Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

pcwatch.sys pcprotect virus


  • This topic is locked This topic is locked
7 replies to this topic

#1 daqid

daqid

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 31 May 2015 - 02:52 PM

hi everyone, i consider myself advanced when it comes to computers but this one has got me stumped. my dads gets viruses every other month on his laptop running xp media center edition. usually i scan it with malwarebytes and adwcleaner and its good to go but this time after scanning with both and restarting it won't connect to the internet. i've tried running winsock reset but get access is denied, even with administrator account. tried 7 tools to fix the winsock error but nothing. so i decided to rescan with malware bytes and adwcleaner. it came up with pcwatch.sys and pcprotect and a webprotect registry entry. so i deleted them and restarted and ran adw again and its back again. even tried running in safe mode. i'm not sure if thats the problem with why my network settings are all messed up or not but its what i'm leaning too. here is my frst log. i really don't want to have to reinstall so any help would be greatly appreciated.


Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 29-05-2015
Ran by Martha Olive (administrator) on MARTHA on 31-05-2015 14:25:08
Running from F:\
Loaded Profiles: Martha Olive (Available Profiles: Martha Olive & Administrator)
Platform: Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English (United States)
Internet Explorer Version 8 (Default browser: FF)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

() C:\WINDOWS\system32\WLTRYSVC.EXE
(Dell Inc.) C:\WINDOWS\system32\BCMWLTRY.EXE
(Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Broadcom Corporation.) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehrecvr.exe
(Microsoft Corporation) C:\WINDOWS\ehome\ehSched.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation) C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
(Dell Inc.) C:\Program Files\Dell\QuickSet\NicConfigSvc.exe
(Microsoft Corporation) C:\WINDOWS\system32\dllhost.exe
(Malwarebytes Corporation) C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
() C:\Program Files\Unlocker\UnlockerAssistant.exe
(MagicISO, Inc.) C:\Program Files\MagicDisc\MagicDisc.exe
(Microsoft Corporation) C:\WINDOWS\system32\taskmgr.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [DXDllRegExe] => dxdllreg.exe
HKLM\...\Run: [UnlockerAssistant] => C:\Program Files\Unlocker\UnlockerAssistant.exe [17408 2010-07-04] ()
Winlogon\Notify\USB3Nw32: USB3Nw32.dll [X]
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\...\MountPoints2: G - G:\setup.exe
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\...\MountPoints2: {361ac05d-0e0d-11da-9aa9-806d6172696f} - E:\setup.exe
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\...\MountPoints2: {ce5ba233-6ac7-11e4-bc0e-0016cf5f69f8} - F:\KODAK_Camera_Setup_App.exe
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Control Panel\Desktop\\SCRNSAVE.EXE -> C:\WINDOWS\system32\3DMAZE~1.SCR [478128 1999-04-23] (Microsoft Corporation)
HKU\S-1-5-18\...\Run: [DWQueuedReporting] => c:\Program Files\Common Files\Microsoft Shared\DW\DWTRIG20.EXE [437160 2007-02-26] (Microsoft Corporation)
Startup: C:\Documents and Settings\Martha Olive\Start Menu\Programs\Startup\MagicDisc.lnk [2015-05-30]
ShortcutTarget: MagicDisc.lnk -> C:\Program Files\MagicDisc\MagicDisc.exe (MagicISO, Inc.)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=6061004
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Software\Microsoft\Internet Explorer\Main,SearchMigratedDefaultURL = http://www.google.com/search?q={searchTerms}&sourceid=ie7&rls=com.microsoft:en-US&ie=utf8&oe=utf8
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Software\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://www.msn.com/?ocid=iehp
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
BHO: Adobe PDF Reader Link Helper -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18] (Adobe Systems Incorporated)
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll [2011-12-03] (RealPlayer)
BHO: DriveLetterAccess -> {5CA3D70E-1895-11CF-8E15-001234567890} -> C:\WINDOWS\System32\DLA\DLASHX_W.DLL [2005-09-08] (Sonic Solutions)
BHO: Java™ Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll [2013-01-13] (Sun Microsystems, Inc.)
BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-01-22] (Microsoft Corporation)
BHO: Java™ Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll [2013-01-13] (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2013-01-13] (Sun Microsystems, Inc.)
Toolbar: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/9/b/d/9bdc68ef-6a9f-4505-8fb8-d0d2d160e512/LegitCheckControl.cab
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1160524618046
DPF: {6F750203-1362-4815-A476-88533DE61D0C} http://www.kodakgallery.com/downloads/BUM/BUM_WIN_IE_2/axofupld.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0038-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_38-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: cetihpz - {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll [2003-12-22] (Hewlett-Packard Company)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll [2006-06-04] (Microsoft Corporation)
Filter: text/html - {3cad787d-9337-4381-86d1-3ffb60e8894a} - C:\WINDOWS\system32\xwreg32.dll No File
Winsock: Catalog5 01 mswsock.dll File not found ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 03 mswsock.dll File not found ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704 2011-08-31] (Apple Inc.)
Winsock: Catalog9 01 C:\WINDOWS\system32\PCProtect.dll File not found
Winsock: Catalog9 02 C:\WINDOWS\system32\PCProtect.dll File not found
Winsock: Catalog9 20 C:\WINDOWS\system32\PCProtect.dll File not found
Tcpip\..\Interfaces\{BBA14B51-B5FC-496A-BDEE-61D8D5B41744}: [NameServer] 192.168.1.1
StartMenuInternet: IEXPLORE.EXE - iexplore.exe

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default
FF SearchEngineOrder.1: Yahoo
FF SearchEngineOrder.2:
FF SelectedSearchEngine: Yahoo
FF Homepage: hxxp://www.yahoo.com/
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_17_0_0_169.dll [2015-04-15] ()
FF Plugin: @Apple.com/iTunes,version=1.0 -> C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll [2013-02-20] ()
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll [2011-06-20] (DivX, LLC.)
FF Plugin: @google.com/npPicasa3,version=3.0.0 -> C:\Program Files\Google\Picasa3\npPicasa3.dll [2014-01-06] (Google, Inc.)
FF Plugin: @java.com/DTPlugin,version=1.6.0_38 -> C:\WINDOWS\system32\npdeployJava1.dll [2013-01-13] (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll [2013-01-13] (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation)
FF Plugin: @microsoft.com/WLPG,version=14.0.8117.0416 -> C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll [2010-04-16] (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-29] (Microsoft Corporation)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.27.5\npGoogleUpdate3.dll [2015-05-17] (Google Inc.)
FF Extension: WOT - C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{a0d7ccb3-214d-498b-b4aa-0e8fda9a7bf7} [2015-05-30]
FF Extension: Adblock Plus Pop-up Addon - C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\adblockpopups@jessehakanen.net.xpi [2013-10-25]
FF Extension: Freeze.com NetAssistant - C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{1266764D-FC4F-4FA7-B63B-884D53B1680F}.xpi [2014-02-03]
FF Extension: Adblock Plus - C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2013-10-25]
FF Extension: SySaver - C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org [2015-05-20]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-08-05]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: No Name - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2011-06-15]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2013-01-13]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-05-20] <==== ATTENTION

Chrome:
=======
CHR Profile: C:\Documents and Settings\Martha Olive\Local Settings\Application Data\Google\Chrome\User Data\Default
CHR Extension: (Google Wallet) - C:\Documents and Settings\Martha Olive\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-12]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [Not Found]

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S2 6to4; C:\WINDOWS\System32\svchost.exe [14336 2008-04-13] (Microsoft Corporation)
R2 btwdins; C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe [266295 2006-05-24] (Broadcom Corporation.) [File not signed]
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [153584 2013-01-13] (Sun Microsystems, Inc.)
R2 MBAMScheduler; C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe [1871160 2015-04-14] (Malwarebytes Corporation)
R2 MBAMService; C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe [1080120 2015-04-14] (Malwarebytes Corporation)
S2 McrdSvc; C:\WINDOWS\ehome\mcrdsvc.exe [99328 2005-08-05] (Microsoft Corporation)
S3 MHN; C:\WINDOWS\System32\mhn.dll [85504 2004-08-10] (Microsoft Corporation) [File not signed]
R2 MSSQL$MICROSOFTSMLBIZ; C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe [9158656 2008-12-18] (Microsoft Corporation)
S3 MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [73728 2005-05-03] (Microsoft Corporation) [File not signed]
R2 NICCONFIGSVC; C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe [376832 2006-06-29] (Dell Inc.) [File not signed]
S3 SQLAgent$MICROSOFTSMLBIZ; C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE [323584 2005-05-03] (Microsoft Corporation) [File not signed]
R2 wltrysvc; C:\WINDOWS\System32\bcmwltry.exe [1236992 2006-06-22] (Dell Inc.) [File not signed]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe" [X]
S2 NecUsb; C:\WINDOWS\system32\NUSB3w32.dll [X]
S3 PCProtect; C:\Program Files\Web Protect\PCProtect.exe [X] <==== ATTENTION

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

S4 abp480n5; C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS [23552 2001-08-17] (Microsoft Corporation)
R1 AFS2K; C:\WINDOWS\system32\Drivers\AFS2K.sys [35840 2004-10-07] (Oak Technology Inc.)
R1 APPDRV; C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS [16128 2005-08-12] (Dell Inc) [File not signed]
R3 BCM43XX; C:\WINDOWS\System32\DRIVERS\bcmwl5.sys [563968 2006-06-26] (Broadcom Corporation)
R3 btaudio; C:\WINDOWS\System32\drivers\btaudio.sys [328237 2006-05-24] (Broadcom Corporation.) [File not signed]
R3 BTDriver; C:\WINDOWS\System32\DRIVERS\btport.sys [30427 2006-05-24] (Broadcom Corporation.) [File not signed]
R3 BTKRNL; C:\WINDOWS\System32\DRIVERS\btkrnl.sys [851434 2006-05-24] (Broadcom Corporation.) [File not signed]
R2 BTSERIAL; C:\WINDOWS\system32\drivers\btserial.sys [23271 2006-05-24] (Broadcom Corporation.) [File not signed]
S3 BTWDNDIS; C:\WINDOWS\System32\DRIVERS\btwdndis.sys [148900 2006-05-24] (Broadcom Corporation.) [File not signed]
R3 BTWUSB; C:\WINDOWS\System32\Drivers\btwusb.sys [66488 2006-05-24] (Broadcom Corporation.) [File not signed]
R2 DLABOIOM; C:\WINDOWS\System32\DLA\DLABOIOM.SYS [25628 2005-09-08] (Sonic Solutions) [File not signed]
R1 DLACDBHM; C:\WINDOWS\System32\Drivers\DLACDBHM.SYS [5628 2005-08-25] (Sonic Solutions) [File not signed]
R2 DLADResN; C:\WINDOWS\System32\DLA\DLADResN.SYS [2496 2005-09-08] (Sonic Solutions) [File not signed]
R2 DLAIFS_M; C:\WINDOWS\System32\DLA\DLAIFS_M.SYS [86524 2005-09-08] (Sonic Solutions) [File not signed]
R2 DLAOPIOM; C:\WINDOWS\System32\DLA\DLAOPIOM.SYS [14684 2005-09-08] (Sonic Solutions) [File not signed]
R2 DLAPoolM; C:\WINDOWS\System32\DLA\DLAPoolM.SYS [6364 2005-09-08] (Sonic Solutions) [File not signed]
R1 DLARTL_N; C:\WINDOWS\System32\Drivers\DLARTL_N.SYS [22684 2005-08-25] (Sonic Solutions) [File not signed]
R2 DLAUDFAM; C:\WINDOWS\System32\DLA\DLAUDFAM.SYS [94332 2005-09-08] (Sonic Solutions) [File not signed]
R2 DLAUDF_M; C:\WINDOWS\System32\DLA\DLAUDF_M.SYS [87036 2005-09-08] (Sonic Solutions) [File not signed]
R0 DRVMCDB; C:\WINDOWS\System32\Drivers\DRVMCDB.SYS [89264 2005-09-12] (Sonic Solutions) [File not signed]
R2 DRVNDDM; C:\WINDOWS\System32\Drivers\DRVNDDM.SYS [40544 2005-08-12] (Sonic Solutions) [File not signed]
S3 DSproct; C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys [4864 2006-01-10] (GTek Technologies Ltd.) [File not signed]
S3 LVcKap; C:\WINDOWS\System32\DRIVERS\LVcKap.sys [2109592 2007-07-20] (Logitech Inc.)
R3 MBAMProtector; C:\WINDOWS\system32\drivers\mbam.sys [23256 2015-04-14] (Malwarebytes Corporation)
R3 MBAMSwissArmy; C:\WINDOWS\system32\drivers\MBAMSwissArmy.sys [119512 2015-05-31] (Malwarebytes Corporation)
R3 mcdbus; C:\WINDOWS\System32\DRIVERS\mcdbus.sys [116736 2009-02-24] (MagicISO, Inc.) [File not signed]
S3 MHNDRV; C:\WINDOWS\System32\DRIVERS\mhndrv.sys [11008 2004-08-10] (Microsoft Corporation) [File not signed]
R1 pcwatch; C:\WINDOWS\system32\Drivers\pcwatch.sys [19840 2014-01-08] () [File not signed] <==== ATTENTION
R3 STHDA; C:\WINDOWS\System32\drivers\sthda.sys [1156648 2006-03-24] (SigmaTel, Inc.)
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] () [File not signed]
S3 wanatw; system32\DRIVERS\wanatw4.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

NETSVC: MHN -> C:\Windows\System32\mhn.dll (Microsoft Corporation)

