Tech Support Forum banner
Status
Not open for further replies.

Big virus or sypware. DONT know ?

2K views 27 replies 2 participants last post by  Ried 
#1 ·
hello
I have scanned my computer with ewido, avg spyware, avg virus, zone alarm spyware and also i have posted the hijack this log here. I have hundreds of computer spyware and one virus. i quarantined them using the above softwares. i also did scan with regrun and found my system to tbe clean. strange ?????. recently, i was not able to enter into my windows op sytem and it seems to restart every now and then. i think it was a virus or a memory problem. I am not sure but i used my compaq os xp cd and i tried to recover my progs but i was unsuccessfull and i am not experienced with bios or dos comands and also my startup mode does not load. very strange and i formatted my c drive and installed a new version of windows xp and did scan for virus and spyware and i found i have about 100 mal ware or trojans and other virus in my sytem . How ?. I renamed the hyjack this into grossgrab.exe and poosted the log here. Please help me. I lost my emails and other documents. I couldnt back up my files an

Logfile of HijackThis v1.99.1
Scan saved at 6:43:28 PM, on 11/5/2006
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\System32\ctfmon.exe
C:\Program Files\Analog Devices\ADSL USB MODEM\dslmon.exe
D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
D:\Program Files\Hide IP Platinum\hideippla.exe
C:\Program Files\Privoxy\privoxy.exe
C:\Program Files\Vidalia\vidalia.exe
C:\Program Files\Mozilla Firefox\firefox.exe
D:\Program Files\BitLord\BitLord.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\data\hijackthis1\glasgow.exe.exe
D:\Program Files\SpywareBlaster\spywareblaster.exe
D:\reanimator\reanimator.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 219.232.9.180:80
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://home.netscape.com/bookmark/7_2/home.html"); (C:\Documents and Settings\user\Application Data\Mozilla\Profiles\default\thc7hill.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", ""); (C:\Documents and Settings\user\Application Data\Mozilla\Profiles\default\thc7hill.slt\prefs.js)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Zone Labs Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [Mozilla Quick Launch] "C:\PROGRA~1\NETSCAPE\NETSCAPE\NETSCP.EXE" -turbo
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: DSLMON.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O9 - Extra 'Tools' menuitem: Yahoo! Messenger - {E5D12C4E-7B4F-11D3-B5C9-0050045C3C96} - C:\PROGRA~1\Yahoo!\MESSEN~1\YPager.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1162673723420
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162727651200
O17 - HKLM\System\CCS\Services\Tcpip\..\{1B343D5F-5DA8-4369-B349-1282E58BF63F}: NameServer = 213.42.20.20 195.229.241.222
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe
 
See less See more
#3 ·
Hello Xerxes,

The main reason you are attracting malware is because you are running unpatched XP. I'm not seeing any apparent malware in this log, so I'd like you to update to XPSP1 before we continue.

IMPORTANT!:
Before we proceed any further, please visit the Microsoft's Windows Update Page and install ALL Critical Updates for your system (except service pack 2 (SP2). SP2 should only be installed on a fully disinfected system.) At the minimum install at least SP1a for both XP and IE6. Without these updates your system is wide open to re-infection and we are both wasting our efforts to clean your system. After we have completed your clean-up, we will have you return to the Windows Update page and install SP2. We will also then advise you on how to better protect yourself online.

Please apply those updates BEFORE posting your next log. It is this forum's policy to stop the disinfection process until these basic updates are done. If during the updating process you get a message that your product key is invalid ....then you may not have a legitimate copy of Windows XP. Unfortunately it’s also this forums policy that we only address users with a legal copy of Windows XP.... therefore if you can not update Windows XP to SP1 we must stop the cleansing process here.

**Note** If you're having trouble locating the service pack SP1a here is a direct link to download it from.

---------------------------------

After you've updated to SP1, please do the following:

Please run this online scan to search for any remnants. It can take some time, so please be patient and allow it to run it's full course:

Perform an online scan with Internet Explorer with Panda ActiveScan
  1. Click on
    located at the bottom of the page.
  2. A "pop up" window will appear. * Please ensure that your pop up blocker doesn't block it *
  3. Enter your e-mail address, country, and state & click "Free Online Scan" *The download of the 8 MB Panda's ActiveX control will take place*
Begin the scan by selecting
  • If it finds any malware, it will offer you a report.
  • Please ignore any entry it finds and the offer to buy the program to remove the entry, as we will address this later.
  • Click on
    then click
* You needn't remain online while it's doing the scan but you have to re-connect after it has finished to see the report.
* Turn off the real time scanner of any existing antivirus program while performing the online scan


-----------------------------------

Run a new scan with HijackThis and save the log.

-----------------------------------

Please include the following in your next reply:

Panda results
New HijackThis log
 
#5 ·
what are all the critical updates that needs to be installed. I hate patches. After all pc life is full of contradictions and confusions. How to know what is good for pc ? tommorow some one says sp2 was bad for pc. I want an answer. Give the list of critical updates and then i will install and also the reason.
 
#6 ·
I've already stated the critical update that needs to be installed--XP SP1 or SP1a, as well as the reason:
....Without these updates your system is wide open to re-infection and we are both wasting our efforts to clean your system.
 
#8 ·
Do not install SP2 until we verify that your system is clean. Again, it was all explained in my initial instructions. Please run the online scan and post those results along with a new HijackThis log.
 
#9 ·
HIjack log and Active scan

Hello

Here are files.

I will posting one after the other..........

Logfile of HijackThis v1.99.1
Scan saved at 5:35:05 PM, on 11/9/2006
Platform: Windows XP SP1 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP1 (6.00.2800.1106)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\ZoneLabs\vsmon.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\Grisoft\AVG7\avgcc.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\WINDOWS\System32\igfxtray.exe
C:\WINDOWS\System32\hkcmd.exe
D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\WINDOWS\System32\svchost.exe
D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnf.exe
C:\WINDOWS\System32\ctfmon.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Analog Devices\ADSL USB MODEM\dslmon.exe
D:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
D:\Program Files\BitLord\BitLord.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\hijackthis1\glasgow.exe.exe

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyServer = 129.120.103.223:80
N3 - Netscape 7: user_pref("browser.startup.homepage", "http://home.netscape.com/bookmark/7_2/home.html"); (C:\Documents and Settings\user\Application Data\Mozilla\Profiles\default\thc7hill.slt\prefs.js)
N3 - Netscape 7: user_pref("browser.search.defaultengine", ""); (C:\Documents and Settings\user\Application Data\Mozilla\Profiles\default\thc7hill.slt\prefs.js)
O2 - BHO: IDM Helper - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - D:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: (no name) - {724d43a9-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar1.dll
O3 - Toolbar: &RoboForm - {724d43a0-0d85-11d4-9908-00400523e39a} - C:\Program Files\Siber Systems\AI RoboForm\roboform.dll
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar1.dll
O4 - HKLM\..\Run: [IMJPMIG8.1] C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32
O4 - HKLM\..\Run: [PHIME2002ASync] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /SYNC
O4 - HKLM\..\Run: [PHIME2002A] C:\WINDOWS\System32\IME\TINTLGNT\TINTSETP.EXE /IMEName
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVG7\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [IgfxTray] C:\WINDOWS\System32\igfxtray.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [Cmaudio] RunDll32 cmicnfg.cpl,CMICtrlWnd
O4 - HKLM\..\Run: [Zone Labs Client] "D:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [Share-to-Web Namespace Daemon] D:\Program Files\Hewlett-Packard\HP Share-to-Web\hpgs2wnd.exe
O4 - HKCU\..\Run: [IDMan] C:\Program Files\Internet Download Manager\IDMan.exe /onboot
O4 - HKCU\..\Run: [BitComet] "D:\Program Files\BitLord\BitLord.exe"
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\System32\ctfmon.exe
O4 - HKCU\..\Run: [updateMgr] "C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" AcRdB7_0_7 -reboot 1
O4 - Startup: HDDlife.lnk = C:\Program Files\BinarySense\HDDlife\HDDlifePro.exe
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: DSLMON.lnk = ?
O4 - Global Startup: hpoddt01.exe.lnk = ?
O8 - Extra context menu item: Customize Menu - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComCustomizeIEMenu.html
O8 - Extra context menu item: Download All Links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm
O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: Fill Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O8 - Extra context menu item: RoboForm Toolbar - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O8 - Extra context menu item: Save Forms - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra 'Tools' menuitem: Fill Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F46} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComFillForms.html
O9 - Extra button: Save - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra 'Tools' menuitem: Save Forms - {320AF880-6646-11D3-ABEE-C5DBF3571F49} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComSavePass.html
O9 - Extra button: RoboForm - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra 'Tools' menuitem: RoboForm Toolbar - {724d43aa-0d85-11d4-9908-00400523e39a} - file://C:\Program Files\Siber Systems\AI RoboForm\RoboFormComShowToolbar.html
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O15 - Trusted Zone: http://www.pandasoftware.com
O15 - Trusted Zone: http://18411.rapidforum.com
O15 - Trusted Zone: http://*.windowsupdate.com
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1162673723420
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1162727651200
O16 - DPF: {9A9307A0-7DA4-4DAF-B042-5009F29E09E1} (ActiveScan Installer Class) - http://acs.pandasoftware.com/activescan/as5free/asinst.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{1B343D5F-5DA8-4369-B349-1282E58BF63F}: NameServer = 213.42.20.20 195.229.241.222
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - "C:\PROGRA~1\MSNMES~1\msgrapp.dll" (file missing)
O20 - Winlogon Notify: igfxcui - C:\WINDOWS\SYSTEM32\igfxsrvc.dll
O23 - Service: AVG Anti-Spyware Guard - Anti-Malware Development a.s. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVG7\avgemc.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZoneLabs\vsmon.exe

-----------------------------------------------------------------------------------

Active Panda ONLINE scan

----


Incident Status Location

Virus:W32/Netsky.P.worm Renamed C:\data\matt mathew\Application Data\Mozilla\Profiles\default\i4s6dqcj.slt\Mail\mail.emirates.net.ae\Inbox[website.zip][data.rtf .scr]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Firefox\Profiles\npq0tygo.default\cookies.txt[.atwola.com/]
Spyware:Cookie/Atwola Not disinfected C:\Documents and Settings\user\Application Data\Mozilla\Profiles\default\thc7hill.slt\cookies.txt[.atwola.com/]
Adware:Adware/Sqwire Not disinfected C:\WINDOWS\autoclk.exe
Potentially unwanted tool:Application/Processor Not disinfected D:\SmitfraudFix\SmitfraudFix\Process.exe
Potentially unwanted tool:Application/Processor Not disinfected D:\SmitfraudFix\SmitfraudFix\SmitfraudFix.zip[SmitfraudFix/Process.exe]
Possible Virus. Not disinfected D:\SmitfraudFix\SmitfraudFix\SmitfraudFix.zip[SmitfraudFix/swsc.exe]
Possible Virus. Not disinfected D:\SmitfraudFix\SmitfraudFix\swsc.exe
 
#11 ·
Yes, I do know that. :smile:

How is your system behaving? If you're still having difficulty, please run the following tool--it will only take moments to complete:

Download combofix from one of these locations:
**Save it to your desktop**
Double click on combofix.exe & follow the prompts.
When finished, it shall produce a log for you. Post that log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
 
#12 · (Edited)
How do u do ?

post for combo

user - 06-11-09 20:07:38.00 Service Pack 1
ComboFix 06.11.9 - Running from: "C:\Documents and Settings\user\Application Data\IDM\DwnlData\user\combofix_27"

((((((((((((((((((((((((((((((( Files Created from 2006-10-09 to 2006-11-09 ))))))))))))))))))))))))))))))))))


