Welcome to Tech Support Forum home to more then 136,000 problems solved. Issues have included: Spyware, Malware, Virus Issues, Windows, Microsoft, Linux, Networking, Security, Hardware, and Gaming Getting your problem solved is as easy as:
1. Registering for a free account
2. Asking your question
3. Receiving an answer

Registered members:
* Get free support
* Communicate privately with other members (PM).
* Removal of this message
* See fewer ads.
* And much more..

 




Want to know how to post a question? click here Having problems with spyware and pop-ups? First Steps
Go Back   Tech Support Forum > Security Center > HijackThis Log Help
Now it works, now it don't Now it works, now it don't
User Name
Password
Site Map Register Donate Rules Blogs Mark Forums Read

HijackThis Log Help Get Rid Of Malware With Help From Our Analysts. Follow the "First Steps" link at the top right of each page before posting for help.

Reply
Page 1 of 2 1 2 >
 
Thread Tools
Old 09-16-2006, 11:43 AM   #1 (permalink)
Registered User
 
Join Date: Sep 2006
Posts: 19
OS: XP


Question Now it works, now it don't
Hi all,

My problem is this, I can connect to the internet ok, I can get my homepage (google) up, and from there visit another site, but when I return to the home page it won’t come up, it says Google.co.uk in the address box and done in the bottom left hand corner, but an unable to find the page you are looking for message.

If I reboot the computer, it works again, but as above only the first time, Internet options in the control panel also shows google.co.uk, any ideas?

oberland
Oberland is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Bookmark on Thread SoupReddit!
Reply With Quote
Old 09-18-2006, 10:48 AM   #2 (permalink)
Assistant Manager, TSF Academy; Moderator/Analyst Security Team
 
Ried's Avatar
 
Join Date: Jan 2005
Location: Ohio
Posts: 18,658
OS: WinXP and Win98se


Hello Oberland and welcome to TSF,

Let's see if malware may be at the root of this issue.

Please download HijackThis - this program will help us determine the extent of any spyware/malware on your computer as well as aid us in removing it.

Double-click on the file you just downloaded.
Click on the "Unzip" button to install. It will by default install to the directory - C:\PROGRAM FILES\HIJACKTHIS\

Double click on HijackThis.exe to run the program.

1. If it gives you an intro screen, just choose 'Do a system scan and save a logfile'.
2. If you don't get the intro screen, just hit Scan and then click on Save log.
3. Post the hijackthis.log file here. **Do not fix anything in HijackThis as many entries are harmless.
__________________

Proud Member of ASAP since 2005
Proud Member of UNITE since 2006

Keep this site free for all. Please consider, donating

"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."
Ried is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Bookmark on Thread SoupReddit!
Reply With Quote
Old 09-20-2006, 02:08 PM   #3 (permalink)
Registered User
 
Join Date: Sep 2006
Posts: 19
OS: XP


Now it works, Now it don't
Hi Reid,

I really appreciate the help, I hope this is what you need?

Oberland


Logfile of HijackThis v1.99.1

Scan saved at 20:22:21, on 17/09/2006

Platform: Windows XP SP2 (WinNT 5.01.2600)

MSIE: Internet Explorer v7.00 (7.00.5335.0005)



Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\Program Files\Spyware Doctor\sdhelp.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO 2006 version 7\monitor.exe
C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\PROGRA~1\EVIDEN~1\ee.exe
C:\DOCUME~1\Joe\LOCALS~1\Temp\Temporary Directory 1 for hijackthis.zip\HijackThis.exe


R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lycos.com
R3 - Default URLSearchHook is missing
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IEPlugin Class - {CF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\Advanced System Optimizer\IEHelper.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [DVD43] C:\PROGRA~1\DVDREG~1\DVDRegionFree.exe /hidden
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - HKCU\..\Run: [Advanced Uninstaller PRO Installation Monitor] "C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO 2006 version 7\monitor.exe"
O4 - HKCU\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /0
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Internet Radio by Endicosoft.com - {1F958B09-3312-7f0e-9723-4C1324C57B20} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: Spyware Doctor - {2D663D1A-8670-49D9-A1A5-4C56B4E14E84} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O11 - Options group: [INTERNATIONAL] International*
O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - http://www.snapfish.co.uk/SnapfishUKActivia.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - http://by101fd.bay101.hotmail.msn.co...s/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1137263118609
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697519} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_aac.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://194.25.81.26/activex/AMC.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7D155A32-D483-49AD-9E69-0D3D791BEF6E}: NameServer = 195.92.195.94 195.92.195.95
O18 - Protocol: bt2 - {1730B77B-F429-498F-9B15-4514D83C8294} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-bt2 - {6E1DDCE8-76BC-4390-9488-806E8FB1AD77} - (no file)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: Boonty Games - BOONTY - C:\Program Files\Common Files\BOONTY Shared\Service\Boonty.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP Pro 3\Tools\NMSAccess.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: PC Tools Spyware Doctor (SDhelper) - PC Tools Research Pty Ltd - C:\Program Files\Spyware Doctor\sdhelp.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Last edited by Ried : 09-20-2006 at 03:18 PM. Reason: removed double spacing for easier review
Oberland is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Bookmark on Thread SoupReddit!
Reply With Quote
Old 09-20-2006, 03:37 PM   #4 (permalink)
Assistant Manager, TSF Academy; Moderator/Analyst Security Team
 
Ried's Avatar
 
Join Date: Jan 2005
Location: Ohio
Posts: 18,658
OS: WinXP and Win98se


Hello Oberland,

Before we begin, I'll need you to move the HijackThis program as HijackThis is able to create backups whenever if fixes any entry. These are stored in a subfolder called backups. As such, we advise against placing the program in any temporary folders.

Please create a new directory, C:\Program Files\HijackThis\, and re-locate the program & it's associate files there.


Please copy this page to Notepad and save to your desktop for reference as you will not have any browsers open while you are carrying out these instructions.

*******************************************

Please disable the following program(s) as they may interfere with the fixes below. You may re-enable them when we are through cleaning your system:

Windows Defender:
  • Open Windows Defender.
  • Click on Tools, Options.
  • Scroll down and uncheck Turn on real-time protection (recommended).
  • After you uncheck this, click on the Save button and close Windows Defender.
Spyware Doctor
  • From within Spyware Doctor, click the "OnGuard" button on the left side.
  • Uncheck "Activate OnGuard".

*******************************************

Click Start->Run - type services.msc & then click on the OK button
*Locate the service - Boonty Games
*Double-click on it to open the Properties dialog.
*Under the General tab:
*Stop the service by using the Stop button.
*Change the Startup type to Disabled & then click on the OK button

Next, start HiJackThis & go to Config>Misc.Tools...> Delete an NT service...
*In the popup box that appears, type in the BOONTY Click OK and allow reboot.

--------------------------------------------

Open HijackThis and click on 'Do a System Scan Only'. Check the following entries:

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.lycos.com
R3 - Default URLSearchHook is missing

Click 'Fix Checked' and close HijackThis.

-----------------------------------

Please run this online scan, to search for any remnants. It can take some time, so please be patient and allow it to run it's full course:

Perform an online scan using Internet Explorer with Panda ActiveScan
** click on "Free use ActiveScan" located on the top right hand corner
  1. Click Check Now & a 'pop up' window shall appear. *ensure that your pop up blocker doesn't block it
  2. Enter your e-mail address, country, and state & click Scan Now ...begins downloading 8 MB Panda's ActiveX controls
Begin the scan by selecting My Computer
  • If it finds any malware, it will offer you a report.
  • Please ignore any entry it finds and wants you to buy the program for removal as we will address this later.
  • Click on see report. Then click Save report

Please include the following in your next reply:

Panda results
New HijackThis log
__________________

Proud Member of ASAP since 2005
Proud Member of UNITE since 2006

Keep this site free for all. Please consider, donating

"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."
Ried is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Bookmark on Thread SoupReddit!
Reply With Quote
Old 09-22-2006, 08:48 AM   #5 (permalink)
Registered User
 
Join Date: Sep 2006
Posts: 19
OS: XP


Now it works, Now it dont
Hi Reid,

As requested here is the log from HijackThis, however I was unable to connect to Pandascan, although I was able to update AVG I do not have Internet explorer, so I tried to download it, it seemed to download, then it displayed an error message, and twent back to "normal" in not allowing me to connect to a browser.