==================== One Month Created files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-31 12:34 - 2015-05-31 14:25 - 00000000 ____D () C:\FRST
2015-05-31 11:45 - 2015-05-31 11:45 - 00001813 _____ () C:\Documents and Settings\Administrator\Desktop\Google Chrome.lnk
2015-05-31 11:45 - 2015-05-31 11:45 - 00000803 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
2015-05-31 11:45 - 2015-05-31 11:45 - 00000782 _____ () C:\Documents and Settings\Administrator\Desktop\Windows Media Player.lnk
2015-05-31 11:45 - 2015-05-31 11:45 - 00000420 _____ () C:\WINDOWS\wmsetup.log
2015-05-31 10:51 - 2008-04-13 20:12 - 00116224 _____ (Xerox) C:\WINDOWS\system32\dllcache\xrxwiadr.dll
2015-05-31 10:51 - 2008-04-13 20:12 - 00018944 _____ () C:\WINDOWS\system32\dllcache\xrxscnui.dll
2015-05-31 10:51 - 2001-08-17 22:37 - 00027648 _____ () C:\WINDOWS\system32\dllcache\xrxftplt.exe
2015-05-31 10:51 - 2001-08-17 22:37 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xrxflnch.exe
2015-05-31 10:51 - 2001-08-17 22:36 - 00023040 _____ (Xerox Corporation) C:\WINDOWS\system32\dllcache\xrxwbtmp.dll
2015-05-31 10:50 - 2008-04-14 08:00 - 00028288 _____ () C:\WINDOWS\system32\dllcache\xjis.nls
2015-05-31 10:50 - 2008-04-14 05:00 - 00221184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmpns.dll
2015-05-31 10:50 - 2008-04-13 20:12 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wshirda.dll
2015-05-31 10:50 - 2008-04-13 14:46 - 00019200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wstcodec.sys
2015-05-31 10:50 - 2008-04-13 14:36 - 00008832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiacpi.sys
2015-05-31 10:50 - 2004-08-03 22:31 - 00154624 _____ (Lucent Technologies) C:\WINDOWS\system32\dllcache\wlluc48.sys
2015-05-31 10:50 - 2004-08-03 22:29 - 00019455 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\wvchntxx.sys
2015-05-31 10:50 - 2004-08-03 22:29 - 00012063 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\wsiintxx.sys
2015-05-31 10:50 - 2001-08-17 22:37 - 00099865 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\xlog.exe
2015-05-31 10:50 - 2001-08-17 12:11 - 00016970 _____ (US Robotics MCD (Megahertz)) C:\WINDOWS\system32\dllcache\xem336n5.sys
2015-05-31 10:49 - 2008-04-14 08:00 - 00041600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.dll
2015-05-31 10:49 - 2008-04-14 08:00 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.sys
2015-05-31 10:49 - 2008-04-14 08:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamps51.dll
2015-05-31 10:49 - 2008-04-13 14:45 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wceusbsh.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00033599 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv04nt.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00029311 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv01nt.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00023615 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\wch7xxnt.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00019551 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\watv02nt.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00012415 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv01nt.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00012127 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv02nt.sys
2015-05-31 10:49 - 2004-08-03 22:29 - 00011775 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\wadv05nt.sys
2015-05-31 10:49 - 2001-08-17 22:36 - 00087040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiafbdrv.dll
2015-05-31 10:49 - 2001-08-17 22:36 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiamsmud.dll
2015-05-31 10:49 - 2001-08-17 13:28 - 00771581 _____ (Rockwell) C:\WINDOWS\system32\dllcache\winacisa.sys
2015-05-31 10:49 - 2001-08-17 13:28 - 00701386 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\wdhaalba.sys
2015-05-31 10:49 - 2001-08-17 12:13 - 00019016 _____ (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w926nd.sys
2015-05-31 10:49 - 2001-08-17 12:13 - 00016925 _____ (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w940nd.sys
2015-05-31 10:49 - 2001-08-17 12:12 - 00034890 _____ (Raytheon Corp.) C:\WINDOWS\system32\dllcache\wlandrv2.sys
2015-05-31 10:49 - 2001-08-17 12:10 - 00035871 _____ (Winbond Electronics Corp.) C:\WINDOWS\system32\dllcache\wbfirdma.sys
2015-05-31 10:48 - 2008-04-14 08:00 - 00073728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ext.dll
2015-05-31 10:48 - 2008-04-14 08:00 - 00048256 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w32.dll
2015-05-31 10:48 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svapi.dll
2015-05-31 10:48 - 2008-04-14 08:00 - 00004608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ctrs51.dll
2015-05-31 10:48 - 2008-04-13 20:12 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\vfwwdm32.dll
2015-05-31 10:48 - 2001-08-17 13:49 - 00024576 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\viairda.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00794399 _____ (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806v.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00765884 _____ (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usrti.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00687999 _____ (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrwdxjs.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00604253 _____ (PCTEL, INC.) C:\WINDOWS\system32\dllcache\vmodem.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00397502 _____ (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vpctcom.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00224802 _____ (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usr1807a.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00113762 _____ (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrpda.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00064605 _____ (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vvoice.sys
2015-05-31 10:48 - 2001-08-17 13:28 - 00007556 _____ (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usroslba.sys
2015-05-31 10:48 - 2001-08-17 12:14 - 00249402 _____ (Xircom) C:\WINDOWS\system32\dllcache\vinwm.sys
2015-05-31 10:48 - 2001-08-17 12:13 - 00019528 _____ (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w840nd.sys
2015-05-31 10:47 - 2008-04-13 14:47 - 00025856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbprint.sys
2015-05-31 10:47 - 2008-04-13 14:45 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbser.sys
2015-05-31 10:47 - 2008-04-13 14:45 - 00017152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbohci.sys
2015-05-31 10:47 - 2004-08-03 22:31 - 00032384 _____ (KLSI USA, Inc.) C:\WINDOWS\system32\dllcache\usb101et.sys
2015-05-31 10:47 - 2001-08-17 22:36 - 00216064 _____ (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um34scan.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00211968 _____ (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um54scan.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxud32.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00069632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu12.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00050688 _____ (UMAX DATA SYSTEMS INC.) C:\WINDOWS\system32\dllcache\umaxscan.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxp60.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxcam.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu40.dll
2015-05-31 10:47 - 2001-08-17 22:36 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu22.dll
2015-05-31 10:47 - 2001-08-17 13:58 - 00022912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxpcls.sys
2015-05-31 10:47 - 2001-08-17 13:28 - 00794654 _____ (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1801.sys
2015-05-31 10:47 - 2001-08-17 13:28 - 00793598 _____ (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806.sys
2015-05-31 10:46 - 2008-04-14 08:00 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsprof.exe
2015-05-31 10:46 - 2008-04-13 20:12 - 00082944 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4mon.exe
2015-05-31 10:46 - 2001-08-17 22:36 - 00525568 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxp.dll
2015-05-31 10:46 - 2001-08-17 22:36 - 00031744 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4.dll
2015-05-31 10:46 - 2001-08-17 22:35 - 00042496 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4res.dll
2015-05-31 10:46 - 2001-08-17 14:56 - 00440576 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkb.dll
2015-05-31 10:46 - 2001-08-17 14:56 - 00315520 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3d.dll
2015-05-31 10:46 - 2001-08-17 14:02 - 00230912 _____ (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd03.sys
2015-05-31 10:46 - 2001-08-17 14:01 - 00241664 _____ (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd02.sys
2015-05-31 10:46 - 2001-08-17 13:48 - 00011520 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\twotrack.sys
2015-05-31 10:46 - 2001-08-17 12:51 - 00222336 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3dm.sys
2015-05-31 10:46 - 2001-08-17 12:51 - 00166784 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxpm.sys
2015-05-31 10:46 - 2001-08-17 12:51 - 00159232 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkbm.sys
2015-05-31 10:46 - 2001-08-17 12:14 - 00123995 _____ (Tiger Jet Network) C:\WINDOWS\system32\dllcache\tjisdn.sys
2015-05-31 10:46 - 2001-08-17 12:12 - 00034375 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\tpro4.sys
2015-05-31 10:46 - 2001-08-17 12:10 - 00028232 _____ (TOSHIBA Corporation) C:\WINDOWS\system32\dllcache\tos4mo.sys
2015-05-31 10:45 - 2008-04-14 08:00 - 00185344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\thawbrkr.dll
2015-05-31 10:45 - 2008-04-14 08:00 - 00021896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdipx.sys
2015-05-31 10:45 - 2008-04-14 08:00 - 00019464 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdspx.sys
2015-05-31 10:45 - 2008-04-14 08:00 - 00013192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdasync.sys
2015-05-31 10:45 - 2008-04-13 14:40 - 00149376 _____ (M-Systems) C:\WINDOWS\system32\dllcache\tffsport.sys
2015-05-31 10:45 - 2001-08-17 22:36 - 00094293 _____ (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sxports.dll
2015-05-31 10:45 - 2001-08-17 22:36 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpidflt.dll
2015-05-31 10:45 - 2001-08-17 14:56 - 00172768 _____ (Number Nine Visual Technology) C:\WINDOWS\system32\dllcache\t2r4disp.dll
2015-05-31 10:45 - 2001-08-17 14:56 - 00081408 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiul50.dll
2015-05-31 10:45 - 2001-08-17 14:02 - 00003968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swusbflt.sys
2015-05-31 10:45 - 2001-08-17 13:52 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tandqic.sys
2015-05-31 10:45 - 2001-08-17 13:50 - 00103936 _____ (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sx.sys
2015-05-31 10:45 - 2001-08-17 13:49 - 00030464 _____ (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tbatm155.sys
2015-05-31 10:45 - 2001-08-17 12:51 - 00138528 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiulnt5.sys
2015-05-31 10:45 - 2001-08-17 12:50 - 00036640 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\t2r4mini.sys
2015-05-31 10:45 - 2001-08-17 12:13 - 00037961 _____ (TDK Corporation) C:\WINDOWS\system32\dllcache\tdk100b.sys
2015-05-31 10:45 - 2001-08-17 12:13 - 00017129 _____ (TDK Corporation) C:\WINDOWS\system32\dllcache\tdkcd31.sys
2015-05-31 10:44 - 2008-04-14 08:00 - 00101376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusbusd.dll
2015-05-31 10:44 - 2008-04-14 08:00 - 00016896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\status.dll
2015-05-31 10:44 - 2008-04-13 14:46 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\streamip.sys
2015-05-31 10:44 - 2001-08-17 22:36 - 00155648 _____ (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnprop.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00106584 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spdports.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00099328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusd.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00053760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_wheel.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00053248 _____ (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlncoin.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_effct.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00024660 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxupchk.dll
2015-05-31 10:44 - 2001-08-17 22:36 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpdflt2.dll
2015-05-31 10:44 - 2001-08-17 13:56 - 00007552 _____ (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypvu1.sys
2015-05-31 10:44 - 2001-08-17 13:51 - 00061824 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\speed.sys
2015-05-31 10:44 - 2001-08-17 13:51 - 00016896 _____ (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\stcusb.sys
2015-05-31 10:44 - 2001-08-17 12:18 - 00285760 _____ (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnata.sys
2015-05-31 10:44 - 2001-08-17 12:11 - 00048736 _____ (3Com) C:\WINDOWS\system32\dllcache\srwlnd5.sys
2015-05-31 10:43 - 2008-04-14 08:00 - 00143422 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\softkey.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm9aw.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb6w.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma3w.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm93w.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm92w.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsm.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpstup.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smimsgif.dll
2015-05-31 10:43 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsy.dll
2015-05-31 10:43 - 2008-04-13 14:40 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonyait.sys
2015-05-31 10:43 - 2008-04-13 14:36 - 00016000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbbatt.sys
2015-05-31 10:43 - 2008-04-13 14:36 - 00006912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbclass.sys
2015-05-31 10:43 - 2001-08-17 22:36 - 00114688 _____ (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.dll
2015-05-31 10:43 - 2001-08-17 22:36 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb3w.dll
2015-05-31 10:43 - 2001-08-17 22:36 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb0w.dll
2015-05-31 10:43 - 2001-08-17 22:36 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma0w.dll
2015-05-31 10:43 - 2001-08-17 22:36 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
2015-05-31 10:43 - 2001-08-17 22:36 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
2015-05-31 10:43 - 2001-08-17 14:56 - 00147200 _____ (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smidispb.dll
2015-05-31 10:43 - 2001-08-17 13:57 - 00006784 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbhc.sys
2015-05-31 10:43 - 2001-08-17 13:53 - 00009600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonymc.sys
2015-05-31 10:43 - 2001-08-17 13:53 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snyaitmc.sys
2015-05-31 10:43 - 2001-08-17 12:51 - 00058368 _____ (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smiminib.sys
2015-05-31 10:43 - 2001-08-17 12:51 - 00037040 _____ (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.sys
2015-05-31 10:43 - 2001-08-17 12:51 - 00020752 _____ (Sony Corporation) C:\WINDOWS\system32\dllcache\sonync.sys
2015-05-31 10:43 - 2001-08-17 12:12 - 00025034 _____ (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smcpwr2n.sys
2015-05-31 10:43 - 2001-08-17 12:12 - 00024576 _____ (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smc8000n.sys
2015-05-31 10:43 - 2001-08-17 12:10 - 00035913 _____ (SMC) C:\WINDOWS\system32\dllcache\smcirda.sys
2015-05-31 10:42 - 2008-04-14 08:00 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm87w.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00030208 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm81w.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8cw.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm90w.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8dw.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8aw.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm89w.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm59w.dll
2015-05-31 10:42 - 2008-04-14 08:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\simptcp.dll
2015-05-31 10:42 - 2008-04-13 14:46 - 00011136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\slip.sys
2015-05-31 10:42 - 2004-08-03 22:31 - 00063547 _____ (Symbol Technologies) C:\WINDOWS\system32\dllcache\sla30nd5.sys
2015-05-31 10:42 - 2004-08-03 22:31 - 00032768 _____ (SiS Corporation) C:\WINDOWS\system32\dllcache\sisnic.sys
2015-05-31 10:42 - 2001-08-17 22:36 - 00238592 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrv.dll
2015-05-31 10:42 - 2001-08-17 22:36 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm91w.dll
2015-05-31 10:42 - 2001-08-17 14:56 - 00252032 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300iv.dll
2015-05-31 10:42 - 2001-08-17 14:56 - 00157696 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv256.dll
2015-05-31 10:42 - 2001-08-17 14:56 - 00150144 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306v.dll
2015-05-31 10:42 - 2001-08-17 12:50 - 00104064 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrp.sys
2015-05-31 10:42 - 2001-08-17 12:50 - 00101760 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300ip.sys
2015-05-31 10:42 - 2001-08-17 12:50 - 00068608 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306p.sys
2015-05-31 10:42 - 2001-08-17 12:50 - 00050432 _____ (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv.sys
2015-05-31 10:42 - 2001-08-17 12:12 - 00094698 _____ (SysKonnect GmbH.) C:\WINDOWS\system32\dllcache\sk98xwin.sys
2015-05-31 10:42 - 2001-08-17 12:12 - 00091294 _____ (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) C:\WINDOWS\system32\dllcache\skfpwin.sys
2015-05-31 10:42 - 2001-07-21 14:29 - 00161568 _____ (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmusb.sys
2015-05-31 10:41 - 2008-04-13 14:45 - 00011520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiscan.sys
2015-05-31 10:41 - 2008-04-13 14:40 - 00043904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sbp2port.sys
2015-05-31 10:41 - 2001-08-17 22:36 - 00495616 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
2015-05-31 10:41 - 2001-08-17 22:36 - 00386560 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiul50.dll
2015-05-31 10:41 - 2001-08-17 22:36 - 00057856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
2015-05-31 10:41 - 2001-08-17 22:36 - 00026112 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll
2015-05-31 10:41 - 2001-08-17 14:56 - 00245632 _____ (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmx.dll
2015-05-31 10:41 - 2001-08-17 13:53 - 00006912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seaddsmc.sys
2015-05-31 10:41 - 2001-08-17 13:52 - 00011648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiprnt.sys
2015-05-31 10:41 - 2001-08-17 13:51 - 00023936 _____ (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmusbm.sys
2015-05-31 10:41 - 2001-08-17 13:51 - 00023936 _____ (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmn50m.sys
2015-05-31 10:41 - 2001-08-17 13:51 - 00017280 _____ (SCM Microsystems) C:\WINDOWS\system32\dllcache\scr111.sys
2015-05-31 10:41 - 2001-08-17 13:51 - 00016640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scmstcs.sys
2015-05-31 10:41 - 2001-08-17 13:48 - 00017664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sermouse.sys
2015-05-31 10:41 - 2001-08-17 12:51 - 00098080 _____ (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiulnt5.sys
2015-05-31 10:41 - 2001-08-17 12:50 - 00075392 _____ (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmxm.sys
2015-05-31 10:41 - 2001-08-17 12:19 - 00036480 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
2015-05-31 10:41 - 2001-07-21 14:29 - 00018400 _____ (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmld.sys
2015-05-31 10:40 - 2008-04-14 08:00 - 00079872 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia330.dll
2015-05-31 10:40 - 2008-04-14 08:00 - 00079872 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia001.dll
2015-05-31 10:40 - 2008-04-13 20:12 - 00029696 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw450ext.dll
2015-05-31 10:40 - 2008-04-13 20:12 - 00027648 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw430ext.dll
2015-05-31 10:40 - 2004-08-03 22:31 - 00020992 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8139.sys
2015-05-31 10:40 - 2001-08-17 22:36 - 00082432 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia450.dll
2015-05-31 10:40 - 2001-08-17 22:36 - 00079872 _____ (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia430.dll
2015-05-31 10:40 - 2001-08-17 22:36 - 00062496 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mtrio.dll
2015-05-31 10:40 - 2001-08-17 22:36 - 00009216 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\rsmgrstr.dll
2015-05-31 10:40 - 2001-08-17 14:56 - 00210496 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mvirge.dll
2015-05-31 10:40 - 2001-08-17 14:56 - 00198400 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4.dll
2015-05-31 10:40 - 2001-08-17 14:56 - 00182272 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.dll
2015-05-31 10:40 - 2001-08-17 14:56 - 00179264 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3d.dll
2015-05-31 10:40 - 2001-08-17 13:57 - 00065664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.sys
2015-05-31 10:40 - 2001-08-17 12:50 - 00166720 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3m.sys
2015-05-31 10:40 - 2001-08-17 12:50 - 00077824 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4m.sys
2015-05-31 10:40 - 2001-08-17 12:50 - 00061504 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3dm.sys
2015-05-31 10:40 - 2001-08-17 12:50 - 00041216 _____ (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.sys
2015-05-31 10:40 - 2001-08-17 12:19 - 00030720 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rthwcls.sys
2015-05-31 10:40 - 2001-08-17 12:12 - 00019017 _____ (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8029.sys
2015-05-31 10:39 - 2008-04-14 08:00 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quser.exe
2015-05-31 10:39 - 2008-04-14 08:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\register.exe
2015-05-31 10:39 - 2008-04-14 08:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\query.exe
2015-05-31 10:39 - 2008-04-13 20:12 - 00159232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusd.dll
2015-05-31 10:39 - 2008-04-13 14:40 - 00079104 _____ (Comtrol Corporation) C:\WINDOWS\system32\dllcache\rocket.sys
2015-05-31 10:39 - 2008-04-13 14:40 - 00006016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qic157.sys
2015-05-31 10:39 - 2001-08-17 22:36 - 00086097 _____ (Xircom) C:\WINDOWS\system32\dllcache\reslog32.dll
2015-05-31 10:39 - 2001-08-17 22:36 - 00041472 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qvusd.dll