2006-11-09 16:36 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-11-09 15:55 82,432 --a------ C:\WINDOWS\system32\fldrclnr.dll
2006-11-09 15:55 700,928 --a------ C:\WINDOWS\system32\sxs.dll
2006-11-09 15:55 25,600 --------- C:\WINDOWS\system32\verclsid.exe
2006-11-09 15:46 92,160 --a------ C:\WINDOWS\system32\cscdll.dll
2006-11-09 15:24 98,304 --a------ C:\WINDOWS\system32\polstore.dll
2006-11-09 15:24 364,544 --a------ C:\WINDOWS\system32\ipsmsnap.dll
2006-11-09 15:24 334,848 --a------ C:\WINDOWS\system32\ipsecsnp.dll
2006-11-09 15:24 29,184 --a------ C:\WINDOWS\system32\winipsec.dll
2006-11-09 15:24 257,536 --a------ C:\WINDOWS\system32\oakley.dll
2006-11-09 15:24 159,744 --a------ C:\WINDOWS\system32\ipsecsvc.dll
2006-11-09 15:13 595,968 --a------ C:\WINDOWS\system32\xpsp2res.dll
2006-11-09 14:47 95,232 --a------ C:\WINDOWS\system32\6to4svc.dll
2006-11-09 14:47 83,456 --a------ C:\WINDOWS\system32\netsh.exe
2006-11-09 14:47 70,656 --a------ C:\WINDOWS\system32\ws2_32.dll
2006-11-09 14:47 54,272 --a------ C:\WINDOWS\system32\ipv6mon.dll
2006-11-09 14:47 48,640 --a------ C:\WINDOWS\system32\ipv6.exe
2006-11-09 14:47 31,232 --a------ C:\WINDOWS\system32\inetmib1.dll
2006-11-09 14:47 159,232 --a------ C:\WINDOWS\system32\xpob2res.dll
2006-11-09 14:47 13,312 --a------ C:\WINDOWS\system32\wship6.dll
2006-11-09 14:47 11,776 --a------ C:\WINDOWS\system32\drivers\tunmp.sys
2006-11-09 14:44 1,110,528 --a------ C:\WINDOWS\system32\msxml3.dll
2006-11-09 14:37 83,456 --a------ C:\WINDOWS\system32\mtxoci.dll
2006-11-09 14:37 64,512 --a------ C:\WINDOWS\system32\mtxclu.dll
2006-11-08 17:17 115,200 --a------ C:\WINDOWS\system32\dpcdll.dll
2006-11-08 17:15 921,475 --------- C:\WINDOWS\system32\ati3d2ag.dll
2006-11-08 17:15 844,675 --------- C:\WINDOWS\system32\ati3d1ag.dll
2006-11-08 17:15 63,663 --------- C:\WINDOWS\system32\drivers\atinrvxx.sys
2006-11-08 17:15 6,912 --------- C:\WINDOWS\system32\drivers\hidir.sys
2006-11-08 17:15 56,591 --------- C:\WINDOWS\system32\drivers\atinbtxx.sys
2006-11-08 17:15 504,832 --------- C:\WINDOWS\system32\msftedit.dll
2006-11-08 17:15 450,176 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2006-11-08 17:15 403,456 --------- C:\WINDOWS\system32\winbrand.dll
2006-11-08 17:15 377,984 --------- C:\WINDOWS\system32\ati2dvaa.dll
2006-11-08 17:15 36,463 --------- C:\WINDOWS\system32\drivers\atintuxx.sys
2006-11-08 17:15 34,735 --------- C:\WINDOWS\system32\drivers\atinxsxx.sys
2006-11-08 17:15 327,040 --------- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2006-11-08 17:15 30,671 --------- C:\WINDOWS\system32\drivers\atinraxx.sys
2006-11-08 17:15 3,584 --------- C:\WINDOWS\system32\dsprpres.dll
2006-11-08 17:15 29,455 --------- C:\WINDOWS\system32\drivers\atinxbxx.sys
2006-11-08 17:15 26,367 --------- C:\WINDOWS\system32\drivers\atinsnxx.sys
2006-11-08 17:15 218,112 --------- C:\WINDOWS\system32\sbe.dll
2006-11-08 17:15 21,343 --------- C:\WINDOWS\system32\drivers\atinttxx.sys
2006-11-08 17:15 202,496 --------- C:\WINDOWS\system32\ati2dvag.dll
2006-11-08 17:15 187,904 --------- C:\WINDOWS\system32\xpsp1res.dll
2006-11-08 17:15 18,944 --------- C:\WINDOWS\system32\faxpatch.exe
2006-11-08 17:15 172,032 --------- C:\WINDOWS\system32\mssap.dll
2006-11-08 17:15 155,648 --------- C:\WINDOWS\system32\encdec.dll
2006-11-08 17:15 13,056 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2006-11-08 17:15 12,047 --------- C:\WINDOWS\system32\drivers\atinpdxx.sys
2006-11-08 17:15 110,080 --------- C:\WINDOWS\system32\sbeio.dll
2006-11-08 17:15 11,904 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2006-11-08 17:15 11,615 --------- C:\WINDOWS\system32\drivers\atinmdxx.sys
2006-11-08 17:15 1,677,312 --------- C:\WINDOWS\system32\wmvcore2.dll
2006-11-08 17:14 98,816 --a------ C:\WINDOWS\system32\clipbrd.exe
2006-11-08 17:14 95,744 --a------ C:\WINDOWS\system32\nlhtml.dll
2006-11-08 17:14 94,208 --a------ C:\WINDOWS\system32\odbccp32.dll
2006-11-08 17:14 91,648 --a------ C:\WINDOWS\system32\iuctl.dll
2006-11-08 17:14 91,648 --a------ C:\WINDOWS\system32\ahui.exe
2006-11-08 17:14 91,136 --a------ C:\WINDOWS\system32\MSOERT2.DLL
2006-11-08 17:14 91,136 --a------ C:\WINDOWS\system32\advpack.dll
2006-11-08 17:14 9,728 --a------ C:\WINDOWS\system32\mstinit.exe
2006-11-08 17:14 9,216 --a------ C:\WINDOWS\system32\icaapi.dll
2006-11-08 17:14 9,216 --a------ C:\WINDOWS\system32\dumprep.exe
2006-11-08 17:14 857,600 --a------ C:\WINDOWS\system32\netplwiz.dll
2006-11-08 17:14 827,438 --a------ C:\WINDOWS\system32\imjp81k.dll
2006-11-08 17:14 802,304 --a------ C:\WINDOWS\system32\dxmrtp.dll
2006-11-08 17:14 8,832 --a------ C:\WINDOWS\system32\framebuf.dll
2006-11-08 17:14 8,192 --a------ C:\WINDOWS\system32\autolfn.exe
2006-11-08 17:14 78,848 --a------ C:\WINDOWS\system32\msiexec.exe
2006-11-08 17:14 76,288 --a------ C:\WINDOWS\system32\dfrgfat.exe
2006-11-08 17:14 76,288 --a------ C:\WINDOWS\system32\avifil32.dll
2006-11-08 17:14 74,810 --a------ C:\WINDOWS\system32\atl.dll
2006-11-08 17:14 73,728 --a------ C:\WINDOWS\system32\ils.dll
2006-11-08 17:14 71,680 --a------ C:\WINDOWS\system32\browsewm.dll
2006-11-08 17:14 70,656 --a------ C:\WINDOWS\system32\defrag.exe
2006-11-08 17:14 70,144 --a------ C:\WINDOWS\system32\cryptdlg.dll
2006-11-08 17:14 7,040 --a------ C:\WINDOWS\system32\kd1394.dll
2006-11-08 17:14 699,392 --a------ C:\WINDOWS\system32\msxml2.dll
2006-11-08 17:14 68,096 --a------ C:\WINDOWS\system32\mscms.dll
2006-11-08 17:14 67,584 --a------ C:\WINDOWS\system32\msctfp.dll
2006-11-08 17:14 66,560 --a------ C:\WINDOWS\system32\faultrep.dll
2006-11-08 17:14 65,536 --a------ C:\WINDOWS\system32\msconf.dll
2006-11-08 17:14 64,512 --a------ C:\WINDOWS\system32\ciodm.dll
2006-11-08 17:14 62,976 --a------ C:\WINDOWS\system32\browselc.dll
2006-11-08 17:14 62,464 --a------ C:\WINDOWS\system32\adsmsext.dll
2006-11-08 17:14 61,440 --a------ C:\WINDOWS\system32\odbccr32.dll
2006-11-08 17:14 61,440 --a------ C:\WINDOWS\system32\dbnetlib.dll
2006-11-08 17:14 6,656 --a------ C:\WINDOWS\system32\batt.dll
2006-11-08 17:14 598,016 --a------ C:\WINDOWS\system32\mstscax.dll
2006-11-08 17:14 596,480 --a------ C:\WINDOWS\system32\INETCOMM.DLL
2006-11-08 17:14 59,392 --a------ C:\WINDOWS\system32\iesetup.dll
2006-11-08 17:14 584,192 --a------ C:\WINDOWS\system32\netcfgx.dll
2006-11-08 17:14 57,856 --a------ C:\WINDOWS\system32\licwmi.dll
2006-11-08 17:14 56,320 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-11-08 17:14 552,991 --a------ C:\WINDOWS\system32\msrepl40.dll
2006-11-08 17:14 55,296 --a------ C:\WINDOWS\system32\digest.dll
2006-11-08 17:14 54,272 --a------ C:\WINDOWS\system32\clusapi.dll
2006-11-08 17:14 53,248 --a------ C:\WINDOWS\system32\odbcconf.exe
2006-11-08 17:14 53,248 --a------ C:\WINDOWS\system32\cryptsvc.dll
2006-11-08 17:14 512,031 --a------ C:\WINDOWS\system32\msexch40.dll
2006-11-08 17:14 51,712 --a------ C:\WINDOWS\system32\ipconfig.exe
2006-11-08 17:14 504,320 --a------ C:\WINDOWS\system32\logonui.exe
2006-11-08 17:14 5,120 --a------ C:\WINDOWS\system32\asferror.dll
2006-11-08 17:14 498,205 --a------ C:\WINDOWS\system32\dxmasf.dll
2006-11-08 17:14 49,664 --a------ C:\WINDOWS\system32\ixsso.dll
2006-11-08 17:14 49,152 --a------ C:\WINDOWS\system32\npptools.dll
2006-11-08 17:14 49,152 --a------ C:\WINDOWS\system32\eventlog.dll
2006-11-08 17:14 49,152 --a------ C:\WINDOWS\system32\browser.dll
2006-11-08 17:14 471,040 --a------ C:\WINDOWS\system32\cryptui.dll
2006-11-08 17:14 45,568 --a------ C:\WINDOWS\system32\docprop2.dll
2006-11-08 17:14 421,919 --a------ C:\WINDOWS\system32\msrd2x40.dll
2006-11-08 17:14 42,537 --a------ C:\WINDOWS\system32\keyboard.sys
2006-11-08 17:14 42,496 --a------ C:\WINDOWS\system32\ncobjapi.dll
2006-11-08 17:14 41,984 --a------ C:\WINDOWS\system32\alg.exe
2006-11-08 17:14 41,472 --a------ C:\WINDOWS\system32\cmdl32.exe
2006-11-08 17:14 401,462 --a------ C:\WINDOWS\system32\msvcp60.dll
2006-11-08 17:14 4,608 --a------ C:\WINDOWS\system32\msimg32.dll
2006-11-08 17:14 4,126 --a------ C:\WINDOWS\system32\msdxmlc.dll
2006-11-08 17:14 399,360 --a------ C:\WINDOWS\system32\netlogon.dll
2006-11-08 17:14 392,704 --a------ C:\WINDOWS\system32\ntmssvc.dll
2006-11-08 17:14 39,424 --a------ C:\WINDOWS\system32\net.exe
2006-11-08 17:14 388,608 --a------ C:\WINDOWS\system32\mstsc.exe
2006-11-08 17:14 381,440 --a------ C:\WINDOWS\system32\lmrt.dll
2006-11-08 17:14 380,445 --a------ C:\WINDOWS\system32\expsrv.dll
2006-11-08 17:14 38,912 --a------ C:\WINDOWS\system32\audiosrv.dll
2006-11-08 17:14 38,400 --a------ C:\WINDOWS\system32\ntmsapi.dll
2006-11-08 17:14 38,400 --a------ C:\WINDOWS\system32\ntlanman.dll
2006-11-08 17:14 368,710 --a------ C:\WINDOWS\system32\msisam11.dll
2006-11-08 17:14 36,922 --a------ C:\WINDOWS\system32\imeshare.dll
2006-11-08 17:14 35,328 --a------ C:\WINDOWS\system32\dfrgsnap.dll
2006-11-08 17:14 348,195 --a------ C:\WINDOWS\system32\msjetoledb40.dll
2006-11-08 17:14 348,191 --a------ C:\WINDOWS\system32\mspbde40.dll
2006-11-08 17:14 344,095 --a------ C:\WINDOWS\system32\msxbde40.dll
2006-11-08 17:14 339,968 --a------ C:\WINDOWS\system32\mspaint.exe
2006-11-08 17:14 33,808 --a------ C:\WINDOWS\system32\ntio.sys
2006-11-08 17:14 324,608 --a------ C:\WINDOWS\system32\cmdial32.dll
2006-11-08 17:14 323,072 --a------ C:\WINDOWS\system32\msvcrt.dll
2006-11-08 17:14 32,768 --a------ C:\WINDOWS\system32\odbcad32.exe
2006-11-08 17:14 32,768 --a------ C:\WINDOWS\system32\cfgbkend.dll
2006-11-08 17:14 32,256 --a------ C:\WINDOWS\system32\mnmdd.dll
2006-11-08 17:14 319,760 --a------ C:\WINDOWS\system32\msnsspc.dll
2006-11-08 17:14 319,519 --a------ C:\WINDOWS\system32\msexcl40.dll
2006-11-08 17:14 318,464 --a------ C:\WINDOWS\system32\ippromon.dll
2006-11-08 17:14 307,712 --a------ C:\WINDOWS\system32\cscui.dll
2006-11-08 17:14 30,208 --a------ C:\WINDOWS\system32\imgutil.dll
2006-11-08 17:14 294,912 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-11-08 17:14 28,672 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-11-08 17:14 28,672 --a------ C:\WINDOWS\system32\dbnmpntw.dll
2006-11-08 17:14 272,896 --a------ C:\WINDOWS\system32\kerberos.dll
2006-11-08 17:14 271,360 --a------ C:\WINDOWS\system32\msihnd.dll
2006-11-08 17:14 266,752 --a------ C:\WINDOWS\winhlp32.exe
2006-11-08 17:14 266,752 --a------ C:\WINDOWS\system32\msctf.dll
2006-11-08 17:14 263,680 --a------ C:\WINDOWS\system32\duser.dll
2006-11-08 17:14 263,168 --a------ C:\WINDOWS\system32\devmgr.dll
2006-11-08 17:14 253,983 --a------ C:\WINDOWS\system32\mstext40.dll
2006-11-08 17:14 250,368 --a------ C:\WINDOWS\system32\mstask.dll
2006-11-08 17:14 25,600 --a------ C:\WINDOWS\system32\dfsshlex.dll
2006-11-08 17:14 245,760 --a------ C:\WINDOWS\system32\msscp.dll
2006-11-08 17:14 241,725 --a------ C:\WINDOWS\system32\msuni11.dll
2006-11-08 17:14 241,695 --a------ C:\WINDOWS\system32\msjtes40.dll
2006-11-08 17:14 240,640 --a------ C:\WINDOWS\system32\hnetcfg.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\odbcbcp.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\nmmkcert.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\dbmsvinn.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\dbmsrpcn.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\conime.exe
2006-11-08 17:14 239,616 --a------ C:\WINDOWS\system32\adsnt.dll
2006-11-08 17:14 238,592 --a------ C:\WINDOWS\system32\compatui.dll
2006-11-08 17:14 238,080 --a------ C:\WINDOWS\system32\newdev.dll
2006-11-08 17:14 236,032 --a------ C:\WINDOWS\system32\icm32.dll
2006-11-08 17:14 229,888 --a------ C:\WINDOWS\system32\msieftp.dll
2006-11-08 17:14 229,376 --a------ C:\WINDOWS\system32\MSOEACCT.DLL
2006-11-08 17:14 227,840 --a------ C:\WINDOWS\system32\dsquery.dll
2006-11-08 17:14 22,528 --a------ C:\WINDOWS\system32\mslbui.dll
2006-11-08 17:14 22,528 --a------ C:\WINDOWS\system32\at.exe
2006-11-08 17:14 219,648 --a------ C:\WINDOWS\system32\logon.scr
2006-11-08 17:14 213,023 --a------ C:\WINDOWS\system32\msltus40.dll
2006-11-08 17:14 210,944 --a------ C:\WINDOWS\system32\moricons.dll
2006-11-08 17:14 204,288 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-11-08 17:14 200,704 --a------ C:\WINDOWS\system32\odbc32.dll
2006-11-08 17:14 20,480 --a------ C:\WINDOWS\system32\dbmsadsn.dll
2006-11-08 17:14 2,890,240 --a------ C:\WINDOWS\system32\msi.dll
2006-11-08 17:14 196,096 --a------ C:\WINDOWS\system32\mobsync.dll
2006-11-08 17:14 19,456 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-11-08 17:14 19,456 --a------ C:\WINDOWS\system32\fontview.exe
2006-11-08 17:14 19,456 --a------ C:\WINDOWS\system32\ersvc.dll
2006-11-08 17:14 186,880 --a------ C:\WINDOWS\system32\certcli.dll
2006-11-08 17:14 182,784 --a------ C:\WINDOWS\system32\msutb.dll
2006-11-08 17:14 180,224 --a------ C:\WINDOWS\system32\dwwin.exe
2006-11-08 17:14 179,712 --a------ C:\WINDOWS\system32\cewmdm.dll
2006-11-08 17:14 178,688 --a------ C:\WINDOWS\system32\eudcedit.exe
2006-11-08 17:14 175,104 --a------ C:\WINDOWS\system32\mspmsp.dll
2006-11-08 17:14 168,960 --a------ C:\WINDOWS\system32\dinput8.dll
2006-11-08 17:14 165,888 --a------ C:\WINDOWS\system32\ntmsdba.dll
2006-11-08 17:14 165,376 --a------ C:\WINDOWS\system32\els.dll
2006-11-08 17:14 163,840 --a------ C:\WINDOWS\system32\mindex.dll
2006-11-08 17:14 162,816 --a------ C:\WINDOWS\system32\adsldp.dll
2006-11-08 17:14 16,384 --a------ C:\WINDOWS\system32\odbc32gt.dll
2006-11-08 17:14 16,384 --a------ C:\WINDOWS\system32\nddenb32.dll
2006-11-08 17:14 16,384 --a------ C:\WINDOWS\system32\ds32gt.dll
2006-11-08 17:14 158,720 --a------ C:\WINDOWS\system32\credui.dll
2006-11-08 17:14 154,112 --a------ C:\WINDOWS\system32\netman.dll
2006-11-08 17:14 151,552 --a------ C:\WINDOWS\system32\dinput.dll
2006-11-08 17:14 143,872 --a------ C:\WINDOWS\system32\msimtf.dll
2006-11-08 17:14 14,366 --a------ C:\WINDOWS\system32\asfsipc.dll
2006-11-08 17:14 139,776 --a------ C:\WINDOWS\system32\adsldpc.dll
2006-11-08 17:14 137,216 --a------ C:\WINDOWS\system32\ntshrui.dll
2006-11-08 17:14 135,680 --a------ C:\WINDOWS\system32\dsprop.dll
2006-11-08 17:14 131,072 --a------ C:\WINDOWS\system32\msorcl32.dll
2006-11-08 17:14 13,312 --a------ C:\WINDOWS\system32\ctfmon.exe
2006-11-08 17:14 126,976 --a------ C:\WINDOWS\system32\msdart.dll
2006-11-08 17:14 126,976 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-11-08 17:14 124,928 --a------ C:\WINDOWS\system32\dssenh.dll
2006-11-08 17:14 123,904 --a------ C:\WINDOWS\system32\imapi.exe
2006-11-08 17:14 122,880 --a------ C:\WINDOWS\system32\odbcconf.dll
2006-11-08 17:14 12,288 --a------ C:\WINDOWS\system32\mscpx32r.dll
2006-11-08 17:14 116,736 --a------ C:\WINDOWS\system32\mplay32.exe
2006-11-08 17:14 115,712 --a------ C:\WINDOWS\system32\apphelp.dll
2006-11-08 17:14 115,200 --a------ C:\WINDOWS\system32\net1.exe
2006-11-08 17:14 114,176 --a------ C:\WINDOWS\system32\input.dll
2006-11-08 17:14 113,664 --a------ C:\WINDOWS\system32\msvfw32.dll
2006-11-08 17:14 113,152 --a------ C:\WINDOWS\system32\idq.dll
2006-11-08 17:14 113,152 --a------ C:\WINDOWS\system32\dfrgui.dll
2006-11-08 17:14 112,128 --a------ C:\WINDOWS\system32\ntmarta.dll
2006-11-08 17:14 105,984 --a------ C:\WINDOWS\system32\netdde.exe
2006-11-08 17:14 103,936 --a------ C:\WINDOWS\system32\imm32.dll
2006-11-08 17:14 103,424 --a------ C:\WINDOWS\system32\dgnet.dll
2006-11-08 17:14 10,240 --a------ C:\WINDOWS\system32\msrle32.dll
2006-11-08 17:14 10,240 --a------ C:\WINDOWS\system32\localui.dll
2006-11-08 17:14 1,622,528 --a------ C:\WINDOWS\system32\netshell.dll
2006-11-08 17:14 1,503,262 --a------ C:\WINDOWS\system32\msjet40.dll
2006-11-08 17:14 1,128,960 --a------ C:\WINDOWS\system32\mmcndmgr.dll
2006-11-08 17:14 1,004,032 --a------ C:\WINDOWS\explorer.exe
2006-11-08 17:13 98,304 --a------ C:\WINDOWS\system32\oleprn.dll
2006-11-08 17:13 91,136 --a------ C:\WINDOWS\system32\rastls.dll
2006-11-08 17:13 9,216 --a------ C:\WINDOWS\system32\wuauserv.dll
2006-11-08 17:13 88,064 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2006-11-08 17:13 87,304 --a------ C:\WINDOWS\system32\rdpdd.dll
2006-11-08 17:13 86,528 --a------ C:\WINDOWS\system32\wlnotify.dll
2006-11-08 17:13 86,016 --a------ C:\WINDOWS\system32\xactsrv.dll
2006-11-08 17:13 82,944 --a------ C:\WINDOWS\system32\smlogsvc.exe
2006-11-08 17:13 82,944 --a------ C:\WINDOWS\system32\psbase.dll
2006-11-08 17:13 81,920 --a------ C:\WINDOWS\system32\trkwks.dll
2006-11-08 17:13 8,192 --a------ C:\WINDOWS\system32\scrnsave.scr
2006-11-08 17:13 77,824 --a------ C:\WINDOWS\system32\wmpstub.exe
2006-11-08 17:13 77,824 --a------ C:\WINDOWS\system32\wmpshell.dll
2006-11-08 17:13 75,912 --a------ C:\WINDOWS\system32\rdpwsx.dll
2006-11-08 17:13 74,240 --a------ C:\WINDOWS\system32\rtcshare.exe
2006-11-08 17:13 72,192 --a------ C:\WINDOWS\system32\uniime.dll
2006-11-08 17:13 71,168 --a------ C:\WINDOWS\system32\sdbinst.exe
2006-11-08 17:13 686,080 --a------ C:\WINDOWS\system32\opengl32.dll
2006-11-08 17:13 667,648 --a------ C:\WINDOWS\system32\ss3dfo.scr
2006-11-08 17:13 66,560 --a------ C:\WINDOWS\system32\spoolss.dll
2006-11-08 17:13 66,048 --a------ C:\WINDOWS\system32\sigverif.exe
2006-11-08 17:13 638,976 --a------ C:\WINDOWS\system32\sstext3d.scr
2006-11-08 17:13 63,488 --a------ C:\WINDOWS\system32\srclient.dll
2006-11-08 17:13 62,976 --a------ C:\WINDOWS\system32\shgina.dll
2006-11-08 17:13 61,952 --a------ C:\WINDOWS\system32\webclnt.dll
2006-11-08 17:13 61,952 --a------ C:\WINDOWS\system32\sti.dll
2006-11-08 17:13 61,440 --a------ C:\WINDOWS\system32\odbccu32.dll
2006-11-08 17:13 60,416 --a------ C:\WINDOWS\system32\wextract.exe
2006-11-08 17:13 60,416 --a------ C:\WINDOWS\system32\shimeng.dll
2006-11-08 17:13 6,144 --a------ C:\WINDOWS\system32\sensapi.dll
2006-11-08 17:13 58,880 --a------ C:\WINDOWS\system32\pautoenr.dll
2006-11-08 17:13 57,856 --a------ C:\WINDOWS\system32\raschap.dll
2006-11-08 17:13 569,344 --a------ C:\WINDOWS\system32\sspipes.scr
2006-11-08 17:13 56,832 --a------ C:\WINDOWS\system32\wzcdlg.dll
2006-11-08 17:13 56,320 --a------ C:\WINDOWS\system32\remotepg.dll
2006-11-08 17:13 534,016 --a------ C:\WINDOWS\system32\spider.exe
2006-11-08 17:13 53,248 --a------ C:\WINDOWS\system32\packager.exe
2006-11-08 17:13 52,224 --a------ C:\WINDOWS\system32\secur32.dll
2006-11-08 17:13 51,200 --a------ C:\WINDOWS\system32\wmerrenu.dll
2006-11-08 17:13 48,640 --a------ C:\WINDOWS\system32\vdmredir.dll
2006-11-08 17:13 48,128 --a------ C:\WINDOWS\system32\winsta.dll
2006-11-08 17:13 48,128 --a------ C:\WINDOWS\system32\reg.exe
2006-11-08 17:13 479,261 --a------ C:\WINDOWS\system32\vbscript.dll
2006-11-08 17:13 47,616 --a------ C:\WINDOWS\system32\utilman.exe
2006-11-08 17:13 446,464 --a------ C:\WINDOWS\system32\wmvdmoe.dll
2006-11-08 17:13 44,032 --a------ C:\WINDOWS\system32\regapi.dll
2006-11-08 17:13 44,032 --a------ C:\WINDOWS\system32\rdpclip.exe
2006-11-08 17:13 43,008 --a------ C:\WINDOWS\system32\ssdpsrv.dll
2006-11-08 17:13 423,424 --a------ C:\WINDOWS\system32\riched20.dll
2006-11-08 17:13 420,864 --a------ C:\WINDOWS\system32\shimgvw.dll
2006-11-08 17:13 409,088 --a------ C:\WINDOWS\system32\vssapi.dll
2006-11-08 17:13 40,960 --a------ C:\WINDOWS\system32\tscupgrd.exe
2006-11-08 17:13 385,024 --a------ C:\WINDOWS\system32\sqlsrv32.dll
2006-11-08 17:13 384,000 --a------ C:\WINDOWS\system32\themeui.dll
2006-11-08 17:13 38,912 --a------ C:\WINDOWS\system32\wsnmp32.dll
2006-11-08 17:13 364,544 --a------ C:\WINDOWS\system32\ssflwbox.scr
2006-11-08 17:13 36,352 --a------ C:\WINDOWS\system32\sens.dll
2006-11-08 17:13 34,304 --a------ C:\WINDOWS\system32\rcimlby.exe
2006-11-08 17:13 339,456 --a------ C:\WINDOWS\system32\usp10.dll
2006-11-08 17:13 334,848 --a------ C:\WINDOWS\system32\smlogcfg.dll
2006-11-08 17:13 33,280 --a------ C:\WINDOWS\system32\shmgrate.exe
2006-11-08 17:13 32,256 --a------ C:\WINDOWS\system32\umandlg.dll
2006-11-08 17:13 316,416 --a------ C:\WINDOWS\system32\zipfldr.dll
2006-11-08 17:13 316,416 --a------ C:\WINDOWS\system32\wiaservc.dll
2006-11-08 17:13 311,327 --a------ C:\WINDOWS\system32\wmv8dmod.dll
2006-11-08 17:13 3,338 --a------ C:\WINDOWS\system32\redir.exe
2006-11-08 17:13 297,984 --a------ C:\WINDOWS\system32\scesrv.dll
2006-11-08 17:13 296,448 --a------ C:\WINDOWS\system32\wmstream.dll
2006-11-08 17:13 27,136 --a------ C:\WINDOWS\system32\ssdpapi.dll
2006-11-08 17:13 258,048 --a------ C:\WINDOWS\system32\webcheck.dll
2006-11-08 17:13 254,976 --a------ C:\WINDOWS\system32\pdh.dll
2006-11-08 17:13 253,952 --a------ C:\WINDOWS\system32\wmpcd.dll
2006-11-08 17:13 251,904 --a------ C:\WINDOWS\system32\strmdll.dll
2006-11-08 17:13 247,808 --a------ C:\WINDOWS\system32\wow32.dll
2006-11-08 17:13 24,064 --a------ C:\WINDOWS\system32\skeys.exe
2006-11-08 17:13 233,984 --a------ C:\WINDOWS\system32\tapisrv.dll
2006-11-08 17:13 231,424 --a------ C:\WINDOWS\system32\upnpui.dll
2006-11-08 17:13 22,528 --a------ C:\WINDOWS\system32\slayerxp.dll
2006-11-08 17:13 22,528 --a------ C:\WINDOWS\system32\shfolder.dll
2006-11-08 17:13 22,016 --a------ C:\WINDOWS\system32\udhisapi.dll
2006-11-08 17:13 212,480 --a------ C:\WINDOWS\system32\osk.exe
2006-11-08 17:13 203,264 --a------ C:\WINDOWS\system32\uxtheme.dll
2006-11-08 17:13 200,192 --a------ C:\WINDOWS\system32\termsrv.dll
2006-11-08 17:13 20,992 --a------ C:\WINDOWS\system32\setup.exe
2006-11-08 17:13 193,536 --a------ C:\WINDOWS\system32\rasppp.dll
2006-11-08 17:13 19,456 --a------ C:\WINDOWS\system32\ssmarque.scr
2006-11-08 17:13 18,944 --a------ C:\WINDOWS\system32\ssbezier.scr
2006-11-08 17:13 174,592 --a------ C:\WINDOWS\system32\scecli.dll
2006-11-08 17:13 172,664 --a------ C:\WINDOWS\system32\xenroll.dll
2006-11-08 17:13 171,520 --a------ C:\WINDOWS\system32\winmm.dll
2006-11-08 17:13 171,008 --a------ C:\WINDOWS\system32\sccsccp.dll
2006-11-08 17:13 17,408 --a------ C:\WINDOWS\system32\wtsapi32.dll
2006-11-08 17:13 17,408 --a------ C:\WINDOWS\system32\ssmyst.scr
2006-11-08 17:13 17,408 --a------ C:\WINDOWS\system32\psapi.dll
2006-11-08 17:13 169,984 --a------ C:\WINDOWS\system32\sccbase.dll
2006-11-08 17:13 168,448 --a------ C:\WINDOWS\system32\wldap32.dll
2006-11-08 17:13 165,376 --a------ C:\WINDOWS\system32\w32time.dll
2006-11-08 17:13 165,376 --a------ C:\WINDOWS\system32\tapi32.dll
2006-11-08 17:13 164,864 --a------ C:\WINDOWS\system32\upnphost.dll
2006-11-08 17:13 16,896 --a------ C:\WINDOWS\system32\snmpapi.dll
2006-11-08 17:13 16,384 --a------ C:\WINDOWS\system32\watchdog.sys
2006-11-08 17:13 16,384 --a------ C:\WINDOWS\system32\ups.exe
2006-11-08 17:13 16,384 --a------ C:\WINDOWS\system32\ping.exe
2006-11-08 17:13 159,232 --a------ C:\WINDOWS\system32\schedsvc.dll
2006-11-08 17:13 158,720 --a------ C:\WINDOWS\system32\srsvc.dll
2006-11-08 17:13 147,456 --a------ C:\WINDOWS\system32\odbctrac.dll
2006-11-08 17:13 14,848 --a------ C:\WINDOWS\system32\rdpsnd.dll
2006-11-08 17:13 135,680 --a------ C:\WINDOWS\system32\rdchost.dll
2006-11-08 17:13 133,632 --a------ C:\WINDOWS\system32\rsaenh.dll
2006-11-08 17:13 133,120 --a------ C:\WINDOWS\system32\sfc_os.dll
2006-11-08 17:13 130,560 --a------ C:\WINDOWS\system32\sti_ci.dll
2006-11-08 17:13 13,824 --a------ C:\WINDOWS\system32\rassapi.dll
2006-11-08 17:13 13,312 --a------ C:\WINDOWS\system32\ssstars.scr
2006-11-08 17:13 128,512 --a------ C:\WINDOWS\system32\taskmgr.exe
2006-11-08 17:13 124,928 --a------ C:\WINDOWS\system32\webvw.dll
2006-11-08 17:13 120,320 --a------ C:\WINDOWS\system32\upnp.dll
2006-11-08 17:13 12,800 --a------ C:\WINDOWS\system32\runonce.exe
2006-11-08 17:13 12,288 --a------ C:\WINDOWS\system32\rdsaddin.exe
2006-11-08 17:13 12,288 --a------ C:\WINDOWS\system32\odbcp32r.dll
2006-11-08 17:13 119,808 --a------ C:\WINDOWS\system32\wiadss.dll
2006-11-08 17:13 118,784 --a------ C:\WINDOWS\system32\wmsdmoe.dll
2006-11-08 17:13 117,760 --a------ C:\WINDOWS\system32\stobject.dll
2006-11-08 17:13 116,224 --a------ C:\WINDOWS\system32\shsvcs.dll
2006-11-08 17:13 11,776 --a------ C:\WINDOWS\system32\sigtab.dll
2006-11-08 17:13 109,568 --a------ C:\WINDOWS\system32\offfilt.dll
2006-11-08 17:13 107,008 --a------ C:\WINDOWS\system32\umpnpmgr.dll
2006-11-08 17:13 106,496 --a------ C:\WINDOWS\system32\url.dll
2006-11-08 17:13 10,752 --a------ C:\WINDOWS\system32\tracert.exe
2006-11-08 17:13 1,998,848 --a------ C:\WINDOWS\system32\wmploc.dll
2006-11-08 17:13 1,425,680 --a------ C:\WINDOWS\system32\wmpui.dll
2006-11-08 17:13 1,350,144 --a------ C:\WINDOWS\system32\query.dll
2006-11-08 17:13 1,298,432 --a------ C:\WINDOWS\system32\wmpcore.dll
2006-11-08 17:13 1,157,632 --a------ C:\WINDOWS\system32\sfcfiles.dll
2006-11-07 23:56 77,824 --a------ C:\WINDOWS\system32\MSBIND.DLL
2006-11-07 23:56 299,008 --a------ C:\WINDOWS\system32\MSDBRPTR.DLL
2006-11-07 20:20 2,894 --a------ C:\WINDOWS\system32\tmp.reg
2006-11-07 19:25 30,720 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
2006-11-07 04:02 995,944 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2006-11-07 04:02 919,040 --a------ C:\WINDOWS\system32\wmnetmgr.dll
2006-11-07 04:02 898,664 --a------ C:\WINDOWS\system32\wmspdmoe.dll
2006-11-07 04:02 81,408 --a------ C:\WINDOWS\system32\logagent.exe
2006-11-07 04:02 807,528 --a------ C:\WINDOWS\system32\wmvdmod.dll
2006-11-07 04:02 752,232 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-11-07 04:02 675,944 --a------ C:\WINDOWS\system32\wmadmoe.dll
2006-11-07 04:02 6,656 --a------ C:\WINDOWS\system32\laprxy.dll
2006-11-07 04:02 486,504 --a------ C:\WINDOWS\system32\wmspdmod.dll
2006-11-07 04:02 410,216 --a------ C:\WINDOWS\system32\wmadmod.dll
2006-11-07 04:02 384,512 --a------ C:\WINDOWS\system32\mp4sdmod.dll
2006-11-07 04:02 316,008 --a------ C:\WINDOWS\system32\mp43dmod.dll
2006-11-07 04:02 248,424 --a------ C:\WINDOWS\system32\mpg4dmod.dll
2006-11-07 04:02 221,184 --a------ C:\WINDOWS\system32\qasf.dll
2006-11-07 04:02 217,600 --a------ C:\WINDOWS\system32\wmasf.dll
2006-11-07 04:02 2,050,664 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-11-07 04:02 143,360 --a------ C:\WINDOWS\system32\wmidx.dll
2006-11-07 04:02 1,108,584 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2006-11-07 04:01 82,432 --a------ C:\WINDOWS\system32\drmstor.dll
2006-11-07 04:01 679,936 --a------ C:\WINDOWS\system32\drmv2clt.dll
2006-11-07 04:01 301,160 --a------ C:\WINDOWS\system32\drmclien.dll
2006-11-07 04:01 261,224 --a------ C:\WINDOWS\system32\msnetobj.dll
2006-11-07 04:01 232,960 --a------ C:\WINDOWS\system32\blackbox.dll
2006-11-06 20:32 663,040 --a------ C:\WINDOWS\is-E5BNO.exe
2006-11-06 20:28 658,432 --a------ C:\WINDOWS\is-H9FFE.exe
2006-11-06 00:36 127,208 --a------ C:\WINDOWS\system32\mucltui.dll
2006-11-05 19:48 65,856 --a------ C:\WINDOWS\system32\drivers\snapman.sys
2006-11-05 19:48 37,888 --a------ C:\WINDOWS\system32\setupnt.dll
2006-11-05 19:48 367,104 --a------ C:\WINDOWS\system32\autoprnt.exe
2006-11-05 19:48 102,400 --a------ C:\WINDOWS\system32\snapapi.dll
2006-11-05 19:44 3,252 --------- C:\WINDOWS\system32\drivers\PQNTDRV.SYS
2006-11-05 19:44 1,262,956 --------- C:\WINDOWS\system32\XMNT2001.EXE
2006-11-05 19:17 7,168 --a------ C:\WINDOWS\system32\updcrl.exe
2006-11-05 19:17 64,512 --a------ C:\WINDOWS\system32\acctres.dll
2006-11-05 19:17 47,616 --a------ C:\WINDOWS\system32\INETRES.DLL
2006-11-05 19:14 50,688 --a------ C:\WINDOWS\system32\setupwbv.dll
2006-11-05 19:02 94,282 --a------ C:\WINDOWS\system32\msencode.dll
2006-11-05 19:02 87,552 --a------ C:\WINDOWS\system32\occache.dll
2006-11-05 19:02 60,416 --a------ C:\WINDOWS\system32\msratelc.dll
2006-11-05 19:02 577,024 --a------ C:\WINDOWS\system32\mlang.dll
2006-11-05 19:02 548,864 --a------ C:\WINDOWS\system32\shdoclc.dll
2006-11-05 19:02 44,032 --a------ C:\WINDOWS\system32\MSIDENT.DLL
2006-11-05 19:02 24,064 --a------ C:\WINDOWS\system32\mshta.exe
2006-11-05 19:02 14,848 --a------ C:\WINDOWS\system32\msidntld.dll
2006-11-05 19:01 98,304 --a------ C:\WINDOWS\system32\actxprxy.dll
2006-11-05 19:01 110,592 --a------ C:\WINDOWS\system32\inetcplc.dll
2006-11-05 18:55 45,632 --a------ C:\WINDOWS\system32\cliconfg.exe
2006-11-05 18:55 44,032 --a------ C:\WINDOWS\system32\msxml3r.dll
2006-11-05 18:55 28,672 --a------ C:\WINDOWS\system32\dbmsgnet.dll
2006-11-05 18:55 180,800 --a------ C:\WINDOWS\system32\sqlunirl.dll
2006-11-05 18:55 127,552 --a------ C:\WINDOWS\system32\cliconfg.dll
2006-11-05 18:54 90,112 --a------ C:\WINDOWS\system32\odbcint.dll
2006-11-05 18:54 4,656 --a------ C:\WINDOWS\system32\ds16gt.dll
2006-11-05 18:54 36,864 --a------ C:\WINDOWS\system32\mscpxl32.dll
2006-11-05 18:54 26,224 --a------ C:\WINDOWS\system32\odbc16gt.dll
2006-11-05 18:54 20,480 --a------ C:\WINDOWS\system32\msorc32r.dll
2006-11-05 16:41 712,704 -ra------ C:\WINDOWS\system32\a3d.dll
2006-11-05 16:41 57,856 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2006-11-05 16:41 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2006-11-05 16:41 134,272 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2006-11-05 15:53 35,840 --a------ C:\WINDOWS\system32\drivers\AFS2K.SYS
2006-11-05 15:06 24,960 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2006-11-05 15:06 21,456 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2006-11-05 15:06 14,208 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2006-11-05 15:05 28,160 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2006-11-05 12:59 25,773 --a------ C:\WINDOWS\system32\drivers\regguard.sys
2006-11-05 12:59 18,432 --a------ C:\WINDOWS\system32\Partizan.exe
2006-11-05 12:53 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2006-11-05 12:43 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-11-05 03:10 974,336 --a------ C:\WINDOWS\system32\msdtctm.dll
2006-11-05 03:10 97,280 --a------ C:\WINDOWS\system32\txflog.dll
2006-11-05 03:10 64,512 --a------ C:\WINDOWS\system32\colbact.dll
2006-11-05 03:10 594,944 --a------ C:\WINDOWS\system32\catsrvut.dll
2006-11-05 03:10 535,552 --a------ C:\WINDOWS\system32\rpcrt4.dll
2006-11-05 03:10 499,712 --a------ C:\WINDOWS\system32\clbcatq.dll
2006-11-05 03:10 499,200 --a------ C:\WINDOWS\system32\comuid.dll
2006-11-05 03:10 368,640 --a------ C:\WINDOWS\system32\msdtcprx.dll
2006-11-05 03:10 263,680 --a------ C:\WINDOWS\system32\rpcss.dll
2006-11-05 03:10 226,816 --a------ C:\WINDOWS\system32\es.dll
2006-11-05 03:10 225,280 --a------ C:\WINDOWS\system32\catsrv.dll
2006-11-05 03:10 150,528 --a------ C:\WINDOWS\system32\msdtcuiu.dll
2006-11-05 03:10 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2006-11-05 03:10 1,194,496 --a------ C:\WINDOWS\system32\comsvcs.dll
2006-11-05 03:10 1,183,744 --a------ C:\WINDOWS\system32\ole32.dll
2006-11-05 03:09 593,408 --a------ C:\WINDOWS\system32\h323msp.dll
2006-11-05 03:09 548,352 --a------ C:\WINDOWS\system32\rtcdll.dll
2006-11-05 03:09 439,808 --a------ C:\WINDOWS\system32\ipnathlp.dll
2006-11-05 03:09 36,864 --a------ C:\WINDOWS\system32\mf3216.dll
2006-11-05 03:06 68,608 --a------ C:\WINDOWS\system32\locator.exe
2006-11-05 03:06 37,888 --a------ C:\WINDOWS\system32\hhsetup.dll
2006-11-05 03:06 143,872 --a------ C:\WINDOWS\system32\itircl.dll
2006-11-05 03:06 122,368 --a------ C:\WINDOWS\system32\itss.dll
2006-11-05 03:06 10,752 --a------ C:\WINDOWS\hh.exe
2006-11-05 03:04 226,816 --a------ C:\WINDOWS\system32\srrstr.dll
2006-11-05 03:01 125,440 --a------ C:\WINDOWS\system32\shmedia.dll
2006-11-05 02:34 3,968 --a------ C:\WINDOWS\system32\drivers\avgclean.sys
2006-11-05 01:44 98,304 --a------ C:\WINDOWS\system32\msir3jp.dll
2006-11-05 01:44 838,144 --a------ C:\WINDOWS\system32\chtbrkr.dll
2006-11-05 01:44 70,656 --a------ C:\WINDOWS\system32\korwbrkr.dll
2006-11-05 01:44 1,677,824 --a------ C:\WINDOWS\system32\chsbrkr.dll
2006-11-05 01:43 9,216 --a------ C:\WINDOWS\system32\kbdnecAT.dll
2006-11-05 01:43 8,704 --a------ C:\WINDOWS\system32\kbdjpn.dll
2006-11-05 01:43 8,192 --a------ C:\WINDOWS\system32\kbdkor.dll
2006-11-05 01:43 7,680 --a------ C:\WINDOWS\system32\kbdnecNT.dll
2006-11-05 01:43 7,168 --a------ C:\WINDOWS\system32\kbdnec95.dll
2006-11-05 01:43 7,168 --a------ C:\WINDOWS\system32\kbdibm02.dll
2006-11-05 01:43 7,168 --a------ C:\WINDOWS\system32\f3ahvoas.dll
2006-11-05 01:43 6,656 --a------ C:\WINDOWS\system32\kbdlk41a.dll
2006-11-05 01:43 6,656 --a------ C:\WINDOWS\system32\c_is2022.dll
2006-11-05 01:43 6,144 -ra------ C:\WINDOWS\system32\kbdth3.dll
2006-11-05 01:43 6,144 -ra------ C:\WINDOWS\system32\kbdth2.dll
2006-11-05 01:43 6,144 -ra------ C:\WINDOWS\system32\kbdinpun.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbdlk41j.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbdax2.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd106n.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd106.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101c.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101b.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101a.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\ftlx041e.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdvntc.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdurdu.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdth1.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdth0.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdsyr2.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdsyr1.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdintel.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdintam.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinmar.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinkan.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinhin.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinguj.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdindev.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdheb.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdfa.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbddiv2.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbddiv1.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbda3.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbda2.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbda1.dll
2006-11-05 01:43 5,632 --a------ C:\WINDOWS\system32\kbdusa.dll
2006-11-05 01:43 5,632 --a------ C:\WINDOWS\system32\kbd103.dll
2006-11-05 01:43 5,120 -ra------ C:\WINDOWS\system32\kbdgeo.dll
2006-11-05 01:43 5,120 -ra------ C:\WINDOWS\system32\kbdarmw.dll
2006-11-05 01:43 5,120 -ra------ C:\WINDOWS\system32\kbdarme.dll
2006-11-05 01:43 24,064 --a------ C:\WINDOWS\system32\msxml3a.dll
2006-11-05 01:43 218,112 --a------ C:\WINDOWS\system32\c_g18030.dll
2006-11-05 01:43 185,344 --a------ C:\WINDOWS\system32\Thawbrkr.dll
2006-11-05 01:43 105,168 --a------ C:\WINDOWS\NSUninst.exe
2006-11-05 01:43 10,752 --a------ C:\WINDOWS\system32\c_iscii.dll
2006-11-05 01:42 9,759 --a------ C:\WINDOWS\system32\HSF_INST.dll
2006-11-05 01:42 73,279 --a------ C:\WINDOWS\system32\drivers\HSF_SPKP.sys
2006-11-05 01:42 67,167 --a------ C:\WINDOWS\system32\drivers\HSF_BSC2.sys
2006-11-05 01:42 57,471 --a------ C:\WINDOWS\system32\drivers\HSF_SAMP.sys
2006-11-05 01:42 56,576 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2006-11-05 01:42 542,879 --a------ C:\WINDOWS\system32\drivers\HSF_MSFT.sys
2006-11-05 01:42 50,751 --a------ C:\WINDOWS\system32\drivers\HSF_TONE.sys
2006-11-05 01:42 488,383 --a------ C:\WINDOWS\system32\drivers\HSF_V124.sys
2006-11-05 01:42 44,863 --a------ C:\WINDOWS\system32\drivers\HSF_SOAR.sys
2006-11-05 01:42 391,199 --a------ C:\WINDOWS\system32\drivers\HSF_K56K.sys
2006-11-05 01:42 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
2006-11-05 01:42 289,887 --a------ C:\WINDOWS\system32\drivers\HSF_FALL.sys
2006-11-05 01:42 199,711 --a------ C:\WINDOWS\system32\drivers\HSF_FAXX.sys
2006-11-05 01:42 150,239 --a------ C:\WINDOWS\system32\drivers\HSF_AMOS.sys
2006-11-05 01:42 115,807 --a------ C:\WINDOWS\system32\drivers\HSF_FSKS.sys
2006-11-05 01:42 105,168 --a------ C:\WINDOWS\GREUninstall.exe
2006-11-05 01:41 67,072 --a------ C:\WINDOWS\system32\usbui.dll
2006-11-05 01:40 85,020 --a------ C:\WINDOWS\system32\dgsetup.dll
2006-11-05 01:40 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll
2006-11-05 01:40 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll
2006-11-05 01:40 66,048 --a------ C:\WINDOWS\NOTEPAD.EXE
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdycc.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbduzb.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdur.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdtat.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdru1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdru.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdkaz.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdbu.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdblr.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdaze.dll
2006-11-05 01:40 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2006-11-05 01:40 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
2006-11-05 01:40 15,360 --a------ C:\WINDOWS\TASKMAN.EXE
2006-11-05 01:40 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2006-11-05 01:40 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
2006-11-05 01:40 10,496 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2006-11-05 01:32 4,141,056 C:\WINDOWSeyeQ Screen Saver.scr
2006-11-05 01:19 20,640 --------- C:\WINDOWS\system32\drivers\PxHelp20.sys
2006-11-05 01:19 109,568 --------- C:\WINDOWS\system32\pxinsi64.exe
2006-11-05 01:19 108,544 --------- C:\WINDOWS\system32\pxcpyi64.exe
2006-11-05 01:06 7,680 --------- C:\WINDOWS\system32\bitsprx2.dll
2006-11-05 01:06 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2006-11-05 01:06 331,776 --a------ C:\WINDOWS\system32\winhttp.dll
2006-11-05 01:06 17,408 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2006-11-05 01:03 465,176 --a------ C:\WINDOWS\system32\wuapi.dll
2006-11-05 01:03 41,240 --a------ C:\WINDOWS\system32\wups.dll
2006-11-05 01:03 194,328 --a------ C:\WINDOWS\system32\wuaueng1.dll
2006-11-05 01:03 18,200 --a------ C:\WINDOWS\system32\wups2.dll
2006-11-05 01:03 172,312 --a------ C:\WINDOWS\system32\wuauclt1.exe
2006-11-05 01:03 127,256 --a------ C:\WINDOWS\system32\wucltui.dll
2006-11-05 01:01 86,016 --a------ C:\WINDOWS\unvise32qt.exe
2006-11-05 01:01 28,672 --a------ C:\WINDOWS\system32\qttask.exe
2006-11-05 00:41 816,672 --a------ C:\WINDOWS\system32\drivers\avg7core.sys
2006-11-05 00:41 28,416 --a------ C:\WINDOWS\system32\drivers\avg7rsxp.sys
2006-11-05 00:36 5,248 --a------ C:\WINDOWS\system32\drivers\d347prt.sys
2006-11-05 00:36 155,136 --a------ C:\WINDOWS\system32\drivers\d347bus.sys
2006-11-04 22:58 5,120 -ra------ C:\WINDOWS\system32\hccoin.dll
2006-11-04 22:58 19,072 -ra------ C:\WINDOWS\system32\drivers\usbehci.sys
2006-11-04 22:57 77,440 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys
2006-11-04 22:57 56,832 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2006-11-04 22:57 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2006-11-04 22:57 50,048 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
2006-11-04 22:57 5,888 --a------ C:\WINDOWS\system32\drivers\splitter.sys
2006-11-04 22:57 2,816 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2006-11-04 22:57 159,360 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
2006-11-04 22:57 142,208 --a------ C:\WINDOWS\system32\drivers\aec.sys
2006-11-04 22:56 712,704 -ra------ C:\WINDOWS\system32\Audio3D.dll
2006-11-04 22:56 414,543 -ra------ C:\WINDOWS\system32\drivers\cmuda.sys
2006-11-04 22:56 28,672 -ra------ C:\WINDOWS\system32\udaprop.dll
2006-11-04 22:47 98,816 --a------ C:\WINDOWS\system32\dmstyle.dll
2006-11-04 22:47 974,848 --a------ C:\WINDOWS\system32\dxdiag.exe
2006-11-04 22:47 83,968 --a------ C:\WINDOWS\system32\drivers\nabtsfec.sys
2006-11-04 22:47 80,896 --a------ C:\WINDOWS\system32\dpvsetup.exe
2006-11-04 22:47 8,192 --a------ C:\WINDOWS\system32\d3d8thk.dll
2006-11-04 22:47 797,184 --a------ C:\WINDOWS\system32\d3dim700.dll
2006-11-04 22:47 79,360 --a------ C:\WINDOWS\system32\dpwsockx.dll
2006-11-04 22:47 77,824 --a------ C:\WINDOWS\system32\dpmodemx.dll
2006-11-04 22:47 76,800 --a------ C:\WINDOWS\system32\dmscript.dll
2006-11-04 22:47 733,184 --a------ C:\WINDOWS\system32\qedwipes.dll
2006-11-04 22:47 723,968 --a------ C:\WINDOWS\system32\dpnet.dll
2006-11-04 22:47 7,424 --a------ C:\WINDOWS\system32\drivers\mskssrv.sys
2006-11-04 22:47 68,096 --a------ C:\WINDOWS\system32\dpnhupnp.dll
2006-11-04 22:47 64,512 --a------ C:\WINDOWS\system32\amstream.dll
2006-11-04 22:47 602,624 --a------ C:\WINDOWS\system32\dx7vb.dll
2006-11-04 22:47 590,336 --a------ C:\WINDOWS\system32\d3dramp.dll
2006-11-04 22:47 58,368 --a------ C:\WINDOWS\system32\dmcompos.dll
2006-11-04 22:47 52,096 --a------ C:\WINDOWS\system32\drivers\msdv.sys
2006-11-04 22:47 5,504 --a------ C:\WINDOWS\system32\drivers\mstee.sys
2006-11-04 22:47 5,248 --a------ C:\WINDOWS\system32\drivers\mspclock.sys
2006-11-04 22:47 491,520 --a------ C:\WINDOWS\system32\dsdmoprp.dll
2006-11-04 22:47 48,512 --a------ C:\WINDOWS\system32\drivers\stream.sys
2006-11-04 22:47 470,528 --a------ C:\WINDOWS\system32\qdvd.dll
2006-11-04 22:47 47,616 --a------ C:\WINDOWS\system32\d3dxof.dll
2006-11-04 22:47 47,104 --a------ C:\WINDOWS\system32\wstdecod.dll
2006-11-04 22:47 467,968 --a------ C:\WINDOWS\system32\diactfrm.dll
2006-11-04 22:47 46,592 --a------ C:\WINDOWS\system32\dxdllreg.exe
2006-11-04 22:47 44,032 --a------ C:\WINDOWS\system32\dimap.dll
2006-11-04 22:47 436,224 --a------ C:\WINDOWS\system32\d3dim.dll
2006-11-04 22:47 4,608 --a------ C:\WINDOWS\system32\drivers\mspqm.sys
2006-11-04 22:47 4,096 --a------ C:\WINDOWS\system32\drivers\swenum.sys
2006-11-04 22:47 381,952 --a------ C:\WINDOWS\system32\dsound.dll
2006-11-04 22:47 381,952 --a------ C:\WINDOWS\system32\dpvoice.dll
2006-11-04 22:47 354,816 --a------ C:\WINDOWS\system32\psisdecd.dll
2006-11-04 22:47 350,208 --a------ C:\WINDOWS\system32\d3drm.dll
2006-11-04 22:47 34,816 --a------ C:\WINDOWS\system32\d3dpmesh.dll
2006-11-04 22:47 34,304 --a------ C:\WINDOWS\system32\mciqtz32.dll
2006-11-04 22:47 33,280 --a------ C:\WINDOWS\system32\dmloader.dll
2006-11-04 22:47 324,096 --a------ C:\WINDOWS\system32\mswebdvd.dll
2006-11-04 22:47 32,768 --a------ C:\WINDOWS\system32\dpnhpast.dll
2006-11-04 22:47 316,928 --a------ C:\WINDOWS\system32\qdv.dll
2006-11-04 22:47 31,744 --a------ C:\WINDOWS\system32\pid.dll
2006-11-04 22:47 3,072 --a------ C:\WINDOWS\system32\dpnlobby.dll
2006-11-04 22:47 3,072 --a------ C:\WINDOWS\system32\dpnaddr.dll
2006-11-04 22:47 292,864 --a------ C:\WINDOWS\system32\ddraw.dll
2006-11-04 22:47 28,160 --a------ C:\WINDOWS\system32\dplaysvr.exe
2006-11-04 22:47 27,136 --a------ C:\WINDOWS\system32\dmband.dll
2006-11-04 22:47 257,024 --a------ C:\WINDOWS\system32\qcap.dll
2006-11-04 22:47 24,064 --a------ C:\WINDOWS\system32\ddrawex.dll
2006-11-04 22:47 230,400 --a------ C:\WINDOWS\system32\dplayx.dll
2006-11-04 22:47 223,232 --a------ C:\WINDOWS\system32\gcdef.dll
2006-11-04 22:47 19,968 --a------ C:\WINDOWS\system32\dpvacm.dll
2006-11-04 22:47 186,880 --a------ C:\WINDOWS\system32\dsdmo.dll
2006-11-04 22:47 181,248 --a------ C:\WINDOWS\system32\dmime.dll
2006-11-04 22:47 18,944 --a------ C:\WINDOWS\system32\encapi.dll
2006-11-04 22:47 18,688 --a------ C:\WINDOWS\system32\drivers\wstcodec.sys
2006-11-04 22:47 18,432 --a------ C:\WINDOWS\system32\dswave.dll
2006-11-04 22:47 16,896 --a------ C:\WINDOWS\system32\msyuv.dll
2006-11-04 22:47 16,896 --a------ C:\WINDOWS\system32\dpnsvr.exe
2006-11-04 22:47 16,384 --a------ C:\WINDOWS\system32\drivers\ccdecode.sys
2006-11-04 22:47 15,104 --a------ C:\WINDOWS\system32\drivers\mpe.sys
2006-11-04 22:47 14,976 --a------ C:\WINDOWS\system32\drivers\streamip.sys
2006-11-04 22:47 132,608 --a------ C:\WINDOWS\system32\devenum.dll
2006-11-04 22:47 130,304 --a------ C:\WINDOWS\system32\drivers\ks.sys
2006-11-04 22:47 13,312 --a------ C:\WINDOWS\system32\msdmo.dll
2006-11-04 22:47 122,880 --a------ C:\WINDOWS\system32\dmusic.dll
2006-11-04 22:47 112,128 --a------ C:\WINDOWS\system32\dpvvox.dll
2006-11-04 22:47 11,392 --a------ C:\WINDOWS\system32\drivers\bdasup.sys
2006-11-04 22:47 100,864 --a------ C:\WINDOWS\system32\dmsynth.dll
2006-11-04 22:47 10,880 --a------ C:\WINDOWS\system32\drivers\slip.sys
2006-11-04 22:47 10,496 --a------ C:\WINDOWS\system32\drivers\dxapi.sys
2006-11-04 22:47 10,112 --a------ C:\WINDOWS\system32\drivers\ndisip.sys
2006-11-04 22:47 1,962,496 --a------ C:\WINDOWS\system32\quartz.dll
2006-11-04 22:47 1,798,144 --a------ C:\WINDOWS\system32\qedit.dll
2006-11-04 22:47 1,769,472 --a------ C:\WINDOWS\system32\dxdiagn.dll
2006-11-04 22:47 1,703,936 --a------ C:\WINDOWS\system32\d3d9.dll
2006-11-04 22:47 1,294,336 --a------ C:\WINDOWS\system32\dsound3d.dll
2006-11-04 22:47 1,230,336 --a------ C:\WINDOWS\system32\msvidctl.dll
2006-11-04 22:47 1,201,152 --a------ C:\WINDOWS\system32\d3d8.dll
2006-11-04 22:47 1,189,888 --a------ C:\WINDOWS\system32\dx8vb.dll
2006-11-04 22:45 163,840 --------- C:\WINDOWS\system32\igfxres.dll
2006-11-04 22:44 107,134 --a------ C:\WINDOWS\UninstallFirefox.exe
2006-11-04 22:30 50,007 --a------ C:\WINDOWS\system32\drivers\adildr.sys
2006-11-04 22:30 46,892 --a------ C:\WINDOWS\system32\ADADIX16.DLL
2006-11-04 22:30 4,981 --a------ C:\WINDOWS\system32\AdADIx2K.dll
2006-11-04 22:30 32,768 --a------ C:\WINDOWS\2kadiras.exe
2006-11-04 22:30 155,648 --a------ C:\WINDOWS\system32\AdADIx32.dll
2006-11-04 22:30 127,456 --a------ C:\WINDOWS\system32\IPDETECT.EXE
2006-11-04 22:30 127,065 --a------ C:\WINDOWS\system32\drivers\adiusbaw.sys
2006-11-04 22:30 114,688 --a------ C:\WINDOWS\system32\unaddrv.exe
2006-11-04 22:15 427,864 --a------ C:\WINDOWS\system32\XceedZip.dll
2006-11-04 22:15 306,688 --a------ C:\WINDOWS\IsUninst.exe
2006-11-04 22:14 4,960 --a------ C:\WINDOWS\system32\drivers\avgtdi.sys
2006-11-04 22:14 4,224 --a------ C:\WINDOWS\system32\drivers\avg7rsw.sys
2006-11-04 22:08 17,920 --a------ C:\WINDOWS\system32\mdimon.dll
2006-11-04 21:51 112,128 --a------ C:\WINDOWS\system32\mapi32.dll
2006-11-04 21:51 0 -rahs---- C:\MSDOS.SYS
2006-11-04 21:51 0 -rahs---- C:\IO.SYS
2006-11-04 21:51 0 --a------ C:\CONFIG.SYS
2006-11-04 21:51 0 --a------ C:\AUTOEXEC.BAT
2006-11-04 21:49 69,248 --a------ C:\WINDOWS\system32\drivers\sr.sys
2006-11-04 21:49 40,960 --a------ C:\WINDOWS\system32\safrslv.dll
2006-11-04 21:49 39,424 --a------ C:\WINDOWS\system32\safrcdlg.dll
2006-11-04 21:49 361,984 --a------ C:\WINDOWS\system32\qmgr.dll
2006-11-04 21:49 33,280 --a------ C:\WINDOWS\system32\racpldlg.dll
2006-11-04 21:49 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
2006-11-04 21:49 28,672 --a------ C:\WINDOWS\system32\isrdbg32.dll
2006-11-04 21:49 26,624 --a------ C:\WINDOWS\system32\safrdm.dll
2006-11-04 21:49 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
2006-11-04 21:49 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2006-11-04 21:48 77,824 --a------ C:\WINDOWS\system32\isign32.dll
2006-11-04 21:48 69,632 --a------ C:\WINDOWS\system32\icwdial.dll
2006-11-04 21:48 61,440 --a------ C:\WINDOWS\system32\icwphbk.dll
2006-11-04 21:48 266,240 --a------ C:\WINDOWS\system32\inetcfg.dll
2006-11-04 21:48 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2006-11-04 21:47 9,728 --a------ C:\WINDOWS\system32\reset.exe
2006-11-04 21:47 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
2006-11-04 21:47 82,432 --a------ C:\WINDOWS\system32\comrepl.dll
2006-11-04 21:47 80,384 --a------ C:\WINDOWS\system32\charmap.exe
2006-11-04 21:47 73,216 --a------ C:\WINDOWS\system32\avwav.dll
2006-11-04 21:47 61,952 --a------ C:\WINDOWS\system32\rdshost.exe
2006-11-04 21:47 605,696 --a------ C:\WINDOWS\system32\getuname.dll
2006-11-04 21:47 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2006-11-04 21:47 56,832 --a------ C:\WINDOWS\system32\sol.exe
2006-11-04 21:47 55,296 --a------ C:\WINDOWS\system32\freecell.exe
2006-11-04 21:47 54,784 --a------ C:\WINDOWS\system32\msdtclog.dll
2006-11-04 21:47 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2006-11-04 21:47 53,248 --a------ C:\WINDOWS\system32\servdeps.dll
2006-11-04 21:47 5,632 --a------ C:\WINDOWS\system32\write.exe
2006-11-04 21:47 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
2006-11-04 21:47 489,984 --a------ C:\WINDOWS\system32\hypertrm.dll
2006-11-04 21:47 44,544 --a------ C:\WINDOWS\system32\hticons.dll
2006-11-04 21:47 4,096 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2006-11-04 21:47 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2006-11-04 21:47 38,024 --a------ C:\WINDOWS\system32\drivers\termdd.sys
2006-11-04 21:47 35,328 --a------ C:\WINDOWS\system32\winchat.exe
2006-11-04 21:47 33,792 --a------ C:\WINDOWS\system32\regini.exe
2006-11-04 21:47 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2006-11-04 21:47 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2006-11-04 21:47 227,840 --a------ C:\WINDOWS\system32\avtapi.dll
2006-11-04 21:47 22,016 --a------ C:\WINDOWS\system32\qwinsta.exe
2006-11-04 21:47 20,992 --a------ C:\WINDOWS\system32\msg.exe
2006-11-04 21:47 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
2006-11-04 21:47 20,232 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2006-11-04 21:47 182,400 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys
2006-11-04 21:47 18,432 --a------ C:\WINDOWS\system32\qprocess.exe
2006-11-04 21:47 179,200 --a------ C:\WINDOWS\system32\accwiz.exe
2006-11-04 21:47 174,592 --a------ C:\WINDOWS\system32\cmprops.dll
2006-11-04 21:47 16,896 --a------ C:\WINDOWS\system32\tsshutdn.exe
2006-11-04 21:47 16,896 --a------ C:\WINDOWS\system32\qappsrv.exe
2006-11-04 21:47 16,384 --a------ C:\WINDOWS\system32\tskill.exe
2006-11-04 21:47 16,384 --a------ C:\WINDOWS\system32\mmfutil.dll
2006-11-04 21:47 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
2006-11-04 21:47 15,872 --a------ C:\WINDOWS\system32\rwinsta.exe
2006-11-04 21:47 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
2006-11-04 21:47 15,360 --a------ C:\WINDOWS\system32\logoff.exe
2006-11-04 21:47 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
2006-11-04 21:47 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2006-11-04 21:47 14,848 --a------ C:\WINDOWS\system32\tscon.exe
2006-11-04 21:47 14,848 --a------ C:\WINDOWS\system32\shadow.exe
2006-11-04 21:47 138,752 --a------ C:\WINDOWS\system32\sndvol32.exe
2006-11-04 21:47 129,024 --a------ C:\WINDOWS\system32\sessmgr.exe
2006-11-04 21:47 126,976 --a------ C:\WINDOWS\system32\mshearts.exe
2006-11-04 21:47 124,416 --a------ C:\WINDOWS\system32\sndrec32.exe
2006-11-04 21:47 124,184 --a------ C:\WINDOWS\system32\wuauclt.exe
2006-11-04 21:47 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2006-11-04 21:47 115,976 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2006-11-04 21:47 114,688 --a------ C:\WINDOWS\system32\calc.exe
2006-11-04 21:47 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
2006-11-04 21:47 11,144 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2006-11-04 21:47 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2006-11-04 21:47 1,161 --a------ C:\WINDOWS\system32\usrlogon.cmd