Once again thanks for the help
Oberland


Logfile of HijackThis v1.99.1
Scan saved at 16:23:44, on 22/09/2006
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Windows Defender\MsMpEng.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\brsvc01a.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\brss01a.exe
C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
C:\WINDOWS\system32\drivers\CDAC11BA.EXE
C:\Program Files\ewido anti-spyware 4.0\guard.exe
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\CyberLink\Shared Files\RichVideo.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wdfmgr.exe
C:\WINDOWS\system32\MsPMSPSv.exe
C:\WINDOWS\System32\alg.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe
C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe
C:\Program Files\SpywareGuard\sgmain.exe
C:\Program Files\SpywareGuard\sgbhp.exe
C:\WINDOWS\system32\wuauclt.exe
C:\Program Files\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.google.co.uk
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.wanadoo.co.uk
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: SpywareGuard Download Protection - {4A368E80-174F-4872-96B5-0B27DDD11DB2} - C:\Program Files\SpywareGuard\dlprotect.dll
O2 - BHO: (no name) - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O2 - BHO: IEPlugin Class - {CF7C3CF0-4B15-11D1-ABED-709549C10000} - C:\Program Files\Advanced System Optimizer\iehelper.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [SpeedTouch USB Diagnostics] "C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe" /icon
O4 - HKLM\..\Run: [AVG7_CC] C:\PROGRA~1\Grisoft\AVGFRE~1\avgcc.exe /STARTUP
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [Zone Labs Client] "C:\Program Files\Zone Labs\ZoneAlarm\zlclient.exe"
O4 - HKLM\..\Run: [DVD43] C:\PROGRA~1\DVDREG~1\DVDRegionFree.exe /hidden
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [LanguageShortcut] "C:\Program Files\CyberLink\PowerDVD\Language\Language.exe"
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Windows Defender] "C:\Program Files\Windows Defender\MSASCui.exe" -hide
O4 - HKLM\..\RunOnce: [MRUBlaster] C:\Program Files\MRU-Blaster\indexcleaner.exe -CC
O4 - HKCU\..\Run: [FreeRAM XP] "C:\Program Files\YourWare Solutions\FreeRAM XP Pro\FreeRAM XP Pro.exe" -win
O4 - HKCU\..\Run: [Advanced Uninstaller PRO Installation Monitor] "C:\Program Files\Innovative Solutions\Advanced Uninstaller PRO 2006 version 7\monitor.exe"
O4 - HKCU\..\Run: [SpySweeper] "C:\Program Files\Webroot\Spy Sweeper\SpySweeper.exe" /0
O4 - HKCU\..\Run: [Systweak Ad and Popup Blocker] "C:\Program Files\Advanced System Optimizer\adblock.exe"
O4 - Startup: SpywareGuard.lnk = C:\Program Files\SpywareGuard\sgmain.exe
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_06\bin\ssv.dll
O9 - Extra button: Internet Radio by Endicosoft.com - {1F958B09-3312-7f0e-9723-4C1324C57B20} - C:\WINDOWS\System32\shdocvw.dll
O9 - Extra button: (no name) - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra 'Tools' menuitem: Uninstall BitDefender Online Scanner v8 - {85d1f590-48f4-11d9-9669-0800200c9a66} - %windir%\bdoscandel.exe (file missing)
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://www.wanadoo.co.uk
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {215B8138-A3CF-44C5-803F-8226143CFC0A} (Trend Micro ActiveX Scan Agent 6.5) - http://housecall65.trendmicro.com/ho...vex/hcImpl.cab
O16 - DPF: {2917297F-F02B-4B9D-81DF-494B6333150B} (Minesweeper Flags Class) - http://messenger.zone.msn.com/binary...r.cab31267.cab
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} - http://www.snapfish.co.uk/SnapfishUKActivia.cab
O16 - DPF: {4F1E5B1A-2A80-42CA-8532-2D05CB959537} - http://by101fd.bay101.hotmail.msn.co...s/MsnPUpld.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsof...?1137263118609
O16 - DPF: {8E0D4DE5-3180-4024-A327-4DFAD1796A8D} (MessengerStatsClient Class) - http://messenger.zone.msn.com/binary...t.cab31267.cab
O16 - DPF: {9600F64D-755F-11D4-A47F-0001023E6D5A} (Shutterfly Picture Upload Plugin) - http://web1.shutterfly.com/downloads/Uploader.cab
O16 - DPF: {C5E28B9D-0A68-4B50-94E9-E8F6B4697519} (NsvPlayX Control) - http://www.nullsoft.com/nsv/embed/nsvplayx_vp6_aac.cab
O16 - DPF: {DE625294-70E6-45ED-B895-CFFA13AEB044} (AxisMediaControlEmb Class) - http://194.25.81.26/activex/AMC.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{7D155A32-D483-49AD-9E69-0D3D791BEF6E}: NameServer = 195.92.195.94 195.92.195.95
O18 - Protocol: bt2 - {1730B77B-F429-498F-9B15-4514D83C8294} - (no file)
O18 - Protocol: livecall - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Protocol: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\MSNMES~1\MSGRAP~1.DLL
O18 - Filter: application/x-bt2 - {6E1DDCE8-76BC-4390-9488-806E8FB1AD77} - (no file)
O20 - Winlogon Notify: WgaLogon - C:\WINDOWS\SYSTEM32\WgaLogon.dll
O23 - Service: Adobe Active File Monitor V4 (AdobeActiveFileMonitor4.0) - Unknown owner - C:\Program Files\Adobe\Photoshop Elements 4.0\PhotoshopElementsFileAgent.exe
O23 - Service: AVG7 Alert Manager Server (Avg7Alrt) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgamsvr.exe
O23 - Service: AVG7 Update Service (Avg7UpdSvc) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgupsvc.exe
O23 - Service: AVG E-mail Scanner (AVGEMS) - GRISOFT, s.r.o. - C:\PROGRA~1\Grisoft\AVGFRE~1\avgemc.exe
O23 - Service: BrSplService (Brother XP spl Service) - brother Industries Ltd - C:\WINDOWS\system32\brsvc01a.exe
O23 - Service: C-DillaCdaC11BA - Macrovision - C:\WINDOWS\system32\drivers\CDAC11BA.EXE
O23 - Service: ewido anti-spyware 4.0 guard - Anti-Malware Development a.s. - C:\Program Files\ewido anti-spyware 4.0\guard.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: Imapi Helper - Alex Feinman - C:\Program Files\Alex Feinman\ISO Recorder\ImapiHelper.exe
O23 - Service: iPodService - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: NMSAccess - Unknown owner - C:\Program Files\CDBurnerXP Pro 3\Tools\NMSAccess.exe (file missing)
O23 - Service: Cyberlink RichVideo Service(CRVS) (RichVideo) - Unknown owner - C:\Program Files\CyberLink\Shared Files\RichVideo.exe
O23 - Service: TrueVector Internet Monitor (vsmon) - Zone Labs, LLC - C:\WINDOWS\system32\ZONELABS\vsmon.exe
Oberland is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Bookmark on Thread SoupReddit!
Reply With Quote
Old 09-22-2006, 11:05 AM   #6 (permalink)
Assistant Manager, TSF Academy; Moderator/Analyst Security Team
 
Ried's Avatar
 
Join Date: Jan 2005
Location: Ohio
Posts: 18,658
OS: WinXP and Win98se


Hi,

I'm not sure I understand correctly. You do have Internet Explorer, whether it is used by you or not, as it is an integral part of Windows XP. What error message do you get when you try to launch Internet Explorer?

-------------------------------

Download combofix from one of these locations: **Save it to your desktop**
Double click on combofix.exe & follow the prompts.
When finished, it shall produce a log for you. Post that log in your next reply

Note:
Do not mouseclick combofix's window whilst it's running. That may cause it to stall
__________________

Proud Member of ASAP since 2005
Proud Member of UNITE since 2006

Keep this site free for all. Please consider, donating

"It is one life whether we spend it laughing or weeping." "Take the time to laugh--it is the music of the soul."
Ried is offline  
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!Bookmark on Thread SoupReddit!
Reply With Quote
Old 09-22-2006, 12:43 PM   #7 (permalink)
Registered User
 
Join Date: Sep 2006
Posts: 19
OS: XP


Now it works, now it don't
Hi Reid,

Forget the internet explorer part of my posting, I'm beginning to crack.
Anyway here is the combo log you asked for.

Thanks

Oberland

Joe - 06-09-22 20:36:19.07 Service Pack 2
ComboFix 06.09.23 - Running from: "C:\Documents and Settings\Joe\Desktop"

((((((((((((((((((((((((((((((( Files Created from 2006-08-22 to 2006-09-22 ))))))))))))))))))))))))))))))))))


