khakigirl

For the past two days, anytime I search anything using Yahoo or Google, my internet window freezes and I can't do anything except close it using the task manager. I have run a Comodo Anti Virus scan, SuperAntiSpyware, Malwarebytes' Anti-Malware, Spybot Search & Destroy, and Ad-Aware scans and nothing has come up. I would really like to get this problem fixed because it's driving me nuts.

Everything else seems to be running fine with my computer. This search problem has just popped up. Oh, and it happens using Firefox AND Internet Explorer. In Firefox, I am using the AdBlock Plus, Yahoo toolbar, ChaCha toolbar, Comodo Hopsurf, IE Tab, Lazarus Form Recovery, McAfee SiteAdvisor, Roboform and Skype Extension add-ons. I figured I'd ad that just in case.

Here is my DDS scan:


DDS (Ver_09-07-30.01) - NTFSx86
Run by Phillip at 9:43:58.46 on Sat 09/19/2009
Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_16
Microsoft® Windows Vista™ Home Basic 6.0.6000.0.1252.1.1033.18.2046.1073 [GMT -5:00]

AV: COMODO Antivirus *On-access scanning enabled* (Updated) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
SP: COMODO Defense+ *enabled* (Updated) {043803A4-4F86-4ef7-AFC5-F6E02A79969B}
SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Lavasoft Ad-Watch Live! *disabled* (Updated) {67844DAE-4F77-4D69-9457-98E8CFFDAA22}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}
FW: COMODO Firewall *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\McAfee\SiteAdvisor\McSACore.exe
C:\Program Files\MediaMall\MediaMallServer.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\System32\WLTRAY.EXE
C:\Windows\System32\rundll32.exe
C:\Windows\sttray.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\MediaMall\PlayOn.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\Taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Users\Phillip\Desktop\dds.scr
C:\Windows\system32\wbem\wmiprvse.exe

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=3070507
uWindow Title = Internet Explorer provided by Dell
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
uURLSearchHooks: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\bae\BAE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn0\YTSingleInstance.dll
TB: HopSurf toolbar: {e9fab13d-4600-49e1-90d1-ee961c859d39} - c:\program files\comodo\hopsurftoolbar\HopSurfToolbar_IE.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [PlayOn] c:\program files\mediamall\PlayOn.exe
uRun: [RoboForm] "c:\program files\siber systems\ai roboform\RoboTaskBarIcon.exe"
uRun: [AdobeBridge]
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStart
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [SigmatelSysTrayApp] sttray.exe
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [<NO NAME>]
mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h
mRun: [MSConfig] "c:\windows\system32\msconfig.exe" /auto
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [PAC207_Monitor] c:\windows\pixart\pac207\Monitor.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
StartupFolder: c:\users\phillip\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\windows\installer\{53a01cc6-14b0-4512-a2e7-10d39bf83dc4}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe
IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
IE: {ED98F8D1-09AC-4107-B2FF-91DBE011B0C5} - {6BBCFF8E-D837-4DA4-9141-1F645B34A179} - c:\program files\comodo\hopsurftoolbar\HopSurfToolbar_IE.dll
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
TCP: {9F0D3439-F027-42B5-892A-C73FFAC42247} = 156.154.70.22,156.154.71.22
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
AppInit_DLLs: c:\windows\system32\guard32.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\users\phillip\appdata\roaming\mozilla\firefox\profiles\1k06ae43.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.searchslate.com/wp.ashx?ref=home&id=157
FF - component: c:\program files\comodo\hopsurftoolbar\hopsurfext_ff3_5\components\hopsurf.dll
FF - component: c:\program files\mcafee\siteadvisor\components\McFFPlg.dll
FF - component: c:\program files\siber systems\ai roboform\firefox\components\rfproxy_31.dll
FF - component: c:\users\phillip\appdata\roaming\mozilla\firefox\profiles\1k06ae43.default\extensions\lazarus@interclue.com\platform\winnt_x86-msvc\components\WeaveCrypto.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - truec:\program files\mozilla firefox\greprefs\all.js - pref("media.enforce_same_site_origin", false);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.cache_size", 51200);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.ogg.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.wave.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("media.autoplay.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("browser.urlbar.autocomplete.enabled", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("capability.policy.mailnews.*.wholeText", "noAccess");
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.storage.default_quota", 5120);
c:\program files\mozilla firefox\greprefs\all.js - pref("content.sink.event_probe_rate", 3);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.http.prompt-temp-redirect", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.dpi", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("layout.css.devPixelsPerPx", -1);
c:\program files\mozilla firefox\greprefs\all.js - pref("gestures.enable_single_finger_input", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("dom.max_chrome_script_run_time", 0);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.tcp.sendbuffer", 131072);
c:\program files\mozilla firefox\greprefs\all.js - pref("geo.enabled", true);
c:\program files\mozilla firefox\greprefs\security-prefs.js - pref("security.remember_cert_checkbox_default_setting", true);
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-cjkt", "moz35");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("extensions.blocklist.level", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.restrict.typed", "~");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.urlbar.default.behavior", 0);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.clearOnShutdown.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.history", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.formdata", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.passwords", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.downloads", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cookies", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.cache", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.sessions", true);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.offlineApps", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.cpd.siteSettings", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("privacy.sanitize.migrateFx3Prefs", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.ssl_override_behavior", 2);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("security.alternate_certificate_error_page", "certerror");
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.autostart", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("browser.privatebrowsing.dont_prompt_on_enter", false);
c:\program files\mozilla firefox\defaults\pref\firefox.js - pref("geo.wifi.uri", "https://www.google.com/loc/json");