2015-05-31 10:39 - 2001-08-17 22:36 - 00023040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
2015-05-31 10:39 - 2001-08-17 13:53 - 00003328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qv2kux.sys
2015-05-31 10:39 - 2001-08-17 13:51 - 00019584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rasirda.sys
2015-05-31 10:39 - 2001-08-17 13:28 - 00899146 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdkxga.sys
2015-05-31 10:39 - 2001-08-17 13:28 - 00714762 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdmkxx.sys
2015-05-31 10:39 - 2001-08-17 13:28 - 00130942 _____ (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlv.sys
2015-05-31 10:39 - 2001-08-17 13:28 - 00128286 _____ (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserli.sys
2015-05-31 10:39 - 2001-08-17 13:28 - 00112574 _____ (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlp.sys
2015-05-31 10:39 - 2001-08-17 12:19 - 00003840 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rpfun.sys
2015-05-31 10:39 - 2001-08-17 12:12 - 00037563 _____ (RadioLAN) C:\WINDOWS\system32\dllcache\rlnet5.sys
2015-05-31 10:38 - 2008-04-14 08:00 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxviceo.dll
2015-05-31 10:38 - 2008-04-14 08:00 - 00083748 _____ () C:\WINDOWS\system32\dllcache\prcp.nls
2015-05-31 10:38 - 2008-04-14 08:00 - 00083748 _____ () C:\WINDOWS\system32\dllcache\prc.nls
2015-05-31 10:38 - 2008-04-14 08:00 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\permchk.dll
2015-05-31 10:38 - 2008-04-14 08:00 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxmcro.dll
2015-05-31 10:38 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxgl.dll
2015-05-31 10:38 - 2008-04-13 20:10 - 00259328 _____ (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3dd.dll
2015-05-31 10:38 - 2008-04-13 20:10 - 00211584 _____ (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2dll.dll
2015-05-31 10:38 - 2008-04-13 14:44 - 00028032 _____ (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3.sys
2015-05-31 10:38 - 2008-04-13 14:44 - 00027904 _____ (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2.sys
2015-05-31 10:38 - 2008-04-13 14:41 - 00017664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa3.sys
2015-05-31 10:38 - 2008-04-13 14:40 - 00008832 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\powerfil.sys
2015-05-31 10:38 - 2004-08-03 22:06 - 00169984 _____ (Cisco Systems) C:\WINDOWS\system32\dllcache\pcx500.sys
2015-05-31 10:38 - 2001-08-17 22:37 - 00105984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phdsext.ax
2015-05-31 10:38 - 2001-08-17 22:36 - 00121344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phvfwext.dll
2015-05-31 10:38 - 2001-08-17 22:36 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\psisload.dll
2015-05-31 10:38 - 2001-08-17 22:36 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.dll
2015-05-31 10:38 - 2001-08-17 22:36 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusb.dll
2015-05-31 10:38 - 2001-08-17 14:07 - 00019840 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philtune.sys
2015-05-31 10:38 - 2001-08-17 14:04 - 00173696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam2.sys
2015-05-31 10:38 - 2001-08-17 14:04 - 00092416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phildec.sys
2015-05-31 10:38 - 2001-08-17 14:04 - 00075776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.sys
2015-05-31 10:38 - 2001-08-17 13:53 - 00017792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa.sys
2015-05-31 10:38 - 2001-08-17 13:53 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pnrmc.sys
2015-05-31 10:38 - 2001-08-17 13:51 - 00016128 _____ (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\pscr.sys
2015-05-31 10:37 - 2008-04-14 08:00 - 00036927 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs411.dll
2015-05-31 10:37 - 2008-04-14 08:00 - 00031744 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pagecnt.dll
2015-05-31 10:37 - 2008-04-14 08:00 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\padrs412.dll
2015-05-31 10:37 - 2004-08-03 22:31 - 00029502 _____ (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\pca200e.sys
2015-05-31 10:37 - 2001-08-17 22:36 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodec2.dll
2015-05-31 10:37 - 2001-08-17 22:36 - 00086016 _____ (PCtel, Inc.) C:\WINDOWS\system32\dllcache\pctspk.exe
2015-05-31 10:37 - 2001-08-17 22:36 - 00044544 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2.dll
2015-05-31 10:37 - 2001-08-17 22:36 - 00041984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2rc.dll
2015-05-31 10:37 - 2001-08-17 22:36 - 00039424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcoms.exe
2015-05-31 10:37 - 2001-08-17 22:36 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcomc.dll
2015-05-31 10:37 - 2001-08-17 14:05 - 00351616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodek2.sys
2015-05-31 10:37 - 2001-08-17 14:05 - 00048000 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcam2.sys
2015-05-31 10:37 - 2001-08-17 14:05 - 00031872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovce.sys
2015-05-31 10:37 - 2001-08-17 14:05 - 00028032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcd.sys
2015-05-31 10:37 - 2001-08-17 14:05 - 00025216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovsound2.sys
2015-05-31 10:37 - 2001-08-17 12:12 - 00030495 _____ (Linksys) C:\WINDOWS\system32\dllcache\pc100nds.sys
2015-05-31 10:37 - 2001-08-17 12:12 - 00026153 _____ (Linksys) C:\WINDOWS\system32\dllcache\pcmlm56.sys
2015-05-31 10:37 - 2001-08-17 12:11 - 00035328 _____ (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntpci5.sys
2015-05-31 10:37 - 2001-08-17 12:11 - 00030282 _____ (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5hl.sys
2015-05-31 10:37 - 2001-08-17 12:11 - 00029769 _____ (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5m.sys
2015-05-31 10:36 - 2008-04-14 05:00 - 00226816 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npdrmv2.dll
2015-05-31 10:36 - 2008-04-13 14:54 - 00028672 _____ (National Semiconductor Corporation) C:\WINDOWS\system32\dllcache\nscirda.sys
2015-05-31 10:36 - 2001-08-17 22:36 - 00123776 _____ (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.dll
2015-05-31 10:36 - 2001-08-17 22:36 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
2015-05-31 10:36 - 2001-08-17 14:05 - 00025088 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovca.sys
2015-05-31 10:36 - 2001-08-17 13:53 - 00007552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsmmc.sys
2015-05-31 10:36 - 2001-08-17 13:47 - 00009344 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntapm.sys
2015-05-31 10:36 - 2001-08-17 13:28 - 00054186 _____ (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otcsercb.sys
2015-05-31 10:36 - 2001-08-17 12:50 - 00198144 _____ (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.sys
2015-05-31 10:36 - 2001-08-17 12:49 - 00051552 _____ (Kensington Technology Group) C:\WINDOWS\system32\dllcache\ntgrip.sys
2015-05-31 10:36 - 2001-08-17 12:20 - 00054528 _____ (Yamaha Corp.) C:\WINDOWS\system32\dllcache\opl3sax.sys
2015-05-31 10:36 - 2001-08-17 12:12 - 00043689 _____ (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otceth5.sys
2015-05-31 10:36 - 2001-08-17 12:12 - 00027209 _____ (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otc06x5.sys
2015-05-31 10:35 - 2008-04-14 08:00 - 00053248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nextlink.dll
2015-05-31 10:35 - 2008-04-13 14:46 - 00085248 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nabtsfec.sys
2015-05-31 10:35 - 2008-04-13 14:46 - 00010880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ndisip.sys
2015-05-31 10:35 - 2004-08-03 22:31 - 00132695 _____ (802.11b) C:\WINDOWS\system32\dllcache\netwlan5.sys
2015-05-31 10:35 - 2001-08-17 22:36 - 00060480 _____ (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.dll
2015-05-31 10:35 - 2001-08-17 22:36 - 00059104 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.dll
2015-05-31 10:35 - 2001-08-17 14:56 - 00091488 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3disp.dll
2015-05-31 10:35 - 2001-08-17 14:56 - 00035392 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.dll
2015-05-31 10:35 - 2001-08-17 13:49 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ne2000.sys
2015-05-31 10:35 - 2001-08-17 12:50 - 00039264 _____ (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.sys
2015-05-31 10:35 - 2001-08-17 12:50 - 00033088 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.sys
2015-05-31 10:35 - 2001-08-17 12:50 - 00027936 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3d.sys
2015-05-31 10:35 - 2001-08-17 12:50 - 00013664 _____ (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.sys
2015-05-31 10:35 - 2001-08-17 12:20 - 00126080 _____ (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm5a2wdm.sys
2015-05-31 10:35 - 2001-08-17 12:20 - 00087040 _____ (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm6wdm.sys
2015-05-31 10:35 - 2001-08-17 12:12 - 00032840 _____ (NETGEAR Corporation.) C:\WINDOWS\system32\dllcache\ngrpci.sys
2015-05-31 10:35 - 2001-08-17 12:11 - 00128000 _____ (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n100325.sys
2015-05-31 10:35 - 2001-08-17 12:11 - 00065278 _____ (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\netflx3.sys
2015-05-31 10:35 - 2001-08-17 12:11 - 00052255 _____ (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n1000nt5.sys
2015-05-31 10:34 - 2008-04-14 08:00 - 01875968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.lex
2015-05-31 10:34 - 2008-04-14 08:00 - 00229439 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\multibox.dll
2015-05-31 10:34 - 2008-04-14 08:00 - 00098304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msir3jp.dll
2015-05-31 10:34 - 2008-04-13 14:54 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msircomm.sys
2015-05-31 10:34 - 2008-04-13 14:46 - 00049024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstape.sys
2015-05-31 10:34 - 2008-04-13 14:39 - 00005504 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstee.sys
2015-05-31 10:34 - 2001-08-17 22:36 - 00019968 _____ (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxicfg.dll
2015-05-31 10:34 - 2001-08-17 22:36 - 00007168 _____ (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxport.dll
2015-05-31 10:34 - 2001-08-17 14:00 - 00002944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msmpu401.sys
2015-05-31 10:34 - 2001-08-17 13:50 - 00075520 _____ (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxport.sys
2015-05-31 10:34 - 2001-08-17 13:50 - 00021888 _____ (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxcard.sys
2015-05-31 10:34 - 2001-08-17 13:49 - 00019968 _____ (Macronix International Co., Ltd. ) C:\WINDOWS\system32\dllcache\mxnic.sys
2015-05-31 10:34 - 2001-08-17 13:48 - 00012416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msriffwv.sys
2015-05-31 10:34 - 2001-08-17 12:50 - 00103296 _____ (Matrox Graphics Inc) C:\WINDOWS\system32\dllcache\mtxvideo.sys
2015-05-31 10:33 - 2008-04-13 14:46 - 00051200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdv.sys
2015-05-31 10:33 - 2008-04-13 14:46 - 00015232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpe.sys
2015-05-31 10:33 - 2001-08-17 14:02 - 00035200 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgame.sys
2015-05-31 10:33 - 2001-08-17 13:57 - 00016128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\modemcsa.sys
2015-05-31 10:33 - 2001-08-17 13:52 - 00006528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\miniqic.sys
2015-05-31 10:33 - 2001-08-17 13:48 - 00006016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfsio.sys
2015-05-31 10:32 - 2008-04-14 08:00 - 00092416 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.sys
2015-05-31 10:32 - 2008-04-14 08:00 - 00092032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.dll
2015-05-31 10:32 - 2008-04-14 08:00 - 00034304 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migisol.exe
2015-05-31 10:32 - 2008-04-14 08:00 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mdsync.dll
2015-05-31 10:32 - 2008-04-13 14:41 - 00026112 _____ (Sony Corporation) C:\WINDOWS\system32\dllcache\memstpci.sys
2015-05-31 10:32 - 2008-04-13 14:40 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ltotape.sys
2015-05-31 10:32 - 2004-08-03 22:41 - 00606684 _____ (LT) C:\WINDOWS\system32\dllcache\ltmdmnt.sys
2015-05-31 10:32 - 2004-08-03 22:41 - 00420992 _____ (LT) C:\WINDOWS\system32\dllcache\ltmdmntt.sys
2015-05-31 10:32 - 2004-08-03 22:39 - 00020864 _____ (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwadihid.sys
2015-05-31 10:32 - 2001-08-17 22:36 - 00065536 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
2015-05-31 10:32 - 2001-08-17 22:36 - 00058880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3092dc.dll
2015-05-31 10:32 - 2001-08-17 22:36 - 00058368 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3091dc.dll
2015-05-31 10:32 - 2001-08-17 22:36 - 00047616 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memgrp.dll
2015-05-31 10:32 - 2001-08-17 14:56 - 00235648 _____ (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaud.dll
2015-05-31 10:32 - 2001-08-17 13:58 - 00008320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memcard.sys
2015-05-31 10:32 - 2001-08-17 13:52 - 00007424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mammoth.sys
2015-05-31 10:32 - 2001-08-17 13:28 - 00802683 _____ (Lucent Technologies) C:\WINDOWS\system32\dllcache\ltsm.sys
2015-05-31 10:32 - 2001-08-17 13:28 - 00797500 _____ (LT) C:\WINDOWS\system32\dllcache\ltsmt.sys
2015-05-31 10:32 - 2001-08-17 13:28 - 00727786 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ltck000c.sys
2015-05-31 10:32 - 2001-08-17 13:28 - 00576746 _____ (LT) C:\WINDOWS\system32\dllcache\ltmdmntl.sys
2015-05-31 10:32 - 2001-08-17 12:50 - 00320384 _____ (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaum.sys
2015-05-31 10:32 - 2001-08-17 12:49 - 00022848 _____ (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwusbhid.sys
2015-05-31 10:32 - 2001-08-17 12:19 - 00048768 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\maestro.sys
2015-05-31 10:32 - 2001-08-17 12:12 - 00164586 _____ (Madge Networks Ltd) C:\WINDOWS\system32\dllcache\mdgndis5.sys
2015-05-31 10:31 - 2008-04-14 08:00 - 01158818 _____ () C:\WINDOWS\system32\dllcache\korwbrkr.lex
2015-05-31 10:31 - 2008-04-14 08:00 - 00070656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\korwbrkr.dll
2015-05-31 10:31 - 2008-04-14 08:00 - 00047066 _____ () C:\WINDOWS\system32\dllcache\ksc.nls
2015-05-31 10:31 - 2008-04-14 08:00 - 00022016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logscrpt.dll
2015-05-31 10:31 - 2008-04-14 08:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecat.dll
2015-05-31 10:31 - 2008-04-14 08:00 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnecnt.dll
2015-05-31 10:31 - 2008-04-14 08:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdnec95.dll
2015-05-31 10:31 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdusa.dll
2015-05-31 10:31 - 2008-04-13 20:12 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kswdmcap.ax
2015-05-31 10:31 - 2008-04-13 20:12 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kstvtune.ax
2015-05-31 10:31 - 2008-04-13 20:12 - 00043008 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ksxbar.ax
2015-05-31 10:31 - 2008-04-13 20:11 - 00253952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsusd.dll
2015-05-31 10:31 - 2008-04-13 20:11 - 00048640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsui.dll
2015-05-31 10:31 - 2008-04-13 14:40 - 00034688 _____ (Toshiba Corp.) C:\WINDOWS\system32\dllcache\lbrtfdc.sys
2015-05-31 10:31 - 2001-08-17 22:36 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kousd.dll
2015-05-31 10:31 - 2001-08-17 22:36 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdjpn.dll
2015-05-31 10:31 - 2001-08-17 22:36 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdkor.dll
2015-05-31 10:31 - 2001-08-17 13:53 - 00004992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\loop.sys
2015-05-31 10:31 - 2001-08-17 13:51 - 00015744 _____ (Litronic Industries) C:\WINDOWS\system32\dllcache\lit220p.sys
2015-05-31 10:31 - 2001-08-17 12:12 - 00070730 _____ (Linksys Group, Inc.) C:\WINDOWS\system32\dllcache\lne100tx.sys
2015-05-31 10:31 - 2001-08-17 12:12 - 00026442 _____ (SMSC) C:\WINDOWS\system32\dllcache\lanepic5.sys
2015-05-31 10:31 - 2001-08-17 12:12 - 00020573 _____ (The Linksts Group ) C:\WINDOWS\system32\dllcache\lne100.sys
2015-05-31 10:31 - 2001-08-17 12:12 - 00019016 _____ (Kingston Technology Company ) C:\WINDOWS\system32\dllcache\ktc111.sys
2015-05-31 10:31 - 2001-08-17 12:11 - 00025065 _____ (D-Link) C:\WINDOWS\system32\dllcache\lmndis3.sys
2015-05-31 10:30 - 2008-04-14 08:00 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jupiw.dll
2015-05-31 10:30 - 2008-04-14 08:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iwrps.dll
2015-05-31 10:30 - 2008-04-14 08:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isapips.dll
2015-05-31 10:30 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101a.dll
2015-05-31 10:30 - 2008-04-13 20:12 - 00151552 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irftp.exe
2015-05-31 10:30 - 2008-04-13 20:12 - 00016384 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ipsink.ax
2015-05-31 10:30 - 2008-04-13 20:11 - 00028160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irmon.dll
2015-05-31 10:30 - 2008-04-13 20:09 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd106.dll
2015-05-31 10:30 - 2008-04-13 14:54 - 00088192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irda.sys
2015-05-31 10:30 - 2001-08-17 22:36 - 00090200 _____ (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8ports.dll
2015-05-31 10:30 - 2001-08-17 14:55 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101c.dll
2015-05-31 10:30 - 2001-08-17 14:55 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd101b.dll
2015-05-31 10:30 - 2001-08-17 14:55 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbd103.dll
2015-05-31 10:30 - 2001-08-17 13:51 - 00018688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irsir.sys
2015-05-31 10:30 - 2001-08-17 13:50 - 00038784 _____ (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8.sys
2015-05-31 10:30 - 2001-08-17 13:49 - 00026624 _____ (SigmaTel, Inc.) C:\WINDOWS\system32\dllcache\irstusb.sys
2015-05-31 10:30 - 2001-08-17 13:49 - 00023552 _____ (MKNet Corporation) C:\WINDOWS\system32\dllcache\irmk7.sys
2015-05-31 10:30 - 2001-08-17 12:12 - 00045632 _____ (Interphase ® Corporation a Windows ® 2000 DDK Driver Provider) C:\WINDOWS\system32\dllcache\ip5515.sys
2015-05-31 10:29 - 2008-04-14 08:00 - 00471102 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imskdic.dll
2015-05-31 10:29 - 2008-04-14 08:00 - 00311359 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsv.exe
2015-05-31 10:29 - 2008-04-14 08:00 - 00134339 _____ () C:\WINDOWS\system32\dllcache\imekr.lex
2015-05-31 10:29 - 2008-04-14 08:00 - 00102463 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imepadsm.dll
2015-05-31 10:29 - 2008-04-14 08:00 - 00060928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisclex4.dll
2015-05-31 10:29 - 2008-04-14 08:00 - 00059904 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imkrinst.exe
2015-05-31 10:29 - 2008-04-14 08:00 - 00057398 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpdadm.exe
2015-05-31 10:29 - 2008-04-14 08:00 - 00045109 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imjpuex.exe
2015-05-31 10:29 - 2008-04-14 08:00 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\imekrmig.exe
2015-05-31 10:29 - 2008-04-14 08:00 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iiscrmap.dll
2015-05-31 10:29 - 2008-04-14 08:00 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoctrs.dll
2015-05-31 10:29 - 2008-04-14 08:00 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iissync.exe
2015-05-31 10:29 - 2008-04-14 08:00 - 00003584 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismui.dll
2015-05-31 10:29 - 2001-08-17 22:36 - 00372824 _____ (Xircom) C:\WINDOWS\system32\dllcache\iconf32.dll
2015-05-31 10:29 - 2001-08-17 22:36 - 00091136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4com.dll
2015-05-31 10:29 - 2001-08-17 22:36 - 00061952 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4ext.dll
2015-05-31 10:29 - 2001-08-17 22:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5com.dll
2015-05-31 10:29 - 2001-08-17 22:36 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5ext.dll
2015-05-31 10:29 - 2001-08-17 14:06 - 00154496 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4usb.sys
2015-05-31 10:29 - 2001-08-17 14:06 - 00100992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5usb.sys
2015-05-31 10:29 - 2001-08-17 13:47 - 00013056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inport.sys
2015-05-31 10:28 - 2008-04-14 08:00 - 10129408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxkor.dll
2015-05-31 10:28 - 2008-04-14 08:00 - 10096640 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxcht.dll
2015-05-31 10:28 - 2008-04-13 20:11 - 00702845 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\i81xdnt5.dll
2015-05-31 10:28 - 2004-08-03 22:29 - 00161020 _____ (Intel® Corporation) C:\WINDOWS\system32\dllcache\i81xnt5.sys
2015-05-31 10:28 - 2001-08-17 22:36 - 00026624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3ext.dll
2015-05-31 10:28 - 2001-08-17 22:36 - 00009759 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_inst.dll
2015-05-31 10:28 - 2001-08-17 22:34 - 00009216 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmsgnet.dll
2015-05-31 10:28 - 2001-08-17 14:56 - 00353184 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\i740dnt5.dll
2015-05-31 10:28 - 2001-08-17 14:06 - 00038528 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ibmvcap.sys
2015-05-31 10:28 - 2001-08-17 14:05 - 00141056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00542879 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_msft.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00488383 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_v124.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00391199 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_k56k.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00115807 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_fsks.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00073279 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_spkp.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00057471 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_samp.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00050751 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_tone.sys
2015-05-31 10:28 - 2001-08-17 13:28 - 00044863 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_soar.sys
2015-05-31 10:28 - 2001-08-17 12:49 - 00058592 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\i740nt5.sys
2015-05-31 10:28 - 2001-08-17 12:12 - 00109085 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtrp.sys
2015-05-31 10:28 - 2001-08-17 12:12 - 00100936 _____ (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtok.sys
