Hello Tech Support,
A couple weeks ago I discovered after running a few anti Spyware tools that 2 threats and 2 infections remain from pctools spyware doctor while the other tools were infection free, (spyware.possible_website_hijack) Host entry:(127.0.0.1 spywareinfo.com) & (127.0.0.1
www.spywareinfo.com) I ran both the full scan and the Intelii-Scan, I have done some research and have found that this is a common problem with SD, I tried removing the infection but it would not let me it just says "some threats have not been cleaned successfully",I get frequent hang ups upon shut down and boot ups, my web browser changing on its own, applications hanging when closed and the (error program not responding) pop ups upon shutting down or logging off. I have followed the New Instructions and as you can see below I have copied and pasted the DDS.txt file and have attached Attach.txt and ARK.txt zip.
Any Help would be ever so greatly appreciated
Thank you
IggyPop
Attach.zip
ark.zip
DDS (Ver_09-05-14.01) - NTFSx86
Run by Shawn at 22:46:52.54 on Tue 06/16/2009
Internet Explorer: 7.0.5730.13 BrowserJavaVersion: 1.6.0_12
Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3069.2126 [GMT -8:00]
AV: Spyware Doctor with AntiVirus *On-access scanning disabled* (Updated) {D3C23B96-C9DC-477F-8EF1-69AF17A6EFF6}
AV: Norton Internet Security *On-access scanning enabled* (Updated) {E10A9785-9598-4754-B552-92431C1C35F8}
FW: Norton Internet Security *enabled* {7C21A4C9-F61F-4AC4-B722-A6E19C16F220}
============== Running Processes ===============
C:\windows\system32\svchost -k DcomLaunch
C:\windows\system32\svchost -k rpcss
C:\windows\System32\svchost.exe -k netsvcs
C:\windows\system32\svchost.exe -k NetworkService
C:\windows\system32\svchost.exe -k LocalService
C:\windows\system32\spoolsv.exe
C:\windows\Explorer.EXE
C:\Program Files\Norton Save and Restore\Agent\VProTray.exe
C:\Program Files\Spyware Doctor\pctsTray.exe
C:\Program Files\inKline Global\PC Booster\PCBooster.exe
C:\windows\system32\rundll32.exe
C:\Program Files\SlySoft\AnyDVD\AnyDVDtray.exe
C:\windows\system32\ctfmon.exe
C:\Program Files\Bigfoot Networks\Killer Driver\KillerTray.exe
C:\Program Files\Logitech\SetPoint\SetPoint.exe
C:\Program Files\Common Files\Logitech\KHAL\KHALMNPR.EXE
C:\Program Files\Common Files\Acronis\Schedule2\schedul2.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
C:\Program Files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Bigfoot Networks\Killer Driver\PortManager.exe
C:\Program Files\Reimage\Reimage PC Booster\ReimageBooster.exe
C:\Program Files\SlySoft\Game Jackal\32611.exe
C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
C:\Program Files\Norton Save and Restore\Agent\VProSvc.exe
C:\Program Files\NVIDIA Corporation\nTune\nTuneService.exe
C:\windows\system32\nvsvc32.exe
C:\Program Files\Raxco\PerfectDisk10\PDAgent.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\Program Files\Spyware Doctor\pctsAuxs.exe
C:\Program Files\Spyware Doctor\pctsSvc.exe
C:\Program Files\NVIDIA Corporation\System Update\UpdateCenterService.exe
C:\Program Files\Norton Internet Security\Engine\16.5.0.135\ccSvcHst.exe
C:\windows\system32\SearchIndexer.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcAppFlt.exe
C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin32\nSvcIp.exe
C:\Program Files\Raxco\PerfectDisk10\PDEngine.exe
C:\Program Files\Spyware Doctor\TFEngine\TFService.exe
C:\windows\System32\alg.exe