============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-9-18 64160]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2009-9-2 128888]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2009-9-2 29520]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-9-4 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-9-4 74480]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\mcafee\siteadvisor\McSACore.exe [2009-9-14 92296]
R2 MediaMall Server;MediaMall Server;c:\program files\mediamall\MediaMallServer.exe [2009-9-10 2874368]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2009-9-18 1153368]
R2 YahooAUService;Yahoo! Updater;c:\program files\yahoo!\softwareupdate\YahooAUService.exe [2008-11-9 602392]
R3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-9-4 7408]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-7-3 1029456]
S3 PAC207;PC Camer@;c:\windows\system32\drivers\PFC027.SYS [2009-9-12 616064]

=============== Created Last 30 ================

2009-09-19 08:48 <DIR> --d----- c:\programdata\Gosu
2009-09-19 08:48 <DIR> --d----- c:\progra~2\Gosu
2009-09-18 18:41 <DIR> --d----- c:\users\phillip\appdata\roaming\Malwarebytes
2009-09-18 18:41 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-18 18:41 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-09-18 18:41 <DIR> --d----- c:\programdata\Malwarebytes
2009-09-18 18:41 <DIR> --d----- c:\progra~2\Malwarebytes
2009-09-18 18:41 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-09-18 17:59 15,688 a------- c:\windows\system32\lsdelete.exe
2009-09-18 16:21 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-09-18 16:19 <DIR> -cd-h--- c:\programdata\{EF63305C-BAD7-4144-9208-D65528260864}
2009-09-18 16:19 <DIR> -cd-h--- c:\progra~2\{EF63305C-BAD7-4144-9208-D65528260864}
2009-09-18 16:18 <DIR> --d----- c:\programdata\Lavasoft
2009-09-18 16:18 <DIR> --d----- c:\program files\Lavasoft
2009-09-18 16:10 <DIR> --d----- c:\programdata\Spybot - Search & Destroy
2009-09-18 16:10 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2009-09-18 16:10 <DIR> --d----- c:\progra~2\Spybot - Search & Destroy
2009-09-17 21:58 <DIR> --d----- c:\users\phillip\appdata\roaming\.purple
2009-09-17 21:56 <DIR> --d----- c:\program files\Pidgin
2009-09-17 21:56 <DIR> --d----- c:\program files\common files\GTK
2009-09-17 21:17 <DIR> --dsh--- c:\windows\system32\%APPDATA%
2009-09-16 16:58 <DIR> --d----- c:\programdata\MediaMall
2009-09-16 16:58 <DIR> --d----- c:\progra~2\MediaMall
2009-09-13 22:02 <DIR> --d----- c:\program files\common files\MAGIX Shared
2009-09-13 22:02 120,200 a------- c:\windows\system32\DLLDEV32i.dll
2009-09-13 22:02 <DIR> --d----- c:\program files\MAGIX
2009-09-13 22:02 700,416 a------- c:\windows\system32\mgxoschk.dll
2009-09-13 22:02 6,211 a------- c:\windows\mgxoschk.ini
2009-09-13 22:02 <DIR> --d----- c:\windows\system32\MAGIX
2009-09-13 21:11 <DIR> --d----- c:\program files\common files\TV-Websites
2009-09-13 21:11 <DIR> --d----- c:\program files\common files\ffdshowEx
2009-09-13 19:53 <DIR> --d----- c:\programdata\SUPERAntiSpyware.com
2009-09-13 19:53 <DIR> --d----- c:\progra~2\SUPERAntiSpyware.com
2009-09-13 19:53 <DIR> --d----- c:\users\phillip\appdata\roaming\SUPERAntiSpyware.com
2009-09-13 19:53 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-09-13 19:53 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-09-13 19:43 <DIR> --d----- c:\program files\CCleaner
2009-09-13 19:13 240 a------- c:\windows\system32\drivers\kgpcpy.cfg
2009-09-13 19:00 <DIR> --d----- c:\programdata\SITEguard
2009-09-13 19:00 <DIR> --d----- c:\progra~2\SITEguard
2009-09-13 18:58 <DIR> --d----- c:\program files\common files\iS3
