report may not be

accurate!
 Symantec Endpoint Protection   
 Avast Free Antivirus   
 McAfee Security Scan Plus  
`````````Anti-malware/Other Utilities Check:`````````
 Spybot - Search & Destroy
 Java 7 Update 65 
 Java version 32-bit out of Date!
  Java 64-bit 8 Update 31 
 Adobe Flash Player  16.0.0.296 
 Adobe Reader XI 
 Mozilla Firefox 35.0.1 Firefox out of Date! 
````````Process Check: objlist.exe by Laurent```````` 
 Norton ccSvcHst.exe
 AVAST Software Avast AvastSvc.exe 
 AVAST Software Avast AvastUI.exe 
`````````````````System Health check`````````````````
 Total Fragmentation on Drive C:: 37% Defragment your hard drive soon! (Do NOT

defrag if SSD!)
````````````````````End of Log``````````````````````

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.09.1.1004

© Malwarebytes Corporation 2011-2012

OS version: 5.1.2600 Windows XP Service Pack 3 x86

Account is Administrative

Internet Explorer version: 8.0.6001.18702

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED
CPU speed: 1.662000 GHz
Memory total: 1062572032, free: 224137216

Downloaded database version: v2015.03.11.05
Downloaded database version: v2015.02.25.01
Downloaded database version: v2015.03.09.01
=======================================
------------ Kernel report ------------
     03/11/2015 16:05:51
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
compbatt.sys
\WINDOWS\system32\DRIVERS\BATTC.SYS
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
PartMgr.sys
ACPIEC.sys
\WINDOWS\system32\DRIVERS\OPRGHDLR.SYS
VolSnap.sys
iaStor.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltMgr.sys
sr.sys
symefasi.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
TVALZ_O.SYS
Thpevm.SYS
thpdrv.sys
Mup.sys
aswVmm.sys
aswRvrt.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\igxpmp32.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\CmBatt.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\SynTP.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\WDFLDR.SYS
\SystemRoot\System32\Drivers\wdf01000.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\akbus.sys
\SystemRoot\system32\DRIVERS\aksbus.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\System32\Drivers\RootMdm.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\RimSerial.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\teefer.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\sxuptp.sys
\SystemRoot\system32\DRIVERS\wsimd.sys
\SystemRoot\system32\DRIVERS\akpcsc.sys
\SystemRoot\system32\DRIVERS\SMCLIB.SYS
\SystemRoot\system32\DRIVERS\akspcsc.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\drivers\RtkHDAud.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\Drivers\SEP\0C0114D9\1388.105\x86\ccSetx86.sys
\SystemRoot\system32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSP.SYS
\SystemRoot\system32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSPX.SYS
\SystemRoot\system32\Drivers\SEP\0C0114D9\1388.105\x86\Ironx86.SYS
\??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
\SystemRoot\System32\Drivers\pgsuspend.SYS
\SystemRoot\System32\Drivers\usbvideo.sys
\??\C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint

Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150310.003\NAVEX15.SYS
\??\C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint

Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150310.003\NAVENG.SYS
\SystemRoot\system32\drivers\aswSP.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\SystemRoot\system32\drivers\aswTdi.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\Drivers\SEP\0C0114D9\1388.105\x86\SYMTDI.SYS
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\aswRdr.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\??\C:\WINDOWS\system32\drivers\TPwSav.sys
\SystemRoot\system32\Drivers\SysPlant.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
\??\C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint

Protection\12.1.5337.5000.105\Data\Definitions\BASHDefs\20141210.012\BHDrvx86.sys
\SystemRoot\system32\drivers\aswSnx.sys
\SystemRoot\System32\Drivers\dump_iaStor.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\igxpgd32.dll
\SystemRoot\System32\igxprd32.dll
\SystemRoot\System32\igxpdv32.DLL
\SystemRoot\System32\igxpdx32.DLL
\SystemRoot\System32\ATMFD.DLL
\SystemRoot\system32\drivers\aswMonFlt.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\netdevio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\system32\drivers\aswHwid.sys
\??\C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint

Protection\12.1.5337.5000.105\Data\Definitions\IPSDefs\20150308.013\IDSxpx86.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\athw.sys
\??\C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!

Scan started
Database versions:
  main:    v2015.03.11.05
  rootkit: v2015.02.25.01

<<<2>>>
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86d2a5b8, DeviceName: \Device\Harddisk0\DR0\, DriverName:

\Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86d2a390, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86d2a5b8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86d658f8, DeviceName: \Device\THPDRV1\, DriverName: \Driver\Thpdrv\
DevicePointer: 0xffffffff867d3028, DeviceName: \Device\Ide\IAAStorageDevice-0\, DriverName:

\Driver\iaStor\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\SYSTEM32\drivers...
Done!
Drive 0
This is a System drive
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: C778C778

Partition information:

    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 63  Numsec = 288945027
    Partition file system is NTFS
    Partition is bootable

    Partition 1 type is Other (0x1c)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 288945090  Numsec = 23631615

    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0

Disk Size: 160041885696 bytes
Sector size: 512 bytes

Done!
Infected: C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.HTML --> [CryptoWall.Trace]
Infected: C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.PNG --> [CryptoWall.Trace]
Infected: C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.TXT --> [CryptoWall.Trace]
Infected: C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.URL --> [CryptoWall.Trace]
Scan finished

# AdwCleaner v4.112 - Logfile created 11/03/2015 at 17:51:02
# Updated 09/03/2015 by Xplode
# Database : 2015-03-05.1 [Local]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : N310 - PC
# Running from : C:\Documents and Settings\N310\Desktop\AdwCleaner.exe
# Option : Scan

***** [ Services ] *****

***** [ Files / Folders ] *****

Folder Found : C:\Documents and Settings\All Users\Application Data\Partner
Folder Found : C:\Documents and Settings\N310\Application Data\HPAppData

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Found : HKLM\SOFTWARE\Classes\Toolbar.CT3045277
Key Found : HKLM\SOFTWARE\Conduit

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v35.0.1 (x86 en-US)

*************************

AdwCleaner[R0].txt - [859 bytes] - [11/03/2015 17:51:02]

########## EOF - C:\AdwCleaner\AdwCleaner[R0].txt - [917 bytes] ##########



#7 Jo*

Jo*

  • Malware Response Team
  • 3,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:10 AM

Posted 12 March 2015 - 07:49 AM

n1eMMmT.jpg Download Windows Repair (all in one) from this site
Install and then run the program.
On the Start Repairs tab click Start DwysfIW.jpg
When the Repair Options screen populates, be sure to select all items and also check Restart System When Finished.
Now press Start
----------

Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#8 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 13 March 2015 - 12:37 AM

Good morning Jo*,

 

I was finally able to get Windows Repair to run.  I had to run it in Safe Mode, then followed with a run in Normal mode.  The only warning I get on startup is "RUNDLL Error loading %application%\BTVstack.dll. The specified module could not be found".

 

The computer is running MUCH better than it was before.  It may actually be useful once more.  Are there any other tasks or proceedures you would recommend?

 

Thank you again JO* for your time and expertise.

 

TravelingOne



#9 Jo*

Jo*

  • Malware Response Team
  • 3,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:10 AM

Posted 13 March 2015 - 07:01 AM

Hello TravelingOne,

Double click on AdwCleaner.exe to run the tool again.
Vista / Windows 7/8 users right-click and select Run As Administrator.
  • Click on the Scan button.
  • AdwCleaner will begin to scan your computer like it did before.
  • When the scan has finished, the actual line should say "Pending. Please uncheck elements you do not want to remove". Look through the scan results and uncheck any entries that you do not wish to remove.
  • This time, click on the Clean button.
  • Press OK when asked to close all programs and follow the onscreen prompts.
  • Press OK again to allow AdwCleaner to restart the computer and complete the removal process.
  • After rebooting, a logfile report (AdwCleaner[S0].txt) will open automatically.
  • Copy and paste the contents of that logfile in your next reply.
  • A copy of that logfile will also be saved in the C:\AdwCleaner folder.

***


Please download Junkware Removal Tool from HERE and save it to your desktop.
Shutdown your antivirus to avoid any potential conflicts.
Double click JRT.exe to run the tool.
Vista / Windows 7/8 users right-click and select Run As Administrator.
  • JRT will begin to backup your registry and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, the log JRT.txt is saved on your desktop and will automatically open.
Enable your antivirus!
Post the contents of JRT.txt into your next reply.


***


Run the Farbar Recovery Scan Tool again.
  • Double-click to run FSRT / FSRT64. When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
  • The first time the tool is run, it makes also another log (Addition.txt). Please attach it to your reply.

***


How the computer is running now?


***


Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#10 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 14 March 2015 - 04:02 PM

Good evening Jo,

 

I was only able to run AdwCleaner so far.  I was unable to gain wireless access to the internet and had no lan option.  I now have lan internet access and I am proceeding with the remaining instructions from above.

 

I'll pass along the other logs when I have completed them.

 

# AdwCleaner v4.112 - Logfile created 13/03/2015 at 20:57:45
# Updated 09/03/2015 by Xplode
# Database : 2015-03-05.1 [Local]
# Operating system : Microsoft Windows XP Service Pack 3 (x86)
# Username : N310 - PC
# Running from : C:\Documents and Settings\N310\Desktop\AdwCleaner.exe
# Option : Cleaning

***** [ Services ] *****

***** [ Files / Folders ] *****

***** [ Scheduled tasks ] *****

***** [ Shortcuts ] *****

***** [ Registry ] *****

Key Deleted : HKCU\Toolbar
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Conduit
Key Deleted : HKCU\Software\YahooPartnerToolbar

***** [ Web browsers ] *****

-\\ Internet Explorer v8.0.6001.18702

-\\ Mozilla Firefox v35.0.1 (x86 en-US)

*************************

AdwCleaner[R0].txt - [995 bytes] - [11/03/2015 17:51:02]
AdwCleaner[R1].txt - [1204 bytes] - [13/03/2015 20:46:16]
AdwCleaner[S0].txt - [1068 bytes] - [11/03/2015 18:02:31]
AdwCleaner[S1].txt - [1141 bytes] - [13/03/2015 20:57:45]

########## EOF - C:\AdwCleaner\AdwCleaner[S1].txt - [1200  bytes] ##########



#11 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 14 March 2015 - 11:18 PM

Good morning Jo,

 

I have successfully completed your directions.  I am now able to access the internet via wifi at this new location. Please find the logs below.

 

Does Avast identify some Symantec files as viruses?  Like identifying DWH463.exe as Win32:Agent-AUZC [Trj].  There are about 12 such events.

 

The machine appers to be doing much better.  I think Avast and Symantec are fighting each other.  Do you have a recommendation which is more effective?

 

Thank you again for your time.

 

TravelingOne

 

JRT:

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 6.4.3 (03.01.2015:1)
OS: Microsoft Windows XP x86
Ran by N310 on Sat 03/14/2015 at 14:13:56.32
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

~~~ Services

 

~~~ Registry Values

Suspicious HKCU\..\Run entries found. Trojan:JS/Medfos.B?

    Value Name          Type                             Value Data                    
========================================================================================
    BluetoothS REG_SZ rundll32.exe "%appdata%\BtvStack.dll",BTHF_Register

 

~~~ Registry Keys

Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{0347C33E-8762-4905-BF09-768834316C61}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0695F52A-89A2-4246-81B5-AFAD2D3B865F}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{0695F52A-89A2-4246-81B5-AFAD2D3B865F}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{53707962-6F74-2D53-2644-206D7942484F}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b54561db-0bbb-41b4-a814-df8301fe0a8e}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{b54561db-0bbb-41b4-a814-df8301fe0a8e}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9}
Successfully deleted: [Registry Key - Orphan] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}
Successfully deleted: [Registry Key - Orphan] HKEY_CLASSES_ROOT\CLSID\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}

 

~~~ Files

 

~~~ Folders

 

~~~ FireFox

Emptied folder: C:\Documents and Settings\N310\Application Data\mozilla\firefox\profiles\wdadu9p8.default\minidumps [7 files]

 

 

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on Sat 03/14/2015 at 14:33:47.73
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

 

 

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-03-2015
Ran by N310 (administrator) on PC on 14-03-2015 16:48:24
Running from C:\Documents and Settings\N310\Desktop
Loaded Profiles: N310 (Available profiles: N310 & Jeff & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(ActivIdentity) C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Belkin\USB Control Center\Bkapcs.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\ThpSrv.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe
(TOSHIBA) C:\WINDOWS\system32\ZoomingHook.exe
(TOSHIBA) C:\WINDOWS\system32\ZoomingHook.exe
(COMPAL ELECTRONIC INC.) C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\ThpSrv.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TDispVol.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TPSBattM.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(COMPAL ELECTRONIC INC.) C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
(Atheros Communications, Inc.) C:\Program Files\Atheros\ACU.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Safer-Networking Ltd.) C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
() C:\WINDOWS\system32\C2MP\UpdateChecker.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acsagent.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe

==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZoomingHook] => C:\WINDOWS\system32\ZoomingHook.exe [24576 2005-06-06] (TOSHIBA)
HKLM\...\Run: [Zooming] => C:\WINDOWS\system32\ZoomingHook.exe [24576 2005-06-06] (TOSHIBA)
HKLM\...\Run: [TPSMain] => C:\WINDOWS\system32\TPSMain.exe [268864 2009-09-30] (TOSHIBA Corporation)
HKLM\...\Run: [TPNF] => C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [86016 2009-10-09] (COMPAL ELECTRONIC INC.)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [611672 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [ThpSrv] => C:\WINDOWS\system32\thpsrv /logon
HKLM\...\Run: [TDispVol] => C:\WINDOWS\system32\TDispVol.exe [208896 2010-01-17] (TOSHIBA Corporation)
HKLM\...\Run: [TAccessibility] => C:\Program Files\TOSHIBA\Accessibility\TAccessibility.exe [110592 2009-10-09] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1586472 2009-10-15] (Synaptics Incorporated)
HKLM\...\Run: [SVPWUTIL] => C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe [90112 2009-04-28] (TOSHIBA)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe [159744 2007-04-09] (TOSHIBA Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18782720 2009-11-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [90448 2011-11-02] (Research In Motion Limited)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [NDSTray.exe] => NDSTray.exe
HKLM\...\Run: [masqform.exe] => C:\Program Files\PureEdge\Viewer 6.5\masqform.exe [643072 2005-07-04] (PureEdge™ Solutions Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe [28672 2004-05-01] (TOSHIBA CO.,LTD.)
HKLM\...\Run: [CFSServ.exe] => CFSServ.exe -NoClient
HKLM\...\Run: [CeEKEY] => C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [873840 2009-11-13] (COMPAL ELECTRONIC INC.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM\...\Run: [ACU] => C:\Program Files\Atheros\ACU.exe [471129 2009-10-08] (Atheros Communications, Inc.)
HKLM\...\Run: [acevents] => C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936 2009-06-03] (ActivIdentity)
HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5225064 2015-03-02] (AVAST Software)
Winlogon\Notify\ackpbsc: C:\Program Files\ActivIdentity\ActivClient\ackpbsc.dll (ActivIdentity)
Winlogon\Notify\acunlock: C:\Program Files\ActivIdentity\ActivClient\acunlock.dll (ActivIdentity)
HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [SpybotSD TeaTimer] => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [Codec Pack Update Checker] => C:\WINDOWS\system32\C2MP\UpdateChecker.exe [48712 2014-05-18] ()
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [swg] => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [BluetoothS] => rundll32.exe "%appdata%\BtvStack.dll",BTHF_Register
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Policies\Explorer\Run: [1814062277] => C:\DOCUME~1\N310\APPLIC~1\msixduo.exe
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Policies\Explorer: [TaskbarNoNotification] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\MountPoints2: {699a33e8-d2e0-11df-907b-002308fd016c} - D:\setup.exe
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ActivClient Agent.lnk
ShortcutTarget: ActivClient Agent.lnk -> C:\Program Files\ActivIdentity\ActivClient\acsagent.exe (ActivIdentity)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\N310\Start Menu\Programs\Startup\USB Control Center.lnk
ShortcutTarget: USB Control Center.lnk -> C:\Program Files\Belkin\USB Control Center\Connect.exe (Belkin International, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=TSNB&bmod=TSNB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSNB&bmod=TSNB
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?brand=TSNB&bmod=TSNB
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig?brand=TSNB&bmod=TSNB
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig?brand=TSNB&bmod=TSNB
URLSearchHook: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 - (No Name) - {b54561db-0bbb-41b4-a814-df8301fe0a8e} -  No File
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKU\.DEFAULT -> {B1046B38-2D4B-4221-AC26-05A392205441} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB_en
SearchScopes: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB_en
BHO: No Name -> {0347C33E-8762-4905-BF09-768834316C61} ->  No File
BHO: No Name -> {0695F52A-89A2-4246-81B5-AFAD2D3B865F} ->  No File
BHO: No Name -> {53707962-6F74-2D53-2644-206D7942484F} ->  No File
BHO: Symantec Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\bin\IPS\IPSBHO.DLL [2014-09-13] (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-07-11] (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll [2015-03-02] (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} ->  No File
BHO: No Name -> {b54561db-0bbb-41b4-a814-df8301fe0a8e} ->  No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} ->  No File
BHO: No Name -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} ->  No File
Toolbar: HKLM - No Name - {b54561db-0bbb-41b4-a814-df8301fe0a8e} -  No File
Toolbar: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 -> No Name - {B54561DB-0BBB-41B4-A814-DF8301FE0A8E} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://akamaicdn.webex.com/client/WBXclient-T27L10NSP32EP5-14362/webex/ieatgpc.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Handler: x-excid - {9D6CC632-1337-4a33-9214-2DA092E776F4} - c:\WINDOWS\Downloaded Program Files\mimectl.dll [2006-11-16] (Microsoft Corporation)
Handler: x-owacid2 - {5B290518-830E-4C57-A66B-E4F748900C27} - C:\Program Files\Microsoft\SMIME Client (2010)\mimectl.dll [2013-02-03] (Microsoft Corporation)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{505AA99E-5105-469C-9427-134D9473555A}: [NameServer] 208.67.222.222,208.67.220.220

FireFox:
========
FF ProfilePath: C:\Documents and Settings\N310\Application Data\Mozilla\Firefox\Profiles\wdadu9p8.default
FF DefaultSearchEngine: DuckDuckGo
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll [2015-01-28] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-07-11] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2013-10-01] (Simon Bünzli)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2012-12-13] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2348835819-2973295498-3323505632-1006: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2013-10-01] (Simon Bünzli)
FF SearchPlugin: C:\Documents and Settings\N310\Application Data\Mozilla\Firefox\Profiles\wdadu9p8.default\searchplugins\firefox-add-ons.xml [2014-12-29]
FF Extension: IE Tab 2 (FF 3.6+) - C:\Documents and Settings\N310\Application Data\Mozilla\Firefox\Profiles\wdadu9p8.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2015-01-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-11-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-06]
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2015-03-02]
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\IPSFF
FF Extension: Symantec Vulnerability Protection - C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\IPSFF [2015-02-06]
FF HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2015-03-02]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2015-03-02]
CHR HKLM\...\Chrome\Extension: [jealjalmcelnenljclnadlblookmkmdc] - C:\DOCUME~1\N310\LOCALS~1\Temp\crx38.tmp [Not Found]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ac.sharedstore; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [207400 2009-06-03] (ActivIdentity)
R2 ACS; C:\WINDOWS\system32\acs.exe [499797 2009-10-08] (Atheros) [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2015-03-02] (AVAST Software)
R2 Belkin USB Center Helper; C:\Program Files\Belkin\USB Control Center\Bkapcs.exe [49152 2013-12-10] () [File not signed]
R2 CFSvcs; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2005-01-17] (TOSHIBA CORPORATION) [File not signed]
S3 GameConsoleService; C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe [238328 2009-08-27] (WildTangent, Inc.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-07-11] (Oracle Corporation)
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE [3093880 2010-02-17] (Symantec Corporation)
R2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
R2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SepMasterService; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe [144496 2014-09-13] (Symantec Corporation)
R2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
S3 SNAC; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\snac.exe [337248 2014-09-13] (Symantec Corporation)
R2 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2010-02-05] (TOSHIBA Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 actccid; C:\WINDOWS\System32\DRIVERS\actccid.sys [63608 2007-05-03] (ActivCard)
R3 akbus; C:\WINDOWS\System32\DRIVERS\akbus.sys [13619 2009-05-29] (ActivCard)
R3 akpcsc; C:\WINDOWS\System32\DRIVERS\akpcsc.sys [9493 2007-05-03] (ActivCard)
R3 aksbus; C:\WINDOWS\System32\DRIVERS\aksbus.sys [14639 2009-05-29] (ActivIdentity)
R3 akspcsc; C:\WINDOWS\System32\DRIVERS\akspcsc.sys [10193 2009-05-29] (ActivIdentity)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-05] (Creative)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1585728 2009-09-30] (Atheros Communications, Inc.)
R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2015-03-02] ()
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2015-03-02] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2015-03-02] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2015-03-02] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2015-03-02] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [422760 2015-03-02] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2015-03-02] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2015-03-02] ()
R1 BHDrvx86; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\BASHDefs\20150307.011\BHDrvx86.sys [1164504 2015-02-02] (Symantec Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 ccSettings_{7EC551EC-6FEE-44A6-BD12-987F87D7C525}; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\ccSetx86.sys [127064 2014-09-13] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [378672 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [111408 2015-01-21] (Symantec Corporation)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-01-19] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-01-19] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2009-08-26] (HP)
R3 IDSxpx86; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\IPSDefs\20150313.011\IDSxpx86.sys [453264 2015-02-06] (Symantec Corporation)
R2 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [54360 2014-11-21] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-04] (Creative Technology Ltd.)
R3 NAVENG; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150314.003\NAVENG.SYS [95704 2015-01-21] (Symantec Corporation)
R3 NAVEX15; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150314.003\NAVEX15.SYS [1636696 2015-01-21] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 Netdevio; C:\WINDOWS\System32\DRIVERS\netdevio.sys [12032 2003-01-29] (TOSHIBA Corporation.) [File not signed]
R3 PGSUSFLT; C:\WINDOWS\System32\Drivers\pgsuspend.SYS [18816 2009-09-21] (Toshiba)
S3 rt2870; C:\WINDOWS\System32\DRIVERS\rt2870.sys [730240 2010-04-02] (Ralink Technology, Corp.)
R1 SRTSP; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSP.SYS [668888 2014-09-13] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSPX.SYS [32984 2014-09-13] (Symantec Corporation)
R2 sxuptp; C:\WINDOWS\System32\DRIVERS\sxuptp.sys [259040 2013-12-10] (silex technology, Inc.)
S3 SyDvCtrl; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\SyDvCtrl32.sys [30736 2014-09-13] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\symefasi\0500010.01F\symefasi.sys [1278680 2015-02-06] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142936 2015-03-13] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\Ironx86.SYS [209624 2014-09-13] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SYMTDI.SYS [423256 2014-09-13] (Symantec Corporation)
R1 SysPlant; C:\WINDOWS\System32\Drivers\SysPlant.sys [131176 2015-03-13] (Symantec Corporation)
S3 tdcmdpst; C:\WINDOWS\System32\DRIVERS\tdcmdpst.sys [16128 2007-02-22] (TOSHIBA Corporation.) [File not signed]
R3 Teefer2; C:\WINDOWS\System32\DRIVERS\teefer.sys [152984 2014-09-13] (Symantec Corporation)
R1 TPwSav; C:\WINDOWS\system32\drivers\TPwSav.sys [17192 2008-07-24] (TOSHIBA )
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2012-12-13] (Apple, Inc.) [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2009-03-17] (Atheros Communications, Inc.)
S4 IntelIde; No ImagePath
U3 TlntSvr; No ImagePath

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)

