removing any form of malware, be it, virus, spyware, or trojans

View previous topic View next topic Go down

removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Mon Feb 22, 2010 9:19 am

Hi

I have done a recovery on my computer because it run very slow. The laptop seems to run normal, but sometimes it still run very slow. I have done the necessary updates and instructions that you recomennded:
[You must be registered and logged in to see this link.]

So can you please help me to check this log that I generated when using "hijackthis": Perhaps there is something that affect my laptop? Perhaps I have virus or something?

----------------------------------------------------------------------

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 09:59:51, on 22.02.2010
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\inetsrv\inetinfo.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe
C:\WINDOWS\system32\o2flash.exe
C:\WINDOWS\system32\tcpsvcs.exe
C:\WINDOWS\System32\snmp.exe
C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\hkcmd.exe
C:\WINDOWS\system32\igfxpers.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe
c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\WinZip\WZQKPICK.EXE
C:\Documents and Settings\Kenneth\Desktop\JavaRa.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Documents and Settings\Kenneth\Local Settings\Temporary Internet Files\Content.IE5\5FF72YBF\winlogon[1].scr

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = [You must be registered and logged in to see this link.]
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = [You must be registered and logged in to see this link.]
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coIEPlg.dll
O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\IPSBHO.DLL
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coIEPlg.dll
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [Alcmtr] ALCMTR.EXE
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe
O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKCU\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'LOKAL TJENESTE')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'NETTVERKSTJENESTE')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: OneNote 2007 Screen Clipper og Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE
O8 - Extra context menu item: E&ksporter til Microsoft Excel - [You must be registered and logged in to see this link.]
O9 - Extra button: Send til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - [You must be registered and logged in to see this link.]
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe
O23 - Service: O2Micro Flash Memory (O2Flash) - O2Micro International - C:\WINDOWS\system32\o2flash.exe
O23 - Service: TOSHIBA Bluetooth Service - TOSHIBA CORPORATION - C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe

--
End of file - 6178 bytes

-----------------------------------------------------------------------------------

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by Belahzur on Mon Feb 22, 2010 8:47 pm

Please download and run this tool.

Download Malwarebytes' Anti-Malware from [You must be registered and logged in to see this link.]

Double Click mbam-setup.exe to install the application.

  • Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select "Perform Quick Scan", then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately.


Post the contents of the MBAM Log.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Tue Feb 23, 2010 3:49 pm

I used the mawarebytes program and preformed a full system scan on my laptop harddisc (C:) and on my external harddisc (G:). No infected files was detected.

Here is the log (norwegian):
-------------------------------------------------
Malwarebytes' Anti-Malware 1.44
Databaseversjon: 3779
Windows 5.1.2600 Service Pack 3
Internet Explorer 8.0.6001.18702

23.02.2010 16:42:48
mbam-log-2010-02-23 (16-42-47).txt

Skanntype: Full Skann (C:\|G:\|)
Objekter skannet: 187630
Tid tilbakelagt: 1 hour(s), 25 minute(s), 26 second(s)

Minneprosesser infisert: 0
Minnemoduler infisert: 0
Registernøkler infisert: 0
Registerverdier infisert: 0
Registerfiler infisert: 0
Mapper infisert: 0
Filer infisert: 0

Minneprosesser infisert:
(Ingen mistenkelige filer funnet)

Minnemoduler infisert:
(Ingen mistenkelige filer funnet)

Registernøkler infisert:
(Ingen mistenkelige filer funnet)

Registerverdier infisert:
(Ingen mistenkelige filer funnet)

Registerfiler infisert:
(Ingen mistenkelige filer funnet)

Mapper infisert:
(Ingen mistenkelige filer funnet)

Filer infisert:
(Ingen mistenkelige filer funnet)
-------------------------------------------------

Is my laptop free for any kind of virus?

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by Belahzur on Tue Feb 23, 2010 8:24 pm

Hello.
Download [You must be registered and logged in to see this link.] by OldTimer to your Desktop.

  • Close all windows and double click OTL.exe
  • Click Run Scan and let the program run uninterrupted
  • It will produce two logs for you, one will pop up - OTL.txt, the other will be saved on your Desktop - Extras.txt. Post both logs in this thread.
  • You may need to use two posts to get it all.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Wed Feb 24, 2010 3:56 pm

Hi

Here is the OTL.Txt (Part 1 of 4)

-----------------------
OTL logfile created on: 24.02.2010 16:44:42 - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Kenneth\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000414 | Country: Norway | Language: NOR | Date Format: dd.MM.yyyy

1 014,00 Mb Total Physical Memory | 491,00 Mb Available Physical Memory | 48,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,53 Gb Total Space | 62,20 Gb Free Space | 83,46% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KSJ-EE4E06AD755
Current User Name: Kenneth
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2010.02.24 16:44:20 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kenneth\Desktop\OTL.exe
PRC - [2010.02.05 14:26:20 | 000,094,208 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\igfxpers.exe
PRC - [2010.02.05 14:26:19 | 000,114,688 | ---- | M] (Intel Corporation) -- C:\WINDOWS\system32\hkcmd.exe
PRC - [2010.02.05 14:22:07 | 016,010,240 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe
PRC - [2010.02.04 19:11:51 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010.01.11 15:21:52 | 000,246,504 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2009.12.22 01:57:28 | 000,035,760 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe
PRC - [2009.12.09 10:05:51 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccsvchst.exe
PRC - [2009.11.18 14:00:00 | 000,495,432 | R--- | M] (WinZip Computing, S.L.) -- C:\Program Files\WinZip\WZQKPICK.EXE
PRC - [2008.10.25 11:44:34 | 000,031,072 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2008.04.14 01:12:36 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\snmp.exe
PRC - [2008.04.14 01:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetsrv\inetinfo.exe
PRC - [2008.04.14 01:12:19 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2007.02.25 21:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe
PRC - [2006.02.28 13:00:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpsvcs.exe
PRC - [2005.09.13 14:30:14 | 000,057,344 | ---- | M] (O2Micro International) -- C:\WINDOWS\system32\o2flash.exe


========== Modules (SafeList) ==========

MOD - [2010.02.24 16:44:20 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kenneth\Desktop\OTL.exe
MOD - [2009.12.17 07:08:57 | 000,407,408 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.5.0.127\asoehook.dll
MOD - [2009.07.12 09:02:02 | 000,653,120 | R--- | M] (Microsoft Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.5.0.127\microsoft.vc90.crt\msvcr90.dll
MOD - [2009.07.12 09:02:00 | 000,569,664 | R--- | M] (Microsoft Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.5.0.127\microsoft.vc90.crt\msvcp90.dll


========== Win32 Services (SafeList) ==========

SRV - [2010.02.04 19:11:51 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2009.12.09 10:05:51 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ccSvcHst.exe -- (NIS)
SRV - [2008.11.04 01:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2008.10.25 11:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2008.04.14 01:12:36 | 000,033,280 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\snmp.exe -- (SNMP)
SRV - [2008.04.14 01:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (W3SVC)
SRV - [2008.04.14 01:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (SMTPSVC) Simple Mail Transport Protocol (SMTP)
SRV - [2008.04.14 01:12:22 | 000,015,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\inetsrv\inetinfo.exe -- (IISADMIN)
SRV - [2008.04.14 01:12:02 | 000,105,472 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\p2pgasvc.dll -- (p2pgasvc)
SRV - [2008.04.14 01:11:55 | 000,035,328 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\iprip.dll -- (Iprip)
SRV - [2008.04.14 01:11:55 | 000,028,160 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\irmon.dll -- (Irmon)
SRV - [2007.02.25 21:55:18 | 000,125,048 | ---- | M] (TOSHIBA CORPORATION) [Auto | Running] -- C:\Program Files\Toshiba\Bluetooth Toshiba Stack\TosBtSrv.exe -- (TOSHIBA Bluetooth Service)
SRV - [2006.10.26 13:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2006.02.28 13:00:00 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\tcpsvcs.exe -- (SimpTcp)
SRV - [2006.02.28 13:00:00 | 000,019,456 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\WINDOWS\system32\tcpsvcs.exe -- (LPDSVC)
SRV - [2005.09.13 14:30:14 | 000,057,344 | ---- | M] (O2Micro International) [Auto | Running] -- C:\WINDOWS\system32\o2flash.exe -- (O2Flash)
SRV - [2004.10.22 03:24:18 | 000,073,728 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe -- (IDriverT)


========== Driver Services (SafeList) ==========

DRV - [2010.02.11 19:44:06 | 000,536,112 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\BASHDefs\20100211.001\BHDrvx86.sys -- (BHDrvx86)
DRV - [2010.02.05 14:32:19 | 001,709,696 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETw3x32.sys -- (NETw3x32) Intel(R)
DRV - [2010.02.05 14:26:22 | 001,181,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\igxpmp32.sys -- (ialm)
DRV - [2010.02.05 14:22:08 | 004,246,016 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.Sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2010.02.04 17:37:27 | 001,324,720 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20100222.039\NAVEX15.SYS -- (NAVEX15)
DRV - [2010.02.04 17:37:27 | 000,084,912 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\VirusDefs\20100222.039\NAVENG.SYS -- (NAVENG)
DRV - [2010.02.03 21:48:56 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2010.02.03 21:48:56 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2010.02.03 21:24:26 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2009.12.09 10:06:51 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1105000.07F\ccHPx86.sys -- (ccHP)
DRV - [2009.12.03 07:08:32 | 000,325,168 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\NIS\1105000.07F\SRTSP.SYS -- (SRTSP)
DRV - [2009.12.03 07:08:32 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1105000.07F\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL)
DRV - [2009.11.26 07:41:48 | 000,172,592 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1105000.07F\SYMEFA.SYS -- (SymEFA)
DRV - [2009.11.26 07:41:22 | 000,116,272 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1105000.07F\Ironx86.SYS -- (SymIRON)
DRV - [2009.11.22 01:43:48 | 000,362,032 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1105000.07F\SYMTDI.SYS -- (SYMTDI)
DRV - [2009.11.05 23:06:13 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1105000.07F\SYMDS.SYS -- (SymDS)
DRV - [2009.10.28 23:37:22 | 000,329,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\Definitions\IPSDefs\20100218.001\IDSxpx86.sys -- (IDSxpx86)
DRV - [2009.05.09 01:14:20 | 000,014,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\nuidfltr.sys -- (NuidFltr)
DRV - [2008.09.26 18:01:00 | 000,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2008.06.20 12:08:27 | 000,225,856 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tcpip6.sys -- (Tcpip6)
DRV - [2008.04.13 17:39:15 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008.04.13 17:36:05 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2007.06.11 14:25:28 | 000,041,856 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfusb.sys -- (tosrfusb)
DRV - [2007.05.24 14:27:30 | 000,064,000 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom)
DRV - [2007.04.24 13:20:06 | 000,113,920 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfbd.sys -- (tosrfbd)
DRV - [2007.03.21 11:58:56 | 000,304,920 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\iaStor.sys -- (iaStor)
DRV - [2007.03.01 16:53:10 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Tosrfhid.sys -- (Tosrfhid)
DRV - [2007.01.22 10:43:26 | 000,053,376 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\TosRfSnd.sys -- (TosRfSnd)
DRV - [2006.11.20 17:55:16 | 000,036,480 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfbnp.sys -- (tosrfbnp)
DRV - [2006.10.10 19:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosporte.sys -- (tosporte)
DRV - [2006.07.06 08:56:00 | 000,248,832 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2006.02.28 13:00:00 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2005.09.23 07:48:44 | 000,028,544 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\o2sd.sys -- (O2SDRDR)
DRV - [2005.07.08 14:06:50 | 000,034,176 | ---- | M] (O2Micro ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\o2media.sys -- (O2MDRDR)
DRV - [2005.01.07 05:42:00 | 000,018,612 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tosrfnds.sys -- (tosrfnds)
DRV - [2001.08.17 13:10:28 | 000,035,913 | ---- | M] (SMC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA)
DRV - [2001.08.17 12:12:10 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B) Intel(R)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========


IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\software\mozilla\Firefox\Extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\IPSFFPlgn\ [2010.02.03 21:24:32 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Firefox\Extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.1.0.19\coFFPlgn\ [2010.02.04 18:37:02 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010.02.04 19:03:34 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010.02.06 12:57:53 | 000,000,000 | ---D | M]

[2010.02.04 19:03:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kenneth\Application Data\mozilla\Extensions
[2010.02.06 16:14:21 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kenneth\Application Data\mozilla\Firefox\Profiles\idkg6f1r.default\extensions
[2010.02.06 14:43:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010.01.16 01:49:49 | 000,001,525 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\amazon-en-GB.xml
[2010.01.16 01:49:49 | 000,000,955 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bok-NO.xml
[2010.01.16 01:49:49 | 000,000,968 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\qxl-NO.xml
[2010.01.16 01:49:49 | 000,001,203 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\telefonkatalogen-NO.xml
[2010.01.16 01:49:49 | 000,001,176 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-NO.xml
[2010.01.16 01:49:49 | 000,001,192 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\yahoo-NO.xml