C:\Program Files\Reimage\Reimage PC Booster\REI_Booster.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\windows\system32\SearchProtocolHost.exe
C:\windows\system32\svchost.exe -k imgsvc
C:\windows\system32\SearchFilterHost.exe
C:\Documents and Settings\Shawn\Desktop\dds.scr
C:\WINDOWS\system32\wbem\wmiprvse.exe
============== Pseudo HJT Report ===============
uStart Page = hxxp://www.google.com/
uInternet Settings,ProxyOverride = *.local
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\progra~1\spybot~1\SDHelper.dll
BHO: Symantec NCO BHO: {602adb0e-4aff-4217-8aa1-95dac4dfa408} - c:\program files\norton internet security\engine\16.5.0.135\coIEPlg.dll
BHO: Symantec Intrusion Prevention: {6d53ec84-6aae-4787-aeee-f4628f01010c} - c:\program files\norton internet security\engine\16.5.0.135\IPSBHO.DLL
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\program files\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
TB: Norton Toolbar: {7febefe3-6b19-4349-98d2-ffb09d4b49ca} - c:\program files\norton internet security\engine\16.5.0.135\coIEPlg.dll
TB: {A057A204-BACC-4D26-9990-79A187E2698E} - No File
TB: {724D43A0-0D85-11D4-9908-00400523E39A} - No File
uRun: [AnyDVD] c:\program files\slysoft\anydvd\AnyDVDtray.exe
uRun: [NVIDIA nTune] "c:\program files\nvidia corporation\ntune\nTuneCmd.exe" resetprofile
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [Norton Save and Restore 2.0] "c:\program files\norton save and restore\agent\VProTray.exe"
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [ISTray] "c:\program files\spyware doctor\pctsTray.exe"
mRun: [PC Booster] c:\program files\inkline global\pc booster\PCBooster.exe
mRun: [nwiz] nwiz.exe /install
mRun: [Maplom] c:\program files\slysoft\game jackal\GameJackal.exe /silent
mRun: [Reimage PC Booster] "c:\program files\reimage\reimage pc booster\postrebootexecuter.exe" false na "c:\program files\reimage\reimage pc booster\ReimageBooster.exe" /tray
mRun: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\killer~1.lnk - c:\program files\bigfoot networks\killer driver\KillerTray.exe
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\logite~1.lnk - c:\program files\logitech\setpoint\SetPoint.exe
IE: E&xport to Microsoft Excel - c:\progra~1\mi1933~1\office12\EXCEL.EXE/3000
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\progra~1\spybot~1\SDHelper.dll
LSP: c:\program files\common files\pc tools\lsp\PCTLsp.dll
LSP: %SYSTEMROOT%\system32\BfLLR.dll
DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} - hxxp://www.update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1212589685328
DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} - hxxp://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1226727083515
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0012-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_12-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {DAF7E6E6-D53A-439A-B28D-12271406B8A9} - hxxp://mobileapps.blackberry.com/devicesoftware/AxLoader.cab
Handler: pure-go - {4746C79A-2042-4332-8650-48966E44ABA8} - c:\program files\common files\pure networks shared\puresp3.dll
Handler: symres - {AA1061FE-6C41-421f-9344-69640C9732AB} - c:\program files\norton internet security\engine\16.5.0.135\CoIEPlg.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: Windows Desktop Search Namespace Manager: {56f9679e-7826-4c84-81f3-532071a8bcc5} - c:\program files\windows desktop search\MSNLNamespaceMgr.dll
SEH: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - SABShellExecuteHook Class