==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-14 16:48 - 2015-03-14 16:50 - 00027282 _____ () C:\Documents and Settings\N310\Desktop\FRST.txt
2015-03-14 16:41 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\N310\Desktop\FRST.exe
2015-03-14 16:37 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\Administrator\My Documents\FRST.exe
2015-03-14 14:33 - 2015-03-14 14:33 - 00003081 _____ () C:\Documents and Settings\N310\Desktop\JRT.txt
2015-03-14 14:13 - 2015-03-14 14:03 - 01388333 _____ (Thisisu) C:\Documents and Settings\N310\Desktop\JRT.exe
2015-03-14 14:03 - 2015-03-14 14:03 - 01388333 _____ (Thisisu) C:\Documents and Settings\Administrator\Desktop\JRT.exe
2015-03-13 22:11 - 2015-03-13 22:22 - 00002391 _____ () C:\Documents and Settings\All Users\Desktop\Safari.lnk
2015-03-12 16:38 - 2015-03-12 16:38 - 00000000 ____D () C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories
2015-03-12 15:58 - 2008-04-14 05:42 - 00116224 ____C (Xerox) C:\WINDOWS\system32\dllcache\xrxwiadr.dll
2015-03-12 15:58 - 2008-04-14 05:42 - 00018944 ____C () C:\WINDOWS\system32\dllcache\xrxscnui.dll
2015-03-12 15:58 - 2001-08-17 22:37 - 00027648 ____C () C:\WINDOWS\system32\dllcache\xrxftplt.exe
2015-03-12 15:58 - 2001-08-17 22:36 - 00023040 ____C (Xerox Corporation) C:\WINDOWS\system32\dllcache\xrxwbtmp.dll
2015-03-12 15:57 - 2008-04-14 05:42 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wshirda.dll
2015-03-12 15:57 - 2008-04-13 22:04 - 00019455 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wvchntxx.sys
2015-03-12 15:57 - 2008-04-13 22:04 - 00012063 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wsiintxx.sys
2015-03-12 15:57 - 2001-08-17 22:37 - 00099865 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\xlog.exe
2015-03-12 15:57 - 2001-08-17 22:37 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xrxflnch.exe
2015-03-12 15:57 - 2001-08-17 12:11 - 00016970 ____C (US Robotics MCD (Megahertz)) C:\WINDOWS\system32\dllcache\xem336n5.sys
2015-03-12 15:56 - 2008-04-14 00:15 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wceusbsh.sys
2015-03-12 15:56 - 2008-04-14 00:06 - 00008832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiacpi.sys
2015-03-12 15:56 - 2008-04-13 22:05 - 00154624 ____C (Lucent Technologies) C:\WINDOWS\system32\dllcache\wlluc48.sys
2015-03-12 15:56 - 2008-04-13 22:04 - 00023615 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wch7xxnt.sys
2015-03-12 15:56 - 2001-08-17 22:36 - 00087040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiafbdrv.dll
2015-03-12 15:56 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiamsmud.dll
2015-03-12 15:56 - 2001-08-17 13:28 - 00771581 ____C (Rockwell) C:\WINDOWS\system32\dllcache\winacisa.sys
2015-03-12 15:56 - 2001-08-17 13:28 - 00701386 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\wdhaalba.sys
2015-03-12 15:56 - 2001-08-17 12:12 - 00034890 ____C (Raytheon Corp.) C:\WINDOWS\system32\dllcache\wlandrv2.sys
2015-03-12 15:56 - 2001-08-17 12:10 - 00035871 ____C (Winbond Electronics Corp.) C:\WINDOWS\system32\dllcache\wbfirdma.sys
2015-03-12 15:55 - 2008-04-14 00:13 - 00014208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wacompen.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00033599 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv04nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00029311 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv01nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00025471 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv10nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00022271 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv06nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00019551 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv02nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00012415 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv01nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00012127 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv02nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011935 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv11nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011871 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv09nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011807 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv07nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011775 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv05nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011295 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv08nt.sys
2015-03-12 15:55 - 2001-08-17 13:28 - 00397502 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vpctcom.sys
2015-03-12 15:55 - 2001-08-17 13:28 - 00064605 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vvoice.sys
2015-03-12 15:55 - 2001-08-17 12:13 - 00019528 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w840nd.sys
2015-03-12 15:55 - 2001-08-17 12:13 - 00019016 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w926nd.sys
2015-03-12 15:55 - 2001-08-17 12:13 - 00016925 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w940nd.sys
2015-03-12 15:54 - 2008-04-14 05:42 - 00011325 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\vchnt5.dll
2015-03-12 15:54 - 2008-04-14 00:10 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viaide.sys
2015-03-12 15:54 - 2008-04-14 00:06 - 00042240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viaagp.sys
2015-03-12 15:54 - 2001-08-17 13:49 - 00024576 ____C (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\viairda.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00765884 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usrti.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00687999 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrwdxjs.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00604253 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\vmodem.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00224802 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usr1807a.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00113762 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrpda.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00007556 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usroslba.sys
2015-03-12 15:54 - 2001-08-17 12:14 - 00249402 ____C (Xircom) C:\WINDOWS\system32\dllcache\vinwm.sys
2015-03-12 15:53 - 2008-04-14 00:15 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbser.sys
2015-03-12 15:53 - 2008-04-14 00:15 - 00017152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbohci.sys
2015-03-12 15:53 - 2008-04-13 22:05 - 00032384 ____C (KLSI USA, Inc.) C:\WINDOWS\system32\dllcache\usb101et.sys
2015-03-12 15:53 - 2001-08-17 22:36 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxud32.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu12.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00050688 ____C (UMAX DATA SYSTEMS INC.) C:\WINDOWS\system32\dllcache\umaxscan.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu40.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu22.dll
2015-03-12 15:53 - 2001-08-17 13:28 - 00794654 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1801.sys
2015-03-12 15:53 - 2001-08-17 13:28 - 00794399 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806v.sys
2015-03-12 15:53 - 2001-08-17 13:28 - 00793598 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806.sys
2015-03-12 15:52 - 2008-04-14 00:06 - 00044672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uagp35.sys
2015-03-12 15:52 - 2001-08-17 22:36 - 00525568 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxp.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00216064 ____C (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um34scan.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00211968 ____C (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um54scan.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxp60.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxcam.dll
2015-03-12 15:52 - 2001-08-17 13:58 - 00022912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxpcls.sys
2015-03-12 15:52 - 2001-08-17 13:52 - 00036736 ____C (Promise Technology, Inc.) C:\WINDOWS\system32\dllcache\ultra.sys
2015-03-12 15:52 - 2001-08-17 13:48 - 00011520 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\twotrack.sys
2015-03-12 15:52 - 2001-08-17 12:51 - 00166784 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxpm.sys
2015-03-12 15:51 - 2008-04-14 05:42 - 00082944 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4mon.exe
2015-03-12 15:51 - 2001-08-17 22:36 - 00031744 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4.dll
2015-03-12 15:51 - 2001-08-17 22:35 - 00042496 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4res.dll
2015-03-12 15:51 - 2001-08-17 14:56 - 00440576 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkb.dll
2015-03-12 15:51 - 2001-08-17 14:56 - 00315520 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3d.dll
2015-03-12 15:51 - 2001-08-17 14:02 - 00230912 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd03.sys
2015-03-12 15:51 - 2001-08-17 13:51 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\toside.sys
2015-03-12 15:51 - 2001-08-17 12:51 - 00222336 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3dm.sys
2015-03-12 15:51 - 2001-08-17 12:51 - 00159232 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkbm.sys
2015-03-12 15:51 - 2001-08-17 12:12 - 00034375 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\tpro4.sys
2015-03-12 15:50 - 2008-04-14 00:10 - 00149376 ____C (M-Systems) C:\WINDOWS\system32\dllcache\tffsport.sys
2015-03-12 15:50 - 2001-08-17 14:56 - 00081408 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiul50.dll
2015-03-12 15:50 - 2001-08-17 14:01 - 00241664 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd02.sys
2015-03-12 15:50 - 2001-08-17 13:49 - 00030464 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tbatm155.sys
2015-03-12 15:50 - 2001-08-17 12:51 - 00138528 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiulnt5.sys
2015-03-12 15:50 - 2001-08-17 12:14 - 00123995 ____C (Tiger Jet Network) C:\WINDOWS\system32\dllcache\tjisdn.sys
2015-03-12 15:50 - 2001-08-17 12:13 - 00037961 ____C (TDK Corporation) C:\WINDOWS\system32\dllcache\tdk100b.sys
2015-03-12 15:50 - 2001-08-17 12:13 - 00017129 ____C (TDK Corporation) C:\WINDOWS\system32\dllcache\tdkcd31.sys
2015-03-12 15:50 - 2001-08-17 12:10 - 00028232 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\dllcache\tos4mo.sys
2015-03-12 15:49 - 2001-08-17 22:36 - 00094293 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sxports.dll
2015-03-12 15:49 - 2001-08-17 14:56 - 00172768 ____C (Number Nine Visual Technology) C:\WINDOWS\system32\dllcache\t2r4disp.dll
2015-03-12 15:49 - 2001-08-17 14:07 - 00032640 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\symc8xx.sys
2015-03-12 15:49 - 2001-08-17 14:07 - 00030688 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\sym_u3.sys
2015-03-12 15:49 - 2001-08-17 14:07 - 00028384 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\sym_hi.sys
2015-03-12 15:49 - 2001-08-17 14:07 - 00016256 ____C (Symbios Logic Inc.) C:\WINDOWS\system32\dllcache\symc810.sys
2015-03-12 15:49 - 2001-08-17 14:02 - 00003968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swusbflt.sys
2015-03-12 15:49 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tandqic.sys
2015-03-12 15:49 - 2001-08-17 13:50 - 00103936 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sx.sys
2015-03-12 15:49 - 2001-08-17 12:50 - 00036640 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\t2r4mini.sys
2015-03-12 15:48 - 2001-08-17 22:36 - 00155648 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnprop.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00099328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusd.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_wheel.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00053248 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlncoin.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_effct.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpidflt.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpdflt2.dll
2015-03-12 15:48 - 2001-08-17 13:51 - 00016896 ____C (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\stcusb.sys
2015-03-12 15:48 - 2001-08-17 12:18 - 00285760 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnata.sys
2015-03-12 15:48 - 2001-08-17 12:11 - 00048736 ____C (3Com) C:\WINDOWS\system32\dllcache\srwlnd5.sys
2015-03-12 15:47 - 2008-04-14 00:10 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonyait.sys
2015-03-12 15:47 - 2001-08-17 22:36 - 00114688 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.dll
2015-03-12 15:47 - 2001-08-17 22:36 - 00106584 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spdports.dll
2015-03-12 15:47 - 2001-08-17 22:36 - 00024660 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxupchk.dll
2015-03-12 15:47 - 2001-08-17 14:07 - 00019072 ____C (Adaptec, Inc.) C:\WINDOWS\system32\dllcache\sparrow.sys
2015-03-12 15:47 - 2001-08-17 13:56 - 00007552 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypvu1.sys
2015-03-12 15:47 - 2001-08-17 13:53 - 00009600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonymc.sys
2015-03-12 15:47 - 2001-08-17 13:51 - 00061824 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\speed.sys
2015-03-12 15:47 - 2001-08-17 12:51 - 00037040 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.sys
2015-03-12 15:47 - 2001-08-17 12:51 - 00020752 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonync.sys
2015-03-12 15:46 - 2008-04-14 00:06 - 00016000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbbatt.sys
2015-03-12 15:46 - 2008-04-14 00:06 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbclass.sys
2015-03-12 15:46 - 2008-04-14 00:06 - 00005888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbali.sys
2015-03-12 15:46 - 2001-08-17 22:36 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb3w.dll
2015-03-12 15:46 - 2001-08-17 22:36 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
2015-03-12 15:46 - 2001-08-17 22:36 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
2015-03-12 15:46 - 2001-08-17 14:56 - 00147200 ____C (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smidispb.dll
2015-03-12 15:46 - 2001-08-17 13:57 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbhc.sys
2015-03-12 15:46 - 2001-08-17 13:53 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snyaitmc.sys
2015-03-12 15:46 - 2001-08-17 12:51 - 00058368 ____C (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smiminib.sys
2015-03-12 15:46 - 2001-08-17 12:12 - 00025034 ____C (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smcpwr2n.sys
2015-03-12 15:46 - 2001-08-17 12:12 - 00024576 ____C (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smc8000n.sys
2015-03-12 15:46 - 2001-08-17 12:10 - 00035913 ____C (SMC) C:\WINDOWS\system32\dllcache\smcirda.sys
2015-03-12 15:45 - 2008-04-14 05:42 - 00286792 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slextspk.dll
2015-03-12 15:45 - 2008-04-14 05:42 - 00188508 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slgen.dll
2015-03-12 15:45 - 2008-04-14 05:42 - 00073832 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slcoinst.dll
2015-03-12 15:45 - 2008-04-14 05:42 - 00073796 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slserv.exe
2015-03-12 15:45 - 2008-04-14 05:42 - 00032866 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slrundll.exe
2015-03-12 15:45 - 2008-04-13 23:53 - 00404990 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slntamr.sys
2015-03-12 15:45 - 2008-04-13 23:53 - 00129535 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slnt7554.sys
2015-03-12 15:45 - 2008-04-13 23:53 - 00095424 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slnthal.sys
2015-03-12 15:45 - 2008-04-13 23:53 - 00013240 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slwdmsup.sys
2015-03-12 15:45 - 2008-04-13 22:05 - 00063547 ____C (Symbol Technologies) C:\WINDOWS\system32\dllcache\sla30nd5.sys
2015-03-12 15:45 - 2008-04-13 22:05 - 00032768 ____C (SiS Corporation) C:\WINDOWS\system32\dllcache\sisnic.sys
2015-03-12 15:45 - 2001-08-17 22:36 - 00238592 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrv.dll
2015-03-12 15:45 - 2001-08-17 22:36 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb0w.dll
2015-03-12 15:45 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma0w.dll
2015-03-12 15:45 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm91w.dll
2015-03-12 15:45 - 2001-08-17 14:56 - 00157696 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv256.dll
2015-03-12 15:45 - 2001-08-17 12:50 - 00050432 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv.sys
2015-03-12 15:45 - 2001-08-17 12:12 - 00094698 ____C (SysKonnect GmbH.) C:\WINDOWS\system32\dllcache\sk98xwin.sys
2015-03-12 15:45 - 2001-08-17 12:12 - 00091294 ____C (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) C:\WINDOWS\system32\dllcache\skfpwin.sys
2015-03-12 15:44 - 2008-04-14 05:42 - 00003901 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\siint5.dll
2015-03-12 15:44 - 2008-04-14 00:06 - 00040960 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisagp.sys
2015-03-12 15:44 - 2001-08-17 22:36 - 00386560 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiul50.dll
2015-03-12 15:44 - 2001-08-17 14:56 - 00252032 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300iv.dll
2015-03-12 15:44 - 2001-08-17 14:56 - 00150144 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306v.dll
2015-03-12 15:44 - 2001-08-17 12:51 - 00098080 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiulnt5.sys
2015-03-12 15:44 - 2001-08-17 12:50 - 00104064 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrp.sys
2015-03-12 15:44 - 2001-08-17 12:50 - 00101760 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300ip.sys
2015-03-12 15:44 - 2001-08-17 12:50 - 00068608 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306p.sys
2015-03-12 15:44 - 2001-07-21 14:29 - 00161568 ____C (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmusb.sys
2015-03-12 15:44 - 2001-07-21 14:29 - 00018400 ____C (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmld.sys
2015-03-12 15:43 - 2008-04-14 00:15 - 00011520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiscan.sys
2015-03-12 15:43 - 2008-04-14 00:10 - 00043904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sbp2port.sys
2015-03-12 15:43 - 2001-08-17 22:36 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
2015-03-12 15:43 - 2001-08-17 22:36 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll
2015-03-12 15:43 - 2001-08-17 13:53 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seaddsmc.sys
2015-03-12 15:43 - 2001-08-17 13:53 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\serscan.sys
2015-03-12 15:43 - 2001-08-17 13:52 - 00011648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiprnt.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmusbm.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmn50m.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00017280 ____C (SCM Microsystems) C:\WINDOWS\system32\dllcache\scr111.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00016640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scmstcs.sys
2015-03-12 15:43 - 2001-08-17 13:48 - 00017664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sermouse.sys
2015-03-12 15:43 - 2001-08-17 12:19 - 00036480 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
2015-03-12 15:42 - 2001-08-17 22:36 - 00495616 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
2015-03-12 15:42 - 2001-08-17 22:36 - 00062496 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mtrio.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00245632 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmx.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00210496 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mvirge.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00198400 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00182272 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00179264 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3d.dll
2015-03-12 15:42 - 2001-08-17 12:50 - 00077824 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4m.sys
2015-03-12 15:42 - 2001-08-17 12:50 - 00075392 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmxm.sys
2015-03-12 15:42 - 2001-08-17 12:50 - 00061504 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3dm.sys
2015-03-12 15:42 - 2001-08-17 12:50 - 00041216 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.sys
2015-03-12 15:41 - 2008-04-14 05:42 - 00397056 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3gnb.dll
2015-03-12 15:41 - 2008-04-14 05:42 - 00029696 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw450ext.dll
2015-03-12 15:41 - 2008-04-14 05:42 - 00027648 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw430ext.dll
2015-03-12 15:41 - 2008-04-14 00:26 - 00030592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rndismpx.sys
2015-03-12 15:41 - 2008-04-14 00:10 - 00079104 ____C (Comtrol Corporation) C:\WINDOWS\system32\dllcache\rocket.sys
2015-03-12 15:41 - 2008-04-13 22:05 - 00020992 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8139.sys
2015-03-12 15:41 - 2008-04-13 22:04 - 00166912 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3gnbm.sys
2015-03-12 15:41 - 2001-08-17 22:36 - 00082432 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia450.dll
2015-03-12 15:41 - 2001-08-17 22:36 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia430.dll
2015-03-12 15:41 - 2001-08-17 22:36 - 00009216 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\rsmgrstr.dll
2015-03-12 15:41 - 2001-08-17 13:57 - 00065664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.sys
2015-03-12 15:41 - 2001-08-17 12:50 - 00166720 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3m.sys
2015-03-12 15:41 - 2001-08-17 12:19 - 00030720 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rthwcls.sys
2015-03-12 15:41 - 2001-08-17 12:19 - 00003840 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rpfun.sys
2015-03-12 15:41 - 2001-08-17 12:12 - 00019017 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8029.sys
2015-03-12 15:40 - 2008-04-14 00:16 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rfcomm.sys
2015-03-12 15:40 - 2008-04-13 23:53 - 00013776 ____C (Smart Link) C:\WINDOWS\system32\dllcache\recagent.sys
2015-03-12 15:40 - 2001-08-17 22:36 - 00086097 ____C (Xircom) C:\WINDOWS\system32\dllcache\reslog32.dll
2015-03-12 15:40 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qvusd.dll
2015-03-12 15:40 - 2001-08-17 22:36 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
2015-03-12 15:40 - 2001-08-17 13:53 - 00003328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qv2kux.sys
2015-03-12 15:40 - 2001-08-17 13:51 - 00019584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rasirda.sys
2015-03-12 15:40 - 2001-08-17 13:28 - 00899146 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdkxga.sys
2015-03-12 15:40 - 2001-08-17 13:28 - 00714762 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdmkxx.sys
2015-03-12 15:40 - 2001-08-17 12:12 - 00037563 ____C (RadioLAN) C:\WINDOWS\system32\dllcache\rlnet5.sys
2015-03-12 15:39 - 2008-04-14 05:42 - 00363520 ____C () C:\WINDOWS\system32\dllcache\psisdecd.dll
2015-03-12 15:39 - 2008-04-14 05:42 - 00159232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusd.dll
2015-03-12 15:39 - 2008-04-14 05:42 - 00033280 ____C () C:\WINDOWS\system32\dllcache\psisrndr.ax
2015-03-12 15:39 - 2008-04-14 00:10 - 00006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qic157.sys
2015-03-12 15:39 - 2001-08-17 22:36 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\psisload.dll
2015-03-12 15:39 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusb.dll
2015-03-12 15:39 - 2001-08-17 13:52 - 00049024 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql1280.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00045312 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql12160.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00040448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ql1240.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00040320 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql1080.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00033152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ql10wnt.sys
2015-03-12 15:39 - 2001-08-17 13:28 - 00130942 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlv.sys
2015-03-12 15:39 - 2001-08-17 13:28 - 00128286 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserli.sys
2015-03-12 15:39 - 2001-08-17 13:28 - 00112574 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlp.sys
2015-03-12 15:38 - 2008-04-14 00:11 - 00017664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa3.sys
2015-03-12 15:38 - 2008-04-14 00:10 - 00008832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\powerfil.sys
2015-03-12 15:38 - 2001-08-17 22:36 - 00121344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phvfwext.dll
2015-03-12 15:38 - 2001-08-17 22:36 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.dll
2015-03-12 15:38 - 2001-08-17 14:07 - 00019840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philtune.sys
2015-03-12 15:38 - 2001-08-17 14:04 - 00173696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam2.sys
2015-03-12 15:38 - 2001-08-17 14:04 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phildec.sys
2015-03-12 15:38 - 2001-08-17 14:04 - 00075776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.sys
2015-03-12 15:38 - 2001-08-17 13:53 - 00017792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa.sys
2015-03-12 15:38 - 2001-08-17 13:53 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pnrmc.sys
2015-03-12 15:38 - 2001-08-17 13:51 - 00016128 ____C (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\pscr.sys
2015-03-12 15:37 - 2008-04-14 05:40 - 00259328 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3dd.dll
2015-03-12 15:37 - 2008-04-14 05:40 - 00211584 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2dll.dll
2015-03-12 15:37 - 2008-04-14 00:14 - 00028032 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3.sys
2015-03-12 15:37 - 2008-04-14 00:14 - 00027904 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2.sys
2015-03-12 15:37 - 2008-04-13 22:05 - 00029502 ____C (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\pca200e.sys
2015-03-12 15:37 - 2008-04-13 21:42 - 00169984 ____C (Cisco Systems) C:\WINDOWS\system32\dllcache\pcx500.sys
2015-03-12 15:37 - 2001-08-17 22:37 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phdsext.ax
2015-03-12 15:37 - 2001-08-17 22:36 - 00086016 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\pctspk.exe
2015-03-12 15:37 - 2001-08-17 14:07 - 00027296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perc2.sys
2015-03-12 15:37 - 2001-08-17 14:07 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perc2hib.sys
2015-03-12 15:37 - 2001-08-17 12:12 - 00030495 ____C (Linksys) C:\WINDOWS\system32\dllcache\pc100nds.sys
2015-03-12 15:37 - 2001-08-17 12:12 - 00026153 ____C (Linksys) C:\WINDOWS\system32\dllcache\pcmlm56.sys
2015-03-12 15:37 - 2001-08-17 12:11 - 00035328 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntpci5.sys
2015-03-12 15:37 - 2001-08-17 12:11 - 00030282 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5hl.sys
2015-03-12 15:37 - 2001-08-17 12:11 - 00029769 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5m.sys
2015-03-12 15:36 - 2001-08-17 22:36 - 00116736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodec2.dll
2015-03-12 15:36 - 2001-08-17 22:36 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2.dll
2015-03-12 15:36 - 2001-08-17 22:36 - 00041984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2rc.dll
2015-03-12 15:36 - 2001-08-17 22:36 - 00039424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcoms.exe
2015-03-12 15:36 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcomc.dll
2015-03-12 15:36 - 2001-08-17 14:05 - 00351616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodek2.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00048000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcam2.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00031872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovce.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00028032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcd.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00025216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovsound2.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovca.sys
2015-03-12 15:35 - 2008-04-14 05:42 - 04274816 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv4_disp.dll
2015-03-12 15:35 - 2008-04-14 00:16 - 00061696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ohci1394.sys
2015-03-12 15:35 - 2008-04-13 23:53 - 00180360 ____C (Smart Link) C:\WINDOWS\system32\dllcache\ntmtlfax.sys
2015-03-12 15:35 - 2008-04-13 22:04 - 01897408 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv4_mini.sys
2015-03-12 15:35 - 2001-08-17 22:36 - 00123776 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.dll
2015-03-12 15:35 - 2001-08-17 22:36 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
2015-03-12 15:35 - 2001-08-17 13:47 - 00009344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntapm.sys
2015-03-12 15:35 - 2001-08-17 13:28 - 00054186 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otcsercb.sys
2015-03-12 15:35 - 2001-08-17 12:50 - 00198144 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.sys
2015-03-12 15:35 - 2001-08-17 12:49 - 00051552 ____C (Kensington Technology Group) C:\WINDOWS\system32\dllcache\ntgrip.sys
2015-03-12 15:35 - 2001-08-17 12:20 - 00054528 ____C (Yamaha Corp.) C:\WINDOWS\system32\dllcache\opl3sax.sys
2015-03-12 15:35 - 2001-08-17 12:12 - 00043689 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otceth5.sys
2015-03-12 15:35 - 2001-08-17 12:12 - 00027209 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otc06x5.sys
2015-03-12 15:34 - 2008-04-14 00:24 - 00028672 ____C (National Semiconductor Corporation) C:\WINDOWS\system32\dllcache\nscirda.sys
2015-03-12 15:34 - 2008-04-13 22:05 - 00132695 ____C (802.11b) C:\WINDOWS\system32\dllcache\netwlan5.sys
2015-03-12 15:34 - 2001-08-17 22:36 - 00060480 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.dll
2015-03-12 15:34 - 2001-08-17 13:53 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsmmc.sys
2015-03-12 15:34 - 2001-08-17 13:49 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ne2000.sys
2015-03-12 15:34 - 2001-08-17 12:50 - 00039264 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.sys
2015-03-12 15:34 - 2001-08-17 12:20 - 00126080 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm5a2wdm.sys
2015-03-12 15:34 - 2001-08-17 12:20 - 00087040 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm6wdm.sys
2015-03-12 15:34 - 2001-08-17 12:12 - 00032840 ____C (NETGEAR Corporation.) C:\WINDOWS\system32\dllcache\ngrpci.sys
2015-03-12 15:34 - 2001-08-17 12:11 - 00065278 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\netflx3.sys
2015-03-12 15:33 - 2001-08-17 22:36 - 00059104 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.dll
2015-03-12 15:33 - 2001-08-17 22:36 - 00019968 ____C (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxicfg.dll
2015-03-12 15:33 - 2001-08-17 22:36 - 00007168 ____C (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxport.dll
2015-03-12 15:33 - 2001-08-17 14:56 - 00091488 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3disp.dll
2015-03-12 15:33 - 2001-08-17 14:56 - 00035392 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.dll
2015-03-12 15:33 - 2001-08-17 13:50 - 00075520 ____C (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxport.sys
2015-03-12 15:33 - 2001-08-17 13:50 - 00021888 ____C (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxcard.sys
2015-03-12 15:33 - 2001-08-17 13:49 - 00019968 ____C (Macronix International Co., Ltd. ) C:\WINDOWS\system32\dllcache\mxnic.sys
2015-03-12 15:33 - 2001-08-17 12:50 - 00033088 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.sys
2015-03-12 15:33 - 2001-08-17 12:50 - 00027936 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3d.sys
2015-03-12 15:33 - 2001-08-17 12:50 - 00013664 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.sys
2015-03-12 15:33 - 2001-08-17 12:11 - 00128000 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n100325.sys
2015-03-12 15:33 - 2001-08-17 12:11 - 00052255 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n1000nt5.sys
2015-03-12 15:32 - 2008-04-14 05:42 - 01737856 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mtxparhd.dll
2015-03-12 15:32 - 2008-04-14 00:24 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msircomm.sys
2015-03-12 15:32 - 2008-04-14 00:16 - 00049024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstape.sys
2015-03-12 15:32 - 2008-04-14 00:13 - 00012672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mutohpen.sys
2015-03-12 15:32 - 2008-04-13 23:53 - 01309184 ____C (Smart Link) C:\WINDOWS\system32\dllcache\mtlstrm.sys
2015-03-12 15:32 - 2008-04-13 23:53 - 00126686 ____C (Smart Link) C:\WINDOWS\system32\dllcache\mtlmnt5.sys
2015-03-12 15:32 - 2008-04-13 22:04 - 00452736 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mtxparhm.sys
2015-03-12 15:32 - 2001-08-17 14:00 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msmpu401.sys
2015-03-12 15:32 - 2001-08-17 13:48 - 00012416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msriffwv.sys
2015-03-12 15:32 - 2001-08-17 12:50 - 00103296 ____C (Matrox Graphics Inc) C:\WINDOWS\system32\dllcache\mtxvideo.sys
2015-03-12 15:31 - 2008-04-14 05:42 - 00056832 ____C () C:\WINDOWS\system32\dllcache\msdvbnp.ax
2015-03-12 15:31 - 2008-04-14 00:16 - 00051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdv.sys
2015-03-12 15:31 - 2008-04-14 00:16 - 00015232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpe.sys
2015-03-12 15:31 - 2001-08-17 14:02 - 00035200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgame.sys
2015-03-12 15:31 - 2001-08-17 13:57 - 00016128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\modemcsa.sys
2015-03-12 15:31 - 2001-08-17 13:52 - 00017280 ____C (American Megatrends Inc.) C:\WINDOWS\system32\dllcache\mraid35x.sys
2015-03-12 15:31 - 2001-08-17 13:52 - 00006528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\miniqic.sys
2015-03-12 15:31 - 2001-08-17 13:48 - 00012160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mouhid.sys
2015-03-12 15:31 - 2001-08-17 13:48 - 00006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfsio.sys
2015-03-12 15:30 - 2008-04-14 00:11 - 00026112 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\memstpci.sys
2015-03-12 15:30 - 2008-04-13 22:09 - 00020864 ____C (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwadihid.sys
2015-03-12 15:30 - 2001-08-17 22:36 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
2015-03-12 15:30 - 2001-08-17 22:36 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3092dc.dll
2015-03-12 15:30 - 2001-08-17 22:36 - 00058368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3091dc.dll
2015-03-12 15:30 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memgrp.dll
2015-03-12 15:30 - 2001-08-17 14:56 - 00235648 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaud.dll
2015-03-12 15:30 - 2001-08-17 13:58 - 00008320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memcard.sys
2015-03-12 15:30 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mammoth.sys
2015-03-12 15:30 - 2001-08-17 12:50 - 00320384 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaum.sys
2015-03-12 15:30 - 2001-08-17 12:49 - 00022848 ____C (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwusbhid.sys
2015-03-12 15:30 - 2001-08-17 12:19 - 00048768 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\maestro.sys
2015-03-12 15:30 - 2001-08-17 12:12 - 00164586 ____C (Madge Networks Ltd) C:\WINDOWS\system32\dllcache\mdgndis5.sys
2015-03-12 15:29 - 2008-04-14 00:10 - 00034688 ____C (Toshiba Corp.) C:\WINDOWS\system32\dllcache\lbrtfdc.sys
2015-03-12 15:29 - 2008-04-14 00:10 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ltotape.sys
2015-03-12 15:29 - 2008-04-13 23:53 - 00606684 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmnt.sys
2015-03-12 15:29 - 2008-04-13 23:53 - 00420992 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmntt.sys
2015-03-12 15:29 - 2001-08-17 13:53 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\loop.sys
2015-03-12 15:29 - 2001-08-17 13:51 - 00015744 ____C (Litronic Industries) C:\WINDOWS\system32\dllcache\lit220p.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00802683 ____C (Lucent Technologies) C:\WINDOWS\system32\dllcache\ltsm.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00797500 ____C (LT) C:\WINDOWS\system32\dllcache\ltsmt.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00727786 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ltck000c.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00576746 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmntl.sys
2015-03-12 15:29 - 2001-08-17 12:12 - 00070730 ____C (Linksys Group, Inc.) C:\WINDOWS\system32\dllcache\lne100tx.sys
2015-03-12 15:29 - 2001-08-17 12:12 - 00026442 ____C (SMSC) C:\WINDOWS\system32\dllcache\lanepic5.sys
2015-03-12 15:29 - 2001-08-17 12:12 - 00020573 ____C (The Linksts Group ) C:\WINDOWS\system32\dllcache\lne100.sys
2015-03-12 15:29 - 2001-08-17 12:11 - 00025065 ____C (D-Link) C:\WINDOWS\system32\dllcache\lmndis3.sys
2015-03-12 15:28 - 2008-04-14 05:41 - 00253952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsusd.dll
2015-03-12 15:28 - 2008-04-14 05:41 - 00048640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsui.dll
2015-03-12 15:28 - 2008-04-14 05:39 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd106.dll
2015-03-12 15:28 - 2008-04-14 00:09 - 00014592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhid.sys
2015-03-12 15:28 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kousd.dll
2015-03-12 15:28 - 2001-08-17 22:36 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdjpn.dll
2015-03-12 15:28 - 2001-08-17 22:36 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkor.dll
2015-03-12 15:28 - 2001-08-17 12:12 - 00019016 ____C (Kingston Technology Company ) C:\WINDOWS\system32\dllcache\ktc111.sys
2015-03-12 15:27 - 2008-04-14 05:42 - 00151552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irftp.exe
2015-03-12 15:27 - 2008-04-14 05:41 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irmon.dll
2015-03-12 15:27 - 2008-04-14 00:24 - 00088192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irda.sys
2015-03-12 15:27 - 2008-04-14 00:10 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\intelide.sys
2015-03-12 15:27 - 2001-08-17 22:36 - 00090200 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8ports.dll
2015-03-12 15:27 - 2001-08-17 14:55 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101c.dll
2015-03-12 15:27 - 2001-08-17 14:55 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101b.dll
2015-03-12 15:27 - 2001-08-17 14:55 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd103.dll
2015-03-12 15:27 - 2001-08-17 13:51 - 00018688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irsir.sys
2015-03-12 15:27 - 2001-08-17 13:50 - 00038784 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8.sys
2015-03-12 15:27 - 2001-08-17 13:49 - 00026624 ____C (SigmaTel, Inc.) C:\WINDOWS\system32\dllcache\irstusb.sys
2015-03-12 15:27 - 2001-08-17 13:49 - 00023552 ____C (MKNet Corporation) C:\WINDOWS\system32\dllcache\irmk7.sys
2015-03-12 15:27 - 2001-08-17 13:47 - 00013056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inport.sys
2015-03-12 15:27 - 2001-08-17 12:12 - 00045632 ____C (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) C:\WINDOWS\system32\dllcache\ip5515.sys
2015-03-12 15:26 - 2001-08-17 22:36 - 00372824 ____C (Xircom) C:\WINDOWS\system32\dllcache\iconf32.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00091136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4com.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4ext.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5com.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5ext.dll
2015-03-12 15:26 - 2001-08-17 14:06 - 00154496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4usb.sys
2015-03-12 15:26 - 2001-08-17 14:06 - 00100992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5usb.sys
2015-03-12 15:26 - 2001-08-17 13:52 - 00016000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ini910u.sys
2015-03-12 15:25 - 2008-04-14 05:41 - 00702845 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\i81xdnt5.dll
2015-03-12 15:25 - 2008-04-14 05:41 - 00032285 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfcisp2.dll
2015-03-12 15:25 - 2008-04-14 00:11 - 00018560 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\i2omp.sys
2015-03-12 15:25 - 2008-04-14 00:11 - 00008576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\i2omgmt.sys
2015-03-12 15:25 - 2008-04-13 23:53 - 01041536 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfdpsp2.sys
2015-03-12 15:25 - 2008-04-13 23:53 - 00685056 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfcxts2.sys
2015-03-12 15:25 - 2008-04-13 23:53 - 00220032 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfbs2s2.sys
2015-03-12 15:25 - 2008-04-13 22:04 - 00161020 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\i81xnt5.sys
2015-03-12 15:25 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3ext.dll
2015-03-12 15:25 - 2001-08-17 22:34 - 00009216 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmsgnet.dll
2015-03-12 15:25 - 2001-08-17 14:56 - 00353184 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\i740dnt5.dll
2015-03-12 15:25 - 2001-08-17 14:06 - 00038528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ibmvcap.sys
2015-03-12 15:25 - 2001-08-17 14:05 - 00141056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3.sys
2015-03-12 15:25 - 2001-08-17 13:28 - 00488383 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_v124.sys
2015-03-12 15:25 - 2001-08-17 12:49 - 00058592 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\i740nt5.sys
2015-03-12 15:25 - 2001-08-17 12:12 - 00109085 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtrp.sys
2015-03-12 15:25 - 2001-08-17 12:12 - 00100936 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtok.sys
2015-03-12 15:25 - 2001-08-17 12:11 - 00028700 ____C (IBM Corp.) C:\WINDOWS\system32\dllcache\ibmexmp.sys
2015-03-12 15:24 - 2001-08-17 22:36 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hr1w.dll
2015-03-12 15:24 - 2001-08-17 22:36 - 00009759 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_inst.dll
2015-03-12 15:24 - 2001-08-17 13:52 - 00005760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpt4qic.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00542879 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_msft.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00391199 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_k56k.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00289887 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_fall.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00199711 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_faxx.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00150239 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_amos.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00115807 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_fsks.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00073279 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_spkp.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00067167 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_bsc2.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00057471 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_samp.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00050751 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_tone.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00044863 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_soar.sys
2015-03-12 15:23 - 2001-08-17 22:36 - 00324608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpojwia.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00165888 ____C () C:\WINDOWS\system32\dllcache\hpgt53.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00126976 ____C (Hewlett Packard) C:\WINDOWS\system32\dllcache\hpgt34tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt21tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00119296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpdigwia.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00101376 ____C () C:\WINDOWS\system32\dllcache\hpgt34.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00093696 ____C () C:\WINDOWS\system32\dllcache\hpgt42.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00089088 ____C () C:\WINDOWS\system32\dllcache\hpgt33.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00083968 ____C () C:\WINDOWS\system32\dllcache\hpgt21.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00068608 ____C (Avisioin) C:\WINDOWS\system32\dllcache\hpgt53tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt33tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgtmcro.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt42tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpsjmcro.dll
2015-03-12 15:23 - 2001-08-17 14:07 - 00025952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpn.sys
2015-03-12 15:22 - 2008-04-14 05:41 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidserv.dll
2015-03-12 15:22 - 2008-04-14 00:16 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbth.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gckernel.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00019200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidir.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00010624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00010368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidusb.sys
2015-03-12 15:22 - 2008-04-14 00:10 - 00028288 ____C (Gemplus) C:\WINDOWS\system32\dllcache\grserial.sys
2015-03-12 15:22 - 2008-04-14 00:06 - 00046464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gagp30kx.sys
2015-03-12 15:22 - 2008-04-14 00:06 - 00020352 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbatt.sys
2015-03-12 15:22 - 2001-08-17 14:56 - 01733120 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400d.dll
2015-03-12 15:22 - 2001-08-17 14:56 - 00470144 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200d.dll
2015-03-12 15:22 - 2001-08-17 14:02 - 00008576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidgame.sys
2015-03-12 15:22 - 2001-08-17 14:02 - 00002688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidswvd.sys
2015-03-12 15:22 - 2001-08-17 13:51 - 00082304 ____C (Gemplus) C:\WINDOWS\system32\dllcache\grclass.sys
2015-03-12 15:22 - 2001-08-17 13:51 - 00017408 ____C (Gemplus) C:\WINDOWS\system32\dllcache\gpr400.sys
2015-03-12 15:22 - 2001-08-17 13:28 - 00907456 ____C (Conexant) C:\WINDOWS\system32\dllcache\hcf_msft.sys
2015-03-12 15:22 - 2001-08-17 12:49 - 00322432 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400m.sys
2015-03-12 15:22 - 2001-08-17 12:49 - 00320384 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200m.sys
2015-03-12 15:22 - 2001-08-17 12:15 - 00454912 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fxusbase.sys
2015-03-12 15:21 - 2008-04-13 22:05 - 00034173 ____C (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\forehe.sys
2015-03-12 15:21 - 2003-03-24 16:52 - 00094208 ____C () C:\WINDOWS\system32\dllcache\fpencode.dll
2015-03-12 15:21 - 2003-03-24 16:52 - 00024632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmcgi.exe
2015-03-12 15:21 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmdll.dll
2015-03-12 15:21 - 2001-08-17 22:36 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fuusd.dll
2015-03-12 15:21 - 2001-08-17 22:36 - 00071680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fnfilter.dll
2015-03-12 15:21 - 2001-08-17 22:36 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
2015-03-12 15:21 - 2001-08-17 12:15 - 00455680 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fus2base.sys
2015-03-12 15:21 - 2001-08-17 12:15 - 00455296 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fusbbase.sys
2015-03-12 15:21 - 2001-08-17 12:15 - 00442240 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpnpbase.sys
2015-03-12 15:21 - 2001-08-17 12:14 - 00444416 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcibase.sys
2015-03-12 15:21 - 2001-08-17 12:14 - 00441728 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcmbase.sys
2015-03-12 15:21 - 2001-08-17 12:13 - 00027165 ____C (VIA Technologies, Inc. ) C:\WINDOWS\system32\dllcache\fetnd5.sys
2015-03-12 15:21 - 2001-08-17 12:12 - 00024618 ____C (NETGEAR) C:\WINDOWS\system32\dllcache\fa410nd5.sys
2015-03-12 15:21 - 2001-08-17 12:10 - 00022090 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\fem556n5.sys
2015-03-12 15:20 - 2008-04-13 22:06 - 00137088 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\essm2e.sys
2015-03-12 15:20 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunib.dll
2015-03-12 15:20 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuni.dll
2015-03-12 15:20 - 2001-08-17 22:36 - 00043008 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucm.dll
2015-03-12 15:20 - 2001-08-17 22:36 - 00034816 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimg.dll
2015-03-12 15:20 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exabyte2.sys
2015-03-12 15:20 - 2001-08-17 13:28 - 00595647 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56cvmp.sys
2015-03-12 15:20 - 2001-08-17 13:28 - 00594238 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56hpi.sys
2015-03-12 15:20 - 2001-08-17 13:28 - 00347550 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56tpi.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00174464 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es198x.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00072192 ____C (ESS Technology Inc.) C:\WINDOWS\system32\dllcache\es1969.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00063360 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\ess.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00040704 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1371mp.sys
2015-03-12 15:20 - 2001-08-17 12:12 - 00016998 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\ex10.sys
2015-03-12 15:20 - 2001-08-17 12:12 - 00016074 ____C (NETGEAR Corp.) C:\WINDOWS\system32\dllcache\fa312nd5.sys
2015-03-12 15:20 - 2001-08-17 12:11 - 00012362 ____C (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xi.sys
2015-03-12 15:20 - 2001-08-17 12:11 - 00011850 ____C (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xj.sys
2015-03-12 15:19 - 2001-08-17 22:36 - 00061952 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnloop.exe
2015-03-12 15:19 - 2001-08-17 22:36 - 00053248 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqndiag.exe
2015-03-12 15:19 - 2001-08-17 22:36 - 00051200 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnlogr.exe
2015-03-12 15:19 - 2001-08-17 13:53 - 00007296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\elmsmc.sys
2015-03-12 15:19 - 2001-08-17 13:50 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epcfw2k.sys
2015-03-12 15:19 - 2001-08-17 13:50 - 00114944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epstw2k.sys
2015-03-12 15:19 - 2001-08-17 13:46 - 00006400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\enum1394.sys
2015-03-12 15:19 - 2001-08-17 13:28 - 00241206 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656se5.sys
2015-03-12 15:19 - 2001-08-17 12:19 - 00283904 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
2015-03-12 15:19 - 2001-08-17 12:19 - 00037120 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1370mp.sys
2015-03-12 15:19 - 2001-08-17 12:17 - 00629952 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqn.sys
2015-03-12 15:19 - 2001-08-17 12:12 - 00018503 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\epro4.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00455199 ____C (3Com Corporation.) C:\WINDOWS\system32\dllcache\el985n51.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00171520 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el99xn51.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00153631 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xnd5.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00070174 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el98xn5.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00066591 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xbc5.sys
2015-03-12 15:19 - 2001-08-17 12:10 - 00025159 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\elnk3.sys
2015-03-12 15:19 - 2001-08-17 12:10 - 00019996 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\em556n4.sys
2015-03-12 15:18 - 2008-04-14 00:09 - 00206976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4.sys
2015-03-12 15:18 - 2001-08-17 14:07 - 00020192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpti2o.sys
2015-03-12 15:18 - 2001-08-17 13:47 - 00023808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4usb.sys
2015-03-12 15:18 - 2001-08-17 13:47 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4prt.sys
2015-03-12 15:18 - 2001-08-17 13:47 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4scan.sys
2015-03-12 15:18 - 2001-08-17 13:28 - 00634134 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656ct5.sys
2015-03-12 15:18 - 2001-08-17 12:20 - 00334208 ____C (Yamaha Corp.) C:\WINDOWS\system32\dllcache\ds1wdm.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e100b325.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00050719 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e1000nt5.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00028062 ____C (National Semiconductor Coproration) C:\WINDOWS\system32\dllcache\dp83820.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00019594 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e100isa4.sys
2015-03-12 15:18 - 2001-08-17 12:11 - 00077386 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656nd5.sys
2015-03-12 15:18 - 2001-08-17 12:11 - 00069194 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656cd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00069692 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el575nd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00055999 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el556nd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00044103 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el515.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00026141 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el589nd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00024653 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el574nd4.sys
2015-03-12 15:17 - 2008-04-14 00:10 - 00008320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlttape.sys
2015-03-12 15:17 - 2001-08-17 22:36 - 00614429 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiview.exe
2015-03-12 15:17 - 2001-08-17 22:36 - 00236060 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\ditrace.exe
2015-03-12 15:17 - 2001-08-17 22:36 - 00229462 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifwrk.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00159828 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digihlc.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00131156 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidbp.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00110621 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00102484 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiinf.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00065622 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00041046 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00038985 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvsu.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00037962 ____C () C:\WINDOWS\system32\dllcache\divaprop.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00031305 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvpp.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00029768 ____C () C:\WINDOWS\system32\dllcache\divasu.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00006729 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvci.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00006216 ____C () C:\WINDOWS\system32\dllcache\divaci.dll
2015-03-12 15:17 - 2001-08-17 12:17 - 00090525 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifep5.sys
2015-03-12 15:17 - 2001-08-17 12:17 - 00042432 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.sys
2015-03-12 15:17 - 2001-08-17 12:14 - 00952007 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\diwan.sys
2015-03-12 15:17 - 2001-08-17 12:14 - 00021606 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.sys
2015-03-12 15:17 - 2001-08-17 12:13 - 00103044 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidxb.sys
2015-03-12 15:17 - 2001-08-17 12:13 - 00091305 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\dimaint.sys
2015-03-12 15:17 - 2001-08-17 12:13 - 00037735 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.sys
2015-03-12 15:17 - 2001-08-17 12:11 - 00029696 ____C (CNet Technology, Inc. ) C:\WINDOWS\system32\dllcache\dm9pci5.sys
2015-03-12 15:17 - 2001-08-17 12:11 - 00026698 ____C (D-Link Corporation) C:\WINDOWS\system32\dllcache\dlh5xnd5.sys
2015-03-12 15:16 - 2008-04-13 22:06 - 00048640 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwrwdm.sys
2015-03-12 15:16 - 2001-08-17 22:36 - 00419357 ____C (Digi International) C:\WINDOWS\system32\dllcache\dgconfig.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00256512 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00110592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc260usd.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc240usd.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00080896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210usd.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyycoins.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzports.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyports.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00027136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzcoins.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210_32.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00024064 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
2015-03-12 15:16 - 2001-08-17 13:52 - 00179584 ____C (Mylex Corporation) C:\WINDOWS\system32\dllcache\dac2w2k.sys
2015-03-12 15:16 - 2001-08-17 13:52 - 00014720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dac960nt.sys
2015-03-12 15:16 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddsmc.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyport.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00049792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzport.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00017152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclad-z.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclom-y.sys
2015-03-12 15:16 - 2001-08-17 12:19 - 00093952 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcwdm.sys
2015-03-12 15:16 - 2001-08-17 12:17 - 00029531 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\dgapci.sys
2015-03-12 15:16 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\d100ib5.sys
2015-03-12 15:16 - 2001-08-17 12:12 - 00063208 ____C (Intel Corporation.) C:\WINDOWS\system32\dllcache\dc21x4.sys
2015-03-12 15:16 - 2001-08-17 12:11 - 00024649 ____C (D-Link) C:\WINDOWS\system32\dllcache\dfe650d.sys
2015-03-12 15:16 - 2001-08-17 12:11 - 00024648 ____C (D-Link) C:\WINDOWS\system32\dllcache\dfe650.sys
2015-03-12 15:16 - 2001-08-17 12:11 - 00020928 ____C (Digital Networks, LLC) C:\WINDOWS\system32\dllcache\defpa.sys
2015-03-12 15:15 - 2008-04-14 05:41 - 00249856 ____C (Comtrol® Corporation) C:\WINDOWS\system32\dllcache\ctmasetp.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00216064 ____C (COMPAQ Inc.) C:\WINDOWS\system32\dllcache\cpscan.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00175104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\csamsp.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnusd.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00004096 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
2015-03-12 15:15 - 2001-08-17 14:56 - 00170880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546x.dll
2015-03-12 15:15 - 2001-08-17 14:56 - 00111232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl5465.dll
2015-03-12 15:15 - 2001-08-17 14:56 - 00091264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.dll
2015-03-12 15:15 - 2001-08-17 14:02 - 00272640 ____C (RAVISENT Technologies Inc.) C:\WINDOWS\system32\dllcache\cinemclc.sys
2015-03-12 15:15 - 2001-08-17 13:57 - 00248064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546xm.sys
2015-03-12 15:15 - 2001-08-17 13:57 - 00045696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.sys
2015-03-12 15:15 - 2001-08-17 13:52 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cpqarray.sys
2015-03-12 15:15 - 2001-08-17 13:51 - 00020736 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\cmbp0wdm.sys
2015-03-12 15:15 - 2001-08-17 13:51 - 00006656 ____C (CMD Technology, Inc.) C:\WINDOWS\system32\dllcache\cmdide.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00111872 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcspud.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00096256 ____C (Copyright © Creative Technology Ltd. 1994-2001) C:\WINDOWS\system32\dllcache\ctlsb16.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00072832 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbwdm.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00042112 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\crtaud.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00006912 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003712 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003584 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcosnt5.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbmidi.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbase.sys
2015-03-12 15:15 - 2001-08-17 12:13 - 00021533 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\cpqndis5.sys
2015-03-12 15:15 - 2001-08-17 12:11 - 00060970 ____C (Compaq Computer Corp.) C:\WINDOWS\system32\dllcache\cpqtrnd5.sys
2015-03-12 15:15 - 2001-08-17 12:11 - 00039936 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\cnxt1803.sys
2015-03-12 15:14 - 2008-04-14 05:41 - 00121856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.dll
2015-03-12 15:14 - 2008-04-14 05:41 - 00015423 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\ch7xxnt5.dll
2015-03-12 15:14 - 2008-04-14 00:11 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\changer.sys
2015-03-12 15:14 - 2001-08-17 22:37 - 00244224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.ax
2015-03-12 15:14 - 2001-08-17 22:37 - 00116736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.ax
2015-03-12 15:14 - 2001-08-17 22:37 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.ax
2015-03-12 15:14 - 2001-08-17 22:36 - 00236032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.dll
2015-03-12 15:14 - 2001-08-17 22:36 - 00074240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.dll
2015-03-12 15:14 - 2001-08-17 22:36 - 00032256 ____C (Eicon Technology Corporation) C:\WINDOWS\system32\dllcache\diapi2NT.dll
2015-03-12 15:14 - 2001-08-17 14:05 - 00314752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdro21.sys
2015-03-12 15:14 - 2001-08-17 14:04 - 00223232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv21.sys
2015-03-12 15:14 - 2001-08-17 14:04 - 00171264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv30.sys
2015-03-12 15:14 - 2001-08-17 13:52 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cd20xrnt.sys
2015-03-12 15:14 - 2001-08-17 13:28 - 00714698 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cbmdmkxx.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00980034 ____C (Xircom) C:\WINDOWS\system32\dllcache\cicap.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00164923 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\diapi2.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00049182 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem56n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00046108 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cben5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00027164 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce3n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem33n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem28n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00021530 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce2n5.sys
2015-03-12 15:14 - 2001-08-17 12:12 - 00039680 ____C (Silicom Ltd.) C:\WINDOWS\system32\dllcache\cb325.sys
2015-03-12 15:14 - 2001-08-17 12:12 - 00037916 ____C (Fast Ethernet Controller Provider) C:\WINDOWS\system32\dllcache\cb102.sys
2015-03-12 15:13 - 2008-04-14 05:42 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdaplgin.ax
2015-03-12 15:13 - 2008-04-14 00:21 - 00101120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthpan.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00037888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthmodem.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00036480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthprint.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthusb.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthenum.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00011776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdasup.sys
2015-03-12 15:13 - 2001-08-17 22:36 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\binlsvc.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00081408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brmfcwia.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00041472 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfusb.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00032256 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfrsmg.exe
2015-03-12 15:13 - 2001-08-17 22:36 - 00029696 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmflpt.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00019456 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brbidiif.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00015360 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfbidi.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00012800 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brevif.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brserif.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brcoinst.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00005120 ____C (Brother Industries,Ltd.) C:\WINDOWS\system32\dllcache\brscnrsm.dll
2015-03-12 15:13 - 2001-08-17 13:51 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bulltlp3.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00060416 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brserwdm.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00039552 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparwdm.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00012160 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltlo.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00011008 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbmdm.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00010368 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbscn.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00003968 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltup.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00003168 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparimg.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00002944 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brfilt.sys
2015-03-12 15:13 - 2001-08-17 12:11 - 00031529 ____C (BreezeCOM) C:\WINDOWS\system32\dllcache\brzwlan.sys
2015-03-12 15:12 - 2008-04-14 05:42 - 00023040 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativmvxx.ax
2015-03-12 15:12 - 2008-04-14 05:42 - 00009728 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativdaxx.ax
2015-03-12 15:12 - 2008-04-14 05:41 - 00516768 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ativvaxx.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00032768 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativtmxx.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00025471 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv04nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00021183 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv01nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00017279 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv10nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00014143 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv06nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00011359 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv02nt5.dll
2015-03-12 15:12 - 2008-04-14 00:16 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avc.sys
2015-03-12 15:12 - 2008-04-14 00:16 - 00013696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcstrm.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00104960 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinrvxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00073216 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atintuxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00063488 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinxsxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00057856 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinbtxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00052224 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinraxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00031744 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinxbxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00028672 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinsnxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00014336 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinpdxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00013824 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinttxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00013824 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinmdxx.sys
2015-03-12 15:12 - 2001-08-17 22:36 - 00144384 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmenum.dll
2015-03-12 15:12 - 2001-08-17 22:36 - 00087552 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmcoxp.dll
2015-03-12 15:12 - 2001-08-17 14:56 - 00342336 ____C (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.dll
2015-03-12 15:12 - 2001-08-17 14:56 - 00104832 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiraged.dll
2015-03-12 15:12 - 2001-08-17 14:01 - 00036096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcaudio.sys
2015-03-12 15:12 - 2001-08-17 13:28 - 00871388 ____C (BCM) C:\WINDOWS\system32\dllcache\bcmdm.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00075136 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpae.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00049920 ____C () C:\WINDOWS\system32\dllcache\atirtcap.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00026880 ____C () C:\WINDOWS\system32\dllcache\atirtsnd.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00026624 ____C () C:\WINDOWS\system32\dllcache\ativxbar.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00023552 ____C () C:\WINDOWS\system32\dllcache\atixbar.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00019456 ____C () C:\WINDOWS\system32\dllcache\ativttxx.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00017152 ____C () C:\WINDOWS\system32\dllcache\atitvsnd.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00017152 ____C () C:\WINDOWS\system32\dllcache\atitunep.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00010240 ____C () C:\WINDOWS\system32\dllcache\atipcxxx.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00009472 ____C () C:\WINDOWS\system32\dllcache\ativmdcd.sys
2015-03-12 15:12 - 2001-08-17 12:48 - 00281600 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimtai.sys
2015-03-12 15:12 - 2001-08-17 12:48 - 00070528 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiragem.sys
2015-03-12 15:12 - 2001-08-17 12:48 - 00036128 ____C (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.sys
2015-03-12 15:12 - 2001-08-17 12:19 - 00036992 ____C (Aztech Systems Ltd) C:\WINDOWS\system32\dllcache\aztw2320.sys
2015-03-12 15:12 - 2001-08-17 12:13 - 00089952 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\b1cbase.sys
2015-03-12 15:12 - 2001-08-17 12:13 - 00037568 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmwan.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00096640 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\b57xp32.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00066557 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42u.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00054271 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42xx5.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00026568 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm4e5.sys
2015-03-12 15:11 - 2008-04-14 05:41 - 01888992 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3duag.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00870784 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3d1ag.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00377984 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvaa.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00229376 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2cqag.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00201728 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvag.dll
2015-03-12 15:11 - 2008-04-14 00:06 - 00043008 ____C (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\dllcache\amdagp.sys
2015-03-12 15:11 - 2008-04-14 00:06 - 00042752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\alim1541.sys
2015-03-12 15:11 - 2008-04-13 22:05 - 00036224 ____C (ADMtek Incorporated.) C:\WINDOWS\system32\dllcache\an983.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00701440 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtag.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00327040 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtaa.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00063663 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1rvxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00056623 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1btxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00036463 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1tuxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00034735 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1xsxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00030671 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1raxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00029455 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1xbxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00026367 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1snxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00021343 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1ttxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00012047 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1pdxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00011615 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1mdxx.sys
2015-03-12 15:11 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
2015-03-12 15:11 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atievxx.exe
2015-03-12 15:11 - 2001-08-17 14:56 - 00268160 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidvai.dll
2015-03-12 15:11 - 2001-08-17 14:56 - 00137216 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrae.dll
2015-03-12 15:11 - 2001-08-17 14:55 - 00382592 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrab.dll
2015-03-12 15:11 - 2001-08-17 14:55 - 00096128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ati.dll
2015-03-12 15:11 - 2001-08-17 14:07 - 00056960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aic78xx.sys
2015-03-12 15:11 - 2001-08-17 14:07 - 00055168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aic78u2.sys
2015-03-12 15:11 - 2001-08-17 13:57 - 00077568 ____C (ATI Technologies, Inc.) C:\WINDOWS\system32\dllcache\ati.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00026496 ____C (Advanced System Products, Inc.) C:\WINDOWS\system32\dllcache\asc.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00022400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asc3350p.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aha154x.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00012032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\amsint.sys
2015-03-12 15:11 - 2001-08-17 13:51 - 00014848 ____C (Advanced System Products, Inc.) C:\WINDOWS\system32\dllcache\asc3550.sys
2015-03-12 15:11 - 2001-08-17 13:51 - 00005248 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\aliide.sys
2015-03-12 15:11 - 2001-08-17 13:49 - 00026624 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\alifir.sys
2015-03-12 15:11 - 2001-08-17 13:47 - 00006272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\apmbatt.sys
2015-03-12 15:11 - 2001-08-17 12:49 - 00046464 ____C () C:\WINDOWS\system32\dllcache\atibt829.sys
2015-03-12 15:11 - 2001-08-17 12:48 - 00289664 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpab.sys
2015-03-12 15:11 - 2001-08-17 12:12 - 00097354 ____C (Bay Networks, Inc.) C:\WINDOWS\system32\dllcache\aspndis3.sys
2015-03-12 15:11 - 2001-08-17 12:11 - 00027678 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ali5261.sys
2015-03-12 15:11 - 2001-08-17 12:11 - 00016969 ____C (AmbiCom, Inc.) C:\WINDOWS\system32\dllcache\amb8002.sys
2015-03-12 15:10 - 2008-04-14 05:41 - 00004255 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv01nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003967 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv02nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003775 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv11nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003711 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv09nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003647 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv07nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003615 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv05nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003135 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv08nt5.dll
2015-03-12 15:10 - 2008-04-14 00:16 - 00053376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394bus.sys
2015-03-12 15:10 - 2008-04-14 00:16 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\61883.sys
2015-03-12 15:10 - 2008-04-14 00:10 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\4mmdat.sys
2015-03-12 15:10 - 2008-04-14 00:06 - 00044928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agpcpq.sys
2015-03-12 15:10 - 2008-04-14 00:06 - 00042368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agp440.sys
2015-03-12 15:10 - 2008-04-13 22:06 - 00231552 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ac97ali.sys
2015-03-12 15:10 - 2008-04-13 22:06 - 00084480 ____C (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\ac97via.sys
2015-03-12 15:10 - 2008-04-13 22:06 - 00010880 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\admjoy.sys
2015-03-12 15:10 - 2001-08-17 22:37 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agcgauge.ax
2015-03-12 15:10 - 2001-08-17 22:36 - 00462848 ____C (Aureal Inc.) C:\WINDOWS\system32\dllcache\a3dapi.dll
2015-03-12 15:10 - 2001-08-17 22:36 - 00098304 ____C (Aureal Semiconductor) C:\WINDOWS\system32\dllcache\a3d.dll
2015-03-12 15:10 - 2001-08-17 22:36 - 00061440 ____C (Color Flatbed Scanner) C:\WINDOWS\system32\dllcache\acerscad.dll
2015-03-12 15:10 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
2015-03-12 15:10 - 2001-08-17 14:55 - 00689216 ____C (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvs.dll
2015-03-12 15:10 - 2001-08-17 14:55 - 00038400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\8514a.dll
2015-03-12 15:10 - 2001-08-17 14:07 - 00101888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adpu160m.sys
2015-03-12 15:10 - 2001-08-17 14:06 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394vdbg.sys
2015-03-12 15:10 - 2001-08-17 13:53 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adicvls.sys
2015-03-12 15:10 - 2001-08-17 13:52 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\abp480n5.sys
2015-03-12 15:10 - 2001-08-17 13:28 - 00762780 ____C (3Com, Inc.) C:\WINDOWS\system32\dllcache\3cwmcru.sys
2015-03-12 15:10 - 2001-08-17 12:48 - 00148352 ____C (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvsm.sys
2015-03-12 15:10 - 2001-08-17 12:20 - 00297728 ____C (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\dllcache\ac97sis.sys
2015-03-12 15:10 - 2001-08-17 12:20 - 00096256 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\ac97intc.sys
2015-03-12 15:10 - 2001-08-17 12:19 - 00747392 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8830.sys
2015-03-12 15:10 - 2001-08-17 12:19 - 00584448 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8810.sys
2015-03-12 15:10 - 2001-08-17 12:19 - 00553984 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8820.sys
2015-03-12 15:10 - 2001-08-17 12:11 - 00046112 ____C (Adaptec, Inc ) C:\WINDOWS\system32\dllcache\adptsf50.sys
2015-03-12 15:10 - 2001-08-17 12:11 - 00020160 ____C (ADMtek Incorporated) C:\WINDOWS\system32\dllcache\adm8511.sys
2015-03-12 15:09 - 2004-05-13 00:39 - 00876653 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awel.dll
2015-03-12 15:09 - 2004-05-13 00:39 - 00598071 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmc.dll
2015-03-12 15:09 - 2004-05-13 00:39 - 00184435 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4amsft.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00208896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmcsat.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00188494 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpcount.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00147513 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4apws.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00109328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98swin.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00102509 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4atxt.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00082035 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4anscp.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00049212 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awebs.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00049210 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4areg.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00041020 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avnb.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00032827 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptest.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00032826 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avss.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpexedll.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00020538 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpremadm.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00020536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00016437 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptsat.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00014608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98sadm.exe
2015-03-12 15:09 - 2001-08-17 14:56 - 00066048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.dll
2015-03-12 15:08 - 2003-03-24 16:52 - 00188480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgwiz.exe
2015-03-12 15:08 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.dll
2015-03-12 15:08 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.dll
2015-03-12 15:08 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.exe
2015-03-12 15:08 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.exe
2015-03-12 14:33 - 2015-03-12 14:33 - 00000000 ____D () C:\Documents and Settings\NetworkService\Start Menu\Programs\Accessories
2015-03-12 14:25 - 2015-03-12 16:42 - 00015026 _____ () C:\WINDOWS\bitssetup.log
2015-03-12 14:24 - 2015-03-12 16:25 - 00001114 _____ () C:\WINDOWS\Windows Update.log
2015-03-12 14:12 - 2015-03-12 14:12 - 00000000 ____D () C:\RegBackup
2015-03-12 14:10 - 2015-03-12 14:10 - 00001823 _____ () C:\Documents and Settings\N310\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2015-03-12 11:34 - 2015-03-12 11:34 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Tweaking.com
2015-03-12 11:06 - 2015-03-12 11:06 - 00000000 ____D () C:\Program Files\Tweaking.com
2015-03-12 10:59 - 2015-03-12 10:59 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031215-01.dmp
2015-03-12 10:45 - 2015-03-12 10:45 - 11755088 _____ () C:\Documents and Settings\N310\Desktop\tweaking.com_windows_repair_aio_setup.exe
2015-03-11 17:50 - 2015-03-13 20:57 - 00000000 ____D () C:\AdwCleaner
2015-03-11 17:41 - 2015-03-11 10:38 - 02171392 _____ () C:\Documents and Settings\N310\Desktop\AdwCleaner.exe
2015-03-11 17:13 - 2015-03-13 20:44 - 00000000 ____D () C:\Documents and Settings\N310\Desktop\BC response
2015-03-11 16:05 - 2015-03-12 12:32 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2015-03-11 15:53 - 2015-03-12 12:32 - 00000000 ____D () C:\Documents and Settings\N310\Desktop\mbar
2015-03-11 15:51 - 2015-03-11 10:37 - 16502728 _____ (Malwarebytes Corp.) C:\Documents and Settings\N310\Desktop\mbar-1.09.1.1004.exe
2015-03-11 15:38 - 2015-03-11 15:38 - 00000814 _____ () C:\Documents and Settings\N310\Start Menu\Programs\Internet Explorer.lnk
2015-03-11 15:33 - 2015-03-11 15:32 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031115-03.dmp
2015-03-11 15:20 - 2015-03-11 15:20 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031115-02.dmp
2015-03-11 11:13 - 2015-03-11 10:35 - 00852604 _____ () C:\Documents and Settings\N310\Desktop\SecurityCheck.exe
2015-03-11 11:04 - 2015-03-11 10:35 - 00852604 _____ () C:\Documents and Settings\Administrator\My Documents\SecurityCheck.exe
2015-03-11 11:01 - 2015-03-11 11:01 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031115-01.dmp
2015-03-11 10:38 - 2015-03-11 10:38 - 02171392 _____ () C:\Documents and Settings\Administrator\Desktop\AdwCleaner.exe
2015-03-11 10:37 - 2015-03-11 10:37 - 16502728 _____ (Malwarebytes Corp.) C:\Documents and Settings\Administrator\Desktop\mbar-1.09.1.1004.exe
2015-03-11 10:35 - 2015-03-11 10:35 - 00852604 _____ () C:\Documents and Settings\Administrator\Desktop\SecurityCheck.exe
2015-03-10 12:05 - 2015-03-14 16:48 - 00000000 ____D () C:\FRST
2015-03-10 11:58 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\Administrator\Desktop\FRST.exe
2015-03-06 20:33 - 2015-03-06 20:33 - 00106496 _____ () C:\WINDOWS\Minidump\Mini030615-02.dmp
2015-03-06 20:20 - 2015-03-06 20:20 - 00005384 _____ () C:\Documents and Settings\N310\Desktop\Rkill.txt
2015-03-06 20:14 - 2015-03-06 20:14 - 00110592 _____ () C:\WINDOWS\Minidump\Mini030615-01.dmp
2015-03-06 20:01 - 2015-03-06 20:01 - 00013218 _____ () C:\Documents and Settings\N310\Desktop\Rkill 4.txt
2015-03-06 16:26 - 2015-03-06 16:43 - 00035118 _____ () C:\Documents and Settings\N310\Desktop\Rkill 3.txt
2015-03-03 07:06 - 2015-03-03 07:06 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Application Data\Symantec
2015-03-02 23:27 - 2015-03-02 23:26 - 00110592 _____ () C:\WINDOWS\Minidump\Mini030215-01.dmp
2015-03-02 12:57 - 2015-03-02 12:57 - 00000000 ____D () C:\Documents and Settings\N310\Application Data\AVAST Software
2015-03-02 12:50 - 2015-03-02 12:50 - 00000000 ____D () C:\WINDOWS\jumpshot.com
2015-03-02 11:17 - 2015-03-02 11:17 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\AVAST Software
2015-03-02 11:10 - 2015-03-02 11:10 - 00001742 _____ () C:\Documents and Settings\All Users\Desktop\Avast Free Antivirus.lnk
2015-03-02 11:10 - 2015-03-02 11:10 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\AVAST Software
2015-03-02 11:09 - 2015-03-14 16:43 - 00000312 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-03-02 11:09 - 2015-03-02 11:09 - 00422760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe
2015-03-02 11:09 - 2015-03-02 11:09 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys
2015-03-02 11:09 - 2015-03-02 11:09 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr
2015-03-02 11:09 - 2015-03-02 11:09 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys
2015-03-02 11:09 - 2015-03-02 11:08 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys
2015-03-02 11:01 - 2015-03-02 11:01 - 00000000 ____D () C:\Program Files\AVAST Software
2015-03-02 10:13 - 2015-03-02 10:14 - 00000000 ____D () C:\sfzone_profile
2015-03-02 08:45 - 2015-03-02 08:45 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2015-02-28 10:13 - 2015-02-28 10:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Temp
2015-02-28 09:43 - 2015-03-02 11:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2015-02-24 20:57 - 2015-02-24 20:57 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Symantec