2009-09-13 18:58 <DIR> --d----- c:\programdata\STOPzilla!
2009-09-13 18:58 <DIR> --d----- c:\progra~2\STOPzilla!
2009-09-13 16:56 49,152 a------- c:\windows\system32\INETWH32.DLL
2009-09-13 16:56 1,056,768 a------- c:\windows\system32\ROBOEX32.DLL
2009-09-13 16:56 <DIR> --d----- c:\program files\NetObjects
2009-09-13 16:54 327,168 a------- c:\windows\IsUninst.exe
2009-09-13 09:50 737,280 a------- c:\windows\iun6002.exe
2009-09-13 09:49 <DIR> --d----- c:\program files\BlueVoda Website Builder
2009-09-12 19:50 <DIR> --d----- c:\users\phillip\appdata\roaming\Turbine
2009-09-12 19:47 2,297,552 a------- c:\windows\system32\d3dx9_26.dll
2009-09-12 19:42 <DIR> --d----- c:\windows\system32\URTTEMP
2009-09-12 19:23 <DIR> --d----- c:\program files\Turbine
2009-09-12 18:12 <DIR> --d----- c:\programdata\PMB Files
2009-09-12 18:12 <DIR> --d----- c:\progra~2\PMB Files
2009-09-12 14:40 48,128 a------- c:\windows\system32\Remove.exe
2009-09-12 14:40 399 a------- c:\windows\system32\Remover.ini
2009-09-12 14:40 616,064 a------- c:\windows\system32\drivers\PFC027.SYS
2009-09-12 14:40 119,568 a------- c:\windows\system32\KSPR45.rra
2009-09-12 14:40 6,656 a------- c:\windows\system32\CoInst_071102.dll
2009-09-12 14:40 40,960 a------- c:\windows\98Setup.exe
2009-09-12 14:40 <DIR> --d----- c:\program files\PC Camera
2009-09-12 14:40 129,024 a------- c:\windows\system32\SP207.AX
2009-09-12 14:40 <DIR> --d----- c:\program files\common files\PAC207
2009-09-12 14:35 304,160 a------- C:\PA207.DAT
2009-09-11 13:13 <DIR> --d----- c:\users\phillip\appdata\roaming\Anthropics
2009-09-11 13:13 <DIR> --d----- c:\program files\Portrait Professional 9 Trial
2009-09-10 21:20 <DIR> --d----- c:\program files\Microsoft Windows 7 Upgrade Advisor
2009-09-10 17:14 <DIR> --d----- c:\program files\SystemRequirementsLab
2009-09-10 09:06 <DIR> --d----- c:\programdata\EwisoftWeb
2009-09-10 09:06 <DIR> --d----- c:\program files\EwisoftWeb
2009-09-10 09:06 <DIR> --d----- c:\progra~2\EwisoftWeb
2009-09-09 21:36 813,568 a------- c:\windows\system32\drivers\tcpip.sys
2009-09-09 21:36 213,592 a------- c:\windows\system32\drivers\netio.sys
2009-09-09 21:36 103,936 a------- c:\windows\system32\netiohlp.dll
2009-09-09 21:36 167,424 a------- c:\windows\system32\tcpipcfg.dll
2009-09-09 21:35 22,016 a------- c:\windows\system32\netiougc.exe
2009-09-09 21:35 27,136 a------- c:\windows\system32\NETSTAT.EXE
2009-09-09 21:35 19,968 a------- c:\windows\system32\ARP.EXE
2009-09-09 21:35 17,920 a------- c:\windows\system32\ROUTE.EXE
2009-09-09 21:35 11,264 a------- c:\windows\system32\MRINFO.EXE
2009-09-09 21:35 10,240 a------- c:\windows\system32\finger.exe
2009-09-09 21:35 9,728 a------- c:\windows\system32\TCPSVCS.EXE
2009-09-09 21:35 8,704 a------- c:\windows\system32\HOSTNAME.EXE
2009-09-09 21:35 15,360 a------- c:\windows\system32\netevent.dll
2009-09-09 19:23 <DIR> --d----- c:\users\phillip\appdata\roaming\IrfanView
2009-09-09 19:23 <DIR> --d----- c:\program files\IrfanView
2009-09-09 12:49 <DIR> --d----- c:\users\phillip\appdata\roaming\YouDataAIR.CDA5CEB063BC2A22C44BAA035F25F65FCCDA2208.1
2009-09-09 12:49 <DIR> --d----- c:\program files\YouData
2009-09-09 12:13 <DIR> --d----- c:\users\phillip\appdata\roaming\TweetDeckFast.F9107117265DB7542C1A806C8DB837742CE14C21.1
2009-09-09 12:12 <DIR> --d----- c:\program files\TweetDeck
2009-09-07 16:49 <DIR> --d----- c:\programdata\Office Genuine Advantage
2009-09-07 16:49 <DIR> --d----- c:\users\phillip\Office Genuine Advantage
2009-09-07 16:03 1,638,912 a------- c:\windows\system32\mshtml.tlb
2009-09-05 19:56 <DIR> --d----- c:\programdata\Apple Computer
2009-09-05 19:55 <DIR> --d----- c:\programdata\Apple
2009-09-04 21:38 56 a---h--- c:\programdata\ezsidmv.dat