O1 HOSTS File: ([2006.02.28 13:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coieplg.dll (Symantec Corporation)
O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\ipsbho.dll (Symantec Corporation)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coieplg.dll (Symantec Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.5.0.127\coieplg.dll (Symantec Corporation)
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Alcmtr] C:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe (Intel Corporation)
O4 - HKLM..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe (Intel Corporation)
O4 - HKLM..\Run: [RTHDCPL] C:\WINDOWS\RTHDCPL.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk = C:\Program Files\WinZip\WZQKPICK.EXE (WinZip Computing, S.L.)
O4 - Startup: C:\Documents and Settings\Kenneth\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper og Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksporter til Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Send til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : S&end til OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_18)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [You must be registered and logged in to see this link.] (Java Plug-in 1.6.0_18)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} [You must be registered and logged in to see this link.] (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 129.241.0.200 129.241.0.201
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\igfxcui: DllName - igfxdev.dll - C:\WINDOWS\System32\igfxdev.dll (Intel Corporation)
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Bliss.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010.02.03 20:18:33 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{2a85646f-10fb-11df-a5a9-fd7c4a322611}\Shell - "" = AutoRun
O33 - MountPoints2\{2a85646f-10fb-11df-a5a9-fd7c4a322611}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{2a85646f-10fb-11df-a5a9-fd7c4a322611}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{91aa8bba-1a5a-11df-a5cb-00037ae2012f}\Shell - "" = AutoRun
O33 - MountPoints2\{91aa8bba-1a5a-11df-a5cb-00037ae2012f}\Shell\AutoRun\command - "" = E:\AutoRun.exe -- File not found
O33 - MountPoints2\{decc30b0-1258-11df-a5b6-ea0038bb8111}\Shell - "" = AutoRun
O33 - MountPoints2\{decc30b0-1258-11df-a5b6-ea0038bb8111}\Shell\AutoRun\command - "" = E:\pwc_loader.exe -- File not found
O33 - MountPoints2\{dfa451c6-1248-11df-a5b4-ae850e2e287a}\Shell - "" = AutoRun
O33 - MountPoints2\{dfa451c6-1248-11df-a5b4-ae850e2e287a}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2010.02.24 16:44:17 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Kenneth\Desktop\OTL.exe
[2010.02.23 15:14:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Malwarebytes
[2010.02.23 15:14:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2010.02.22 09:47:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\WinZip
[2010.02.22 09:47:24 | 000,000,000 | ---D | C] -- C:\Program Files\WinZip
[2010.02.06 17:05:17 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Office Genuine Advantage
[2010.02.06 17:05:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Office Genuine Advantage
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-TW
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\zh-HK
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\tr-TR
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\sv-SE
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pt-BR
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nl-NL
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\nb-NO
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ko-KR
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\it-IT
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\he-IL
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fr-FR
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\fi-FI
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\es-ES
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\el-GR
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\de-DE
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\da-DK
[2010.02.06 14:14:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ar-SA
[2010.02.06 12:49:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2010.02.06 12:49:08 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies

------------------------------

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Wed Feb 24, 2010 3:58 pm

Here is the OTL.Txt (Part 2 of 4)