2006-09-30 17:43 9,216 --a------ C:\WINDOWS\system32\winfax.dll
2006-09-30 14:40 6,656 --------- C:\WINDOWS\system32\kbdinmal.dll
2006-09-30 14:09 186,368 --a------ C:\WINDOWS\system32\encdec.dll
2006-09-30 10:45 181,760 --a------ C:\WINDOWS\system32\tapi32.dll
2006-09-30 10:36 33,280 --a------ C:\WINDOWS\system32\inetmib1.dll
2006-09-30 06:45 18,944 --a------ C:\WINDOWS\system32\winstrm.dll
2006-09-30 05:07 46,080 --a------ C:\WINDOWS\system32\docprop.dll
2006-09-30 00:17 25,088 --a------ C:\WINDOWS\system32\mtxlegih.dll
2006-09-29 17:46 253,952 --a------ C:\WINDOWS\system32\neth.dll
2006-09-29 16:18 306,176 --a------ C:\WINDOWS\system32\slbcsp.dll
2006-09-29 11:28 66,560 --a------ C:\WINDOWS\system32\console.dll
2006-09-29 07:20 35,840 --a------ C:\WINDOWS\system32\dmloader.dll
2006-09-28 22:36 44,032 --a------ C:\WINDOWS\system32\dimap.dll
2006-09-28 21:13 176,128 --a------ C:\WINDOWS\system32\mgxoschk.dll
2006-09-28 17:26 60,416 --a------ C:\WINDOWS\system32\msratelc.dll
2006-09-28 11:03 9,344 --a------ C:\WINDOWS\system32\framebuf.dll
2006-09-28 04:04 183,808 --a------ C:\WINDOWS\system32\accwiz.exe
2006-09-27 18:42 343,040 --a------ C:\WINDOWS\system32\cmdial32.dll
2006-09-27 12:34 96,768 --a------ C:\WINDOWS\system32\psbase.dll
2006-09-27 11:50 339,968 --a------ C:\WINDOWS\system32\vobsub.dll
2006-09-26 17:22 53,248 --a------ C:\WINDOWS\system32\dsnpstd.dll
2006-09-26 03:42 90,112 --a------ C:\WINDOWS\system32\rsvpsp.dll
2006-09-26 00:04 75,264 --a------ C:\WINDOWS\system32\inetpp.dll
2006-09-25 22:44 7,168 --a------ C:\WINDOWS\system32\kbdnec.dll
2006-09-25 22:09 4,608 --a------ C:\WINDOWS\system32\mchgrcoi.dll
2006-09-25 18:40 129,536 --a------ C:\WINDOWS\system32\msv1_0.dll
2006-09-25 11:15 163,840 --a------ C:\WINDOWS\system32\mindex.dll
2006-09-25 10:44 15,872 --a------ C:\WINDOWS\system32\SCP32.DLL
2006-09-25 09:58 854,528 --------- C:\WINDOWS\system32\Ltwvc12n.dll
2006-09-25 09:47 69,120 --a------ C:\WINDOWS\system32\ipxpromn.dll
2006-09-25 05:12 23,040 --------- C:\WINDOWS\system32\psapi.dll
2006-09-25 03:34 147,456 --------- C:\WINDOWS\brunin03.dll
2006-09-25 01:46 442,368 --a------ C:\WINDOWS\system32\sqlsrv32.dll
2006-09-24 20:17 60,928 --a------ C:\WINDOWS\system32\dpnhupnp.dll
2006-09-24 16:45 240,640 --a------ C:\WINDOWS\system32\mpg4dmod.dll
2006-09-24 13:06 69,120 --a------ C:\WINDOWS\system32\olethk32.dll
2006-09-24 09:16 4,096 --a------ C:\WINDOWS\system32\nddeapir.exe
2006-09-24 08:16 69,632 --a------ C:\WINDOWS\system32\msr2c.dll
2006-09-24 03:55 163,840 --a------ C:\WINDOWS\system32\diskpart.exe
2006-09-23 22:24 13,312 --a------ C:\WINDOWS\system32\verifier.dll
2006-09-23 22:12 52,224 --a------ C:\WINDOWS\system32\tsappcmp.dll
2006-09-23 20:38 35,840 --a------ C:\WINDOWS\system32\umandlg.dll
2006-09-23 14:46 200,704 --a------ C:\WINDOWS\system32\ssldivx.dll
2006-09-23 05:33 74,240 --a------ C:\WINDOWS\system32\usbui.dll
2006-09-23 03:50 115,200 --a------ C:\WINDOWS\system32\wmsdmoe.dll
2006-09-23 03:09 85,020 --a------ C:\WINDOWS\system32\dgsetup.dll
2006-09-23 01:33 124,184 --a------ C:\WINDOWS\system32\wuauclt.exe
2006-09-22 21:17 40,448 --a------ C:\WINDOWS\system32\osuninst.exe
2006-09-22 15:22 89,360 --a------ C:\WINDOWS\system32\VB5DB.DLL
2006-09-22 12:47 25,600 --a------ C:\WINDOWS\system32\comaddin.dll
2006-09-22 11:25 121,856 --------- C:\WINDOWS\system32\xmllite.dll
2006-09-22 03:15 78,848 --a------ C:\WINDOWS\system32\msiexec.exe
2006-09-22 01:05 126,976 --a------ C:\WINDOWS\system32\StuffItMailHandler.dll
2006-09-21 22:20 30,160 --a------ C:\WINDOWS\system32\compobj.dll
2006-09-21 20:38 5,632 --a------ C:\WINDOWS\system32\kbdkaz.dll
2006-09-21 18:48 117,760 --a------ C:\WINDOWS\system32\oledlg.dll
2006-09-21 15:52 7,680 --------- C:\WINDOWS\system32\kbdsmsfi.dll
2006-09-21 15:41 28,746 --a------ C:\WINDOWS\system32\msrecr40.dll
2006-09-21 14:31 41,472 --a------ C:\WINDOWS\system32\iasads.dll
2006-09-21 12:16 35,328 --a------ C:\WINDOWS\system32\corpol.dll
2006-09-21 10:03 101,888 --a------ C:\WINDOWS\system32\win32spl.dll
2006-09-21 07:01 181,760 --a------ C:\WINDOWS\system32\dsdmo.dll
2006-09-21 05:49 229,888 -ra------ C:\WINDOWS\system32\Tiff32.dll
2006-09-21 04:29 42,768 --a------ C:\WINDOWS\system32\dpwsock.dll
2006-09-21 01:29 245,408 --a------ C:\WINDOWS\Unicows.dll
2006-09-20 20:57 99,328 --a------ C:\WINDOWS\system32\winscard.dll
2006-09-20 19:14 40,960 --a------ C:\WINDOWS\system32\ba3bho.dll
2006-09-20 15:22 49,211 --a------ C:\WINDOWS\system32\usrsdpia.dll
2006-09-20 14:50 70 --a------ C:\WINDOWS\system32\mypath0079.dll
2006-09-20 04:35 172,032 --a------ C:\WINDOWS\system32\wldap32.dll
2006-09-19 19:17 18,432 --a------ C:\WINDOWS\system32\cacls.exe
2006-09-19 19:11 337,920 --a------ C:\WINDOWS\system32\zipfldr.dll
2006-09-19 18:40 49,152 --a------ C:\WINDOWS\system32\mprdim.dll
2006-09-19 14:32 96,768 --a------ C:\WINDOWS\system32\logagent.exe
2006-09-19 08:36 65,536 --a------ C:\WINDOWS\system32\wshext.dll
2006-09-19 04:53 3,584 --a------ C:\WINDOWS\system32\msafd.dll
2006-09-19 04:39 122,368 --------- C:\WINDOWS\system32\LTFIL12n.DLL
2006-09-19 04:15 8,192 --a------ C:\WINDOWS\system32\tsbyuv.dll
2006-09-19 03:03 19,456 --a------ C:\WINDOWS\system32\arp.exe
2006-09-19 02:40 124,928 --a------ C:\WINDOWS\system32\net1.exe
2006-09-19 02:39 76,800 --a------ C:\WINDOWS\system32\gcdef.dll
2006-09-18 19:36 239,104 --a------ C:\WINDOWS\system32\srrstr.dll
2006-09-18 14:01 38,912 --a------ C:\WINDOWS\system32\sens.dll
2006-09-18 09:08 7,168 --------- C:\WINDOWS\system32\bitsprx3.dll
2006-09-18 08:39 1,227,264 --a------ C:\WINDOWS\system32\dx8vb.dll
2006-09-18 03:25 368,710 --a------ C:\WINDOWS\system32\msisam11.dll
2006-09-17 12:14 5,120 --------- C:\WINDOWS\system32\Hdaudpropres.dll
2006-09-17 04:33 24,576 --------- C:\WINDOWS\system32\httpapi.dll
2006-09-17 03:11 164,864 --a------ C:\WINDOWS\patchw32.dll
2006-09-16 12:58 562,176 --a------ C:\WINDOWS\system32\qedit.dll
2006-09-16 11:54 8,192 --a------ C:\WINDOWS\system32\spdwnwxp.exe
2006-09-16 08:47 5,632 --a------ C:\WINDOWS\system32\kbdbu.dll
2006-09-16 02:04 65,536 --a------ C:\WINDOWS\system32\Jgsh400.dll
2006-09-15 22:11 32,768 --a------ C:\WINDOWS\system32\netfxperf.dll
2006-09-15 16:51 111,104 --a------ C:\WINDOWS\system32\netdde.exe
2006-09-15 11:30 3,712 --a------ C:\WINDOWS\system32\socketlock.sys
2006-09-15 11:30 22,016 --a------ C:\WINDOWS\system32\rpcns4.dll
2006-09-15 08:38 15,872 --a------ C:\WINDOWS\system32\inetppui.dll
2006-09-15 06:54 39,274 --a------ C:\WINDOWS\system32\mem.exe
2006-09-15 00:14 5,632 --a------ C:\WINDOWS\system32\kbdru.dll
2006-09-14 15:41 102,400 --a------ C:\WINDOWS\system32\sbe6@esp.dll
2006-09-14 15:32 32,768 --a------ C:\WINDOWS\system32\isrdbg32.dll
2006-09-14 12:50 11,264 --a------ C:\WINDOWS\system32\tree.com
2006-09-14 05:02 114,688 --a------ C:\WINDOWS\system32\iexpress.exe
2006-09-13 18:49 1,044,560 --a------ C:\WINDOWS\vsapi32.dll
2006-09-13 09:03 157,696 --a------ C:\WINDOWS\system32\paqsp.dll
2006-09-13 04:28 45,056 --a------ C:\WINDOWS\system32\nvmccsrs.dll
2006-09-13 02:46 8,192 --a------ C:\WINDOWS\system32\ntlsapi.dll
2006-09-13 01:54 63,488 --a------ C:\WINDOWS\system32\unam4ie.exe
2006-09-13 01:51 10,752 --a------ C:\WINDOWS\system32\wpdtrace.dll
2006-09-12 19:17 21,504 --a------ C:\WINDOWS\system32\pathping.exe
2006-09-12 19:11 2,890,240 --a------ C:\WINDOWS\system32\msi.dll
2006-09-12 14:06 282,624 --a------ C:\WINDOWS\system32\wmpdxm.dll