2009-09-04 21:38 56 a---h--- c:\progra~2\ezsidmv.dat
2009-09-04 21:37 <DIR> --d--r-- c:\program files\Skype
2009-09-04 21:36 <DIR> --d----- c:\programdata\Skype
2009-09-04 21:34 <DIR> --d----- c:\programdata\Yahoo! Companion
2009-09-04 21:33 <DIR> --d----- c:\programdata\Yahoo!
2009-09-04 21:20 <DIR> --d----- c:\windows\PixArt
2009-09-04 19:24 32,656 a------- c:\windows\system32\msonpmon.dll
2009-09-04 19:21 <DIR> --d----- c:\windows\PCHEALTH
2009-09-04 19:19 <DIR> --d----- c:\windows\SHELLNEW
2009-09-04 19:18 <DIR> --d----- c:\programdata\Microsoft Help
2009-09-04 19:03 <DIR> --d----- c:\users\phillip\appdata\roaming\GetRightToGo
2009-09-04 18:58 <DIR> --d----- c:\program files\MSECache
2009-09-04 15:09 <DIR> --d----- c:\programdata\NOS
2009-09-03 22:02 268,800 a------- c:\windows\system32\es.dll
2009-09-03 15:11 <DIR> --d----- c:\users\phillip\appdata\roaming\OpenOffice.org
2009-09-03 14:59 <DIR> --d----- c:\program files\JRE
2009-09-03 13:00 <DIR> --d----- c:\program files\OpenOffice.org 3
2009-09-03 12:59 411,368 a------- c:\windows\system32\deploytk.dll
2009-09-03 10:34 <DIR> --d----- c:\programdata\RoboForm
2009-09-03 10:33 <DIR> --d----- c:\program files\Siber Systems
2009-09-03 10:03 <DIR> --d----- c:\programdata\FLEXnet
2009-09-03 10:01 <DIR> --d----- c:\programdata\ALM
2009-09-03 10:01 <DIR> --d----- c:\progra~2\ALM
2009-09-03 09:49 <DIR> --d----- c:\program files\common files\Macrovision Shared
2009-09-03 08:53 622,080 a------- c:\windows\system32\icardagt.exe
2009-09-03 08:53 11,264 a------- c:\windows\system32\icardres.dll
2009-09-03 08:53 97,800 a------- c:\windows\system32\infocardapi.dll
2009-09-03 08:53 37,384 a------- c:\windows\system32\infocardcpl.cpl
2009-09-03 08:53 105,016 a------- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-09-03 08:53 781,344 a------- c:\windows\system32\PresentationNative_v0300.dll
2009-09-03 08:53 326,160 a------- c:\windows\system32\PresentationHost.exe
2009-09-03 08:53 43,544 a------- c:\windows\system32\PresentationHostProxy.dll
2009-09-02 22:50 2,048 a------- c:\windows\system32\tzres.dll
2009-09-02 22:48 28,672 a------- c:\windows\system32\FwRemoteSvr.dll
2009-09-02 22:48 361,984 a------- c:\windows\system32\IPSECSVC.DLL
2009-09-02 22:48 272,896 a------- c:\windows\system32\polstore.dll
2009-09-02 22:48 61,440 a------- c:\windows\system32\winipsec.dll
2009-09-02 22:44 241,152 a------- c:\windows\system32\PortableDeviceApi.dll
2009-09-02 22:44 160,768 a------- c:\windows\system32\PortableDeviceTypes.dll
2009-09-02 22:44 95,232 a------- c:\windows\system32\PortableDeviceClassExtension.dll
2009-09-02 22:43 205,824 a------- c:\windows\system32\msoeacct.dll
2009-09-02 22:43 87,040 a------- c:\windows\system32\msoert2.dll
2009-09-02 22:43 39,424 a------- c:\windows\system32\ACCTRES.dll
2009-09-02 22:41 704,000 a------- c:\windows\system32\PhotoScreensaver.scr
2009-09-02 22:41 356,352 a------- c:\windows\system32\wbem\wbemcomn.dll
2009-09-02 22:41 258,232 a------- c:\windows\system32\drivers\acpi.sys
2009-09-02 22:41 24,064 a------- c:\windows\system32\wtsapi32.dll
2009-09-02 22:41 20,920 a------- c:\windows\system32\drivers\compbatt.sys
2009-09-02 22:41 11,264 a------- c:\windows\system32\drivers\wmiacpi.sys
2009-09-02 22:41 28,344 a------- c:\windows\system32\drivers\battc.sys
2009-09-02 22:41 14,208 a------- c:\windows\system32\drivers\CmBatt.sys
2009-09-02 22:41 542,720 a------- c:\windows\system32\sysmain.dll
2009-09-02 22:41 714,240 a------- c:\windows\system32\timedate.cpl
2009-09-02 22:41 12,876 a------- c:\windows\system32\wbem\wlan.mof
2009-09-02 22:40 110,080 a------- c:\windows\system32\drivers\mrxdav.sys