2015-05-31 10:28 - 2001-08-17 12:11 - 00028700 _____ (IBM Corp.) C:\WINDOWS\system32\dllcache\ibmexmp.sys
2015-05-31 10:27 - 2008-04-13 14:36 - 00020352 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbatt.sys
2015-05-31 10:27 - 2001-08-17 22:36 - 00324608 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpojwia.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00165888 _____ () C:\WINDOWS\system32\dllcache\hpgt53.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00126976 _____ (Hewlett Packard) C:\WINDOWS\system32\dllcache\hpgt34tk.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt21tk.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00119296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpdigwia.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00101376 _____ () C:\WINDOWS\system32\dllcache\hpgt34.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00093696 _____ () C:\WINDOWS\system32\dllcache\hpgt42.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00089088 _____ () C:\WINDOWS\system32\dllcache\hpgt33.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00083968 _____ () C:\WINDOWS\system32\dllcache\hpgt21.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00068608 _____ (Avisioin) C:\WINDOWS\system32\dllcache\hpgt53tk.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt33tk.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00032768 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgtmcro.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00031232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt42tk.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00019456 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hr1w.dll
2015-05-31 10:27 - 2001-08-17 22:36 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpsjmcro.dll
2015-05-31 10:27 - 2001-08-17 14:02 - 00008576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidgame.sys
2015-05-31 10:27 - 2001-08-17 14:02 - 00002688 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidswvd.sys
2015-05-31 10:27 - 2001-08-17 13:52 - 00005760 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpt4qic.sys
2015-05-31 10:27 - 2001-08-17 13:28 - 00289887 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_fall.sys
2015-05-31 10:27 - 2001-08-17 13:28 - 00199711 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_faxx.sys
2015-05-31 10:27 - 2001-08-17 13:28 - 00150239 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_amos.sys
2015-05-31 10:27 - 2001-08-17 13:28 - 00067167 _____ (Conexant) C:\WINDOWS\system32\dllcache\hsf_bsc2.sys
2015-05-31 10:26 - 2008-04-14 08:00 - 00108827 _____ () C:\WINDOWS\system32\dllcache\hanja.lex
2015-05-31 10:26 - 2008-04-14 08:00 - 00036864 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hanjadic.dll
2015-05-31 10:26 - 2008-04-14 08:00 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\flattemp.exe
2015-05-31 10:26 - 2008-04-14 08:00 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpctrs2.dll
2015-05-31 10:26 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftlx041e.dll
2015-05-31 10:26 - 2008-04-13 14:45 - 00059136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gckernel.sys
2015-05-31 10:26 - 2008-04-13 14:45 - 00010624 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
2015-05-31 10:26 - 2008-04-13 14:40 - 00028288 _____ (Gemplus) C:\WINDOWS\system32\dllcache\grserial.sys
2015-05-31 10:26 - 2004-08-03 22:31 - 00034173 _____ (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\forehe.sys
2015-05-31 10:26 - 2001-08-17 22:36 - 00092160 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fuusd.dll
2015-05-31 10:26 - 2001-08-17 22:36 - 00071680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fnfilter.dll
2015-05-31 10:26 - 2001-08-17 14:56 - 01733120 _____ (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400d.dll
2015-05-31 10:26 - 2001-08-17 14:56 - 00470144 _____ (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200d.dll
2015-05-31 10:26 - 2001-08-17 13:51 - 00082304 _____ (Gemplus) C:\WINDOWS\system32\dllcache\grclass.sys
2015-05-31 10:26 - 2001-08-17 13:51 - 00017408 _____ (Gemplus) C:\WINDOWS\system32\dllcache\gpr400.sys
2015-05-31 10:26 - 2001-08-17 13:28 - 00907456 _____ (Conexant) C:\WINDOWS\system32\dllcache\hcf_msft.sys
2015-05-31 10:26 - 2001-08-17 12:49 - 00322432 _____ (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400m.sys
2015-05-31 10:26 - 2001-08-17 12:49 - 00320384 _____ (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200m.sys
2015-05-31 10:26 - 2001-08-17 12:15 - 00455680 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\fus2base.sys
2015-05-31 10:26 - 2001-08-17 12:15 - 00455296 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\fusbbase.sys
2015-05-31 10:26 - 2001-08-17 12:15 - 00454912 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\fxusbase.sys
2015-05-31 10:26 - 2001-08-17 12:15 - 00442240 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\fpnpbase.sys
2015-05-31 10:26 - 2001-08-17 12:14 - 00444416 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcibase.sys
2015-05-31 10:26 - 2001-08-17 12:14 - 00441728 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcmbase.sys
2015-05-31 10:25 - 2008-04-14 08:00 - 00057856 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimgd.dll
2015-05-31 10:25 - 2008-04-14 08:00 - 00045056 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunid.dll
2015-05-31 10:25 - 2008-04-14 08:00 - 00031744 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucmd.dll
2015-05-31 10:25 - 2008-04-14 08:00 - 00025856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\et4000.sys
2015-05-31 10:25 - 2004-08-03 22:32 - 00137088 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\essm2e.sys
2015-05-31 10:25 - 2001-08-17 22:36 - 00061952 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnloop.exe
2015-05-31 10:25 - 2001-08-17 22:36 - 00045568 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunib.dll
2015-05-31 10:25 - 2001-08-17 22:36 - 00045568 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuni.dll
2015-05-31 10:25 - 2001-08-17 22:36 - 00043520 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
2015-05-31 10:25 - 2001-08-17 22:36 - 00043008 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucm.dll
2015-05-31 10:25 - 2001-08-17 22:36 - 00034816 _____ (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimg.dll
2015-05-31 10:25 - 2001-08-17 13:52 - 00007040 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exabyte2.sys
2015-05-31 10:25 - 2001-08-17 13:28 - 00595647 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56cvmp.sys
2015-05-31 10:25 - 2001-08-17 13:28 - 00594238 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56hpi.sys
2015-05-31 10:25 - 2001-08-17 13:28 - 00347550 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56tpi.sys
2015-05-31 10:25 - 2001-08-17 12:19 - 00174464 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es198x.sys
2015-05-31 10:25 - 2001-08-17 12:19 - 00072192 _____ (ESS Technology Inc.) C:\WINDOWS\system32\dllcache\es1969.sys
2015-05-31 10:25 - 2001-08-17 12:19 - 00063360 _____ (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\ess.sys
2015-05-31 10:25 - 2001-08-17 12:19 - 00040704 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1371mp.sys
2015-05-31 10:25 - 2001-08-17 12:19 - 00037120 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1370mp.sys
2015-05-31 10:25 - 2001-08-17 12:13 - 00027165 _____ (VIA Technologies, Inc. ) C:\WINDOWS\system32\dllcache\fetnd5.sys
2015-05-31 10:25 - 2001-08-17 12:12 - 00024618 _____ (NETGEAR) C:\WINDOWS\system32\dllcache\fa410nd5.sys
2015-05-31 10:25 - 2001-08-17 12:12 - 00016998 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\ex10.sys
2015-05-31 10:25 - 2001-08-17 12:12 - 00016074 _____ (NETGEAR Corp.) C:\WINDOWS\system32\dllcache\fa312nd5.sys
2015-05-31 10:25 - 2001-08-17 12:11 - 00012362 _____ (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xi.sys
2015-05-31 10:25 - 2001-08-17 12:11 - 00011850 _____ (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xj.sys
2015-05-31 10:25 - 2001-08-17 12:10 - 00022090 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\fem556n5.sys
2015-05-31 10:24 - 2008-04-14 08:00 - 00514587 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\edb500.dll
2015-05-31 10:24 - 2008-04-13 20:12 - 00020992 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dshowext.ax
2015-05-31 10:24 - 2001-08-17 22:36 - 00053248 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqndiag.exe
2015-05-31 10:24 - 2001-08-17 22:36 - 00051200 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnlogr.exe
2015-05-31 10:24 - 2001-08-17 13:53 - 00007296 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\elmsmc.sys
2015-05-31 10:24 - 2001-08-17 13:50 - 00144896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epcfw2k.sys
2015-05-31 10:24 - 2001-08-17 13:50 - 00114944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epstw2k.sys
2015-05-31 10:24 - 2001-08-17 13:28 - 00634134 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el656ct5.sys
2015-05-31 10:24 - 2001-08-17 13:28 - 00241206 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el656se5.sys
2015-05-31 10:24 - 2001-08-17 12:20 - 00334208 _____ (Yamaha Corp.) C:\WINDOWS\system32\dllcache\ds1wdm.sys
2015-05-31 10:24 - 2001-08-17 12:19 - 00283904 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
2015-05-31 10:24 - 2001-08-17 12:17 - 00629952 _____ (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqn.sys
2015-05-31 10:24 - 2001-08-17 12:12 - 00050719 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\e1000nt5.sys
2015-05-31 10:24 - 2001-08-17 12:12 - 00019594 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\e100isa4.sys
2015-05-31 10:24 - 2001-08-17 12:12 - 00018503 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\epro4.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00455199 _____ (3Com Corporation.) C:\WINDOWS\system32\dllcache\el985n51.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00171520 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el99xn51.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00153631 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xnd5.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00077386 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el656nd5.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00070174 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el98xn5.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00069194 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el656cd5.sys
2015-05-31 10:24 - 2001-08-17 12:11 - 00066591 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xbc5.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00069692 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el575nd5.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00055999 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el556nd5.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00044103 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el515.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00026141 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el589nd5.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00025159 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\elnk3.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00024653 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\el574nd4.sys
2015-05-31 10:24 - 2001-08-17 12:10 - 00019996 _____ (3Com Corporation) C:\WINDOWS\system32\dllcache\em556n4.sys
2015-05-31 10:23 - 2008-04-13 14:40 - 00008320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlttape.sys
2015-05-31 10:23 - 2008-04-13 14:39 - 00206976 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4.sys
2015-05-31 10:23 - 2001-08-17 22:36 - 00614429 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiview.exe
2015-05-31 10:23 - 2001-08-17 22:36 - 00236060 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\ditrace.exe
2015-05-31 10:23 - 2001-08-17 22:36 - 00229462 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifwrk.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00159828 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digihlc.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00131156 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidbp.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00110621 _____ (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00102484 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiinf.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00065622 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00041046 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00038985 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvsu.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00037962 _____ () C:\WINDOWS\system32\dllcache\divaprop.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00031305 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvpp.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00029768 _____ () C:\WINDOWS\system32\dllcache\divasu.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00006729 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvci.dll
2015-05-31 10:23 - 2001-08-17 22:36 - 00006216 _____ () C:\WINDOWS\system32\dllcache\divaci.dll
2015-05-31 10:23 - 2001-08-17 13:47 - 00023808 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4usb.sys
2015-05-31 10:23 - 2001-08-17 13:47 - 00012928 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4prt.sys
2015-05-31 10:23 - 2001-08-17 13:47 - 00008704 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4scan.sys
2015-05-31 10:23 - 2001-08-17 12:17 - 00090525 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifep5.sys
2015-05-31 10:23 - 2001-08-17 12:17 - 00042432 _____ (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.sys
2015-05-31 10:23 - 2001-08-17 12:14 - 00952007 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\diwan.sys
2015-05-31 10:23 - 2001-08-17 12:14 - 00021606 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.sys
2015-05-31 10:23 - 2001-08-17 12:13 - 00103044 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidxb.sys
2015-05-31 10:23 - 2001-08-17 12:13 - 00091305 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\dimaint.sys
2015-05-31 10:23 - 2001-08-17 12:13 - 00037735 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.sys
2015-05-31 10:23 - 2001-08-17 12:12 - 00028062 _____ (National Semiconductor Coproration) C:\WINDOWS\system32\dllcache\dp83820.sys
2015-05-31 10:23 - 2001-08-17 12:11 - 00029696 _____ (CNet Technology, Inc. ) C:\WINDOWS\system32\dllcache\dm9pci5.sys
2015-05-31 10:23 - 2001-08-17 12:11 - 00026698 _____ (D-Link Corporation) C:\WINDOWS\system32\dllcache\dlh5xnd5.sys
2015-05-31 10:22 - 2008-04-14 08:00 - 00056320 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\convlog.exe
2015-05-31 10:22 - 2008-04-14 08:00 - 00033792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\controt.dll
2015-05-31 10:22 - 2008-04-14 08:00 - 00020480 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\counters.dll
2015-05-31 10:22 - 2008-04-14 08:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cprofile.exe
2015-05-31 10:22 - 2008-04-13 20:11 - 00249856 _____ (Comtrol® Corporation) C:\WINDOWS\system32\dllcache\ctmasetp.dll
2015-05-31 10:22 - 2004-08-03 22:32 - 00048640 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwrwdm.sys
2015-05-31 10:22 - 2001-08-17 22:36 - 00419357 _____ (Digi International) C:\WINDOWS\system32\dllcache\dgconfig.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00256512 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00216064 _____ (COMPAQ Inc.) C:\WINDOWS\system32\dllcache\cpscan.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00175104 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\csamsp.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00110592 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc260usd.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00086016 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc240usd.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00080896 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210usd.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00028672 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyycoins.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzports.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00027648 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyports.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00027136 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzcoins.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00025600 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210_32.dll
2015-05-31 10:22 - 2001-08-17 22:36 - 00024064 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
2015-05-31 10:22 - 2001-08-17 22:36 - 00004096 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
2015-05-31 10:22 - 2001-08-17 13:52 - 00007424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddsmc.sys
2015-05-31 10:22 - 2001-08-17 13:50 - 00050176 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyport.sys
2015-05-31 10:22 - 2001-08-17 13:50 - 00049792 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzport.sys
2015-05-31 10:22 - 2001-08-17 13:50 - 00017152 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclad-z.sys
2015-05-31 10:22 - 2001-08-17 13:50 - 00014848 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclom-y.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00111872 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcspud.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00096256 _____ (Copyright © Creative Technology Ltd. 1994-2001) C:\WINDOWS\system32\dllcache\ctlsb16.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00093952 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcwdm.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00072832 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbwdm.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00042112 _____ (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\crtaud.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00006912 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00003712 _____ (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00003584 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcosnt5.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00003072 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbmidi.sys
2015-05-31 10:22 - 2001-08-17 12:19 - 00003072 _____ (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbase.sys
2015-05-31 10:22 - 2001-08-17 12:17 - 00029531 _____ (Digi International Inc.) C:\WINDOWS\system32\dllcache\dgapci.sys
2015-05-31 10:22 - 2001-08-17 12:13 - 00021533 _____ (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\cpqndis5.sys
2015-05-31 10:22 - 2001-08-17 12:12 - 00117760 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\d100ib5.sys
2015-05-31 10:22 - 2001-08-17 12:12 - 00063208 _____ (Intel Corporation.) C:\WINDOWS\system32\dllcache\dc21x4.sys
2015-05-31 10:22 - 2001-08-17 12:11 - 00060970 _____ (Compaq Computer Corp.) C:\WINDOWS\system32\dllcache\cpqtrnd5.sys
2015-05-31 10:22 - 2001-08-17 12:11 - 00024649 _____ (D-Link) C:\WINDOWS\system32\dllcache\dfe650d.sys
2015-05-31 10:22 - 2001-08-17 12:11 - 00024648 _____ (D-Link) C:\WINDOWS\system32\dllcache\dfe650.sys
2015-05-31 10:22 - 2001-08-17 12:11 - 00020928 _____ (Digital Networks, LLC) C:\WINDOWS\system32\dllcache\defpa.sys
2015-05-31 10:21 - 2008-04-14 08:00 - 01677824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chsbrkr.dll
2015-05-31 10:21 - 2008-04-14 08:00 - 00838144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtbrkr.dll
2015-05-31 10:21 - 2008-04-14 08:00 - 00180770 _____ () C:\WINDOWS\system32\dllcache\c_20932.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00177698 _____ () C:\WINDOWS\system32\dllcache\c_20949.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00173602 _____ () C:\WINDOWS\system32\dllcache\c_20936.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066594 _____ () C:\WINDOWS\system32\dllcache\c_864.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066594 _____ () C:\WINDOWS\system32\dllcache\c_862.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066594 _____ () C:\WINDOWS\system32\dllcache\c_858.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066594 _____ () C:\WINDOWS\system32\dllcache\c_720.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_870.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_708.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_28596.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_21027.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_21025.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20924.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20880.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20871.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20838.nls
2015-05-31 10:21 - 2008-04-14 08:00 - 00054528 _____ (Philips Semiconductors GmbH) C:\WINDOWS\system32\dllcache\cap7146.sys
2015-05-31 10:21 - 2008-04-14 08:00 - 00015872 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgport.exe
2015-05-31 10:21 - 2008-04-14 08:00 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgusr.exe
2015-05-31 10:21 - 2008-04-14 08:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chglogon.exe
2015-05-31 10:21 - 2008-04-14 08:00 - 00010752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_iscii.dll
2015-05-31 10:21 - 2008-04-14 08:00 - 00009728 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\change.exe
2015-05-31 10:21 - 2008-04-14 08:00 - 00006656 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_is2022.dll
2015-05-31 10:21 - 2008-04-13 20:11 - 00121856 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.dll
2015-05-31 10:21 - 2008-04-13 14:46 - 00017024 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ccdecode.sys
2015-05-31 10:21 - 2008-04-13 14:40 - 00008192 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\changer.sys
2015-05-31 10:21 - 2001-08-17 22:37 - 00244224 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.ax
2015-05-31 10:21 - 2001-08-17 22:37 - 00116736 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.ax
2015-05-31 10:21 - 2001-08-17 22:37 - 00073216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.ax
2015-05-31 10:21 - 2001-08-17 22:36 - 00236032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.dll
2015-05-31 10:21 - 2001-08-17 22:36 - 00074240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.dll
2015-05-31 10:21 - 2001-08-17 22:36 - 00044032 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnusd.dll
2015-05-31 10:21 - 2001-08-17 22:36 - 00032256 _____ (Eicon Technology Corporation) C:\WINDOWS\system32\dllcache\diapi2NT.dll
2015-05-31 10:21 - 2001-08-17 14:56 - 00170880 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546x.dll
2015-05-31 10:21 - 2001-08-17 14:56 - 00111232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl5465.dll
2015-05-31 10:21 - 2001-08-17 14:56 - 00091264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.dll
2015-05-31 10:21 - 2001-08-17 14:05 - 00314752 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdro21.sys