2006-09-12 14:02 831,519 --a------ C:\WINDOWS\system32\mswdat10.dll
2006-09-12 06:30 20,480 --a------ C:\WINDOWS\system32\wmpcore.dll
2006-09-11 21:54 94,208 --a------ C:\WINDOWS\system32\W32N50.DLL
2006-09-11 12:56 182,272 --a------ C:\WINDOWS\system32\snmpsnap.dll
2006-09-11 09:27 14,848 --a------ C:\WINDOWS\system32\rsh.exe
2006-09-11 06:21 375,296 --a------ C:\WINDOWS\system32\dpnet.dll
2006-09-11 04:02 227,840 --a------ C:\WINDOWS\system32\avtapi.dll
2006-09-10 21:29 16,896 --a------ C:\WINDOWS\system32\tftp.exe
2006-09-10 12:18 430,592 --a------ C:\WINDOWS\system32\vssapi.dll
2006-09-10 09:04 149,019 --a------ C:\WINDOWS\system32\crtdll.dll
2006-09-10 01:19 326,656 --a------ C:\WINDOWS\opuc.dll
2006-09-09 17:06 4,608 --a------ C:\WINDOWS\system32\dllhst3g.exe
2006-09-09 07:12 119,808 --a------ C:\WINDOWS\lsb_un20.exe
2006-09-09 05:20 32,768 --a------ C:\WINDOWS\system32\DLLMSC32.dll
2006-09-09 05:03 121,856 --------- C:\WINDOWS\system32\lfmpg12n.dll
2006-09-09 04:52 67,072 --a------ C:\WINDOWS\system32\ntdsapi.dll
2006-09-08 22:47 144,896 --a------ C:\WINDOWS\system32\hotplug.dll
2006-09-08 20:40 182,784 --a------ C:\WINDOWS\system32\ipsecsvc.dll
2006-09-08 17:01 10,544 --a------ C:\WINDOWS\system32\MSIMRT16.DLL
2006-09-08 15:21 48,128 --a------ C:\WINDOWS\system32\inetres.dll
2006-09-08 10:56 9,728 --a------ C:\WINDOWS\system32\sfc.exe
2006-09-08 05:49 10,240 --a------ C:\WINDOWS\system32\mcd32.dll
2006-09-07 22:40 27,648 -ra------ C:\WINDOWS\system32\lftga11n.dll
2006-09-07 06:10 47,104 --a------ C:\WINDOWS\system32\cnbjmon.dll
2006-09-06 22:52 278,528 --a------ C:\WINDOWS\system32\livesnth.dll
2006-09-06 15:40 3,584 --a------ C:\WINDOWS\system32\dpnaddr.dll
2006-09-06 15:36 65,536 --a------ C:\WINDOWS\system32\icwphbk.dll
2006-09-06 13:26 29,146 --a------ C:\WINDOWS\system32\ntdos404.sys
2006-09-06 12:07 6,144 --a------ C:\WINDOWS\system32\kbdest.dll
2006-09-06 09:25 362,496 --a------ C:\WINDOWS\system32\jet500.dll
2006-09-06 07:27 668,160 --a------ C:\WINDOWS\dtaplugin.exe
2006-09-06 07:02 12,498 --a------ C:\WINDOWS\system32\append.exe
2006-09-06 06:25 33,040 --a------ C:\WINDOWS\system32\dplay.dll
2006-09-06 02:49 67,584 --a------ C:\WINDOWS\system32\sti.dll
2006-09-06 01:34 11,776 --------- C:\WINDOWS\system32\spnpinst.exe
2006-09-06 01:31 74,240 --a------ C:\WINDOWS\system32\unimdmat.dll
2006-09-05 14:28 110,080 --a------ C:\WINDOWS\system32\clbcatex.dll
2006-09-05 03:38 13,312 --a------ C:\WINDOWS\system32\ntvdmd.dll
2006-09-04 19:03 50,176 --a------ C:\WINDOWS\system32\proquota.exe
2006-09-04 15:24 15,872 --------- C:\WINDOWS\system32\w3ssl.dll
2006-09-04 13:04 26,112 --a------ C:\WINDOWS\system32\xpsp1hfm.exe
2006-09-04 09:05 385,100 --a------ C:\WINDOWS\system32\Msvcrtd.dll
2006-09-04 07:45 13,312 --a------ C:\WINDOWS\system32\irclass.dll
2006-09-03 22:12 208,896 --a------ C:\WINDOWS\PATCH.EXE
2006-09-03 20:42 10,752 --a------ C:\WINDOWS\system32\clb.dll
2006-09-03 17:26 35,840 --a------ C:\WINDOWS\system32\narrhook.dll
2006-09-03 16:32 83,456 --a------ C:\WINDOWS\system32\olepro32.dll
2006-09-03 11:31 1,594,880 --a------ C:\WINDOWS\system32\wmpencen.dll
2006-09-03 11:28 356,352 --a------ C:\WINDOWS\eSellerateEngine.dll
2006-09-03 04:54 22,016 --a------ C:\WINDOWS\system32\mpnotify.exe
2006-09-03 03:11 1,501,696 --a------ C:\WINDOWS\system32\diskcopy.dll
2006-09-02 18:27 19,200 --a------ C:\WINDOWS\system32\tapi.dll
2006-09-02 14:42 229,376 --a------ C:\WINDOWS\system32\nvmccs.dll
2006-09-02 12:58 38,912 --a------ C:\WINDOWS\system32\cfgbkend.dll
2006-09-02 10:54 713,728 --a------ C:\WINDOWS\system32\opengl32.dll
2006-09-02 02:17 195 --a------ C:\WINDOWS\easdsave.dll
2006-09-02 01:04 11,776 --a------ C:\WINDOWS\system32\rasautou.exe
2006-09-01 19:07 94,208 --a------ C:\WINDOWS\system32\PCTIN50.DLL
2006-09-01 05:57 74,752 --a------ C:\WINDOWS\system32\cryptdlg.dll
2006-08-31 21:26 61,952 --a------ C:\WINDOWS\system32\wpdconns.dll
2006-08-31 18:26 670,474 --a------ C:\WINDOWS\unins000.exe
2006-08-31 16:42 55,808 --a------ C:\WINDOWS\system32\lfpsd13n.dll
2006-08-31 10:09 20,510 --a------ C:\WINDOWS\system32\odfox32.dll
2006-08-31 00:25 84,480 --a------ C:\WINDOWS\system32\mciavi32.dll
2006-08-31 00:03 119,808 --a------ C:\WINDOWS\system32\mmutilse.dll
2006-08-30 15:09 151,552 --a------ C:\WINDOWS\system32\scrrun.dll
2006-08-30 14:49 32,768 --------- C:\WINDOWS\system32\ativtmxx.dll
2006-08-30 11:34 25,600 --a------ C:\WINDOWS\twunk_32.exe
2006-08-30 10:07 413,944 --a------ C:\WINDOWS\system32\wmspdmod.dll
2006-08-30 07:10 626,688 --a------ C:\WINDOWS\system32\dfxg13.dll
2006-08-30 04:03 16,384 --a------ C:\WINDOWS\system32\odbc32gt.dll
2006-08-30 03:19 86,016 --a------ C:\WINDOWS\system32\netsh.exe
2006-08-30 00:05 413,696 --------- C:\WINDOWS\system32\msvcp60.dll
2006-08-29 17:11 5,120 --a------ C:\WINDOWS\system32\lodctr.exe
2006-08-29 04:05 4 --a------ C:\WINDOWS\system32\micr0st.dll
2006-08-29 00:20 414,208 --a------ C:\WINDOWS\system32\setupdll.dll
2006-08-28 19:20 83,456 --a------ C:\WINDOWS\system32\dpvsetup.exe
2006-08-28 17:37 6,656 --a------ C:\WINDOWS\system32\kbdhu.dll
2006-08-28 14:03 294,912 --a------ C:\WINDOWS\system32\dpu11.dll
2006-08-28 08:39 73,728 --a------ C:\WINDOWS\system32\icwdial.dll
2006-08-28 08:37 48,128 --a------ C:\WINDOWS\system32\docprop2.dll
2006-08-28 00:51 463,360 --a------ C:\WINDOWS\system32\wiadefui.dll
2006-08-27 22:33 884,736 --a------ C:\WINDOWS\system32\msimsg.dll
2006-08-27 18:11 622,080 --a------ C:\WINDOWS\system32\netcfgx.dll
2006-08-27 16:17 215,552 --a------ C:\WINDOWS\system32\osk.exe
2006-08-27 15:49 18,432 --a------ C:\WINDOWS\system32\deskperf.dll
2006-08-27 09:33 9,216 --a------ C:\WINDOWS\system32\scrnsave.scr
2006-08-27 05:43 49,664 --a------ C:\WINDOWS\system32\regapi.dll
2006-08-27 00:11 319,488 --a------ C:\WINDOWS\system32\DLLAV32.dll
2006-08-26 04:17 50,176 --a------ C:\WINDOWS\system32\utilman.exe
2006-08-26 01:17 263,680 --a------ C:\WINDOWS\system32\adsnt.dll
2006-08-25 19:51 94,208 --a------ C:\WINDOWS\system32\divxdec_040c.dll
2006-08-25 15:42 187,392 --a------ C:\WINDOWS\system32\xpsp1res.dll
2006-08-25 15:05 5,632 --a------ C:\WINDOWS\system32\kbdgae.dll
2006-08-25 11:01 73,832 --------- C:\WINDOWS\system32\slcoinst.dll
2006-08-25 07:57 101,888 --a------ C:\WINDOWS\system32\cscdll.dll
2006-08-25 07:08 163,840 --a------ C:\WINDOWS\system32\credui.dll
2006-08-25 03:31 51,200 --a------ C:\WINDOWS\system32\syncapp.exe
2006-08-25 00:48 18,896 --a------ C:\WINDOWS\system32\sysedit.exe
2006-08-24 09:33 50,620 --a------ C:\WINDOWS\system32\command.com
2006-08-24 07:21 180,224 --a------ C:\WINDOWS\system32\nvudisp.exe
2006-08-24 02:23 394,240 --a------ C:\WINDOWS\system32\diactfrm.dll
2006-08-23 21:51 91,136 --a------ C:\WINDOWS\system32\mp4fil32.dll
2006-08-23 19:30 50,688 --------- C:\WINDOWS\system32\btpanui.dll
2006-08-23 17:38 279,040 --a------ C:\WINDOWS\system32\qdv.dll
2006-08-23 14:18 249,856 --a------ C:\WINDOWS\system32\odbc32.dll
2006-08-23 11:10 12,288 --a------ C:\WINDOWS\system32\tcmsetup.exe
2006-08-23 03:02 5,632 --a------ C:\WINDOWS\system32\cisvc.exe
2006-08-23 00:13 11,776 --a------ C:\WINDOWS\system32\ieudinit.exe
2006-08-22 22:35 53,248 --a------ C:\WINDOWS\system32\MFC42ENU.DLL
2006-08-22 12:06 9,008 --a------ C:\WINDOWS\system32\ver.dll
2006-08-22 10:00 266,752 --a------ C:\WINDOWS\system32\oakley.dll
2006-08-22 00:38 6,144 --a------ C:\WINDOWS\system32\kbdda.dll