-----------------------------------------

[2010.02.06 12:48:34 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2010.02.06 12:48:34 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2010.02.06 12:48:34 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2010.02.06 12:48:34 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2010.02.06 12:48:33 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2010.02.06 12:48:33 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2010.02.06 12:48:33 | 000,000,000 | ---D | C] -- C:\16ea18133e668cdac84c48fada6110
[2010.02.05 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2010.02.05 14:41:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\vlc
[2010.02.05 14:40:53 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2010.02.05 14:36:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\My Documents\Bluetooth
[2010.02.05 14:36:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss
[2010.02.05 14:35:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\Toshiba
[2010.02.05 14:35:42 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2010.02.05 14:32:48 | 002,732,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NETw3r32.dll
[2010.02.05 14:32:48 | 001,709,696 | ---- | C] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\NETw3x32.sys
[2010.02.05 14:32:48 | 000,561,152 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\NETw3c32.dll
[2010.02.05 14:31:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\synapxp2k
[2010.02.05 14:30:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Sda
[2010.02.05 14:30:10 | 000,000,000 | ---D | C] -- C:\Program Files\O2Micro
[2010.02.05 14:27:48 | 001,181,824 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\igxpmp32.sys
[2010.02.05 14:27:48 | 000,094,208 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpers.exe
[2010.02.05 14:27:48 | 000,053,248 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll
[2010.02.05 14:27:47 | 002,363,392 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iglicd32.dll
[2010.02.05 14:27:47 | 002,262,528 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll
[2010.02.05 14:27:47 | 001,442,848 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll
[2010.02.05 14:27:47 | 000,454,656 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igldev32.dll
[2010.02.05 14:27:47 | 000,192,512 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.exe
[2010.02.05 14:27:47 | 000,146,432 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll
[2010.02.05 14:27:47 | 000,106,496 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxzoom.exe
[2010.02.05 14:27:46 | 000,364,544 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\igxpun.exe
[2010.02.05 14:27:46 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010.02.05 14:27:46 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difx32.dll
[2010.02.05 14:27:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2010.02.05 14:26:17 | 000,113,920 | ---- | C] (TOSHIBA CORPORATION) -- C:\WINDOWS\System32\drivers\tosrfbd.sys
[2010.02.05 14:26:17 | 000,041,856 | ---- | C] (TOSHIBA CORPORATION) -- C:\WINDOWS\System32\drivers\tosrfusb.sys
[2010.02.05 14:26:16 | 000,073,728 | ---- | C] (TOSHIBA Corporation.) -- C:\WINDOWS\System32\drivers\Tosrfhid.sys
[2010.02.05 14:26:16 | 000,036,480 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\tosrfbnp.sys
[2010.02.05 14:26:16 | 000,018,612 | ---- | C] (TOSHIBA Corporation.) -- C:\WINDOWS\System32\drivers\tosrfnds.sys
[2010.02.05 14:26:15 | 000,064,000 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\tosrfcom.sys
[2010.02.05 14:26:15 | 000,053,376 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\TosRfSnd.sys
[2010.02.05 14:26:14 | 000,041,600 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\drivers\tosporte.sys
[2010.02.05 14:26:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DRVSTORE
[2010.02.05 14:25:58 | 000,000,000 | ---D | C] -- C:\Program Files\Toshiba
[2010.02.05 14:22:55 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys
[2010.02.05 14:22:53 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys
[2010.02.05 14:22:53 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys
[2010.02.05 14:22:50 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys
[2010.02.05 14:22:49 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys
[2010.02.05 14:22:48 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys
[2010.02.05 14:22:47 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys
[2010.02.05 14:22:46 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys
[2010.02.05 14:22:45 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys
[2010.02.05 14:22:44 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys
[2010.02.05 14:22:43 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys
[2010.02.05 14:22:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\RTCOM
[2010.02.05 14:22:31 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2010.02.05 14:22:31 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax
[2010.02.05 14:22:31 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2010.02.05 14:22:31 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll
[2010.02.05 14:22:30 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2010.02.05 14:22:30 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys
[2010.02.05 14:22:26 | 009,712,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.exe
[2010.02.05 14:22:26 | 000,360,448 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2010.02.05 14:22:26 | 000,266,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.Cpl
[2010.02.05 14:22:25 | 004,246,016 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.Sys
[2010.02.05 14:22:24 | 016,010,240 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe
[2010.02.05 14:22:24 | 002,809,856 | ---- | C] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe
[2010.02.05 14:22:24 | 002,158,592 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2010.02.05 14:22:24 | 000,069,632 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcmtr.exe
[2010.02.05 14:22:24 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek
[2010.02.05 14:22:19 | 000,487,424 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll
[2010.02.05 14:18:57 | 000,000,000 | ---D | C] -- C:\Program Files\Marvell
[2010.02.05 14:06:27 | 000,000,000 | ---D | C] -- C:\Program Files\Intel
[2010.02.05 13:33:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\My Documents\Downloads
[2010.02.05 13:33:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Driver Whiz
[2010.02.05 12:49:23 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\e100b325.sys
[2010.02.05 12:49:23 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100b325.sys
[2010.02.05 12:21:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\Drivers
[2010.02.05 12:17:14 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2010.02.05 12:17:14 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2010.02.05 12:17:14 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2010.02.05 12:17:14 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc
[2010.02.05 12:17:14 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2010.02.05 12:17:14 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2010.02.05 12:17:14 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2010.02.05 12:17:14 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2010.02.05 12:17:14 | 000,147,456 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc
[2010.02.05 12:17:14 | 000,114,688 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc
[2010.02.05 12:17:14 | 000,069,632 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\oemdspif.dll
[2010.02.05 12:17:14 | 000,044,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll
[2010.02.05 12:17:14 | 000,033,847 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\wa301b.sys
[2010.02.05 12:17:14 | 000,033,847 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\wa301a.sys
[2010.02.05 12:17:14 | 000,021,045 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\vch.sys
[2010.02.05 12:17:13 | 003,276,800 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll
[2010.02.05 12:17:13 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2010.02.05 12:17:13 | 000,176,128 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc
[2010.02.05 12:17:13 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc
[2010.02.05 12:17:13 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc
[2010.02.05 12:17:13 | 000,167,936 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2010.02.05 12:17:13 | 000,167,936 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc
[2010.02.05 12:17:13 | 000,163,840 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll
[2010.02.05 12:17:13 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2010.02.05 12:17:13 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2010.02.05 12:17:13 | 000,159,744 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2010.02.05 12:17:13 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc
[2010.02.05 12:17:13 | 000,143,360 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2010.02.05 12:17:13 | 000,139,264 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2010.02.05 12:17:13 | 000,114,688 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc
[2010.02.05 12:17:13 | 000,098,304 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc
[2010.02.05 12:17:13 | 000,098,304 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc
[2010.02.05 12:17:12 | 001,851,392 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmgicd.dll
[2010.02.05 12:17:12 | 000,450,560 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe
[2010.02.05 12:17:12 | 000,221,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxeud.dll
[2010.02.05 12:17:12 | 000,155,648 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdev.dll
[2010.02.05 12:17:12 | 000,151,552 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdiag.exe
[2010.02.05 12:17:12 | 000,122,880 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxhk.dll
[2010.02.05 12:17:12 | 000,122,880 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxext.exe
[2010.02.05 12:17:12 | 000,120,830 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ialmsbw.sys
[2010.02.05 12:17:12 | 000,098,842 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ialmkchw.sys
[2010.02.05 12:17:12 | 000,098,304 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll
[2010.02.05 12:17:12 | 000,094,267 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmrem.dll
[2010.02.05 12:17:12 | 000,094,208 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2010.02.05 12:17:12 | 000,093,979 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\ialmnt5.sys
[2010.02.05 12:17:12 | 000,045,056 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxdgps.dll
[2010.02.05 12:17:12 | 000,036,927 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmrnt5.dll
[2010.02.05 12:17:12 | 000,023,552 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll
[2010.02.05 12:17:11 | 000,486,978 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmdd5.dll
[2010.02.05 12:17:11 | 000,197,371 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmdev5.dll
[2010.02.05 12:17:11 | 000,188,416 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmgdev.dll
[2010.02.05 12:17:11 | 000,117,308 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ialmdnt5.dll
[2010.02.05 12:17:11 | 000,114,688 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hkcmd.exe
[2010.02.05 12:17:11 | 000,081,920 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll
[2010.02.05 12:17:11 | 000,065,536 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\iAlmCoIn_v3691.dll
[2010.02.05 12:17:11 | 000,046,647 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a304.sys
[2010.02.05 12:17:11 | 000,037,431 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a313.sys
[2010.02.05 12:17:11 | 000,033,335 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a311.sys
[2010.02.05 12:17:11 | 000,033,335 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a310.sys
[2010.02.05 12:17:11 | 000,029,751 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a303.sys
[2010.02.05 12:17:11 | 000,026,167 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a309.sys
[2010.02.05 12:17:11 | 000,021,559 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a307.sys
[2010.02.05 12:17:11 | 000,016,951 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a306.sys
[2010.02.05 12:17:11 | 000,012,855 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a305.sys
[2010.02.05 12:17:11 | 000,011,319 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a314.sys
[2010.02.05 12:17:11 | 000,011,319 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a308.sys
[2010.02.05 12:17:10 | 000,011,831 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\drivers\a302.sys
[2010.02.05 10:51:47 | 000,626,204 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\alcxwdm.sys
[2010.02.05 10:51:47 | 000,400,384 | ---- | C] (Sensaura) -- C:\WINDOWS\System32\drivers\alcxsens.sys
[2010.02.05 10:51:47 | 000,086,016 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SoundMan.exe
[2010.02.05 10:51:46 | 007,506,432 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.exe
[2010.02.05 10:51:44 | 000,299,008 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSndMgr.Cpl
[2010.02.05 10:51:44 | 000,208,896 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2010.02.05 10:51:44 | 000,139,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcrmv.exe
[2010.02.05 10:51:44 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2010.02.05 10:51:36 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2010.02.05 10:14:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\IIS Temporary Compressed Files
[2010.02.05 10:13:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Cache
[2010.02.05 10:13:39 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\snprfdll.dll
[2010.02.05 10:13:39 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010.02.05 10:13:36 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010.02.05 10:13:36 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010.02.05 10:13:36 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010.02.05 10:13:36 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fcachdll.dll
[2010.02.05 10:13:36 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010.02.05 10:13:36 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010.02.05 10:13:36 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010.02.05 10:13:36 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regtrace.exe
[2010.02.05 10:13:36 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010.02.05 10:13:36 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpctrs.dll
[2010.02.05 10:13:36 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010.02.05 10:13:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010.02.05 10:13:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\adsiisex.dll
[2010.02.05 10:13:03 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2010.02.05 10:13:03 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2010.02.05 10:13:02 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2010.02.05 10:13:02 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2010.02.05 10:13:02 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2010.02.05 10:13:02 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2010.02.05 10:13:02 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2010.02.05 10:13:02 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2010.02.05 10:13:02 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2010.02.05 10:13:02 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2010.02.05 10:13:01 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2010.02.05 10:13:01 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2010.02.05 10:13:01 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2010.02.05 10:13:01 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2010.02.05 10:13:01 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2010.02.05 10:13:01 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2010.02.05 10:13:01 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2010.02.05 10:13:01 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2010.02.05 10:13:01 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2010.02.05 10:13:00 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2010.02.05 10:13:00 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2010.02.05 10:13:00 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2010.02.05 10:12:59 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2010.02.05 10:12:59 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2010.02.05 10:12:59 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2010.02.05 10:12:59 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2010.02.05 10:12:47 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2010.02.05 10:12:47 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2010.02.05 10:12:47 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2010.02.05 10:12:46 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2010.02.05 10:12:46 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2010.02.05 10:12:46 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2010.02.05 10:12:46 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2010.02.05 10:12:46 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2010.02.05 10:12:46 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2010.02.05 10:12:46 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2010.02.05 10:12:45 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2010.02.05 10:12:45 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2010.02.05 10:12:36 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2010.02.05 10:12:36 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2010.02.05 10:12:36 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2010.02.05 10:12:36 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2010.02.05 10:12:36 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2010.02.05 10:12:36 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2010.02.05 10:12:35 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2010.02.05 10:12:35 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2010.02.05 10:12:35 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2010.02.05 10:12:35 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2010.02.05 10:12:34 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2010.02.05 10:12:34 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2010.02.05 10:12:34 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2010.02.05 10:12:34 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2010.02.05 10:12:34 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2010.02.05 10:12:34 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2010.02.05 10:12:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2010.02.05 10:12:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2010.02.05 10:12:33 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2010.02.05 10:12:33 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2010.02.05 10:12:33 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2010.02.05 10:12:33 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2010.02.05 10:12:33 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2010.02.05 10:12:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2010.02.05 10:12:33 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2010.02.05 10:12:32 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2010.02.05 10:12:32 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2010.02.05 10:12:32 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2010.02.05 10:12:32 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2010.02.05 10:12:32 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2010.02.05 10:12:32 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2010.02.05 10:12:31 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2010.02.05 10:12:31 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aspperf.dll
[2010.02.05 10:12:31 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2010.02.05 10:12:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w3svapi.dll
[2010.02.05 10:12:31 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2010.02.05 10:12:31 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2010.02.05 10:12:31 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\w3ctrs.dll
[2010.02.05 10:12:30 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2010.02.05 10:12:30 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2010.02.05 10:12:30 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2010.02.05 10:12:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iisreset.exe
[2010.02.05 10:12:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2010.02.05 10:12:30 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wamregps.dll
[2010.02.05 10:12:30 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2010.02.05 10:12:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ftpsapi2.dll
[2010.02.05 10:12:30 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2010.02.05 10:12:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iisrstap.dll
[2010.02.05 10:12:30 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2010.02.05 10:12:29 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2010.02.05 10:12:29 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\convlog.exe
[2010.02.05 10:12:29 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2010.02.05 10:12:29 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetsloc.dll
[2010.02.05 10:12:29 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2010.02.05 10:12:29 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\infoctrs.dll
[2010.02.05 10:12:29 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2010.02.05 10:12:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2010.02.05 10:12:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\admxprox.dll
[2010.02.05 10:12:29 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\iismui.dll
[2010.02.05 10:12:29 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2010.02.05 10:12:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\simptcp.dll
[2010.02.05 10:12:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010.02.05 10:12:28 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010.02.05 10:12:28 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010.02.05 10:12:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010.02.05 10:12:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010.02.05 10:11:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Logfiles
[2010.02.05 10:11:26 | 000,000,000 | ---D | C] -- C:\Inetpub
[2010.02.04 22:06:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Macromedia
[2010.02.04 21:41:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\PCHealth
[2010.02.04 21:36:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\My Documents\OneNote-notatblokker
[2010.02.04 21:33:59 | 000,274,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll
[2010.02.04 21:33:59 | 000,016,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mucltui.dll.mui
[2010.02.04 21:25:40 | 000,032,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msonpmon.dll
[2010.02.04 21:24:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Works
[2010.02.04 21:24:12 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2010.02.04 21:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio
[2010.02.04 21:23:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010.02.04 21:22:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010.02.04 21:20:22 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ShellNew
[2010.02.04 21:19:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\Microsoft Help
[2010.02.04 21:19:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010.02.04 21:19:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2010.02.04 21:18:57 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010.02.04 19:36:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Adobe
[2010.02.04 19:35:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Adobe
[2010.02.04 19:35:23 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010.02.04 19:35:23 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2010.02.04 19:30:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\Adobe
[2010.02.04 19:12:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2010.02.04 19:12:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010.02.04 19:12:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2010.02.04 19:12:01 | 000,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010.02.04 19:12:01 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.02.04 19:12:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.02.04 19:12:01 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.02.04 19:12:01 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.02.04 19:11:48 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2010.02.04 19:09:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Sun
[2010.02.04 19:04:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\My Documents\Nedlastinger
[2010.02.04 19:03:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\Mozilla
[2010.02.04 19:03:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Mozilla
[2010.02.04 19:03:25 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010.02.04 18:58:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\Opera
[2010.02.04 18:58:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Opera
[2010.02.04 18:58:32 | 000,000,000 | ---D | C] -- C:\Program Files\Opera
[2010.02.04 18:49:46 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kenneth\IECompatCache
[2010.02.04 18:46:17 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kenneth\PrivacIE
[2010.02.04 18:36:44 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kenneth\IETldCache
[2010.02.04 18:23:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2010.02.04 18:23:44 | 011,070,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2010.02.04 18:23:44 | 001,985,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2010.02.04 18:23:44 | 000,594,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2010.02.04 18:23:44 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2010.02.04 18:23:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2010.02.04 18:23:11 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2010.02.04 18:11:34 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\hidserv.dll
[2010.02.04 17:53:56 | 000,726,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jscript.dll
[2010.02.04 17:53:45 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2010.02.04 17:52:44 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2010.02.04 17:48:23 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2010.02.04 17:48:23 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2010.02.04 17:43:30 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2010.02.04 17:43:05 | 000,455,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2010.02.04 17:42:55 | 000,353,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srv.sys
[2010.02.04 17:42:45 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2010.02.04 17:42:08 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll
[2010.02.04 17:38:38 | 002,145,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2010.02.04 17:38:37 | 002,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2010.02.04 17:38:37 | 002,023,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2010.02.04 17:37:38 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2010.02.04 17:37:30 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2010.02.04 17:37:22 | 000,501,888 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\cchpx86.sys
[2010.02.04 17:37:22 | 000,362,032 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symtdi.sys
[2010.02.04 17:37:22 | 000,340,016 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symtdiv.sys
[2010.02.04 17:37:22 | 000,328,752 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symds.sys
[2010.02.04 17:37:22 | 000,325,168 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\srtsp.sys
[2010.02.04 17:37:22 | 000,172,592 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symefa.sys
[2010.02.04 17:37:22 | 000,116,272 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\ironx86.sys
[2010.02.04 17:37:22 | 000,043,696 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\srtspx.sys
[2010.02.04 17:36:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NIS\1105000.07F
[2010.02.03 23:26:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2010.02.03 23:26:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010.02.03 23:20:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2010.02.03 23:20:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2010.02.03 23:20:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2010.02.03 23:20:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2010.02.03 23:20:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2010.02.03 23:16:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2010.02.03 23:13:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2010.02.03 23:12:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2010.02.03 23:10:25 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2010.02.03 22:29:08 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2010.02.03 22:29:08 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2010.02.03 22:29:07 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2010.02.03 22:29:07 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2010.02.03 22:29:07 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2010.02.03 22:29:07 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2010.02.03 22:29:04 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2010.02.03 22:29:04 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2010.02.03 22:29:04 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2010.02.03 22:29:04 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2010.02.03 22:29:04 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2010.02.03 22:29:03 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2010.02.03 22:29:01 | 001,897,408 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nv4_mini.sys
[2010.02.03 22:29:00 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2010.02.03 22:28:59 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2010.02.03 22:28:59 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2010.02.03 22:28:59 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2010.02.03 22:28:54 | 000,011,868 | ---- | C] (Conexant) -- C:\WINDOWS\System32\drivers\mdmxsdk.sys
[2010.02.03 22:28:49 | 001,041,536 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfdpsp2.sys
[2010.02.03 22:28:49 | 000,685,056 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfcxts2.sys
[2010.02.03 22:28:49 | 000,220,032 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\hsfbs2s2.sys
[2010.02.03 22:27:35 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2010.02.03 22:27:35 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2010.02.03 22:27:35 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2010.02.03 22:27:35 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2010.02.03 22:27:35 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2010.02.03 22:27:35 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2010.02.03 22:27:35 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2010.02.03 22:27:35 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2010.02.03 22:27:35 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2010.02.03 22:27:35 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2010.02.03 22:27:35 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2010.02.03 22:27:35 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2010.02.03 22:27:35 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2010.02.03 22:27:35 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2010.02.03 22:27:35 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2010.02.03 22:27:35 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2010.02.03 22:27:35 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2010.02.03 22:27:35 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2010.02.03 22:27:35 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2010.02.03 22:27:35 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2010.02.03 22:27:35 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2010.02.03 22:27:35 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys

---------

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Wed Feb 24, 2010 3:59 pm

Here is the OTL.Txt (Part 3 of 4)