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-14 16:52 - 2012-01-18 14:26 - 00000420 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{8974E1E2-AB23-45FC-91FA-981FDC2E1561}.job
2015-03-14 16:51 - 2010-02-04 17:53 - 00000000 ____D () C:\Documents and Settings\N310\Local Settings\Temp
2015-03-14 16:45 - 2009-11-18 23:25 - 01318104 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-14 16:44 - 2009-11-19 14:44 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-03-14 16:43 - 2015-01-29 09:44 - 00000238 ____H () C:\WINDOWS\Tasks\olkqvqf.job
2015-03-14 16:43 - 2009-11-18 23:28 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-14 16:43 - 2009-11-18 15:23 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-03-14 16:43 - 2009-11-18 15:23 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-03-14 16:41 - 2015-02-08 16:52 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2015-03-14 16:41 - 2015-02-06 21:17 - 00458752 _____ () C:\WINDOWS\system32\config\Symantec.evt
2015-03-14 16:41 - 2010-02-04 17:53 - 00000178 ___SH () C:\Documents and Settings\N310\ntuser.ini
2015-03-14 16:36 - 2015-02-08 16:52 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2015-03-14 16:34 - 2009-11-18 23:28 - 00032090 _____ () C:\WINDOWS\SchedLgU.Txt
2015-03-14 16:31 - 2015-02-05 22:26 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-14 15:32 - 2010-09-04 11:25 - 00000000 ___HD () C:\Documents and Settings\All Users\Application Data\Symantec
2015-03-14 15:10 - 2010-02-04 17:53 - 00056592 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-03-13 22:53 - 2010-01-17 15:44 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt
2015-03-13 22:47 - 2011-01-13 13:14 - 00002193 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Safari.lnk
2015-03-13 22:43 - 2015-02-06 21:17 - 00142936 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2015-03-13 22:43 - 2015-02-06 21:17 - 00008194 _____ () C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2015-03-13 22:41 - 2015-02-06 21:16 - 00424288 _____ (Symantec Corporation) C:\WINDOWS\system32\SymVPN.dll
2015-03-13 22:41 - 2015-02-06 21:16 - 00139104 _____ (Symantec Corporation) C:\WINDOWS\system32\FwsVpn.dll
2015-03-13 22:41 - 2015-02-06 21:16 - 00131176 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SysPlant.sys
2015-03-13 22:41 - 2015-02-06 21:16 - 00031648 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\WGX.SYS
2015-03-13 22:41 - 2015-02-06 21:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Symantec Endpoint Protection
2015-03-13 22:01 - 2009-11-18 15:21 - 01064135 _____ () C:\WINDOWS\setupapi.log
2015-03-12 21:36 - 2010-09-03 23:52 - 00000000 ____D () C:\Documents and Settings\N310\Local Settings\Application Data\Temp
2015-03-12 21:24 - 2009-11-18 15:21 - 00580516 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-12 16:49 - 2009-11-18 15:21 - 00227208 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-12 16:48 - 2009-11-19 00:15 - 00004332 ____C () C:\WINDOWS\COM+.log
2015-03-12 16:44 - 2009-11-18 23:24 - 00000000 ____D () C:\WINDOWS\Registration
2015-03-12 16:38 - 2009-11-18 23:28 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-03-12 16:38 - 2009-11-18 23:26 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2015-03-12 16:38 - 2009-11-18 23:26 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2015-03-12 14:33 - 2009-11-18 23:28 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-03-12 12:33 - 2015-02-09 16:05 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-12 10:59 - 2011-01-09 14:31 - 00000000 ____D () C:\WINDOWS\Minidump
2015-03-11 15:38 - 2009-11-18 23:23 - 00064290 _____ () C:\WINDOWS\wmsetup.log
2015-02-28 09:43 - 2015-02-08 16:52 - 00056592 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-02-28 08:13 - 2010-09-04 00:48 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2015-02-25 05:47 - 2015-01-29 09:43 - 00000000 ____D () C:\WINDOWS\FrameworkUpdate