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-11-09 20:06 -------- d-------- C:\Documents and Settings\user\Application Data\DMCache
2006-11-09 19:52 -------- d-------- C:\Documents and Settings\user\Application Data\BSplayer Pro
2006-11-09 17:49 -------- d-------- C:\Program Files\Mozilla Firefox
2006-11-09 17:20 -------- d-------- C:\Program Files\SpywareGuard
2006-11-09 17:19 -------- d-------- C:\Documents and Settings\user\Application Data\AdobeUM
2006-11-09 14:40 -------- d-------- C:\Program Files\Common Files\System
2006-11-09 14:39 -------- d-------- C:\Program Files\Outlook Express
2006-11-09 08:00 -------- d-------- C:\Documents and Settings\user\Application Data\AVG7
2006-11-09 01:35 -------- d-------- C:\Program Files\WinRAR
2006-11-09 01:31 -------- d-------- C:\Program Files\Internet Explorer
2006-11-09 01:31 -------- d-------- C:\Program Files\Internet Download Manager
2006-11-09 01:31 -------- d-------- C:\Program Files\Google
2006-11-08 22:45 -------- d---s---- C:\Documents and Settings\user\Application Data\Microsoft
2006-11-08 22:05 -------- d-------- C:\Documents and Settings\user\Application Data\Vidalia
2006-11-08 20:21 -------- d-------- C:\Documents and Settings\user\Application Data\Tor
2006-11-08 19:36 -------- d-------- C:\Documents and Settings\user\Application Data\Google
2006-11-08 17:33 -------- d-------- C:\Program Files\NetMeeting
2006-11-08 17:17 -------- d-------- C:\Program Files\Messenger
2006-11-08 17:15 -------- d-------- C:\Program Files\Windows Media Player
2006-11-08 17:15 -------- d-------- C:\Program Files\Movie Maker
2006-11-08 14:45 -------- d-------- C:\Documents and Settings\user\Application Data\BinarySense
2006-11-08 14:44 -------- d-------- C:\Program Files\BinarySense
2006-11-07 23:56 -------- d-------- C:\Program Files\Wordflash
2006-11-07 23:56 -------- d-------- C:\Program Files\Common Files\DESIGNER
2006-11-07 23:55 -------- d-------- C:\Program Files\Common Files\InstallShield
2006-11-07 22:41 -------- d-------- C:\Documents and Settings\user\Application Data\Adobe
2006-11-07 14:49 -------- d-------- C:\Program Files\Online Services
2006-11-07 03:59 -------- d-------- C:\Program Files\Mediatwins software
2006-11-06 03:24 -------- d-------- C:\Documents and Settings\user\Application Data\IDM
2006-11-06 01:52 -------- d-------- C:\Program Files\Yahoo!
2006-11-05 21:58 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-11-05 21:01 -------- d-------- C:\Program Files\D-Tools
2006-11-05 20:49 -------- d-------- C:\Program Files\Argentum Backup
2006-11-05 20:40 -------- d-------- C:\Documents and Settings\user\Application Data\Argentum
2006-11-05 19:48 -------- d-------- C:\Program Files\Common Files\Acronis
2006-11-05 19:48 -------- d-------- C:\Program Files\Common Files
2006-11-05 19:48 -------- d-------- C:\Program Files\Acronis
2006-11-05 19:44 -------- d-------- C:\Program Files\PowerQuest
2006-11-05 19:35 -------- d-------- C:\Program Files\Common Files\Services
2006-11-05 19:35 -------- d-------- C:\Program Files\Common Files\Microsoft Shared
2006-11-05 19:22 -------- d-------- C:\Documents and Settings\user\Application Data\Share-to-Web Upload Folder
2006-11-05 19:20 -------- d-------- C:\Program Files\Hewlett-Packard
2006-11-05 19:17 -------- d--h----- C:\Program Files\Uninstall Information
2006-11-05 15:01 -------- d-------- C:\Program Files\Common Files\Hewlett-Packard
2006-11-05 12:43 -------- d-------- C:\Program Files\Grisoft
2006-11-05 03:29 -------- d-------- C:\Documents and Settings\user\Application Data\vlc
2006-11-05 02:35 -------- d-------- C:\Documents and Settings\user\Application Data\TuneUp Software
2006-11-05 02:34 -------- d-------- C:\Documents and Settings\user\Application Data\Babylon
2006-11-05 02:20 -------- d-------- C:\Program Files\The Weather Channel
2006-11-05 02:00 -------- d-------- C:\Program Files\Siber Systems
2006-11-05 01:44 -------- d-------- C:\Documents and Settings\user\Application Data\Mozilla
2006-11-05 01:43 -------- d-------- C:\Program Files\AOD
2006-11-05 01:42 -------- d-------- C:\Program Files\Common Files\mozilla.org
2006-11-05 01:40 62 --ahs---- C:\Documents and Settings\user\Application Data\desktop.ini
2006-11-05 01:40 -------- d-------- C:\Program Files\Common Files\SpeechEngines
2006-11-05 01:40 -------- d-------- C:\Program Files\Common Files\ODBC
2006-11-05 01:37 -------- d-------- C:\Documents and Settings\user\Application Data\Lavasoft
2006-11-05 01:35 -------- d-------- C:\Program Files\Netscape
2006-11-05 01:04 -------- d--h----- C:\Program Files\WindowsUpdate
2006-11-05 00:43 -------- d-------- C:\Program Files\Vidalia
2006-11-05 00:43 -------- d-------- C:\Program Files\Tor
2006-11-05 00:43 -------- d-------- C:\Program Files\Privoxy
2006-11-05 00:42 -------- d-------- C:\Program Files\Miranda IM
2006-11-05 00:42 -------- d-------- C:\Program Files\ERUNT
2006-11-04 22:30 -------- d-------- C:\Program Files\Analog Devices
2006-11-04 22:20 -------- d-------- C:\Documents and Settings\user\Application Data\Real
2006-11-04 22:19 -------- d-------- C:\Program Files\Real
2006-11-04 22:19 -------- d-------- C:\Program Files\Common Files\xing shared
2006-11-04 22:19 -------- d-------- C:\Program Files\Common Files\Real
2006-11-04 22:15 -------- d-------- C:\Program Files\JavaSoft
2006-11-04 22:14 -------- d-------- C:\Program Files\Driver-Soft
2006-11-04 22:12 -------- d-------- C:\Program Files\Common Files\Adobe
2006-11-04 22:10 -------- d-------- C:\Program Files\Adobe
2006-11-04 22:09 -------- d-------- C:\Program Files\MSN Messenger
2006-11-04 22:06 -------- d-------- C:\Program Files\Microsoft.NET
2006-11-04 22:05 -------- d-------- C:\Program Files\Microsoft ActiveSync
2006-11-04 22:04 -------- d-------- C:\Program Files\Microsoft Works
2006-11-04 22:04 -------- d-------- C:\Program Files\Microsoft Office
2006-11-04 22:03 -------- d-------- C:\Program Files\Microsoft Visual Studio
2006-11-04 21:56 -------- d-------- C:\Documents and Settings\user\Application Data\Identities
2006-11-04 21:51 -------- d-------- C:\Program Files\xerox
2006-11-04 21:51 -------- d-------- C:\Program Files\microsoft frontpage
2006-11-04 21:48 -------- d-------- C:\Program Files\ComPlus Applications
2006-11-04 21:48 -------- d-------- C:\Program Files\Common Files\MSSoap
2006-11-04 21:47 -------- d-------- C:\Program Files\Windows NT
2006-11-04 21:47 -------- d-------- C:\Program Files\MSN Gaming Zone
2006-08-25 19:53 561664 --a------ C:\WINDOWS\system32\comctl32.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"IDMan"="C:\\Program Files\\Internet Download Manager\\IDMan.exe /onboot"
"BitComet"="\"D:\\Program Files\\BitLord\\BitLord.exe\""
"ctfmon.exe"="C:\\WINDOWS\\System32\\ctfmon.exe"
"updateMgr"="\"C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe\" AcRdB7_0_7 -reboot 1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"IMJPMIG8.1"="C:\\WINDOWS\\IME\\imjp8_1\\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
"PHIME2002ASync"="C:\\WINDOWS\\System32\\IME\\TINTLGNT\\TINTSETP.EXE /SYNC"
"PHIME2002A"="C:\\WINDOWS\\System32\\IME\\TINTLGNT\\TINTSETP.EXE /IMEName"
"AVG7_CC"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgcc.exe /STARTUP"
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"IgfxTray"="C:\\WINDOWS\\System32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\System32\\hkcmd.exe"
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"Zone Labs Client"="\"D:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"
"Share-to-Web Namespace Daemon"="D:\\Program Files\\Hewlett-Packard\\HP Share-to-Web\\hpgs2wnd.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2\AntiRepl]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2\AntiRepl\0]
"Operation"=dword:00000001
"Target"="\\??\\C:\\WINDOWS\\SYSTEM32\\NTSYSTEM.EXE"
"Source"=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2\AntiRepl\1]
"Operation"=dword:00000001
"Target"="C:\\WINDOWS\\SYSTEM32\\NTOSKRNL.DLL"
"Source"=""