(((((((((((((((((((((((((((((((((((((((((((((((( Find3M Report )))))))))))))))))))))))))))))))))))))))))))))))))))))


2007-06-29 20:55 21896 --a------ C:\WINDOWS\system32\drivers\tdtcp.sys
2007-06-27 22:20 138496 --a------ C:\WINDOWS\system32\drivers\afd.sys
2007-06-27 12:21 35328 --a------ C:\WINDOWS\system32\drivers\processr.sys
2007-06-27 11:22 25600 --------- C:\WINDOWS\system32\drivers\hidbth.sys
2007-06-21 01:46 333600 --a------ C:\WINDOWS\system32\drivers\ctdvda2k.sys
2007-06-19 12:32 7936 --a------ C:\WINDOWS\system32\drivers\fs_rec.sys
2007-06-16 02:05 70688 -ra------ C:\WINDOWS\system32\drivers\alcaudsl.sys
2007-06-11 21:25 44672 --------- C:\WINDOWS\system32\drivers\uagp35.sys
2007-06-09 10:56 52352 --a------ C:\WINDOWS\system32\drivers\volsnap.sys
2007-06-04 01:14 95360 --a------ C:\WINDOWS\system32\drivers\atapi.sys
2007-06-03 11:15 174592 --a------ C:\WINDOWS\system32\drivers\rdbss.sys
2007-05-25 17:02 60800 --a------ C:\WINDOWS\system32\drivers\sysaudio.sys
2007-05-24 07:42 21343 --------- C:\WINDOWS\system32\drivers\ati1ttxx.sys
2007-05-22 01:46 53248 --a------ C:\WINDOWS\system32\drivers\1394bus.sys
2007-05-09 06:17 5888 --a------ C:\WINDOWS\system32\drivers\rootmdm.sys
2007-05-06 10:02 10240 --------- C:\WINDOWS\system32\drivers\sffp_sd.sys
2007-05-05 00:43 11264 --a------ C:\WINDOWS\system32\drivers\irenum.sys
2007-05-01 01:47 488383 --a------ C:\WINDOWS\system32\drivers\HSF_V124.sys
2007-04-30 12:53 142976 --a------ C:\WINDOWS\system32\drivers\usbport.sys
2007-04-27 12:03 160640 --a------ C:\WINDOWS\system32\drivers\a347bus.sys
2007-04-26 01:36 12032 --a------ C:\WINDOWS\system32\drivers\ws2ifsl.sys
2007-04-17 16:43 29056 --------- C:\WINDOWS\system32\drivers\ip6fw.sys
2007-04-17 15:56 59648 --------- C:\WINDOWS\system32\drivers\rfcomm.sys
2007-04-17 14:31 5376 --a------ C:\WINDOWS\system32\drivers\mspclock.sys
2007-04-16 06:39 13567 --------- C:\WINDOWS\system32\drivers\CDRBSDRV.SYS
2007-04-16 04:31 3968 -ra------ C:\WINDOWS\system32\drivers\alcacr.sys
2007-04-16 03:05 61824 --a------ C:\WINDOWS\system32\drivers\nic1394.sys
2007-04-12 15:49 11871 --------- C:\WINDOWS\system32\drivers\wadv09nt.sys
2007-04-12 06:30 11807 --------- C:\WINDOWS\system32\drivers\wadv07nt.sys
2007-04-11 05:23 13056 --------- C:\WINDOWS\system32\drivers\cdrbsvsd.sys
2007-04-10 21:42 18944 --a------ C:\WINDOWS\system32\drivers\wpdusb.sys
2007-04-10 09:23 71552 --a------ C:\WINDOWS\system32\drivers\bridge.sys
2007-04-09 11:58 92032 --a------ C:\WINDOWS\system32\drivers\ksecdd.sys
2007-04-08 17:25 5504 --a------ C:\WINDOWS\system32\drivers\mstee.sys
2007-04-04 06:50 25856 --a------ C:\WINDOWS\system32\drivers\usbprint.sys
2007-04-04 06:25 44928 --------- C:\WINDOWS\system32\drivers\agpcpq.sys
2007-04-01 12:17 26496 --a------ C:\WINDOWS\system32\drivers\usbstor.sys
2007-03-27 16:50 36352 --a------ C:\WINDOWS\system32\drivers\disk.sys
2007-03-27 00:12 7680 --a------ C:\WINDOWS\system32\drivers\RKLE0.tmp.sys
2007-03-24 20:52 6097 --a------ C:\WINDOWS\system32\drivers\sonyhcb.sys
2007-03-24 15:45 100992 --------- C:\WINDOWS\system32\drivers\bthpan.sys
2007-03-24 11:04 30080 --a------ C:\WINDOWS\system32\drivers\rndismp.sys
2007-03-24 10:10 685056 --------- C:\WINDOWS\system32\drivers\hsfcxts2.sys
2007-03-21 11:50 12928 --a------ C:\WINDOWS\system32\drivers\ndisuio.sys
2007-03-19 16:54 12416 --a------ C:\WINDOWS\system32\drivers\tunmp.sys
2007-03-13 04:19 4352 --a------ C:\WINDOWS\system32\drivers\swenum.sys
2007-03-11 00:37 13952 --a------ C:\WINDOWS\system32\drivers\cbidf2k.sys
2007-03-07 03:24 126686 --------- C:\WINDOWS\system32\drivers\mtlmnt5.sys
2007-03-04 02:03 79744 --a------ C:\WINDOWS\system32\drivers\videoprt.sys
2007-03-01 06:52 143360 --a------ C:\WINDOWS\system32\drivers\fastfat.sys
2007-02-20 22:09 199711 --a------ C:\WINDOWS\system32\drivers\HSF_FAXX.sys
2007-02-19 03:41 115807 --a------ C:\WINDOWS\system32\drivers\HSF_FSKS.sys
2007-02-14 01:27 63232 --a------ C:\WINDOWS\system32\drivers\nwlnknb.sys
2007-02-11 19:20 23936 --a------ C:\WINDOWS\system32\drivers\usbcamd2.sys
2007-02-10 14:31 11935 --------- C:\WINDOWS\system32\drivers\wadv11nt.sys
2007-02-10 14:23 36480 --a------ C:\WINDOWS\system32\drivers\crusoe.sys
2007-02-10 10:49 20480 --a------ C:\WINDOWS\system32\drivers\flpydisk.sys
2007-02-10 01:33 24576 --a------ C:\WINDOWS\system32\drivers\kbdclass.sys
2007-02-04 21:35 14208 --a------ C:\WINDOWS\system32\drivers\diskdump.sys
2007-02-03 19:08 13824 --------- C:\WINDOWS\system32\drivers\atinttxx.sys
2007-02-02 13:47 28672 --------- C:\WINDOWS\system32\drivers\atinsnxx.sys
2007-01-24 13:08 51328 --a------ C:\WINDOWS\system32\drivers\msdv.sys
2007-01-23 15:43 57856 --------- C:\WINDOWS\system32\drivers\atinbtxx.sys
2007-01-23 12:35 166912 --------- C:\WINDOWS\system32\drivers\s3gnbm.sys
2007-01-22 03:03 7680 --a------ C:\WINDOWS\system32\drivers\mcd.sys
2007-01-21 17:57 95424 --------- C:\WINDOWS\system32\drivers\slnthal.sys
2007-01-17 22:26 17792 --a------ C:\WINDOWS\system32\drivers\ptilink.sys
2007-01-17 16:10 42240 --------- C:\WINDOWS\system32\drivers\viaagp.sys
2007-01-13 22:37 44863 --a------ C:\WINDOWS\system32\drivers\HSF_SOAR.sys
2007-01-13 21:29 63488 --------- C:\WINDOWS\system32\drivers\atinxsxx.sys
2007-01-09 06:36 11295 --------- C:\WINDOWS\system32\drivers\wadv08nt.sys
2007-01-07 03:01 36224 --a------ C:\WINDOWS\system32\drivers\hidclass.sys
2007-01-05 22:21 787456 --a------ C:\WINDOWS\system32\drivers\ati2mtag.sys
2007-01-05 19:20 40840 --a------ C:\WINDOWS\system32\drivers\termdd.sys
2007-01-05 06:09 220032 --------- C:\WINDOWS\system32\drivers\hsfbs2s2.sys
2007-01-03 14:12 299776 --a------ C:\WINDOWS\system32\drivers\snpstd.sys
2006-12-31 11:13 18048 -ra------ C:\WINDOWS\system32\drivers\attscap.sys
2006-12-30 21:38 42752 --------- C:\WINDOWS\system32\drivers\alim1541.sys
2006-12-29 03:51 67167 --a------ C:\WINDOWS\system32\drivers\HSF_BSC2.sys
2006-12-27 10:19 35840 --a------ C:\WINDOWS\system32\drivers\AFS2K.SYS
2006-12-26 16:14 30848 --a------ C:\WINDOWS\system32\drivers\npfs.sys
2006-12-24 11:38 27392 --a------ C:\WINDOWS\system32\drivers\fdc.sys
2006-12-24 01:44 45850 --a------ C:\WINDOWS\system32\drivers\FLockXP.sys
2006-12-22 20:25 20480 --a------ C:\WINDOWS\system32\drivers\usbuhci.sys
2006-12-22 04:20 34560 --a------ C:\WINDOWS\system32\drivers\wanarp.sys
2006-12-21 11:06 11776 --a------ C:\WINDOWS\system32\drivers\cpqdap01.sys
2006-12-19 05:46 13776 --------- C:\WINDOWS\system32\drivers\recagent.sys
2006-12-17 01:12 16128 --a------ C:\WINDOWS\system32\drivers\MODEMCSA.sys
2006-12-13 20:43 11136 --a------ C:\WINDOWS\system32\drivers\slip.sys
2006-12-12 15:06 107904 --a------ C:\WINDOWS\system32\drivers\mup.sys
2006-12-11 06:42 60288 --a------ C:\WINDOWS\system32\drivers\drmk.sys
2006-12-10 03:20 58112 --a------ C:\WINDOWS\system32\drivers\vdmindvd.sys
2006-12-09 15:45 3328 --a------ C:\WINDOWS\system32\drivers\dxgthk.sys