-----------------------------------------
[2010.02.03 21:56:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Windows Genuine Advantage
[2010.02.03 21:56:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2010.02.03 21:48:14 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010.02.03 21:25:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\My Documents\Symantec
[2010.02.03 21:24:26 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010.02.03 21:24:26 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010.02.03 21:24:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared
[2010.02.03 21:24:26 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec
[2010.02.03 21:24:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Sidebar
[2010.02.03 21:24:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NIS
[2010.02.03 21:23:57 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Internet Security
[2010.02.03 21:23:41 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller
[2010.02.03 21:23:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NortonInstaller
[2010.02.03 21:09:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Documents\Norton
[2010.02.03 21:09:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Norton
[2010.02.03 21:06:44 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irftp.exe
[2010.02.03 21:06:44 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irmon.dll
[2010.02.03 21:06:44 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshirda.dll
[2010.02.03 21:06:40 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\drivers\smcirda.sys
[2010.02.03 21:06:30 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys
[2010.02.03 21:06:18 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2010.02.03 21:06:18 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbui.dll
[2010.02.03 21:06:09 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys
[2010.02.03 21:05:32 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2010.02.03 21:05:32 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2010.02.03 21:05:31 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2010.02.03 21:05:31 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2010.02.03 21:05:29 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2010.02.03 21:05:28 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2010.02.03 21:05:28 | 000,000,000 | R--D | C] -- C:\Program Files
[2010.02.03 21:05:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2010.02.03 21:05:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2010.02.03 21:05:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2010.02.03 21:05:25 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2010.02.03 21:05:25 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2010.02.03 21:05:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2010.02.03 21:05:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2010.02.03 21:05:25 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2010.02.03 21:05:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2010.02.03 21:05:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2010.02.03 21:05:24 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2010.02.03 21:05:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2010.02.03 21:05:24 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2010.02.03 21:05:23 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2010.02.03 21:05:23 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2010.02.03 21:05:21 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2010.02.03 21:05:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2010.02.03 21:05:21 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2010.02.03 21:05:21 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2010.02.03 21:05:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2010.02.03 21:05:21 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2010.02.03 21:05:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2010.02.03 21:05:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2010.02.03 21:05:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2010.02.03 21:05:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2010.02.03 21:05:21 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2010.02.03 21:05:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2010.02.03 21:05:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2010.02.03 21:05:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2010.02.03 21:05:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2010.02.03 21:05:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2010.02.03 21:05:20 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2010.02.03 21:05:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2010.02.03 21:05:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2010.02.03 21:05:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2010.02.03 21:05:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2010.02.03 21:05:20 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2010.02.03 21:05:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2010.02.03 21:05:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2010.02.03 21:05:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2010.02.03 21:05:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2010.02.03 21:05:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2010.02.03 21:05:18 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2010.02.03 21:05:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2010.02.03 21:05:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2010.02.03 21:05:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2010.02.03 21:05:18 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2010.02.03 21:05:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2010.02.03 21:05:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2010.02.03 21:05:18 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2010.02.03 21:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2010.02.03 21:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2010.02.03 21:05:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2010.02.03 21:05:17 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2010.02.03 21:05:17 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2010.02.03 21:05:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2010.02.03 21:05:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2010.02.03 21:05:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2010.02.03 21:05:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2010.02.03 21:05:17 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2010.02.03 21:05:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2010.02.03 21:05:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2010.02.03 21:05:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2010.02.03 21:05:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2010.02.03 21:05:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2010.02.03 21:05:15 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2010.02.03 21:05:15 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2010.02.03 21:05:15 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2010.02.03 21:05:15 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2010.02.03 21:05:15 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010.02.03 21:05:15 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010.02.03 21:05:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010.02.03 21:05:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010.02.03 21:05:14 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2010.02.03 21:05:14 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2010.02.03 21:05:14 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2010.02.03 21:05:14 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2010.02.03 21:05:14 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2010.02.03 21:05:14 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2010.02.03 21:05:14 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2010.02.03 21:05:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2010.02.03 21:05:14 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2010.02.03 21:05:14 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2010.02.03 21:05:14 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2010.02.03 21:05:14 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2010.02.03 21:05:13 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2010.02.03 21:05:13 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2010.02.03 21:05:13 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2010.02.03 21:05:13 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2010.02.03 21:05:13 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2010.02.03 21:05:13 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2010.02.03 21:05:13 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2010.02.03 21:05:13 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2010.02.03 21:05:13 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2010.02.03 21:05:13 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2010.02.03 21:05:13 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2010.02.03 21:05:12 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2010.02.03 21:05:12 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2010.02.03 21:05:12 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2010.02.03 21:05:12 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2010.02.03 21:05:11 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2010.02.03 21:05:10 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2010.02.03 21:05:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2010.02.03 21:05:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2010.02.03 21:05:07 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2010.02.03 21:05:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2010.02.03 21:05:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2010.02.03 21:04:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2010.02.03 21:04:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2010.02.03 21:04:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2010.02.03 21:04:47 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2010.02.03 21:04:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2010.02.03 21:04:21 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2010.02.03 21:01:53 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kenneth\UserData
[2010.02.03 20:55:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2010.02.03 20:55:53 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2010.02.03 20:55:53 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2010.02.03 20:55:53 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2010.02.03 20:55:53 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2010.02.03 20:55:53 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2010.02.03 20:43:21 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\WMErrNOR.dll
[2010.02.03 20:43:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1044
[2010.02.03 20:43:11 | 000,000,000 | ---D | C] -- C:\temp
[2010.02.03 20:38:20 | 000,621,056 | ---- | C] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys
[2010.02.03 20:38:20 | 000,113,664 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys
[2010.02.03 20:38:20 | 000,101,376 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys
[2010.02.03 20:38:20 | 000,024,448 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys
[2010.02.03 20:38:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mobile Partner
[2010.02.03 20:35:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Application Data\Identities
[2010.02.03 20:35:27 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2010.02.03 20:35:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Kenneth\My Documents\My Pictures
[2010.02.03 20:35:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Kenneth\My Documents\My Music
[2010.02.03 20:35:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\ApplicationHistory
[2010.02.03 20:34:20 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2010.02.03 20:34:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2010.02.03 20:34:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp
[2010.02.03 20:34:11 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Kenneth\Application Data\Microsoft
[2010.02.03 20:34:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kenneth\SendTo
[2010.02.03 20:34:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kenneth\Recent
[2010.02.03 20:34:11 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kenneth\Application Data
[2010.02.03 20:34:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Kenneth\Start Menu
[2010.02.03 20:34:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Kenneth\My Documents
[2010.02.03 20:34:11 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Kenneth\Favorites
[2010.02.03 20:34:11 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Kenneth\Cookies
[2010.02.03 20:34:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Kenneth\Templates
[2010.02.03 20:34:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Kenneth\PrintHood
[2010.02.03 20:34:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Kenneth\NetHood
[2010.02.03 20:34:11 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Kenneth\Local Settings
[2010.02.03 20:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\Microsoft
[2010.02.03 20:34:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kenneth\Desktop
[2010.02.03 20:32:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2010.02.03 20:32:29 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2010.02.03 20:26:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2010.02.03 20:25:39 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010.02.03 20:25:39 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010.02.03 20:25:38 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010.02.03 20:25:38 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010.02.03 20:25:38 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010.02.03 20:25:37 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010.02.03 20:25:36 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010.02.03 20:25:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010.02.03 20:25:34 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010.02.03 20:25:34 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010.02.03 20:25:34 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010.02.03 20:25:32 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010.02.03 20:25:32 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010.02.03 20:25:31 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010.02.03 20:25:30 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010.02.03 20:25:30 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010.02.03 20:25:30 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010.02.03 20:25:29 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010.02.03 20:25:29 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010.02.03 20:25:29 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010.02.03 20:25:28 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010.02.03 20:25:28 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010.02.03 20:25:25 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010.02.03 20:25:24 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010.02.03 20:25:21 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010.02.03 20:25:20 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010.02.03 20:25:20 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010.02.03 20:25:20 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010.02.03 20:25:20 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010.02.03 20:25:20 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010.02.03 20:25:20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010.02.03 20:25:20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010.02.03 20:25:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010.02.03 20:25:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010.02.03 20:25:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010.02.03 20:25:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010.02.03 20:25:19 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010.02.03 20:25:14 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010.02.03 20:25:14 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010.02.03 20:25:13 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010.02.03 20:25:12 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010.02.03 20:25:10 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010.02.03 20:25:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010.02.03 20:25:10 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010.02.03 20:25:08 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010.02.03 20:25:08 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010.02.03 20:25:07 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010.02.03 20:25:07 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010.02.03 20:25:07 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010.02.03 20:25:07 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010.02.03 20:25:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010.02.03 20:25:06 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010.02.03 20:25:05 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010.02.03 20:25:05 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010.02.03 20:25:05 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010.02.03 20:25:05 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010.02.03 20:24:59 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010.02.03 20:24:55 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010.02.03 20:24:55 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010.02.03 20:24:45 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010.02.03 20:24:45 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010.02.03 20:24:41 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010.02.03 20:24:41 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010.02.03 20:24:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010.02.03 20:24:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010.02.03 20:24:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010.02.03 20:24:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010.02.03 20:24:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2010.02.03 20:24:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2010.02.03 20:24:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010.02.03 20:24:40 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010.02.03 20:24:39 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010.02.03 20:24:39 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010.02.03 20:24:39 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010.02.03 20:24:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010.02.03 20:24:39 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010.02.03 20:24:39 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010.02.03 20:24:39 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010.02.03 20:24:39 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010.02.03 20:24:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010.02.03 20:24:38 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010.02.03 20:24:37 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010.02.03 20:24:37 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010.02.03 20:24:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010.02.03 20:24:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010.02.03 20:24:37 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010.02.03 20:24:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010.02.03 20:24:37 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010.02.03 20:24:34 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010.02.03 20:24:34 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010.02.03 20:24:33 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010.02.03 20:24:33 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2010.02.03 20:24:33 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010.02.03 20:24:33 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010.02.03 20:24:33 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010.02.03 20:24:33 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010.02.03 20:24:33 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010.02.03 20:24:32 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010.02.03 20:24:32 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010.02.03 20:24:32 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010.02.03 20:24:32 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010.02.03 20:24:32 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010.02.03 20:24:32 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010.02.03 20:24:31 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010.02.03 20:24:31 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010.02.03 20:24:31 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010.02.03 20:24:31 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010.02.03 20:24:31 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010.02.03 20:24:31 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010.02.03 20:24:31 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010.02.03 20:24:30 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010.02.03 20:24:24 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010.02.03 20:24:12 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010.02.03 20:24:11 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010.02.03 20:24:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010.02.03 20:24:09 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010.02.03 20:24:08 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010.02.03 20:24:08 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010.02.03 20:24:07 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2010.02.03 20:24:07 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010.02.03 20:24:06 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010.02.03 20:24:04 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010.02.03 20:24:04 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010.02.03 20:24:04 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010.02.03 20:24:03 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2010.02.03 20:24:03 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010.02.03 20:23:59 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010.02.03 20:23:58 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010.02.03 20:23:57 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010.02.03 20:23:55 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010.02.03 20:23:55 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010.02.03 20:23:55 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010.02.03 20:23:54 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010.02.03 20:23:54 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010.02.03 20:23:54 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010.02.03 20:23:53 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010.02.03 20:23:53 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010.02.03 20:23:53 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010.02.03 20:23:53 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010.02.03 20:23:52 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010.02.03 20:23:52 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010.02.03 20:23:51 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010.02.03 20:23:51 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010.02.03 20:23:51 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010.02.03 20:23:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2010.02.03 20:23:19 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2010.02.03 20:23:19 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2010.02.03 20:22:16 | 000,000,000 | ---D | C] -- C:\WINDOWS\fsc
[2010.02.03 20:22:14 | 000,000,000 | ---D | C] -- C:\AddOn
[2010.02.03 20:21:40 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2010.02.03 20:18:46 | 000,689,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpsp3res.dll
[2010.02.03 20:18:42 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2010.02.03 20:18:41 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2010.02.03 20:18:31 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2010.02.03 20:18:31 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2010.02.03 20:18:25 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2010.02.03 20:17:55 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2010.02.03 20:17:47 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2010.02.03 20:17:47 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2010.02.03 20:17:39 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2010.02.03 20:17:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2010.02.03 20:17:03 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2010.02.03 20:17:03 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2010.02.03 20:17:02 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2010.02.03 20:17:02 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2010.02.03 20:17:02 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2010.02.03 20:17:02 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2010.02.03 20:16:53 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2010.02.03 20:16:52 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2010.02.03 20:16:52 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2010.02.03 20:16:52 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2010.02.03 20:16:51 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2010.02.03 20:16:51 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2010.02.03 20:16:51 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2010.02.03 20:16:51 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2010.02.03 20:16:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2010.02.03 20:16:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2010.02.03 20:16:48 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2010.02.03 20:16:48 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2010.02.03 20:16:47 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2010.02.03 20:16:47 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2010.02.03 20:16:47 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2010.02.03 20:16:47 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2010.02.03 20:16:47 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2010.02.03 20:16:47 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2010.02.03 20:16:47 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010.02.03 20:16:47 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2010.02.03 20:16:46 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2010.02.03 20:16:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2010.02.03 20:16:41 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2010.02.03 20:16:41 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2010.02.03 20:16:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2010.02.03 20:16:40 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2010.02.03 20:16:40 | 000,368,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2010.02.03 20:16:40 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2010.02.03 20:16:40 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll
[2010.02.03 20:16:39 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2010.02.03 20:16:39 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2010.02.03 20:16:39 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2010.02.03 20:16:39 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2010.02.03 20:16:39 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2010.02.03 20:16:38 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2010.02.03 20:16:38 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2010.02.03 20:16:38 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2010.02.03 20:16:38 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2010.02.03 20:16:38 | 000,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2010.02.03 20:16:38 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2010.02.03 20:16:38 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2010.02.03 20:16:38 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2010.02.03 20:16:37 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2010.02.03 20:16:37 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2010.02.03 20:16:37 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2010.02.03 20:16:37 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2010.02.03 20:16:37 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2010.02.03 20:16:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2010.02.03 20:16:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2010.02.03 20:16:32 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2010.02.03 20:16:28 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2010.02.03 20:16:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2010.02.03 20:16:28 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2010.02.03 20:16:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2010.02.03 20:16:24 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2010.02.03 20:16:23 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2010.02.03 20:16:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2010.02.03 20:16:22 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2010.02.03 20:16:22 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2010.02.03 20:16:22 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2010.02.03 20:16:22 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2010.02.03 20:16:21 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2010.02.03 20:16:19 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2010.02.03 20:16:19 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2010.02.03 20:16:18 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2010.02.03 20:16:17 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2010.02.03 20:16:15 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2010.02.03 20:16:15 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2010.02.03 20:16:14 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2010.02.03 20:16:14 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2010.02.03 20:16:14 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2010.02.03 20:16:14 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2010.02.03 20:16:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2010.02.03 20:16:05 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2010.02.03 20:16:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2010.02.03 20:15:47 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2010.02.03 20:15:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2010.02.03 20:15:44 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2010.02.03 20:15:43 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2010.02.03 20:15:43 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2010.02.03 20:15:39 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2010.02.03 20:15:35 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2010.02.03 20:15:17 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2010.02.03 20:15:17 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2010.02.03 20:15:16 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2010.02.03 20:15:16 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2010.02.03 20:15:16 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2010.02.03 20:15:16 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2010.02.03 20:15:16 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2010.02.03 20:15:16 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2010.02.03 20:15:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2010.02.03 20:15:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2010.02.03 20:15:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2010.02.03 20:15:16 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2010.02.03 20:15:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2010.02.03 20:15:16 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2010.02.03 20:15:16 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2010.02.03 20:15:16 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2010.02.03 20:15:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2010.02.03 20:15:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2010.02.03 20:15:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2010.02.03 20:15:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2010.02.03 20:15:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2010.02.03 20:15:16 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2010.02.03 20:15:16 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2010.02.03 20:15:16 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2010.02.03 20:15:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2010.02.03 20:15:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2010.02.03 20:15:15 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2010.02.03 20:15:15 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2010.02.03 20:15:15 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2010.02.03 20:15:14 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2010.02.03 20:15:14 | 000,097,792 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2010.02.03 20:15:14 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2010.02.03 20:15:14 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2010.02.03 20:15:14 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2010.02.03 20:15:14 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2010.02.03 20:15:14 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2010.02.03 20:15:14 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2010.02.03 20:15:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2010.02.03 20:15:10 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2010.02.03 20:15:10 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2010.02.03 20:15:10 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2010.02.03 20:15:10 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2010.02.03 20:15:10 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2010.02.03 20:15:10 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2010.02.03 20:15:10 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2010.02.03 20:15:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2010.02.03 20:15:10 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2010.02.03 20:15:10 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2010.02.03 20:15:09 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2010.02.03 20:15:09 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2010.02.03 20:15:09 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2010.02.03 20:15:09 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2010.02.03 20:15:09 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2010.02.03 20:15:09 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2010.02.03 20:14:53 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2010.02.03 20:14:51 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2010.02.03 20:14:49 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll
[2010.02.03 20:14:49 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe
[2010.02.03 20:14:49 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe
[2010.02.03 20:14:49 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2010.02.03 20:14:48 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2010.02.03 20:14:48 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2010.02.03 20:14:48 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2010.02.03 20:14:48 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2010.02.03 20:14:48 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe
[2010.02.03 20:14:48 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe
[2010.02.03 20:14:48 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2010.02.03 20:14:48 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2010.02.03 20:14:47 | 000,161,792 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2010.02.03 20:14:47 | 000,091,648 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll
[2010.02.03 20:14:47 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2010.02.03 20:14:47 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2010.02.03 20:14:47 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll
[2010.02.03 20:14:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2010.02.03 20:14:46 | 000,428,032 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2010.02.03 20:14:45 | 000,956,928 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2010.02.03 20:14:45 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2010.02.03 20:14:45 | 000,011,776 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2010.02.03 20:14:44 | 000,110,592 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2010.02.03 20:14:44 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2010.02.03 20:14:44 | 000,060,416 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll
[2010.02.03 20:14:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2010.02.03 20:14:43 | 000,625,664 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll
[2010.02.03 20:14:43 | 000,226,304 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll
[2010.02.03 20:14:42 | 001,267,200 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll
[2010.02.03 20:14:42 | 000,539,648 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2010.02.03 20:14:34 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2010.02.03 20:14:32 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2010.02.03 20:14:32 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2010.02.03 20:14:32 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2010.02.03 20:14:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[24 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