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"AVG7_Run"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgw.exe /RUNONCE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"AVG7_Run"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgw.exe /RUNONCE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{81559C35-8464-49F7-BB0E-07A383BEF910}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Yahoo! Pager"="\"C:\\Program Files\\Yahoo!\\Messenger\\ypager.exe\" -quiet"
"Desktop Weather 3"="C:\\PROGRA~1\\THEWEA~1\\The Weather Channel.exe"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"IDMan"="C:\\Program Files\\Internet Download Manager\\IDMan.exe /onboot"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Babylon Client"="d:\\Program Files\\Babylon\\Babylon-Pro\\Babylon.exe -AutoStart"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Adobe Reader Speed Launch.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Reader Speed Launch.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE "
"item"="Adobe Reader Speed Launch"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BigFix.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\BigFix.lnk"
"backup"="C:\\WINDOWS\\pss\\BigFix.lnkCommon Startup"
"location"="Common Startup"
"command"="D:\\BigFix.exe /atstartup"
"item"="BigFix"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Privoxy.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Privoxy.lnk"
"backup"="C:\\WINDOWS\\pss\\Privoxy.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Privoxy\\privoxy.exe "
"item"="Privoxy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="daemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\D-Tools\\daemon.exe\" -lang 1033 -noicon"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mozilla Quick Launch]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NETSCP"
"hkey"="HKCU"
"command"="\"C:\\PROGRA~1\\NETSCAPE\\NETSCAPE\\NETSCP.EXE\" -turbo"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoboForm]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RoboTaskBarIcon"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboTaskBarIcon.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleToolbarNotifier"
"hkey"="HKCU"
"command"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008\\GoogleToolbarNotifier.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeUpdateManager"
"hkey"="HKCU"
"command"="C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_5"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vidalia]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="vidalia"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Vidalia\\vidalia.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"



~ ~ ~ ~ ~ ~ ~ ~ Hijackthis Backups ~ ~ ~ ~ ~ ~ ~ ~ ~ ~ ~

backup-20061107-201536-714
O4 - HKLM\..\Run: [Windows Update Host] C:\WINDOWS\System32\winupsvc.exe
backup-20061107-201536-328
O4 - HKLM\..\Run: [MSWindowsUpdate] C:\WINDOWS\System32\mswinup.exe
Completion time: 06-11-09 20:08:44.21
C:\ComboFix.txt ... 06-11-09 20:08





BIG THANKS
 
#15 ·
Appreciate your support..............

Hello

I trully appreciate your nice response and please tell me anything more to be done to make pc life smooth for me. Give me list of softwares.

I have the following.........
1 spybot
2 adware pro
3 zone alarm pro
4 spy blaster and guard
5 reg run virus
6 ewido and avg anti spyware
7. windows sp1 + plus critical updates thru big fix
8. constant updates from windows update
9 constant check for virus and spyware
10 need to defragment
11 i need to make my startup faster and smoother.
12 give me advice how to make firefox safe from adware cookies problems
 
#16 ·
user - 06-11-09 21:08:05.23 Service Pack 1
ComboFix 06.11.9 - Running from: "C:\Documents and Settings\user\Desktop"

((((((((((((((((((((((((((((((( Files Created from 2006-10-09 to 2006-11-09 ))))))))))))))))))))))))))))))))))