2009-09-02 22:40 194,560 a------- c:\windows\system32\WebClnt.dll
2009-09-02 22:39 2,028,032 a------- c:\windows\system32\win32k.sys
2009-09-02 22:37 156,160 a------- c:\windows\system32\t2embed.dll
2009-09-02 22:37 289,792 a------- c:\windows\system32\atmfd.dll
2009-09-02 22:37 72,704 a------- c:\windows\system32\fontsub.dll
2009-09-02 22:37 34,304 a------- c:\windows\system32\atmlib.dll
2009-09-02 22:37 24,064 a------- c:\windows\system32\lpk.dll
2009-09-02 22:37 10,240 a------- c:\windows\system32\dciman32.dll
2009-09-02 22:36 376,320 a------- c:\windows\system32\winsrv.dll
2009-09-02 22:36 49,664 a------- c:\windows\system32\csrsrv.dll
2009-09-02 22:32 376,832 a------- c:\windows\system32\winhttp.dll
2009-09-02 22:31 71,680 a------- c:\windows\system32\atl.dll
2009-09-02 22:28 297,472 a------- c:\windows\system32\gdi32.dll
2009-09-02 22:27 1,060,920 a------- c:\windows\system32\drivers\ntfs.sys
2009-09-02 22:27 41,984 a------- c:\windows\system32\drivers\monitor.sys
2009-09-02 22:26 211,456 a------- c:\windows\system32\drivers\mrxsmb10.sys
2009-09-02 22:24 374,456 a------- c:\windows\system32\mcupdate_GenuineIntel.dll
2009-09-02 22:23 500,736 a------- c:\windows\system32\msdtcprx.dll
2009-09-02 22:23 30,208 a------- c:\windows\system32\xolehlp.dll
2009-09-02 22:22 156,160 a------- c:\windows\system32\wkssvc.dll
2009-09-02 22:21 116,736 a------- c:\windows\system32\aaclient.dll
2009-09-02 22:21 36,352 a------- c:\windows\system32\tsgqec.dll
2009-09-02 22:21 1,871,872 a------- c:\windows\system32\mstscax.dll
2009-09-02 22:19 303,616 a------- c:\windows\system32\wmpeffects.dll
2009-09-02 22:18 1,194,496 a------- c:\windows\system32\msxml3.dll
2009-09-02 22:18 2,048 a------- c:\windows\system32\msxml3r.dll
2009-09-02 22:17 414,208 a------- c:\windows\system32\msscp.dll
2009-09-02 22:15 356,864 a------- c:\windows\system32\MediaMetadataHandler.dll
2009-09-02 22:14 396,800 a------- c:\windows\system32\MPSSVC.dll
2009-09-02 22:14 392,192 a------- c:\windows\system32\FirewallAPI.dll
2009-09-02 22:14 63,488 a------- c:\windows\system32\drivers\mpsdrv.sys
2009-09-02 22:14 86,016 a------- c:\windows\system32\icfupgd.dll
2009-09-02 22:14 61,952 a------- c:\windows\system32\cmifw.dll
2009-09-02 22:14 16,896 a------- c:\windows\system32\wfapigp.dll
2009-09-02 22:14 178,688 a------- c:\windows\system32\iphlpsvc.dll
2009-09-02 22:14 23,040 a------- c:\windows\system32\drivers\tunnel.sys
2009-09-02 22:14 15,360 a------- c:\windows\system32\drivers\TUNMP.SYS
2009-09-02 22:09 696,832 a------- c:\windows\system32\localspl.dll
2009-09-02 22:08 123,904 a------- c:\windows\system32\msvfw32.dll
2009-09-02 22:08 88,576 a------- c:\windows\system32\avifil32.dll
2009-09-02 22:08 82,944 a------- c:\windows\system32\mciavi32.dll
2009-09-02 22:08 65,024 a------- c:\windows\system32\avicap32.dll
2009-09-02 22:08 31,232 a------- c:\windows\system32\msvidc32.dll
2009-09-02 22:08 12,800 a------- c:\windows\system32\msrle32.dll
2009-09-02 22:06 110,136 a------- c:\windows\system32\drivers\ataport.sys
2009-09-02 22:06 45,112 a------- c:\windows\system32\drivers\pciidex.sys
2009-09-02 22:06 21,560 a------- c:\windows\system32\drivers\atapi.sys
2009-09-02 22:06 17,976 a------- c:\windows\system32\drivers\intelide.sys
2009-09-02 22:06 211,000 a------- c:\windows\system32\drivers\volsnap.sys
2009-09-02 22:06 154,624 a------- c:\windows\system32\drivers\nwifi.sys
2009-09-02 22:05 2,923,520 a------- c:\windows\explorer.exe
2009-09-02 22:02 494,592 a------- c:\windows\system32\kerberos.dll
2009-09-02 22:02 1,233,920 a------- c:\windows\system32\lsasrv.dll
2009-09-02 22:02 408,136 a------- c:\windows\system32\drivers\ksecdd.sys