-----

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Wed Feb 24, 2010 4:01 pm

Here is the OTL.Txt (Part 4 of 4)

-----------------------------------------

========== Files - Modified Within 30 Days ==========

[2010.02.24 16:44:20 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kenneth\Desktop\OTL.exe
[2010.02.24 16:42:00 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010.02.24 16:41:43 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010.02.24 16:41:40 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010.02.23 16:54:22 | 002,097,152 | -H-- | M] () -- C:\Documents and Settings\Kenneth\NTUSER.DAT
[2010.02.23 16:54:22 | 000,000,178 | -HS- | M] () -- C:\Documents and Settings\Kenneth\ntuser.ini
[2010.02.23 16:54:09 | 006,366,714 | -H-- | M] () -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\IconCache.db
[2010.02.22 09:48:11 | 000,001,660 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2010.02.15 18:50:21 | 000,069,232 | ---- | M] () -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\GDIPFONTCACHEV1.DAT
[2010.02.14 15:08:11 | 000,005,632 | ---- | M] () -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.12 07:13:43 | 000,864,712 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\Cat.DB
[2010.02.12 07:13:35 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2010.02.06 20:35:03 | 000,267,800 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.02.06 20:12:18 | 000,000,552 | ---- | M] () -- C:\WINDOWS\win.ini
[2010.02.06 14:19:19 | 000,573,482 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010.02.06 14:19:19 | 000,493,078 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010.02.06 14:19:19 | 000,089,064 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010.02.06 12:04:33 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010.02.06 12:04:33 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2010.02.05 14:45:15 | 000,000,000 | ---- | M] () -- C:\WINDOWS\tosOBEX.INI
[2010.02.05 14:36:03 | 000,023,512 | ---- | M] () -- C:\WINDOWS\System32\drivers\INFCACHE.1
[2010.02.05 14:36:03 | 000,004,384 | ---- | M] () -- C:\WINDOWS\System32\drivers\O2MDDISK.PNF
[2010.02.05 14:36:03 | 000,004,352 | ---- | M] () -- C:\WINDOWS\System32\drivers\O2SDDISK.PNF
[2010.02.05 14:35:51 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010.02.05 14:35:51 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010.02.05 14:32:19 | 002,732,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NETw3r32.dll
[2010.02.05 14:32:19 | 001,709,696 | ---- | M] (Intel® Corporation) -- C:\WINDOWS\System32\drivers\NETw3x32.sys
[2010.02.05 14:32:18 | 000,561,152 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\NETw3c32.dll
[2010.02.05 14:30:20 | 000,006,724 | ---- | M] () -- C:\WINDOWS\System32\drivers\o2media.PNF
[2010.02.05 14:30:17 | 000,006,716 | ---- | M] () -- C:\WINDOWS\System32\drivers\o2sd.PNF
[2010.02.05 14:26:22 | 002,363,392 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\iglicd32.dll
[2010.02.05 14:26:22 | 002,262,528 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igxpdx32.dll
[2010.02.05 14:26:22 | 001,442,848 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igxpdv32.dll
[2010.02.05 14:26:22 | 001,181,824 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\drivers\igxpmp32.sys
[2010.02.05 14:26:22 | 000,655,842 | ---- | M] () -- C:\WINDOWS\System32\igxpxa32.cpa
[2010.02.05 14:26:22 | 000,454,656 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igldev32.dll
[2010.02.05 14:26:22 | 000,200,704 | ---- | M] () -- C:\WINDOWS\System32\igfxCoIn_v4704.dll
[2010.02.05 14:26:22 | 000,192,512 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.exe
[2010.02.05 14:26:22 | 000,146,432 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igxpgd32.dll
[2010.02.05 14:26:22 | 000,106,496 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxzoom.exe
[2010.02.05 14:26:22 | 000,053,248 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igxprd32.dll
[2010.02.05 14:26:22 | 000,044,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxsrvc.dll
[2010.02.05 14:26:22 | 000,023,632 | ---- | M] () -- C:\WINDOWS\System32\igxpxs32.vp
[2010.02.05 14:26:22 | 000,002,096 | ---- | M] () -- C:\WINDOWS\System32\igxpxk32.vp
[2010.02.05 14:26:22 | 000,000,929 | ---- | M] () -- C:\WINDOWS\System32\igxpxa32.vp
[2010.02.05 14:26:21 | 003,276,800 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxress.dll
[2010.02.05 14:26:21 | 000,176,128 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrell.lrc
[2010.02.05 14:26:21 | 000,176,128 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdeu.lrc
[2010.02.05 14:26:21 | 000,172,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnld.lrc
[2010.02.05 14:26:21 | 000,172,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrita.lrc
[2010.02.05 14:26:21 | 000,172,032 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxresp.lrc
[2010.02.05 14:26:21 | 000,167,936 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrhun.lrc
[2010.02.05 14:26:21 | 000,167,936 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfra.lrc
[2010.02.05 14:26:21 | 000,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrrus.lrc
[2010.02.05 14:26:21 | 000,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptg.lrc
[2010.02.05 14:26:21 | 000,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrptb.lrc
[2010.02.05 14:26:21 | 000,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrplk.lrc
[2010.02.05 14:26:21 | 000,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrsve.lrc
[2010.02.05 14:26:21 | 000,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrnor.lrc
[2010.02.05 14:26:21 | 000,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrfin.lrc
[2010.02.05 14:26:21 | 000,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll
[2010.02.05 14:26:21 | 000,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrdan.lrc
[2010.02.05 14:26:21 | 000,159,744 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcsy.lrc
[2010.02.05 14:26:21 | 000,155,648 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtrk.lrc
[2010.02.05 14:26:21 | 000,155,648 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrenu.lrc
[2010.02.05 14:26:21 | 000,147,456 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrtha.lrc
[2010.02.05 14:26:21 | 000,139,264 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrheb.lrc
[2010.02.05 14:26:21 | 000,114,688 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrkor.lrc
[2010.02.05 14:26:21 | 000,114,688 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrjpn.lrc
[2010.02.05 14:26:20 | 000,450,560 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxcfg.exe
[2010.02.05 14:26:20 | 000,163,840 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxpph.dll
[2010.02.05 14:26:20 | 000,155,648 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxdev.dll
[2010.02.05 14:26:20 | 000,143,360 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrara.lrc
[2010.02.05 14:26:20 | 000,122,880 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxext.exe
[2010.02.05 14:26:20 | 000,098,304 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrcht.lrc
[2010.02.05 14:26:20 | 000,098,304 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxrchs.lrc
[2010.02.05 14:26:20 | 000,098,304 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxdo.dll
[2010.02.05 14:26:20 | 000,094,208 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxpers.exe
[2010.02.05 14:26:20 | 000,094,208 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxcpl.cpl
[2010.02.05 14:26:20 | 000,023,552 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\igfxexps.dll
[2010.02.05 14:26:19 | 000,364,544 | ---- | M] (Intel(R) Corporation) -- C:\WINDOWS\System32\igxpun.exe
[2010.02.05 14:26:19 | 000,312,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\difx32.dll
[2010.02.05 14:26:19 | 000,114,688 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\hkcmd.exe
[2010.02.05 14:26:19 | 000,081,920 | ---- | M] (Intel Corporation) -- C:\WINDOWS\System32\hccutils.dll
[2010.02.05 14:26:18 | 000,312,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010.02.05 14:26:18 | 000,121,232 | ---- | M] () -- C:\WINDOWS\System32\IScrNBR.bmp
[2010.02.05 14:26:18 | 000,121,232 | ---- | M] () -- C:\WINDOWS\System32\IScrNB.bmp
[2010.02.05 14:22:09 | 000,086,016 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SoundMan.exe
[2010.02.05 14:22:08 | 009,712,640 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTLCPL.exe
[2010.02.05 14:22:08 | 004,246,016 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\RtkHDAud.Sys
[2010.02.05 14:22:08 | 000,360,448 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlUpd.exe
[2010.02.05 14:22:08 | 000,266,240 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTSndMgr.Cpl
[2010.02.05 14:22:08 | 000,135,168 | ---- | M] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010.02.05 14:22:07 | 016,010,240 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.exe
[2010.02.05 14:22:05 | 002,158,592 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\MicCal.exe
[2010.02.05 14:22:04 | 002,809,856 | ---- | M] (RealTek Semicoductor Corp.) -- C:\WINDOWS\alcwzrd.exe
[2010.02.05 14:22:04 | 000,299,008 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSndMgr.Cpl
[2010.02.05 14:22:04 | 000,069,632 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\Alcmtr.exe
[2010.02.05 14:22:03 | 000,487,424 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RtlExUpd.dll
[2010.02.05 14:22:03 | 000,040,960 | ---- | M] () -- C:\WINDOWS\System32\ChCfg.exe
[2010.02.05 12:32:48 | 000,063,240 | ---- | M] () -- C:\WINDOWS\System32\drivers\Si3112r.PNF
[2010.02.05 12:32:48 | 000,014,900 | ---- | M] () -- C:\WINDOWS\System32\drivers\symmpi.PNF
[2010.02.05 12:32:48 | 000,013,948 | ---- | M] () -- C:\WINDOWS\System32\drivers\iaAHCI.PNF
[2010.02.05 12:32:48 | 000,013,084 | ---- | M] () -- C:\WINDOWS\System32\drivers\iaStor.PNF
[2010.02.05 12:32:48 | 000,012,944 | ---- | M] () -- C:\WINDOWS\System32\drivers\nvraid.PNF
[2010.02.05 12:32:48 | 000,012,432 | ---- | M] () -- C:\WINDOWS\System32\drivers\adpu320.PNF
[2010.02.05 12:32:48 | 000,007,280 | ---- | M] () -- C:\WINDOWS\System32\drivers\viamraid.PNF
[2010.02.05 12:32:48 | 000,006,984 | ---- | M] () -- C:\WINDOWS\System32\drivers\SiSRaid.PNF
[2010.02.05 12:32:48 | 000,004,660 | ---- | M] () -- C:\WINDOWS\System32\drivers\lsipseud.PNF
[2010.02.05 09:52:16 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.02.04 21:36:26 | 000,000,949 | ---- | M] () -- C:\Documents and Settings\Kenneth\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper og Launcher.lnk
[2010.02.04 19:11:51 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010.02.04 19:11:51 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010.02.04 19:11:51 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010.02.04 19:11:51 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl
[2010.02.04 19:11:50 | 000,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deploytk.dll
[2010.02.04 19:03:36 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2010.02.04 18:11:49 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2010.02.04 18:11:47 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2010.02.04 18:10:25 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\fusioncache.dat
[2010.02.03 23:27:33 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010.02.03 23:13:10 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2010.02.03 23:12:29 | 000,004,484 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.PNF
[2010.02.03 21:24:26 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS
[2010.02.03 21:24:26 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL
[2010.02.03 21:24:26 | 000,007,443 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010.02.03 21:24:26 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010.02.03 20:38:32 | 000,000,754 | ---- | M] () -- C:\Documents and Settings\All Users\Desktop\Mobile Partner.lnk
[2010.02.03 20:26:57 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2010.02.03 20:26:06 | 000,000,237 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.02.03 20:22:46 | 000,001,392 | ---- | M] () -- C:\Documents and Settings\Kenneth\Desktop\Recovery-Info.lnk
[2010.02.03 20:18:33 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.02.03 20:18:33 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010.02.03 20:18:33 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2010.02.03 20:18:33 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini
[2010.02.03 20:18:33 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2010.02.03 20:18:33 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2010.02.03 20:18:31 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.02.03 20:18:31 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.02.03 20:18:25 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010.02.03 20:17:47 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.02.03 20:17:47 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.02.03 20:15:49 | 000,021,640 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.02.03 20:15:47 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini
[2010.02.03 20:15:47 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini
[4 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[24 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]