2015-05-31 10:21 - 2001-08-17 14:04 - 00223232 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv21.sys
2015-05-31 10:21 - 2001-08-17 14:04 - 00171264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv30.sys
2015-05-31 10:21 - 2001-08-17 14:02 - 00272640 _____ (RAVISENT Technologies Inc.) C:\WINDOWS\system32\dllcache\cinemclc.sys
2015-05-31 10:21 - 2001-08-17 13:57 - 00248064 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546xm.sys
2015-05-31 10:21 - 2001-08-17 13:57 - 00045696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.sys
2015-05-31 10:21 - 2001-08-17 13:51 - 00020736 _____ (OMNIKEY AG) C:\WINDOWS\system32\dllcache\cmbp0wdm.sys
2015-05-31 10:21 - 2001-08-17 13:28 - 00714698 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cbmdmkxx.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00980034 _____ (Xircom) C:\WINDOWS\system32\dllcache\cicap.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00164923 _____ (Eicon Technology) C:\WINDOWS\system32\dllcache\diapi2.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00049182 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem56n5.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00046108 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cben5.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00027164 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce3n5.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00022044 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem33n5.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00022044 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem28n5.sys
2015-05-31 10:21 - 2001-08-17 12:13 - 00021530 _____ (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce2n5.sys
2015-05-31 10:21 - 2001-08-17 12:12 - 00039680 _____ (Silicom Ltd.) C:\WINDOWS\system32\dllcache\cb325.sys
2015-05-31 10:21 - 2001-08-17 12:12 - 00037916 _____ (Fast Ethernet Controller Provider) C:\WINDOWS\system32\dllcache\cb102.sys
2015-05-31 10:21 - 2001-08-17 12:11 - 00039936 _____ (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\cnxt1803.sys
2015-05-31 10:20 - 2008-04-14 08:00 - 00195618 _____ () C:\WINDOWS\system32\dllcache\c_10002.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00189986 _____ () C:\WINDOWS\system32\dllcache\c_1361.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00187938 _____ () C:\WINDOWS\system32\dllcache\c_20005.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00186402 _____ () C:\WINDOWS\system32\dllcache\c_20001.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00185378 _____ () C:\WINDOWS\system32\dllcache\c_20003.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00180258 _____ () C:\WINDOWS\system32\dllcache\c_20004.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00180258 _____ () C:\WINDOWS\system32\dllcache\c_20000.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00177698 _____ () C:\WINDOWS\system32\dllcache\c_10003.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00173602 _____ () C:\WINDOWS\system32\dllcache\c_20002.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00173602 _____ () C:\WINDOWS\system32\dllcache\c_10008.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00162850 _____ () C:\WINDOWS\system32\dllcache\c_10001.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00082172 _____ () C:\WINDOWS\system32\dllcache\bopomofo.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066728 _____ () C:\WINDOWS\system32\dllcache\big5.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20833.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20424.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20423.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20420.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20297.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20290.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20285.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20284.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20280.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20278.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20277.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20273.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20269.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20108.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20107.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20106.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_20105.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1149.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1148.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1147.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1146.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1145.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1144.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1143.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1142.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1141.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1140.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_1047.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_10021.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_10005.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00066082 _____ () C:\WINDOWS\system32\dllcache\c_10004.nls
2015-05-31 10:20 - 2008-04-14 08:00 - 00045568 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browscap.dll
2015-05-31 10:20 - 2008-04-14 08:00 - 00009216 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\authfilt.dll
2015-05-31 10:20 - 2008-04-13 20:12 - 00018432 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdaplgin.ax
2015-05-31 10:20 - 2008-04-13 14:46 - 00038912 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avc.sys
2015-05-31 10:20 - 2008-04-13 14:46 - 00013696 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcstrm.sys
2015-05-31 10:20 - 2008-04-13 14:46 - 00011776 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdasup.sys
2015-05-31 10:20 - 2001-08-17 22:36 - 00144384 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\avmenum.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00102400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\binlsvc.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00087552 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\avmcoxp.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00081408 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brmfcwia.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00041472 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfusb.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00032256 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfrsmg.exe
2015-05-31 10:20 - 2001-08-17 22:36 - 00029696 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmflpt.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00019456 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brbidiif.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00015360 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfbidi.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00012800 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brevif.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00009728 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brserif.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00009728 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brcoinst.dll
2015-05-31 10:20 - 2001-08-17 22:36 - 00005120 _____ (Brother Industries,Ltd.) C:\WINDOWS\system32\dllcache\brscnrsm.dll
2015-05-31 10:20 - 2001-08-17 14:56 - 00342336 _____ (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.dll
2015-05-31 10:20 - 2001-08-17 14:56 - 00104832 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiraged.dll
2015-05-31 10:20 - 2001-08-17 14:01 - 00036096 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcaudio.sys
2015-05-31 10:20 - 2001-08-17 13:51 - 00013824 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bulltlp3.sys
2015-05-31 10:20 - 2001-08-17 13:28 - 00871388 _____ (BCM) C:\WINDOWS\system32\dllcache\bcmdm.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00060416 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brserwdm.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00039552 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparwdm.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00012160 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltlo.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00011008 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbmdm.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00010368 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbscn.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00003968 _____ (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltup.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00003168 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparimg.sys
2015-05-31 10:20 - 2001-08-17 13:12 - 00002944 _____ (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brfilt.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00049920 _____ () C:\WINDOWS\system32\dllcache\atirtcap.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00026880 _____ () C:\WINDOWS\system32\dllcache\atirtsnd.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00026624 _____ () C:\WINDOWS\system32\dllcache\ativxbar.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00023552 _____ () C:\WINDOWS\system32\dllcache\atixbar.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00019456 _____ () C:\WINDOWS\system32\dllcache\ativttxx.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00017152 _____ () C:\WINDOWS\system32\dllcache\atitvsnd.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00017152 _____ () C:\WINDOWS\system32\dllcache\atitunep.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00010240 _____ () C:\WINDOWS\system32\dllcache\atipcxxx.sys
2015-05-31 10:20 - 2001-08-17 12:49 - 00009472 _____ () C:\WINDOWS\system32\dllcache\ativmdcd.sys
2015-05-31 10:20 - 2001-08-17 12:48 - 00070528 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiragem.sys
2015-05-31 10:20 - 2001-08-17 12:48 - 00036128 _____ (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.sys
2015-05-31 10:20 - 2001-08-17 12:19 - 00036992 _____ (Aztech Systems Ltd) C:\WINDOWS\system32\dllcache\aztw2320.sys
2015-05-31 10:20 - 2001-08-17 12:13 - 00089952 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\b1cbase.sys
2015-05-31 10:20 - 2001-08-17 12:13 - 00037568 _____ (AVM GmbH) C:\WINDOWS\system32\dllcache\avmwan.sys
2015-05-31 10:20 - 2001-08-17 12:11 - 00096640 _____ (Broadcom Corporation) C:\WINDOWS\system32\dllcache\b57xp32.sys
2015-05-31 10:20 - 2001-08-17 12:11 - 00066557 _____ (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42u.sys
2015-05-31 10:20 - 2001-08-17 12:11 - 00054271 _____ (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42xx5.sys
2015-05-31 10:20 - 2001-08-17 12:11 - 00031529 _____ (BreezeCOM) C:\WINDOWS\system32\dllcache\brzwlan.sys
2015-05-31 10:20 - 2001-08-17 12:11 - 00026568 _____ (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm4e5.sys
2015-05-31 10:19 - 2008-04-14 08:00 - 00049664 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adrot.dll
2015-05-31 10:19 - 2008-04-14 08:00 - 00029184 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asptxn.dll
2015-05-31 10:19 - 2008-04-14 08:00 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aspperf.dll
2015-05-31 10:19 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admxprox.dll
2015-05-31 10:19 - 2008-04-14 05:00 - 00010240 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\npwmsdrm.dll
2015-05-31 10:19 - 2008-04-13 14:46 - 00048128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\61883.sys
2015-05-31 10:19 - 2008-04-13 14:40 - 00012288 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\4mmdat.sys
2015-05-31 10:19 - 2004-08-03 22:32 - 00231552 _____ (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ac97ali.sys
2015-05-31 10:19 - 2004-08-03 22:32 - 00084480 _____ (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\ac97via.sys
2015-05-31 10:19 - 2004-08-03 22:32 - 00010880 _____ (Aureal, Inc.) C:\WINDOWS\system32\dllcache\admjoy.sys
2015-05-31 10:19 - 2004-08-03 22:31 - 00036224 _____ (ADMtek Incorporated.) C:\WINDOWS\system32\dllcache\an983.sys
2015-05-31 10:19 - 2001-08-17 22:37 - 00024576 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agcgauge.ax
2015-05-31 10:19 - 2001-08-17 22:36 - 00462848 _____ (Aureal Inc.) C:\WINDOWS\system32\dllcache\a3dapi.dll
2015-05-31 10:19 - 2001-08-17 22:36 - 00098304 _____ (Aureal Semiconductor) C:\WINDOWS\system32\dllcache\a3d.dll
2015-05-31 10:19 - 2001-08-17 22:36 - 00061440 _____ (Color Flatbed Scanner) C:\WINDOWS\system32\dllcache\acerscad.dll
2015-05-31 10:19 - 2001-08-17 22:36 - 00045056 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
2015-05-31 10:19 - 2001-08-17 22:36 - 00037376 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atievxx.exe
2015-05-31 10:19 - 2001-08-17 22:36 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
2015-05-31 10:19 - 2001-08-17 14:56 - 00268160 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidvai.dll
2015-05-31 10:19 - 2001-08-17 14:56 - 00137216 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrae.dll
2015-05-31 10:19 - 2001-08-17 14:55 - 00689216 _____ (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvs.dll
2015-05-31 10:19 - 2001-08-17 14:55 - 00382592 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrab.dll
2015-05-31 10:19 - 2001-08-17 14:55 - 00096128 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ati.dll
2015-05-31 10:19 - 2001-08-17 14:55 - 00038400 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\8514a.dll
2015-05-31 10:19 - 2001-08-17 14:06 - 00011264 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394vdbg.sys
2015-05-31 10:19 - 2001-08-17 13:57 - 00077568 _____ (ATI Technologies, Inc.) C:\WINDOWS\system32\dllcache\ati.sys
2015-05-31 10:19 - 2001-08-17 13:53 - 00007424 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adicvls.sys
2015-05-31 10:19 - 2001-08-17 13:49 - 00026624 _____ (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\alifir.sys
2015-05-31 10:19 - 2001-08-17 13:47 - 00006272 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\apmbatt.sys
2015-05-31 10:19 - 2001-08-17 13:28 - 00762780 _____ (3Com, Inc.) C:\WINDOWS\system32\dllcache\3cwmcru.sys
2015-05-31 10:19 - 2001-08-17 12:49 - 00075136 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpae.sys
2015-05-31 10:19 - 2001-08-17 12:49 - 00046464 _____ () C:\WINDOWS\system32\dllcache\atibt829.sys
2015-05-31 10:19 - 2001-08-17 12:48 - 00289664 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpab.sys
2015-05-31 10:19 - 2001-08-17 12:48 - 00281600 _____ (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimtai.sys
2015-05-31 10:19 - 2001-08-17 12:48 - 00148352 _____ (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvsm.sys
2015-05-31 10:19 - 2001-08-17 12:20 - 00297728 _____ (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\dllcache\ac97sis.sys
2015-05-31 10:19 - 2001-08-17 12:20 - 00096256 _____ (Intel Corporation) C:\WINDOWS\system32\dllcache\ac97intc.sys
2015-05-31 10:19 - 2001-08-17 12:19 - 00747392 _____ (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8830.sys
2015-05-31 10:19 - 2001-08-17 12:19 - 00584448 _____ (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8810.sys
2015-05-31 10:19 - 2001-08-17 12:19 - 00553984 _____ (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8820.sys
2015-05-31 10:19 - 2001-08-17 12:12 - 00097354 _____ (Bay Networks, Inc.) C:\WINDOWS\system32\dllcache\aspndis3.sys
2015-05-31 10:19 - 2001-08-17 12:11 - 00046112 _____ (Adaptec, Inc ) C:\WINDOWS\system32\dllcache\adptsf50.sys
2015-05-31 10:19 - 2001-08-17 12:11 - 00027678 _____ (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ali5261.sys
2015-05-31 10:19 - 2001-08-17 12:11 - 00020160 _____ (ADMtek Incorporated) C:\WINDOWS\system32\dllcache\adm8511.sys
2015-05-31 10:19 - 2001-08-17 12:11 - 00016969 _____ (AmbiCom, Inc.) C:\WINDOWS\system32\dllcache\amb8002.sys
2015-05-31 10:18 - 2008-04-14 05:00 - 00364544 _____ (Microsoft Corporation (written by Digital Renaissance Inc.)) C:\WINDOWS\system32\dllcache\npdsplay.dll
2015-05-31 10:18 - 2008-04-14 05:00 - 00004639 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplayer2.exe
2015-05-31 10:16 - 2015-05-30 22:33 - 654508032 _____ () C:\Documents and Settings\Martha Olive\Desktop\Windows XP PROFESSIONAL SP3 Jan 2015 + SATA Drivers [TechTools.net].iso
2015-05-31 10:04 - 2008-04-14 08:00 - 00019968 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetsloc.dll
2015-05-31 10:04 - 2008-04-14 08:00 - 00007168 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamregps.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth3.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth2.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinpun.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdvntc.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdurdu.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth1.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth0.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr2.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr1.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintel.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintam.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinmar.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinhin.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdindev.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdheb.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdfa.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv2.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv1.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda3.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda1.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgeo.dll
2015-05-31 10:02 - 2008-04-14 08:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarmw.dll
2015-05-31 10:01 - 2015-05-31 10:03 - 00000000 ____D () C:\I386
2015-05-31 10:01 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinkan.dll
2015-05-31 10:01 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinguj.dll
2015-05-31 10:01 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda2.dll
2015-05-31 10:01 - 2008-04-14 08:00 - 00005120 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarme.dll
2015-05-30 23:44 - 2001-08-17 14:56 - 00066048 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.dll
2015-05-30 22:58 - 2008-04-14 08:00 - 00169984 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisui.dll
2015-05-30 22:58 - 2008-04-14 08:00 - 00014336 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisreset.exe
2015-05-30 22:58 - 2008-04-14 08:00 - 00007680 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.exe
2015-05-30 22:58 - 2008-04-14 08:00 - 00006144 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsapi2.dll
2015-05-30 22:58 - 2008-04-14 08:00 - 00005632 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstap.dll
2015-05-30 22:56 - 2008-04-14 08:00 - 00094720 _____ (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certmap.ocx
2015-05-30 22:55 - 2015-05-30 22:56 - 00000000 ____D () C:\Program Files\MagicDisc
2015-05-30 22:55 - 2015-05-30 22:55 - 00000640 _____ () C:\Documents and Settings\Martha Olive\Desktop\MagicDisc.lnk
2015-05-30 22:55 - 2015-05-30 22:55 - 00000000 ____D () C:\Documents and Settings\Martha Olive\Start Menu\Programs\MagicDisc
2015-05-30 22:55 - 2009-02-24 18:42 - 00116736 _____ (MagicISO, Inc.) C:\WINDOWS\system32\Drivers\mcdbus.sys
2015-05-30 22:39 - 2015-05-30 22:39 - 00001486 _____ () C:\Documents and Settings\Martha Olive\Desktop\MagicISO.lnk
2015-05-30 22:39 - 2015-05-30 22:39 - 00000000 ____D () C:\Program Files\MagicISO
2015-05-30 22:39 - 2015-05-30 22:39 - 00000000 ____D () C:\Documents and Settings\Martha Olive\Start Menu\Programs\MagicISO
2015-05-30 20:45 - 2015-05-31 11:48 - 00002551 _____ () C:\Documents and Settings\All Users\Desktop\Connectivity Fixer.lnk
2015-05-30 20:45 - 2015-05-30 20:45 - 00000000 ____D () C:\Program Files\Badosoft
2015-05-30 20:45 - 2015-05-30 20:45 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Badosoft
2015-05-30 20:43 - 2015-05-31 11:10 - 00181064 _____ (Sysinternals) C:\WINDOWS\PSEXESVC.EXE
2015-05-30 20:16 - 2015-05-30 20:16 - 00053248 _____ () C:\WINDOWS\system32\zlib.dll
2015-05-30 20:16 - 2015-05-30 20:16 - 00000000 ____D () C:\Support
2015-05-30 20:11 - 2015-05-30 20:11 - 00000015 _____ () C:\Documents and Settings\Martha Olive\reset.txt
2015-05-30 19:38 - 2015-05-30 19:38 - 158558698 _____ () C:\Documents and Settings\Martha Olive\Desktop\backup.reg
2015-05-30 19:04 - 2015-05-30 19:04 - 00000884 __RSH () C:\Documents and Settings\Administrator\ntuser.pol
2015-05-30 18:28 - 2015-05-30 18:36 - 00027642 _____ () C:\WINDOWS\msmqinst.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00022980 _____ () C:\WINDOWS\tsoc.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00011037 _____ () C:\WINDOWS\plusoc.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00006190 _____ () C:\WINDOWS\netfxocm.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00004566 _____ () C:\WINDOWS\imsins.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00004473 _____ () C:\WINDOWS\ehOCGen.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00003739 _____ () C:\WINDOWS\imsins.BAK
2015-05-30 18:28 - 2015-05-30 18:36 - 00003505 _____ () C:\WINDOWS\MedCtrOC.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00002515 _____ () C:\WINDOWS\ocmsn.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00002399 _____ () C:\WINDOWS\msgsocm.log
2015-05-30 18:28 - 2015-05-30 18:36 - 00000933 _____ () C:\WINDOWS\tabletoc.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00125180 _____ () C:\WINDOWS\iis6.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00040218 _____ () C:\WINDOWS\ocgen.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00034211 _____ () C:\WINDOWS\FaxSetup.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00011789 _____ () C:\WINDOWS\comsetup.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00009958 _____ () C:\WINDOWS\ntdtcsetup.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00000686 _____ () C:\WINDOWS\setuperr.log
2015-05-30 18:27 - 2015-05-30 18:36 - 00000516 _____ () C:\WINDOWS\setupact.log
2015-05-30 17:56 - 2015-05-30 18:01 - 00001150 _____ () C:\WINDOWS\system32\reset.log
2015-05-30 17:24 - 2015-05-31 12:08 - 00036129 _____ () C:\WINDOWS\setupapi.log
2015-05-30 15:18 - 2015-05-31 13:56 - 00119512 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
2015-05-30 15:14 - 2015-05-30 15:14 - 00000777 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
2015-05-30 15:14 - 2015-05-30 15:14 - 00000000 ____D () C:\Program Files\Malwarebytes Anti-Malware
2015-05-30 15:14 - 2015-05-30 15:14 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes Anti-Malware
2015-05-30 15:14 - 2015-04-14 09:37 - 00120024 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
2015-05-20 19:44 - 2015-05-20 19:44 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-05-15 22:06 - 2015-05-16 20:06 - 00000000 ____D () C:\WINDOWS\system32\MpEngineStore