2009-09-02 22:02 216,576 a------- c:\windows\system32\msv1_0.dll
2009-09-02 22:02 175,104 a------- c:\windows\system32\wdigest.dll
2009-09-02 22:02 72,704 a------- c:\windows\system32\secur32.dll
2009-09-02 22:02 7,680 a------- c:\windows\system32\lsass.exe
2009-09-02 22:02 272,384 a------- c:\windows\system32\schannel.dll
2009-09-02 22:00 24,064 a------- c:\windows\system32\netcfg.exe
2009-09-02 21:53 1,585,664 a------- c:\windows\system32\setupapi.dll
2009-09-02 21:49 549,888 a------- c:\windows\system32\rpcss.dll
2009-09-02 21:49 3,503,584 a------- c:\windows\system32\ntkrnlpa.exe
2009-09-02 21:49 3,469,280 a------- c:\windows\system32\ntoskrnl.exe
2009-09-02 21:49 654,336 a------- c:\windows\system32\printfilterpipelinesvc.exe
2009-09-02 21:49 130,560 a------- c:\windows\system32\wbem\WmiDcPrv.dll
2009-09-02 21:49 24,576 a------- c:\windows\system32\printfilterpipelineprxy.dll
2009-09-02 21:49 614,912 a------- c:\windows\system32\wbem\fastprox.dll
2009-09-02 21:49 501,760 a------- c:\windows\system32\wbem\WmiPrvSD.dll
2009-09-02 21:49 247,296 a------- c:\windows\system32\wbem\WmiPrvSE.exe
2009-09-02 21:49 158,720 a------- c:\windows\system32\sdohlp.dll
2009-09-02 21:49 97,280 a------- c:\windows\system32\iasrecst.dll
2009-09-02 21:49 53,248 a------- c:\windows\system32\iasads.dll
2009-09-02 21:49 37,888 a------- c:\windows\system32\iasdatastore.dll
2009-09-02 21:48 82,432 a------- c:\windows\system32\drivers\sdbus.sys
2009-09-02 21:46 223,232 a------- c:\windows\system32\WMASF.DLL
2009-09-02 21:46 9,728 a------- c:\windows\system32\LAPRXY.DLL
2009-09-02 21:46 2,048 a------- c:\windows\system32\asferror.dll
2009-09-02 21:45 25,600 a------- c:\windows\system32\amxread.dll
2009-09-02 21:45 14,848 a------- c:\windows\system32\apilogen.dll
2009-09-02 21:44 268,288 a------- c:\windows\system32\mcbuilder.exe
2009-09-02 21:44 223,232 a------- c:\windows\system32\SLC.dll
2009-09-02 21:44 33,280 a------- c:\windows\system32\slwmi.dll
2009-09-02 21:44 566,784 a------- c:\windows\system32\SLCommDlg.dll
2009-09-02 21:44 351,232 a------- c:\windows\system32\SLUI.exe
2009-09-02 21:44 186,368 a------- c:\windows\system32\SLLUA.exe
2009-09-02 21:44 57,856 a------- c:\windows\system32\SLUINotify.dll
2009-09-02 21:44 2,605,568 a------- c:\windows\system32\SLsvc.exe
2009-09-02 21:44 39,936 a------- c:\windows\system32\slcinst.dll
2009-09-02 21:42 425,472 a------- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-02 21:42 712,192 a------- c:\windows\system32\WindowsCodecs.dll
2009-09-02 21:42 347,136 a------- c:\windows\system32\WindowsCodecsExt.dll
2009-09-02 21:38 220,160 a------- c:\windows\system32\ntprint.dll
2009-09-02 21:38 61,440 a------- c:\windows\system32\ntprint.exe
2009-09-02 21:38 120,320 a------- c:\windows\system32\dhcpcsvc6.dll
2009-09-02 21:38 10,240 a------- c:\windows\system32\dhcpcmonitor.dll
2009-09-02 21:38 1,984,512 a------- c:\windows\system32\authui.dll
2009-09-02 21:37 69,632 a------- c:\windows\system32\sendmail.dll
2009-09-02 21:37 8,138,240 a------- c:\windows\system32\ssBranded.scr
2009-09-02 21:37 441,856 a------- c:\windows\system32\win32spl.dll
2009-09-02 21:37 37,376 a------- c:\windows\system32\printcom.dll
2009-09-02 21:36 113,664 a------- c:\windows\system32\drivers\rmcast.sys
2009-09-02 21:36 14,848 a------- c:\windows\system32\wshrm.dll
2009-09-02 21:35 8,147,968 a------- c:\windows\system32\wmploc.DLL
2009-09-02 21:35 7,680 a------- c:\windows\system32\spwmp.dll
2009-09-02 21:35 4,096 a------- c:\windows\system32\msdxm.ocx
2009-09-02 21:35 4,096 a------- c:\windows\system32\dxmasf.dll
2009-09-02 21:35 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-09-02 21:35 18,432 a------- c:\windows\system32\amcompat.tlb