2006-12-07 08:32 196864 --a------ C:\WINDOWS\system32\drivers\rdpdr.sys
2006-12-06 07:11 25728 -ra------ C:\WINDOWS\system32\drivers\TxTuner.sys
2006-12-05 11:58 18560 --a------ C:\WINDOWS\system32\drivers\tdi.sys
2006-12-04 00:34 14408 --a------ C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
2006-12-02 16:22 452736 --------- C:\WINDOWS\system32\drivers\mtxparhm.sys
2006-11-30 04:27 12032 --a------ C:\WINDOWS\system32\drivers\nikedrv.sys
2006-11-25 09:07 30080 --------- C:\WINDOWS\system32\drivers\rndismpx.sys
2006-11-24 09:42 51328 --a------ C:\WINDOWS\system32\drivers\rasl2tp.sys
2006-11-24 08:03 11392 --a------ C:\WINDOWS\system32\drivers\sfloppy.sys
2006-11-22 11:51 43008 --------- C:\WINDOWS\system32\drivers\amdagp.sys
2006-11-21 07:55 391199 --a------ C:\WINDOWS\system32\drivers\HSF_K56K.sys
2006-11-20 11:23 48640 --a------ C:\WINDOWS\system32\drivers\stream.sys
2006-11-17 13:18 2155200 --a------ C:\WINDOWS\system32\drivers\RtkHDAud.sys
2006-11-16 15:16 88448 --a------ C:\WINDOWS\system32\drivers\nwlnkipx.sys
2006-11-15 17:26 6656 --a------ C:\WINDOWS\system32\drivers\sfhlp02.sys
2006-11-15 03:48 35072 --a------ C:\WINDOWS\system32\drivers\msgpc.sys
2006-11-06 18:05 13568 --------- C:\WINDOWS\system32\drivers\wacompen.sys
2006-11-06 14:21 6400 --a------ C:\WINDOWS\system32\drivers\enum1394.sys
2006-11-05 06:40 63663 --------- C:\WINDOWS\system32\drivers\ati1rvxx.sys
2006-11-04 18:05 7552 --a------ C:\WINDOWS\system32\drivers\SONYPVU1.SYS
2006-11-04 04:46 41856 --a------ C:\WINDOWS\system32\drivers\imapi.sys
2006-11-03 13:26 11136 --------- C:\WINDOWS\system32\drivers\sffdisk.sys
2006-11-03 05:25 25072 --a------ C:\WINDOWS\system32\drivers\TVICHW32.SYS
2006-11-03 04:50 12040 --a------ C:\WINDOWS\system32\drivers\tdpipe.sys
2006-11-01 15:11 125056 --a------ C:\WINDOWS\system32\drivers\ftdisk.sys
2006-10-31 08:15 80128 --a------ C:\WINDOWS\system32\drivers\parport.sys
2006-10-30 08:29 60800 --a------ C:\WINDOWS\system32\drivers\arp1394.sys
2006-10-29 20:13 30671 --------- C:\WINDOWS\system32\drivers\ati1raxx.sys
2006-10-28 01:45 63744 --a------ C:\WINDOWS\system32\drivers\cdfs.sys
2006-10-26 15:35 26624 --a------ C:\WINDOWS\system32\drivers\usbehci.sys
2006-10-26 09:45 289887 --a------ C:\WINDOWS\system32\drivers\HSF_FALL.sys
2006-10-25 06:20 23040 --a------ C:\WINDOWS\system32\drivers\mouclass.sys
2006-10-24 16:36 65280 --a------ C:\WINDOWS\system32\drivers\Rtlnic51.sys
2006-10-24 06:48 49536 --a------ C:\WINDOWS\system32\drivers\cdrom.sys
2006-10-20 10:15 17024 --a------ C:\WINDOWS\system32\drivers\ccdecode.sys
2006-10-19 12:53 359808 --a------ C:\WINDOWS\system32\drivers\tcpip.sys
2006-10-19 04:58 52864 --a------ C:\WINDOWS\system32\drivers\DMusic.sys
2006-10-18 18:20 139528 --a------ C:\WINDOWS\system32\drivers\rdpwd.sys
2006-10-18 02:06 542879 --a------ C:\WINDOWS\system32\drivers\HSF_MSFT.sys
2006-10-16 19:18 14336 --a------ C:\WINDOWS\system32\drivers\asyncmac.sys
2006-10-16 07:08 7552 --a------ C:\WINDOWS\system32\drivers\mskssrv.sys
2006-10-15 05:19 11648 --a------ C:\WINDOWS\system32\drivers\acpiec.sys
2006-10-15 02:35 18688 --a------ C:\WINDOWS\system32\drivers\cdaudio.sys
2006-10-14 09:33 85376 --a------ C:\WINDOWS\system32\drivers\nabtsfec.sys
2006-10-12 14:32 16512 --a------ C:\WINDOWS\system32\drivers\raspti.sys
2006-10-12 03:05 42240 --a------ C:\WINDOWS\system32\drivers\mountmgr.sys
2006-10-11 16:38 12672 --------- C:\WINDOWS\system32\drivers\usb8023x.sys
2006-10-10 20:34 30592 --a------ C:\WINDOWS\system32\drivers\strmdisp.sys
2006-10-10 11:07 1041536 --------- C:\WINDOWS\system32\drivers\hsfdpsp2.sys
2006-10-10 04:39 54272 --a------ C:\WINDOWS\system32\drivers\swmidi.sys
2006-10-10 01:41 102220 --a------ C:\WINDOWS\system32\drivers\sonypvs1.sys
2006-10-08 19:18 56320 -ra------ C:\WINDOWS\system32\drivers\atvcap.sys
2006-10-08 07:31 57472 --a------ C:\WINDOWS\system32\drivers\redbook.sys
2006-10-06 08:51 42368 --------- C:\WINDOWS\system32\drivers\agp440.sys
2006-10-05 13:20 11776 --a------ C:\WINDOWS\system32\drivers\bdasup.sys
2006-10-04 20:53 135168 --------- C:\WINDOWS\system32\drivers\Hdaudbus.sys
2006-10-02 22:43 352256 --a------ C:\WINDOWS\system32\drivers\atmuni.sys
2006-10-02 16:55 66176 --a------ C:\WINDOWS\system32\drivers\udfs.sys
2006-10-02 03:34 2944 --a------ C:\WINDOWS\system32\drivers\null.sys
2006-10-01 04:28 2944 --a------ C:\WINDOWS\system32\drivers\drmkaud.sys
2006-09-30 13:31 138752 --a------ C:\WINDOWS\system32\swprv.dll
2006-09-30 11:23 98304 --a------ C:\WINDOWS\system32\sbe6@rus.dll
2006-09-30 10:48 -------- d-------- C:\Documents and Settings\Joe\Application Data\Azureus
2006-09-30 08:23 38739 --a------ C:\WINDOWS\system32\drivers\sonyhcc.sys
2006-09-30 07:11 -------- d-------- C:\Program Files\Colorplaza
2006-09-30 06:02 5632 --a------ C:\WINDOWS\system32\kbduk.dll
2006-09-29 15:15 30208 --a------ C:\WINDOWS\system32\mspatcha.dll
2006-09-29 08:22 87552 --a------ C:\WINDOWS\system32\fldrclnr.dll
2006-09-29 06:10 30208 --a------ C:\WINDOWS\system32\atmlib.dll
2006-09-29 03:46 72704 --a------ C:\WINDOWS\system32\magnify.exe
2006-09-29 01:57 67584 --------- C:\WINDOWS\system32\drivers\sdbus.sys
2006-09-28 16:12 2864 --a------ C:\WINDOWS\system32\winsock.dll
2006-09-28 13:54 404990 --------- C:\WINDOWS\system32\drivers\slntamr.sys
2006-09-28 12:19 34816 --a------ C:\WINDOWS\system32\perfproc.dll
2006-09-28 10:44 101888 --a------ C:\WINDOWS\system32\actxprxy.dll
2006-09-28 08:03 1028096 --a------ C:\WINDOWS\system32\mfc42.dll
2006-09-28 02:55 -------- d-------- C:\Program Files\Grisoft
2006-09-28 00:33 206336 --a------ C:\WINDOWS\system32\rasppp.dll
2006-09-27 11:15 -------- d-------- C:\Program Files\Astro Avenger
2006-09-27 10:06 61440 --------- C:\WINDOWS\system32\auto.exe
2006-09-27 05:20 42496 --a------ C:\WINDOWS\system32\drivers\p3.sys
2006-09-27 03:14 64000 --a------ C:\WINDOWS\system32\cleanmgr.exe
2006-09-26 15:21 19456 --a------ C:\WINDOWS\system32\dmocx.dll
2006-09-26 07:27 39936 --a------ C:\WINDOWS\system32\ipxrtmgr.dll
2006-09-25 20:23 15872 --a------ C:\WINDOWS\system32\comp.exe
2006-09-25 18:28 32768 --a------ C:\WINDOWS\system32\csrsrv.dll
2006-09-25 17:12 8464 --a------ C:\WINDOWS\system32\sporder.dll
2006-09-25 14:05 14710 --a------ C:\WINDOWS\system32\kb16.com
2006-09-25 12:23 221184 --a------ C:\WINDOWS\system32\ieakui.dll
2006-09-25 08:20 15872 --a------ C:\WINDOWS\system32\dmremote.exe
2006-09-25 05:54 176640 --a------ C:\WINDOWS\system32\wintrust.dll
2006-09-25 05:16 22016 --a------ C:\WINDOWS\system32\lpk.dll
2006-09-25 03:26 155136 --a------ C:\WINDOWS\system32\itircl.dll
2006-09-25 02:26 4352 --a------ C:\WINDOWS\system32\drivers\wmilib.sys
2006-09-24 08:46 153600 --a------ C:\WINDOWS\system32\modemui.dll
2006-09-23 18:57 349696 --a------ C:\WINDOWS\system32\ipsecsnp.dll
2006-09-23 17:26 9600 --a------ C:\WINDOWS\system32\drivers\ndistapi.sys
2006-09-23 09:49 359936 --a------ C:\WINDOWS\system32\cards.dll