========== Files Created - No Company Name ==========

[2010.02.22 09:48:11 | 000,001,660 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\WinZip Quick Pick.lnk
[2010.02.14 15:05:41 | 000,005,632 | ---- | C] () -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010.02.05 14:45:15 | 000,000,000 | ---- | C] () -- C:\WINDOWS\tosOBEX.INI
[2010.02.05 14:36:03 | 000,004,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\O2SDDISK.PNF
[2010.02.05 14:35:57 | 000,004,384 | ---- | C] () -- C:\WINDOWS\System32\drivers\O2MDDISK.PNF
[2010.02.05 14:35:51 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2010.02.05 14:35:51 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2010.02.05 14:30:20 | 000,006,724 | ---- | C] () -- C:\WINDOWS\System32\drivers\o2media.PNF
[2010.02.05 14:30:17 | 000,006,716 | ---- | C] () -- C:\WINDOWS\System32\drivers\o2sd.PNF
[2010.02.05 14:27:48 | 000,000,929 | ---- | C] () -- C:\WINDOWS\System32\igxpxa32.vp
[2010.02.05 14:27:47 | 000,655,842 | ---- | C] () -- C:\WINDOWS\System32\igxpxa32.cpa
[2010.02.05 14:27:47 | 000,200,704 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4704.dll
[2010.02.05 14:27:47 | 000,023,632 | ---- | C] () -- C:\WINDOWS\System32\igxpxs32.vp
[2010.02.05 14:27:47 | 000,002,096 | ---- | C] () -- C:\WINDOWS\System32\igxpxk32.vp
[2010.02.05 14:27:46 | 000,121,232 | ---- | C] () -- C:\WINDOWS\System32\IScrNBR.bmp
[2010.02.05 14:27:46 | 000,121,232 | ---- | C] () -- C:\WINDOWS\System32\IScrNB.bmp
[2010.02.05 14:22:57 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll
[2010.02.05 14:22:57 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2010.02.05 14:06:27 | 000,000,023 | ---- | C] () -- C:\WINDOWS\System32\drivers\verfile.tic
[2010.02.05 12:17:13 | 000,062,800 | ---- | C] () -- C:\WINDOWS\System32\igfxhtrk.lhp
[2010.02.05 12:17:13 | 000,062,763 | ---- | C] () -- C:\WINDOWS\System32\igfxhptg.lhp
[2010.02.05 12:17:13 | 000,061,701 | ---- | C] () -- C:\WINDOWS\System32\igfxhtha.lhp
[2010.02.05 12:17:13 | 000,060,545 | ---- | C] () -- C:\WINDOWS\System32\igfxhrus.lhp
[2010.02.05 12:17:13 | 000,060,317 | ---- | C] () -- C:\WINDOWS\System32\igfxhplk.lhp
[2010.02.05 12:17:13 | 000,060,209 | ---- | C] () -- C:\WINDOWS\System32\igfxhptb.lhp
[2010.02.05 12:17:13 | 000,058,891 | ---- | C] () -- C:\WINDOWS\System32\igfxhnor.lhp
[2010.02.05 12:17:13 | 000,058,819 | ---- | C] () -- C:\WINDOWS\System32\igfxhsve.lhp
[2010.02.05 12:17:12 | 000,066,297 | ---- | C] () -- C:\WINDOWS\System32\igfxhhun.lhp
[2010.02.05 12:17:12 | 000,063,876 | ---- | C] () -- C:\WINDOWS\System32\igfxhkor.lhp
[2010.02.05 12:17:12 | 000,061,799 | ---- | C] () -- C:\WINDOWS\System32\igfxhdeu.lhp
[2010.02.05 12:17:12 | 000,061,236 | ---- | C] () -- C:\WINDOWS\System32\igfxhfrc.lhp
[2010.02.05 12:17:12 | 000,061,144 | ---- | C] () -- C:\WINDOWS\System32\igfxhfra.lhp
[2010.02.05 12:17:12 | 000,060,822 | ---- | C] () -- C:\WINDOWS\System32\igfxhell.lhp
[2010.02.05 12:17:12 | 000,060,785 | ---- | C] () -- C:\WINDOWS\System32\igfxhesp.lhp
[2010.02.05 12:17:12 | 000,060,428 | ---- | C] () -- C:\WINDOWS\System32\igfxhdan.lhp
[2010.02.05 12:17:12 | 000,060,235 | ---- | C] () -- C:\WINDOWS\System32\igfxhheb.lhp
[2010.02.05 12:17:12 | 000,059,893 | ---- | C] () -- C:\WINDOWS\System32\igfxhfin.lhp
[2010.02.05 12:17:12 | 000,059,816 | ---- | C] () -- C:\WINDOWS\System32\igfxhjpn.lhp
[2010.02.05 12:17:12 | 000,059,612 | ---- | C] () -- C:\WINDOWS\System32\igfxhnld.lhp
[2010.02.05 12:17:12 | 000,059,528 | ---- | C] () -- C:\WINDOWS\System32\igfxhcsy.lhp
[2010.02.05 12:17:12 | 000,059,347 | ---- | C] () -- C:\WINDOWS\System32\igfxharb.lhp
[2010.02.05 12:17:12 | 000,059,346 | ---- | C] () -- C:\WINDOWS\System32\igfxhara.lhp
[2010.02.05 12:17:12 | 000,058,834 | ---- | C] () -- C:\WINDOWS\System32\igfxhchs.lhp
[2010.02.05 12:17:12 | 000,058,755 | ---- | C] () -- C:\WINDOWS\System32\igfxhita.lhp
[2010.02.05 12:17:12 | 000,058,223 | ---- | C] () -- C:\WINDOWS\System32\igfxhcht.lhp
[2010.02.05 12:17:12 | 000,057,586 | ---- | C] () -- C:\WINDOWS\System32\igfxheng.lhp
[2010.02.05 12:17:12 | 000,057,049 | ---- | C] () -- C:\WINDOWS\System32\igfxhenu.lhp
[2010.02.05 10:51:46 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\alsndmgr.wav
[2010.02.05 10:51:44 | 000,001,104 | ---- | C] () -- C:\WINDOWS\System32\drivers\alcxinit.dat
[2010.02.05 10:13:38 | 000,021,791 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.ini
[2010.02.05 10:13:38 | 000,008,002 | ---- | C] () -- C:\WINDOWS\System32\smtpctrs.h
[2010.02.05 10:13:36 | 000,001,037 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.ini
[2010.02.05 10:13:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\ntfsdrct.h
[2010.02.05 10:12:39 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2010.02.05 10:12:39 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2010.02.05 10:12:39 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2010.02.05 10:12:39 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2010.02.05 10:12:39 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2010.02.05 10:12:38 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2010.02.05 10:12:38 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2010.02.05 10:12:38 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2010.02.05 10:12:38 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2010.02.05 10:12:38 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2010.02.05 10:12:38 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2010.02.05 10:12:37 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce
[2010.02.05 10:12:37 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce
[2010.02.05 10:12:37 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce
[2010.02.05 10:12:37 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce
[2010.02.05 10:12:37 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce
[2010.02.05 10:12:37 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce
[2010.02.05 10:12:36 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce
[2010.02.05 10:12:36 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce
[2010.02.05 10:12:31 | 000,038,576 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.ini
[2010.02.05 10:12:31 | 000,010,225 | ---- | C] () -- C:\WINDOWS\System32\axperf.ini
[2010.02.05 10:12:31 | 000,005,379 | ---- | C] () -- C:\WINDOWS\System32\w3ctrs.h
[2010.02.05 10:12:31 | 000,002,024 | ---- | C] () -- C:\WINDOWS\System32\axctrnm.h
[2010.02.05 10:12:29 | 000,011,435 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.ini
[2010.02.05 10:12:29 | 000,003,276 | ---- | C] () -- C:\WINDOWS\System32\infoctrs.h
[2010.02.05 10:12:28 | 000,026,236 | ---- | C] () -- C:\WINDOWS\System32\wins.mib
[2010.02.05 10:12:28 | 000,001,540 | ---- | C] () -- C:\WINDOWS\System32\drivers\etc\quotes
[2010.02.05 10:12:27 | 000,049,275 | ---- | C] () -- C:\WINDOWS\System32\wfospf.mib
[2010.02.05 10:12:26 | 000,004,332 | ---- | C] () -- C:\WINDOWS\System32\smi.mib
[2010.02.05 10:12:25 | 000,038,608 | ---- | C] () -- C:\WINDOWS\System32\nipx.mib
[2010.02.05 10:12:24 | 000,107,882 | ---- | C] () -- C:\WINDOWS\System32\mib_ii.mib
[2010.02.05 10:12:24 | 000,034,317 | ---- | C] () -- C:\WINDOWS\System32\msiprip2.mib
[2010.02.05 10:12:24 | 000,021,386 | ---- | C] () -- C:\WINDOWS\System32\mipx.mib
[2010.02.05 10:12:24 | 000,013,767 | ---- | C] () -- C:\WINDOWS\System32\msipbtp.mib
[2010.02.05 10:12:24 | 000,010,313 | ---- | C] () -- C:\WINDOWS\System32\mripsap.mib
[2010.02.05 10:12:24 | 000,000,581 | ---- | C] () -- C:\WINDOWS\System32\msft.mib
[2010.02.05 10:12:23 | 000,030,448 | ---- | C] () -- C:\WINDOWS\System32\mcastmib.mib
[2010.02.05 10:12:23 | 000,026,100 | ---- | C] () -- C:\WINDOWS\System32\lmmib2.mib
[2010.02.05 10:12:23 | 000,020,079 | ---- | C] () -- C:\WINDOWS\System32\http.mib
[2010.02.05 10:12:23 | 000,015,799 | ---- | C] () -- C:\WINDOWS\System32\ipforwd.mib
[2010.02.05 10:12:23 | 000,000,698 | ---- | C] () -- C:\WINDOWS\System32\inetsrv.mib
[2010.02.05 10:12:22 | 000,048,593 | ---- | C] () -- C:\WINDOWS\System32\hostmib.mib
[2010.02.05 10:12:21 | 000,016,617 | ---- | C] () -- C:\WINDOWS\System32\authserv.mib
[2010.02.05 10:12:21 | 000,006,179 | ---- | C] () -- C:\WINDOWS\System32\[You must be registered and logged in to see this link.]
[2010.02.05 10:12:21 | 000,004,597 | ---- | C] () -- C:\WINDOWS\System32\dhcp.mib
[2010.02.05 10:12:20 | 000,015,597 | ---- | C] () -- C:\WINDOWS\System32\accserv.mib
[2010.02.04 21:36:26 | 000,000,949 | ---- | C] () -- C:\Documents and Settings\Kenneth\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper og Launcher.lnk
[2010.02.04 19:03:36 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010.02.04 18:36:28 | 000,864,712 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\Cat.DB
[2010.02.04 18:11:49 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_NuidFltr_01005.Wdf
[2010.02.04 18:11:47 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
[2010.02.04 18:10:25 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Kenneth\Local Settings\Application Data\fusioncache.dat
[2010.02.04 17:37:22 | 000,007,787 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symnetv.cat
[2010.02.04 17:37:22 | 000,007,444 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symefa.cat
[2010.02.04 17:37:22 | 000,007,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\srtspx.cat
[2010.02.04 17:37:22 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\srtsp.cat
[2010.02.04 17:37:22 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\iron.cat
[2010.02.04 17:37:22 | 000,007,425 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symds.cat
[2010.02.04 17:37:22 | 000,007,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symnet.cat
[2010.02.04 17:37:22 | 000,003,374 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symefa.inf
[2010.02.04 17:37:22 | 000,002,793 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symds.inf
[2010.02.04 17:37:22 | 000,001,756 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\cchpx86.inf
[2010.02.04 17:37:22 | 000,001,473 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symnetv.inf
[2010.02.04 17:37:22 | 000,001,445 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\symnet.inf
[2010.02.04 17:37:22 | 000,001,388 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\srtspx.inf
[2010.02.04 17:37:22 | 000,001,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\srtsp.inf
[2010.02.04 17:37:22 | 000,000,742 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\iron.inf
[2010.02.04 17:37:21 | 000,007,396 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\cchpx86.cat
[2010.02.04 17:36:52 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1105000.07F\isolate.ini
[2010.02.03 23:12:29 | 000,004,484 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.PNF
[2010.02.03 22:29:09 | 000,613,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2010.02.03 22:29:09 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2010.02.03 22:29:09 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2010.02.03 22:29:09 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2010.02.03 22:29:09 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2010.02.03 22:29:09 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2010.02.03 22:29:09 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2010.02.03 22:29:09 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2010.02.03 22:29:09 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2010.02.03 22:29:09 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2010.02.03 22:29:09 | 000,067,374 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2010.02.03 22:29:09 | 000,023,195 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2010.02.03 22:29:09 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2010.02.03 22:29:09 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2010.02.03 22:29:09 | 000,000,855 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2010.02.03 22:29:09 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2010.02.03 22:29:08 | 000,017,272 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2010.02.03 22:29:08 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2010.02.03 22:29:08 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2010.02.03 22:29:08 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2010.02.03 22:29:08 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2010.02.03 22:29:08 | 000,006,769 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2010.02.03 22:29:08 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2010.02.03 22:29:08 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2010.02.03 22:29:08 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2010.02.03 22:29:08 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2010.02.03 22:29:08 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2010.02.03 22:29:07 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2010.02.03 22:29:07 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2010.02.03 22:29:07 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2010.02.03 22:29:06 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2010.02.03 22:29:06 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2010.02.03 22:29:06 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2010.02.03 22:29:06 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2010.02.03 22:29:06 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2010.02.03 22:29:06 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2010.02.03 22:29:06 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2010.02.03 22:29:06 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2010.02.03 22:29:06 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2010.02.03 22:29:06 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2010.02.03 22:29:04 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2010.02.03 22:29:04 | 000,000,908 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2010.02.03 22:29:03 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2010.02.03 22:29:02 | 000,077,307 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2010.02.03 22:29:00 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2010.02.03 22:29:00 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2010.02.03 22:29:00 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2010.02.03 22:28:59 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2010.02.03 22:28:55 | 000,097,117 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.hlp