==================== Files in the root of some directories =======

2004-09-10 10:40 - 2004-09-10 10:40 - 0075264 _____ (Microsoft Corporation) C:\Program Files\DECCHECK.exe
2004-09-10 10:40 - 2004-09-10 10:40 - 0002688 _____ () C:\Program Files\eula.TXT.wqvksgj
2015-01-29 10:22 - 2015-01-29 10:22 - 0008554 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.HTML
2015-01-29 10:22 - 2015-01-29 10:22 - 0045663 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.PNG
2015-01-29 10:22 - 2015-01-29 10:22 - 0004220 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.TXT
2015-01-29 10:22 - 2015-01-29 10:22 - 0000276 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.URL
2010-09-05 13:10 - 2013-03-05 19:19 - 0001386 _____ () C:\Documents and Settings\N310\Application Data\Rim.Desktop.Exception.log
2010-09-05 12:55 - 2013-02-21 23:08 - 0003679 ____C () C:\Documents and Settings\N310\Application Data\Rim.Desktop.HttpServerSetup.log
2011-10-15 22:10 - 2013-03-05 19:19 - 0000539 _____ () C:\Documents and Settings\N310\Application Data\Rim.DesktopHelper.Exception.log
2013-03-05 19:06 - 2013-03-05 19:19 - 0000077 _____ () C:\Documents and Settings\N310\Application Data\Rim.Transcoder.Exception.log
2010-02-06 11:56 - 2010-02-06 11:56 - 0000000 ____C () C:\Documents and Settings\N310\Application Data\wklnhst.dat
2015-01-29 09:43 - 2015-01-29 09:43 - 0000480 ____H () C:\Documents and Settings\N310\Application Data\麽鎒駓覜
2010-07-12 17:31 - 2014-04-22 15:48 - 0082432 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-29 10:36 - 2015-01-29 10:36 - 0008554 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.HTML
2015-01-29 10:36 - 2015-01-29 10:36 - 0045663 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.PNG
2015-01-29 10:36 - 2015-01-29 10:36 - 0004220 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-01-29 10:36 - 2015-01-29 10:36 - 0000276 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.URL
2015-01-29 10:20 - 2015-01-29 10:20 - 0008554 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.HTML
2015-01-29 10:20 - 2015-01-29 10:20 - 0045663 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.PNG
2015-01-29 10:20 - 2015-01-29 10:20 - 0004220 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.TXT
2015-01-29 10:20 - 2015-01-29 10:20 - 0000276 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.URL

Some content of TEMP:
====================
C:\Documents and Settings\N310\Local Settings\Temp\afvbsw.exe
C:\Documents and Settings\N310\Local Settings\Temp\agtkxrhj.exe
C:\Documents and Settings\N310\Local Settings\Temp\aycyyp.exe
C:\Documents and Settings\N310\Local Settings\Temp\capibridge.dll
C:\Documents and Settings\N310\Local Settings\Temp\cmjtwm.exe
C:\Documents and Settings\N310\Local Settings\Temp\cynrm.exe
C:\Documents and Settings\N310\Local Settings\Temp\difxapi.dll
C:\Documents and Settings\N310\Local Settings\Temp\erudy.exe
C:\Documents and Settings\N310\Local Settings\Temp\exhug.exe
C:\Documents and Settings\N310\Local Settings\Temp\fhpywf.exe
C:\Documents and Settings\N310\Local Settings\Temp\frsghe.exe
C:\Documents and Settings\N310\Local Settings\Temp\gamad.exe
C:\Documents and Settings\N310\Local Settings\Temp\howcoagk.exe
C:\Documents and Settings\N310\Local Settings\Temp\hpqrrx08.exe
C:\Documents and Settings\N310\Local Settings\Temp\hpzmsi01.exe
C:\Documents and Settings\N310\Local Settings\Temp\hpzscr01.EXE
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u15-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u17-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u21-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u25-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u45-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u55-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\jre-7u65-windows-i586-iftw.exe
C:\Documents and Settings\N310\Local Settings\Temp\mgtbjv.exe
C:\Documents and Settings\N310\Local Settings\Temp\MSNDA.exe
C:\Documents and Settings\N310\Local Settings\Temp\nicpyanw.exe
C:\Documents and Settings\N310\Local Settings\Temp\npghxfc.exe
C:\Documents and Settings\N310\Local Settings\Temp\ouobphk.exe
C:\Documents and Settings\N310\Local Settings\Temp\ozevazvo.exe
C:\Documents and Settings\N310\Local Settings\Temp\pjwouod.exe
C:\Documents and Settings\N310\Local Settings\Temp\pkcs11smime.dll
C:\Documents and Settings\N310\Local Settings\Temp\pzbcq.exe
C:\Documents and Settings\N310\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\N310\Local Settings\Temp\SkypeSetup.exe
C:\Documents and Settings\N310\Local Settings\Temp\sqlite3.dll
C:\Documents and Settings\N310\Local Settings\Temp\sxtae.exe
C:\Documents and Settings\N310\Local Settings\Temp\taenbr.exe
C:\Documents and Settings\N310\Local Settings\Temp\trrxzg.exe
C:\Documents and Settings\N310\Local Settings\Temp\wnajl.exe
C:\Documents and Settings\N310\Local Settings\Temp\wnidawl.exe
C:\Documents and Settings\N310\Local Settings\Temp\xwswybv.exe
C:\Documents and Settings\N310\Local Settings\Temp\xyrrzj.exe
C:\Documents and Settings\N310\Local Settings\Temp\yjjie.exe
C:\Documents and Settings\N310\Local Settings\Temp\yyexnmss.exe

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================

 

 

Addition:

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 10-03-2015
Ran by N310 at 2015-03-14 16:54:02
Running from C:\Documents and Settings\N310\Desktop
Boot Mode: Normal
==========================================================

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)

AV: avast! Antivirus (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
AV: Symantec Endpoint Protection (Enabled - Up to date) {FB06448E-52B8-493A-90F3-E43226D3305C}
FW: Symantec Endpoint Protection (Disabled) {BE898FE3-CD0B-4014-85A9-03DB9923DDB6}

==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

32 Bit HP CIO Components Installer (Version: 7.1.8 - Hewlett-Packard) Hidden
470_Help (Version: 1.00.0000 - Hewlett-Packard) Hidden
470_Readme (Version: 1.00.0000 - Hewlett-Packard) Hidden
7500_7600_7700_Help1 (Version: 1.00.0000 - Hewlett-Packard) Hidden
Acrobat.com (HKLM\...\{287ECFA4-719A-2143-A09B-D6A12DE54E40}) (Version: 1.6.65 - Adobe Systems Incorporated)
ActivClient CAC x86 (HKLM\...\{1BE8806A-84F8-4655-A381-0D5524430944}) (Version: 6.2 - ActivIdentity)
Adobe AIR (HKLM\...\Adobe AIR) (Version: 1.5.0.7220 - Adobe Systems Inc.)
Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.77 - Adobe Systems Incorporated)
Adobe Flash Player 16 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 16.0.0.296 - Adobe Systems Incorporated)
Adobe Reader XI (11.0.08) (HKLM\...\{AC76BA86-7AD7-1033-7B44-AB0000000001}) (Version: 11.0.08 - Adobe Systems Incorporated)
AiO_Scan (Version: 43.0.217.000 - Hewlett-Packard) Hidden
A-PDF Scan Optimizer (HKLM\...\A-PDF Scan Optimizer_is1) (Version:  - A-PDF Solution)
Apple Application Support (HKLM\...\{83CAF0DE-8D3B-4C37-A631-2B8F16EC3031}) (Version: 3.1 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{235EBB33-3DA1-46DF-AADE-9955123409CB}) (Version: 8.0.5.6 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Atheros Client Utility (HKLM\...\{16E8BF9A-B419-4A44-A020-30F8CFB84B9D}) (Version:  - Atheros)
Atheros Driver Installation Program (HKLM\...\{C3A32068-8AB1-4327-BB16-BED9C6219DC7}) (Version: 5.2 - Atheros)
Avast Free Antivirus (HKLM\...\Avast) (Version: 10.0.2208 - AVAST Software)
Bejeweled 2 Deluxe (Version: 2.2.0.82 - WildTangent) Hidden
BlackBerry Desktop Software 7.1 (HKLM\...\BlackBerry_Desktop) (Version: 7.1.0.37 - Research In Motion Ltd.)
BlackBerry Desktop Software 7.1 (Version: 7.1.0.37 - Research In Motion Ltd.) Hidden
Blackhawk Striker 2 (Version: 2.2.0.82 - WildTangent) Hidden
Bombardier SmartPubs Desktop Viewer Version 3 (HKLM\...\InstallShield_{599C950C-72C0-41B7-8451-B1A4611F8385}) (Version: 3.0.8 - Bombardier)
Bombardier SmartPubs Desktop Viewer Version 3 (Version: 3.0.8 - Bombardier) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
BPD_HPSU (Version: 1.00.0000 - Hewlett-Packard) Hidden
bpd_scan_Carrier (Version: 3.00.0000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 140.0.000.000 - Hewlett-Packard) Hidden
BPDSoftware (Version: 50.0.165.000 - Hewlett-Packard) Hidden
BPDSoftware_Ini (Version: 1.00.0000 - Hewlett-Packard) Hidden
BufferChm (Version: 140.0.213.000 - Hewlett-Packard) Hidden
Canon MF4700 Series (HKLM\...\{47A8DB42-4E21-4d55-9931-D4F44CC3F03B}) (Version: 4.1.0.1 - CANON INC.)
Cisco WebEx Meetings (HKLM\...\ActiveTouchMeetingClient) (Version:  - Cisco WebEx LLC)
Compatibility Pack for the 2007 Office system (HKLM\...\{90120000-0020-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
DBsign Web Signer (HKLM\...\{F522E59E-7168-4B4A-885E-1030009BEE56}) (Version: 3.0 - Gradkell Systems, Inc.)
Destinations (Version: 130.0.0.0 - Hewlett-Packard) Hidden
Device Installer x86 (HKLM\...\{2E16BD80-4F7B-4FFA-90AD-9CA57D4D408B}) (Version: 2.2 - ActivIdentity)
DeviceDiscovery (Version: 140.0.213.000 - Hewlett-Packard) Hidden
DJ_SF_05_D2600_Software_Min (Version: 140.0.690.000 - Hewlett-Packard) Hidden
DocProc (Version: 140.0.100.000 - Hewlett-Packard) Hidden
EasyBits GO (HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Game Organizer) (Version:  - EasyBits Media)
Faerie Solitaire (Version: 2.2.0.82 - WildTangent) Hidden
Fax (Version: 140.0.213.000 - Hewlett-Packard) Hidden
FileZilla Client 3.3.2-rc2 (HKLM\...\FileZilla Client) (Version: 3.3.2-rc2 - )
Google Earth (HKLM\...\{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}) (Version: 7.1.2.2041 - Google)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.26.9 - Google Inc.) Hidden
GPBaseService2 (Version: 140.0.212.000 - Hewlett-Packard) Hidden
H470 (Version: 50.0.165.000 - Hewlett-Packard) Hidden
HP Customer Participation Program 14.0 (HKLM\...\HPExtendedCapabilities) (Version: 14.0 - HP)
HP Deskjet D2600 Printer Driver 14.0 Rel. 5 (HKLM\...\{7B8E0D63-C8FB-4F04-8B3A-029C4707693A}) (Version: 14.0 - HP)
HP Image Zone 4.2 (HKLM\...\HP Photo & Imaging) (Version: 4.2 - HP)
HP Imaging Device Functions 14.0 (HKLM\...\HP Imaging Device Functions) (Version: 14.0 - HP)
HP Officejet H470 Series (HKLM\...\{5A15F754-086E-4185-96F4-0BC31F1A2382}) (Version: 1.0 - HP)
HP OfficeJet L7300/L7500/7600/7700 (HKLM\...\{9D6C64CC-EA60-47A6-9C97-82C38231EDAE}) (Version: 14.0 - HP)
HP PSC & OfficeJet 4.2 (HKLM\...\{A1062847-0846-427A-92A1-BB8251A91E91}) (Version:  - HP)
HP Smart Web Printing 4.60 (HKLM\...\HP Smart Web Printing) (Version: 4.60 - HP)
HP Solution Center 14.0 (HKLM\...\HP Solution Center & Imaging Support Tools) (Version: 14.0 - HP)
HP Update (HKLM\...\{2EFA4E4C-7B5F-48F7-A1C0-1AA882B7A9C3}) (Version: 5.003.001.001 - Hewlett-Packard)
HPProductAssistant (Version: 140.0.213.000 - Hewlett-Packard) Hidden
HPSSupply (Version: 140.0.212.000 - Hewlett-Packard) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\HDMI) (Version: 6.14.10.5182 - Intel Corporation)
Intel® Matrix Storage Manager (HKLM\...\{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}) (Version:  - Intel Corporation)
iTunes (HKLM\...\{5D928931-D1D2-4A93-A82D-BF60D0E7CFA5}) (Version: 12.0.1.26 - Apple Inc.)
Java 7 Update 65 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83217045FF}) (Version: 7.0.650 - Oracle)
L7500 (Version: 140.0.000.000 - Hewlett-Packard) Hidden
LiveUpdate 3.3 (Symantec Corporation) (HKLM\...\LiveUpdate) (Version: 3.3.0.96 - Symantec Corporation)
MagicBerry for Blackberry version 3.5 (HKLM\...\{404CBB42-3EF1-4ECF-BFBD-A557807CBF3B}_is1) (Version: 3.5 - Mena Step Innovative Solutions (Ashraf Awwad))
Malwarebytes Anti-Malware version 2.0.4.1028 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.0.4.1028 - Malwarebytes Corporation)
MarketResearch (Version: 140.0.214.000 - Hewlett-Packard) Hidden
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.150.1 - McAfee, Inc.)
Media Player Codec Pack 4.3.5 (HKLM\...\Media Player - Codec Pack) (Version: 4.3.5 - Media Player Codec Pack)
MetaWeb (HKLM\...\{2A518E58-E9F1-4D94-8611-2E55B51E6351}) (Version: 3.1.1 - CGM Technology Services)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
Microsoft Base Smart Card Cryptographic Service Provider Package (HKLM\...\KB909520) (Version:  - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM\...\{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version:  - Microsoft)
Microsoft Office 2007 Service Pack 2 (SP2) (HKLM\...\{91120000-002F-0000-0000-0000000FF1CE}_HOMESTUDENTR_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}) (Version:  - Microsoft)
Microsoft Office Enterprise 2007 (HKLM\...\ENTERPRISE) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Office Home and Student 2007 (HKLM\...\HOMESTUDENTR) (Version: 12.0.6425.1000 - Microsoft Corporation)
Microsoft Office PowerPoint Viewer 2007 (English) (HKLM\...\{95120000-00AF-0409-0000-0000000FF1CE}) (Version: 12.0.4518.1014 - Microsoft Corporation)
Microsoft Office Suite Activation Assistant (HKLM\...\{E50AE784-FABE-46DA-A1F8-7B6B56DCB22E}) (Version: 2.9 - Microsoft Corporation)
Microsoft Outlook Web Access S/MIME (HKLM\...\{6CF08AD2-00C5-4A63-B74B-2EFFFAFEBE1A}) (Version: 6.5.7651.60 - Microsoft)
Microsoft S/MIME (HKLM\...\{D932D6AE-786B-4ECD-B6FE-B9C0EB059B3C}) (Version: 14.3.123.2 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{7299052b-02a4-4627-81f2-1818da5d550d}) (Version: 8.0.56336 - Microsoft Corporation)
Microsoft Visual C++ 2005 Redistributable (HKLM\...\{A49F249F-0C91-497F-86DF-B2585E8E76B7}) (Version: 8.0.50727.42 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (HKLM\...\{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}) (Version: 9.0.21022 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
Microsoft Windows XP Video Decoder Checkup Utility (HKLM\...\DECCHECK) (Version:  - )
Microsoft Works (HKLM\...\{15BC8CD0-A65B-47D0-A2DD-90A824590FA8}) (Version: 9.7.0621 - Microsoft Corporation)
Mozilla Firefox 35.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 35.0.1 (x86 en-US)) (Version: 35.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 34.0.5 - Mozilla)
MPM (HKLM\...\{B5A4C902-1636-48DB-8E38-F0DB102DDB59}) (Version: 1.00.0000 - Hewlett-Packard)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Mystery P.I. - The Vegas Heist (Version: 2.2.0.82 - WildTangent) Hidden
NAVFIT98A (HKLM\...\{9F666AE6-7182-4A0D-BB0E-B39F9ACF8D0C}) (Version: 1.0.0 - SPAWAR System Center Atlantic)
Network (Version: 140.0.215.000 - Hewlett-Packard) Hidden
OCR Software by I.R.I.S. 14.0 (HKLM\...\HPOCR) (Version: 14.0 - HP)
Polar Bowler (Version: 2.2.0.82 - WildTangent) Hidden
ProductContext (Version: 140.0.000.000 - Hewlett-Packard) Hidden
ProductContext (Version: 50.0.165.000 - Hewlett-Packard) Hidden
PureEdge Viewer 6.5 (HKLM\...\{E0000650-0650-0650-0650-000000000650}) (Version:  - )
QFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
Quickbooks Financial Center (HKLM\...\{3B843B38-04B1-4CE6-8888-586273E0F289}) (Version: 2.02 - TOSHIBA Corporation)
QuickTime 7 (HKLM\...\{3D2CBC2C-65D4-4463-87AB-BB2C859C1F3E}) (Version: 7.76.80.95 - Apple Inc.)
REALTEK GbE & FE Ethernet PCI-E NIC Driver (HKLM\...\{C9BED750-1211-4480-B1A5-718A3BE15525}) (Version: 1.24.0000 - Realtek)
Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5982 - Realtek Semiconductor Corp.)
Realtek USB 2.0 Card Reader (HKLM\...\{96AE7E41-E34E-47D0-AC07-1091A8127911}) (Version: 6.1.7600.30105 - Realtek Semiconductor Corp.)
Safari (HKLM\...\{FA4C2D53-205F-4245-9717-F3761154824D}) (Version: 5.34.57.2 - Apple Inc.)
Scan (Version: 140.0.167.000 - Hewlett-Packard) Hidden
SelectiveSuspend (HKLM\...\InstallShield_{7833B48D-8CCD-4588-A7A0-AE01C96ACAA4}) (Version: 1.0.0.2 - TOSHIBA Corporation)
SelectiveSuspend (Version: 1.0.0.2 - TOSHIBA Corporation) Hidden
Shop for HP Supplies (HKLM\...\Shop for HP Supplies) (Version: 14.0 - HP)
Skype Click to Call (HKLM\...\{B6CF2967-C81E-40C0-9815-C05774FEF120}) (Version: 6.13.13771 - Skype Technologies S.A.)
Skype™ 6.11 (HKLM\...\{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}) (Version: 6.11.102 - Skype Technologies S.A.)
SmartWebPrinting (Version: 140.0.213.000 - Hewlett-Packard) Hidden
SolutionCenter (Version: 140.0.214.000 - Hewlett-Packard) Hidden
Spybot - Search & Destroy (HKLM\...\{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1) (Version: 1.6.2 - Safer Networking Limited)
Status (Version: 140.0.256.000 - Hewlett-Packard) Hidden
SumatraPDF 2.4 (HKLM\...\SumatraPDF) (Version: 2.4 - Krzysztof Kowalczyk)
Symantec Endpoint Protection (HKLM\...\{0E251D4D-316C-4F8B-A4C5-2722000764BE}) (Version: 12.1.5337.5000 - Symantec Corporation)
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 14.0.11.0 - Synaptics Incorporated)
TeLL me More CJ (HKLM\...\TellmeMoreV50) (Version:  - )
Toolbox (Version: 140.0.428.000 - Hewlett-Packard) Hidden
TOSHIBA Accessibility (HKLM\...\InstallShield_{3A57482F-BEBC-47E4-ADA1-6302403C7E50}) (Version: 1.62.0.7C - TOSHIBA)
TOSHIBA Application and Driver Installer (HKLM\...\{970472D0-F5F9-4158-A6E3-1AE49EFEF2D3}) (Version: 9.0.1.1 - TOSHIBA)
TOSHIBA Assist (HKLM\...\{12B3A009-A080-4619-9A2A-C6DB151D8D67}) (Version:  - )
TOSHIBA ConfigFree (HKLM\...\{BDD83DC9-BEE9-4654-A5DA-CC46C250088D}) (Version: 5.90.18 - )
TOSHIBA Fn-esse (HKLM\...\Fn-esse) (Version: 1.0.0.3013C - )
TOSHIBA Hardware Setup (HKLM\...\InstallShield_{5279374D-87FE-4879-9385-F17278EBB9D3}) (Version: 1.62.0.9C - TOSHIBA CORPORATION)
TOSHIBA HDD Protection (HKLM\...\{94A90C69-71C1-470A-88F5-AA47ECC96B40}) (Version: 2.3.0.0 - TOSHIBA Corporation)
TOSHIBA HDD/SSD Alert (HKLM\...\InstallShield_{D4322448-B6AF-4316-B859-D8A0E84DCB38}) (Version: 3.1.0.6 - TOSHIBA Corporation)
TOSHIBA Hotkey Utility (HKLM\...\InstallShield_{7900D3A6-A9E8-4954-ACCB-AB15867978BF}) (Version: 1.62.0.18C - TOSHIBA)
Toshiba Online Backup (HKLM\...\{C57BCDE1-7CB9-467D-B3BA-7E119916CDC1}) (Version: 1.2.0.38 - Toshiba)
TOSHIBA PC Diagnostic Tool (HKLM\...\InstallShield_{2C38F661-26B7-445D-B87D-B53FE2D3BD42}) (Version: 3.2.14 - TOSHIBA Corporation)
TOSHIBA Power Saver (HKLM\...\{8F7AC250-4D7D-431D-AC4E-94FB78EA3F8B}) (Version: 7.05.04.U - TOSHIBA)
TOSHIBA Quality Application (HKLM\...\{E69992ED-A7F6-406C-9280-1C156417BC49}) (Version: 1.0.3 - TOSHIBA)
TOSHIBA Recovery Media Creator (HKLM\...\{B65BBB06-1F8E-48F5-8A54-B024A9E15FDF}) (Version: 1.1.0.0 - TOSHIBA Corporation)
TOSHIBA Supervisor Password (HKLM\...\InstallShield_{51B4E156-14A5-4904-9AE4-B1AA2A0E46BE}) (Version: 1.62.0.5C - TOSHIBA CORPORATION)
TOSHIBA USB Sleep and Charge Utility (HKLM\...\{E487EE7D-EAAA-4E2A-9116-E3B477D8A74F}) (Version: 1.3.2.0 - TOSHIBA Corporation)
TOSHIBA Zooming Utility (HKLM\...\InstallShield_{02EED746-8C5A-43C8-BB3D-D29C8B363A4D}) (Version: 1.62.0.3C - TOSHIBA)
ToshibaRegistration (HKLM\...\{5AF550B4-BB67-4E7E-82F1-2C4300279050}) (Version: 1.0.3 - Toshiba)
TouchPad On/Off Utility (HKLM\...\InstallShield_{80977342-27E8-4FF7-8B6A-D8D89461DA7F}) (Version: 1.62.0.6C - TOSHIBA)
TouchPad On/Off Utility (Version: 1.62.0.6C - TOSHIBA) Hidden
TrayApp (Version: 140.0.213.000 - Hewlett-Packard) Hidden
Tweaking.com - Windows Repair (All in One) (HKLM\...\Tweaking.com - Windows Repair (All in One)) (Version: 2.11.2 - Tweaking.com)
USB Control Center (HKLM\...\Belkin USB Control Center) (Version: 2.0.0 - Belkin International, Inc.)
Utility Common Driver (Version: 1.0.50.25C - TOSHIBA) Hidden
Virtual Families (Version: 2.2.0.82 - WildTangent) Hidden
Virtual Villagers - The Secret City (Version: 2.2.0.82 - WildTangent) Hidden
VLC media player (HKLM\...\VLC media player) (Version: 2.1.5 - VideoLAN)
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 140.0.213.017 - Hewlett-Packard) Hidden
WildTangent Games (HKLM\...\WildTangent toshiba Master Uninstall) (Version: 1.0.0.80 - WildTangent)
WildTangent ORB Game Console (Version:  - WildTangent) Hidden
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.9.0040.0 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live ID Sign-in Assistant (HKLM\...\{0840B4D6-7DD1-4187-8523-E6FC0007EFB7}) (Version: 6.500.3165.0 - Microsoft Corporation)
Windows Management Framework Core (HKLM\...\KB968930) (Version:  - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
WinRAR 4.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 4.01.0 - win.rar GmbH)
Zipeg (HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Zipeg) (Version: 2.9.3.1316 - http://zipeg.com)

==================== Custom CLSID (selected items): ==========================

(If an entry is included in the fixlist, it will be removed from registry. Any eventual file will not be moved.)