2009-09-02 21:35 43,520 a------- c:\windows\system32\msdxm.tlb
2009-09-02 21:34 11,776 a------- c:\windows\system32\sbunattend.exe
2009-09-02 21:33 290,304 a------- c:\windows\system32\drivers\srv.sys
2009-09-02 21:32 83,968 a------- c:\windows\system32\dnsrslvr.dll
2009-09-02 21:32 24,576 a------- c:\windows\system32\dnscacheugc.exe
2009-09-02 21:31 53,760 a------- c:\windows\system32\drivers\hdaudbus.sys
2009-09-02 21:17 327,680 a------- c:\windows\ocsetup_cbs_install_NetFx3.perf
2009-09-02 21:17 65,536 a------- c:\windows\ocsetup_cbs_install_NetFx3.dpx
2009-09-02 21:17 20,774,912 a------- c:\windows\ocsetup_install_NetFx3.etl
2009-09-02 21:14 96,760 a------- c:\windows\system32\dfshim.dll
2009-09-02 21:14 41,984 a------- c:\windows\system32\netfxperf.dll
2009-09-02 21:14 282,112 a------- c:\windows\system32\mscoree.dll
2009-09-02 21:14 158,720 a------- c:\windows\system32\mscorier.dll
2009-09-02 21:14 83,968 a------- c:\windows\system32\mscories.dll
2009-09-02 20:57 28,672 a------- c:\windows\system32\Apphlpdm.dll
2009-09-02 20:57 4,247,552 a------- c:\windows\system32\GameUXLegacyGDFs.dll
2009-09-02 20:57 1,686,528 a------- c:\windows\system32\gameux.dll
2009-09-02 20:55 996,352 a------- c:\windows\system32\WMNetMgr.dll
2009-09-02 20:55 94,720 a------- c:\windows\system32\logagent.exe
2009-09-02 20:55 130,048 a------- c:\windows\system32\drivers\srv2.sys
2009-09-02 20:55 101,888 a------- c:\windows\system32\drivers\mrxsmb.sys
2009-09-02 20:55 84,992 a------- c:\windows\system32\drivers\srvnet.sys
2009-09-02 20:55 58,368 a------- c:\windows\system32\drivers\mrxsmb20.sys
2009-09-02 20:54 737,792 a------- c:\windows\system32\inetcomm.dll
2009-09-02 20:54 84,480 a------- c:\windows\system32\INETRES.dll
2009-09-02 20:54 1,645,568 a------- c:\windows\system32\connect.dll
2009-09-02 20:54 152,576 a------- c:\windows\system32\imagehlp.dll
2009-09-02 20:54 12,800 a------- c:\windows\system32\drivers\fs_rec.sys
2009-09-02 20:54 5,120 a------- c:\windows\system32\wmi.dll
2009-09-02 20:53 788,992 a------- c:\windows\system32\rpcrt4.dll
2009-09-02 20:53 1,327,104 a------- c:\windows\system32\quartz.dll
2009-09-02 20:52 633,856 a------- c:\windows\system32\user32.dll
2009-09-02 20:52 1,341,440 a------- c:\windows\system32\msxml6.dll
2009-09-02 20:52 2,048 a------- c:\windows\system32\msxml6r.dll
2009-09-02 20:43 750,080 a------- c:\windows\system32\qmgr.dll
2009-09-02 20:11 <DIR> --d----- c:\program files\MediaMall
2009-09-02 20:02 <DIR> --d----- c:\programdata\SiteAdvisor
2009-09-02 20:01 <DIR> --d----- c:\program files\common files\McAfee
2009-09-02 20:00 <DIR> --d----- c:\program files\McAfee
2009-09-02 19:30 174,464 a------- c:\windows\system32\drivers\sfi.dat
2009-09-02 19:17 <DIR> --d----- c:\users\phillip\appdata\roaming\Comodo
2009-09-02 19:14 <DIR> --d----- c:\programdata\Comodo
2009-09-02 19:14 <DIR> --d----- c:\progra~2\Comodo
2009-09-02 19:14 179,792 a------- c:\windows\system32\guard32.dll
2009-09-02 19:14 29,520 a------- c:\windows\system32\drivers\cmdhlp.sys
2009-09-02 19:14 128,888 a------- c:\windows\system32\drivers\cmdguard.sys
2009-09-02 19:14 <DIR> --d----- c:\program files\COMODO
2009-09-02 19:08 13,119 a------- c:\users\phillip\appdata\roaming\nvModes.dat
2009-09-02 19:02 <DIR> --d----- c:\users\Phillip
2009-09-02 18:59 1,524,736 a------- c:\windows\system32\wucltux.dll
2009-09-02 18:57 83,456 a------- c:\windows\system32\wudriver.dll
2009-09-02 18:57 <DIR> --dsh--- c:\programdata\Documents
2009-09-02 18:57 <DIR> --dsh--- C:\Documents and Settings
2009-09-02 18:56 162,064 a------- c:\windows\system32\wuwebv.dll
2009-09-02 18:56 31,232 a------- c:\windows\system32\wuapp.exe