2006-11-09 16:36 22,752 --a------ C:\WINDOWS\system32\spupdsvc.exe
2006-11-09 15:55 82,432 --a------ C:\WINDOWS\system32\fldrclnr.dll
2006-11-09 15:55 700,928 --a------ C:\WINDOWS\system32\sxs.dll
2006-11-09 15:55 25,600 --------- C:\WINDOWS\system32\verclsid.exe
2006-11-09 15:46 92,160 --a------ C:\WINDOWS\system32\cscdll.dll
2006-11-09 15:24 98,304 --a------ C:\WINDOWS\system32\polstore.dll
2006-11-09 15:24 364,544 --a------ C:\WINDOWS\system32\ipsmsnap.dll
2006-11-09 15:24 334,848 --a------ C:\WINDOWS\system32\ipsecsnp.dll
2006-11-09 15:24 29,184 --a------ C:\WINDOWS\system32\winipsec.dll
2006-11-09 15:24 257,536 --a------ C:\WINDOWS\system32\oakley.dll
2006-11-09 15:24 159,744 --a------ C:\WINDOWS\system32\ipsecsvc.dll
2006-11-09 15:13 595,968 --a------ C:\WINDOWS\system32\xpsp2res.dll
2006-11-09 14:47 95,232 --a------ C:\WINDOWS\system32\6to4svc.dll
2006-11-09 14:47 83,456 --a------ C:\WINDOWS\system32\netsh.exe
2006-11-09 14:47 70,656 --a------ C:\WINDOWS\system32\ws2_32.dll
2006-11-09 14:47 54,272 --a------ C:\WINDOWS\system32\ipv6mon.dll
2006-11-09 14:47 48,640 --a------ C:\WINDOWS\system32\ipv6.exe
2006-11-09 14:47 31,232 --a------ C:\WINDOWS\system32\inetmib1.dll
2006-11-09 14:47 159,232 --a------ C:\WINDOWS\system32\xpob2res.dll
2006-11-09 14:47 13,312 --a------ C:\WINDOWS\system32\wship6.dll
2006-11-09 14:47 11,776 --a------ C:\WINDOWS\system32\drivers\tunmp.sys
2006-11-09 14:44 1,110,528 --a------ C:\WINDOWS\system32\msxml3.dll
2006-11-09 14:37 83,456 --a------ C:\WINDOWS\system32\mtxoci.dll
2006-11-09 14:37 64,512 --a------ C:\WINDOWS\system32\mtxclu.dll
2006-11-08 17:17 115,200 --a------ C:\WINDOWS\system32\dpcdll.dll
2006-11-08 17:15 921,475 --------- C:\WINDOWS\system32\ati3d2ag.dll
2006-11-08 17:15 844,675 --------- C:\WINDOWS\system32\ati3d1ag.dll
2006-11-08 17:15 63,663 --------- C:\WINDOWS\system32\drivers\atinrvxx.sys
2006-11-08 17:15 6,912 --------- C:\WINDOWS\system32\drivers\hidir.sys
2006-11-08 17:15 56,591 --------- C:\WINDOWS\system32\drivers\atinbtxx.sys
2006-11-08 17:15 504,832 --------- C:\WINDOWS\system32\msftedit.dll
2006-11-08 17:15 450,176 --------- C:\WINDOWS\system32\drivers\ati2mtag.sys
2006-11-08 17:15 403,456 --------- C:\WINDOWS\system32\winbrand.dll
2006-11-08 17:15 377,984 --------- C:\WINDOWS\system32\ati2dvaa.dll
2006-11-08 17:15 36,463 --------- C:\WINDOWS\system32\drivers\atintuxx.sys
2006-11-08 17:15 34,735 --------- C:\WINDOWS\system32\drivers\atinxsxx.sys
2006-11-08 17:15 327,040 --------- C:\WINDOWS\system32\drivers\ati2mtaa.sys
2006-11-08 17:15 30,671 --------- C:\WINDOWS\system32\drivers\atinraxx.sys
2006-11-08 17:15 3,584 --------- C:\WINDOWS\system32\dsprpres.dll
2006-11-08 17:15 29,455 --------- C:\WINDOWS\system32\drivers\atinxbxx.sys
2006-11-08 17:15 26,367 --------- C:\WINDOWS\system32\drivers\atinsnxx.sys
2006-11-08 17:15 218,112 --------- C:\WINDOWS\system32\sbe.dll
2006-11-08 17:15 21,343 --------- C:\WINDOWS\system32\drivers\atinttxx.sys
2006-11-08 17:15 202,496 --------- C:\WINDOWS\system32\ati2dvag.dll
2006-11-08 17:15 187,904 --------- C:\WINDOWS\system32\xpsp1res.dll
2006-11-08 17:15 18,944 --------- C:\WINDOWS\system32\faxpatch.exe
2006-11-08 17:15 172,032 --------- C:\WINDOWS\system32\mssap.dll
2006-11-08 17:15 155,648 --------- C:\WINDOWS\system32\encdec.dll
2006-11-08 17:15 13,056 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2006-11-08 17:15 12,047 --------- C:\WINDOWS\system32\drivers\atinpdxx.sys
2006-11-08 17:15 110,080 --------- C:\WINDOWS\system32\sbeio.dll
2006-11-08 17:15 11,904 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2006-11-08 17:15 11,615 --------- C:\WINDOWS\system32\drivers\atinmdxx.sys
2006-11-08 17:15 1,677,312 --------- C:\WINDOWS\system32\wmvcore2.dll
2006-11-08 17:14 98,816 --a------ C:\WINDOWS\system32\clipbrd.exe
2006-11-08 17:14 95,744 --a------ C:\WINDOWS\system32\nlhtml.dll
2006-11-08 17:14 94,208 --a------ C:\WINDOWS\system32\odbccp32.dll
2006-11-08 17:14 91,648 --a------ C:\WINDOWS\system32\iuctl.dll
2006-11-08 17:14 91,648 --a------ C:\WINDOWS\system32\ahui.exe
2006-11-08 17:14 91,136 --a------ C:\WINDOWS\system32\MSOERT2.DLL
2006-11-08 17:14 91,136 --a------ C:\WINDOWS\system32\advpack.dll
2006-11-08 17:14 9,728 --a------ C:\WINDOWS\system32\mstinit.exe
2006-11-08 17:14 9,216 --a------ C:\WINDOWS\system32\icaapi.dll
2006-11-08 17:14 9,216 --a------ C:\WINDOWS\system32\dumprep.exe
2006-11-08 17:14 857,600 --a------ C:\WINDOWS\system32\netplwiz.dll
2006-11-08 17:14 827,438 --a------ C:\WINDOWS\system32\imjp81k.dll
2006-11-08 17:14 802,304 --a------ C:\WINDOWS\system32\dxmrtp.dll
2006-11-08 17:14 8,832 --a------ C:\WINDOWS\system32\framebuf.dll
2006-11-08 17:14 8,192 --a------ C:\WINDOWS\system32\autolfn.exe
2006-11-08 17:14 78,848 --a------ C:\WINDOWS\system32\msiexec.exe
2006-11-08 17:14 76,288 --a------ C:\WINDOWS\system32\dfrgfat.exe
2006-11-08 17:14 76,288 --a------ C:\WINDOWS\system32\avifil32.dll
2006-11-08 17:14 74,810 --a------ C:\WINDOWS\system32\atl.dll
2006-11-08 17:14 73,728 --a------ C:\WINDOWS\system32\ils.dll
2006-11-08 17:14 71,680 --a------ C:\WINDOWS\system32\browsewm.dll
2006-11-08 17:14 70,656 --a------ C:\WINDOWS\system32\defrag.exe
2006-11-08 17:14 70,144 --a------ C:\WINDOWS\system32\cryptdlg.dll
2006-11-08 17:14 7,040 --a------ C:\WINDOWS\system32\kd1394.dll
2006-11-08 17:14 699,392 --a------ C:\WINDOWS\system32\msxml2.dll
2006-11-08 17:14 68,096 --a------ C:\WINDOWS\system32\mscms.dll
2006-11-08 17:14 67,584 --a------ C:\WINDOWS\system32\msctfp.dll
2006-11-08 17:14 66,560 --a------ C:\WINDOWS\system32\faultrep.dll
2006-11-08 17:14 65,536 --a------ C:\WINDOWS\system32\msconf.dll
2006-11-08 17:14 64,512 --a------ C:\WINDOWS\system32\ciodm.dll
2006-11-08 17:14 62,976 --a------ C:\WINDOWS\system32\browselc.dll
2006-11-08 17:14 62,464 --a------ C:\WINDOWS\system32\adsmsext.dll
2006-11-08 17:14 61,440 --a------ C:\WINDOWS\system32\odbccr32.dll
2006-11-08 17:14 61,440 --a------ C:\WINDOWS\system32\dbnetlib.dll
2006-11-08 17:14 6,656 --a------ C:\WINDOWS\system32\batt.dll
2006-11-08 17:14 598,016 --a------ C:\WINDOWS\system32\mstscax.dll
2006-11-08 17:14 596,480 --a------ C:\WINDOWS\system32\INETCOMM.DLL
2006-11-08 17:14 59,392 --a------ C:\WINDOWS\system32\iesetup.dll
2006-11-08 17:14 584,192 --a------ C:\WINDOWS\system32\netcfgx.dll
2006-11-08 17:14 57,856 --a------ C:\WINDOWS\system32\licwmi.dll
2006-11-08 17:14 56,320 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-11-08 17:14 552,991 --a------ C:\WINDOWS\system32\msrepl40.dll
2006-11-08 17:14 55,296 --a------ C:\WINDOWS\system32\digest.dll
2006-11-08 17:14 54,272 --a------ C:\WINDOWS\system32\clusapi.dll
2006-11-08 17:14 53,248 --a------ C:\WINDOWS\system32\odbcconf.exe
2006-11-08 17:14 53,248 --a------ C:\WINDOWS\system32\cryptsvc.dll
2006-11-08 17:14 512,031 --a------ C:\WINDOWS\system32\msexch40.dll
2006-11-08 17:14 51,712 --a------ C:\WINDOWS\system32\ipconfig.exe
2006-11-08 17:14 504,320 --a------ C:\WINDOWS\system32\logonui.exe
2006-11-08 17:14 5,120 --a------ C:\WINDOWS\system32\asferror.dll
2006-11-08 17:14 498,205 --a------ C:\WINDOWS\system32\dxmasf.dll
2006-11-08 17:14 49,664 --a------ C:\WINDOWS\system32\ixsso.dll
2006-11-08 17:14 49,152 --a------ C:\WINDOWS\system32\npptools.dll
2006-11-08 17:14 49,152 --a------ C:\WINDOWS\system32\eventlog.dll
2006-11-08 17:14 49,152 --a------ C:\WINDOWS\system32\browser.dll
2006-11-08 17:14 471,040 --a------ C:\WINDOWS\system32\cryptui.dll
2006-11-08 17:14 45,568 --a------ C:\WINDOWS\system32\docprop2.dll
2006-11-08 17:14 421,919 --a------ C:\WINDOWS\system32\msrd2x40.dll
2006-11-08 17:14 42,537 --a------ C:\WINDOWS\system32\keyboard.sys
2006-11-08 17:14 42,496 --a------ C:\WINDOWS\system32\ncobjapi.dll
2006-11-08 17:14 41,984 --a------ C:\WINDOWS\system32\alg.exe
2006-11-08 17:14 41,472 --a------ C:\WINDOWS\system32\cmdl32.exe
2006-11-08 17:14 401,462 --a------ C:\WINDOWS\system32\msvcp60.dll
2006-11-08 17:14 4,608 --a------ C:\WINDOWS\system32\msimg32.dll
2006-11-08 17:14 4,126 --a------ C:\WINDOWS\system32\msdxmlc.dll
2006-11-08 17:14 399,360 --a------ C:\WINDOWS\system32\netlogon.dll
2006-11-08 17:14 392,704 --a------ C:\WINDOWS\system32\ntmssvc.dll
2006-11-08 17:14 39,424 --a------ C:\WINDOWS\system32\net.exe
2006-11-08 17:14 388,608 --a------ C:\WINDOWS\system32\mstsc.exe
2006-11-08 17:14 381,440 --a------ C:\WINDOWS\system32\lmrt.dll
2006-11-08 17:14 380,445 --a------ C:\WINDOWS\system32\expsrv.dll
2006-11-08 17:14 38,912 --a------ C:\WINDOWS\system32\audiosrv.dll
2006-11-08 17:14 38,400 --a------ C:\WINDOWS\system32\ntmsapi.dll
2006-11-08 17:14 38,400 --a------ C:\WINDOWS\system32\ntlanman.dll
2006-11-08 17:14 368,710 --a------ C:\WINDOWS\system32\msisam11.dll
2006-11-08 17:14 36,922 --a------ C:\WINDOWS\system32\imeshare.dll
2006-11-08 17:14 35,328 --a------ C:\WINDOWS\system32\dfrgsnap.dll
2006-11-08 17:14 348,195 --a------ C:\WINDOWS\system32\msjetoledb40.dll
2006-11-08 17:14 348,191 --a------ C:\WINDOWS\system32\mspbde40.dll
2006-11-08 17:14 344,095 --a------ C:\WINDOWS\system32\msxbde40.dll
2006-11-08 17:14 339,968 --a------ C:\WINDOWS\system32\mspaint.exe
2006-11-08 17:14 33,808 --a------ C:\WINDOWS\system32\ntio.sys
2006-11-08 17:14 324,608 --a------ C:\WINDOWS\system32\cmdial32.dll
2006-11-08 17:14 323,072 --a------ C:\WINDOWS\system32\msvcrt.dll
2006-11-08 17:14 32,768 --a------ C:\WINDOWS\system32\odbcad32.exe
2006-11-08 17:14 32,768 --a------ C:\WINDOWS\system32\cfgbkend.dll
2006-11-08 17:14 32,256 --a------ C:\WINDOWS\system32\mnmdd.dll
2006-11-08 17:14 319,760 --a------ C:\WINDOWS\system32\msnsspc.dll
2006-11-08 17:14 319,519 --a------ C:\WINDOWS\system32\msexcl40.dll
2006-11-08 17:14 318,464 --a------ C:\WINDOWS\system32\ippromon.dll
2006-11-08 17:14 307,712 --a------ C:\WINDOWS\system32\cscui.dll
2006-11-08 17:14 30,208 --a------ C:\WINDOWS\system32\imgutil.dll
2006-11-08 17:14 294,912 --a------ C:\WINDOWS\system32\iedkcs32.dll
2006-11-08 17:14 28,672 --a------ C:\WINDOWS\system32\ie4uinit.exe
2006-11-08 17:14 28,672 --a------ C:\WINDOWS\system32\dbnmpntw.dll
2006-11-08 17:14 272,896 --a------ C:\WINDOWS\system32\kerberos.dll
2006-11-08 17:14 271,360 --a------ C:\WINDOWS\system32\msihnd.dll
2006-11-08 17:14 266,752 --a------ C:\WINDOWS\winhlp32.exe
2006-11-08 17:14 266,752 --a------ C:\WINDOWS\system32\msctf.dll
2006-11-08 17:14 263,680 --a------ C:\WINDOWS\system32\duser.dll
2006-11-08 17:14 263,168 --a------ C:\WINDOWS\system32\devmgr.dll
2006-11-08 17:14 253,983 --a------ C:\WINDOWS\system32\mstext40.dll
2006-11-08 17:14 250,368 --a------ C:\WINDOWS\system32\mstask.dll
2006-11-08 17:14 25,600 --a------ C:\WINDOWS\system32\dfsshlex.dll
2006-11-08 17:14 245,760 --a------ C:\WINDOWS\system32\msscp.dll
2006-11-08 17:14 241,725 --a------ C:\WINDOWS\system32\msuni11.dll
2006-11-08 17:14 241,695 --a------ C:\WINDOWS\system32\msjtes40.dll
2006-11-08 17:14 240,640 --a------ C:\WINDOWS\system32\hnetcfg.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\odbcbcp.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\nmmkcert.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\dbmsvinn.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\dbmsrpcn.dll
2006-11-08 17:14 24,576 --a------ C:\WINDOWS\system32\conime.exe
2006-11-08 17:14 239,616 --a------ C:\WINDOWS\system32\adsnt.dll
2006-11-08 17:14 238,592 --a------ C:\WINDOWS\system32\compatui.dll
2006-11-08 17:14 238,080 --a------ C:\WINDOWS\system32\newdev.dll
2006-11-08 17:14 236,032 --a------ C:\WINDOWS\system32\icm32.dll
2006-11-08 17:14 229,888 --a------ C:\WINDOWS\system32\msieftp.dll
2006-11-08 17:14 229,376 --a------ C:\WINDOWS\system32\MSOEACCT.DLL
2006-11-08 17:14 227,840 --a------ C:\WINDOWS\system32\dsquery.dll
2006-11-08 17:14 22,528 --a------ C:\WINDOWS\system32\mslbui.dll
2006-11-08 17:14 22,528 --a------ C:\WINDOWS\system32\at.exe
2006-11-08 17:14 219,648 --a------ C:\WINDOWS\system32\logon.scr
2006-11-08 17:14 213,023 --a------ C:\WINDOWS\system32\msltus40.dll
2006-11-08 17:14 210,944 --a------ C:\WINDOWS\system32\moricons.dll
2006-11-08 17:14 204,288 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-11-08 17:14 200,704 --a------ C:\WINDOWS\system32\odbc32.dll
2006-11-08 17:14 20,480 --a------ C:\WINDOWS\system32\dbmsadsn.dll
2006-11-08 17:14 2,890,240 --a------ C:\WINDOWS\system32\msi.dll
2006-11-08 17:14 196,096 --a------ C:\WINDOWS\system32\mobsync.dll
2006-11-08 17:14 19,456 --a------ C:\WINDOWS\system32\licmgr10.dll
2006-11-08 17:14 19,456 --a------ C:\WINDOWS\system32\fontview.exe
2006-11-08 17:14 19,456 --a------ C:\WINDOWS\system32\ersvc.dll
2006-11-08 17:14 186,880 --a------ C:\WINDOWS\system32\certcli.dll
2006-11-08 17:14 182,784 --a------ C:\WINDOWS\system32\msutb.dll
2006-11-08 17:14 180,224 --a------ C:\WINDOWS\system32\dwwin.exe
2006-11-08 17:14 179,712 --a------ C:\WINDOWS\system32\cewmdm.dll
2006-11-08 17:14 178,688 --a------ C:\WINDOWS\system32\eudcedit.exe
2006-11-08 17:14 175,104 --a------ C:\WINDOWS\system32\mspmsp.dll
2006-11-08 17:14 168,960 --a------ C:\WINDOWS\system32\dinput8.dll
2006-11-08 17:14 165,888 --a------ C:\WINDOWS\system32\ntmsdba.dll
2006-11-08 17:14 165,376 --a------ C:\WINDOWS\system32\els.dll
2006-11-08 17:14 163,840 --a------ C:\WINDOWS\system32\mindex.dll
2006-11-08 17:14 162,816 --a------ C:\WINDOWS\system32\adsldp.dll
2006-11-08 17:14 16,384 --a------ C:\WINDOWS\system32\odbc32gt.dll
2006-11-08 17:14 16,384 --a------ C:\WINDOWS\system32\nddenb32.dll
2006-11-08 17:14 16,384 --a------ C:\WINDOWS\system32\ds32gt.dll
2006-11-08 17:14 158,720 --a------ C:\WINDOWS\system32\credui.dll
2006-11-08 17:14 154,112 --a------ C:\WINDOWS\system32\netman.dll
2006-11-08 17:14 151,552 --a------ C:\WINDOWS\system32\dinput.dll
2006-11-08 17:14 143,872 --a------ C:\WINDOWS\system32\msimtf.dll
2006-11-08 17:14 14,366 --a------ C:\WINDOWS\system32\asfsipc.dll
2006-11-08 17:14 139,776 --a------ C:\WINDOWS\system32\adsldpc.dll
2006-11-08 17:14 137,216 --a------ C:\WINDOWS\system32\ntshrui.dll
2006-11-08 17:14 135,680 --a------ C:\WINDOWS\system32\dsprop.dll
2006-11-08 17:14 131,072 --a------ C:\WINDOWS\system32\msorcl32.dll
2006-11-08 17:14 13,312 --a------ C:\WINDOWS\system32\ctfmon.exe
2006-11-08 17:14 126,976 --a------ C:\WINDOWS\system32\msdart.dll
2006-11-08 17:14 126,976 --a------ C:\WINDOWS\system32\ieakeng.dll
2006-11-08 17:14 124,928 --a------ C:\WINDOWS\system32\dssenh.dll
2006-11-08 17:14 123,904 --a------ C:\WINDOWS\system32\imapi.exe
2006-11-08 17:14 122,880 --a------ C:\WINDOWS\system32\odbcconf.dll
2006-11-08 17:14 12,288 --a------ C:\WINDOWS\system32\mscpx32r.dll
2006-11-08 17:14 116,736 --a------ C:\WINDOWS\system32\mplay32.exe
2006-11-08 17:14 115,712 --a------ C:\WINDOWS\system32\apphelp.dll
2006-11-08 17:14 115,200 --a------ C:\WINDOWS\system32\net1.exe
2006-11-08 17:14 114,176 --a------ C:\WINDOWS\system32\input.dll
2006-11-08 17:14 113,664 --a------ C:\WINDOWS\system32\msvfw32.dll
2006-11-08 17:14 113,152 --a------ C:\WINDOWS\system32\idq.dll
2006-11-08 17:14 113,152 --a------ C:\WINDOWS\system32\dfrgui.dll
2006-11-08 17:14 112,128 --a------ C:\WINDOWS\system32\ntmarta.dll
2006-11-08 17:14 105,984 --a------ C:\WINDOWS\system32\netdde.exe
2006-11-08 17:14 103,936 --a------ C:\WINDOWS\system32\imm32.dll
2006-11-08 17:14 103,424 --a------ C:\WINDOWS\system32\dgnet.dll
2006-11-08 17:14 10,240 --a------ C:\WINDOWS\system32\msrle32.dll
2006-11-08 17:14 10,240 --a------ C:\WINDOWS\system32\localui.dll
2006-11-08 17:14 1,622,528 --a------ C:\WINDOWS\system32\netshell.dll
2006-11-08 17:14 1,503,262 --a------ C:\WINDOWS\system32\msjet40.dll
2006-11-08 17:14 1,128,960 --a------ C:\WINDOWS\system32\mmcndmgr.dll
2006-11-08 17:14 1,004,032 --a------ C:\WINDOWS\explorer.exe
2006-11-08 17:13 98,304 --a------ C:\WINDOWS\system32\oleprn.dll
2006-11-08 17:13 91,136 --a------ C:\WINDOWS\system32\rastls.dll
2006-11-08 17:13 9,216 --a------ C:\WINDOWS\system32\wuauserv.dll
2006-11-08 17:13 88,064 --a------ C:\WINDOWS\system32\tscfgwmi.dll
2006-11-08 17:13 87,304 --a------ C:\WINDOWS\system32\rdpdd.dll
2006-11-08 17:13 86,528 --a------ C:\WINDOWS\system32\wlnotify.dll
2006-11-08 17:13 86,016 --a------ C:\WINDOWS\system32\xactsrv.dll
2006-11-08 17:13 82,944 --a------ C:\WINDOWS\system32\smlogsvc.exe
2006-11-08 17:13 82,944 --a------ C:\WINDOWS\system32\psbase.dll
2006-11-08 17:13 81,920 --a------ C:\WINDOWS\system32\trkwks.dll
2006-11-08 17:13 8,192 --a------ C:\WINDOWS\system32\scrnsave.scr
2006-11-08 17:13 77,824 --a------ C:\WINDOWS\system32\wmpstub.exe
2006-11-08 17:13 77,824 --a------ C:\WINDOWS\system32\wmpshell.dll
2006-11-08 17:13 75,912 --a------ C:\WINDOWS\system32\rdpwsx.dll
2006-11-08 17:13 74,240 --a------ C:\WINDOWS\system32\rtcshare.exe
2006-11-08 17:13 72,192 --a------ C:\WINDOWS\system32\uniime.dll
2006-11-08 17:13 71,168 --a------ C:\WINDOWS\system32\sdbinst.exe
2006-11-08 17:13 686,080 --a------ C:\WINDOWS\system32\opengl32.dll
2006-11-08 17:13 667,648 --a------ C:\WINDOWS\system32\ss3dfo.scr
2006-11-08 17:13 66,560 --a------ C:\WINDOWS\system32\spoolss.dll
2006-11-08 17:13 66,048 --a------ C:\WINDOWS\system32\sigverif.exe
2006-11-08 17:13 638,976 --a------ C:\WINDOWS\system32\sstext3d.scr
2006-11-08 17:13 63,488 --a------ C:\WINDOWS\system32\srclient.dll
2006-11-08 17:13 62,976 --a------ C:\WINDOWS\system32\shgina.dll
2006-11-08 17:13 61,952 --a------ C:\WINDOWS\system32\webclnt.dll
2006-11-08 17:13 61,952 --a------ C:\WINDOWS\system32\sti.dll
2006-11-08 17:13 61,440 --a------ C:\WINDOWS\system32\odbccu32.dll
2006-11-08 17:13 60,416 --a------ C:\WINDOWS\system32\wextract.exe
2006-11-08 17:13 60,416 --a------ C:\WINDOWS\system32\shimeng.dll
2006-11-08 17:13 6,144 --a------ C:\WINDOWS\system32\sensapi.dll
2006-11-08 17:13 58,880 --a------ C:\WINDOWS\system32\pautoenr.dll
2006-11-08 17:13 57,856 --a------ C:\WINDOWS\system32\raschap.dll
2006-11-08 17:13 569,344 --a------ C:\WINDOWS\system32\sspipes.scr
2006-11-08 17:13 56,832 --a------ C:\WINDOWS\system32\wzcdlg.dll
2006-11-08 17:13 56,320 --a------ C:\WINDOWS\system32\remotepg.dll
2006-11-08 17:13 534,016 --a------ C:\WINDOWS\system32\spider.exe
2006-11-08 17:13 53,248 --a------ C:\WINDOWS\system32\packager.exe
2006-11-08 17:13 52,224 --a------ C:\WINDOWS\system32\secur32.dll
2006-11-08 17:13 51,200 --a------ C:\WINDOWS\system32\wmerrenu.dll
2006-11-08 17:13 48,640 --a------ C:\WINDOWS\system32\vdmredir.dll
2006-11-08 17:13 48,128 --a------ C:\WINDOWS\system32\winsta.dll
2006-11-08 17:13 48,128 --a------ C:\WINDOWS\system32\reg.exe
2006-11-08 17:13 479,261 --a------ C:\WINDOWS\system32\vbscript.dll
2006-11-08 17:13 47,616 --a------ C:\WINDOWS\system32\utilman.exe
2006-11-08 17:13 446,464 --a------ C:\WINDOWS\system32\wmvdmoe.dll
2006-11-08 17:13 44,032 --a------ C:\WINDOWS\system32\regapi.dll
2006-11-08 17:13 44,032 --a------ C:\WINDOWS\system32\rdpclip.exe
2006-11-08 17:13 43,008 --a------ C:\WINDOWS\system32\ssdpsrv.dll
2006-11-08 17:13 423,424 --a------ C:\WINDOWS\system32\riched20.dll
2006-11-08 17:13 420,864 --a------ C:\WINDOWS\system32\shimgvw.dll
2006-11-08 17:13 409,088 --a------ C:\WINDOWS\system32\vssapi.dll
2006-11-08 17:13 40,960 --a------ C:\WINDOWS\system32\tscupgrd.exe
2006-11-08 17:13 385,024 --a------ C:\WINDOWS\system32\sqlsrv32.dll
2006-11-08 17:13 384,000 --a------ C:\WINDOWS\system32\themeui.dll
2006-11-08 17:13 38,912 --a------ C:\WINDOWS\system32\wsnmp32.dll
2006-11-08 17:13 364,544 --a------ C:\WINDOWS\system32\ssflwbox.scr
2006-11-08 17:13 36,352 --a------ C:\WINDOWS\system32\sens.dll
2006-11-08 17:13 34,304 --a------ C:\WINDOWS\system32\rcimlby.exe
2006-11-08 17:13 339,456 --a------ C:\WINDOWS\system32\usp10.dll
2006-11-08 17:13 334,848 --a------ C:\WINDOWS\system32\smlogcfg.dll
2006-11-08 17:13 33,280 --a------ C:\WINDOWS\system32\shmgrate.exe
2006-11-08 17:13 32,256 --a------ C:\WINDOWS\system32\umandlg.dll
2006-11-08 17:13 316,416 --a------ C:\WINDOWS\system32\zipfldr.dll
2006-11-08 17:13 316,416 --a------ C:\WINDOWS\system32\wiaservc.dll
2006-11-08 17:13 311,327 --a------ C:\WINDOWS\system32\wmv8dmod.dll
2006-11-08 17:13 3,338 --a------ C:\WINDOWS\system32\redir.exe
2006-11-08 17:13 297,984 --a------ C:\WINDOWS\system32\scesrv.dll
2006-11-08 17:13 296,448 --a------ C:\WINDOWS\system32\wmstream.dll
2006-11-08 17:13 27,136 --a------ C:\WINDOWS\system32\ssdpapi.dll
2006-11-08 17:13 258,048 --a------ C:\WINDOWS\system32\webcheck.dll
2006-11-08 17:13 254,976 --a------ C:\WINDOWS\system32\pdh.dll
2006-11-08 17:13 253,952 --a------ C:\WINDOWS\system32\wmpcd.dll
2006-11-08 17:13 251,904 --a------ C:\WINDOWS\system32\strmdll.dll
2006-11-08 17:13 247,808 --a------ C:\WINDOWS\system32\wow32.dll
2006-11-08 17:13 24,064 --a------ C:\WINDOWS\system32\skeys.exe
2006-11-08 17:13 233,984 --a------ C:\WINDOWS\system32\tapisrv.dll
2006-11-08 17:13 231,424 --a------ C:\WINDOWS\system32\upnpui.dll
2006-11-08 17:13 22,528 --a------ C:\WINDOWS\system32\slayerxp.dll
2006-11-08 17:13 22,528 --a------ C:\WINDOWS\system32\shfolder.dll
2006-11-08 17:13 22,016 --a------ C:\WINDOWS\system32\udhisapi.dll
2006-11-08 17:13 212,480 --a------ C:\WINDOWS\system32\osk.exe
2006-11-08 17:13 203,264 --a------ C:\WINDOWS\system32\uxtheme.dll
2006-11-08 17:13 200,192 --a------ C:\WINDOWS\system32\termsrv.dll
2006-11-08 17:13 20,992 --a------ C:\WINDOWS\system32\setup.exe
2006-11-08 17:13 193,536 --a------ C:\WINDOWS\system32\rasppp.dll
2006-11-08 17:13 19,456 --a------ C:\WINDOWS\system32\ssmarque.scr
2006-11-08 17:13 18,944 --a------ C:\WINDOWS\system32\ssbezier.scr
2006-11-08 17:13 174,592 --a------ C:\WINDOWS\system32\scecli.dll
2006-11-08 17:13 172,664 --a------ C:\WINDOWS\system32\xenroll.dll
2006-11-08 17:13 171,520 --a------ C:\WINDOWS\system32\winmm.dll
2006-11-08 17:13 171,008 --a------ C:\WINDOWS\system32\sccsccp.dll
2006-11-08 17:13 17,408 --a------ C:\WINDOWS\system32\wtsapi32.dll
2006-11-08 17:13 17,408 --a------ C:\WINDOWS\system32\ssmyst.scr
2006-11-08 17:13 17,408 --a------ C:\WINDOWS\system32\psapi.dll
2006-11-08 17:13 169,984 --a------ C:\WINDOWS\system32\sccbase.dll
2006-11-08 17:13 168,448 --a------ C:\WINDOWS\system32\wldap32.dll
2006-11-08 17:13 165,376 --a------ C:\WINDOWS\system32\w32time.dll
2006-11-08 17:13 165,376 --a------ C:\WINDOWS\system32\tapi32.dll
2006-11-08 17:13 164,864 --a------ C:\WINDOWS\system32\upnphost.dll
2006-11-08 17:13 16,896 --a------ C:\WINDOWS\system32\snmpapi.dll
2006-11-08 17:13 16,384 --a------ C:\WINDOWS\system32\watchdog.sys
2006-11-08 17:13 16,384 --a------ C:\WINDOWS\system32\ups.exe
2006-11-08 17:13 16,384 --a------ C:\WINDOWS\system32\ping.exe
2006-11-08 17:13 159,232 --a------ C:\WINDOWS\system32\schedsvc.dll
2006-11-08 17:13 158,720 --a------ C:\WINDOWS\system32\srsvc.dll
2006-11-08 17:13 147,456 --a------ C:\WINDOWS\system32\odbctrac.dll
2006-11-08 17:13 14,848 --a------ C:\WINDOWS\system32\rdpsnd.dll
2006-11-08 17:13 135,680 --a------ C:\WINDOWS\system32\rdchost.dll
2006-11-08 17:13 133,632 --a------ C:\WINDOWS\system32\rsaenh.dll
2006-11-08 17:13 133,120 --a------ C:\WINDOWS\system32\sfc_os.dll
2006-11-08 17:13 130,560 --a------ C:\WINDOWS\system32\sti_ci.dll
2006-11-08 17:13 13,824 --a------ C:\WINDOWS\system32\rassapi.dll
2006-11-08 17:13 13,312 --a------ C:\WINDOWS\system32\ssstars.scr
2006-11-08 17:13 128,512 --a------ C:\WINDOWS\system32\taskmgr.exe
2006-11-08 17:13 124,928 --a------ C:\WINDOWS\system32\webvw.dll
2006-11-08 17:13 120,320 --a------ C:\WINDOWS\system32\upnp.dll
2006-11-08 17:13 12,800 --a------ C:\WINDOWS\system32\runonce.exe
2006-11-08 17:13 12,288 --a------ C:\WINDOWS\system32\rdsaddin.exe
2006-11-08 17:13 12,288 --a------ C:\WINDOWS\system32\odbcp32r.dll
2006-11-08 17:13 119,808 --a------ C:\WINDOWS\system32\wiadss.dll
2006-11-08 17:13 118,784 --a------ C:\WINDOWS\system32\wmsdmoe.dll
2006-11-08 17:13 117,760 --a------ C:\WINDOWS\system32\stobject.dll
2006-11-08 17:13 116,224 --a------ C:\WINDOWS\system32\shsvcs.dll
2006-11-08 17:13 11,776 --a------ C:\WINDOWS\system32\sigtab.dll
2006-11-08 17:13 109,568 --a------ C:\WINDOWS\system32\offfilt.dll
2006-11-08 17:13 107,008 --a------ C:\WINDOWS\system32\umpnpmgr.dll
2006-11-08 17:13 106,496 --a------ C:\WINDOWS\system32\url.dll
2006-11-08 17:13 10,752 --a------ C:\WINDOWS\system32\tracert.exe
2006-11-08 17:13 1,998,848 --a------ C:\WINDOWS\system32\wmploc.dll
2006-11-08 17:13 1,425,680 --a------ C:\WINDOWS\system32\wmpui.dll
2006-11-08 17:13 1,350,144 --a------ C:\WINDOWS\system32\query.dll
2006-11-08 17:13 1,298,432 --a------ C:\WINDOWS\system32\wmpcore.dll
2006-11-08 17:13 1,157,632 --a------ C:\WINDOWS\system32\sfcfiles.dll
2006-11-07 23:56 77,824 --a------ C:\WINDOWS\system32\MSBIND.DLL
2006-11-07 23:56 299,008 --a------ C:\WINDOWS\system32\MSDBRPTR.DLL
2006-11-07 20:20 2,894 --a------ C:\WINDOWS\system32\tmp.reg
2006-11-07 19:25 30,720 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
2006-11-07 04:02 995,944 --a------ C:\WINDOWS\system32\wmvdmoe2.dll
2006-11-07 04:02 919,040 --a------ C:\WINDOWS\system32\wmnetmgr.dll
2006-11-07 04:02 898,664 --a------ C:\WINDOWS\system32\wmspdmoe.dll
2006-11-07 04:02 81,408 --a------ C:\WINDOWS\system32\logagent.exe
2006-11-07 04:02 807,528 --a------ C:\WINDOWS\system32\wmvdmod.dll
2006-11-07 04:02 752,232 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-11-07 04:02 675,944 --a------ C:\WINDOWS\system32\wmadmoe.dll
2006-11-07 04:02 6,656 --a------ C:\WINDOWS\system32\laprxy.dll
2006-11-07 04:02 486,504 --a------ C:\WINDOWS\system32\wmspdmod.dll
2006-11-07 04:02 410,216 --a------ C:\WINDOWS\system32\wmadmod.dll
2006-11-07 04:02 384,512 --a------ C:\WINDOWS\system32\mp4sdmod.dll
2006-11-07 04:02 316,008 --a------ C:\WINDOWS\system32\mp43dmod.dll
2006-11-07 04:02 248,424 --a------ C:\WINDOWS\system32\mpg4dmod.dll
2006-11-07 04:02 221,184 --a------ C:\WINDOWS\system32\qasf.dll
2006-11-07 04:02 217,600 --a------ C:\WINDOWS\system32\wmasf.dll
2006-11-07 04:02 2,050,664 --a------ C:\WINDOWS\system32\wmvcore.dll
2006-11-07 04:02 143,360 --a------ C:\WINDOWS\system32\wmidx.dll
2006-11-07 04:02 1,108,584 --a------ C:\WINDOWS\system32\wmsdmoe2.dll
2006-11-07 04:01 82,432 --a------ C:\WINDOWS\system32\drmstor.dll
2006-11-07 04:01 679,936 --a------ C:\WINDOWS\system32\drmv2clt.dll
2006-11-07 04:01 301,160 --a------ C:\WINDOWS\system32\drmclien.dll
2006-11-07 04:01 261,224 --a------ C:\WINDOWS\system32\msnetobj.dll
2006-11-07 04:01 232,960 --a------ C:\WINDOWS\system32\blackbox.dll
2006-11-06 20:32 663,040 --a------ C:\WINDOWS\is-E5BNO.exe
2006-11-06 20:28 658,432 --a------ C:\WINDOWS\is-H9FFE.exe
2006-11-06 00:36 127,208 --a------ C:\WINDOWS\system32\mucltui.dll
2006-11-05 19:48 65,856 --a------ C:\WINDOWS\system32\drivers\snapman.sys
2006-11-05 19:48 37,888 --a------ C:\WINDOWS\system32\setupnt.dll
2006-11-05 19:48 367,104 --a------ C:\WINDOWS\system32\autoprnt.exe
2006-11-05 19:48 102,400 --a------ C:\WINDOWS\system32\snapapi.dll
2006-11-05 19:44 3,252 --------- C:\WINDOWS\system32\drivers\PQNTDRV.SYS
2006-11-05 19:44 1,262,956 --------- C:\WINDOWS\system32\XMNT2001.EXE
2006-11-05 19:17 7,168 --a------ C:\WINDOWS\system32\updcrl.exe
2006-11-05 19:17 64,512 --a------ C:\WINDOWS\system32\acctres.dll
2006-11-05 19:17 47,616 --a------ C:\WINDOWS\system32\INETRES.DLL
2006-11-05 19:14 50,688 --a------ C:\WINDOWS\system32\setupwbv.dll
2006-11-05 19:02 94,282 --a------ C:\WINDOWS\system32\msencode.dll
2006-11-05 19:02 87,552 --a------ C:\WINDOWS\system32\occache.dll
2006-11-05 19:02 60,416 --a------ C:\WINDOWS\system32\msratelc.dll
2006-11-05 19:02 577,024 --a------ C:\WINDOWS\system32\mlang.dll
2006-11-05 19:02 548,864 --a------ C:\WINDOWS\system32\shdoclc.dll
2006-11-05 19:02 44,032 --a------ C:\WINDOWS\system32\MSIDENT.DLL
2006-11-05 19:02 24,064 --a------ C:\WINDOWS\system32\mshta.exe
2006-11-05 19:02 14,848 --a------ C:\WINDOWS\system32\msidntld.dll
2006-11-05 19:01 98,304 --a------ C:\WINDOWS\system32\actxprxy.dll
2006-11-05 19:01 110,592 --a------ C:\WINDOWS\system32\inetcplc.dll
2006-11-05 18:55 45,632 --a------ C:\WINDOWS\system32\cliconfg.exe
2006-11-05 18:55 44,032 --a------ C:\WINDOWS\system32\msxml3r.dll
2006-11-05 18:55 28,672 --a------ C:\WINDOWS\system32\dbmsgnet.dll
2006-11-05 18:55 180,800 --a------ C:\WINDOWS\system32\sqlunirl.dll
2006-11-05 18:55 127,552 --a------ C:\WINDOWS\system32\cliconfg.dll
2006-11-05 18:54 90,112 --a------ C:\WINDOWS\system32\odbcint.dll
2006-11-05 18:54 4,656 --a------ C:\WINDOWS\system32\ds16gt.dll
2006-11-05 18:54 36,864 --a------ C:\WINDOWS\system32\mscpxl32.dll
2006-11-05 18:54 26,224 --a------ C:\WINDOWS\system32\odbc16gt.dll
2006-11-05 18:54 20,480 --a------ C:\WINDOWS\system32\msorc32r.dll
2006-11-05 16:41 712,704 -ra------ C:\WINDOWS\system32\a3d.dll
2006-11-05 16:41 57,856 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2006-11-05 16:41 4,096 --a------ C:\WINDOWS\system32\ksuser.dll
2006-11-05 16:41 134,272 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2006-11-05 15:53 35,840 --a------ C:\WINDOWS\system32\drivers\AFS2K.SYS
2006-11-05 15:06 24,960 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2006-11-05 15:06 21,456 -ra------ C:\WINDOWS\system32\drivers\HPZius12.sys
2006-11-05 15:06 14,208 --a------ C:\WINDOWS\system32\drivers\usbscan.sys
2006-11-05 15:05 28,160 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2006-11-05 12:59 25,773 --a------ C:\WINDOWS\system32\drivers\regguard.sys
2006-11-05 12:59 18,432 --a------ C:\WINDOWS\system32\Partizan.exe
2006-11-05 12:53 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2006-11-05 12:43 3,968 --a------ C:\WINDOWS\system32\drivers\AvgAsCln.sys
2006-11-05 03:10 974,336 --a------ C:\WINDOWS\system32\msdtctm.dll
2006-11-05 03:10 97,280 --a------ C:\WINDOWS\system32\txflog.dll
2006-11-05 03:10 64,512 --a------ C:\WINDOWS\system32\colbact.dll
2006-11-05 03:10 594,944 --a------ C:\WINDOWS\system32\catsrvut.dll
2006-11-05 03:10 535,552 --a------ C:\WINDOWS\system32\rpcrt4.dll
2006-11-05 03:10 499,712 --a------ C:\WINDOWS\system32\clbcatq.dll
2006-11-05 03:10 499,200 --a------ C:\WINDOWS\system32\comuid.dll
2006-11-05 03:10 368,640 --a------ C:\WINDOWS\system32\msdtcprx.dll
2006-11-05 03:10 263,680 --a------ C:\WINDOWS\system32\rpcss.dll
2006-11-05 03:10 226,816 --a------ C:\WINDOWS\system32\es.dll
2006-11-05 03:10 225,280 --a------ C:\WINDOWS\system32\catsrv.dll
2006-11-05 03:10 150,528 --a------ C:\WINDOWS\system32\msdtcuiu.dll
2006-11-05 03:10 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2006-11-05 03:10 1,194,496 --a------ C:\WINDOWS\system32\comsvcs.dll
2006-11-05 03:10 1,183,744 --a------ C:\WINDOWS\system32\ole32.dll
2006-11-05 03:09 593,408 --a------ C:\WINDOWS\system32\h323msp.dll
2006-11-05 03:09 548,352 --a------ C:\WINDOWS\system32\rtcdll.dll
2006-11-05 03:09 439,808 --a------ C:\WINDOWS\system32\ipnathlp.dll
2006-11-05 03:09 36,864 --a------ C:\WINDOWS\system32\mf3216.dll
2006-11-05 03:06 68,608 --a------ C:\WINDOWS\system32\locator.exe
2006-11-05 03:06 37,888 --a------ C:\WINDOWS\system32\hhsetup.dll
2006-11-05 03:06 143,872 --a------ C:\WINDOWS\system32\itircl.dll
2006-11-05 03:06 122,368 --a------ C:\WINDOWS\system32\itss.dll
2006-11-05 03:06 10,752 --a------ C:\WINDOWS\hh.exe
2006-11-05 03:04 226,816 --a------ C:\WINDOWS\system32\srrstr.dll
2006-11-05 03:01 125,440 --a------ C:\WINDOWS\system32\shmedia.dll
2006-11-05 02:34 3,968 --a------ C:\WINDOWS\system32\drivers\avgclean.sys
2006-11-05 01:44 98,304 --a------ C:\WINDOWS\system32\msir3jp.dll
2006-11-05 01:44 838,144 --a------ C:\WINDOWS\system32\chtbrkr.dll
2006-11-05 01:44 70,656 --a------ C:\WINDOWS\system32\korwbrkr.dll
2006-11-05 01:44 1,677,824 --a------ C:\WINDOWS\system32\chsbrkr.dll
2006-11-05 01:43 9,216 --a------ C:\WINDOWS\system32\kbdnecAT.dll
2006-11-05 01:43 8,704 --a------ C:\WINDOWS\system32\kbdjpn.dll
2006-11-05 01:43 8,192 --a------ C:\WINDOWS\system32\kbdkor.dll
2006-11-05 01:43 7,680 --a------ C:\WINDOWS\system32\kbdnecNT.dll
2006-11-05 01:43 7,168 --a------ C:\WINDOWS\system32\kbdnec95.dll
2006-11-05 01:43 7,168 --a------ C:\WINDOWS\system32\kbdibm02.dll
2006-11-05 01:43 7,168 --a------ C:\WINDOWS\system32\f3ahvoas.dll
2006-11-05 01:43 6,656 --a------ C:\WINDOWS\system32\kbdlk41a.dll
2006-11-05 01:43 6,656 --a------ C:\WINDOWS\system32\c_is2022.dll
2006-11-05 01:43 6,144 -ra------ C:\WINDOWS\system32\kbdth3.dll
2006-11-05 01:43 6,144 -ra------ C:\WINDOWS\system32\kbdth2.dll
2006-11-05 01:43 6,144 -ra------ C:\WINDOWS\system32\kbdinpun.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbdlk41j.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbdax2.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd106n.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd106.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101c.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101b.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101a.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\kbd101.dll
2006-11-05 01:43 6,144 --a------ C:\WINDOWS\system32\ftlx041e.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdvntc.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdurdu.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdth1.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdth0.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdsyr2.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdsyr1.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdintel.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdintam.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinmar.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinkan.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinhin.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdinguj.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdindev.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdheb.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbdfa.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbddiv2.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbddiv1.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbda3.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbda2.dll
2006-11-05 01:43 5,632 -ra------ C:\WINDOWS\system32\kbda1.dll
2006-11-05 01:43 5,632 --a------ C:\WINDOWS\system32\kbdusa.dll
2006-11-05 01:43 5,632 --a------ C:\WINDOWS\system32\kbd103.dll
2006-11-05 01:43 5,120 -ra------ C:\WINDOWS\system32\kbdgeo.dll
2006-11-05 01:43 5,120 -ra------ C:\WINDOWS\system32\kbdarmw.dll
2006-11-05 01:43 5,120 -ra------ C:\WINDOWS\system32\kbdarme.dll
2006-11-05 01:43 24,064 --a------ C:\WINDOWS\system32\msxml3a.dll
2006-11-05 01:43 218,112 --a------ C:\WINDOWS\system32\c_g18030.dll
2006-11-05 01:43 185,344 --a------ C:\WINDOWS\system32\Thawbrkr.dll
2006-11-05 01:43 105,168 --a------ C:\WINDOWS\NSUninst.exe
2006-11-05 01:43 10,752 --a------ C:\WINDOWS\system32\c_iscii.dll
2006-11-05 01:42 9,759 --a------ C:\WINDOWS\system32\HSF_INST.dll
2006-11-05 01:42 73,279 --a------ C:\WINDOWS\system32\drivers\HSF_SPKP.sys
2006-11-05 01:42 67,167 --a------ C:\WINDOWS\system32\drivers\HSF_BSC2.sys
2006-11-05 01:42 57,471 --a------ C:\WINDOWS\system32\drivers\HSF_SAMP.sys
2006-11-05 01:42 56,576 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2006-11-05 01:42 542,879 --a------ C:\WINDOWS\system32\drivers\HSF_MSFT.sys
2006-11-05 01:42 50,751 --a------ C:\WINDOWS\system32\drivers\HSF_TONE.sys
2006-11-05 01:42 488,383 --a------ C:\WINDOWS\system32\drivers\HSF_V124.sys
2006-11-05 01:42 44,863 --a------ C:\WINDOWS\system32\drivers\HSF_SOAR.sys
2006-11-05 01:42 391,199 --a------ C:\WINDOWS\system32\drivers\HSF_K56K.sys
2006-11-05 01:42 3,072 --a------ C:\WINDOWS\system32\drivers\audstub.sys
2006-11-05 01:42 289,887 --a------ C:\WINDOWS\system32\drivers\HSF_FALL.sys
2006-11-05 01:42 199,711 --a------ C:\WINDOWS\system32\drivers\HSF_FAXX.sys
2006-11-05 01:42 150,239 --a------ C:\WINDOWS\system32\drivers\HSF_AMOS.sys
2006-11-05 01:42 115,807 --a------ C:\WINDOWS\system32\drivers\HSF_FSKS.sys
2006-11-05 01:42 105,168 --a------ C:\WINDOWS\GREUninstall.exe
2006-11-05 01:41 67,072 --a------ C:\WINDOWS\system32\usbui.dll
2006-11-05 01:40 85,020 --a------ C:\WINDOWS\system32\dgsetup.dll
2006-11-05 01:40 8,192 -ra------ C:\WINDOWS\system32\kbdhept.dll
2006-11-05 01:40 7,168 -ra------ C:\WINDOWS\system32\kbdcz.dll
2006-11-05 01:40 66,048 --a------ C:\WINDOWS\NOTEPAD.EXE
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdycl.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdsl1.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdsl.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdpl.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdhu.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdhela3.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdcz2.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdcz1.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\kbdcr.dll
2006-11-05 01:40 6,656 -ra------ C:\WINDOWS\system32\KBDAL.DLL
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdtuq.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdtuf.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdlv1.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdlv.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdhela2.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdgkl.dll
2006-11-05 01:40 6,144 -ra------ C:\WINDOWS\system32\kbdest.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdycc.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbduzb.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdur.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdtat.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdru1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdru.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdro.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdpl1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdmon.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdlt1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdlt.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdkyr.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdkaz.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhu1.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhe319.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhe220.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdhe.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdbu.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdblr.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdazel.dll
2006-11-05 01:40 5,632 -ra------ C:\WINDOWS\system32\kbdaze.dll
2006-11-05 01:40 24,661 --a------ C:\WINDOWS\system32\spxcoins.dll
2006-11-05 01:40 176,157 --a------ C:\WINDOWS\system32\dgrpsetu.dll
2006-11-05 01:40 15,360 --a------ C:\WINDOWS\TASKMAN.EXE
2006-11-05 01:40 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2006-11-05 01:40 103,424 --a------ C:\WINDOWS\system32\EqnClass.Dll
2006-11-05 01:40 10,496 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2006-11-05 01:32 4,141,056 C:\WINDOWSeyeQ Screen Saver.scr
2006-11-05 01:19 20,640 --------- C:\WINDOWS\system32\drivers\PxHelp20.sys
2006-11-05 01:19 109,568 --------- C:\WINDOWS\system32\pxinsi64.exe
2006-11-05 01:19 108,544 --------- C:\WINDOWS\system32\pxcpyi64.exe
2006-11-05 01:06 7,680 --------- C:\WINDOWS\system32\bitsprx2.dll
2006-11-05 01:06 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2006-11-05 01:06 331,776 --a------ C:\WINDOWS\system32\winhttp.dll
2006-11-05 01:06 17,408 --a------ C:\WINDOWS\system32\qmgrprxy.dll
2006-11-05 01:03 465,176 --a------ C:\WINDOWS\system32\wuapi.dll
2006-11-05 01:03 41,240 --a------ C:\WINDOWS\system32\wups.dll
2006-11-05 01:03 194,328 --a------ C:\WINDOWS\system32\wuaueng1.dll
2006-11-05 01:03 18,200 --a------ C:\WINDOWS\system32\wups2.dll
2006-11-05 01:03 172,312 --a------ C:\WINDOWS\system32\wuauclt1.exe
2006-11-05 01:03 127,256 --a------ C:\WINDOWS\system32\wucltui.dll
2006-11-05 01:01 86,016 --a------ C:\WINDOWS\unvise32qt.exe
2006-11-05 01:01 28,672 --a------ C:\WINDOWS\system32\qttask.exe
2006-11-05 00:41 816,672 --a------ C:\WINDOWS\system32\drivers\avg7core.sys
2006-11-05 00:41 28,416 --a------ C:\WINDOWS\system32\drivers\avg7rsxp.sys
2006-11-05 00:36 5,248 --a------ C:\WINDOWS\system32\drivers\d347prt.sys
2006-11-05 00:36 155,136 --a------ C:\WINDOWS\system32\drivers\d347bus.sys
2006-11-04 22:58 5,120 -ra------ C:\WINDOWS\system32\hccoin.dll
2006-11-04 22:58 19,072 -ra------ C:\WINDOWS\system32\drivers\usbehci.sys
2006-11-04 22:57 77,440 --a------ C:\WINDOWS\system32\drivers\wdmaud.sys
2006-11-04 22:57 56,832 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2006-11-04 22:57 54,272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2006-11-04 22:57 50,048 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
2006-11-04 22:57 5,888 --a------ C:\WINDOWS\system32\drivers\splitter.sys
2006-11-04 22:57 2,816 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2006-11-04 22:57 159,360 --a------ C:\WINDOWS\system32\drivers\kmixer.sys
2006-11-04 22:57 142,208 --a------ C:\WINDOWS\system32\drivers\aec.sys
2006-11-04 22:56 712,704 -ra------ C:\WINDOWS\system32\Audio3D.dll
2006-11-04 22:56 414,543 -ra------ C:\WINDOWS\system32\drivers\cmuda.sys
2006-11-04 22:56 28,672 -ra------ C:\WINDOWS\system32\udaprop.dll
2006-11-04 22:47 98,816 --a------ C:\WINDOWS\system32\dmstyle.dll
2006-11-04 22:47 974,848 --a------ C:\WINDOWS\system32\dxdiag.exe
2006-11-04 22:47 83,968 --a------ C:\WINDOWS\system32\drivers\nabtsfec.sys
2006-11-04 22:47 80,896 --a------ C:\WINDOWS\system32\dpvsetup.exe
2006-11-04 22:47 8,192 --a------ C:\WINDOWS\system32\d3d8thk.dll
2006-11-04 22:47 797,184 --a------ C:\WINDOWS\system32\d3dim700.dll
2006-11-04 22:47 79,360 --a------ C:\WINDOWS\system32\dpwsockx.dll
2006-11-04 22:47 77,824 --a------ C:\WINDOWS\system32\dpmodemx.dll
2006-11-04 22:47 76,800 --a------ C:\WINDOWS\system32\dmscript.dll
2006-11-04 22:47 733,184 --a------ C:\WINDOWS\system32\qedwipes.dll
2006-11-04 22:47 723,968 --a------ C:\WINDOWS\system32\dpnet.dll
2006-11-04 22:47 7,424 --a------ C:\WINDOWS\system32\drivers\mskssrv.sys
2006-11-04 22:47 68,096 --a------ C:\WINDOWS\system32\dpnhupnp.dll
2006-11-04 22:47 64,512 --a------ C:\WINDOWS\system32\amstream.dll
2006-11-04 22:47 602,624 --a------ C:\WINDOWS\system32\dx7vb.dll
2006-11-04 22:47 590,336 --a------ C:\WINDOWS\system32\d3dramp.dll
2006-11-04 22:47 58,368 --a------ C:\WINDOWS\system32\dmcompos.dll
2006-11-04 22:47 52,096 --a------ C:\WINDOWS\system32\drivers\msdv.sys
2006-11-04 22:47 5,504 --a------ C:\WINDOWS\system32\drivers\mstee.sys
2006-11-04 22:47 5,248 --a------ C:\WINDOWS\system32\drivers\mspclock.sys
2006-11-04 22:47 491,520 --a------ C:\WINDOWS\system32\dsdmoprp.dll
2006-11-04 22:47 48,512 --a------ C:\WINDOWS\system32\drivers\stream.sys
2006-11-04 22:47 470,528 --a------ C:\WINDOWS\system32\qdvd.dll
2006-11-04 22:47 47,616 --a------ C:\WINDOWS\system32\d3dxof.dll
2006-11-04 22:47 47,104 --a------ C:\WINDOWS\system32\wstdecod.dll
2006-11-04 22:47 467,968 --a------ C:\WINDOWS\system32\diactfrm.dll
2006-11-04 22:47 46,592 --a------ C:\WINDOWS\system32\dxdllreg.exe
2006-11-04 22:47 44,032 --a------ C:\WINDOWS\system32\dimap.dll
2006-11-04 22:47 436,224 --a------ C:\WINDOWS\system32\d3dim.dll
2006-11-04 22:47 4,608 --a------ C:\WINDOWS\system32\drivers\mspqm.sys
2006-11-04 22:47 4,096 --a------ C:\WINDOWS\system32\drivers\swenum.sys
2006-11-04 22:47 381,952 --a------ C:\WINDOWS\system32\dsound.dll
2006-11-04 22:47 381,952 --a------ C:\WINDOWS\system32\dpvoice.dll
2006-11-04 22:47 354,816 --a------ C:\WINDOWS\system32\psisdecd.dll
2006-11-04 22:47 350,208 --a------ C:\WINDOWS\system32\d3drm.dll
2006-11-04 22:47 34,816 --a------ C:\WINDOWS\system32\d3dpmesh.dll
2006-11-04 22:47 34,304 --a------ C:\WINDOWS\system32\mciqtz32.dll
2006-11-04 22:47 33,280 --a------ C:\WINDOWS\system32\dmloader.dll
2006-11-04 22:47 324,096 --a------ C:\WINDOWS\system32\mswebdvd.dll
2006-11-04 22:47 32,768 --a------ C:\WINDOWS\system32\dpnhpast.dll
2006-11-04 22:47 316,928 --a------ C:\WINDOWS\system32\qdv.dll
2006-11-04 22:47 31,744 --a------ C:\WINDOWS\system32\pid.dll
2006-11-04 22:47 3,072 --a------ C:\WINDOWS\system32\dpnlobby.dll
2006-11-04 22:47 3,072 --a------ C:\WINDOWS\system32\dpnaddr.dll
2006-11-04 22:47 292,864 --a------ C:\WINDOWS\system32\ddraw.dll
2006-11-04 22:47 28,160 --a------ C:\WINDOWS\system32\dplaysvr.exe
2006-11-04 22:47 27,136 --a------ C:\WINDOWS\system32\dmband.dll
2006-11-04 22:47 257,024 --a------ C:\WINDOWS\system32\qcap.dll
2006-11-04 22:47 24,064 --a------ C:\WINDOWS\system32\ddrawex.dll
2006-11-04 22:47 230,400 --a------ C:\WINDOWS\system32\dplayx.dll
2006-11-04 22:47 223,232 --a------ C:\WINDOWS\system32\gcdef.dll
2006-11-04 22:47 19,968 --a------ C:\WINDOWS\system32\dpvacm.dll
2006-11-04 22:47 186,880 --a------ C:\WINDOWS\system32\dsdmo.dll
2006-11-04 22:47 181,248 --a------ C:\WINDOWS\system32\dmime.dll
2006-11-04 22:47 18,944 --a------ C:\WINDOWS\system32\encapi.dll
2006-11-04 22:47 18,688 --a------ C:\WINDOWS\system32\drivers\wstcodec.sys
2006-11-04 22:47 18,432 --a------ C:\WINDOWS\system32\dswave.dll
2006-11-04 22:47 16,896 --a------ C:\WINDOWS\system32\msyuv.dll
2006-11-04 22:47 16,896 --a------ C:\WINDOWS\system32\dpnsvr.exe
2006-11-04 22:47 16,384 --a------ C:\WINDOWS\system32\drivers\ccdecode.sys
2006-11-04 22:47 15,104 --a------ C:\WINDOWS\system32\drivers\mpe.sys
2006-11-04 22:47 14,976 --a------ C:\WINDOWS\system32\drivers\streamip.sys
2006-11-04 22:47 132,608 --a------ C:\WINDOWS\system32\devenum.dll
2006-11-04 22:47 130,304 --a------ C:\WINDOWS\system32\drivers\ks.sys
2006-11-04 22:47 13,312 --a------ C:\WINDOWS\system32\msdmo.dll
2006-11-04 22:47 122,880 --a------ C:\WINDOWS\system32\dmusic.dll
2006-11-04 22:47 112,128 --a------ C:\WINDOWS\system32\dpvvox.dll
2006-11-04 22:47 11,392 --a------ C:\WINDOWS\system32\drivers\bdasup.sys
2006-11-04 22:47 100,864 --a------ C:\WINDOWS\system32\dmsynth.dll
2006-11-04 22:47 10,880 --a------ C:\WINDOWS\system32\drivers\slip.sys
2006-11-04 22:47 10,496 --a------ C:\WINDOWS\system32\drivers\dxapi.sys
2006-11-04 22:47 10,112 --a------ C:\WINDOWS\system32\drivers\ndisip.sys
2006-11-04 22:47 1,962,496 --a------ C:\WINDOWS\system32\quartz.dll
2006-11-04 22:47 1,798,144 --a------ C:\WINDOWS\system32\qedit.dll
2006-11-04 22:47 1,769,472 --a------ C:\WINDOWS\system32\dxdiagn.dll
2006-11-04 22:47 1,703,936 --a------ C:\WINDOWS\system32\d3d9.dll
2006-11-04 22:47 1,294,336 --a------ C:\WINDOWS\system32\dsound3d.dll
2006-11-04 22:47 1,230,336 --a------ C:\WINDOWS\system32\msvidctl.dll
2006-11-04 22:47 1,201,152 --a------ C:\WINDOWS\system32\d3d8.dll
2006-11-04 22:47 1,189,888 --a------ C:\WINDOWS\system32\dx8vb.dll
2006-11-04 22:45 163,840 --------- C:\WINDOWS\system32\igfxres.dll
2006-11-04 22:44 107,134 --a------ C:\WINDOWS\UninstallFirefox.exe
2006-11-04 22:30 50,007 --a------ C:\WINDOWS\system32\drivers\adildr.sys
2006-11-04 22:30 46,892 --a------ C:\WINDOWS\system32\ADADIX16.DLL
2006-11-04 22:30 4,981 --a------ C:\WINDOWS\system32\AdADIx2K.dll
2006-11-04 22:30 32,768 --a------ C:\WINDOWS\2kadiras.exe
2006-11-04 22:30 155,648 --a------ C:\WINDOWS\system32\AdADIx32.dll
2006-11-04 22:30 127,456 --a------ C:\WINDOWS\system32\IPDETECT.EXE
2006-11-04 22:30 127,065 --a------ C:\WINDOWS\system32\drivers\adiusbaw.sys
2006-11-04 22:30 114,688 --a------ C:\WINDOWS\system32\unaddrv.exe
2006-11-04 22:15 427,864 --a------ C:\WINDOWS\system32\XceedZip.dll
2006-11-04 22:15 306,688 --a------ C:\WINDOWS\IsUninst.exe
2006-11-04 22:14 4,960 --a------ C:\WINDOWS\system32\drivers\avgtdi.sys
2006-11-04 22:14 4,224 --a------ C:\WINDOWS\system32\drivers\avg7rsw.sys
2006-11-04 22:08 17,920 --a------ C:\WINDOWS\system32\mdimon.dll
2006-11-04 21:51 112,128 --a------ C:\WINDOWS\system32\mapi32.dll
2006-11-04 21:51 0 -rahs---- C:\MSDOS.SYS
2006-11-04 21:51 0 -rahs---- C:\IO.SYS
2006-11-04 21:51 0 --a------ C:\CONFIG.SYS
2006-11-04 21:51 0 --a------ C:\AUTOEXEC.BAT
2006-11-04 21:49 69,248 --a------ C:\WINDOWS\system32\drivers\sr.sys
2006-11-04 21:49 40,960 --a------ C:\WINDOWS\system32\safrslv.dll
2006-11-04 21:49 39,424 --a------ C:\WINDOWS\system32\safrcdlg.dll
2006-11-04 21:49 361,984 --a------ C:\WINDOWS\system32\qmgr.dll
2006-11-04 21:49 33,280 --a------ C:\WINDOWS\system32\racpldlg.dll
2006-11-04 21:49 32,768 --a------ C:\WINDOWS\system32\mnmsrvc.exe
2006-11-04 21:49 28,672 --a------ C:\WINDOWS\system32\isrdbg32.dll
2006-11-04 21:49 26,624 --a------ C:\WINDOWS\system32\safrdm.dll
2006-11-04 21:49 12,288 --a------ C:\WINDOWS\system32\nmevtmsg.dll
2006-11-04 21:49 11,264 --a------ C:\WINDOWS\system32\atrace.dll
2006-11-04 21:48 77,824 --a------ C:\WINDOWS\system32\isign32.dll
2006-11-04 21:48 69,632 --a------ C:\WINDOWS\system32\icwdial.dll
2006-11-04 21:48 61,440 --a------ C:\WINDOWS\system32\icwphbk.dll
2006-11-04 21:48 266,240 --a------ C:\WINDOWS\system32\inetcfg.dll
2006-11-04 21:48 16,384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2006-11-04 21:47 9,728 --a------ C:\WINDOWS\system32\reset.exe
2006-11-04 21:47 85,504 --a------ C:\WINDOWS\system32\catsrvps.dll
2006-11-04 21:47 82,432 --a------ C:\WINDOWS\system32\comrepl.dll
2006-11-04 21:47 80,384 --a------ C:\WINDOWS\system32\charmap.exe
2006-11-04 21:47 73,216 --a------ C:\WINDOWS\system32\avwav.dll
2006-11-04 21:47 61,952 --a------ C:\WINDOWS\system32\rdshost.exe
2006-11-04 21:47 605,696 --a------ C:\WINDOWS\system32\getuname.dll
2006-11-04 21:47 6,144 --a------ C:\WINDOWS\system32\msdtc.exe
2006-11-04 21:47 56,832 --a------ C:\WINDOWS\system32\sol.exe
2006-11-04 21:47 55,296 --a------ C:\WINDOWS\system32\freecell.exe
2006-11-04 21:47 54,784 --a------ C:\WINDOWS\system32\msdtclog.dll
2006-11-04 21:47 54,272 --a------ C:\WINDOWS\system32\stclient.dll
2006-11-04 21:47 53,248 --a------ C:\WINDOWS\system32\servdeps.dll
2006-11-04 21:47 5,632 --a------ C:\WINDOWS\system32\write.exe
2006-11-04 21:47 5,120 --a------ C:\WINDOWS\system32\dcomcnfg.exe
2006-11-04 21:47 489,984 --a------ C:\WINDOWS\system32\hypertrm.dll
2006-11-04 21:47 44,544 --a------ C:\WINDOWS\system32\hticons.dll
2006-11-04 21:47 4,096 --a------ C:\WINDOWS\system32\rdpcfgex.dll
2006-11-04 21:47 4,096 --a------ C:\WINDOWS\system32\mtxex.dll
2006-11-04 21:47 38,024 --a------ C:\WINDOWS\system32\drivers\termdd.sys
2006-11-04 21:47 35,328 --a------ C:\WINDOWS\system32\winchat.exe
2006-11-04 21:47 33,792 --a------ C:\WINDOWS\system32\regini.exe
2006-11-04 21:47 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2006-11-04 21:47 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2006-11-04 21:47 227,840 --a------ C:\WINDOWS\system32\avtapi.dll
2006-11-04 21:47 22,016 --a------ C:\WINDOWS\system32\qwinsta.exe
2006-11-04 21:47 20,992 --a------ C:\WINDOWS\system32\msg.exe
2006-11-04 21:47 20,480 --a------ C:\WINDOWS\system32\mtxdm.dll
2006-11-04 21:47 20,232 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2006-11-04 21:47 182,400 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys
2006-11-04 21:47 18,432 --a------ C:\WINDOWS\system32\qprocess.exe
2006-11-04 21:47 179,200 --a------ C:\WINDOWS\system32\accwiz.exe
2006-11-04 21:47 174,592 --a------ C:\WINDOWS\system32\cmprops.dll
2006-11-04 21:47 16,896 --a------ C:\WINDOWS\system32\tsshutdn.exe
2006-11-04 21:47 16,896 --a------ C:\WINDOWS\system32\qappsrv.exe
2006-11-04 21:47 16,384 --a------ C:\WINDOWS\system32\tskill.exe
2006-11-04 21:47 16,384 --a------ C:\WINDOWS\system32\mmfutil.dll
2006-11-04 21:47 16,384 --a------ C:\WINDOWS\system32\avmeter.dll
2006-11-04 21:47 15,872 --a------ C:\WINDOWS\system32\rwinsta.exe
2006-11-04 21:47 15,872 --a------ C:\WINDOWS\system32\cdmodem.dll
2006-11-04 21:47 15,360 --a------ C:\WINDOWS\system32\logoff.exe
2006-11-04 21:47 147,456 --a------ C:\WINDOWS\system32\comsnap.dll
2006-11-04 21:47 14,848 --a------ C:\WINDOWS\system32\tsdiscon.exe
2006-11-04 21:47 14,848 --a------ C:\WINDOWS\system32\tscon.exe
2006-11-04 21:47 14,848 --a------ C:\WINDOWS\system32\shadow.exe
2006-11-04 21:47 138,752 --a------ C:\WINDOWS\system32\sndvol32.exe
2006-11-04 21:47 129,024 --a------ C:\WINDOWS\system32\sessmgr.exe
2006-11-04 21:47 126,976 --a------ C:\WINDOWS\system32\mshearts.exe
2006-11-04 21:47 124,416 --a------ C:\WINDOWS\system32\sndrec32.exe
2006-11-04 21:47 124,184 --a------ C:\WINDOWS\system32\wuauclt.exe
2006-11-04 21:47 119,808 --a------ C:\WINDOWS\system32\winmine.exe
2006-11-04 21:47 115,976 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2006-11-04 21:47 114,688 --a------ C:\WINDOWS\system32\calc.exe
2006-11-04 21:47 11,776 --a------ C:\WINDOWS\system32\xolehlp.dll
2006-11-04 21:47 11,144 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2006-11-04 21:47 1,343,768 --a------ C:\WINDOWS\system32\wuaueng.dll
2006-11-04 21:47 1,161 --a------ C:\WINDOWS\system32\usrlogon.cmd