CustomCLSID: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006_Classes\CLSID\{039B2CA5-3B41-4D93-AD77-47D3293FC5CB}\InprocServer32 -> C:\Documents and Settings\All Users\Application Data\EasyBits GO\ezGameXN.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006_Classes\CLSID\{3D3B1846-CC43-42ae-BFF9-D914083C2BA3}\InprocServer32 -> C:\Program Files\SumatraPDF\PdfPreview.dll (Simon Bünzli)
CustomCLSID: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006_Classes\CLSID\{42481700-CF3C-4D05-8EC6-F9A1C57E8DC0}\InprocServer32 -> C:\Documents and Settings\All Users\Application Data\EasyBits GO\ezGameXN.dll (EasyBits Media)
CustomCLSID: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006_Classes\CLSID\{D0D38C6E-BF64-4C42-840D-3E0019D9F7A6}\InprocServer32 -> C:\Program Files\Skype\Plugin Manager\ezPMUtils.dll No File
CustomCLSID: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006_Classes\CLSID\{F9306FE2-61D9-46AF-9EBA-862BE93448CB}\InprocServer32 -> C:\Documents and Settings\All Users\Application Data\{41B09AF3-2F10-44BB-9CEB-181045C785DE}\dbghelp. (the data entry has 11 more characters).

==================== Restore Points  =========================

12-03-2015 14:03:57 System Checkpoint
13-03-2015 01:55:17 System Checkpoint
14-03-2015 14:41:33 System Checkpoint

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2009-11-19 14:42 - 2015-03-12 16:40 - 00000855 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost

==================== Scheduled Tasks (whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\avast! Emergency Update.job => C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\olkqvqf.job => C:\DOCUME~1\N310\LOCALS~1\Temp\riyshwa.exe <==== ATTENTION
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{8974E1E2-AB23-45FC-91FA-981FDC2E1561}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (whitelisted) ==============

2015-03-14 15:07 - 2015-03-14 15:08 - 02922496 _____ () C:\Program Files\AVAST Software\Avast\defs\15031401\algo.dll
2014-02-12 17:58 - 2014-02-12 17:58 - 00073544 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
2014-10-11 13:05 - 2014-10-11 13:05 - 01044776 _____ () C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
2013-12-10 18:58 - 2013-12-10 18:44 - 00049152 ____N () C:\Program Files\Belkin\USB Control Center\Bkapcs.exe
2010-02-14 14:47 - 2010-02-14 14:47 - 00094208 _____ () C:\Program Files\FileZilla FTP Client\fzshellext.dll
2010-01-17 15:49 - 2010-01-17 15:49 - 00045056 _____ () C:\WINDOWS\system32\TDispVol.dll
2011-09-29 22:26 - 2011-05-28 22:04 - 00140288 _____ () C:\Program Files\WinRAR\rarext.dll
2009-04-03 07:49 - 2009-04-03 07:49 - 00024576 _____ () C:\Program Files\TOSHIBA\TouchPad\TPECioCtl.dll
2010-01-17 15:45 - 2009-04-15 18:46 - 00040960 _____ () C:\WINDOWS\system32\EBLib.dll
2010-02-05 14:40 - 2010-02-05 14:40 - 00079192 _____ () C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosIPCWraper.dll
2009-04-02 10:35 - 2009-04-02 10:35 - 00024576 _____ () C:\WINDOWS\system32\EKECioCtl.dll
2015-03-02 11:09 - 2015-03-02 11:09 - 38562088 _____ () C:\Program Files\AVAST Software\Avast\libcef.dll
2014-05-18 13:18 - 2014-05-18 13:18 - 00048712 _____ () C:\WINDOWS\system32\C2MP\UpdateChecker.exe

==================== Alternate Data Streams (whitelisted) =========

(If an entry is included in the fixlist, only the Alternate Data Streams will be removed.)

AlternateDataStreams: C:\Documents and Settings\N310\Local Settings:init
AlternateDataStreams: C:\Documents and Settings\N310\Desktop\gimp-2.8.4-setup.exe:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\N310\Desktop\gimp-2.8.4-setup.exe:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}

==================== Safe Mode (whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SharedAccess => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\BITS => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\ccSettings_{7EC551EC-6FEE-44A6-BD12-987F87D7C525}.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\msiserver => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PEVSystemStart => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\procexp90.Sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SepMasterService => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\vss => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\Wdf01000.sys => ""="Driver"

==================== EXE Association (whitelisted) ===============

(If an entry is included in the fixlist, the default will be restored. None default entries will be removed.)

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\N310\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
DNS Servers: 208.67.222.222 - 208.67.220.220

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

==================== Accounts: =============================

Administrator (S-1-5-21-2348835819-2973295498-3323505632-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
ASPNET (S-1-5-21-2348835819-2973295498-3323505632-1004 - Limited - Enabled)
Guest (S-1-5-21-2348835819-2973295498-3323505632-501 - Limited - Disabled)
HelpAssistant (S-1-5-21-2348835819-2973295498-3323505632-1005 - Limited - Disabled)
Jeff (S-1-5-21-2348835819-2973295498-3323505632-1007 - Limited - Enabled) => %SystemDrive%\Documents and Settings\Jeff
N310 (S-1-5-21-2348835819-2973295498-3323505632-1006 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\N310
SUPPORT_388945a0 (S-1-5-21-2348835819-2973295498-3323505632-1002 - Limited - Disabled)

==================== Faulty Device Manager Devices =============

Name: HP LaserJet 200 colorMFP M276nw
Description: HP LaserJet 200 colorMFP M276nw
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet P2035n
Description: HP LaserJet P2035n
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP Color LaserJet 3600
Description: HP Color LaserJet 3600
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet M1536dnf MFP
Description: HP LaserJet M1536dnf MFP
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 6700
Description: Officejet 6700
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet Professional P1102w
Description: HP LaserJet Professional P1102w
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet Professional M1212nf MFP
Description: HP LaserJet Professional M1212nf MFP
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: HP LaserJet 400 MFP M425dn
Description: HP LaserJet 400 MFP M425dn
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: Hewlett-Packard
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

Name: Officejet Pro L7500
Description: Officejet Pro L7500
Class Guid: {4D36E971-E325-11CE-BFC1-08002BE10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.

==================== Event log errors: =========================

Application errors:
==================
Error: (03/14/2015 04:52:28 PM) (Source: Symantec AntiVirus) (EventID: 73) (User: PC)
Description: SONAR has generated an error: code 1: description: Heuristic Scan or Load Failure

Error: (03/14/2015 04:38:51 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: This network connection does not exist.

Error: (03/14/2015 04:38:48 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (03/14/2015 04:38:06 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (03/14/2015 04:36:07 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (03/14/2015 03:19:26 PM) (Source: Symantec AntiVirus) (EventID: 74) (User: PC)
Description: SONAR has generated an error: code 0: description: Definition Failure

Error: (03/14/2015 02:16:49 PM) (Source: Symantec AntiVirus) (EventID: 73) (User: PC)
Description: SONAR has generated an error: code 1: description: Heuristic Scan or Load Failure

Error: (03/14/2015 01:56:22 PM) (Source: Symantec AntiVirus) (EventID: 73) (User: PC)
Description: SONAR has generated an error: code 1: description: Heuristic Scan or Load Failure

Error: (03/14/2015 01:50:25 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (03/14/2015 01:48:23 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

System errors:
=============
Error: (03/14/2015 04:44:26 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
atapi
PCIIde

Error: (03/14/2015 04:43:11 PM) (Source: NETLOGON) (EventID: 3095) (User: )
Description: This computer is configured as a member of a workgroup, not as
a member of a domain. The Netlogon service does not need to run in this
configuration.

Error: (03/14/2015 04:41:31 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (03/14/2015 04:41:25 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (03/14/2015 04:39:08 PM) (Source: DCOM) (EventID: 10005) (User: PC)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (03/14/2015 04:38:45 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (03/14/2015 04:38:12 PM) (Source: DCOM) (EventID: 10000) (User: NT AUTHORITY)
Description: Unable to start a DCOM Server: {5E248397-8614-4EC5-8926-BD242DC9830A}.
The error:
"%%2"
Happened while starting this command:
"C:\Program Files\ActivIdentity\ActivClient\acevents.exe" -Embedding

Error: (03/14/2015 04:37:48 PM) (Source: DCOM) (EventID: 10005) (User: PC)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (03/14/2015 04:37:07 PM) (Source: DCOM) (EventID: 10005) (User: PC)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (03/14/2015 04:37:06 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
aswRvrt
aswSnx
aswSP
aswTdi
aswVmm
atapi
BHDrvx86
eeCtrl
Fips
intelppm
PCIIde
SRTSP
SRTSPX
SymIRON
SYMTDI
SysPlant
TPwSav

Microsoft Office Sessions:
=========================
Error: (10/21/2013 08:43:01 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 3475 seconds with 2820 seconds of active time.  This session ended with a crash.

Error: (10/20/2010 02:30:38 PM) (Source: Microsoft Office 12 Sessions) (EventID: 7001) (User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6514.5001, Microsoft Office Version: 12.0.6425.1000. This session lasted 1640 seconds with 0 seconds of active time.  This session ended with a crash.

==================== Memory info ===========================

Processor:  Intel® Atom™ CPU N450 @ 1.66GHz
Percentage of memory in use: 87%
Total physical RAM: 1013.35 MB
Available physical RAM: 127.56 MB
Total Pagefile: 2961.11 MB
Available Pagefile: 1730.56 MB
Total Virtual: 2047.88 MB
Available Virtual: 1834.86 MB

==================== Drives ================================

Drive c: (TI105384P0E) (Fixed) (Total:137.78 GB) (Free:14.3 GB) NTFS ==>[Drive with boot components (Windows XP)]

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (MBR Code: Windows XP) (Size: 149.1 GB) (Disk ID: C778C778)
Partition 1: (Active) - (Size=137.8 GB) - (Type=07 NTFS)
Partition 2: (Not Active) - (Size=11.3 GB) - (Type=1C)

==================== End Of Log ============================

 

 



#12 Jo*

Jo*

  • Malware Response Team
  • 3,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:10 AM

Posted 15 March 2015 - 09:53 AM

Hello TravelingOne,

on my pc is Symantec Internet Security, which is good for me.
Uninstall Avast!
 

***


Open notepad. Please copy the contents of the code box below. To do this highlight the contents of the box and right click on it. Paste this into the open notepad.
Save it in the same location as / FSRT / FSRT64 (usually your desktop) as fixlist.txt

 
start
EmptyTemp:
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> No File
BHO: No Name -> {b54561db-0bbb-41b4-a814-df8301fe0a8e} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO: No Name -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> No File
BHO: No Name -> {0347C33E-8762-4905-BF09-768834316C61} -> No File
BHO: No Name -> {0695F52A-89A2-4246-81B5-AFAD2D3B865F} -> No File
BHO: No Name -> {53707962-6F74-2D53-2644-206D7942484F} -> No File
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.HTML
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.PNG
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.TXT
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.URL
C:\WINDOWS\Tasks\olkqvqf.job
S4 IntelIde; No ImagePath
U3 TlntSvr; No ImagePath
end


NOTICE: This script was written specifically for this user, for use on that particular machine.
Running this on another machine may cause damage to your operating system


Run FRST / FSRT64 again like we did before but this time press the Fix button just once and wait.
The tool will make a log (Fixlog.txt) please post it to your reply.


***


FRST / FSRT64: run it again.
  • Right-click FRST / FSRT64 then click "Run as administrator" (XP users: click run after receipt of Windows Security Warning - Open File).
  • When the tool opens, click Yes to disclaimer.
  • Press the Scan button.
  • When finished, it will produce a log called FRST.txt in the same directory the tool was run from.
  • Please copy and paste the log in your next reply.

***


Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.


#13 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 16 March 2015 - 04:39 PM

Unable to get to the machine yesterday.  Avast has been uninstalled.

 

Beginning the other instructions.



#14 TravelingOne

TravelingOne
  • Topic Starter

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:12:10 AM

Posted 17 March 2015 - 12:50 AM

Completed instructions, logs are below.

 

Symantec Endpoint Proactive Threat Protection not functioning.  I tried to repair using Add/Remove and then updating definitions.  My next attempt will be to uninstall and reinstall.

 

Internet Explorer pulls a large amount of CPU power and hangs up the system.  Should I just use another browser, Firefox, Safari?

 

The machine is booting faster and I am not receiving and warnings.

 

Fixlog:

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 10-03-2015
Ran by N310 at 2015-03-16 14:43:48 Run:1
Running from C:\Documents and Settings\N310\Desktop
Loaded Profiles: N310 (Available profiles: N310 & Jeff & Administrator)
Boot Mode: Normal

==============================================

Content of fixlist:
*****************
start
EmptyTemp:
HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> No File
BHO: No Name -> {b54561db-0bbb-41b4-a814-df8301fe0a8e} -> No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> No File
BHO: No Name -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} -> No File
BHO: No Name -> {0347C33E-8762-4905-BF09-768834316C61} -> No File
BHO: No Name -> {0695F52A-89A2-4246-81B5-AFAD2D3B865F} -> No File
BHO: No Name -> {53707962-6F74-2D53-2644-206D7942484F} -> No File
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.HTML
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.PNG
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.TXT
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.URL
C:\WINDOWS\Tasks\olkqvqf.job
S4 IntelIde; No ImagePath
U3 TlntSvr; No ImagePath
end
*****************

"HKU\.DEFAULT\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\SOFTWARE\Policies\Microsoft\Internet Explorer" => Key deleted successfully.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}" => Key deleted successfully.
HKCR\CLSID\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{b54561db-0bbb-41b4-a814-df8301fe0a8e}" => Key deleted successfully.
HKCR\CLSID\{b54561db-0bbb-41b4-a814-df8301fe0a8e} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}" => Key deleted successfully.
HKCR\CLSID\{DBC80044-A445-435b-BC74-9C25C1C588A9} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856}" => Key deleted successfully.
HKCR\CLSID\{FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}" => Key deleted successfully.
HKCR\CLSID\{0347C33E-8762-4905-BF09-768834316C61} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0695F52A-89A2-4246-81B5-AFAD2D3B865F}" => Key deleted successfully.
HKCR\CLSID\{0695F52A-89A2-4246-81B5-AFAD2D3B865F} => Key not found.
"HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}" => Key deleted successfully.
HKCR\CLSID\{53707962-6F74-2D53-2644-206D7942484F} => Key not found.
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.HTML => Moved successfully.
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.PNG => Moved successfully.
C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.TXT => Moved successfully.
"C:\Documents and Settings\N310\Desktop\HELP_DECRYPT.URL" => File/Directory not found.
C:\WINDOWS\Tasks\olkqvqf.job => Moved successfully.
IntelIde => Service deleted successfully.
TlntSvr => Service deleted successfully.
EmptyTemp: => Removed 4.1 GB temporary data.


The system needed a reboot.

==== End of Fixlog 14:52:18 ====

 

 

 

FRST:

Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 10-03-2015
Ran by N310 (administrator) on PC on 16-03-2015 21:13:02
Running from C:\Documents and Settings\N310\Desktop
Loaded Profiles: N310 (Available profiles: N310 & Jeff & Administrator)
Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(Apple Inc.) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
() C:\Program Files\Belkin\USB Control Center\Bkapcs.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe
(Skype Technologies S.A.) C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\ThpSrv.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TODDSrv.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe
(Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe
(Symantec Corporation) C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe
(TOSHIBA) C:\WINDOWS\system32\ZoomingHook.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(TOSHIBA) C:\WINDOWS\system32\ZoomingHook.exe
(COMPAL ELECTRONIC INC.) C:\Program Files\TOSHIBA\TouchPad\TPTray.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TPSBattM.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\ThpSrv.exe
(TOSHIBA Corporation) C:\WINDOWS\system32\TDispVol.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSENotify.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(TOSHIBA Corporation) C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe
(Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
(Research In Motion Limited) C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
(Intel Corporation) C:\WINDOWS\system32\igfxpers.exe
(Intel Corporation) C:\WINDOWS\system32\igfxsrvc.exe
(TOSHIBA CORPORATION) C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
(Apple Inc.) C:\Program Files\iTunes\iTunesHelper.exe
(Intel Corporation) C:\WINDOWS\system32\hkcmd.exe
(COMPAL ELECTRONIC INC.) C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe
(Atheros Communications, Inc.) C:\Program Files\Atheros\ACU.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acevents.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe
(Apple Inc.) C:\Program Files\iPod\bin\iPodService.exe
(ActivIdentity) C:\Program Files\ActivIdentity\ActivClient\acsagent.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
(Hewlett-Packard Co.) C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe
(Hewlett-Packard) C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [ZoomingHook] => C:\WINDOWS\system32\ZoomingHook.exe [24576 2005-06-06] (TOSHIBA)
HKLM\...\Run: [Zooming] => C:\WINDOWS\system32\ZoomingHook.exe [24576 2005-06-06] (TOSHIBA)
HKLM\...\Run: [TPSMain] => C:\WINDOWS\system32\TPSMain.exe [268864 2009-09-30] (TOSHIBA Corporation)
HKLM\...\Run: [TPNF] => C:\Program Files\TOSHIBA\TouchPad\TPTray.exe [86016 2009-10-09] (COMPAL ELECTRONIC INC.)
HKLM\...\Run: [TosSENotify] => C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosWaitSrv.exe [611672 2010-02-05] (TOSHIBA Corporation)
HKLM\...\Run: [ThpSrv] => C:\WINDOWS\system32\thpsrv /logon
HKLM\...\Run: [TDispVol] => C:\WINDOWS\system32\TDispVol.exe [208896 2010-01-17] (TOSHIBA Corporation)
HKLM\...\Run: [TAccessibility] => C:\Program Files\TOSHIBA\Accessibility\TAccessibility.exe [110592 2009-10-09] ()
HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1586472 2009-10-15] (Synaptics Incorporated)
HKLM\...\Run: [SVPWUTIL] => C:\Program Files\Toshiba\Windows Utilities\SVPWUTIL.exe [90112 2009-04-28] (TOSHIBA)
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [256896 2014-07-11] (Oracle Corporation)
HKLM\...\Run: [SmoothView] => C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe [159744 2007-04-09] (TOSHIBA Corporation)
HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [18782720 2009-11-12] (Realtek Semiconductor Corp.)
HKLM\...\Run: [RIMBBLaunchAgent.exe] => C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe [90448 2011-11-02] (Research In Motion Limited)
HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\qttask.exe [421888 2014-10-02] (Apple Inc.)
HKLM\...\Run: [NDSTray.exe] => NDSTray.exe
HKLM\...\Run: [masqform.exe] => C:\Program Files\PureEdge\Viewer 6.5\masqform.exe [643072 2005-07-04] (PureEdge™ Solutions Inc.)
HKLM\...\Run: [iTunesHelper] => C:\Program Files\iTunes\iTunesHelper.exe [157480 2014-10-15] (Apple Inc.)
HKLM\...\Run: [HWSetup] => C:\Program Files\TOSHIBA\TOSHIBA Applet\HWSetup.exe [28672 2004-05-01] (TOSHIBA CO.,LTD.)
HKLM\...\Run: [CFSServ.exe] => CFSServ.exe -NoClient
HKLM\...\Run: [CeEKEY] => C:\Program Files\TOSHIBA\E-KEY\CeEKey.exe [873840 2009-11-13] (COMPAL ELECTRONIC INC.)
HKLM\...\Run: [APSDaemon] => C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [60712 2014-10-11] (Apple Inc.)
HKLM\...\Run: [ACU] => C:\Program Files\Atheros\ACU.exe [471129 2009-10-08] (Atheros Communications, Inc.)
HKLM\...\Run: [acevents] => C:\Program Files\ActivIdentity\ActivClient\acevents.exe [153640 2009-06-03] (ActivIdentity)
HKLM\...\Run: [accrdsub] => C:\Program Files\ActivIdentity\ActivClient\accrdsub.exe [400936 2009-06-03] (ActivIdentity)
Winlogon\Notify\ackpbsc: C:\Program Files\ActivIdentity\ActivClient\ackpbsc.dll (ActivIdentity)
Winlogon\Notify\acunlock: C:\Program Files\ActivIdentity\ActivClient\acunlock.dll (ActivIdentity)
HKLM\...\Policies\Explorer: [TaskbarNoNotification] 1
HKLM\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [msnmsgr] => "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [SpybotSD TeaTimer] => C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2260480 2009-03-05] (Safer-Networking Ltd.)
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [Codec Pack Update Checker] => C:\WINDOWS\system32\C2MP\UpdateChecker.exe [48712 2014-05-18] ()
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [swg] => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Run: [BluetoothS] => rundll32.exe "%appdata%\BtvStack.dll",BTHF_Register
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Policies\Explorer\Run: [1814062277] => C:\DOCUME~1\N310\APPLIC~1\msixduo.exe
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Policies\Explorer: [TaskbarNoNotification] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Policies\Explorer: [HideSCAHealth] 1
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\MountPoints2: {699a33e8-d2e0-11df-907b-002308fd016c} - D:\setup.exe
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\ActivClient Agent.lnk
ShortcutTarget: ActivClient Agent.lnk -> C:\Program Files\ActivIdentity\ActivClient\acsagent.exe (ActivIdentity)
Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk
ShortcutTarget: HP Digital Imaging Monitor.lnk -> C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
Startup: C:\Documents and Settings\N310\Start Menu\Programs\Startup\USB Control Center.lnk
ShortcutTarget: USB Control Center.lnk -> C:\Program Files\Belkin\USB Control Center\Connect.exe (Belkin International, Inc.)
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} =>  No File

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=TSNB&bmod=TSNB
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=TSNB&bmod=TSNB
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/ig?brand=TSNB&bmod=TSNB
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig?brand=TSNB&bmod=TSNB
HKU\S-1-5-19\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-20\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/enterprise/security_response/index.jsp?inid=biz_SR_sep_V12_1_MR_5
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.google.com/ig?brand=TSNB&bmod=TSNB
URLSearchHook: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 - (No Name) - {b54561db-0bbb-41b4-a814-df8301fe0a8e} -  No File
SearchScopes: HKLM -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKU\.DEFAULT -> {B1046B38-2D4B-4221-AC26-05A392205441} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 -> DefaultScope {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB_en
SearchScopes: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 -> {67A2568C-7A0A-4EED-AECC-B5405DE63B64} URL = http://www.google.com/search?sourceid=ie7&q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&rlz=1I7TSNB_en
BHO: No Name -> {0347C33E-8762-4905-BF09-768834316C61} ->  No File
BHO: No Name -> {0695F52A-89A2-4246-81B5-AFAD2D3B865F} ->  No File
BHO: No Name -> {53707962-6F74-2D53-2644-206D7942484F} ->  No File
BHO: Symantec Vulnerability Protection -> {6D53EC84-6AAE-4787-AEEE-F4628F01010C} -> C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\bin\IPS\IPSBHO.DLL [2014-09-13] (Symantec Corporation)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll [2014-07-11] (Oracle Corporation)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-08-18] (Microsoft Corporation)
BHO: No Name -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} ->  No File
BHO: No Name -> {b54561db-0bbb-41b4-a814-df8301fe0a8e} ->  No File
BHO: No Name -> {DBC80044-A445-435b-BC74-9C25C1C588A9} ->  No File
BHO: No Name -> {FFFFFFFF-CF4E-4F2B-BDC2-0E72E116A856} ->  No File
Toolbar: HKLM - No Name - {b54561db-0bbb-41b4-a814-df8301fe0a8e} -  No File
Toolbar: HKU\S-1-5-21-2348835819-2973295498-3323505632-1006 -> No Name - {B54561DB-0BBB-41B4-A814-DF8301FE0A8E} -  No File
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-0017-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_45-windows-i586.cab
DPF: {E06E2E99-0AA1-11D4-ABA6-0060082AA75C} https://akamaicdn.webex.com/client/WBXclient-T27L10NSP32EP5-14362/webex/ieatgpc.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2007-06-08] (Microsoft Corporation)
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll No File []
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2013-02-26] (Skype Technologies)
Handler: x-excid - {9D6CC632-1337-4a33-9214-2DA092E776F4} - c:\WINDOWS\Downloaded Program Files\mimectl.dll [2006-11-16] (Microsoft Corporation)
Handler: x-owacid2 - {5B290518-830E-4C57-A66B-E4F748900C27} - C:\Program Files\Microsoft\SMIME Client (2010)\mimectl.dll [2013-02-03] (Microsoft Corporation)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Tcpip\..\Interfaces\{505AA99E-5105-469C-9427-134D9473555A}: [NameServer] 208.67.222.222,208.67.220.220

FireFox:
========
FF ProfilePath: C:\Documents and Settings\N310\Application Data\Mozilla\Firefox\Profiles\wdadu9p8.default
FF DefaultSearchEngine: DuckDuckGo
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_296.dll [2015-01-28] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2014-02-18] ()
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll [2013-10-07] (Google)
FF Plugin: @java.com/DTPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll [2014-07-11] (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=10.65.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll [2014-07-11] (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation)
FF Plugin: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2013-10-01] (Simon Bünzli)
FF Plugin: @RIM.com/WebSLLauncher,version=1.0 -> C:\Program Files\Common Files\Research In Motion\BBWebSLLauncher\NPWebSLLauncher.dll [2012-12-13] ()
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.26.9\npGoogleUpdate3.dll [2015-02-05] (Google Inc.)
FF Plugin: @videolan.org/vlc,version=2.0.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: @videolan.org/vlc,version=2.1.5 -> C:\Program Files\VideoLAN\VLC\npvlc.dll [2014-07-22] (VideoLAN)
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll [2014-08-05] (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-2348835819-2973295498-3323505632-1006: @mozilla.zeniko.ch/SumatraPDF_Browser_Plugin -> C:\Program Files\SumatraPDF\npPdfViewer.dll [2013-10-01] (Simon Bünzli)
FF SearchPlugin: C:\Documents and Settings\N310\Application Data\Mozilla\Firefox\Profiles\wdadu9p8.default\searchplugins\firefox-add-ons.xml [2014-12-29]
FF Extension: IE Tab 2 (FF 3.6+) - C:\Documents and Settings\N310\Application Data\Mozilla\Firefox\Profiles\wdadu9p8.default\Extensions\{1BC9BA34-1EED-42ca-A505-6D2F1A935BBB} [2015-01-01]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-11-19]
FF HKLM\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3
FF Extension: HP Smart Web Printing - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2013-03-06]
FF HKLM\...\Firefox\Extensions: [{BBDA0591-3099-440a-AA10-41764D9DB4DB}] - C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\IPSFF
FF Extension: Symantec Vulnerability Protection - C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\IPSFF [2015-02-06]
FF HKU\S-1-5-21-2348835819-2973295498-3323505632-1006\...\Firefox\Extensions: [smartwebprinting@hp.com] - C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3