==================== One Month Modified files and folders ========

(If an entry is included in the fixlist, the file/folder will be moved.)

2015-05-31 14:25 - 2006-10-10 18:27 - 00000000 ____D () C:\Documents and Settings\Martha Olive\Local Settings\Temp
2015-05-31 14:10 - 2014-01-03 19:10 - 00000420 _____ () C:\WINDOWS\Tasks\At1.job
2015-05-31 14:01 - 2012-08-03 13:51 - 00000346 _____ () C:\WINDOWS\Tasks\HP Photo Creations Messager.job
2015-05-31 13:56 - 2013-01-12 16:42 - 00000882 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-05-31 13:56 - 2010-03-24 22:54 - 00000292 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1738717990-2325586264-1949678871-1006.job
2015-05-31 13:56 - 2005-08-16 05:18 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2015-05-31 13:47 - 2005-08-16 05:49 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-05-31 13:47 - 2005-08-16 05:40 - 01060303 _____ () C:\WINDOWS\WindowsUpdate.log
2015-05-31 13:47 - 2005-08-16 05:38 - 00000000 ____D () C:\WINDOWS\Registration
2015-05-31 13:47 - 2005-08-16 05:35 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-05-31 13:47 - 2005-08-16 05:35 - 00000049 _____ () C:\WINDOWS\wiaservc.log
2015-05-31 13:31 - 2005-08-16 05:49 - 00032440 _____ () C:\WINDOWS\SchedLgU.Txt
2015-05-31 13:29 - 2006-10-10 18:27 - 00000278 ___SH () C:\Documents and Settings\Martha Olive\ntuser.ini
2015-05-31 13:22 - 2013-10-25 17:39 - 00000000 ____D () C:\AdwCleaner
2015-05-31 12:44 - 2013-01-12 16:42 - 00000886 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-05-31 12:37 - 2012-04-09 21:55 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-05-31 11:55 - 2005-08-16 05:50 - 00000178 ___SH () C:\Documents and Settings\Administrator\ntuser.ini
2015-05-31 11:54 - 2012-01-06 01:10 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\temp
2015-05-31 11:46 - 2005-08-16 05:50 - 00000738 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
2015-05-31 11:45 - 2006-10-04 03:00 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google
2015-05-31 11:45 - 2005-08-16 05:50 - 00000788 _____ () C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
2015-05-31 11:45 - 2005-08-16 05:50 - 00000000 ___RD () C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
2015-05-31 11:29 - 2006-10-10 18:27 - 00000000 ____D () C:\Documents and Settings\Martha Olive
2015-05-31 08:47 - 2008-01-04 16:47 - 00000436 ____H () C:\WINDOWS\Tasks\User_Feed_Synchronization-{4C18FE80-4C66-408C-8E35-3B21085B26E5}.job
2015-05-30 22:43 - 2010-03-24 22:54 - 00000300 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1738717990-2325586264-1949678871-1006.job
2015-05-30 21:35 - 2009-08-12 22:05 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB973354$
2015-05-30 21:34 - 2005-08-16 05:22 - 00000000 _SHDC () C:\WINDOWS\$NtUninstallKB54813$
2015-05-30 21:11 - 2014-02-03 12:23 - 00000000 ____D () C:\Program Files\Unlocker
2015-05-30 19:04 - 2005-08-16 05:50 - 00000000 ____D () C:\Documents and Settings\Administrator
2015-05-30 18:34 - 2005-08-16 05:22 - 00000000 ____D () C:\WINDOWS\security
2015-05-30 18:29 - 2005-08-16 05:22 - 00000000 ____D () C:\WINDOWS\system32\inetsrv
2015-05-30 17:11 - 2009-11-13 23:02 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB969947$
2015-05-30 15:15 - 2012-01-04 19:31 - 00000000 ____D () C:\Documents and Settings\Martha Olive\Application Data\Malwarebytes
2015-05-30 15:14 - 2012-01-04 18:58 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
2015-05-30 15:14 - 2005-08-16 05:18 - 00000750 _____ () C:\WINDOWS\win.ini
2015-05-30 15:14 - 2005-08-16 05:18 - 00000227 _____ () C:\WINDOWS\system.ini
2015-05-22 17:11 - 2013-10-12 18:14 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-05-15 22:02 - 2013-10-16 19:43 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-05-15 22:01 - 2006-10-10 20:19 - 137310008 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe

==================== Files in the root of some directories =======

2009-09-16 15:51 - 2009-09-16 15:51 - 0000760 _____ () C:\Documents and Settings\Martha Olive\Application Data\setup_ldm.iss
2011-12-28 14:38 - 2012-01-03 11:29 - 0014330 ___SH () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\6b51517266buq514
2013-10-21 05:47 - 2013-10-17 10:47 - 0192512 _____ () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\common_functions.dll
2007-02-03 21:35 - 2015-04-26 15:33 - 0054784 _____ () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2006-10-10 18:27 - 2006-10-18 18:04 - 0000135 _____ () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\fusioncache.dat
2013-10-17 10:47 - 2013-10-17 10:47 - 0114688 _____ () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\ie_runner_app.exe
2013-10-21 05:47 - 2012-06-26 06:59 - 0940544 _____ (Apache Software Foundation) C:\Documents and Settings\Martha Olive\Local Settings\Application Data\log4cxx.dll

Files to move or delete:
====================
C:\Windows\Tasks\At1.job


Some files in TEMP:
====================
C:\Documents and Settings\Martha Olive\Local Settings\Temp\cct.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\JavaIC.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\jre-7u79-windows-i586-iftw.exe
C:\Documents and Settings\Martha Olive\Local Settings\Temp\msscct32.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Martha Olive\Local Settings\Temp\sqlite3.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End of log ============================

Additional scan result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by Martha Olive at 2015-05-31 13:10:50
Running from F:\
Boot Mode: Safe Mode (minimal)
==========================================================


==================== Accounts: =============================

Administrator (S-1-5-21-1738717990-2325586264-1949678871-500 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Administrator
Guest (S-1-5-21-1738717990-2325586264-1949678871-501 - Limited - Enabled)
HelpAssistant (S-1-5-21-1738717990-2325586264-1949678871-1005 - Limited - Disabled)
Martha Olive (S-1-5-21-1738717990-2325586264-1949678871-1006 - Administrator - Enabled) => %SystemDrive%\Documents and Settings\Martha Olive
SUPPORT_388945a0 (S-1-5-21-1738717990-2325586264-1949678871-1002 - Limited - Disabled)

==================== Security Center ========================

(If an entry is included in the fixlist, it will be removed.)


==================== Installed Programs ======================

(Only the adware programs with "hidden" flag could be added to the fixlist to unhide them. The adware programs should be uninstalled manually.)

Adobe Flash Player 17 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Flash Player 17 NPAPI (HKLM\...\Adobe Flash Player NPAPI) (Version: 17.0.0.169 - Adobe Systems Incorporated)
Adobe Reader 7.0.5 Language Support (HKLM\...\{AC76BA86-7AD7-5464-3428-7050000000A7}) (Version: 7.0.5 - Adobe Systems)
Adobe Reader 7.0.9 (HKLM\...\{AC76BA86-7AD7-1033-7B44-A70900000002}) (Version: 7.0.9 - Adobe Systems Incorporated)
AiO_Scan (Version: 40.0.105.000 - Hewlett-Packard) Hidden
AIOMinimal (Version: 40.0.105.000 - Hewlett-Packard) Hidden
AiOSoftware (Version: 40.0.105.000 - Hewlett-Packard) Hidden
Apple Application Support (HKLM\...\{45C56AA7-ED1B-4800-A97F-EDDF3F3520B1}) (Version: 2.3.3 - Apple Inc.)
Apple Mobile Device Support (HKLM\...\{E14ADE0E-75F3-4A46-87E5-26692DD626EC}) (Version: 6.1.0.13 - Apple Inc.)
Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
Bing Rewards Client Installer (Version: 16.0.345.0 - Microsoft Corporation) Hidden
Bonjour (HKLM\...\{79155F2B-9895-49D7-8612-D92580E0DE5B}) (Version: 3.0.0.10 - Apple Inc.)
CCleaner (HKLM\...\CCleaner) (Version: 4.05 - Piriform)
Conexant HDA D110 MDC V.92 Modem (HKLM\...\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3) (Version:  - )
Connectivity Fixer (HKLM\...\{F053A091-E262-41C2-A36A-39352E1F8E8B}) (Version: 1.2.0 - Badosoft)
ConservativeTalkNow Toolbar (HKLM\...\ConservativeTalkNow_4nbar Uninstall) (Version:  - Mindspark Interactive Network) <==== ATTENTION
Copy (Version: 5.35.0.065 - Hewlett-Packard) Hidden
CreativeProjects (Version: 5.35.0.059 - Hewlett-Packard) Hidden
Critical Update for Windows Media Player 11 (KB959772) (HKLM\...\KB959772_WM11) (Version:  - Microsoft Corporation)
Defraggler (HKLM\...\Defraggler) (Version: 2.08 - Piriform)
Dell CinePlayer (HKLM\...\{43CAC9A1-1993-4F65-9096-7C9AFC2BBF54}) (Version: 3.0 - Dell)
Dell Digital Jukebox Driver (HKLM\...\Dell Digital Jukebox Driver) (Version:  - )
Dell Driver Reset Tool (HKLM\...\{5905F42D-3F5F-4916-ADA6-94A3646AEE76}) (Version: 1.02.0000 - Dell Inc.)
Dell Support 3.2 (HKLM\...\{3846E811-639D-4DE1-844B-30491C0A6C0C}) (Version: 5.5.2038 - Dell)
Dell System Restore (HKLM\...\{74F7662C-B1DB-489E-A8AC-07A06B24978B}) (Version: 2.00.0000 - Dell Inc.)
Dell Wireless WLAN Card (HKLM\...\Broadcom 802.11b Network Adapter) (Version: 4.80.28.5 - Dell Inc.)
Digital Content Portal (HKLM\...\{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33}) (Version: 1.00.0000 - Dell)
Digital Line Detect (HKLM\...\{E646DCF0-5A68-11D5-B229-002078017FBF}) (Version: 1.15 - BVRP Software, Inc)
Director (Version: 5.35.0.051 - Hewlett-Packard) Hidden
DivX Setup (HKLM\...\DivX Setup) (Version: 2.6.0.34 - DivX, LLC)
DocProc (Version: 3.5.0.0 - Hewlett-Packard) Hidden
Documentation & Support Launcher (HKLM\...\{B0DF58A2-40DF-4465-AA56-38623EC9938C}) (Version: 1.00.0000 - Dell Inc.)
EducateU (HKLM\...\{A683A2C0-821C-486F-858C-FA634DB5E864}) (Version: 1.00.0000 - Dell)
Fax (Version: 40.0.105.000 - Hewlett-Packard) Hidden
Games, Music, & Photos Launcher (HKLM\...\{B6884A07-0305-47AE-9969-8F26FADC17DE}) (Version: 1.00.0000 - Dell Inc.)
GemMaster Mystic (HKLM\...\12133444-BF36-4d4e-B7FB-A3424C645DE4) (Version:  - )
Google Chrome (HKLM\...\Google Chrome) (Version: 43.0.2357.81 - Google Inc.)
Google Update Helper (Version: 1.3.25.11 - Google Inc.) Hidden
Google Update Helper (Version: 1.3.27.5 - Google Inc.) Hidden
High Definition Audio Driver Package - KB835221 (HKLM\...\KB835221WXP) (Version: 20040219.000000 - Microsoft Corporation)
Hotfix 2050 for SQL Server 2000 ENU (KB948110) (HKLM\...\KB948110(ENU)) (Version: 1 - Microsoft Corporation)
Hotfix 2055 for SQL Server 2000 ENU (KB960082) (HKLM\...\KB960082(ENU)) (Version: 1 - Microsoft Corporation)
HP Image Zone 3.5 (HKLM\...\HP Photo & Imaging) (Version: 3.5 - HP)
HP Photo Creations (HKLM\...\HP Photo Creations) (Version: 1.0.0.5192 - HP Photo Creations)
HP PSC & OfficeJet 3.5 (HKLM\...\{0FABD3D7-3036-4e78-B29D-58957ADB0A12}) (Version: 3.5 - HP)
HP Update (HKLM\...\{85DF2EED-08BC-46FB-90DA-28B0D0A8E8A8}) (Version: 5.003.000.004 - Hewlett-Packard)
hpmdtab (Version: 2.0.479.1607 - Hewlett-Packard) Hidden
HPSystemDiagnostics (Version: 1.5.0.0 - Your Company Name) Hidden
InstantShare (Version: 3.5.0.21 - Hewlett-Packard) Hidden
Intel® Graphics Media Accelerator Driver (HKLM\...\{8A708DD8-A5E6-11D4-A706-000629E95E20}) (Version: 6.14.10.4446 - )
iTunes (HKLM\...\{268278CF-FB69-4D98-B70E-BFEC1CDCA225}) (Version: 11.0.2.26 - Apple Inc.)
J2SE Runtime Environment 5.0 Update 6 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.)
Java™ 6 Update 38 (HKLM\...\{26A24AE4-039D-4CA4-87B4-2F83216038FF}) (Version: 6.0.380 - Oracle)
KODAK EASYSHARE Gallery Upload ActiveX Control (HKLM\...\OfotoEZUpload) (Version:  - )
Magic ISO Maker v5.5 (build 0281) (HKLM\...\Magic ISO Maker v5.5 (build 0281)) (Version:  - )
MagicDisc 2.7.106 (HKLM\...\MagicDisc 2.7.106) (Version:  - )
Malwarebytes Anti-Malware version 2.1.6.1022 (HKLM\...\Malwarebytes Anti-Malware_is1) (Version: 2.1.6.1022 - Malwarebytes Corporation)
McAfee Security Scan Plus (HKLM\...\McAfee Security Scan) (Version: 3.8.130.8 - McAfee, Inc.)
MCU (Version: 1.00.0000 - Dell) Hidden
Memories Disc Creator 2.0 (HKLM\...\{2E132061-C78A-48D4-A899-1D13B9D189FA}) (Version: 2.0.479.1607 - Memories Disc Creator 2.0)
Microsoft .NET Framework 1.0 Hotfix (KB2572066) (HKLM\...\KB2572066) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB2604042) (HKLM\...\KB2604042) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB2656378) (HKLM\...\KB2656378) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB953295) (HKLM\...\KB953295) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Hotfix (KB979904) (HKLM\...\KB979904) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2698035) (HKLM\...\KB2698035) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2742607) (HKLM\...\KB2742607) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2833951) (HKLM\...\KB2833951) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.0 Security Update (KB2904878) (HKLM\...\KB2904878) (Version:  - Microsoft Corporation)
Microsoft .NET Framework 1.1 (HKLM\...\Microsoft .NET Framework 1.1  (1033)) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2698023) (HKLM\...\M2698023) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB2833941) (HKLM\...\M2833941) (Version:  - )
Microsoft .NET Framework 1.1 Security Update (KB979906) (HKLM\...\M979906) (Version:  - )
Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version:  - Microsoft Corporation)
Microsoft Compression Client Pack 1.0 for Windows XP (HKLM\...\MSCompPackV1) (Version: 1 - Microsoft Corporation)
Microsoft Office File Validation Add-In (HKLM\...\{90140000-2005-0000-0000-0000000FF1CE}) (Version: 14.0.5130.5003 - Microsoft Corporation)
Microsoft Office Professional Edition 2003 (HKLM\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Office Small Business Edition 2003 (HKLM\...\{91CA0409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.8173.0 - Microsoft Corporation)
Microsoft Plus! Digital Media Edition Installer (HKLM\...\{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}) (Version: 1.1.0.3514 - Microsoft Corporation)
Microsoft Plus! Photo Story 2 LE (HKLM\...\{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}) (Version: 1.1.0.3463 - Microsoft Corporation)
Microsoft Silverlight (HKLM\...\{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}) (Version: 5.1.30514.0 - Microsoft Corporation)
Microsoft SQL Server 2005 Compact Edition [ENU] (HKLM\...\{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}) (Version: 3.1.0000 - Microsoft Corporation)
Microsoft SQL Server Desktop Engine (MICROSOFTSMLBIZ) (HKLM\...\{E09B48B5-E141-427A-AB0C-D3605127224A}) (Version: 8.00.2039 - Microsoft Corporation)
Microsoft User-Mode Driver Framework Feature Pack 1.0 (HKLM\...\Wudf01000) (Version:  - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
Mixer (HKLM\...\MIXERLITE) (Version:  - )
Mozilla Firefox 38.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 38.0.1 (x86 en-US)) (Version: 38.0.1 - Mozilla)
Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 29.0 - Mozilla)
MSXML 4.0 SP2 (KB927978) (HKLM\...\{37477865-A3F1-4772-AD43-AAFC6BCFF99F}) (Version: 4.20.9841.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB936181) (HKLM\...\{C04E32E0-0416-434D-AFB9-6969D703A9EF}) (Version: 4.20.9848.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
Overland (Version: 2.1.4 - Hewlett-Packard) Hidden
PhotoGallery (Version: 5.35.0.059 - Hewlett-Packard) Hidden
Picasa 3 (HKLM\...\Picasa 3) (Version: 3.9 - Google, Inc.)
PrintScreen (Version: 5.35.0.035 - Hewlett-Packard) Hidden
QFolder (Version: 1.00.0000 - Hewlett-Packard) Hidden
QuickProjects (Version: 5.35.0.047 - Hewlett-Packard) Hidden
QuickSet (HKLM\...\{C5074CC4-0E26-4716-A307-960272A90040}) (Version: 7.1.10 - )
QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
Readme (Version: 40.0.105.000 - Hewlett-Packard) Hidden
Roxio DLA (HKLM\...\{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}) (Version: 5.2.0 - Roxio)
Roxio MyDVD LE (HKLM\...\{21657574-BD54-48A2-9450-EB03B2C7FC29}) (Version: 6.1.6 - Roxio)
Roxio RecordNow Audio (HKLM\...\{AB708C9B-97C8-4AC9-899B-DBF226AC9382}) (Version: 2.0.4 - Roxio)
Roxio RecordNow Copy (HKLM\...\{B12665F4-4E93-4AB4-B7FC-37053B524629}) (Version: 2.0.4 - Roxio)
Roxio RecordNow Data (HKLM\...\{075473F5-846A-448B-BCB3-104AA1760205}) (Version: 2.0.4 - Roxio)
Scan (Version: 3.5.0.0 - Hewlett-Packard) Hidden
Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
SkinsHP1 (Version: 5.35.0.043 - Hewlett-Packard) Hidden
SkinsHP2 (Version: 5.35.0.043 - Hewlett-Packard) Hidden
Sonic Activation Module (Version: 1.0 - Sonic Solutions) Hidden
Sonic Encoders (HKLM\...\{9941F0AA-B903-4AF4-A055-83A9815CC011}) (Version: 1.00 - Sonic Solutions)
Sonic Update Manager (HKLM\...\{30465B6C-B53F-49A1-9EBA-A3F187AD502E}) (Version: 3.0.0 - Sonic Solutions)
Sound Blaster Audigy ADVANCED MB Demo (HKLM\...\CTMBDemo_Audigy) (Version:  - )
Strongvault Online Backup (Version: 5.0.2.34 - Strongvault Online Backup) Hidden <==== ATTENTION
Synaptics Pointing Device Driver (HKLM\...\SynTPDeinstKey) (Version: 8.2.4.6 - Synaptics)
SySaver (HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\...\SySaver) (Version: 2 - SySaver)
TrayApp (Version: 5.35.0.035 - Hewlett-Packard) Hidden
Unload (Version: 3.5.0 - Hewlett-Packard) Hidden
Unlocker 1.9.2 (HKLM\...\Unlocker) (Version: 1.9.2 - Cedrick Collomb)
Update Rollup 2 for Windows XP Media Center Edition 2005 (HKLM\...\KB900325) (Version:  - Microsoft Corporation)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0 - DivX, Inc) Hidden
Web Protect for Windows (HKLM\...\wp-cb) (Version: 10.0.0 - Web Protect) <==== ATTENTION
WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
WebReg (Version: 5.31.0.147 - Hewlett-Packard) Hidden
WIDCOMM Bluetooth Software (HKLM\...\{3F4EC965-28EF-45C3-B063-04B25D4E9679}) (Version: 5.0.1.2609 - Dell)
Windows Feature Pack for Storage (32-bit) - IMAPI update for Blu-Ray (HKLM\...\KB952011) (Version: 1.0 - Microsoft Corporation)
Windows Genuine Advantage Notifications (KB905474) (HKLM\...\WgaNotify) (Version: 1.7.0018.5 - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\KB892130) (Version:  - Microsoft Corporation)
Windows Genuine Advantage Validation Tool (KB892130) (HKLM\...\WGA) (Version: 1.7.0069.2 - Microsoft Corporation)
Windows Installer 3.1 (KB893803) (HKLM\...\KB893803v2) (Version:  - Microsoft Corporation)
Windows Installer Clean Up (HKLM\...\{121634B0-2F4B-11D3-ADA3-00C04F52DD52}) (Version: 3.00.00.0000 - Microsoft Corporation)
Windows Internet Explorer 8 (HKLM\...\ie8) (Version: 20090308.140743 - Microsoft Corporation)
Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
Windows Live Sign-in Assistant (HKLM\...\{45338B07-A236-4270-9A77-EBB4115517B5}) (Version: 5.000.818.5 - Microsoft Corporation)
Windows Live Sync (HKLM\...\{B10914FD-8812-47A4-85A1-50FCDE7F1F33}) (Version: 14.0.8117.416 - Microsoft Corporation)
Windows Live Upload Tool (HKLM\...\{205C6BDD-7B73-42DE-8505-9A093F35A238}) (Version: 14.0.8014.1029 - Microsoft Corporation)
Windows Media Format 11 runtime (HKLM\...\Windows Media Format Runtime) (Version:  - )
Windows Media Player 10 Hotfix [See EmeraldQFE2 for more information] (HKLM\...\EmeraldQFE2) (Version:  - Microsoft Corporation)
Windows Media Player 11 (HKLM\...\Windows Media Player) (Version:  - )
Windows PowerShell™ 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2502898 (HKLM\...\KB2502898) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2619340 (HKLM\...\KB2619340) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB2628259 (HKLM\...\KB2628259) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB908246 (HKLM\...\KB908246) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB925766 (HKLM\...\KB925766) (Version:  - Microsoft Corporation)
Windows XP Media Center Edition 2005 KB973768 (HKLM\...\KB973768) (Version:  - Microsoft Corporation)
Windows XP Service Pack 3 (HKLM\...\Windows XP Service Pack) (Version: 20080414.031525 - Microsoft Corporation)