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2006-11-09 20:17 -------- d-------- C:\Program Files\Mozilla Firefox
2006-11-09 20:06 -------- d-------- C:\Documents and Settings\user\Application Data\DMCache
2006-11-09 19:52 -------- d-------- C:\Documents and Settings\user\Application Data\BSplayer Pro
2006-11-09 17:20 -------- d-------- C:\Program Files\SpywareGuard
2006-11-09 17:19 -------- d-------- C:\Documents and Settings\user\Application Data\AdobeUM
2006-11-09 14:40 -------- d-------- C:\Program Files\Common Files\System
2006-11-09 14:39 -------- d-------- C:\Program Files\Outlook Express
2006-11-09 08:00 -------- d-------- C:\Documents and Settings\user\Application Data\AVG7
2006-11-09 01:35 -------- d-------- C:\Program Files\WinRAR
2006-11-09 01:31 -------- d-------- C:\Program Files\Internet Explorer
2006-11-09 01:31 -------- d-------- C:\Program Files\Internet Download Manager
2006-11-09 01:31 -------- d-------- C:\Program Files\Google
2006-11-08 22:45 -------- d---s---- C:\Documents and Settings\user\Application Data\Microsoft
2006-11-08 22:05 -------- d-------- C:\Documents and Settings\user\Application Data\Vidalia
2006-11-08 20:21 -------- d-------- C:\Documents and Settings\user\Application Data\Tor
2006-11-08 19:36 -------- d-------- C:\Documents and Settings\user\Application Data\Google
2006-11-08 17:33 -------- d-------- C:\Program Files\NetMeeting
2006-11-08 17:17 -------- d-------- C:\Program Files\Messenger
2006-11-08 17:15 -------- d-------- C:\Program Files\Windows Media Player
2006-11-08 17:15 -------- d-------- C:\Program Files\Movie Maker
2006-11-08 14:45 -------- d-------- C:\Documents and Settings\user\Application Data\BinarySense
2006-11-08 14:44 -------- d-------- C:\Program Files\BinarySense
2006-11-07 23:56 -------- d-------- C:\Program Files\Wordflash
2006-11-07 23:56 -------- d-------- C:\Program Files\Common Files\DESIGNER
2006-11-07 23:55 -------- d-------- C:\Program Files\Common Files\InstallShield
2006-11-07 22:41 -------- d-------- C:\Documents and Settings\user\Application Data\Adobe
2006-11-07 14:49 -------- d-------- C:\Program Files\Online Services
2006-11-07 03:59 -------- d-------- C:\Program Files\Mediatwins software
2006-11-06 03:24 -------- d-------- C:\Documents and Settings\user\Application Data\IDM
2006-11-06 01:52 -------- d-------- C:\Program Files\Yahoo!
2006-11-05 21:58 -------- d--h----- C:\Program Files\InstallShield Installation Information
2006-11-05 21:01 -------- d-------- C:\Program Files\D-Tools
2006-11-05 20:49 -------- d-------- C:\Program Files\Argentum Backup
2006-11-05 20:40 -------- d-------- C:\Documents and Settings\user\Application Data\Argentum
2006-11-05 19:48 -------- d-------- C:\Program Files\Common Files\Acronis
2006-11-05 19:48 -------- d-------- C:\Program Files\Common Files
2006-11-05 19:48 -------- d-------- C:\Program Files\Acronis
2006-11-05 19:44 -------- d-------- C:\Program Files\PowerQuest
2006-11-05 19:35 -------- d-------- C:\Program Files\Common Files\Services
2006-11-05 19:35 -------- d-------- C:\Program Files\Common Files\Microsoft Shared
2006-11-05 19:22 -------- d-------- C:\Documents and Settings\user\Application Data\Share-to-Web Upload Folder
2006-11-05 19:20 -------- d-------- C:\Program Files\Hewlett-Packard
2006-11-05 19:17 -------- d--h----- C:\Program Files\Uninstall Information
2006-11-05 15:01 -------- d-------- C:\Program Files\Common Files\Hewlett-Packard
2006-11-05 12:43 -------- d-------- C:\Program Files\Grisoft
2006-11-05 03:29 -------- d-------- C:\Documents and Settings\user\Application Data\vlc
2006-11-05 02:35 -------- d-------- C:\Documents and Settings\user\Application Data\TuneUp Software
2006-11-05 02:34 -------- d-------- C:\Documents and Settings\user\Application Data\Babylon
2006-11-05 02:20 -------- d-------- C:\Program Files\The Weather Channel
2006-11-05 02:00 -------- d-------- C:\Program Files\Siber Systems
2006-11-05 01:44 -------- d-------- C:\Documents and Settings\user\Application Data\Mozilla
2006-11-05 01:43 -------- d-------- C:\Program Files\AOD
2006-11-05 01:42 -------- d-------- C:\Program Files\Common Files\mozilla.org
2006-11-05 01:40 62 --ahs---- C:\Documents and Settings\user\Application Data\desktop.ini
2006-11-05 01:40 -------- d-------- C:\Program Files\Common Files\SpeechEngines
2006-11-05 01:40 -------- d-------- C:\Program Files\Common Files\ODBC
2006-11-05 01:37 -------- d-------- C:\Documents and Settings\user\Application Data\Lavasoft
2006-11-05 01:35 -------- d-------- C:\Program Files\Netscape
2006-11-05 01:04 -------- d--h----- C:\Program Files\WindowsUpdate
2006-11-05 00:43 -------- d-------- C:\Program Files\Vidalia
2006-11-05 00:43 -------- d-------- C:\Program Files\Tor
2006-11-05 00:43 -------- d-------- C:\Program Files\Privoxy
2006-11-05 00:42 -------- d-------- C:\Program Files\Miranda IM
2006-11-05 00:42 -------- d-------- C:\Program Files\ERUNT
2006-11-04 22:30 -------- d-------- C:\Program Files\Analog Devices
2006-11-04 22:20 -------- d-------- C:\Documents and Settings\user\Application Data\Real
2006-11-04 22:19 -------- d-------- C:\Program Files\Real
2006-11-04 22:19 -------- d-------- C:\Program Files\Common Files\xing shared
2006-11-04 22:19 -------- d-------- C:\Program Files\Common Files\Real
2006-11-04 22:15 -------- d-------- C:\Program Files\JavaSoft
2006-11-04 22:14 -------- d-------- C:\Program Files\Driver-Soft
2006-11-04 22:12 -------- d-------- C:\Program Files\Common Files\Adobe
2006-11-04 22:10 -------- d-------- C:\Program Files\Adobe
2006-11-04 22:09 -------- d-------- C:\Program Files\MSN Messenger
2006-11-04 22:06 -------- d-------- C:\Program Files\Microsoft.NET
2006-11-04 22:05 -------- d-------- C:\Program Files\Microsoft ActiveSync
2006-11-04 22:04 -------- d-------- C:\Program Files\Microsoft Works
2006-11-04 22:04 -------- d-------- C:\Program Files\Microsoft Office
2006-11-04 22:03 -------- d-------- C:\Program Files\Microsoft Visual Studio
2006-11-04 21:56 -------- d-------- C:\Documents and Settings\user\Application Data\Identities
2006-11-04 21:51 -------- d-------- C:\Program Files\xerox
2006-11-04 21:51 -------- d-------- C:\Program Files\microsoft frontpage
2006-11-04 21:48 -------- d-------- C:\Program Files\ComPlus Applications
2006-11-04 21:48 -------- d-------- C:\Program Files\Common Files\MSSoap
2006-11-04 21:47 -------- d-------- C:\Program Files\Windows NT
2006-11-04 21:47 -------- d-------- C:\Program Files\MSN Gaming Zone
2006-08-25 19:53 561664 --a------ C:\WINDOWS\system32\comctl32.dll