Chrome:
=======
CHR HKLM\...\Chrome\Extension: [jealjalmcelnenljclnadlblookmkmdc] - C:\DOCUME~1\N310\LOCALS~1\Temp\crx38.tmp [Not Found]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 ac.sharedstore; C:\Program Files\Common Files\ActivIdentity\ac.sharedstore.exe [207400 2009-06-03] (ActivIdentity)
R2 ACS; C:\WINDOWS\system32\acs.exe [499797 2009-10-08] (Atheros) [File not signed]
R2 Belkin USB Center Helper; C:\Program Files\Belkin\USB Control Center\Bkapcs.exe [49152 2013-12-10] () [File not signed]
R2 CFSvcs; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [40960 2005-01-17] (TOSHIBA CORPORATION) [File not signed]
S3 GameConsoleService; C:\Program Files\TOSHIBA Games\TOSHIBA Game Console\GameConsoleService.exe [238328 2009-08-27] (WildTangent, Inc.)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-07-11] (Oracle Corporation)
S3 LiveUpdate; C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE [3093880 2010-02-17] (Symantec Corporation)
S2 Net Driver HPZ12; C:\WINDOWS\system32\HPZinw12.dll [44032 2010-08-06] (Hewlett-Packard) [File not signed]
S2 Pml Driver HPZ12; C:\WINDOWS\system32\HPZipm12.dll [53760 2010-08-06] (Hewlett-Packard) [File not signed]
R2 SepMasterService; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\ccSvcHst.exe [144496 2014-09-13] (Symantec Corporation)
R2 Skype C2C Service; C:\Documents and Settings\All Users\Application Data\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3275136 2013-10-09] (Skype Technologies S.A.)
S3 SNAC; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\snac.exe [337248 2014-09-13] (Symantec Corporation)
R2 TOSHIBA HDD SSD Alert Service; C:\Program Files\TOSHIBA\TOSHIBA HDD SSD Alert\TosSmartSrv.exe [111960 2010-02-05] (TOSHIBA Corporation)

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

S3 actccid; C:\WINDOWS\System32\DRIVERS\actccid.sys [63608 2007-05-03] (ActivCard)
R3 akbus; C:\WINDOWS\System32\DRIVERS\akbus.sys [13619 2009-05-29] (ActivCard)
R3 akpcsc; C:\WINDOWS\System32\DRIVERS\akpcsc.sys [9493 2007-05-03] (ActivCard)
R3 aksbus; C:\WINDOWS\System32\DRIVERS\aksbus.sys [14639 2009-05-29] (ActivIdentity)
R3 akspcsc; C:\WINDOWS\System32\DRIVERS\akspcsc.sys [10193 2009-05-29] (ActivIdentity)
S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-05] (Creative)
R3 AR5416; C:\WINDOWS\System32\DRIVERS\athw.sys [1585728 2009-09-30] (Atheros Communications, Inc.)
R1 BHDrvx86; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\BASHDefs\20150307.011\BHDrvx86.sys [1164504 2015-02-02] (Symantec Corporation)
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation)
R1 ccSettings_{7EC551EC-6FEE-44A6-BD12-987F87D7C525}; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\ccSetx86.sys [127064 2014-09-13] (Symantec Corporation)
R1 eeCtrl; C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [378672 2014-11-25] (Symantec Corporation)
R3 EraserUtilRebootDrv; C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [111408 2015-01-21] (Symantec Corporation)
S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [49920 2007-01-19] (HP)
S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16496 2007-01-19] (HP)
S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21568 2009-08-26] (HP)
R3 IDSxpx86; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\IPSDefs\20150313.011\IDSxpx86.sys [453264 2015-02-06] (Symantec Corporation)
R2 mbamchameleon; C:\WINDOWS\system32\drivers\mbamchameleon.sys [54360 2014-11-21] (Malwarebytes Corporation)
S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-04] (Creative Technology Ltd.)
R3 NAVENG; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150316.001\NAVENG.SYS [95704 2015-01-21] (Symantec Corporation)
R3 NAVEX15; C:\Documents and Settings\All Users\Application Data\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Data\Definitions\VirusDefs\20150316.001\NAVEX15.SYS [1636696 2015-01-21] (Symantec Corporation)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
R2 Netdevio; C:\WINDOWS\System32\DRIVERS\netdevio.sys [12032 2003-01-29] (TOSHIBA Corporation.) [File not signed]
R3 PGSUSFLT; C:\WINDOWS\System32\Drivers\pgsuspend.SYS [18816 2009-09-21] (Toshiba)
S3 rt2870; C:\WINDOWS\System32\DRIVERS\rt2870.sys [730240 2010-04-02] (Ralink Technology, Corp.)
R1 SRTSP; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSP.SYS [668888 2014-09-13] (Symantec Corporation)
R1 SRTSPX; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SRTSPX.SYS [32984 2014-09-13] (Symantec Corporation)
R2 sxuptp; C:\WINDOWS\System32\DRIVERS\sxuptp.sys [259040 2013-12-10] (silex technology, Inc.)
S3 SyDvCtrl; C:\Program Files\Symantec\Symantec Endpoint Protection\12.1.5337.5000.105\Bin\SyDvCtrl32.sys [30736 2014-09-13] (Symantec Corporation)
R0 SymEFASI; C:\WINDOWS\System32\drivers\symefasi\0500010.01F\symefasi.sys [1278680 2015-02-06] (Symantec Corporation)
R3 SymEvent; C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [142936 2015-03-16] (Symantec Corporation)
R1 SymIRON; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\Ironx86.SYS [209624 2014-09-13] (Symantec Corporation)
R1 SYMTDI; C:\WINDOWS\System32\Drivers\SEP\0C0114D9\1388.105\x86\SYMTDI.SYS [423256 2014-09-13] (Symantec Corporation)
R1 SysPlant; C:\WINDOWS\System32\Drivers\SysPlant.sys [131176 2015-03-16] (Symantec Corporation)
S3 tdcmdpst; C:\WINDOWS\System32\DRIVERS\tdcmdpst.sys [16128 2007-02-22] (TOSHIBA Corporation.) [File not signed]
R3 Teefer2; C:\WINDOWS\System32\DRIVERS\teefer.sys [152984 2014-09-13] (Symantec Corporation)
R1 TPwSav; C:\WINDOWS\system32\drivers\TPwSav.sys [17192 2008-07-24] (TOSHIBA )
S3 USBAAPL; C:\WINDOWS\System32\Drivers\usbaapl.sys [45056 2012-12-13] (Apple, Inc.) [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2009-03-17] (Atheros Communications, Inc.)