==================== Custom CLSID (Whitelisted): ==========================

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a}\InprocServer32 -> C:\WINDOWS\system32\xwreg32.dll No File
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC}\localserver32 -> No Filepath

==================== Restore Points =========================

18-04-2015 18:04:50 System Checkpoint
19-04-2015 19:37:13 System Checkpoint
22-04-2015 18:53:58 System Checkpoint
23-04-2015 20:05:55 System Checkpoint
25-04-2015 14:54:35 System Checkpoint
26-04-2015 17:32:27 System Checkpoint
27-04-2015 18:51:19 System Checkpoint
28-04-2015 19:05:50 System Checkpoint
29-04-2015 20:00:55 System Checkpoint
30-04-2015 20:24:50 System Checkpoint
01-05-2015 20:50:01 System Checkpoint
03-05-2015 17:05:39 System Checkpoint
05-05-2015 18:06:46 System Checkpoint
07-05-2015 18:51:06 System Checkpoint
08-05-2015 20:33:05 System Checkpoint
09-05-2015 21:40:42 System Checkpoint
10-05-2015 22:37:47 System Checkpoint
15-05-2015 19:10:54 System Checkpoint
15-05-2015 22:00:42 Software Distribution Service 3.0
17-05-2015 15:03:27 System Checkpoint
20-05-2015 19:30:35 System Checkpoint
22-05-2015 17:34:39 System Checkpoint
23-05-2015 18:19:28 System Checkpoint
25-05-2015 15:54:16 System Checkpoint
26-05-2015 19:18:18 System Checkpoint
30-05-2015 15:42:40 System Checkpoint
30-05-2015 18:08:34 Installed Microsoft Fix it 50203
30-05-2015 19:21:56 Installed Microsoft Fix it 50199
30-05-2015 19:26:28 Installed Microsoft Fix it 50203
30-05-2015 20:45:29 Installed Connectivity Fixer

==================== Hosts content: ==========================

(If needed Hosts: directive could be included in the fixlist to reset Hosts.)

2012-01-06 08:13 - 2015-05-31 11:54 - 00000736 ____A C:\WINDOWS\system32\Drivers\etc\hosts
127.0.0.1       localhost
 

==================== Scheduled Tasks (Whitelisted) =============

(If an entry is included in the fixlist, the task (.job) file will be moved. The file which is running by the task will not be moved.)

Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job => C:\Program Files\Google\Update\GoogleUpdate.exe
Task: C:\WINDOWS\Tasks\HP Photo Creations Messager.job => C:\Documents and Settings\All Users\Application Data\HP Photo Creations\MessageCheck.exe
Task: C:\WINDOWS\Tasks\Microsoft Windows XP End of Service Notification Monthly.job => C:\WINDOWS\system32\xp_eos.exe
Task: C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-1738717990-2325586264-1949678871-1006.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-1738717990-2325586264-1949678871-1006.job => C:\Program Files\Real\RealUpgrade\realupgrade.exe
Task: C:\WINDOWS\Tasks\User_Feed_Synchronization-{4C18FE80-4C66-408C-8E35-3B21085B26E5}.job => C:\WINDOWS\system32\msfeedssync.exe

==================== Loaded Modules (Whitelisted) ==============


==================== Alternate Data Streams (Whitelisted) =========

(If an entry is included in the fixlist, only the ADS will be removed.)

AlternateDataStreams: C:\WINDOWS\$NtUninstallKB54813$:SummaryInformation
AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:D346F792

==================== Safe Mode (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. The "AlternateShell" will be restored.)

HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\pcwatch.sys => ""="Driver" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm.sys => ""="Driver"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCProtect => ""="service" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\pcwatch.sys => ""="Driver" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\SMR210 => ""="Service"
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Option => "OptionValue"="1"

==================== EXE Association (Whitelisted) ===============

(If an entry is included in the fixlist, the registry item will be restored to default or removed.)


==================== Internet Explorer trusted/restricted ===============

(If an entry is included in the fixlist, it will be removed from the registry.)

IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\100.83 -> {undo}66.197.100.83
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\107.100 -> {undo}66.250.107.100
IE restricted site: HKU\.DEFAULT\...\107.101 -> {undo}66.250.107.101
IE restricted site: HKU\.DEFAULT\...\107.99 -> {undo}66.250.107.99
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\114.130 -> {undo}209.66.114.130
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net

There are 7814 more restricted sites.

==================== Other Areas ============================

(Currently there is no automatic fix for this section.)

HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Control Panel\Desktop\\Wallpaper -> C:\Documents and Settings\Martha Olive\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
DNS Servers: Media is not connected to internet.

==================== MSCONFIG/TASK MANAGER disabled items ==

(Currently there is no automatic fix for this section.)

MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk => C:\WINDOWS\pss\Adobe Reader Speed Launch.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Bluetooth.lnk => C:\WINDOWS\pss\Bluetooth.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Digital Line Detect.lnk => C:\WINDOWS\pss\Digital Line Detect.lnkCommon Startup
MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Service Manager.lnk => C:\WINDOWS\pss\Service Manager.lnkCommon Startup
MSCONFIG\startupreg: Adobe Photo Downloader => "C:\Program Files\Adobe\Photoshop Elements 4.0\apdproxy.exe"
MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
MSCONFIG\startupreg: Broadcom Wireless Manager UI => C:\WINDOWS\system32\WLTRAY.exe
MSCONFIG\startupreg: ccApp => "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
MSCONFIG\startupreg: ctfmon.exe => C:\WINDOWS\system32\ctfmon.exe
MSCONFIG\startupreg: CTSVolFE.exe => "C:\Program Files\Creative\Mixer\CTSVolFE.exe" /r
MSCONFIG\startupreg: Dell QuickSet => C:\Program Files\Dell\QuickSet\quickset.exe
MSCONFIG\startupreg: DivXUpdate => "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
MSCONFIG\startupreg: DLA => C:\WINDOWS\System32\DLA\DLACTRLW.EXE
MSCONFIG\startupreg: DMXLauncher => C:\Program Files\Dell\Media Experience\DMXLauncher.exe
MSCONFIG\startupreg: DW6 => "C:\Program Files\The Weather Channel FW\Desktop\DesktopWeather.exe"
MSCONFIG\startupreg: ehTray => C:\WINDOWS\ehome\ehtray.exe
MSCONFIG\startupreg: HP Component Manager => "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
MSCONFIG\startupreg: HP Software Update => C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
MSCONFIG\startupreg: igfxhkcmd => C:\WINDOWS\system32\hkcmd.exe
MSCONFIG\startupreg: igfxpers => C:\WINDOWS\system32\igfxpers.exe
MSCONFIG\startupreg: igfxtray => C:\WINDOWS\system32\igfxtray.exe
MSCONFIG\startupreg: ISUSPM Startup => "C:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -startup
MSCONFIG\startupreg: ISUSScheduler => "C:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
MSCONFIG\startupreg: iTunesHelper => "C:\Program Files\iTunes\iTunesHelper.exe"
MSCONFIG\startupreg: LogitechCommunicationsManager => "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe"
MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\QuickCam\Quickcam.exe" /hide
MSCONFIG\startupreg: ModemOnHold => C:\Program Files\NetWaiting\netWaiting.exe
MSCONFIG\startupreg: MSKDetectorExe => C:\Program Files\McAfee\SpamKiller\MSKDetct.exe /uninstall
MSCONFIG\startupreg: MSMSGS => "C:\Program Files\Messenger\msmsgs.exe" /background
MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\qttask.exe" -atboottime
MSCONFIG\startupreg: SigmatelSysTrayApp => stsystra.exe
MSCONFIG\startupreg: SMessaging => C:\Documents and Settings\Martha Olive\Local Settings\Application Data\Strongvault Online Backup\SMessaging.exe
MSCONFIG\startupreg: SunJavaUpdateSched => "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
MSCONFIG\startupreg: swg => "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
MSCONFIG\startupreg: SynTPEnh => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
MSCONFIG\startupreg: TkBellExe => "C:\program files\real\realplayer\update\realsched.exe"  -osboot
MSCONFIG\startupreg: vptray => C:\PROGRA~1\SYMANT~1\VPTray.exe

==================== FirewallRules (Whitelisted) ===============

(If an entry is included in the fixlist, it will be removed from the registry. The file will not be moved unless listed separately.)

DomainProfile\GloballyOpenPorts: [139:TCP] => Enabled:@xpsp2res.dll,-22004
DomainProfile\GloballyOpenPorts: [445:TCP] => Enabled:@xpsp2res.dll,-22005
DomainProfile\GloballyOpenPorts: [137:UDP] => Enabled:@xpsp2res.dll,-22001
DomainProfile\GloballyOpenPorts: [138:UDP] => Enabled:@xpsp2res.dll,-22002
StandardProfile\GloballyOpenPorts: [139:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22004
StandardProfile\GloballyOpenPorts: [445:TCP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22005
StandardProfile\GloballyOpenPorts: [137:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22001
StandardProfile\GloballyOpenPorts: [138:UDP] => :LocalSubNet:Enabled:@xpsp2res.dll,-22002

==================== Faulty Device Manager Devices =============

Name: Broadcom 440x 10/100 Integrated Controller
Description: Broadcom 440x 10/100 Integrated Controller
Class Guid: {4D36E972-E325-11CE-BFC1-08002BE10318}
Manufacturer: Broadcom
Service: bcm4sbxp
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


==================== Event log errors: =========================

Application errors:
==================
Error: (05/31/2015 01:08:13 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (05/31/2015 01:08:13 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/31/2015 01:07:57 PM) (Source: crypt32) (EventID: 8) (User: )
Description: Failed auto update retrieval of third-party root list sequence number from: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> with error: The server name or address could not be resolved

Error: (05/31/2015 01:07:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/31/2015 01:07:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: Failed extract of third-party root list from auto update cab at: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab> with error: A required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/31/2015 00:31:42 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to create JQS API server: socket() failed (Socket error 10106)

Error: (05/31/2015 00:31:38 PM) (Source: Media Center Extender Services) (EventID: 4097) (User: )
Description: ERROR: Device Service Listener - UDP networking failed. Error code 0x8007277A.

Error: (05/31/2015 11:56:44 AM) (Source: Media Center Extender Services) (EventID: 4097) (User: )
Description: ERROR: Device Service Listener - UDP networking failed. Error code 0x8007277A.

Error: (05/31/2015 11:56:38 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to create JQS API server: socket() failed (Socket error 10106)

Error: (05/31/2015 11:40:59 AM) (Source: Media Center Extender Services) (EventID: 4097) (User: )
Description: ERROR: Device Service Listener - UDP networking failed. Error code 0x8007277A.


System errors:
=============
Error: (05/31/2015 01:07:02 PM) (Source: DCOM) (EventID: 10005) (User: MARTHA)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (05/31/2015 01:06:34 PM) (Source: DCOM) (EventID: 10005) (User: MARTHA)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (05/31/2015 01:06:24 PM) (Source: DCOM) (EventID: 10005) (User: MARTHA)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (05/31/2015 00:56:53 PM) (Source: DCOM) (EventID: 10005) (User: MARTHA)
Description: DCOM got error "%%1084" attempting to start the service netman with arguments ""
in order to run the server:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error: (05/31/2015 00:56:52 PM) (Source: DCOM) (EventID: 10005) (User: MARTHA)
Description: DCOM got error "%%1084" attempting to start the service netman with arguments ""
in order to run the server:
{BA126AE5-2166-11D1-B1D0-00805FC1270E}

Error: (05/31/2015 00:56:04 PM) (Source: DCOM) (EventID: 10005) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (05/31/2015 00:52:41 PM) (Source: Service Control Manager) (EventID: 7026) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AFD
APPDRV
Fips
intelppm
IPSec
NetBIOS
NetBT
RasAcd
Rdbss
Tcpip
WS2IFSL

Error: (05/31/2015 00:52:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The IPSEC Services service depends on the IPSEC driver service which failed to start because of the following error:
%%31

Error: (05/31/2015 00:52:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Bonjour Service service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31

Error: (05/31/2015 00:52:41 PM) (Source: Service Control Manager) (EventID: 7001) (User: )
Description: The Apple Mobile Device service depends on the TCP/IP Protocol Driver service which failed to start because of the following error:
%%31


Microsoft Office:
=========================
Error: (05/31/2015 01:08:13 PM) (Source: crypt32) (EventID: 8) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe server name or address could not be resolved

Error: (05/31/2015 01:08:13 PM) (Source: crypt32) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/31/2015 01:07:57 PM) (Source: crypt32) (EventID: 8) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txtThe server name or address could not be resolved

Error: (05/31/2015 01:07:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/31/2015 01:07:57 PM) (Source: crypt32) (EventID: 11) (User: )
Description: http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cabA required certificate is not within its validity period when verifying against the current system clock or the timestamp in the signed file.

Error: (05/31/2015 00:31:42 PM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to create JQS API server: socket() failed (Socket error 10106)

Error: (05/31/2015 00:31:38 PM) (Source: Media Center Extender Services) (EventID: 4097) (User: )
Description: UDP0x8007277A

Error: (05/31/2015 11:56:44 AM) (Source: Media Center Extender Services) (EventID: 4097) (User: )
Description: UDP0x8007277A

Error: (05/31/2015 11:56:38 AM) (Source: JavaQuickStarterService) (EventID: 1) (User: )
Description: Unable to create JQS API server: socket() failed (Socket error 10106)

Error: (05/31/2015 11:40:59 AM) (Source: Media Center Extender Services) (EventID: 4097) (User: )
Description: UDP0x8007277A


==================== Memory info ===========================

Processor: Genuine Intel® CPU T1350 @ 1.86GHz
Percentage of memory in use: 28%
Total physical RAM: 1014.37 MB
Available physical RAM: 726.11 MB
Total Pagefile: 2445.62 MB
Available Pagefile: 2322.49 MB
Total Virtual: 2047.88 MB
Available Virtual: 1949.14 MB

==================== Drives ================================

Drive c: () (Fixed) (Total:37.24 GB) (Free:5.89 GB) NTFS ==>[Drive with boot components (Windows XP)]
Drive d: (Backup) (Fixed) (Total:12.44 GB) (Free:12.35 GB) NTFS
Drive f: (WINSETUP) (Removable) (Total:3.76 GB) (Free:2.58 GB) FAT32
Drive g: (GRTMPVOL_EN) (CDROM) (Total:0.61 GB) (Free:0 GB) CDFS

==================== MBR & Partition Table ==================

========================================================
Disk: 0 (Size: 54.5 GB) (Disk ID: E686F016)
Partition 1: (Not Active) - (Size=47 MB) - (Type=DE)
Partition 2: (Active) - (Size=37.2 GB) - (Type=07 NTFS)
Partition 3: (Not Active) - (Size=12.4 GB) - (Type=07 NTFS)
Partition 4: (Not Active) - (Size=4.7 GB) - (Type=DB)

========================================================
Disk: 1 (Size: 3.8 GB) (Disk ID: 73736572)
Partition 1: (Active) - (Size=3.8 GB) - (Type=0C)

==================== End of log ============================

not sure if you need this or not but i did it anyway.

Logfile of Trend Micro HijackThis v2.0.5
Scan saved at 12:22:42 PM, on 5/31/2015
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)

FIREFOX: 38.0.1 (x86 en-US)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\WLTRYSVC.EXE
C:\WINDOWS\System32\bcmwltry.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Unlocker\UnlockerAssistant.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\MagicDisc\MagicDisc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe
C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Malwarebytes Anti-Malware\mbam.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\system32\wscntfy.exe
F:\adwcleaner_4.205.exe
F:\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=6061004
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: RealPlayer Download and Record Plugin for Internet Explorer - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll
O2 - BHO: DriveLetterAccess - {5CA3D70E-1895-11CF-8E15-001234567890} - C:\WINDOWS\System32\DLA\DLASHX_W.DLL
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [DXDllRegExe] dxdllreg.exe
O4 - HKLM\..\Run: [UnlockerAssistant] "C:\Program Files\Unlocker\UnlockerAssistant.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-18\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [DWQueuedReporting] "c:\PROGRA~1\COMMON~1\MICROS~1\DW\dwtrig20.exe" -t (User 'Default user')
O4 - Startup: MagicDisc.lnk = C:\Program Files\MagicDisc\MagicDisc.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - (no file)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O10 - Broken Internet access because of LSP provider 'c:\windows\system32\pcprotect.dll' missing
O15 - Trusted Zone: http://maps.onslowcountync.gov
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1160524618046
O16 - DPF: {6F750203-1362-4815-A476-88533DE61D0C} (Kodak Gallery Easy Upload Manager Class) - http://www.kodakgallery.com/downloads/BUM/BUM_WIN_IE_2/axofupld.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{BBA14B51-B5FC-496A-BDEE-61D8D5B41744}: NameServer = 192.168.1.1
O18 - Filter hijack: text/html - {3cad787d-9337-4381-86d1-3ffb60e8894a} - C:\WINDOWS\system32\xwreg32.dll
O20 - Winlogon Notify: USB3Nw32 - USB3Nw32.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: MBAMScheduler - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamscheduler.exe
O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes Anti-Malware\mbamservice.exe
O23 - Service: McAfee Security Scan Component Host Service (McComponentHostService) - Unknown owner - C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe (file missing)
O23 - Service: Mozilla Maintenance Service (MozillaMaintenance) - Mozilla Foundation - C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
O23 - Service: NICCONFIGSVC - Dell Inc. - C:\Program Files\Dell\QuickSet\NICCONFIGSVC.exe
O23 - Service: PCProtect - Unknown owner - C:\Program Files\Web Protect\PCProtect.exe (file missing)
O23 - Service: Dell Wireless WLAN Tray Service (wltrysvc) - Unknown owner - C:\WINDOWS\System32\WLTRYSVC.EXE

--
End of file - 7213 bytes
 



BC AdBot (Login to Remove)

 


m

#2 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,499 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:01:49 PM

Posted 31 May 2015 - 03:45 PM

Hello daqid,

  •  

     

  • Welcome to Bleeping Computer.
  • My name is fireman4it and I will be helping you with your Malware problem.