(((((((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))

*Note* empty entries are not shown

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run]
"IDMan"="C:\\Program Files\\Internet Download Manager\\IDMan.exe /onboot"
"BitComet"="\"D:\\Program Files\\BitLord\\BitLord.exe\""
"ctfmon.exe"="C:\\WINDOWS\\System32\\ctfmon.exe"
"updateMgr"="\"C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe\" AcRdB7_0_7 -reboot 1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run]
"IMJPMIG8.1"="C:\\WINDOWS\\IME\\imjp8_1\\IMJPMIG.EXE /Spoil /RemAdvDef /Migration32"
"PHIME2002ASync"="C:\\WINDOWS\\System32\\IME\\TINTLGNT\\TINTSETP.EXE /SYNC"
"PHIME2002A"="C:\\WINDOWS\\System32\\IME\\TINTLGNT\\TINTSETP.EXE /IMEName"
"AVG7_CC"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgcc.exe /STARTUP"
"TkBellExe"="\"C:\\Program Files\\Common Files\\Real\\Update_OB\\realsched.exe\" -osboot"
"IgfxTray"="C:\\WINDOWS\\System32\\igfxtray.exe"
"HotKeysCmds"="C:\\WINDOWS\\System32\\hkcmd.exe"
"Cmaudio"="RunDll32 cmicnfg.cpl,CMICtrlWnd"
"Zone Labs Client"="\"D:\\Program Files\\Zone Labs\\ZoneAlarm\\zlclient.exe\""
"!AVG Anti-Spyware"="\"C:\\Program Files\\Grisoft\\AVG Anti-Spyware 7.5\\avgas.exe\" /minimized"
"Share-to-Web Namespace Daemon"="D:\\Program Files\\Hewlett-Packard\\HP Share-to-Web\\hpgs2wnd.exe"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\IMAIL]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MAPI]
"Installed"="1"
"NoChange"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run\OptionalComponents\MSFS]
"Installed"="1"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2\AntiRepl]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2\AntiRepl\0]
"Operation"=dword:00000001
"Target"="\\??\\C:\\WINDOWS\\SYSTEM32\\NTSYSTEM.EXE"
"Source"=""

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\runonce\ApprovedByRegRun2\AntiRepl\1]
"Operation"=dword:00000001
"Target"="C:\\WINDOWS\\SYSTEM32\\NTOSKRNL.DLL"
"Source"=""

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components]
"DeskHtmlVersion"=dword:00000110
"DeskHtmlMinorVersion"=dword:00000005
"Settings"=dword:00000001
"GeneralFlags"=dword:00000001

[HKEY_CURRENT_USER\software\microsoft\internet explorer\desktop\components\0]
"Source"="About:Home"
"SubscribedURL"="About:Home"
"FriendlyName"="My Current Home Page"
"Flags"=dword:00000002
"Position"=hex:2c,00,00,00,cc,00,00,00,00,00,00,00,34,03,00,00,e2,02,00,00,00,\
00,00,00,01,00,00,00,01,00,00,00,01,00,00,00,00,00,00,00,00,00,00,00
"CurrentState"=hex:04,00,00,40
"OriginalStateInfo"=hex:18,00,00,00,ff,ff,00,00,ff,ff,00,00,ff,ff,ff,ff,ff,ff,\
ff,ff,04,00,00,00
"RestoredStateInfo"=hex:18,00,00,00,6a,02,00,00,23,00,00,00,a4,00,00,00,9a,00,\
00,00,01,00,00,00