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-14 16:54 - 2015-03-14 16:56 - 00035714 _____ () C:\Documents and Settings\N310\Desktop\Addition.txt
2015-03-14 16:48 - 2015-03-16 21:13 - 00024988 _____ () C:\Documents and Settings\N310\Desktop\FRST.txt
2015-03-14 16:41 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\N310\Desktop\FRST.exe
2015-03-14 16:37 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\Administrator\My Documents\FRST.exe
2015-03-14 14:33 - 2015-03-14 14:33 - 00003081 _____ () C:\Documents and Settings\N310\Desktop\JRT.txt
2015-03-14 14:13 - 2015-03-14 14:03 - 01388333 _____ (Thisisu) C:\Documents and Settings\N310\Desktop\JRT.exe
2015-03-14 14:03 - 2015-03-14 14:03 - 01388333 _____ (Thisisu) C:\Documents and Settings\Administrator\Desktop\JRT.exe
2015-03-13 22:11 - 2015-03-13 22:22 - 00002391 _____ () C:\Documents and Settings\All Users\Desktop\Safari.lnk
2015-03-12 16:38 - 2015-03-12 16:38 - 00000000 ____D () C:\Documents and Settings\LocalService\Start Menu\Programs\Accessories
2015-03-12 15:58 - 2008-04-14 05:42 - 00116224 ____C (Xerox) C:\WINDOWS\system32\dllcache\xrxwiadr.dll
2015-03-12 15:58 - 2008-04-14 05:42 - 00018944 ____C () C:\WINDOWS\system32\dllcache\xrxscnui.dll
2015-03-12 15:58 - 2001-08-17 22:37 - 00027648 ____C () C:\WINDOWS\system32\dllcache\xrxftplt.exe
2015-03-12 15:58 - 2001-08-17 22:36 - 00023040 ____C (Xerox Corporation) C:\WINDOWS\system32\dllcache\xrxwbtmp.dll
2015-03-12 15:57 - 2008-04-14 05:42 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wshirda.dll
2015-03-12 15:57 - 2008-04-13 22:04 - 00019455 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wvchntxx.sys
2015-03-12 15:57 - 2008-04-13 22:04 - 00012063 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wsiintxx.sys
2015-03-12 15:57 - 2001-08-17 22:37 - 00099865 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\xlog.exe
2015-03-12 15:57 - 2001-08-17 22:37 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xrxflnch.exe
2015-03-12 15:57 - 2001-08-17 12:11 - 00016970 ____C (US Robotics MCD (Megahertz)) C:\WINDOWS\system32\dllcache\xem336n5.sys
2015-03-12 15:56 - 2008-04-14 00:15 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wceusbsh.sys
2015-03-12 15:56 - 2008-04-14 00:06 - 00008832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiacpi.sys
2015-03-12 15:56 - 2008-04-13 22:05 - 00154624 ____C (Lucent Technologies) C:\WINDOWS\system32\dllcache\wlluc48.sys
2015-03-12 15:56 - 2008-04-13 22:04 - 00023615 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wch7xxnt.sys
2015-03-12 15:56 - 2001-08-17 22:36 - 00087040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiafbdrv.dll
2015-03-12 15:56 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiamsmud.dll
2015-03-12 15:56 - 2001-08-17 13:28 - 00771581 ____C (Rockwell) C:\WINDOWS\system32\dllcache\winacisa.sys
2015-03-12 15:56 - 2001-08-17 13:28 - 00701386 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\wdhaalba.sys
2015-03-12 15:56 - 2001-08-17 12:12 - 00034890 ____C (Raytheon Corp.) C:\WINDOWS\system32\dllcache\wlandrv2.sys
2015-03-12 15:56 - 2001-08-17 12:10 - 00035871 ____C (Winbond Electronics Corp.) C:\WINDOWS\system32\dllcache\wbfirdma.sys
2015-03-12 15:55 - 2008-04-14 00:13 - 00014208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wacompen.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00033599 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv04nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00029311 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv01nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00025471 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv10nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00022271 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv06nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00019551 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv02nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00012415 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv01nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00012127 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv02nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011935 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv11nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011871 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv09nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011807 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv07nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011775 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv05nt.sys
2015-03-12 15:55 - 2008-04-13 22:04 - 00011295 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv08nt.sys
2015-03-12 15:55 - 2001-08-17 13:28 - 00397502 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vpctcom.sys
2015-03-12 15:55 - 2001-08-17 13:28 - 00064605 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vvoice.sys
2015-03-12 15:55 - 2001-08-17 12:13 - 00019528 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w840nd.sys
2015-03-12 15:55 - 2001-08-17 12:13 - 00019016 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w926nd.sys
2015-03-12 15:55 - 2001-08-17 12:13 - 00016925 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w940nd.sys
2015-03-12 15:54 - 2008-04-14 05:42 - 00011325 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\vchnt5.dll
2015-03-12 15:54 - 2008-04-14 00:10 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viaide.sys
2015-03-12 15:54 - 2008-04-14 00:06 - 00042240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viaagp.sys
2015-03-12 15:54 - 2001-08-17 13:49 - 00024576 ____C (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\viairda.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00765884 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usrti.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00687999 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrwdxjs.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00604253 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\vmodem.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00224802 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usr1807a.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00113762 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrpda.sys
2015-03-12 15:54 - 2001-08-17 13:28 - 00007556 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usroslba.sys
2015-03-12 15:54 - 2001-08-17 12:14 - 00249402 ____C (Xircom) C:\WINDOWS\system32\dllcache\vinwm.sys
2015-03-12 15:53 - 2008-04-14 00:15 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbser.sys
2015-03-12 15:53 - 2008-04-14 00:15 - 00017152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbohci.sys
2015-03-12 15:53 - 2008-04-13 22:05 - 00032384 ____C (KLSI USA, Inc.) C:\WINDOWS\system32\dllcache\usb101et.sys
2015-03-12 15:53 - 2001-08-17 22:36 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxud32.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu12.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00050688 ____C (UMAX DATA SYSTEMS INC.) C:\WINDOWS\system32\dllcache\umaxscan.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu40.dll
2015-03-12 15:53 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu22.dll
2015-03-12 15:53 - 2001-08-17 13:28 - 00794654 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1801.sys
2015-03-12 15:53 - 2001-08-17 13:28 - 00794399 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806v.sys
2015-03-12 15:53 - 2001-08-17 13:28 - 00793598 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806.sys
2015-03-12 15:52 - 2008-04-14 00:06 - 00044672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uagp35.sys
2015-03-12 15:52 - 2001-08-17 22:36 - 00525568 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxp.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00216064 ____C (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um34scan.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00211968 ____C (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um54scan.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxp60.dll
2015-03-12 15:52 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxcam.dll
2015-03-12 15:52 - 2001-08-17 13:58 - 00022912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxpcls.sys
2015-03-12 15:52 - 2001-08-17 13:52 - 00036736 ____C (Promise Technology, Inc.) C:\WINDOWS\system32\dllcache\ultra.sys
2015-03-12 15:52 - 2001-08-17 13:48 - 00011520 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\twotrack.sys
2015-03-12 15:52 - 2001-08-17 12:51 - 00166784 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxpm.sys
2015-03-12 15:51 - 2008-04-14 05:42 - 00082944 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4mon.exe
2015-03-12 15:51 - 2001-08-17 22:36 - 00031744 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4.dll
2015-03-12 15:51 - 2001-08-17 22:35 - 00042496 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4res.dll
2015-03-12 15:51 - 2001-08-17 14:56 - 00440576 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkb.dll
2015-03-12 15:51 - 2001-08-17 14:56 - 00315520 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3d.dll
2015-03-12 15:51 - 2001-08-17 14:02 - 00230912 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd03.sys
2015-03-12 15:51 - 2001-08-17 13:51 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\toside.sys
2015-03-12 15:51 - 2001-08-17 12:51 - 00222336 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3dm.sys
2015-03-12 15:51 - 2001-08-17 12:51 - 00159232 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkbm.sys
2015-03-12 15:51 - 2001-08-17 12:12 - 00034375 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\tpro4.sys
2015-03-12 15:50 - 2008-04-14 00:10 - 00149376 ____C (M-Systems) C:\WINDOWS\system32\dllcache\tffsport.sys
2015-03-12 15:50 - 2001-08-17 14:56 - 00081408 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiul50.dll
2015-03-12 15:50 - 2001-08-17 14:01 - 00241664 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd02.sys
2015-03-12 15:50 - 2001-08-17 13:49 - 00030464 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tbatm155.sys
2015-03-12 15:50 - 2001-08-17 12:51 - 00138528 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiulnt5.sys
2015-03-12 15:50 - 2001-08-17 12:14 - 00123995 ____C (Tiger Jet Network) C:\WINDOWS\system32\dllcache\tjisdn.sys
2015-03-12 15:50 - 2001-08-17 12:13 - 00037961 ____C (TDK Corporation) C:\WINDOWS\system32\dllcache\tdk100b.sys
2015-03-12 15:50 - 2001-08-17 12:13 - 00017129 ____C (TDK Corporation) C:\WINDOWS\system32\dllcache\tdkcd31.sys
2015-03-12 15:50 - 2001-08-17 12:10 - 00028232 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\dllcache\tos4mo.sys
2015-03-12 15:49 - 2001-08-17 22:36 - 00094293 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sxports.dll
2015-03-12 15:49 - 2001-08-17 14:56 - 00172768 ____C (Number Nine Visual Technology) C:\WINDOWS\system32\dllcache\t2r4disp.dll
2015-03-12 15:49 - 2001-08-17 14:07 - 00032640 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\symc8xx.sys
2015-03-12 15:49 - 2001-08-17 14:07 - 00030688 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\sym_u3.sys
2015-03-12 15:49 - 2001-08-17 14:07 - 00028384 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\sym_hi.sys
2015-03-12 15:49 - 2001-08-17 14:07 - 00016256 ____C (Symbios Logic Inc.) C:\WINDOWS\system32\dllcache\symc810.sys
2015-03-12 15:49 - 2001-08-17 14:02 - 00003968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swusbflt.sys
2015-03-12 15:49 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tandqic.sys
2015-03-12 15:49 - 2001-08-17 13:50 - 00103936 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sx.sys
2015-03-12 15:49 - 2001-08-17 12:50 - 00036640 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\t2r4mini.sys
2015-03-12 15:48 - 2001-08-17 22:36 - 00155648 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnprop.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00099328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusd.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_wheel.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00053248 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlncoin.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_effct.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpidflt.dll
2015-03-12 15:48 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpdflt2.dll
2015-03-12 15:48 - 2001-08-17 13:51 - 00016896 ____C (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\stcusb.sys
2015-03-12 15:48 - 2001-08-17 12:18 - 00285760 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnata.sys
2015-03-12 15:48 - 2001-08-17 12:11 - 00048736 ____C (3Com) C:\WINDOWS\system32\dllcache\srwlnd5.sys
2015-03-12 15:47 - 2008-04-14 00:10 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonyait.sys
2015-03-12 15:47 - 2001-08-17 22:36 - 00114688 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.dll
2015-03-12 15:47 - 2001-08-17 22:36 - 00106584 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spdports.dll
2015-03-12 15:47 - 2001-08-17 22:36 - 00024660 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxupchk.dll
2015-03-12 15:47 - 2001-08-17 14:07 - 00019072 ____C (Adaptec, Inc.) C:\WINDOWS\system32\dllcache\sparrow.sys
2015-03-12 15:47 - 2001-08-17 13:56 - 00007552 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypvu1.sys
2015-03-12 15:47 - 2001-08-17 13:53 - 00009600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonymc.sys
2015-03-12 15:47 - 2001-08-17 13:51 - 00061824 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\speed.sys
2015-03-12 15:47 - 2001-08-17 12:51 - 00037040 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.sys
2015-03-12 15:47 - 2001-08-17 12:51 - 00020752 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonync.sys
2015-03-12 15:46 - 2008-04-14 00:06 - 00016000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbbatt.sys
2015-03-12 15:46 - 2008-04-14 00:06 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbclass.sys
2015-03-12 15:46 - 2008-04-14 00:06 - 00005888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbali.sys
2015-03-12 15:46 - 2001-08-17 22:36 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb3w.dll
2015-03-12 15:46 - 2001-08-17 22:36 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
2015-03-12 15:46 - 2001-08-17 22:36 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
2015-03-12 15:46 - 2001-08-17 14:56 - 00147200 ____C (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smidispb.dll
2015-03-12 15:46 - 2001-08-17 13:57 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbhc.sys
2015-03-12 15:46 - 2001-08-17 13:53 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snyaitmc.sys
2015-03-12 15:46 - 2001-08-17 12:51 - 00058368 ____C (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smiminib.sys
2015-03-12 15:46 - 2001-08-17 12:12 - 00025034 ____C (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smcpwr2n.sys
2015-03-12 15:46 - 2001-08-17 12:12 - 00024576 ____C (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smc8000n.sys
2015-03-12 15:46 - 2001-08-17 12:10 - 00035913 ____C (SMC) C:\WINDOWS\system32\dllcache\smcirda.sys
2015-03-12 15:45 - 2008-04-14 05:42 - 00286792 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slextspk.dll
2015-03-12 15:45 - 2008-04-14 05:42 - 00188508 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slgen.dll
2015-03-12 15:45 - 2008-04-14 05:42 - 00073832 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slcoinst.dll
2015-03-12 15:45 - 2008-04-14 05:42 - 00073796 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slserv.exe
2015-03-12 15:45 - 2008-04-14 05:42 - 00032866 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slrundll.exe
2015-03-12 15:45 - 2008-04-13 23:53 - 00404990 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slntamr.sys
2015-03-12 15:45 - 2008-04-13 23:53 - 00129535 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slnt7554.sys
2015-03-12 15:45 - 2008-04-13 23:53 - 00095424 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slnthal.sys
2015-03-12 15:45 - 2008-04-13 23:53 - 00013240 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slwdmsup.sys
2015-03-12 15:45 - 2008-04-13 22:05 - 00063547 ____C (Symbol Technologies) C:\WINDOWS\system32\dllcache\sla30nd5.sys
2015-03-12 15:45 - 2008-04-13 22:05 - 00032768 ____C (SiS Corporation) C:\WINDOWS\system32\dllcache\sisnic.sys
2015-03-12 15:45 - 2001-08-17 22:36 - 00238592 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrv.dll
2015-03-12 15:45 - 2001-08-17 22:36 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb0w.dll
2015-03-12 15:45 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma0w.dll
2015-03-12 15:45 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm91w.dll
2015-03-12 15:45 - 2001-08-17 14:56 - 00157696 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv256.dll
2015-03-12 15:45 - 2001-08-17 12:50 - 00050432 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv.sys
2015-03-12 15:45 - 2001-08-17 12:12 - 00094698 ____C (SysKonnect GmbH.) C:\WINDOWS\system32\dllcache\sk98xwin.sys
2015-03-12 15:45 - 2001-08-17 12:12 - 00091294 ____C (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) C:\WINDOWS\system32\dllcache\skfpwin.sys
2015-03-12 15:44 - 2008-04-14 05:42 - 00003901 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\siint5.dll
2015-03-12 15:44 - 2008-04-14 00:06 - 00040960 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisagp.sys
2015-03-12 15:44 - 2001-08-17 22:36 - 00386560 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiul50.dll
2015-03-12 15:44 - 2001-08-17 14:56 - 00252032 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300iv.dll
2015-03-12 15:44 - 2001-08-17 14:56 - 00150144 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306v.dll
2015-03-12 15:44 - 2001-08-17 12:51 - 00098080 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiulnt5.sys
2015-03-12 15:44 - 2001-08-17 12:50 - 00104064 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrp.sys
2015-03-12 15:44 - 2001-08-17 12:50 - 00101760 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300ip.sys
2015-03-12 15:44 - 2001-08-17 12:50 - 00068608 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306p.sys
2015-03-12 15:44 - 2001-07-21 14:29 - 00161568 ____C (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmusb.sys
2015-03-12 15:44 - 2001-07-21 14:29 - 00018400 ____C (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmld.sys
2015-03-12 15:43 - 2008-04-14 00:15 - 00011520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiscan.sys
2015-03-12 15:43 - 2008-04-14 00:10 - 00043904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sbp2port.sys
2015-03-12 15:43 - 2001-08-17 22:36 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
2015-03-12 15:43 - 2001-08-17 22:36 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll
2015-03-12 15:43 - 2001-08-17 13:53 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seaddsmc.sys
2015-03-12 15:43 - 2001-08-17 13:53 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\serscan.sys
2015-03-12 15:43 - 2001-08-17 13:52 - 00011648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiprnt.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmusbm.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmn50m.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00017280 ____C (SCM Microsystems) C:\WINDOWS\system32\dllcache\scr111.sys
2015-03-12 15:43 - 2001-08-17 13:51 - 00016640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scmstcs.sys
2015-03-12 15:43 - 2001-08-17 13:48 - 00017664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sermouse.sys
2015-03-12 15:43 - 2001-08-17 12:19 - 00036480 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
2015-03-12 15:42 - 2001-08-17 22:36 - 00495616 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
2015-03-12 15:42 - 2001-08-17 22:36 - 00062496 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mtrio.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00245632 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmx.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00210496 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mvirge.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00198400 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00182272 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.dll
2015-03-12 15:42 - 2001-08-17 14:56 - 00179264 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3d.dll
2015-03-12 15:42 - 2001-08-17 12:50 - 00077824 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4m.sys
2015-03-12 15:42 - 2001-08-17 12:50 - 00075392 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmxm.sys
2015-03-12 15:42 - 2001-08-17 12:50 - 00061504 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3dm.sys
2015-03-12 15:42 - 2001-08-17 12:50 - 00041216 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.sys
2015-03-12 15:41 - 2008-04-14 05:42 - 00397056 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3gnb.dll
2015-03-12 15:41 - 2008-04-14 05:42 - 00029696 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw450ext.dll
2015-03-12 15:41 - 2008-04-14 05:42 - 00027648 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw430ext.dll
2015-03-12 15:41 - 2008-04-14 00:26 - 00030592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rndismpx.sys
2015-03-12 15:41 - 2008-04-14 00:10 - 00079104 ____C (Comtrol Corporation) C:\WINDOWS\system32\dllcache\rocket.sys
2015-03-12 15:41 - 2008-04-13 22:05 - 00020992 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8139.sys
2015-03-12 15:41 - 2008-04-13 22:04 - 00166912 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3gnbm.sys
2015-03-12 15:41 - 2001-08-17 22:36 - 00082432 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia450.dll
2015-03-12 15:41 - 2001-08-17 22:36 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia430.dll
2015-03-12 15:41 - 2001-08-17 22:36 - 00009216 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\rsmgrstr.dll
2015-03-12 15:41 - 2001-08-17 13:57 - 00065664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.sys
2015-03-12 15:41 - 2001-08-17 12:50 - 00166720 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3m.sys
2015-03-12 15:41 - 2001-08-17 12:19 - 00030720 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rthwcls.sys
2015-03-12 15:41 - 2001-08-17 12:19 - 00003840 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rpfun.sys
2015-03-12 15:41 - 2001-08-17 12:12 - 00019017 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8029.sys
2015-03-12 15:40 - 2008-04-14 00:16 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rfcomm.sys
2015-03-12 15:40 - 2008-04-13 23:53 - 00013776 ____C (Smart Link) C:\WINDOWS\system32\dllcache\recagent.sys
2015-03-12 15:40 - 2001-08-17 22:36 - 00086097 ____C (Xircom) C:\WINDOWS\system32\dllcache\reslog32.dll
2015-03-12 15:40 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qvusd.dll
2015-03-12 15:40 - 2001-08-17 22:36 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
2015-03-12 15:40 - 2001-08-17 13:53 - 00003328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qv2kux.sys
2015-03-12 15:40 - 2001-08-17 13:51 - 00019584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rasirda.sys
2015-03-12 15:40 - 2001-08-17 13:28 - 00899146 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdkxga.sys
2015-03-12 15:40 - 2001-08-17 13:28 - 00714762 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdmkxx.sys
2015-03-12 15:40 - 2001-08-17 12:12 - 00037563 ____C (RadioLAN) C:\WINDOWS\system32\dllcache\rlnet5.sys
2015-03-12 15:39 - 2008-04-14 05:42 - 00363520 ____C () C:\WINDOWS\system32\dllcache\psisdecd.dll
2015-03-12 15:39 - 2008-04-14 05:42 - 00159232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusd.dll
2015-03-12 15:39 - 2008-04-14 05:42 - 00033280 ____C () C:\WINDOWS\system32\dllcache\psisrndr.ax
2015-03-12 15:39 - 2008-04-14 00:10 - 00006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qic157.sys
2015-03-12 15:39 - 2001-08-17 22:36 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\psisload.dll
2015-03-12 15:39 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusb.dll
2015-03-12 15:39 - 2001-08-17 13:52 - 00049024 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql1280.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00045312 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql12160.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00040448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ql1240.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00040320 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql1080.sys
2015-03-12 15:39 - 2001-08-17 13:52 - 00033152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ql10wnt.sys
2015-03-12 15:39 - 2001-08-17 13:28 - 00130942 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlv.sys
2015-03-12 15:39 - 2001-08-17 13:28 - 00128286 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserli.sys
2015-03-12 15:39 - 2001-08-17 13:28 - 00112574 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlp.sys
2015-03-12 15:38 - 2008-04-14 00:11 - 00017664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa3.sys
2015-03-12 15:38 - 2008-04-14 00:10 - 00008832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\powerfil.sys
2015-03-12 15:38 - 2001-08-17 22:36 - 00121344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phvfwext.dll
2015-03-12 15:38 - 2001-08-17 22:36 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.dll
2015-03-12 15:38 - 2001-08-17 14:07 - 00019840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philtune.sys
2015-03-12 15:38 - 2001-08-17 14:04 - 00173696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam2.sys
2015-03-12 15:38 - 2001-08-17 14:04 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phildec.sys
2015-03-12 15:38 - 2001-08-17 14:04 - 00075776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.sys
2015-03-12 15:38 - 2001-08-17 13:53 - 00017792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa.sys
2015-03-12 15:38 - 2001-08-17 13:53 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pnrmc.sys
2015-03-12 15:38 - 2001-08-17 13:51 - 00016128 ____C (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\pscr.sys
2015-03-12 15:37 - 2008-04-14 05:40 - 00259328 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3dd.dll
2015-03-12 15:37 - 2008-04-14 05:40 - 00211584 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2dll.dll
2015-03-12 15:37 - 2008-04-14 00:14 - 00028032 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3.sys
2015-03-12 15:37 - 2008-04-14 00:14 - 00027904 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2.sys
2015-03-12 15:37 - 2008-04-13 22:05 - 00029502 ____C (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\pca200e.sys
2015-03-12 15:37 - 2008-04-13 21:42 - 00169984 ____C (Cisco Systems) C:\WINDOWS\system32\dllcache\pcx500.sys
2015-03-12 15:37 - 2001-08-17 22:37 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phdsext.ax
2015-03-12 15:37 - 2001-08-17 22:36 - 00086016 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\pctspk.exe
2015-03-12 15:37 - 2001-08-17 14:07 - 00027296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perc2.sys
2015-03-12 15:37 - 2001-08-17 14:07 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perc2hib.sys
2015-03-12 15:37 - 2001-08-17 12:12 - 00030495 ____C (Linksys) C:\WINDOWS\system32\dllcache\pc100nds.sys
2015-03-12 15:37 - 2001-08-17 12:12 - 00026153 ____C (Linksys) C:\WINDOWS\system32\dllcache\pcmlm56.sys
2015-03-12 15:37 - 2001-08-17 12:11 - 00035328 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntpci5.sys
2015-03-12 15:37 - 2001-08-17 12:11 - 00030282 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5hl.sys
2015-03-12 15:37 - 2001-08-17 12:11 - 00029769 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5m.sys
2015-03-12 15:36 - 2001-08-17 22:36 - 00116736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodec2.dll
2015-03-12 15:36 - 2001-08-17 22:36 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2.dll
2015-03-12 15:36 - 2001-08-17 22:36 - 00041984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2rc.dll
2015-03-12 15:36 - 2001-08-17 22:36 - 00039424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcoms.exe
2015-03-12 15:36 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcomc.dll
2015-03-12 15:36 - 2001-08-17 14:05 - 00351616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodek2.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00048000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcam2.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00031872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovce.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00028032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcd.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00025216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovsound2.sys
2015-03-12 15:36 - 2001-08-17 14:05 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovca.sys
2015-03-12 15:35 - 2008-04-14 05:42 - 04274816 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv4_disp.dll
2015-03-12 15:35 - 2008-04-14 00:16 - 00061696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ohci1394.sys
2015-03-12 15:35 - 2008-04-13 23:53 - 00180360 ____C (Smart Link) C:\WINDOWS\system32\dllcache\ntmtlfax.sys
2015-03-12 15:35 - 2008-04-13 22:04 - 01897408 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv4_mini.sys
2015-03-12 15:35 - 2001-08-17 22:36 - 00123776 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.dll
2015-03-12 15:35 - 2001-08-17 22:36 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
2015-03-12 15:35 - 2001-08-17 13:47 - 00009344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntapm.sys
2015-03-12 15:35 - 2001-08-17 13:28 - 00054186 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otcsercb.sys
2015-03-12 15:35 - 2001-08-17 12:50 - 00198144 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.sys
2015-03-12 15:35 - 2001-08-17 12:49 - 00051552 ____C (Kensington Technology Group) C:\WINDOWS\system32\dllcache\ntgrip.sys
2015-03-12 15:35 - 2001-08-17 12:20 - 00054528 ____C (Yamaha Corp.) C:\WINDOWS\system32\dllcache\opl3sax.sys
2015-03-12 15:35 - 2001-08-17 12:12 - 00043689 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otceth5.sys
2015-03-12 15:35 - 2001-08-17 12:12 - 00027209 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otc06x5.sys
2015-03-12 15:34 - 2008-04-14 00:24 - 00028672 ____C (National Semiconductor Corporation) C:\WINDOWS\system32\dllcache\nscirda.sys
2015-03-12 15:34 - 2008-04-13 22:05 - 00132695 ____C (802.11b) C:\WINDOWS\system32\dllcache\netwlan5.sys
2015-03-12 15:34 - 2001-08-17 22:36 - 00060480 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.dll
2015-03-12 15:34 - 2001-08-17 13:53 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsmmc.sys
2015-03-12 15:34 - 2001-08-17 13:49 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ne2000.sys
2015-03-12 15:34 - 2001-08-17 12:50 - 00039264 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.sys
2015-03-12 15:34 - 2001-08-17 12:20 - 00126080 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm5a2wdm.sys
2015-03-12 15:34 - 2001-08-17 12:20 - 00087040 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm6wdm.sys
2015-03-12 15:34 - 2001-08-17 12:12 - 00032840 ____C (NETGEAR Corporation.) C:\WINDOWS\system32\dllcache\ngrpci.sys
2015-03-12 15:34 - 2001-08-17 12:11 - 00065278 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\netflx3.sys
2015-03-12 15:33 - 2001-08-17 22:36 - 00059104 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.dll
2015-03-12 15:33 - 2001-08-17 22:36 - 00019968 ____C (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxicfg.dll
2015-03-12 15:33 - 2001-08-17 22:36 - 00007168 ____C (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxport.dll
2015-03-12 15:33 - 2001-08-17 14:56 - 00091488 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3disp.dll
2015-03-12 15:33 - 2001-08-17 14:56 - 00035392 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.dll
2015-03-12 15:33 - 2001-08-17 13:50 - 00075520 ____C (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxport.sys
2015-03-12 15:33 - 2001-08-17 13:50 - 00021888 ____C (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxcard.sys
2015-03-12 15:33 - 2001-08-17 13:49 - 00019968 ____C (Macronix International Co., Ltd. ) C:\WINDOWS\system32\dllcache\mxnic.sys
2015-03-12 15:33 - 2001-08-17 12:50 - 00033088 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.sys
2015-03-12 15:33 - 2001-08-17 12:50 - 00027936 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3d.sys
2015-03-12 15:33 - 2001-08-17 12:50 - 00013664 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.sys
2015-03-12 15:33 - 2001-08-17 12:11 - 00128000 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n100325.sys
2015-03-12 15:33 - 2001-08-17 12:11 - 00052255 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n1000nt5.sys
2015-03-12 15:32 - 2008-04-14 05:42 - 01737856 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mtxparhd.dll
2015-03-12 15:32 - 2008-04-14 00:24 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msircomm.sys
2015-03-12 15:32 - 2008-04-14 00:16 - 00049024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstape.sys
2015-03-12 15:32 - 2008-04-14 00:13 - 00012672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mutohpen.sys
2015-03-12 15:32 - 2008-04-13 23:53 - 01309184 ____C (Smart Link) C:\WINDOWS\system32\dllcache\mtlstrm.sys
2015-03-12 15:32 - 2008-04-13 23:53 - 00126686 ____C (Smart Link) C:\WINDOWS\system32\dllcache\mtlmnt5.sys
2015-03-12 15:32 - 2008-04-13 22:04 - 00452736 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mtxparhm.sys
2015-03-12 15:32 - 2001-08-17 14:00 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msmpu401.sys
2015-03-12 15:32 - 2001-08-17 13:48 - 00012416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msriffwv.sys
2015-03-12 15:32 - 2001-08-17 12:50 - 00103296 ____C (Matrox Graphics Inc) C:\WINDOWS\system32\dllcache\mtxvideo.sys
2015-03-12 15:31 - 2008-04-14 05:42 - 00056832 ____C () C:\WINDOWS\system32\dllcache\msdvbnp.ax
2015-03-12 15:31 - 2008-04-14 00:16 - 00051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdv.sys
2015-03-12 15:31 - 2008-04-14 00:16 - 00015232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpe.sys
2015-03-12 15:31 - 2001-08-17 14:02 - 00035200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgame.sys
2015-03-12 15:31 - 2001-08-17 13:57 - 00016128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\modemcsa.sys
2015-03-12 15:31 - 2001-08-17 13:52 - 00017280 ____C (American Megatrends Inc.) C:\WINDOWS\system32\dllcache\mraid35x.sys
2015-03-12 15:31 - 2001-08-17 13:52 - 00006528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\miniqic.sys
2015-03-12 15:31 - 2001-08-17 13:48 - 00012160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mouhid.sys
2015-03-12 15:31 - 2001-08-17 13:48 - 00006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfsio.sys
2015-03-12 15:30 - 2008-04-14 00:11 - 00026112 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\memstpci.sys
2015-03-12 15:30 - 2008-04-13 22:09 - 00020864 ____C (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwadihid.sys
2015-03-12 15:30 - 2001-08-17 22:36 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
2015-03-12 15:30 - 2001-08-17 22:36 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3092dc.dll
2015-03-12 15:30 - 2001-08-17 22:36 - 00058368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3091dc.dll
2015-03-12 15:30 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memgrp.dll
2015-03-12 15:30 - 2001-08-17 14:56 - 00235648 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaud.dll
2015-03-12 15:30 - 2001-08-17 13:58 - 00008320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memcard.sys
2015-03-12 15:30 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mammoth.sys
2015-03-12 15:30 - 2001-08-17 12:50 - 00320384 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaum.sys
2015-03-12 15:30 - 2001-08-17 12:49 - 00022848 ____C (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwusbhid.sys
2015-03-12 15:30 - 2001-08-17 12:19 - 00048768 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\maestro.sys
2015-03-12 15:30 - 2001-08-17 12:12 - 00164586 ____C (Madge Networks Ltd) C:\WINDOWS\system32\dllcache\mdgndis5.sys
2015-03-12 15:29 - 2008-04-14 00:10 - 00034688 ____C (Toshiba Corp.) C:\WINDOWS\system32\dllcache\lbrtfdc.sys
2015-03-12 15:29 - 2008-04-14 00:10 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ltotape.sys
2015-03-12 15:29 - 2008-04-13 23:53 - 00606684 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmnt.sys
2015-03-12 15:29 - 2008-04-13 23:53 - 00420992 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmntt.sys
2015-03-12 15:29 - 2001-08-17 13:53 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\loop.sys
2015-03-12 15:29 - 2001-08-17 13:51 - 00015744 ____C (Litronic Industries) C:\WINDOWS\system32\dllcache\lit220p.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00802683 ____C (Lucent Technologies) C:\WINDOWS\system32\dllcache\ltsm.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00797500 ____C (LT) C:\WINDOWS\system32\dllcache\ltsmt.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00727786 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ltck000c.sys
2015-03-12 15:29 - 2001-08-17 13:28 - 00576746 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmntl.sys
2015-03-12 15:29 - 2001-08-17 12:12 - 00070730 ____C (Linksys Group, Inc.) C:\WINDOWS\system32\dllcache\lne100tx.sys
2015-03-12 15:29 - 2001-08-17 12:12 - 00026442 ____C (SMSC) C:\WINDOWS\system32\dllcache\lanepic5.sys
2015-03-12 15:29 - 2001-08-17 12:12 - 00020573 ____C (The Linksts Group ) C:\WINDOWS\system32\dllcache\lne100.sys
2015-03-12 15:29 - 2001-08-17 12:11 - 00025065 ____C (D-Link) C:\WINDOWS\system32\dllcache\lmndis3.sys
2015-03-12 15:28 - 2008-04-14 05:41 - 00253952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsusd.dll
2015-03-12 15:28 - 2008-04-14 05:41 - 00048640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsui.dll
2015-03-12 15:28 - 2008-04-14 05:39 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd106.dll
2015-03-12 15:28 - 2008-04-14 00:09 - 00014592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdhid.sys
2015-03-12 15:28 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kousd.dll
2015-03-12 15:28 - 2001-08-17 22:36 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdjpn.dll
2015-03-12 15:28 - 2001-08-17 22:36 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkor.dll
2015-03-12 15:28 - 2001-08-17 12:12 - 00019016 ____C (Kingston Technology Company ) C:\WINDOWS\system32\dllcache\ktc111.sys
2015-03-12 15:27 - 2008-04-14 05:42 - 00151552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irftp.exe
2015-03-12 15:27 - 2008-04-14 05:41 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irmon.dll
2015-03-12 15:27 - 2008-04-14 00:24 - 00088192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irda.sys
2015-03-12 15:27 - 2008-04-14 00:10 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\intelide.sys
2015-03-12 15:27 - 2001-08-17 22:36 - 00090200 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8ports.dll
2015-03-12 15:27 - 2001-08-17 14:55 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101c.dll
2015-03-12 15:27 - 2001-08-17 14:55 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101b.dll
2015-03-12 15:27 - 2001-08-17 14:55 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd103.dll
2015-03-12 15:27 - 2001-08-17 13:51 - 00018688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irsir.sys
2015-03-12 15:27 - 2001-08-17 13:50 - 00038784 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8.sys
2015-03-12 15:27 - 2001-08-17 13:49 - 00026624 ____C (SigmaTel, Inc.) C:\WINDOWS\system32\dllcache\irstusb.sys
2015-03-12 15:27 - 2001-08-17 13:49 - 00023552 ____C (MKNet Corporation) C:\WINDOWS\system32\dllcache\irmk7.sys
2015-03-12 15:27 - 2001-08-17 13:47 - 00013056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inport.sys
2015-03-12 15:27 - 2001-08-17 12:12 - 00045632 ____C (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) C:\WINDOWS\system32\dllcache\ip5515.sys
2015-03-12 15:26 - 2001-08-17 22:36 - 00372824 ____C (Xircom) C:\WINDOWS\system32\dllcache\iconf32.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00091136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4com.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4ext.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5com.dll
2015-03-12 15:26 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5ext.dll
2015-03-12 15:26 - 2001-08-17 14:06 - 00154496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4usb.sys
2015-03-12 15:26 - 2001-08-17 14:06 - 00100992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5usb.sys
2015-03-12 15:26 - 2001-08-17 13:52 - 00016000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ini910u.sys
2015-03-12 15:25 - 2008-04-14 05:41 - 00702845 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\i81xdnt5.dll
2015-03-12 15:25 - 2008-04-14 05:41 - 00032285 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfcisp2.dll
2015-03-12 15:25 - 2008-04-14 00:11 - 00018560 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\i2omp.sys
2015-03-12 15:25 - 2008-04-14 00:11 - 00008576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\i2omgmt.sys
2015-03-12 15:25 - 2008-04-13 23:53 - 01041536 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfdpsp2.sys
2015-03-12 15:25 - 2008-04-13 23:53 - 00685056 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfcxts2.sys
2015-03-12 15:25 - 2008-04-13 23:53 - 00220032 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfbs2s2.sys
2015-03-12 15:25 - 2008-04-13 22:04 - 00161020 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\i81xnt5.sys
2015-03-12 15:25 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3ext.dll
2015-03-12 15:25 - 2001-08-17 22:34 - 00009216 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmsgnet.dll
2015-03-12 15:25 - 2001-08-17 14:56 - 00353184 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\i740dnt5.dll
2015-03-12 15:25 - 2001-08-17 14:06 - 00038528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ibmvcap.sys
2015-03-12 15:25 - 2001-08-17 14:05 - 00141056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3.sys
2015-03-12 15:25 - 2001-08-17 13:28 - 00488383 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_v124.sys
2015-03-12 15:25 - 2001-08-17 12:49 - 00058592 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\i740nt5.sys
2015-03-12 15:25 - 2001-08-17 12:12 - 00109085 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtrp.sys
2015-03-12 15:25 - 2001-08-17 12:12 - 00100936 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtok.sys
2015-03-12 15:25 - 2001-08-17 12:11 - 00028700 ____C (IBM Corp.) C:\WINDOWS\system32\dllcache\ibmexmp.sys
2015-03-12 15:24 - 2001-08-17 22:36 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hr1w.dll
2015-03-12 15:24 - 2001-08-17 22:36 - 00009759 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_inst.dll
2015-03-12 15:24 - 2001-08-17 13:52 - 00005760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpt4qic.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00542879 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_msft.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00391199 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_k56k.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00289887 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_fall.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00199711 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_faxx.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00150239 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_amos.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00115807 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_fsks.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00073279 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_spkp.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00067167 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_bsc2.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00057471 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_samp.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00050751 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_tone.sys
2015-03-12 15:24 - 2001-08-17 13:28 - 00044863 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_soar.sys
2015-03-12 15:23 - 2001-08-17 22:36 - 00324608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpojwia.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00165888 ____C () C:\WINDOWS\system32\dllcache\hpgt53.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00126976 ____C (Hewlett Packard) C:\WINDOWS\system32\dllcache\hpgt34tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt21tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00119296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpdigwia.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00101376 ____C () C:\WINDOWS\system32\dllcache\hpgt34.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00093696 ____C () C:\WINDOWS\system32\dllcache\hpgt42.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00089088 ____C () C:\WINDOWS\system32\dllcache\hpgt33.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00083968 ____C () C:\WINDOWS\system32\dllcache\hpgt21.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00068608 ____C (Avisioin) C:\WINDOWS\system32\dllcache\hpgt53tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt33tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgtmcro.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt42tk.dll
2015-03-12 15:23 - 2001-08-17 22:36 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpsjmcro.dll
2015-03-12 15:23 - 2001-08-17 14:07 - 00025952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpn.sys
2015-03-12 15:22 - 2008-04-14 05:41 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidserv.dll
2015-03-12 15:22 - 2008-04-14 00:16 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbth.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gckernel.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00019200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidir.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00010624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
2015-03-12 15:22 - 2008-04-14 00:15 - 00010368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidusb.sys
2015-03-12 15:22 - 2008-04-14 00:10 - 00028288 ____C (Gemplus) C:\WINDOWS\system32\dllcache\grserial.sys
2015-03-12 15:22 - 2008-04-14 00:06 - 00046464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gagp30kx.sys
2015-03-12 15:22 - 2008-04-14 00:06 - 00020352 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbatt.sys
2015-03-12 15:22 - 2001-08-17 14:56 - 01733120 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400d.dll
2015-03-12 15:22 - 2001-08-17 14:56 - 00470144 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200d.dll
2015-03-12 15:22 - 2001-08-17 14:02 - 00008576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidgame.sys
2015-03-12 15:22 - 2001-08-17 14:02 - 00002688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidswvd.sys
2015-03-12 15:22 - 2001-08-17 13:51 - 00082304 ____C (Gemplus) C:\WINDOWS\system32\dllcache\grclass.sys
2015-03-12 15:22 - 2001-08-17 13:51 - 00017408 ____C (Gemplus) C:\WINDOWS\system32\dllcache\gpr400.sys
2015-03-12 15:22 - 2001-08-17 13:28 - 00907456 ____C (Conexant) C:\WINDOWS\system32\dllcache\hcf_msft.sys
2015-03-12 15:22 - 2001-08-17 12:49 - 00322432 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400m.sys
2015-03-12 15:22 - 2001-08-17 12:49 - 00320384 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200m.sys
2015-03-12 15:22 - 2001-08-17 12:15 - 00454912 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fxusbase.sys
2015-03-12 15:21 - 2008-04-13 22:05 - 00034173 ____C (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\forehe.sys
2015-03-12 15:21 - 2003-03-24 16:52 - 00094208 ____C () C:\WINDOWS\system32\dllcache\fpencode.dll
2015-03-12 15:21 - 2003-03-24 16:52 - 00024632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmcgi.exe
2015-03-12 15:21 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmdll.dll
2015-03-12 15:21 - 2001-08-17 22:36 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fuusd.dll
2015-03-12 15:21 - 2001-08-17 22:36 - 00071680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fnfilter.dll
2015-03-12 15:21 - 2001-08-17 22:36 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
2015-03-12 15:21 - 2001-08-17 12:15 - 00455680 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fus2base.sys
2015-03-12 15:21 - 2001-08-17 12:15 - 00455296 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fusbbase.sys
2015-03-12 15:21 - 2001-08-17 12:15 - 00442240 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpnpbase.sys
2015-03-12 15:21 - 2001-08-17 12:14 - 00444416 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcibase.sys
2015-03-12 15:21 - 2001-08-17 12:14 - 00441728 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcmbase.sys
2015-03-12 15:21 - 2001-08-17 12:13 - 00027165 ____C (VIA Technologies, Inc. ) C:\WINDOWS\system32\dllcache\fetnd5.sys
2015-03-12 15:21 - 2001-08-17 12:12 - 00024618 ____C (NETGEAR) C:\WINDOWS\system32\dllcache\fa410nd5.sys
2015-03-12 15:21 - 2001-08-17 12:10 - 00022090 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\fem556n5.sys
2015-03-12 15:20 - 2008-04-13 22:06 - 00137088 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\essm2e.sys
2015-03-12 15:20 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunib.dll
2015-03-12 15:20 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuni.dll
2015-03-12 15:20 - 2001-08-17 22:36 - 00043008 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucm.dll
2015-03-12 15:20 - 2001-08-17 22:36 - 00034816 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimg.dll
2015-03-12 15:20 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exabyte2.sys
2015-03-12 15:20 - 2001-08-17 13:28 - 00595647 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56cvmp.sys
2015-03-12 15:20 - 2001-08-17 13:28 - 00594238 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56hpi.sys
2015-03-12 15:20 - 2001-08-17 13:28 - 00347550 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56tpi.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00174464 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es198x.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00072192 ____C (ESS Technology Inc.) C:\WINDOWS\system32\dllcache\es1969.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00063360 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\ess.sys
2015-03-12 15:20 - 2001-08-17 12:19 - 00040704 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1371mp.sys
2015-03-12 15:20 - 2001-08-17 12:12 - 00016998 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\ex10.sys
2015-03-12 15:20 - 2001-08-17 12:12 - 00016074 ____C (NETGEAR Corp.) C:\WINDOWS\system32\dllcache\fa312nd5.sys
2015-03-12 15:20 - 2001-08-17 12:11 - 00012362 ____C (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xi.sys
2015-03-12 15:20 - 2001-08-17 12:11 - 00011850 ____C (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xj.sys
2015-03-12 15:19 - 2001-08-17 22:36 - 00061952 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnloop.exe
2015-03-12 15:19 - 2001-08-17 22:36 - 00053248 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqndiag.exe
2015-03-12 15:19 - 2001-08-17 22:36 - 00051200 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnlogr.exe
2015-03-12 15:19 - 2001-08-17 13:53 - 00007296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\elmsmc.sys
2015-03-12 15:19 - 2001-08-17 13:50 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epcfw2k.sys
2015-03-12 15:19 - 2001-08-17 13:50 - 00114944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epstw2k.sys
2015-03-12 15:19 - 2001-08-17 13:46 - 00006400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\enum1394.sys
2015-03-12 15:19 - 2001-08-17 13:28 - 00241206 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656se5.sys
2015-03-12 15:19 - 2001-08-17 12:19 - 00283904 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
2015-03-12 15:19 - 2001-08-17 12:19 - 00037120 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1370mp.sys
2015-03-12 15:19 - 2001-08-17 12:17 - 00629952 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqn.sys
2015-03-12 15:19 - 2001-08-17 12:12 - 00018503 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\epro4.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00455199 ____C (3Com Corporation.) C:\WINDOWS\system32\dllcache\el985n51.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00171520 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el99xn51.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00153631 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xnd5.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00070174 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el98xn5.sys
2015-03-12 15:19 - 2001-08-17 12:11 - 00066591 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xbc5.sys
2015-03-12 15:19 - 2001-08-17 12:10 - 00025159 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\elnk3.sys
2015-03-12 15:19 - 2001-08-17 12:10 - 00019996 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\em556n4.sys
2015-03-12 15:18 - 2008-04-14 00:09 - 00206976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4.sys
2015-03-12 15:18 - 2001-08-17 14:07 - 00020192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpti2o.sys
2015-03-12 15:18 - 2001-08-17 13:47 - 00023808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4usb.sys
2015-03-12 15:18 - 2001-08-17 13:47 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4prt.sys
2015-03-12 15:18 - 2001-08-17 13:47 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4scan.sys
2015-03-12 15:18 - 2001-08-17 13:28 - 00634134 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656ct5.sys
2015-03-12 15:18 - 2001-08-17 12:20 - 00334208 ____C (Yamaha Corp.) C:\WINDOWS\system32\dllcache\ds1wdm.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e100b325.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00050719 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e1000nt5.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00028062 ____C (National Semiconductor Coproration) C:\WINDOWS\system32\dllcache\dp83820.sys
2015-03-12 15:18 - 2001-08-17 12:12 - 00019594 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e100isa4.sys
2015-03-12 15:18 - 2001-08-17 12:11 - 00077386 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656nd5.sys
2015-03-12 15:18 - 2001-08-17 12:11 - 00069194 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656cd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00069692 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el575nd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00055999 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el556nd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00044103 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el515.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00026141 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el589nd5.sys
2015-03-12 15:18 - 2001-08-17 12:10 - 00024653 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el574nd4.sys
2015-03-12 15:17 - 2008-04-14 00:10 - 00008320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlttape.sys
2015-03-12 15:17 - 2001-08-17 22:36 - 00614429 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiview.exe
2015-03-12 15:17 - 2001-08-17 22:36 - 00236060 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\ditrace.exe
2015-03-12 15:17 - 2001-08-17 22:36 - 00229462 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifwrk.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00159828 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digihlc.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00131156 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidbp.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00110621 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00102484 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiinf.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00065622 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00041046 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00038985 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvsu.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00037962 ____C () C:\WINDOWS\system32\dllcache\divaprop.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00031305 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvpp.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00029768 ____C () C:\WINDOWS\system32\dllcache\divasu.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00006729 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvci.dll
2015-03-12 15:17 - 2001-08-17 22:36 - 00006216 ____C () C:\WINDOWS\system32\dllcache\divaci.dll
2015-03-12 15:17 - 2001-08-17 12:17 - 00090525 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifep5.sys
2015-03-12 15:17 - 2001-08-17 12:17 - 00042432 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.sys
2015-03-12 15:17 - 2001-08-17 12:14 - 00952007 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\diwan.sys
2015-03-12 15:17 - 2001-08-17 12:14 - 00021606 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.sys
2015-03-12 15:17 - 2001-08-17 12:13 - 00103044 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidxb.sys
2015-03-12 15:17 - 2001-08-17 12:13 - 00091305 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\dimaint.sys
2015-03-12 15:17 - 2001-08-17 12:13 - 00037735 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.sys
2015-03-12 15:17 - 2001-08-17 12:11 - 00029696 ____C (CNet Technology, Inc. ) C:\WINDOWS\system32\dllcache\dm9pci5.sys
2015-03-12 15:17 - 2001-08-17 12:11 - 00026698 ____C (D-Link Corporation) C:\WINDOWS\system32\dllcache\dlh5xnd5.sys
2015-03-12 15:16 - 2008-04-13 22:06 - 00048640 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwrwdm.sys
2015-03-12 15:16 - 2001-08-17 22:36 - 00419357 ____C (Digi International) C:\WINDOWS\system32\dllcache\dgconfig.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00256512 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00110592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc260usd.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc240usd.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00080896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210usd.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyycoins.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzports.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyports.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00027136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzcoins.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210_32.dll
2015-03-12 15:16 - 2001-08-17 22:36 - 00024064 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
2015-03-12 15:16 - 2001-08-17 13:52 - 00179584 ____C (Mylex Corporation) C:\WINDOWS\system32\dllcache\dac2w2k.sys
2015-03-12 15:16 - 2001-08-17 13:52 - 00014720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dac960nt.sys
2015-03-12 15:16 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddsmc.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyport.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00049792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzport.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00017152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclad-z.sys
2015-03-12 15:16 - 2001-08-17 13:50 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclom-y.sys
2015-03-12 15:16 - 2001-08-17 12:19 - 00093952 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcwdm.sys
2015-03-12 15:16 - 2001-08-17 12:17 - 00029531 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\dgapci.sys
2015-03-12 15:16 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\d100ib5.sys
2015-03-12 15:16 - 2001-08-17 12:12 - 00063208 ____C (Intel Corporation.) C:\WINDOWS\system32\dllcache\dc21x4.sys
2015-03-12 15:16 - 2001-08-17 12:11 - 00024649 ____C (D-Link) C:\WINDOWS\system32\dllcache\dfe650d.sys
2015-03-12 15:16 - 2001-08-17 12:11 - 00024648 ____C (D-Link) C:\WINDOWS\system32\dllcache\dfe650.sys
2015-03-12 15:16 - 2001-08-17 12:11 - 00020928 ____C (Digital Networks, LLC) C:\WINDOWS\system32\dllcache\defpa.sys
2015-03-12 15:15 - 2008-04-14 05:41 - 00249856 ____C (Comtrol® Corporation) C:\WINDOWS\system32\dllcache\ctmasetp.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00216064 ____C (COMPAQ Inc.) C:\WINDOWS\system32\dllcache\cpscan.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00175104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\csamsp.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnusd.dll
2015-03-12 15:15 - 2001-08-17 22:36 - 00004096 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
2015-03-12 15:15 - 2001-08-17 14:56 - 00170880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546x.dll
2015-03-12 15:15 - 2001-08-17 14:56 - 00111232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl5465.dll
2015-03-12 15:15 - 2001-08-17 14:56 - 00091264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.dll
2015-03-12 15:15 - 2001-08-17 14:02 - 00272640 ____C (RAVISENT Technologies Inc.) C:\WINDOWS\system32\dllcache\cinemclc.sys
2015-03-12 15:15 - 2001-08-17 13:57 - 00248064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546xm.sys
2015-03-12 15:15 - 2001-08-17 13:57 - 00045696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.sys
2015-03-12 15:15 - 2001-08-17 13:52 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cpqarray.sys
2015-03-12 15:15 - 2001-08-17 13:51 - 00020736 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\cmbp0wdm.sys
2015-03-12 15:15 - 2001-08-17 13:51 - 00006656 ____C (CMD Technology, Inc.) C:\WINDOWS\system32\dllcache\cmdide.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00111872 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcspud.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00096256 ____C (Copyright © Creative Technology Ltd. 1994-2001) C:\WINDOWS\system32\dllcache\ctlsb16.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00072832 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbwdm.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00042112 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\crtaud.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00006912 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003712 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003584 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcosnt5.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbmidi.sys
2015-03-12 15:15 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbase.sys
2015-03-12 15:15 - 2001-08-17 12:13 - 00021533 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\cpqndis5.sys
2015-03-12 15:15 - 2001-08-17 12:11 - 00060970 ____C (Compaq Computer Corp.) C:\WINDOWS\system32\dllcache\cpqtrnd5.sys
2015-03-12 15:15 - 2001-08-17 12:11 - 00039936 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\cnxt1803.sys
2015-03-12 15:14 - 2008-04-14 05:41 - 00121856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.dll
2015-03-12 15:14 - 2008-04-14 05:41 - 00015423 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\ch7xxnt5.dll
2015-03-12 15:14 - 2008-04-14 00:11 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\changer.sys
2015-03-12 15:14 - 2001-08-17 22:37 - 00244224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.ax
2015-03-12 15:14 - 2001-08-17 22:37 - 00116736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.ax
2015-03-12 15:14 - 2001-08-17 22:37 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.ax
2015-03-12 15:14 - 2001-08-17 22:36 - 00236032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.dll
2015-03-12 15:14 - 2001-08-17 22:36 - 00074240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.dll
2015-03-12 15:14 - 2001-08-17 22:36 - 00032256 ____C (Eicon Technology Corporation) C:\WINDOWS\system32\dllcache\diapi2NT.dll
2015-03-12 15:14 - 2001-08-17 14:05 - 00314752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdro21.sys
2015-03-12 15:14 - 2001-08-17 14:04 - 00223232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv21.sys
2015-03-12 15:14 - 2001-08-17 14:04 - 00171264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv30.sys
2015-03-12 15:14 - 2001-08-17 13:52 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cd20xrnt.sys
2015-03-12 15:14 - 2001-08-17 13:28 - 00714698 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cbmdmkxx.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00980034 ____C (Xircom) C:\WINDOWS\system32\dllcache\cicap.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00164923 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\diapi2.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00049182 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem56n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00046108 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cben5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00027164 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce3n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem33n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem28n5.sys
2015-03-12 15:14 - 2001-08-17 12:13 - 00021530 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce2n5.sys
2015-03-12 15:14 - 2001-08-17 12:12 - 00039680 ____C (Silicom Ltd.) C:\WINDOWS\system32\dllcache\cb325.sys
2015-03-12 15:14 - 2001-08-17 12:12 - 00037916 ____C (Fast Ethernet Controller Provider) C:\WINDOWS\system32\dllcache\cb102.sys
2015-03-12 15:13 - 2008-04-14 05:42 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdaplgin.ax
2015-03-12 15:13 - 2008-04-14 00:21 - 00101120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthpan.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00037888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthmodem.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00036480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthprint.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthusb.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthenum.sys
2015-03-12 15:13 - 2008-04-14 00:16 - 00011776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdasup.sys
2015-03-12 15:13 - 2001-08-17 22:36 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\binlsvc.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00081408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brmfcwia.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00041472 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfusb.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00032256 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfrsmg.exe
2015-03-12 15:13 - 2001-08-17 22:36 - 00029696 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmflpt.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00019456 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brbidiif.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00015360 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfbidi.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00012800 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brevif.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brserif.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brcoinst.dll
2015-03-12 15:13 - 2001-08-17 22:36 - 00005120 ____C (Brother Industries,Ltd.) C:\WINDOWS\system32\dllcache\brscnrsm.dll
2015-03-12 15:13 - 2001-08-17 13:51 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bulltlp3.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00060416 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brserwdm.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00039552 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparwdm.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00012160 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltlo.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00011008 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbmdm.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00010368 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbscn.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00003968 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltup.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00003168 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparimg.sys
2015-03-12 15:13 - 2001-08-17 13:12 - 00002944 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brfilt.sys
2015-03-12 15:13 - 2001-08-17 12:11 - 00031529 ____C (BreezeCOM) C:\WINDOWS\system32\dllcache\brzwlan.sys
2015-03-12 15:12 - 2008-04-14 05:42 - 00023040 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativmvxx.ax
2015-03-12 15:12 - 2008-04-14 05:42 - 00009728 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativdaxx.ax
2015-03-12 15:12 - 2008-04-14 05:41 - 00516768 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ativvaxx.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00032768 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativtmxx.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00025471 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv04nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00021183 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv01nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00017279 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv10nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00014143 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv06nt5.dll
2015-03-12 15:12 - 2008-04-14 05:41 - 00011359 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\atv02nt5.dll
2015-03-12 15:12 - 2008-04-14 00:16 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avc.sys
2015-03-12 15:12 - 2008-04-14 00:16 - 00013696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcstrm.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00104960 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinrvxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00073216 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atintuxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00063488 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinxsxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00057856 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinbtxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00052224 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinraxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00031744 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinxbxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00028672 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinsnxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00014336 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinpdxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00013824 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinttxx.sys
2015-03-12 15:12 - 2008-04-13 22:04 - 00013824 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinmdxx.sys
2015-03-12 15:12 - 2001-08-17 22:36 - 00144384 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmenum.dll
2015-03-12 15:12 - 2001-08-17 22:36 - 00087552 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmcoxp.dll
2015-03-12 15:12 - 2001-08-17 14:56 - 00342336 ____C (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.dll
2015-03-12 15:12 - 2001-08-17 14:56 - 00104832 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiraged.dll
2015-03-12 15:12 - 2001-08-17 14:01 - 00036096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcaudio.sys
2015-03-12 15:12 - 2001-08-17 13:28 - 00871388 ____C (BCM) C:\WINDOWS\system32\dllcache\bcmdm.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00075136 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpae.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00049920 ____C () C:\WINDOWS\system32\dllcache\atirtcap.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00026880 ____C () C:\WINDOWS\system32\dllcache\atirtsnd.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00026624 ____C () C:\WINDOWS\system32\dllcache\ativxbar.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00023552 ____C () C:\WINDOWS\system32\dllcache\atixbar.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00019456 ____C () C:\WINDOWS\system32\dllcache\ativttxx.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00017152 ____C () C:\WINDOWS\system32\dllcache\atitvsnd.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00017152 ____C () C:\WINDOWS\system32\dllcache\atitunep.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00010240 ____C () C:\WINDOWS\system32\dllcache\atipcxxx.sys
2015-03-12 15:12 - 2001-08-17 12:49 - 00009472 ____C () C:\WINDOWS\system32\dllcache\ativmdcd.sys
2015-03-12 15:12 - 2001-08-17 12:48 - 00281600 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimtai.sys
2015-03-12 15:12 - 2001-08-17 12:48 - 00070528 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiragem.sys
2015-03-12 15:12 - 2001-08-17 12:48 - 00036128 ____C (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.sys
2015-03-12 15:12 - 2001-08-17 12:19 - 00036992 ____C (Aztech Systems Ltd) C:\WINDOWS\system32\dllcache\aztw2320.sys
2015-03-12 15:12 - 2001-08-17 12:13 - 00089952 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\b1cbase.sys
2015-03-12 15:12 - 2001-08-17 12:13 - 00037568 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmwan.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00096640 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\b57xp32.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00066557 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42u.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00054271 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42xx5.sys
2015-03-12 15:12 - 2001-08-17 12:11 - 00026568 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm4e5.sys
2015-03-12 15:11 - 2008-04-14 05:41 - 01888992 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3duag.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00870784 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3d1ag.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00377984 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvaa.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00229376 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2cqag.dll
2015-03-12 15:11 - 2008-04-14 05:41 - 00201728 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvag.dll
2015-03-12 15:11 - 2008-04-14 00:06 - 00043008 ____C (Advanced Micro Devices, Inc.) C:\WINDOWS\system32\dllcache\amdagp.sys
2015-03-12 15:11 - 2008-04-14 00:06 - 00042752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\alim1541.sys
2015-03-12 15:11 - 2008-04-13 22:05 - 00036224 ____C (ADMtek Incorporated.) C:\WINDOWS\system32\dllcache\an983.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00701440 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtag.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00327040 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtaa.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00063663 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1rvxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00056623 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1btxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00036463 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1tuxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00034735 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1xsxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00030671 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1raxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00029455 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1xbxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00026367 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1snxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00021343 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1ttxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00012047 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1pdxx.sys
2015-03-12 15:11 - 2008-04-13 22:04 - 00011615 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1mdxx.sys
2015-03-12 15:11 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
2015-03-12 15:11 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atievxx.exe
2015-03-12 15:11 - 2001-08-17 14:56 - 00268160 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidvai.dll
2015-03-12 15:11 - 2001-08-17 14:56 - 00137216 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrae.dll
2015-03-12 15:11 - 2001-08-17 14:55 - 00382592 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrab.dll
2015-03-12 15:11 - 2001-08-17 14:55 - 00096128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ati.dll
2015-03-12 15:11 - 2001-08-17 14:07 - 00056960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aic78xx.sys
2015-03-12 15:11 - 2001-08-17 14:07 - 00055168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aic78u2.sys
2015-03-12 15:11 - 2001-08-17 13:57 - 00077568 ____C (ATI Technologies, Inc.) C:\WINDOWS\system32\dllcache\ati.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00026496 ____C (Advanced System Products, Inc.) C:\WINDOWS\system32\dllcache\asc.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00022400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asc3350p.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aha154x.sys
2015-03-12 15:11 - 2001-08-17 13:52 - 00012032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\amsint.sys
2015-03-12 15:11 - 2001-08-17 13:51 - 00014848 ____C (Advanced System Products, Inc.) C:\WINDOWS\system32\dllcache\asc3550.sys
2015-03-12 15:11 - 2001-08-17 13:51 - 00005248 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\aliide.sys
2015-03-12 15:11 - 2001-08-17 13:49 - 00026624 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\alifir.sys
2015-03-12 15:11 - 2001-08-17 13:47 - 00006272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\apmbatt.sys
2015-03-12 15:11 - 2001-08-17 12:49 - 00046464 ____C () C:\WINDOWS\system32\dllcache\atibt829.sys
2015-03-12 15:11 - 2001-08-17 12:48 - 00289664 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpab.sys
2015-03-12 15:11 - 2001-08-17 12:12 - 00097354 ____C (Bay Networks, Inc.) C:\WINDOWS\system32\dllcache\aspndis3.sys
2015-03-12 15:11 - 2001-08-17 12:11 - 00027678 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ali5261.sys
2015-03-12 15:11 - 2001-08-17 12:11 - 00016969 ____C (AmbiCom, Inc.) C:\WINDOWS\system32\dllcache\amb8002.sys
2015-03-12 15:10 - 2008-04-14 05:41 - 00004255 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv01nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003967 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv02nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003775 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv11nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003711 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv09nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003647 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv07nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003615 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv05nt5.dll
2015-03-12 15:10 - 2008-04-14 05:41 - 00003135 ____C (Intel® Corporation) C:\WINDOWS\system32\dllcache\adv08nt5.dll
2015-03-12 15:10 - 2008-04-14 00:16 - 00053376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394bus.sys
2015-03-12 15:10 - 2008-04-14 00:16 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\61883.sys
2015-03-12 15:10 - 2008-04-14 00:10 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\4mmdat.sys
2015-03-12 15:10 - 2008-04-14 00:06 - 00044928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agpcpq.sys
2015-03-12 15:10 - 2008-04-14 00:06 - 00042368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agp440.sys
2015-03-12 15:10 - 2008-04-13 22:06 - 00231552 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ac97ali.sys
2015-03-12 15:10 - 2008-04-13 22:06 - 00084480 ____C (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\ac97via.sys
2015-03-12 15:10 - 2008-04-13 22:06 - 00010880 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\admjoy.sys
2015-03-12 15:10 - 2001-08-17 22:37 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agcgauge.ax
2015-03-12 15:10 - 2001-08-17 22:36 - 00462848 ____C (Aureal Inc.) C:\WINDOWS\system32\dllcache\a3dapi.dll
2015-03-12 15:10 - 2001-08-17 22:36 - 00098304 ____C (Aureal Semiconductor) C:\WINDOWS\system32\dllcache\a3d.dll
2015-03-12 15:10 - 2001-08-17 22:36 - 00061440 ____C (Color Flatbed Scanner) C:\WINDOWS\system32\dllcache\acerscad.dll
2015-03-12 15:10 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
2015-03-12 15:10 - 2001-08-17 14:55 - 00689216 ____C (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvs.dll
2015-03-12 15:10 - 2001-08-17 14:55 - 00038400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\8514a.dll
2015-03-12 15:10 - 2001-08-17 14:07 - 00101888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adpu160m.sys
2015-03-12 15:10 - 2001-08-17 14:06 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394vdbg.sys
2015-03-12 15:10 - 2001-08-17 13:53 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adicvls.sys
2015-03-12 15:10 - 2001-08-17 13:52 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\abp480n5.sys
2015-03-12 15:10 - 2001-08-17 13:28 - 00762780 ____C (3Com, Inc.) C:\WINDOWS\system32\dllcache\3cwmcru.sys
2015-03-12 15:10 - 2001-08-17 12:48 - 00148352 ____C (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvsm.sys
2015-03-12 15:10 - 2001-08-17 12:20 - 00297728 ____C (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\dllcache\ac97sis.sys
2015-03-12 15:10 - 2001-08-17 12:20 - 00096256 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\ac97intc.sys
2015-03-12 15:10 - 2001-08-17 12:19 - 00747392 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8830.sys
2015-03-12 15:10 - 2001-08-17 12:19 - 00584448 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8810.sys
2015-03-12 15:10 - 2001-08-17 12:19 - 00553984 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8820.sys
2015-03-12 15:10 - 2001-08-17 12:11 - 00046112 ____C (Adaptec, Inc ) C:\WINDOWS\system32\dllcache\adptsf50.sys
2015-03-12 15:10 - 2001-08-17 12:11 - 00020160 ____C (ADMtek Incorporated) C:\WINDOWS\system32\dllcache\adm8511.sys
2015-03-12 15:09 - 2004-05-13 00:39 - 00876653 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awel.dll
2015-03-12 15:09 - 2004-05-13 00:39 - 00598071 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmc.dll
2015-03-12 15:09 - 2004-05-13 00:39 - 00184435 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4amsft.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00208896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmcsat.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00188494 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpcount.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00147513 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4apws.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00109328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98swin.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00102509 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4atxt.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00082035 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4anscp.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00049212 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awebs.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00049210 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4areg.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00041020 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avnb.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00032827 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptest.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00032826 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avss.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpexedll.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00020538 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpremadm.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00020536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00016437 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.exe
2015-03-12 15:09 - 2003-03-24 16:52 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptsat.dll
2015-03-12 15:09 - 2003-03-24 16:52 - 00014608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98sadm.exe
2015-03-12 15:09 - 2001-08-17 14:56 - 00066048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.dll
2015-03-12 15:08 - 2003-03-24 16:52 - 00188480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgwiz.exe
2015-03-12 15:08 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.dll
2015-03-12 15:08 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.dll
2015-03-12 15:08 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.exe
2015-03-12 15:08 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.exe
2015-03-12 14:33 - 2015-03-12 14:33 - 00000000 ____D () C:\Documents and Settings\NetworkService\Start Menu\Programs\Accessories
2015-03-12 14:25 - 2015-03-12 16:42 - 00015026 _____ () C:\WINDOWS\bitssetup.log
2015-03-12 14:24 - 2015-03-12 16:25 - 00001114 _____ () C:\WINDOWS\Windows Update.log
2015-03-12 14:12 - 2015-03-12 14:12 - 00000000 ____D () C:\RegBackup
2015-03-12 14:10 - 2015-03-12 14:10 - 00001823 _____ () C:\Documents and Settings\N310\Desktop\Tweaking.com - Windows Repair (All in One).lnk
2015-03-12 11:34 - 2015-03-12 11:34 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Tweaking.com
2015-03-12 11:06 - 2015-03-12 11:06 - 00000000 ____D () C:\Program Files\Tweaking.com
2015-03-12 10:59 - 2015-03-12 10:59 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031215-01.dmp
2015-03-12 10:45 - 2015-03-12 10:45 - 11755088 _____ () C:\Documents and Settings\N310\Desktop\tweaking.com_windows_repair_aio_setup.exe
2015-03-11 17:50 - 2015-03-13 20:57 - 00000000 ____D () C:\AdwCleaner
2015-03-11 17:41 - 2015-03-11 10:38 - 02171392 _____ () C:\Documents and Settings\N310\Desktop\AdwCleaner.exe
2015-03-11 17:13 - 2015-03-16 21:11 - 00000000 ____D () C:\Documents and Settings\N310\Desktop\BC response
2015-03-11 16:05 - 2015-03-12 12:32 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware (portable)
2015-03-11 15:53 - 2015-03-12 12:32 - 00000000 ____D () C:\Documents and Settings\N310\Desktop\mbar
2015-03-11 15:51 - 2015-03-11 10:37 - 16502728 _____ (Malwarebytes Corp.) C:\Documents and Settings\N310\Desktop\mbar-1.09.1.1004.exe
2015-03-11 15:38 - 2015-03-11 15:38 - 00000814 _____ () C:\Documents and Settings\N310\Start Menu\Programs\Internet Explorer.lnk
2015-03-11 15:33 - 2015-03-11 15:32 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031115-03.dmp
2015-03-11 15:20 - 2015-03-11 15:20 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031115-02.dmp
2015-03-11 11:13 - 2015-03-11 10:35 - 00852604 _____ () C:\Documents and Settings\N310\Desktop\SecurityCheck.exe
2015-03-11 11:04 - 2015-03-11 10:35 - 00852604 _____ () C:\Documents and Settings\Administrator\My Documents\SecurityCheck.exe
2015-03-11 11:01 - 2015-03-11 11:01 - 00110592 _____ () C:\WINDOWS\Minidump\Mini031115-01.dmp
2015-03-11 10:38 - 2015-03-11 10:38 - 02171392 _____ () C:\Documents and Settings\Administrator\Desktop\AdwCleaner.exe
2015-03-11 10:37 - 2015-03-11 10:37 - 16502728 _____ (Malwarebytes Corp.) C:\Documents and Settings\Administrator\Desktop\mbar-1.09.1.1004.exe
2015-03-11 10:35 - 2015-03-11 10:35 - 00852604 _____ () C:\Documents and Settings\Administrator\Desktop\SecurityCheck.exe
2015-03-10 12:05 - 2015-03-16 21:13 - 00000000 ____D () C:\FRST
2015-03-10 11:58 - 2015-03-10 11:58 - 01134592 _____ (Farbar) C:\Documents and Settings\Administrator\Desktop\FRST.exe
2015-03-06 20:33 - 2015-03-06 20:33 - 00106496 _____ () C:\WINDOWS\Minidump\Mini030615-02.dmp
2015-03-06 20:20 - 2015-03-06 20:20 - 00005384 _____ () C:\Documents and Settings\N310\Desktop\Rkill.txt
2015-03-06 20:14 - 2015-03-06 20:14 - 00110592 _____ () C:\WINDOWS\Minidump\Mini030615-01.dmp
2015-03-06 20:01 - 2015-03-06 20:01 - 00013218 _____ () C:\Documents and Settings\N310\Desktop\Rkill 4.txt
2015-03-06 16:26 - 2015-03-06 16:43 - 00035118 _____ () C:\Documents and Settings\N310\Desktop\Rkill 3.txt
2015-03-03 07:06 - 2015-03-03 07:06 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Application Data\Symantec
2015-03-02 23:27 - 2015-03-02 23:26 - 00110592 _____ () C:\WINDOWS\Minidump\Mini030215-01.dmp
2015-03-02 10:13 - 2015-03-02 10:14 - 00000000 ____D () C:\sfzone_profile
2015-03-02 08:45 - 2015-03-02 08:45 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys
2015-02-28 10:13 - 2015-02-28 10:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Temp
2015-02-28 09:43 - 2015-03-16 14:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software
2015-02-24 20:57 - 2015-02-24 20:57 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Symantec