================= FIREFOX ===================
FF - ProfilePath - c:\docume~1\shawn\applic~1\mozilla\firefox\profiles\x29ut26f.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/ig
FF - component: c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\coffplgn\components\coFFPlgn.dll
FF - component: c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\ipsffplgn\components\IPSFFPl.dll
FF - plugin: c:\program files\microsoft\office live\npOLW.dll
============= SERVICES / DRIVERS ===============
R0 nvrd32;NVIDIA nForce RAID Driver;c:\windows\system32\drivers\nvrd32.sys [2008-11-14 133152]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2009-5-18 130936]
R0 snapman380;Acronis Snapshots Manager (Build 380);c:\windows\system32\drivers\snman380.sys [2009-2-1 134272]
R0 SymEFA;Symantec Extended File Attributes;c:\windows\system32\drivers\nis\1005000.087\SymEFA.sys [2009-5-23 310320]
R0 tdrpman174;Acronis Try&Decide and Restore Points filter (build 174);c:\windows\system32\drivers\tdrpm174.sys [2009-2-1 971552]
R0 TfFsMon;TfFsMon;c:\windows\system32\drivers\TfFsMon.sys [2009-5-18 51488]
R0 TfSysMon;TfSysMon;c:\windows\system32\drivers\TfSysMon.sys [2009-5-18 39200]
R1 BHDrvx86;Symantec Heuristics Driver;c:\windows\system32\drivers\nis\1005000.087\BHDrvx86.sys [2009-5-23 258608]
R1 ccHP;Symantec Hash Provider;c:\windows\system32\drivers\nis\1005000.087\cchpx86.sys [2009-5-23 482352]
R1 IDSxpx86;IDSxpx86;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\ipsdefs\20090610.006\IDSXpx86.sys [2009-6-12 276344]
R1 pctgntdi;pctgntdi;c:\windows\system32\drivers\pctgntdi.sys [2009-5-18 159600]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\SASDIFSV.SYS [2009-1-15 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-1-15 55024]
R2 Killer Port Manager;Killer Port Manager;c:\program files\bigfoot networks\killer driver\PortManager.exe [2009-6-16 236544]
R2 Norton Internet Security;Norton Internet Security;c:\program files\norton internet security\engine\16.5.0.135\ccSvcHst.exe [2009-5-23 115560]
R2 Norton Save and Restore;Norton Save and Restore;c:\program files\norton save and restore\agent\VProSvc.exe [2007-2-13 3425632]
R2 sdAuxService;PC Tools Auxiliary Service;c:\program files\spyware doctor\pctsAuxs.exe [2009-5-18 348752]
R2 sdCoreService;PC Tools Security Service;c:\program files\spyware doctor\pctsSvc.exe [2009-5-18 1095560]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\common files\symantec shared\eengine\EraserUtilRebootDrv.sys [2009-5-25 101936]
R3 MaplomL;MaplomL;c:\windows\system32\drivers\maploml.sys [2008-11-18 43144]
R3 NAVENG;NAVENG;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20090616.035\NAVENG.SYS [2009-6-16 89104]
R3 NAVEX15;NAVEX15;c:\documents and settings\all users\application data\norton\{0c55c096-0f1d-4f28-aaa2-85ef591126e7}\norton\definitions\virusdefs\20090616.035\NAVEX15.SYS [2009-6-16 876144]
R3 NetB834x;Killer NIC Gaming Adapter Service;c:\windows\system32\drivers\NetB834x.sys [2009-1-1 103072]
R3 NetbEdge;Killer NIC NDIS-Edge Service;c:\windows\system32\drivers\NetBEdge.sys [2009-1-1 22048]
R3 pctplsg;pctplsg;c:\windows\system32\drivers\pctplsg.sys [2009-5-18 64392]
R3 SaiH8000;SaiH8000;c:\windows\system32\drivers\SaiH8000.sys [2008-4-4 136832]
R3 TfNetMon;TfNetMon;c:\windows\system32\drivers\TfNetMon.sys [2009-5-18 33056]
R3 ThreatFire;ThreatFire;c:\program files\spyware doctor\tfengine\tfservice.exe service --> c:\program files\spyware doctor\tfengine\TFService.exe service [?]