[HKEY_USERS\.default\software\microsoft\windows\currentversion\run]
"AVG7_Run"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgw.exe /RUNONCE"

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\run]
"AVG7_Run"="C:\\PROGRA~1\\Grisoft\\AVG7\\avgw.exe /RUNONCE"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\sharedtaskscheduler]
"{438755C2-A8BA-11D1-B96B-00A0C90312E1}"="Browseui preloader"
"{8C7461EF-2B13-11d2-BE35-3078302C2030}"="Component Categories cache daemon"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"=""
"{81559C35-8464-49F7-BB0E-07A383BEF910}"=""
"{57B86673-276A-48B2-BAE7-C6DBB3020EB8}"="AVG Anti-Spyware 7.5"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer\Run]

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"dontdisplaylastusername"=dword:00000000
"legalnoticecaption"=""
"legalnoticetext"=""
"shutdownwithoutlogon"=dword:00000001
"undockwithoutlogon"=dword:00000001

[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_USERS\s-1-5-18\software\microsoft\windows\currentversion\policies\explorer]
"NoDriveTypeAutoRun"=dword:00000091

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\shellserviceobjectdelayload]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}"
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}"
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}"
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}"

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Yahoo! Pager"="\"C:\\Program Files\\Yahoo!\\Messenger\\ypager.exe\" -quiet"
"Desktop Weather 3"="C:\\PROGRA~1\\THEWEA~1\\The Weather Channel.exe"
"MSMSGS"="\"C:\\Program Files\\Messenger\\msmsgs.exe\" /background"
"IDMan"="C:\\Program Files\\Internet Download Manager\\IDMan.exe /onboot"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"Babylon Client"="d:\\Program Files\\Babylon\\Babylon-Pro\\Babylon.exe -AutoStart"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Adobe Reader Speed Launch.lnk"
"backup"="C:\\WINDOWS\\pss\\Adobe Reader Speed Launch.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Adobe\\ACROBA~1.0\\Reader\\READER~1.EXE "
"item"="Adobe Reader Speed Launch"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^BigFix.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\BigFix.lnk"
"backup"="C:\\WINDOWS\\pss\\BigFix.lnkCommon Startup"
"location"="Common Startup"
"command"="D:\\BigFix.exe /atstartup"
"item"="BigFix"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Privoxy.lnk]
"path"="C:\\Documents and Settings\\All Users\\Start Menu\\Programs\\Startup\\Privoxy.lnk"
"backup"="C:\\WINDOWS\\pss\\Privoxy.lnkCommon Startup"
"location"="Common Startup"
"command"="C:\\PROGRA~1\\Privoxy\\privoxy.exe "
"item"="Privoxy"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools-1033]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="daemon"
"hkey"="HKLM"
"command"="\"C:\\Program Files\\D-Tools\\daemon.exe\" -lang 1033 -noicon"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Mozilla Quick Launch]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="NETSCP"
"hkey"="HKCU"
"command"="\"C:\\PROGRA~1\\NETSCAPE\\NETSCAPE\\NETSCP.EXE\" -turbo"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RoboForm]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="RoboTaskBarIcon"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Siber Systems\\AI RoboForm\\RoboTaskBarIcon.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="GoogleToolbarNotifier"
"hkey"="HKCU"
"command"="C:\\Program Files\\Google\\GoogleToolbarNotifier\\1.2.908.5008\\GoogleToolbarNotifier.exe"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\updateMgr]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="AdobeUpdateManager"
"hkey"="HKCU"
"command"="C:\\Program Files\\Adobe\\Acrobat 7.0\\Reader\\AdobeUpdateManager.exe AcRdB7_0_5"
"inimapping"="0"

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Vidalia]
"key"="SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\Run"
"item"="vidalia"
"hkey"="HKCU"
"command"="\"C:\\Program Files\\Vidalia\\vidalia.exe\""
"inimapping"="0"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"

Completion time: 06-11-09 21:10:23.96
C:\ComboFix.txt ... 06-11-09 21:10
C:\ComboFix2.txt ... 06-11-09 20:08
 
#17 ·
Hello Xerxes,

My apologies for the delay. Before I address your other needs, I'd like to do one more check to ensure all is truly well. :sayyes:

Download gmer from http://www.gmer.net & unzip it to desktop

Launch gmer.exe by double-clicking it. Select the rootkit tab & make sure the 'Show All' button is unticked.

Press scan & when it has finished press copy & paste the log back here
 
#19 · (Edited)
Please refrain from any form of cursing or we're done here.

It is certainly not my intent to cause you alarm. No one scanner can detect everything--we use different tools to check the system. Gmer will merely check for any rootkitted infections--IF there are any. I am merely using this as a final check of your system as you seem to 'clean' a lot of your own infections by simply re-naming them--which is not the proper way. I'd like to be sure that nothing is lurking about.
 
#20 ·
GMER 1.0.12.11889 - http://www.gmer.net
Rootkit scan 2006-11-11 02:48:51
Windows 5.1.2600 Service Pack 1


---- System - GMER 1.0.12 ----

SSDT d347bus.sys ZwClose
SSDT \SystemRoot\System32\vsdatant.sys ZwConnectPort
SSDT \SystemRoot\System32\vsdatant.sys ZwCreateFile
SSDT \SystemRoot\System32\vsdatant.sys ZwCreateKey
SSDT d347bus.sys ZwCreatePagingFile
SSDT \SystemRoot\System32\vsdatant.sys ZwCreatePort
SSDT \SystemRoot\System32\vsdatant.sys ZwCreateProcess
SSDT \SystemRoot\System32\vsdatant.sys ZwCreateProcessEx
SSDT \SystemRoot\System32\vsdatant.sys ZwCreateSection
SSDT \SystemRoot\System32\vsdatant.sys ZwCreateWaitablePort
SSDT \SystemRoot\System32\vsdatant.sys ZwDeleteFile
SSDT \SystemRoot\System32\vsdatant.sys ZwDeleteKey
SSDT \SystemRoot\System32\vsdatant.sys ZwDeleteValueKey
SSDT \SystemRoot\System32\vsdatant.sys ZwDuplicateObject
SSDT d347bus.sys ZwEnumerateKey
SSDT d347bus.sys ZwEnumerateValueKey
SSDT \SystemRoot\System32\vsdatant.sys ZwLoadKey
SSDT \SystemRoot\System32\vsdatant.sys ZwMapViewOfSection
SSDT \SystemRoot\System32\vsdatant.sys ZwOpenFile
SSDT d347bus.sys ZwOpenKey
SSDT \SystemRoot\System32\vsdatant.sys ZwOpenProcess
SSDT \SystemRoot\System32\vsdatant.sys ZwOpenThread
SSDT d347bus.sys ZwQueryKey
SSDT d347bus.sys ZwQueryValueKey
SSDT \SystemRoot\System32\vsdatant.sys ZwReplaceKey
SSDT \SystemRoot\System32\vsdatant.sys ZwRequestWaitReplyPort
SSDT \SystemRoot\System32\vsdatant.sys ZwRestoreKey
SSDT \SystemRoot\System32\vsdatant.sys ZwSecureConnectPort
SSDT \SystemRoot\System32\vsdatant.sys ZwSetInformationFile
SSDT \SystemRoot\System32\vsdatant.sys ZwSetSystemInformation
SSDT d347bus.sys ZwSetSystemPowerState
SSDT \SystemRoot\System32\vsdatant.sys ZwSetValueKey
SSDT \SystemRoot\System32\vsdatant.sys ZwTerminateProcess

---- Kernel code sections - GMER 1.0.12 ----

.text ntoskrnl.exe!_abnormal_termination + FA 804DE6AC 16 Bytes
.text netbt.sys F0A14380 1 Byte
.text netbt.sys F0A14382 28 Bytes
.text netbt.sys F0A1439F 69 Bytes
.text netbt.sys F0A143E5 42 Bytes
.text netbt.sys F0A14410 7 Bytes
.text ...
.text ntdll.dll!NtClose 77F5B5C8 5 Bytes JMP 72033A2A
.text ntdll.dll!NtCreateProcess 77F5B728 5 Bytes JMP 72033BB5
.text ntdll.dll!NtCreateProcessEx 77F5B738 5 Bytes JMP 72033A99
.text ntdll.dll!NtCreateSection 77F5B758 5 Bytes JMP 72033A48
.text ntoskrnl.exe!_abnormal_termination + FA 804DE6AC 16 Bytes

---- User code sections - GMER 1.0.12 ----

.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + FFFF8CB9 75B511DC 1 Byte
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + FFFF8CBD 75B511E0 1 Byte
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + FFFF8CC1 75B511E4 6 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + FFFF8CC9 75B511EC 1 Byte
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + FFFF8CCD 75B511F0 1 Byte
.text ...
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!ServerDllInitialization + 10 75B52D9B 25 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!ServerDllInitialization + 2B 75B52DB6 79 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!ServerDllInitialization + 7C 75B52E07 27 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!ServerDllInitialization + 99 75B52E24 11 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!ServerDllInitialization + A6 75B52E31 83 Bytes
.text ...
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSetProcessCreateNotify + 26 75B54253 61 Bytes CALL 75B59463 C:\WINDOWS\system32\basesrv.dll
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSetProcessCreateNotify + 64 75B54291 5 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSetProcessCreateNotify + 6A 75B54297 43 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSetProcessCreateNotify + 96 75B542C3 59 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSetProcessCreateNotify + D2 75B542FF 15 Bytes
.text ...
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsLogon + 9A 75B5841F 20 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsLogon + B0 75B58435 20 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsLogon + C5 75B5844A 52 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsLogon + FB 75B58480 38 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsLogon + 122 75B584A7 12 Bytes
.text ...
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + 6E 75B58591 9 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + 78 75B5859B 1 Byte
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + 7A 75B5859D 10 Bytes
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + 86 75B585A9 1 Byte
.text C:\WINDOWS\system32\csrss.exe[740] basesrv.dll!BaseSrvNlsUpdateRegistryCache + 8A 75B585AD 130 Bytes
.text ...

---- Devices - GMER 1.0.12 ----

Device \FileSystem\Ntfs \Ntfs IRP_MJ_READ 819B15C8
Device \FileSystem\Fastfat \FatCdrom IRP_MJ_READ FF7B0AB0
Device \Driver\Tcpip \Device\Ip IRP_MJ_CREATE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Ip IRP_MJ_CLOSE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Ip IRP_MJ_DEVICE_CONTROL [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Ip IRP_MJ_INTERNAL_DEVICE_CONTROL [F9A9285A] avgtdi.sys
Device \Driver\Tcpip \Device\Ip IRP_MJ_CLEANUP [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Tcp IRP_MJ_CREATE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Tcp IRP_MJ_CLOSE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Tcp IRP_MJ_DEVICE_CONTROL [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Tcp IRP_MJ_INTERNAL_DEVICE_CONTROL [F9A9285A] avgtdi.sys
Device \Driver\Tcpip \Device\Tcp IRP_MJ_CLEANUP [F09F92A0] vsdatant.sys
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE_NAMED_PIPE FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLOSE FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_READ FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_WRITE FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_EA FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_EA FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FLUSH_BUFFERS FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DIRECTORY_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_FILE_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_INTERNAL_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SHUTDOWN FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_LOCK_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CLEANUP FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_CREATE_MAILSLOT FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_POWER FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_DEVICE_CHANGE FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_QUERY_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_SET_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom0 IRP_MJ_PNP FF529678
Device \FileSystem\Rdbss \Device\FsWrap IRP_MJ_READ FF792FB0
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE_NAMED_PIPE FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLOSE FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_READ FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_WRITE FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_EA FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_EA FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FLUSH_BUFFERS FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DIRECTORY_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_FILE_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_INTERNAL_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SHUTDOWN FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_LOCK_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CLEANUP FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_CREATE_MAILSLOT FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_POWER FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_DEVICE_CHANGE FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_QUERY_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_SET_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom1 IRP_MJ_PNP FF529678
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CREATE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CREATE_NAMED_PIPE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CLOSE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_READ FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_WRITE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_EA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_EA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_FLUSH_BUFFERS FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_DIRECTORY_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_FILE_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_INTERNAL_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SHUTDOWN FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_LOCK_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CLEANUP FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_CREATE_MAILSLOT FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_POWER FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_DEVICE_CHANGE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_QUERY_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_SET_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T1L0-17 IRP_MJ_PNP FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CREATE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CREATE_NAMED_PIPE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CLOSE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_READ FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_WRITE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_EA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_EA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_FLUSH_BUFFERS FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_DIRECTORY_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_FILE_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_INTERNAL_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SHUTDOWN FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_LOCK_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CLEANUP FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_CREATE_MAILSLOT FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_POWER FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_DEVICE_CHANGE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_QUERY_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_SET_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-3 IRP_MJ_PNP FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE_NAMED_PIPE FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CLOSE FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_READ FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_WRITE FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_EA FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_EA FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_FLUSH_BUFFERS FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DIRECTORY_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_FILE_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_INTERNAL_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SHUTDOWN FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_LOCK_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CLEANUP FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_CREATE_MAILSLOT FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_POWER FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_DEVICE_CHANGE FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_QUERY_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_SET_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdePort0 IRP_MJ_PNP FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE_NAMED_PIPE FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CLOSE FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_READ FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_WRITE FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_EA FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_EA FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_FLUSH_BUFFERS FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DIRECTORY_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_FILE_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_INTERNAL_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SHUTDOWN FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_LOCK_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CLEANUP FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_CREATE_MAILSLOT FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_POWER FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_DEVICE_CHANGE FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_QUERY_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_SET_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdePort1 IRP_MJ_PNP FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_CREATE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_CREATE_NAMED_PIPE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_CLOSE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_READ FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_WRITE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_QUERY_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SET_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_QUERY_EA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SET_EA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_FLUSH_BUFFERS FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_QUERY_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SET_VOLUME_INFORMATION FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_DIRECTORY_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_FILE_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_INTERNAL_DEVICE_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SHUTDOWN FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_LOCK_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_CLEANUP FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_CREATE_MAILSLOT FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_QUERY_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SET_SECURITY FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_POWER FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SYSTEM_CONTROL FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_DEVICE_CHANGE FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_QUERY_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_SET_QUOTA FF924008
Device \Driver\atapi \Device\Ide\IdeDeviceP1T0L0-f IRP_MJ_PNP FF924008
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE_NAMED_PIPE FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CLOSE FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_READ FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_WRITE FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_EA FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_EA FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_FLUSH_BUFFERS FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DIRECTORY_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_FILE_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_INTERNAL_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SHUTDOWN FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_LOCK_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CLEANUP FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_CREATE_MAILSLOT FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_POWER FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_DEVICE_CHANGE FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_QUERY_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_SET_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom2 IRP_MJ_PNP FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_CREATE FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_CREATE_NAMED_PIPE FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_CLOSE FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_READ FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_WRITE FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_QUERY_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SET_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_QUERY_EA FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SET_EA FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_FLUSH_BUFFERS FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_QUERY_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SET_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_DIRECTORY_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_FILE_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_INTERNAL_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SHUTDOWN FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_LOCK_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_CLEANUP FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_CREATE_MAILSLOT FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_QUERY_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SET_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_POWER FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_DEVICE_CHANGE FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_QUERY_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_SET_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom3 IRP_MJ_PNP FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_CREATE FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_CREATE_NAMED_PIPE FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_CLOSE FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_READ FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_WRITE FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_QUERY_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SET_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_QUERY_EA FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SET_EA FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_FLUSH_BUFFERS FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_QUERY_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SET_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_DIRECTORY_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_FILE_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_INTERNAL_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SHUTDOWN FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_LOCK_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_CLEANUP FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_CREATE_MAILSLOT FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_QUERY_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SET_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_POWER FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_DEVICE_CHANGE FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_QUERY_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_SET_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom4 IRP_MJ_PNP FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_CREATE FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_CREATE_NAMED_PIPE FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_CLOSE FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_READ FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_WRITE FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_QUERY_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SET_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_QUERY_EA FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SET_EA FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_FLUSH_BUFFERS FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_QUERY_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SET_VOLUME_INFORMATION FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_DIRECTORY_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_FILE_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_INTERNAL_DEVICE_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SHUTDOWN FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_LOCK_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_CLEANUP FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_CREATE_MAILSLOT FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_QUERY_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SET_SECURITY FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_POWER FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SYSTEM_CONTROL FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_DEVICE_CHANGE FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_QUERY_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_SET_QUOTA FF529678
Device \Driver\Cdrom \Device\CdRom5 IRP_MJ_PNP FF529678
Device \FileSystem\Srv \Device\LanmanServer IRP_MJ_READ FF5578C8
Device \Driver\Tcpip \Device\Udp IRP_MJ_CREATE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Udp IRP_MJ_CLOSE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Udp IRP_MJ_DEVICE_CONTROL [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\Udp IRP_MJ_INTERNAL_DEVICE_CONTROL [F9A9285A] avgtdi.sys
Device \Driver\Tcpip \Device\Udp IRP_MJ_CLEANUP [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\RawIp IRP_MJ_CREATE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\RawIp IRP_MJ_CLOSE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\RawIp IRP_MJ_DEVICE_CONTROL [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\RawIp IRP_MJ_INTERNAL_DEVICE_CONTROL [F9A9285A] avgtdi.sys
Device \Driver\Tcpip \Device\RawIp IRP_MJ_CLEANUP [F09F92A0] vsdatant.sys
Device \FileSystem\MRxSmb \Device\LanmanDatagramReceiver IRP_MJ_READ FF586EA8
Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_CREATE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_CLOSE [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_DEVICE_CONTROL [F09F92A0] vsdatant.sys
Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_INTERNAL_DEVICE_CONTROL [F9A9285A] avgtdi.sys
Device \Driver\Tcpip \Device\IPMULTICAST IRP_MJ_CLEANUP [F09F92A0] vsdatant.sys
Device \FileSystem\MRxSmb \Device\LanmanRedirector IRP_MJ_READ FF586EA8
Device \FileSystem\Npfs \Device\NamedPipe IRP_MJ_READ FF86D318
Device \FileSystem\Msfs \Device\Mailslot IRP_MJ_READ FF711B88
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_CREATE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_CREATE_NAMED_PIPE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_CLOSE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_READ FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_WRITE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_QUERY_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SET_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_QUERY_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SET_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_FLUSH_BUFFERS FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_QUERY_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SET_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_DIRECTORY_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_FILE_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SHUTDOWN FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_LOCK_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_CLEANUP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_CREATE_MAILSLOT FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_QUERY_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SET_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_POWER FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_DEVICE_CHANGE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_QUERY_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_SET_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target0Lun0 IRP_MJ_PNP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_CREATE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_CREATE_NAMED_PIPE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_CLOSE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_READ FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_WRITE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_QUERY_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SET_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_QUERY_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SET_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_FLUSH_BUFFERS FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_QUERY_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SET_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_DIRECTORY_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_FILE_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SHUTDOWN FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_LOCK_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_CLEANUP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_CREATE_MAILSLOT FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_QUERY_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SET_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_POWER FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_DEVICE_CHANGE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_QUERY_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_SET_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target2Lun0 IRP_MJ_PNP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_CREATE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_CREATE_NAMED_PIPE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_CLOSE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_READ FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_WRITE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_QUERY_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SET_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_QUERY_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SET_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_FLUSH_BUFFERS FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_QUERY_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SET_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_DIRECTORY_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_FILE_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SHUTDOWN FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_LOCK_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_CLEANUP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_CREATE_MAILSLOT FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_QUERY_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SET_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_POWER FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_DEVICE_CHANGE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_QUERY_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_SET_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target3Lun0 IRP_MJ_PNP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_CREATE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_CREATE_NAMED_PIPE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_CLOSE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_READ FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_WRITE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_QUERY_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SET_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_QUERY_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SET_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_FLUSH_BUFFERS FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_QUERY_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SET_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_DIRECTORY_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_FILE_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_INTERNAL_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SHUTDOWN FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_LOCK_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_CLEANUP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_CREATE_MAILSLOT FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_QUERY_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SET_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_POWER FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_DEVICE_CHANGE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_QUERY_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_SET_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1Port2Path0Target1Lun0 IRP_MJ_PNP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_CREATE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_CREATE_NAMED_PIPE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_CLOSE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_READ FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_WRITE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_QUERY_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SET_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_QUERY_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SET_EA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_FLUSH_BUFFERS FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_QUERY_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SET_VOLUME_INFORMATION FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_DIRECTORY_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_FILE_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_INTERNAL_DEVICE_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SHUTDOWN FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_LOCK_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_CLEANUP FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_CREATE_MAILSLOT FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_QUERY_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SET_SECURITY FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_POWER FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SYSTEM_CONTROL FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_DEVICE_CHANGE FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_QUERY_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_SET_QUOTA FF961248
Device \Driver\d347prt \Device\Scsi\d347prt1 IRP_MJ_PNP FF961248
Device \FileSystem\Fastfat \Fat IRP_MJ_READ FF7B0AB0
Device \FileSystem\Fs_Rec \FileSystem\UdfsCdRomRecognizer IRP_MJ_READ FF6EB1E8
Device \FileSystem\Fs_Rec \FileSystem\FatCdRomRecognizer IRP_MJ_READ FF6EB1E8
Device \FileSystem\Fs_Rec \FileSystem\CdfsRecognizer IRP_MJ_READ FF6EB1E8
Device \FileSystem\Fs_Rec \FileSystem\FatDiskRecognizer IRP_MJ_READ FF6EB1E8
Device \FileSystem\Fs_Rec \FileSystem\UdfsDiskRecognizer IRP_MJ_READ FF6EB1E8
Device \FileSystem\Cdfs \Cdfs IRP_MJ_READ FF7ABF10

---- Modules - GMER 1.0.12 ----

Module _________ F9480000

---- Files - GMER 1.0.12 ----

ADS C:\WINDOWS\system32\hpgwiamd.dll:KAVICHS
ADS C:\WINDOWS\system32\hpotscl.dll:KAVICHS
ADS C:\WINDOWS\system32\HPZc3212.dll:KAVICHS
ADS D:\Abu Dhabi.doc:KAVICHS
ADS D:\Addr.doc:KAVICHS
ADS D:\appx.doc:KAVICHS
ADS D:\Attn.doc:KAVICHS
ADS D:\baby.jpg:KAVICHS
ADS D:\BitCometTracker_0.1\BitCometTracker.exe:KAVICHS
ADS D:\BitCometTracker_0.1\BitCometTracker.xml:KAVICHS
ADS D:\BitCometTracker_0.1\ChangeLog.txt:KAVICHS
ADS D:\BitCometTracker_0.1\dbghelp.dll:KAVICHS
ADS D:\BitCometTracker_0.1\License.txt:KAVICHS
ADS D:\BitCometTracker_0.1\Plugins_example\db_mysql.dll:KAVICHS
ADS ...
ADS E:\kav5014ppro.Key:KAVICHS
ADS E:\RECYCLER\S-1-5-21-582103443-3301898836-4258192708-1005\INFO2:KAVICHS
ADS E:\RegeSave.reg:KAVICHS
ADS E:\scan.pdf:KAVICHS
ADS E:\scan2.pdf:KAVICHS
ADS E:\sysbckup files\servicpck tcpip.sys file\tcpip.sys:KAVICHS
ADS E:\sysbckup files\system32 tcpip.sys\tcpip.sys:KAVICHS

---- EOF - GMER 1.0.12 ----
 
#24 · (Edited)
Hello Xerxes,

No, I haven't left you--it was dinner time for me and my family. :smile: Your reply that followed your posting of the Gmer log clarified your intent for me. No worries--let's continue. :sayyes:

Regarding items that can be disabled at startup, you know better than I what you prefer to have for convenience. Look up any of the files in your list of running processes at this site. You'll find information explaining what these processes are and whether or not they need to be running at start up, or continuously running in background for proper operation of Windows. Additional assistance in streamlining your Operating System would be better discussed in the Windows XP section.

----------------------

To manage your cookies in Firefox, click on FF Tools>Options>Privacy

From there, you can set exceptions for allowed cookies. If you need more detailed information, this issue would be better discussed in the Mozilla/Firefox Browsers section.

----------------------

You already have a good multi-layered set up of protection for your system--there is no need to add any more.

For additional information, please take a look at these well written articles:

PC Safety and Security--What Do I Need?
HOW DID I GET INFECTED IN THE FIRST PLACE? by Tony Klein
MAKING INTERNET EXPLORER SAFER
Understanding and Using Firewalls
 
#26 ·
Yes, the gmer log is clean. I wouldn't say you are totally free from danger in the future--no one is--even with all the protective programs in place. Remember, the 'bad guys' come out with new ways to infect a system--then the Anti Malware tools add them in as they are discovered.

If you follow the advice given in the articles I linked you to, keep your tools updated and scan with them and let them clean what they find, you shouldn't have any serious problems in the future. :sayyes:

Stay safe out there, Xerxes. :wave:
 
Status
Not open for further replies.
You have insufficient privileges to reply here.
Top