[2010.02.03 22:28:55 | 000,018,286 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2010.02.03 22:28:55 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2010.02.03 22:28:55 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2010.02.03 22:28:55 | 000,001,885 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.cnt
[2010.02.03 22:28:53 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2010.02.03 22:28:48 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2010.02.03 22:28:41 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2010.02.03 22:28:41 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2010.02.03 22:28:41 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2010.02.03 22:28:41 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2010.02.03 22:28:41 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2010.02.03 22:28:41 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2010.02.03 22:28:41 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2010.02.03 22:28:41 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2010.02.03 22:28:41 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2010.02.03 22:28:41 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2010.02.03 22:28:40 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2010.02.03 22:27:35 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2010.02.03 21:24:41 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2010.02.03 21:24:26 | 000,007,443 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT
[2010.02.03 21:24:26 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF
[2010.02.03 21:06:04 | 000,063,240 | ---- | C] () -- C:\WINDOWS\System32\drivers\Si3112r.PNF
[2010.02.03 21:06:04 | 000,023,512 | ---- | C] () -- C:\WINDOWS\System32\drivers\INFCACHE.1
[2010.02.03 21:06:04 | 000,014,900 | ---- | C] () -- C:\WINDOWS\System32\drivers\symmpi.PNF
[2010.02.03 21:06:04 | 000,013,948 | ---- | C] () -- C:\WINDOWS\System32\drivers\iaAHCI.PNF
[2010.02.03 21:06:04 | 000,013,084 | ---- | C] () -- C:\WINDOWS\System32\drivers\iaStor.PNF
[2010.02.03 21:06:04 | 000,012,944 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvraid.PNF
[2010.02.03 21:06:04 | 000,012,432 | ---- | C] () -- C:\WINDOWS\System32\drivers\adpu320.PNF
[2010.02.03 21:06:04 | 000,007,280 | ---- | C] () -- C:\WINDOWS\System32\drivers\viamraid.PNF
[2010.02.03 21:06:04 | 000,006,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\SiSRaid.PNF
[2010.02.03 21:06:04 | 000,004,660 | ---- | C] () -- C:\WINDOWS\System32\drivers\lsipseud.PNF
[2010.02.03 21:05:35 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2010.02.03 21:05:30 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2010.02.03 21:05:30 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2010.02.03 21:05:29 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2010.02.03 21:05:29 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2010.02.03 21:05:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls
[2010.02.03 21:05:27 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls
[2010.02.03 21:05:25 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls
[2010.02.03 21:05:25 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls
[2010.02.03 21:05:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls
[2010.02.03 21:05:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls
[2010.02.03 21:05:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls
[2010.02.03 21:05:25 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls
[2010.02.03 21:05:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls
[2010.02.03 21:05:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS
[2010.02.03 21:05:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls
[2010.02.03 21:05:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls
[2010.02.03 21:05:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls
[2010.02.03 21:05:23 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls
[2010.02.03 21:05:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls
[2010.02.03 21:05:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls
[2010.02.03 21:05:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls
[2010.02.03 21:05:21 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls
[2010.02.03 21:05:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls
[2010.02.03 21:05:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls
[2010.02.03 21:05:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls
[2010.02.03 21:05:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS
[2010.02.03 21:05:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls
[2010.02.03 21:05:21 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls
[2010.02.03 21:05:19 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls
[2010.02.03 21:05:19 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls
[2010.02.03 21:05:19 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls
[2010.02.03 21:05:19 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls
[2010.02.03 21:05:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls
[2010.02.03 21:05:19 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS
[2010.02.03 21:05:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_852.nls
[2010.02.03 21:05:17 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_852.nls
[2010.02.03 21:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls
[2010.02.03 21:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls
[2010.02.03 21:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls
[2010.02.03 21:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls
[2010.02.03 21:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls
[2010.02.03 21:05:17 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls
[2010.02.03 21:05:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls
[2010.02.03 21:05:16 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls
[2010.02.03 21:05:12 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2010.02.03 21:05:05 | 001,042,903 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2010.02.03 21:05:05 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010.02.03 21:05:05 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010.02.03 21:05:05 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010.02.03 21:05:05 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010.02.03 21:05:05 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010.02.03 21:05:05 | 000,007,506 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010.02.03 21:05:05 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2010.02.03 21:04:21 | 000,267,800 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010.02.03 21:03:32 | 000,000,211 | -HS- | C] () -- C:\boot.ini
[2010.02.03 21:03:31 | 000,000,237 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2010.02.03 20:43:21 | 000,033,844 | ---- | C] () -- C:\WINDOWS\WMPrfNOR.prx
[2010.02.03 20:38:32 | 000,000,754 | ---- | C] () -- C:\Documents and Settings\All Users\Desktop\Mobile Partner.lnk
[2010.02.03 20:34:12 | 000,001,392 | ---- | C] () -- C:\Documents and Settings\Kenneth\Desktop\Recovery-Info.lnk
[2010.02.03 20:34:12 | 000,000,178 | -HS- | C] () -- C:\Documents and Settings\Kenneth\ntuser.ini
[2010.02.03 20:34:11 | 002,097,152 | -H-- | C] () -- C:\Documents and Settings\Kenneth\NTUSER.DAT
[2010.02.03 20:26:57 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2010.02.03 20:26:01 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010.02.03 20:25:48 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010.02.03 20:25:08 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010.02.03 20:25:08 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010.02.03 20:25:06 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010.02.03 20:24:42 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010.02.03 20:24:41 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010.02.03 20:24:33 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010.02.03 20:24:32 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010.02.03 20:24:30 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010.02.03 20:24:17 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010.02.03 20:24:11 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010.02.03 20:23:54 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010.02.03 20:23:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010.02.03 20:23:50 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010.02.03 20:23:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010.02.03 20:23:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010.02.03 20:23:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010.02.03 20:23:50 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010.02.03 20:23:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010.02.03 20:23:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010.02.03 20:23:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010.02.03 20:23:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010.02.03 20:23:49 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010.02.03 20:23:49 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010.02.03 20:23:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010.02.03 20:23:48 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010.02.03 20:23:48 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010.02.03 20:23:48 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010.02.03 20:23:48 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010.02.03 20:23:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010.02.03 20:23:47 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010.02.03 20:23:47 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010.02.03 20:23:47 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010.02.03 20:23:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010.02.03 20:23:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010.02.03 20:23:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010.02.03 20:23:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010.02.03 20:23:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010.02.03 20:23:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010.02.03 20:23:46 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010.02.03 20:23:46 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010.02.03 20:23:46 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010.02.03 20:23:46 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010.02.03 20:23:45 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010.02.03 20:23:45 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010.02.03 20:23:44 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010.02.03 20:22:14 | 000,017,638 | ---- | C] () -- C:\WINDOWS\System32\OEMLOGO.BMP
[2010.02.03 20:22:14 | 000,001,038 | ---- | C] () -- C:\WINDOWS\System32\OEMINFO.INI
[2010.02.03 20:18:33 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2010.02.03 20:18:33 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2010.02.03 20:18:33 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2010.02.03 20:18:33 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2010.02.03 20:18:33 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2010.02.03 20:18:31 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2010.02.03 20:18:31 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2010.02.03 20:18:30 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2010.02.03 20:17:47 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010.02.03 20:17:47 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010.02.03 20:17:42 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010.02.03 20:17:31 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2010.02.03 20:17:00 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2010.02.03 20:17:00 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2010.02.03 20:16:53 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2010.02.03 20:15:49 | 000,021,640 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010.02.03 20:15:16 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2010.02.03 20:15:16 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2010.02.03 20:15:15 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2010.02.03 20:15:08 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2009.08.03 15:07:42 | 000,403,816 | ---- | C] () -- C:\WINDOWS\System32\OGACheckControl.dll
[2007.06.21 10:49:24 | 000,118,784 | ---- | C] () -- C:\WINDOWS\System32\TosBtAcc.dll
[2005.07.22 21:30:18 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\TosCommAPI.dll
[2005.01.21 12:02:28 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\RMDevice.dll
[2001.03.30 21:58:36 | 000,135,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\Property.dll
< End of report >