S0 Lbd;Lbd;c:\windows\system32\drivers\lbd.sys --> c:\windows\system32\drivers\Lbd.sys [?]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service; [x]
S2 spupdsvc;Windows Service Pack Installer update service;c:\windows\system32\spupdsvc.exe [2008-11-14 26488]
S3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2009-2-22 38496]
S3 motccgp;Motorola USB Composite Device Driver;c:\windows\system32\drivers\motccgp.sys [2008-8-21 18688]
S3 motccgpfl;MotCcgpFlService;c:\windows\system32\drivers\motccgpfl.sys [2008-8-21 8320]
S3 motport;Motorola USB Diagnostic Port;c:\windows\system32\drivers\motport.sys [2007-6-18 23680]
S3 NPF;NetGroup Packet Filter Driver;c:\windows\system32\drivers\npf.sys [2006-10-17 35072]
S3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-1-15 7408]
=============== Created Last 30 ================
2009-06-16 21:56 121,376 a------- c:\windows\system32\bfLLR.dll
2009-06-16 21:56 114,720 a------- c:\windows\system32\instLLR.exe
2009-06-16 20:17 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{7972B2E5-3E09-4E5E-81B7-FE5819D6772F}
2009-06-16 19:59 <DIR> -cd-h--- c:\docume~1\alluse~1\applic~1\{83C91755-2546-441D-AC40-9A6B4B860800}
2009-06-16 19:02 124,188 a------- c:\windows\system32\reimage.rep
2009-06-16 18:58 207,759 a------- c:\windows\system32\reimageu.nat
2009-06-16 18:58 117,020 a------- c:\windows\system32\reimage.nat
2009-06-16 18:57 81,920 a------- c:\windows\system32\ieencode.dll
2009-06-16 18:57 35,328 a------- c:\windows\system32\drivers\pcntpci5.sys
2009-06-16 18:57 20,608 a------- c:\windows\system32\drivers\usbuhci.sys
2009-06-16 18:57 14,208 a------- c:\windows\system32\drivers\battc.sys
2009-06-16 18:57 13,952 a------- c:\windows\system32\drivers\cmbatt.sys
2009-06-16 18:57 10,240 a------- c:\windows\system32\drivers\compbatt.sys
2009-06-16 18:57 5,504 a------- c:\windows\system32\drivers\intelide.sys
2009-06-16 18:57 8,192 a------- c:\windows\REGLOCS.OLD
2009-06-16 18:36 9,728 a------- c:\windows\system32\Native.exe
2009-06-16 18:36 <DIR> --d----- C:\ReimageUndo
2009-06-16 01:22 1,318 a------- c:\windows\system32\Compress.res
2009-06-16 01:22 264 a------- c:\windows\reimage.ini
2009-06-16 01:22 <DIR> --d----- C:\rei
2009-06-16 01:22 <DIR> --d----- c:\program files\Reimage
2009-06-14 21:00 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_motport_01005.Wdf
2009-06-14 20:59 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_motmodem_01005.Wdf
2009-06-14 20:58 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_motccgpfl_01005.Wdf
2009-06-14 20:58 0 a---h--- c:\windows\system32\drivers\Msft_Kernel_motccgp_01005.Wdf
2009-06-14 20:58 0 a---h--- c:\windows\system32\drivers\MsftWdf_Kernel_01005_Coinstaller_Critical.Wdf
2009-06-14 15:38 <DIR> --d----- c:\docume~1\shawn\applic~1\Blackberry Desktop
2009-06-12 19:50 256 a------- c:\documents and settings\shawn\pool.bin
2009-06-11 12:33 104,512 a------- c:\windows\system32\drivers\AnyDVD.sys
2009-06-06 21:51 <DIR> --d----- c:\program files\Roxio
2009-06-06 21:51 <DIR> --d----- c:\program files\common files\Sonic Shared
2009-06-06 20:37 256 a------- c:\windows\system32\pool.bin
2009-06-06 20:36 <DIR> --d----- c:\docume~1\shawn\applic~1\Research In Motion
2009-06-06 20:05 26,496 a----r-- c:\windows\system32\drivers\RimSerial.sys
2009-06-06 20:03 <DIR> --d----- c:\program files\common files\Research In Motion
2009-06-06 20:03 <DIR> --d----- c:\program files\Research In Motion
2009-06-06 19:37 <DIR> --dsh--- c:\windows\ftpcache
2009-05-30 23:36 <DIR> --d----- c:\documents and settings\shawn\dwhelper