2006-09-23 06:46 43520 --a------ C:\WINDOWS\system32\pstorec.dll
2006-09-23 05:49 69584 --a------ C:\WINDOWS\system32\avicap.dll
2006-09-23 01:54 -------- d-------- C:\Program Files\Microsoft Speech SDK 5.1
2006-09-22 16:24 8653 --a------ C:\Program Files\hijackthis2209061624.log
2006-09-22 16:23 8653 --a------ C:\Program Files\hijackthis.log
2006-09-22 10:51 614429 --a------ C:\WINDOWS\system32\mswstr10.dll
2006-09-22 03:38 147456 --a------ C:\WINDOWS\system32\nvcolor.exe
2006-09-21 12:01 882 --a------ C:\WINDOWS\system32\fastopen.exe
2006-09-21 09:00 56623 --------- C:\WINDOWS\system32\drivers\ati1btxx.sys
2006-09-21 07:43 466944 --a------ C:\WINDOWS\system32\nvshell.dll
2006-09-21 06:11 -------- d-------- C:\Program Files\Common Files\Wise Installation Wizard
2006-09-21 02:52 -------- d-------- C:\Program Files\Jasc Software Inc
2006-09-20 17:58 6016 --------- C:\WINDOWS\system32\drivers\smbali.sys
2006-09-20 11:42 20640 --------- C:\WINDOWS\system32\drivers\pxhelp20.sys
2006-09-20 05:49 47104 --a------ C:\WINDOWS\system32\uwdf.exe
2006-09-19 21:52 24576 --a------ C:\WINDOWS\system32\davclnt.dll
2006-09-19 11:00 29696 --a------ C:\WINDOWS\system32\VB5StKit.dll
2006-09-19 10:58 62976 --a------ C:\WINDOWS\system32\iesetup.dll
2006-09-19 09:54 94208 --a------ C:\WINDOWS\system32\divxdec_0411.dll
2006-09-19 09:44 6656 --a------ C:\WINDOWS\system32\kbdpl.dll
2006-09-19 08:00 13824 --a------ C:\WINDOWS\system32\rexec.exe
2006-09-19 07:13 11264 --a------ C:\WINDOWS\system32\msrle32.dll
2006-09-19 04:14 159744 --a------ C:\WINDOWS\system32\scrobj.dll
2006-09-19 01:06 16000 --a------ C:\WINDOWS\system32\drivers\usbintel.sys
2006-09-18 23:24 35296 --a------ C:\WINDOWS\system32\drivers\Dvd43.sys
2006-09-18 22:49 -------- d-------- C:\Program Files\Mozilla Firefox
2006-09-18 20:47 13312 --a------ C:\WINDOWS\system32\sigtab.dll
2006-09-18 19:51 -------- d-------- C:\Program Files\PCBugDoctor
2006-09-18 15:49 108464 --a------ C:\WINDOWS\system32\netapi.dll
2006-09-18 13:33 38912 --a------ C:\WINDOWS\system32\wpd_ci.dll
2006-09-18 11:04 792064 --a------ C:\WINDOWS\system32\comres.dll
2006-09-18 09:56 28672 --a------ C:\WINDOWS\system32\dmband.dll
2006-09-18 09:23 10880 --a------ C:\WINDOWS\system32\drivers\ndisip.sys
2006-09-17 09:20 -------- d-------- C:\Program Files\Webroot
2006-09-17 09:20 -------- d-------- C:\Documents and Settings\Joe\Application Data\Webroot
2006-09-17 05:19 462848 --a------ C:\WINDOWS\system32\ltkrn13n.dll
2006-09-17 01:57 86073 --a------ C:\WINDOWS\system32\usrfaxa.dll
2006-09-16 17:22 -------- d-------- C:\Program Files\Internet Radio
2006-09-16 17:18 1044480 --a------ C:\WINDOWS\system32\libdivx.dll
2006-09-16 15:11 145408 --a------ C:\WINDOWS\system32\wiavusd.dll
2006-09-16 14:12 646 --a------ C:\Documents and Settings\Joe\Application Data\.googlewebacchosts
2006-09-16 10:20 26624 --a------ C:\WINDOWS\system32\cnvfat.dll
2006-09-16 06:20 -------- d-------- C:\Program Files\InterActual
2006-09-16 05:51 56832 --a------ C:\WINDOWS\system32\mshtmler.dll
2006-09-16 05:30 57856 --a------ C:\WINDOWS\system32\scripto.dll
2006-09-16 04:56 13312 --a------ C:\WINDOWS\system32\umdmxfrm.dll
2006-09-16 02:14 53248 --a------ C:\WINDOWS\system32\ipv6.exe
2006-09-15 20:33 -------- d-------- C:\Program Files\Ares
2006-09-15 19:41 -------- d-------- C:\Program Files\Zone Labs
2006-09-15 19:18 6144 --a------ C:\WINDOWS\system32\kbdbe.dll
2006-09-15 16:56 143360 --a------ C:\WINDOWS\system32\mobsync.exe
2006-09-15 16:39 9216 --a------ C:\WINDOWS\system32\drivers\avgtdi64.sys
2006-09-15 15:46 43520 --a------ C:\WINDOWS\system32\racpldlg.dll
2006-09-15 14:57 14848 --a------ C:\WINDOWS\system32\mgmtapi.dll
2006-09-15 13:15 315423 --a------ C:\WINDOWS\system32\msrd3x40.dll
2006-09-15 11:13 -------- d-------- C:\Program Files\RegistryFix
2006-09-15 09:27 512688 --a------ C:\WINDOWS\system32\XceedCry.dll
2006-09-14 12:02 44544 --a------ C:\WINDOWS\system32\Jgaw400.dll
2006-09-14 10:53 368912 --a------ C:\WINDOWS\system32\vbar332.dll
2006-09-14 08:29 57344 --a------ C:\WINDOWS\system32\lfbmp13n.dll
2006-09-14 06:08 19694 --a------ C:\WINDOWS\system32\graphics.com
2006-09-14 03:16 193024 --------- C:\WINDOWS\system32\fsquirt.exe
2006-09-13 16:07 2897920 --------- C:\WINDOWS\system32\xpsp2res.dll
2006-09-13 13:45 25472 --a------ C:\WINDOWS\system32\drivers\sonydcam.sys
2006-09-13 10:29 325120 --a------ C:\WINDOWS\system32\xercesxmldom.dll
2006-09-13 08:15 450560 --a------ C:\WINDOWS\system32\infosoft.dll
2006-09-13 05:17 -------- d-------- C:\Documents and Settings\Joe\Application Data\MetaProducts
2006-09-13 04:15 12288 --a------ C:\WINDOWS\system32\mmdrv.dll
2006-09-13 03:49 69632 --a------ C:\WINDOWS\system32\raschap.dll
2006-09-13 03:39 129536 --a------ C:\WINDOWS\system32\acledit.dll
2006-09-13 02:25 114688 --a------ C:\WINDOWS\system32\DLLCDA32.dll
2006-09-12 22:16 -------- d-------- C:\Program Files\GameFiesta
2006-09-12 17:04 12672 --a------ C:\WINDOWS\system32\drivers\usb8023.sys
2006-09-12 13:12 145792 --a------ C:\WINDOWS\system32\drivers\portcls.sys
2006-09-12 07:57 36096 --------- C:\WINDOWS\system32\drivers\intelppm.sys
2006-09-12 02:44 7350784 --a------ C:\WINDOWS\RTLCPL.EXE
2006-09-11 20:12 14848 --a------ C:\WINDOWS\system32\stimon.exe
2006-09-11 13:47 574592 --a------ C:\WINDOWS\system32\drivers\ntfs.sys
2006-09-11 13:32 150016 --a------ C:\WINDOWS\system32\imapi.exe
2006-09-11 08:55 16384 --a------ C:\WINDOWS\system32\tskill.exe
2006-09-11 01:50 32866 --------- C:\WINDOWS\slrundll.exe
2006-09-10 22:11 98304 --a------ C:\WINDOWS\system32\cscript.exe
2006-09-10 22:01 -------- d-------- C:\Program Files\Mp3 File Merger
2006-09-10 20:44 216576 --a------ C:\WINDOWS\system32\ieaksie.dll
2006-09-10 20:30 -------- d-------- C:\Program Files\TypingMaster
2006-09-10 19:43 73472 --a------ C:\WINDOWS\system32\drivers\sr.sys
2006-09-10 19:18 5280 -ra------ C:\WINDOWS\system32\drivers\alcawh.sys
2006-09-10 10:19 81408 --------- C:\WINDOWS\system32\wscsvc.dll
2006-09-10 08:33 1285120 --a------ C:\WINDOWS\system32\ole32.dll
2006-09-10 05:12 16384 --a------ C:\WINDOWS\system32\avmeter.dll
2006-09-10 05:02 35648 --a------ C:\WINDOWS\system32\ntio411.sys
2006-09-10 05:01 1134592 --a------ C:\WINDOWS\system32\ASUninstall.exe
2006-09-10 03:53 11753 --a------ C:\WINDOWS\system32\setver.exe
2006-09-10 01:36 5632 --a------ C:\WINDOWS\system32\kbdhe.dll
2006-09-10 00:02 7552 --a------ C:\WINDOWS\system32\drivers\enodpl.sys
2006-09-09 22:53 16896 --a------ C:\WINDOWS\system32\upnpcont.exe
2006-09-09 22:48 -------- d-------- C:\Documents and Settings\Joe\Application Data\ExecutiveSoftware
2006-09-09 19:19 -------- d-------- C:\Documents and Settings\Joe\Application Data\iMesh
2006-09-09 14:44 187152 --a------ C:\WINDOWS\system32\javacypt.dll
2006-09-09 11:59 -------- d-------- C:\Program Files\Games
2006-09-09 10:20 0 --a------ C:\CONFIG.SYS
2006-09-09 10:20 -------- d-------- C:\Program Files\Advanced System Optimizer