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-03-16 21:13 - 2010-02-04 17:53 - 00000000 ____D () C:\Documents and Settings\N310\Local Settings\Temp
2015-03-16 21:12 - 2012-01-18 14:26 - 00000420 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{8974E1E2-AB23-45FC-91FA-981FDC2E1561}.job
2015-03-16 20:31 - 2015-02-05 22:26 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-03-16 19:52 - 2009-11-18 23:28 - 00032384 _____ () C:\WINDOWS\SchedLgU.Txt
2015-03-16 18:28 - 2009-11-18 15:21 - 00580516 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2015-03-16 15:05 - 2009-11-18 23:25 - 01398431 _____ () C:\WINDOWS\WindowsUpdate.log
2015-03-16 15:04 - 2009-11-19 14:44 - 00001158 _____ () C:\WINDOWS\system32\wpa.dbl
2015-03-16 15:01 - 2009-11-18 15:23 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-03-16 15:01 - 2009-11-18 15:23 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-03-16 15:00 - 2009-11-18 23:28 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-03-16 14:59 - 2015-02-06 21:17 - 00458752 _____ () C:\WINDOWS\system32\config\Symantec.evt
2015-03-16 14:59 - 2010-02-04 17:53 - 00000178 ___SH () C:\Documents and Settings\N310\ntuser.ini
2015-03-16 14:59 - 2010-01-17 15:44 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt
2015-03-16 14:52 - 2015-02-08 16:52 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp
2015-03-16 14:52 - 2013-12-10 12:15 - 00000000 ___HD () C:\Documents and Settings\Jeff\Local Settings\Temp
2015-03-16 14:44 - 2009-11-18 23:28 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp
2015-03-16 13:55 - 2010-09-04 11:25 - 00000000 ___HD () C:\Documents and Settings\All Users\Application Data\Symantec
2015-03-16 13:40 - 2015-02-06 21:17 - 00142936 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
2015-03-16 13:40 - 2015-02-06 21:17 - 00008194 _____ () C:\WINDOWS\system32\Drivers\SYMEVENT.CAT
2015-03-16 13:39 - 2015-02-06 21:15 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Symantec Endpoint Protection
2015-03-16 13:38 - 2015-02-06 21:16 - 00424288 _____ (Symantec Corporation) C:\WINDOWS\system32\SymVPN.dll
2015-03-16 13:38 - 2015-02-06 21:16 - 00139104 _____ (Symantec Corporation) C:\WINDOWS\system32\FwsVpn.dll
2015-03-16 13:38 - 2015-02-06 21:16 - 00131176 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\SysPlant.sys
2015-03-16 13:38 - 2015-02-06 21:16 - 00031648 _____ (Symantec Corporation) C:\WINDOWS\system32\Drivers\WGX.SYS
2015-03-14 18:21 - 2009-11-18 15:21 - 01066841 _____ () C:\WINDOWS\setupapi.log
2015-03-14 16:41 - 2015-02-08 16:52 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2015-03-14 15:10 - 2010-02-04 17:53 - 00056592 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-03-13 22:47 - 2011-01-13 13:14 - 00002193 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Safari.lnk
2015-03-12 21:36 - 2010-09-03 23:52 - 00000000 ____D () C:\Documents and Settings\N310\Local Settings\Application Data\Temp
2015-03-12 16:49 - 2009-11-18 15:21 - 00227208 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2015-03-12 16:48 - 2009-11-19 00:15 - 00004332 ____C () C:\WINDOWS\COM+.log
2015-03-12 16:44 - 2009-11-18 23:24 - 00000000 ____D () C:\WINDOWS\Registration
2015-03-12 16:38 - 2009-11-18 23:28 - 00000000 __SHD () C:\Documents and Settings\LocalService
2015-03-12 16:38 - 2009-11-18 23:26 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
2015-03-12 16:38 - 2009-11-18 23:26 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
2015-03-12 14:33 - 2009-11-18 23:28 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2015-03-12 12:33 - 2015-02-09 16:05 - 00114904 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-03-12 10:59 - 2011-01-09 14:31 - 00000000 ____D () C:\WINDOWS\Minidump
2015-03-11 15:38 - 2009-11-18 23:23 - 00064290 _____ () C:\WINDOWS\wmsetup.log
2015-02-28 09:43 - 2015-02-08 16:52 - 00056592 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
2015-02-28 08:13 - 2010-09-04 00:48 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB979309$
2015-02-25 05:47 - 2015-01-29 09:43 - 00000000 ____D () C:\WINDOWS\FrameworkUpdate

==================== Files in the root of some directories =======

2004-09-10 10:40 - 2004-09-10 10:40 - 0075264 _____ (Microsoft Corporation) C:\Program Files\DECCHECK.exe
2004-09-10 10:40 - 2004-09-10 10:40 - 0002688 _____ () C:\Program Files\eula.TXT.wqvksgj
2015-01-29 10:22 - 2015-01-29 10:22 - 0008554 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.HTML
2015-01-29 10:22 - 2015-01-29 10:22 - 0045663 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.PNG
2015-01-29 10:22 - 2015-01-29 10:22 - 0004220 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.TXT
2015-01-29 10:22 - 2015-01-29 10:22 - 0000276 _____ () C:\Documents and Settings\N310\Application Data\HELP_DECRYPT.URL
2010-09-05 13:10 - 2013-03-05 19:19 - 0001386 _____ () C:\Documents and Settings\N310\Application Data\Rim.Desktop.Exception.log
2010-09-05 12:55 - 2013-02-21 23:08 - 0003679 ____C () C:\Documents and Settings\N310\Application Data\Rim.Desktop.HttpServerSetup.log
2011-10-15 22:10 - 2013-03-05 19:19 - 0000539 _____ () C:\Documents and Settings\N310\Application Data\Rim.DesktopHelper.Exception.log
2013-03-05 19:06 - 2013-03-05 19:19 - 0000077 _____ () C:\Documents and Settings\N310\Application Data\Rim.Transcoder.Exception.log
2010-02-06 11:56 - 2010-02-06 11:56 - 0000000 ____C () C:\Documents and Settings\N310\Application Data\wklnhst.dat
2015-01-29 09:43 - 2015-01-29 09:43 - 0000480 ____H () C:\Documents and Settings\N310\Application Data\麽鎒駓覜
2010-07-12 17:31 - 2014-04-22 15:48 - 0082432 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2015-01-29 10:36 - 2015-01-29 10:36 - 0008554 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.HTML
2015-01-29 10:36 - 2015-01-29 10:36 - 0045663 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.PNG
2015-01-29 10:36 - 2015-01-29 10:36 - 0004220 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.TXT
2015-01-29 10:36 - 2015-01-29 10:36 - 0000276 _____ () C:\Documents and Settings\N310\Local Settings\Application Data\HELP_DECRYPT.URL
2015-01-29 10:20 - 2015-01-29 10:20 - 0008554 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.HTML
2015-01-29 10:20 - 2015-01-29 10:20 - 0045663 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.PNG
2015-01-29 10:20 - 2015-01-29 10:20 - 0004220 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.TXT
2015-01-29 10:20 - 2015-01-29 10:20 - 0000276 _____ () C:\Documents and Settings\All Users\HELP_DECRYPT.URL

==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================



#15 Jo*

Jo*

  • Malware Response Team
  • 3,417 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Germany
  • Local time:10:10 AM

Posted 17 March 2015 - 05:03 AM

Hello TravelingOne,


Malwarebytes' Anti-Malware
If this program is already installed: Skip the installation and run only the scan!
Download and install: Please download Malwarebytes Anti-Malware to your desktop.
  • Double-click mb3-setup-1878.1878-3.5.1.2522.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to the following:
    • Launch Malwarebytes Anti-Malware
    • A 14 day trial of the Premium features is pre-selected. You may deselect this if you wish, and it will not diminish the scanning and removal capabilities of the program.
  • Click Finish.
  • On the Dashboard, click the 'Update Now >>' link
  • After the update completes, click the 'Scan Now >>' button.
  • Or, on the Dashboard, click the Scan Now >> button.
  • If an update is available, click the Update Now button.
  • A Threat Scan will begin.
  • When the scan is complete, if there have been detections, click Apply Actions to allow MBAM to clean what was detected.
  • In most cases, a restart will be required.
  • Wait for the prompt to restart the computer to appear, then click on Yes.
How to get logs: (Export log to save as txt)
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Export'.
  • Click 'Text file (*.txt)'
  • In the Save File dialog box which appears, click on Desktop.
  • In the File name: box type a name for your scan log.
  • A message box named 'File Saved' should appear stating "Your file has been successfully exported".
  • Click Ok
  • Attach that saved log to your next reply.
(Copy to clipboard for pasting into forum replies or tickets)
  • After the restart once you are back at your desktop, open MBAM once more.
  • Click on the History tab > Application Logs.
  • Double click on the scan log which shows the Date and time of the scan just performed.
  • Click 'Copy to Clipboard'
  • Paste the contents of the clipboard into your reply.

---


ESET Online Scanner

Connect any existing external hard drives and / or other removable media.

Note:
It is recommended to disable onboard antivirus program and antispyware programs while performing scans so there are no conflicts and it will speed up scan time.
Please don't go surfing while your resident protection is disabled!
Once the scan is finished remember to re-enable your antivirus along with your antispyware programs.



If this program is already installed: Skip the installation and run only the scan!
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the esetOnline.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetSmartInstall.png to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetSmartInstallDesktopIcon.png icon on your desktop.
  • Check esetAcceptTerms.png
  • Click the esetStart.png button.
  • Accept any security warnings from your browser.
  • Check esetScanArchives.png
  • Make sure that the option "Remove found threats" is Unchecked
  • Push the Start button.
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push esetListThreats.png
  • Push esetExport.png, and save the file to your desktop using a unique name, such as MyEsetScan. Alternatively, look for report in C:\Program Files\ESET\ESET Online Scanner\log.txt. Include the contents of this report in your next reply.
  • Push the Back button.
  • Select Uninstall application on close check box and push esetFinish.png

---


How the computer is running now?


---


Graduate of the WTT Classroom
Cheers,
Jo
If I have been helping you, and I have not replied to your latest post in 36 hours please send me a PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users