2009-05-30 12:33 <DIR> --d----- c:\program files\Datel
2009-05-25 21:44 38,229 -------- c:\windows\system32\drivers\StMp3Rec.sys
2009-05-25 21:37 <DIR> --d----- c:\windows\Downloaded Installations
2009-05-25 04:01 89,256 a------- c:\windows\system32\ElbyCDIO.dll
2009-05-23 22:55 128,104 a------- c:\windows\system32\drivers\WimFltr.sys
2009-05-23 22:55 14,072 a------- c:\windows\system32\drivers\vproeventmonitor.sys
2009-05-23 22:54 <DIR> --d----- c:\program files\Norton Save and Restore
2009-05-23 22:46 <DIR> --d----- c:\program files\inKline Global
2009-05-23 21:26 <DIR> --d--r-- c:\program files\Norton Support
2009-05-23 13:49 36,400 a----r-- c:\windows\system32\drivers\SymIM.sys
2009-05-23 13:49 124,464 a------- c:\windows\system32\drivers\SYMEVENT.SYS
2009-05-23 13:49 60,808 a------- c:\windows\system32\S32EVNT1.DLL
2009-05-23 13:49 7,386 a------- c:\windows\system32\drivers\SYMEVENT.CAT
2009-05-23 13:49 805 a------- c:\windows\system32\drivers\SYMEVENT.INF
2009-05-23 13:48 <DIR> --d----- c:\windows\system32\drivers\NIS
2009-05-23 13:48 <DIR> --d----- c:\program files\Norton Internet Security
2009-05-23 13:48 <DIR> --d----- c:\docume~1\alluse~1\applic~1\Norton
2009-05-23 13:45 <DIR> --d----- c:\program files\NortonInstaller
2009-05-23 13:45 <DIR> --d----- c:\docume~1\alluse~1\applic~1\NortonInstaller
2009-05-22 23:17 <DIR> --d----- c:\docume~1\alluse~1\applic~1\PC Tools
2009-05-22 22:25 <DIR> --d----- c:\windows\system32\wbem\Repository
2009-05-19 05:05 1,380,403 a------- c:\windows\system32\avgsdk.dll
2009-05-18 13:04 51,488 a------- c:\windows\system32\drivers\TfFsMon.sys
2009-05-18 13:04 39,200 a------- c:\windows\system32\drivers\TfSysMon.sys
2009-05-18 13:04 33,056 a------- c:\windows\system32\drivers\TfNetMon.sys
2009-05-18 13:04 12,576 a------- c:\windows\system32\drivers\TfKbMon.sys
2009-05-18 13:02 159,600 a------- c:\windows\system32\drivers\pctgntdi.sys
2009-05-18 13:00 130,936 a------- c:\windows\system32\drivers\PCTCore.sys
2009-05-18 13:00 73,840 a------- c:\windows\system32\drivers\PCTAppEvent.sys
2009-05-18 12:59 64,392 a------- c:\windows\system32\drivers\pctplsg.sys
2009-05-18 12:59 <DIR> --d----- c:\program files\Spyware Doctor
2009-05-18 12:59 <DIR> --d----- c:\docume~1\shawn\applic~1\PC Tools
==================== Find3M ====================
2009-06-16 19:02 285,184 a------- c:\windows\system32\gdi32.dll
2009-06-16 19:02 246,272 a------- c:\windows\system32\es.dll
2009-06-16 19:02 21,640 a------- c:\windows\system32\emptyregdb.dat
2009-06-16 19:02 139,264 a------- c:\windows\system32\cscript.exe
2009-06-16 19:02 71,680 a------- c:\windows\system32\admparse.dll
2009-06-16 19:02 35,328 a------- c:\windows\system32\corpol.dll
2009-06-16 18:37 2,145,280 a------- c:\windows\system32\ntoskrnl.exe
2009-06-16 18:37 2,023,936 a------- c:\windows\system32\ntkrnlpa.exe
2009-06-09 09:51 40,584 a------- c:\windows\system32\drivers\maplom.sys
2009-06-09 09:50 43,144 a------- c:\windows\system32\drivers\maploml.sys
2009-05-25 00:24 350,208 -------- c:\windows\system32\mssph.dll
2009-05-17 13:45 2,206 a------- c:\windows\system32\tmp.reg
2009-05-01 13:54 231,176 a------- c:\windows\system32\PDBoot.exe
2009-04-30 01:36 75,776 a------- c:\windows\system32\WS2Fix.exe
2009-03-01 23:58 24,192 a------- c:\documents and settings\shawn\usbsermptxp.sys
2009-03-01 23:58 22,768 a------- c:\documents and settings\shawn\usbsermpt.sys
2009-02-24 23:58 61,224 a------- c:\documents and settings\shawn\GoToAssistDownloadHelper.exe
2008-11-19 23:54 22,328 a------- c:\docume~1\shawn\applic~1\PnkBstrK.sys
============= FINISH: 22:48:25.01 ===============