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Wed Feb 24, 2010 4:04 pm

And here is the Extras.Txt:

------------------------------------

OTL Extras logfile created on: 24.02.2010 16:44:42 - Run 1
OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Kenneth\Desktop
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000414 | Country: Norway | Language: NOR | Date Format: dd.MM.yyyy

1 014,00 Mb Total Physical Memory | 491,00 Mb Available Physical Memory | 48,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 83,00% Paging File free
Paging file location(s): C:\pagefile.sys 1524 3048 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 74,53 Gb Total Space | 62,20 Gb Free Space | 83,46% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: KSJ-EE4E06AD755
Current User Name: Kenneth
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\]
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\IEXPLORE.EXE (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
htmlfile [print] -- "C:\Program Files\Microsoft Office\Office12\msohtmed.exe" /p %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" -nohome (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [OneNote.Open] -- C:\PROGRA~1\MICROS~2\Office12\ONENOTE.EXE "%L" (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\IEXPLORE.EXE" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Windows Node-til-node-gruppering
"3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22008
"3587:TCP" = 3587:TCP:*:Enabled:Windows Node-til-node-gruppering
"3540:UDP" = 3540:UDP:*:Enabled:Peer Name Resolution Protocol (PNRP)

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{26A24AE4-039D-4CA4-87B4-2F83216018FF}" = Java(TM) 6 Update 18
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{90120000-0010-0414-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Norwegian (Bokmål)) 12
"{90120000-0015-0414-0000-0000000FF1CE}" = Microsoft Office Access MUI (Norwegian (Bokmål)) 2007
"{90120000-0015-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0016-0414-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Norwegian (Bokmål)) 2007
"{90120000-0016-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0018-0414-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Norwegian (Bokmål)) 2007
"{90120000-0018-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-0019-0414-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Norwegian (Bokmål)) 2007
"{90120000-0019-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001A-0414-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Norwegian (Bokmål)) 2007
"{90120000-001A-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001B-0414-0000-0000000FF1CE}" = Microsoft Office Word MUI (Norwegian (Bokmål)) 2007
"{90120000-001B-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISER_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISER_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0414-0000-0000000FF1CE}" = Microsoft Office Proof (Norwegian (Bokmål)) 2007
"{90120000-001F-0414-0000-0000000FF1CE}_ENTERPRISER_{D3413506-02DD-4918-AB8B-A9939A14C2E8}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-001F-0814-0000-0000000FF1CE}" = Microsoft Office Proof (Norwegian (Nynorsk)) 2007
"{90120000-001F-0814-0000-0000000FF1CE}_ENTERPRISER_{1B70EF07-15AB-483B-B7DE-C60584A3F518}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
"{90120000-002C-0414-0000-0000000FF1CE}" = Microsoft Office Proofing (Norwegian (Bokmål)) 2007
"{90120000-0044-0414-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Norwegian (Bokmål)) 2007
"{90120000-0044-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-006E-0414-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Norwegian (Bokmål)) 2007
"{90120000-006E-0414-0000-0000000FF1CE}_ENTERPRISER_{1F005547-336E-439D-846F-CE37BD507012}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00A1-0414-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Norwegian (Bokmål)) 2007
"{90120000-00A1-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{90120000-00BA-0414-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Norwegian (Bokmål)) 2007
"{90120000-00BA-0414-0000-0000000FF1CE}_ENTERPRISER_{A651C900-ADDD-4CE1-8C66-25473194F530}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2)
"{91120000-0030-0000-0000-0000000FF1CE}_ENTERPRISER_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581)
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1044-7B44-A93000000001}" = Adobe Reader 9.3.1 - Norsk
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C950420B-4182-49EA-850A-A6A2ABF06C6B}" = Marvell Miniport Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CD95F661-A5C4-44F5-A6AA-ECDD91C240BB}" = WinZip 14.0
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba
"{E1E58954-D885-44E7-B8C2-F0E9A6DA1652}" = O2Micro Flash Memory Card Windows Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FB8148DD-C575-4B0A-9F6C-0CFC46937930}" = Opera 10.10
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ENTERPRISER" = Microsoft Office Enterprise 2007
"HDMI" = Intel(R) Graphics Media Accelerator Driver
"HijackThis" = HijackThis 2.0.2
"ie8" = Windows Internet Explorer 8
"InstallShield_{E1E58954-D885-44E7-B8C2-F0E9A6DA1652}" = O2Micro Flash Memory Card Windows Driver
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mobile Partner" = Mobile Partner
"Mozilla Firefox (3.6)" = Mozilla Firefox (3.6)
"NIS" = Norton Internet Security
"VLC media player" = VLC media player 1.0.5
"Wdf01005" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.5
"Windows XP Service Pack" = Windows XP Service Pack 3

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 04.02.2010 16:39:43 | Computer Name = KSJ-EE4E06AD755 | Source = LoadPerf | ID = 3006
Description = Kan ikke lese ytelsestellerstrengene for språk-IDen 014. Win32-statusen
som ble returnert av kallet, er det første DWORD i Data-avsnittet.

Error - 04.02.2010 16:41:07 | Computer Name = KSJ-EE4E06AD755 | Source = Microsoft Office 12 | ID = 5000
Description = EventType offdiag12, P1 834d3ba6-75a9-462a-b8d2-0676f8e453c4ecceb480-6c63-4b63-b798-bcdc25a7d8f0,
P2 NIL, P3 NIL, P4 NIL, P5 NIL, P6 NIL, P7 NIL, P8 NIL, P9 NIL, P10 NIL.

Error - 05.02.2010 05:52:52 | Computer Name = KSJ-EE4E06AD755 | Source = Application Hang | ID = 1002
Description = Hengende program alcupd.exe, versjon 1.7.0.0, hengende modul hungapp,
versjon 0.0.0.0, hengeadresse 0x00000000.

Error - 05.02.2010 07:29:31 | Computer Name = KSJ-EE4E06AD755 | Source = Application Hang | ID = 1002
Description = Hengende program mmc.exe, versjon 5.2.3790.4136, hengende modul hungapp,
versjon 0.0.0.0, hengeadresse 0x00000000.

Error - 06.02.2010 08:20:20 | Computer Name = KSJ-EE4E06AD755 | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Failed to compile: C:\Program Files\Driver Whiz\Driver Whiz\DriverWhiz.exe .
Error code = 0x80131047

Error - 07.02.2010 06:32:26 | Computer Name = KSJ-EE4E06AD755 | Source = crypt32 | ID = 131083
Description = Kan ikke trekke ut tredjeparts rotliste fra automatisk oppdatert cab-fil
på:
med feil: Det oppstod en intern feil i sertifiseringskjeden.

Error - 07.02.2010 08:45:53 | Computer Name = KSJ-EE4E06AD755 | Source = Application Error | ID = 1000
Description = Feilende program iexplore.exe, versjon 8.0.6001.18702, feilende modul
mshtml.dll, versjon 8.0.6001.18876, feiladresse 0x000d676b.

[ System Events ]
Error - 03.02.2010 15:43:09 | Computer Name = KSJ-EE4E06AD755 | Source = SideBySide | ID = 16842807
Description = Signereren NT Build Lab av samlingen D:\no.MUI\i386\ASMS\6000\MSFT\VCRTLMUI\VCRTLMUI.cat
var for kort - minste nøkkellengde er 2048 biter.

Error - 05.02.2010 07:49:26 | Computer Name = KSJ-EE4E06AD755 | Source = E100B | ID = 5003
Description = \DEVICE\{68DA3826-0A9F-4965-82F3-130EA7A6D162}: Kan ikke finne kort.

Error - 05.02.2010 09:35:38 | Computer Name = KSJ-EE4E06AD755 | Source = DCOM | ID = 10016
Description = Innstillingene for programspesifikk-tillatelse gir ikke Lokal Start-tillatelse
for COM Server-programmet med CLSID {D851F103-8C90-4321-AFF0-58BA5BD421C2} til
brukeren NT-MYNDIGHET\SYSTEM SID (S-1-5-18). Denne sikkerhetstillatelsen kan endres
ved hjelp av det administrative verktøyet Komponenttjenester.

Error - 05.02.2010 09:35:38 | Computer Name = KSJ-EE4E06AD755 | Source = DCOM | ID = 10016
Description = Innstillingene for programspesifikk-tillatelse gir ikke Lokal Start-tillatelse
for COM Server-programmet med CLSID {D851F103-8C90-4321-AFF0-58BA5BD421C2} til
brukeren NT-MYNDIGHET\SYSTEM SID (S-1-5-18). Denne sikkerhetstillatelsen kan endres
ved hjelp av det administrative verktøyet Komponenttjenester.

Error - 05.02.2010 09:35:38 | Computer Name = KSJ-EE4E06AD755 | Source = DCOM | ID = 10016
Description = Innstillingene for programspesifikk-tillatelse gir ikke Lokal Start-tillatelse
for COM Server-programmet med CLSID {D851F103-8C90-4321-AFF0-58BA5BD421C2} til
brukeren NT-MYNDIGHET\SYSTEM SID (S-1-5-18). Denne sikkerhetstillatelsen kan endres
ved hjelp av det administrative verktøyet Komponenttjenester.

Error - 05.02.2010 09:35:38 | Computer Name = KSJ-EE4E06AD755 | Source = DCOM | ID = 10016
Description = Innstillingene for programspesifikk-tillatelse gir ikke Lokal Start-tillatelse
for COM Server-programmet med CLSID {D851F103-8C90-4321-AFF0-58BA5BD421C2} til
brukeren NT-MYNDIGHET\SYSTEM SID (S-1-5-18). Denne sikkerhetstillatelsen kan endres
ved hjelp av det administrative verktøyet Komponenttjenester.

Error - 06.02.2010 15:36:36 | Computer Name = KSJ-EE4E06AD755 | Source = Service Control Manager | ID = 7022
Description = Tjenesten IPv6 Helper Service hang under oppstart.

Error - 19.02.2010 14:44:16 | Computer Name = KSJ-EE4E06AD755 | Source = Windows Update Agent | ID = 16
Description = Unable to Connect: Windows is unable to connect to the automatic updates
service and therefore cannot download and install updates according to the set
schedule. Windows will continue to try to establish a connection.


< End of report >

---------------

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Wed Feb 24, 2010 4:09 pm

Do you find some errors in these txt-logs?
or
Do you have any advise to make my computer run faster? That is to make office programs open much faster and make the web-browsers open faster. It usually use a couple of minutes before I can open a new word document?

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by Belahzur on Thu Feb 25, 2010 12:19 am

Actually, the logs look good. We can try doing some cleaning, but a lot of this is down to disk management, defragging, etc

Please download [You must be registered and logged in to see this link.] to your desktop
  • Please double-click TFC.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • It will close all programs when run, so make sure you have saved all your work before you begin.
  • Click the Start
    button to begin the process. Depending on how often you clean temp
    files, execution time should be anywhere from a few seconds to a minute
    or two. Let it run uninterrupted to completion.
  • Once it's finished it should reboot your machine. If it does not, please manually reboot the machine yourself to ensure a complete clean.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by kennetsj on Thu Feb 25, 2010 7:50 am

Thx!

How often do you recomend me to run the TFC program to clean the computer for temp.files and other unnecessary files?

Is there other programs like CCleaner that do the same work? Or is TFC recommended?

By the way, my laptop seems to run much faster now. Used only 10 sek from the time I launched word2007 untill the document was open and ready for use.
Before, this could take 1minute or more.

kennetsj
Novice
Novice

Posts Posts : 9
Joined Joined : 2010-02-22
Gender Gender : Male
OS OS : Windows XP professional
Points Points : 24913
# Likes # Likes : 0

View user profile

Back to top Go down

Re: removing any form of malware, be it, virus, spyware, or trojans

Post by Belahzur on Thu Feb 25, 2010 11:01 pm

Hello.

I'd recommend running it once a month. TFC is pretty much the same to CCleaner, but TFC doesn't need to be installed like CCleaner does.


[You must be registered and logged in to see this link.] - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur
Administrator
Administrator

Posts Posts : 34916
Joined Joined : 2008-08-03
Gender Gender : Male
OS OS : XP SP3 Media Centre
Points Points : 245069
# Likes # Likes : 1

View user profile

Back to top Go down

View previous topic View next topic Back to top

- Similar topics

 
Permissions in this forum:
You cannot reply to topics in this forum