    Please take note of some guidelines for this fix:
  • Refrain from making any changes to your computer including installing/uninstall programs, deleting files, modifying the registry, and running scanners or tools.
      
  • If you do not understand any step(s) provided, please do not hesitate to ask before continuing.
      
  • Even if things appear to be better, it might not mean we are finished. Please continue to follow my instructions and reply back until I give you the "all clean".
  • In the upper right hand corner of the topic you will see a button called Follow This Topic.I suggest you click it and select Immediate E-Mail notification and click on Follow This Topic. This way you will be advised when we respond to your topic and facilitate the cleaning of your machine.

      
  • Finally, please reply using the Post  button in the lower right hand corner of your screen. Do not start a new topic. The logs that you post should be pasted directly into the reply, unless they do not fit into the post.
  •   I will be analyzing your log. I will get back to you with instructions.

 

 

1.

Download attached fixlist.txt file and save it to the Desktop.

NOTE. It's important that both files, FRST/FRST64 and fixlist.txt are in the same location or the fix will not work.

NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

Run FRST/FRST64 and press the Fix button just once and wait.
If for some reason the tool needs a restart, please make sure you let the system restart normally. After that let the tool complete its run.
When finished FRST will generate a log on the Desktop (Fixlog.txt). Please post it to your reply.

 

 

Attached File  fixlist.txt   13.97KB   4 downloads

 

 

How is the machine running after this fix?

 

 


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#3 daqid

daqid
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 31 May 2015 - 03:59 PM

thanks for replying. here is the log:

 

Fix result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by Martha Olive at 2015-05-31 16:53:34 Run:2
Running from F:\
Loaded Profiles: Martha Olive (Available Profiles: Martha Olive & Administrator)
Boot Mode: Normal

==============================================

fixlist content:
*****************
Winlogon\Notify\USB3Nw32: USB3Nw32.dll [X]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Filter: text/html - {3cad787d-9337-4381-86d1-3ffb60e8894a} - C:\WINDOWS\system32\xwreg32.dll No File
Winsock: Catalog5 01 mswsock.dll File not found ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 03 mswsock.dll File not found ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 C:\WINDOWS\system32\PCProtect.dll File not found
Winsock: Catalog9 02 C:\WINDOWS\system32\PCProtect.dll File not found
Winsock: Catalog9 20 C:\WINDOWS\system32\PCProtect.dll File not found
FF Extension: Freeze.com NetAssistant - C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{1266764D-FC4F-4FA7-B63B-884D53B1680F}.xpi [2014-02-03]
FF Extension: SySaver - C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org [2015-05-20]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-05-20] <==== ATTENTION
C:\Program Files\mozilla firefox\firefox.cfg
C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [Not Found]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe" [X]
S2 NecUsb; C:\WINDOWS\system32\NUSB3w32.dll [X]
S3 PCProtect; C:\Program Files\Web Protect\PCProtect.exe [X] <==== ATTENTION
C:\Program Files\Web Protect\PCProtect.exe
R1 pcwatch; C:\WINDOWS\system32\Drivers\pcwatch.sys [19840 2014-01-08] () [File not signed] <==== ATTENTION
C:\WINDOWS\system32\Drivers\pcwatch.sys
S3 wanatw; system32\DRIVERS\wanatw4.sys [X]
C:\WINDOWS\Tasks\At1.job
2011-12-28 14:38 - 2012-01-03 11:29 - 0014330 ___SH () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\6b51517266buq514
C:\Documents and Settings\Martha Olive\Local Settings\Temp\cct.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\JavaIC.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\jre-7u79-windows-i586-iftw.exe
C:\Documents and Settings\Martha Olive\Local Settings\Temp\msscct32.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Martha Olive\Local Settings\Temp\sqlite3.dll
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a}\InprocServer32 -> C:\WINDOWS\system32\xwreg32.dll No File
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC}\localserver32 -> No Filepath
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\pcwatch.sys => ""="Driver" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCProtect => ""="service" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\pcwatch.sys => ""="Driver" <==== ATTENTION
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\100.83 -> {undo}66.197.100.83
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\107.100 -> {undo}66.250.107.100
IE restricted site: HKU\.DEFAULT\...\107.101 -> {undo}66.250.107.101
IE restricted site: HKU\.DEFAULT\...\107.99 -> {undo}66.250.107.99
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\114.130 -> {undo}209.66.114.130
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
cmd: netsh winsock reset

*****************

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\USB3Nw32 => key not found.
HKLM\SOFTWARE\Policies\Google => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\SOFTWARE\Policies\Google => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value not found.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKCR\PROTOCOLS\Filter\text/html => key not found.
"HKCR\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a}" => key Removed successfully.
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000001\\LibraryPath Error setting value to %SystemRoot%\System32\mswsock.dll
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\NameSpace_Catalog5\Catalog_Entries\000000000003\\LibraryPath Error setting value to %SystemRoot%\System32\mswsock.dll
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001 => key could not remove. Access Denied.
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002 => key could not remove. Access Denied.
HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000020 => key could not remove. Access Denied.
C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{1266764D-FC4F-4FA7-B63B-884D53B1680F}.xpi => Moved successfully.
C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org => Moved successfully.
C:\Program Files\mozilla firefox\firefox.cfg => Moved successfully.
"C:\Program Files\mozilla firefox\firefox.cfg" => File/Folder not found.
"C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org" => File/Folder not found.
"HKLM\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk" => key Removed successfully.
McComponentHostService => Service Removed successfully.
NecUsb => Service Removed successfully.
PCProtect => Service could not remove
"C:\Program Files\Web Protect\PCProtect.exe" => File/Folder not found.
pcwatch => Unable to stop service.
pcwatch => Service could not remove
Could not move "C:\WINDOWS\system32\Drivers\pcwatch.sys" => Scheduled to move on reboot.
wanatw => Service Removed successfully.
C:\WINDOWS\Tasks\At1.job => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Application Data\6b51517266buq514 => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Temp\cct.dll => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Temp\JavaIC.dll => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Temp\jre-7u79-windows-i586-iftw.exe => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Temp\msscct32.dll => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Temp\Quarantine.exe => Moved successfully.
C:\Documents and Settings\Martha Olive\Local Settings\Temp\sqlite3.dll => Moved successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B}" => key Removed successfully.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a} => key not found.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961}" => key Removed successfully.
"HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC}" => key Removed successfully.
C:\WINDOWS\Tasks\At1.job not found.
"C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE" => File/Folder not found.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\pcwatch.sys" => key Removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\PCProtect" => key Removed successfully.
"HKLM\System\CurrentControlSet\Control\SafeBoot\Network\pcwatch.sys" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100.83" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\107.100" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\107.101" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\107.99" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\114.130" => key Removed successfully.
"HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net" => key Removed successfully.

=========  netsh winsock reset =========


Unable to reset the Winsock Catalog.
Access is denied.



========= End of CMD: =========


Result of scheduled files to move (Boot Mode: Normal) (Date&Time: 2015-05-31 16:55:43)<=

"C:\WINDOWS\system32\Drivers\pcwatch.sys" => Could not move

==== End of Fixlog 16:55:43 ====



#4 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,499 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:01:49 PM

Posted 01 June 2015 - 09:18 PM

Install Recovery Console and Run ComboFix

This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

Download Combofix from any of the links below, and save it to your desktop

Link 1
Link 2

  • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
  • Close any open windows, including this one.
  • Double click on ComboFix.exe & follow the prompts.
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal.  It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
  • If you did not have it installed, you will see the prompt below. Choose YES.
  • RcAuto1.gif
  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

  • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    whatnext.png
  • Click on Yes, to continue scanning for malware.
  • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
Leave your computer alone while ComboFix is running.
ComboFix will restart your computer if malware is found; allow it to do so.


Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.
 


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#5 daqid

daqid
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 02 June 2015 - 11:39 AM

hi, thanks for the reply. i tried the frst scan again in safe mode yesterday and it was able to reset winsock. network and everything is working as it should and i've taken the computer back to my dad. thanks for the help. i am gonna look into frst some more, never heard of it till the other day. thanks again!!!!

 

here is the log, it would be awesome to know what file(s) was causing all of the trouble with the winsock.

 

Fix result of Farbar Recovery Scan Tool (x86) Version: 29-05-2015
Ran by Martha Olive at 2015-06-01 16:37:02 Run:3
Running from F:\
Loaded Profiles: Martha Olive (Available Profiles: Martha Olive & Administrator)
Boot Mode: Safe Mode (minimal)

==============================================

fixlist content:
*****************
Winlogon\Notify\USB3Nw32: USB3Nw32.dll [X]
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
CHR HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "http://www.google.com" <======= ATTENTION
SearchScopes: HKU\.DEFAULT -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-19 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
SearchScopes: HKU\S-1-5-20 -> DefaultScope {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL =
Toolbar: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006 -> No Name - {2318C2B1-4965-11D4-9B18-009027A5CD4F} -  No File
Filter: text/html - {3cad787d-9337-4381-86d1-3ffb60e8894a} - C:\WINDOWS\system32\xwreg32.dll No File
Winsock: Catalog5 01 mswsock.dll File not found ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog5 03 mswsock.dll File not found ATTENTION: LibraryPath should be "%SystemRoot%\System32\mswsock.dll"
Winsock: Catalog9 01 C:\WINDOWS\system32\PCProtect.dll File not found
Winsock: Catalog9 02 C:\WINDOWS\system32\PCProtect.dll File not found
Winsock: Catalog9 20 C:\WINDOWS\system32\PCProtect.dll File not found
FF Extension: Freeze.com NetAssistant - C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{1266764D-FC4F-4FA7-B63B-884D53B1680F}.xpi [2014-02-03]
FF Extension: SySaver - C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org [2015-05-20]
FF ExtraCheck: C:\Program Files\mozilla firefox\firefox.cfg [2015-05-20] <==== ATTENTION
C:\Program Files\mozilla firefox\firefox.cfg
C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [Not Found]
S3 McComponentHostService; "C:\Program Files\McAfee Security Scan\3.8.130\McCHSvc.exe" [X]
S2 NecUsb; C:\WINDOWS\system32\NUSB3w32.dll [X]
S3 PCProtect; C:\Program Files\Web Protect\PCProtect.exe [X] <==== ATTENTION
C:\Program Files\Web Protect\PCProtect.exe
R1 pcwatch; C:\WINDOWS\system32\Drivers\pcwatch.sys [19840 2014-01-08] () [File not signed] <==== ATTENTION
C:\WINDOWS\system32\Drivers\pcwatch.sys
S3 wanatw; system32\DRIVERS\wanatw4.sys [X]
C:\WINDOWS\Tasks\At1.job
2011-12-28 14:38 - 2012-01-03 11:29 - 0014330 ___SH () C:\Documents and Settings\Martha Olive\Local Settings\Application Data\6b51517266buq514
C:\Documents and Settings\Martha Olive\Local Settings\Temp\cct.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\JavaIC.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\jre-7u79-windows-i586-iftw.exe
C:\Documents and Settings\Martha Olive\Local Settings\Temp\msscct32.dll
C:\Documents and Settings\Martha Olive\Local Settings\Temp\Quarantine.exe
C:\Documents and Settings\Martha Olive\Local Settings\Temp\sqlite3.dll
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a}\InprocServer32 -> C:\WINDOWS\system32\xwreg32.dll No File
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E}\InprocServer32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961}\localserver32 -> No Filepath
CustomCLSID: HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC}\localserver32 -> No Filepath
Task: C:\WINDOWS\Tasks\At1.job => C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE <==== ATTENTION
C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\pcwatch.sys => ""="Driver" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\PCProtect => ""="service" <==== ATTENTION
HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\pcwatch.sys => ""="Driver" <==== ATTENTION
IE restricted site: HKU\.DEFAULT\...\007guard.com -> install.007guard.com
IE restricted site: HKU\.DEFAULT\...\008i.com -> 008i.com
IE restricted site: HKU\.DEFAULT\...\008k.com -> www.008k.com
IE restricted site: HKU\.DEFAULT\...\00hq.com -> www.00hq.com
IE restricted site: HKU\.DEFAULT\...\010402.com -> 010402.com
IE restricted site: HKU\.DEFAULT\...\032439.com -> 80gw6ry3i3x3qbrkwhxhw.032439.com
IE restricted site: HKU\.DEFAULT\...\0scan.com -> www.0scan.com
IE restricted site: HKU\.DEFAULT\...\1-2005-search.com -> www.1-2005-search.com
IE restricted site: HKU\.DEFAULT\...\1-domains-registrations.com -> www.1-domains-registrations.com
IE restricted site: HKU\.DEFAULT\...\100.83 -> {undo}66.197.100.83
IE restricted site: HKU\.DEFAULT\...\1000gratisproben.com -> www.1000gratisproben.com
IE restricted site: HKU\.DEFAULT\...\1001namen.com -> www.1001namen.com
IE restricted site: HKU\.DEFAULT\...\100888290cs.com -> mir.100888290cs.com
IE restricted site: HKU\.DEFAULT\...\100sexlinks.com -> www.100sexlinks.com
IE restricted site: HKU\.DEFAULT\...\107.100 -> {undo}66.250.107.100
IE restricted site: HKU\.DEFAULT\...\107.101 -> {undo}66.250.107.101
IE restricted site: HKU\.DEFAULT\...\107.99 -> {undo}66.250.107.99
IE restricted site: HKU\.DEFAULT\...\10sek.com -> www.10sek.com
IE restricted site: HKU\.DEFAULT\...\114.130 -> {undo}209.66.114.130
IE restricted site: HKU\.DEFAULT\...\12-26.net -> user1.12-26.net
cmd: netsh winsock reset

*****************

HKLM\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\USB3Nw32 => key not found.
HKLM\SOFTWARE\Policies\Google => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\SOFTWARE\Policies\Google => key not found.
HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs\\Tabs => value restored successfully
HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => value not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => value not found.
HKCR\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F} => key not found.
HKCR\PROTOCOLS\Filter\text/html => key not found.
HKCR\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a} => key not found.
Winsock: Catalog5 entry 000000000001\\LibraryPath  was set successfully to %SystemRoot%\System32\mswsock.dll
Winsock: Catalog5 entry 000000000003\\LibraryPath  was set successfully to %SystemRoot%\System32\mswsock.dll
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000001" => key Removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000002" => key Removed successfully.
"HKLM\SYSTEM\CurrentControlSet\Services\WinSock2\Parameters\Protocol_Catalog9\Catalog_Entries\000000000020" => key Removed successfully.
C:\Documents and Settings\Martha Olive\Application Data\Mozilla\Firefox\Profiles\bt605jza.default\Extensions\{1266764D-FC4F-4FA7-B63B-884D53B1680F}.xpi => not found.
C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org => not found.
"C:\Program Files\mozilla firefox\firefox.cfg" => not found.
"C:\Program Files\mozilla firefox\firefox.cfg" => File/Folder not found.
"C:\Program Files\Mozilla Firefox\extensions\ecyoivyyjrojzoyplneg@nrbkkafymvigofepbi.org" => File/Folder not found.
HKLM\SOFTWARE\Google\Chrome\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk => key not found.
McComponentHostService => Service not found.
NecUsb => Service not found.
PCProtect => Service Removed successfully.
"C:\Program Files\Web Protect\PCProtect.exe" => File/Folder not found.
pcwatch => Service Removed successfully.
C:\WINDOWS\system32\Drivers\pcwatch.sys => Moved successfully.
wanatw => Service not found.
"C:\WINDOWS\Tasks\At1.job" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Application Data\6b51517266buq514" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Temp\cct.dll" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Temp\JavaIC.dll" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Temp\jre-7u79-windows-i586-iftw.exe" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Temp\msscct32.dll" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Temp\Quarantine.exe" => File/Folder not found.
"C:\Documents and Settings\Martha Olive\Local Settings\Temp\sqlite3.dll" => File/Folder not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{05C3F9E2-1E76-439F-9E37-9020946A191A} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{09303D01-B159-4F1B-A2B8-CA3117B8FA1B} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{3cad787d-9337-4381-86d1-3ffb60e8894a} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{54B2BE72-FEC7-443D-BAE9-3E70E618A7D8} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{73CA2532-42DE-449F-8C8A-229B8AAF3B68} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{949DB7D2-36F2-4CCA-8CA8-A3A6D4E5911C} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{A50A1B09-943D-4A78-B08D-56072A602ABD} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{C9448C44-BEFB-4941-8457-E5C4314D3D96} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CAF933C7-C65A-46D2-AA63-1FC84EB43954} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CC9E9F9A-11A4-49DD-B468-782AFDE5607E} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{CD89D352-5A13-49F8-9EB5-7E6D1FB0CD57} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C0-4CEF-11D0-8B17-00AA00211961} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{DB20D0C3-4CEF-11D0-8B17-00AA00211961} => key not found.
HKU\S-1-5-21-1738717990-2325586264-1949678871-1006_Classes\CLSID\{E8ACF719-FFDE-4EE1-8923-48BDA8569FCC} => key not found.
C:\WINDOWS\Tasks\At1.job not found.
"C:\DOCUME~1\MARTHA~1\APPLIC~1\MYSEAR~1\UPDATE~1\UPDATE~1.EXE" => File/Folder not found.
HKLM\System\CurrentControlSet\Control\SafeBoot\Minimal\pcwatch.sys => key not found.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\PCProtect => key not found.
HKLM\System\CurrentControlSet\Control\SafeBoot\Network\pcwatch.sys => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\007guard.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008i.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\008k.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\00hq.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\010402.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\032439.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\0scan.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-2005-search.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1-domains-registrations.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100.83 => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1000gratisproben.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\1001namen.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100888290cs.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\100sexlinks.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\107.100 => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\107.101 => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\107.99 => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\10sek.com => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\114.130 => key not found.
HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\12-26.net => key not found.

=========  netsh winsock reset =========

Initialization Function InitHelperDll in IPMONTR.DLL failed to start with error code 10107

Sucessfully reset the Winsock Catalog.
You must restart the machine in order to complete the reset.


========= End of CMD: =========


==== End of Fixlog 16:41:09 ====


Edited by daqid, 02 June 2015 - 11:41 AM.


#6 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,499 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:01:49 PM

Posted 02 June 2015 - 05:12 PM

You no longer have the machine?


" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif


#7 daqid

daqid
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Local time:03:49 PM

Posted 02 June 2015 - 05:15 PM

Yes I have returned the machine already, it was running good and network was working. Thanks for all the help.

#8 fireman4it

fireman4it

    Bleepin' Fireman


  • Malware Response Team
  • 13,499 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:Greenup, Ill USA
  • Local time:01:49 PM

Posted 03 June 2015 - 06:39 PM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.

" Extinguishing Malware from the world"

The Virus, Trojan, Spyware, and Malware Removal forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.

ALL OTHER HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
Thanks-


  userbar_eis_500.gif

If I have helped you, consider making a donation to help me continue the fight against Malware! Just click btn_donate_LG.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users