2006-09-09 10:20 -------- d-------- C:\Documents and Settings\Joe\Application Data\Systweak
2006-09-09 03:58 12800 --a------ C:\WINDOWS\system32\mrinfo.exe
2006-09-09 03:53 11264 --a------ C:\WINDOWS\system32\rasdial.exe
2006-09-08 17:47 -------- d-------- C:\Program Files\Internet Download Manager
2006-09-08 17:38 13312 --a------ C:\WINDOWS\system32\lsass.exe
2006-09-08 12:27 27866 --a------ C:\WINDOWS\system32\ntdos.sys
2006-09-08 04:02 107008 --a------ C:\WINDOWS\system32\oleprn.dll
2006-09-08 02:36 14848 --a------ C:\WINDOWS\system32\fc.exe
2006-09-07 22:38 1664 --a------ C:\Documents and Settings\Joe\Application Data\ViewerApp.dat
2006-09-07 09:55 151552 --a------ C:\WINDOWS\system32\DLLDEV32.dll
2006-09-07 09:05 363008 --a------ C:\WINDOWS\system32\smlogcfg.dll
2006-09-07 06:10 5120 --a------ C:\WINDOWS\system32\winnls.dll
2006-09-07 05:54 28160 --------- C:\WINDOWS\system32\WMDMLOG.dll
2006-09-06 19:21 338432 --------- C:\WINDOWS\system32\ir41_qcx.dll
2006-09-06 17:21 5632 --a------ C:\WINDOWS\system32\tapiperf.dll
2006-09-06 15:12 16896 --a------ C:\WINDOWS\system32\oleaccrc.dll
2006-09-06 11:23 94784 --a------ C:\WINDOWS\twain.dll
2006-09-05 22:49 36864 --a------ C:\WINDOWS\system32\ntmsevt.dll
2006-09-05 22:26 1309184 --------- C:\WINDOWS\system32\drivers\mtlstrm.sys
2006-09-05 17:16 104960 --------- C:\WINDOWS\system32\drivers\atinrvxx.sys
2006-09-05 16:15 -------- d-------- C:\Program Files\MRU-Blaster
2006-09-05 14:01 0 --a------ C:\Documents and Settings\Joe\Application Data\dm.ini
2006-09-05 08:35 12672 --------- C:\WINDOWS\system32\drivers\mutohpen.sys
2006-09-05 01:58 92224 --a------ C:\WINDOWS\system32\krnl386.exe
2006-09-04 20:09 343040 --------- C:\WINDOWS\system32\msvcrt.dll
2006-09-04 15:10 -------- d-------- C:\Program Files\Super DVD Ripper
2006-09-04 06:14 283648 --a------ C:\WINDOWS\system32\pdh.dll
2006-09-04 05:16 14336 --a------ C:\Documents and Settings\Joe\Application Data\00000E74_VTS_1.IFO
2006-09-04 02:08 1294336 --a------ C:\WINDOWS\system32\dsound3d.dll
2006-09-03 21:56 46464 --------- C:\WINDOWS\system32\drivers\gagp30kx.sys
2006-09-03 18:40 31616 --a------ C:\WINDOWS\system32\drivers\usbccgp.sys
2006-09-03 15:44 16384 --a------ C:\WINDOWS\system32\icfgnt5.dll
2006-09-03 13:30 419840 --a------ C:\WINDOWS\system32\ntvdm.exe
2006-09-03 08:05 25088 --------- C:\WINDOWS\system32\shfolder.dll
2006-09-03 06:04 52736 --a------ C:\WINDOWS\system32\drivers\i8042prt.sys
2006-09-03 03:45 94208 --a------ C:\WINDOWS\system32\MSSTKPRP.DLL
2006-09-02 02:40 -------- d-------- C:\Program Files\Ligos
2006-09-02 01:35 66560 --a------ C:\WINDOWS\system32\mtxclu.dll
2006-09-02 00:18 1662976 --a------ C:\WINDOWS\system32\nvwdmcpl.dll
2006-09-02 00:00 4224 --a------ C:\WINDOWS\system32\drivers\rdpcdd.sys
2006-09-01 22:10 15872 --a------ C:\WINDOWS\system32\wdfapi.dll
2006-09-01 19:44 1519616 --a------ C:\WINDOWS\system32\nwiz.exe
2006-09-01 16:35 31744 --------- C:\WINDOWS\system32\drivers\atinxbxx.sys
2006-09-01 16:07 348189 --a------ C:\WINDOWS\system32\msxbde40.dll
2006-09-01 12:47 253 --a------ C:\Program Files\ISANT_wh_na.pre
2006-08-31 22:26 129536 --a------ C:\WINDOWS\AuHCcup1.dll
2006-08-31 19:38 156160 --a------ C:\WINDOWS\system32\RTLCPAPI.dll
2006-08-31 13:48 52224 --------- C:\WINDOWS\system32\drivers\atinraxx.sys
2006-08-31 10:28 1269760 --a------ C:\WINDOWS\system32\ASTAudioFile.dll
2006-08-31 01:12 136704 --a------ C:\WINDOWS\system32\sti_ci.dll
2006-08-30 21:26 53305 --a------ C:\WINDOWS\system32\usrlbva.dll
2006-08-30 20:45 -------- d-------- C:\Program Files\Innovative Solutions
2006-08-30 20:11 -------- d-------- C:\Program Files\MyWay
2006-08-30 18:48 42496 --a------ C:\WINDOWS\system32\shmgrate.exe
2006-08-30 16:51 -------- d-------- C:\Program Files\Your Uninstaller 2006
2006-08-30 15:03 35328 --a------ C:\WINDOWS\system32\winchat.exe
2006-08-30 11:05 57344 --a------ C:\WINDOWS\system32\pport_res.dll
2006-08-30 10:30 37376 --a------ C:\WINDOWS\system32\drivers\amdk7.sys
2006-08-30 08:16 847872 --a------ C:\WINDOWS\system32\dbgeng.dll
2006-08-30 03:02 24576 --a------ C:\WINDOWS\system32\rsmsink.exe
2006-08-30 00:07 4736 --a------ C:\WINDOWS\system32\drivers\usbd.sys
2006-08-30 00:05 58880 --a------ C:\WINDOWS\system32\rastapi.dll
2006-08-29 22:30 -------- d-------- C:\Program Files\GameHouse
2006-08-29 15:14 18944 --a------ C:\WINDOWS\system32\wmiprop.dll
2006-08-29 09:08 -------- d-------- C:\Program Files\HighMAT CD Writing Wizard
2006-08-29 06:38 12160 --a------ C:\WINDOWS\system32\drivers\fsvga.sys
2006-08-29 05:29 -------- d-------- C:\Program Files\All Video Splitter
2006-08-28 20:40 -------- d-------- C:\Program Files\Free Download Manager
2006-08-28 20:01 -------- d-------- C:\Program Files\SimpleOCR
2006-08-28 18:55 23040 --a------ C:\WINDOWS\system32\mciseq.dll
2006-08-28 16:16 213023 --a------ C:\WINDOWS\system32\msltus40.dll
2006-08-28 11:38 71680 --a------ C:\WINDOWS\system32\ssdpsrv.dll
2006-08-28 04:36 774904 --a------ C:\WINDOWS\system32\wmsdmod.dll
2006-08-28 02:32 -------- d-------- C:\Program Files\Common Files\Nikon
2006-08-27 21:57 285184 -ra------ C:\WINDOWS\system32\LFCMP11n.DLL
2006-08-27 21:46 132608 --a------ C:\WINDOWS\system32\upnp.dll
2006-08-27 19:41 26367 --------- C:\WINDOWS\system32\drivers\ati1snxx.sys
2006-08-27 15:33 -------- d-------- C:\Program Files\NetMeeting
2006-08-27 06:17 47616 --a------ C:\WINDOWS\system32\iyuv_32.dll
2006-08-26 22:26 23040 --a------ C:\WINDOWS\system32\setup.exe
2006-08-26 16:47 253952 --a------ C:\WINDOWS\system32\msvcrt20.dll
2006-08-26 10:04 131072 --a------ C:\WINDOWS\system32\bsplmf01.exe
2006-08-26 08:09 96256 --a------ C:\WINDOWS\system32\drivers\scsiport.sys
2006-08-26 02:24 169984 --a------ C:\WINDOWS\system32\sccbase.dll
2006-08-26 01:45 23552 --a------ C:\WINDOWS\system32\rsvpmsg.dll
2006-08-26 01:20 63488 --a------ C:\WINDOWS\system32\cryptnet.dll
2006-08-25 22:25 118784 --a------ C:\WINDOWS\system32\dmdskres.dll
2006-08-25 13:20 12416 --a------ C:\WINDOWS\system32\drivers\nwlnkflt.sys
2006-08-25 09:38 54272 --a------ C:\WINDOWS\system32\dataclen.dll
2006-08-25 08:20 252928 --a------ C:\WINDOWS\system32\compatUI.dll
2006-08-25 06:23 56320 --a------ C:\WINDOWS\system32\servdeps.dll
2006-08-25 05:09 132096 --a------ C:\WINDOWS\system32\wkssvc.dll
2006-08-25 03:08 -------- d-------- C:\Documents and Settings\Joe\Application Data\Real
2006-08-25 01:06 224768 --------- C:\WINDOWS\system32\wmasf.dll
2006-08-24 22:23 -------- d-------- C:\Program Files\Azureus
2006-08-24 20:06 6144 --a------ C:\WINDOWS\system32\kbdsw.dll
2006-08-24 16:22 172032 -ra------ C:\WINDOWS\system32\Lfpng11n.dll
2006-08-24 14:36 50176 --------- C:\WINDOWS\system32\xmlprovi.dll
2006-08-24 11:17 218624 --a------ C:\WINDOWS\system32\uxtheme.dll
2006-08-24 07:33 19456 --a------ C:\WINDOWS\system32\shutdown.exe
2006-08-24 06:36 -------- d-------- C:\Documents and Settings\Joe\Application Data\MSN6
2006-08-23 22:44 47104 --a