==================== Find3M ====================

2009-09-12 14:42 86,016 a------- c:\windows\inf\infstrng.dat
2009-09-12 14:42 86,016 a------- c:\windows\inf\infstor.dat
2009-09-12 14:42 51,200 a------- c:\windows\inf\infpub.dat
2009-09-03 08:12 665,600 a------- c:\windows\inf\drvindex.dat
2009-09-03 08:09 174 a--sh--- c:\program files\desktop.ini
2009-09-02 21:58 1,808,896 a------- c:\windows\system32\NlsLexicons0046.dll
2009-09-02 21:52 313,856 a------- c:\windows\system32\rstrui.exe
2009-09-02 21:45 40,960 a------- c:\windows\apppatch\apihex86.dll
2009-09-02 21:40 52,736 a------- c:\windows\apppatch\iebrshim.dll
2009-09-02 20:57 2,560 a------- c:\windows\apppatch\AcRes.dll
2009-09-02 20:57 2,143,744 a------- c:\windows\apppatch\AcGenral.dll
2009-09-02 20:57 449,024 a------- c:\windows\apppatch\AcSpecfc.dll
2009-09-02 20:57 537,600 a------- c:\windows\apppatch\AcLayers.dll
2009-09-02 20:57 173,056 a------- c:\windows\apppatch\AcXtrnal.dll
2009-08-03 15:07 403,816 a------- c:\windows\system32\OGACheckControl.dll
2009-08-03 15:07 322,928 a------- c:\windows\system32\OGAAddin.dll
2009-08-03 15:07 230,768 a------- c:\windows\system32\OGAEXEC.exe
2009-07-21 16:52 915,456 a------- c:\windows\system32\wininet.dll
2009-07-21 16:47 109,056 a------- c:\windows\system32\iesysprep.dll
2009-07-21 16:47 71,680 a------- c:\windows\system32\iesetup.dll
2009-07-21 15:13 133,632 a------- c:\windows\system32\ieUnatt.exe
2009-07-11 14:32 502,272 a------- c:\windows\system32\wlansvc.dll
2009-07-11 14:32 297,984 a------- c:\windows\system32\wlansec.dll
2009-07-11 14:32 290,816 a------- c:\windows\system32\wlanmsm.dll
2009-07-11 14:32 67,584 a------- c:\windows\system32\wlanhlp.dll
2009-07-11 14:32 47,104 a------- c:\windows\system32\wlanapi.dll
2009-07-11 14:26 123,904 a------- c:\windows\system32\L2SecHC.dll
2006-11-02 07:39 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 07:39 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 07:39 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 07:39 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2007-05-07 17:58 8,192 a--sh--- c:\windows\users\default\NTUSER.DAT

============= FINISH: 9:47:40.71 ===============

Attached Files

Attach.zip (3.2 KB, 2 views)

khakigirl

Bumping because it's been over 72 hours - I think I solved the searching freeze issue by removing the Skype web extension but now I have a new problem.

I got the following message on Comodo Defense+ today:
"Explorer.exe has tried to execute shellcode as a result of a possible buffer overflow attack."

I wasn't sure what to do with this message so I just hit skip. Any ideas what could be wrong?

khakigirl

Bumping again. Could someone please just look to see if there are any red flags in my scan reports?

Ried

Hello khakigirl,

Please run a new scan with dds.scr, post the fresh dds.txt, and we'll get started.

khakigirl

Thank you!!!

DDS (Ver_09-09-24.01) - NTFSx86
Run by Phillip at 9:36:15.11 on Sun 09/27/2009
Internet Explorer: 8.0.6001.18813 BrowserJavaVersion: 1.6.0_16
Microsoft® Windows Vista™ Home Basic 6.0.6000.0.1252.1.1033.18.2046.1164 [GMT -5:00]

AV: COMODO Antivirus *On-access scanning enabled* (Updated) {043803A5-4F86-4ef7-AFC5-F6E02A79969B}
SP: COMODO Defense+ *enabled* (Updated) {043803A4-4F86-4ef7-AFC5-F6E02A79969B}
SP: Spybot - Search and Destroy *disabled* (Outdated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: Lavasoft Ad-Watch Live! *disabled* (Updated) {67844DAE-4F77-4D69-9457-98E8CFFDAA22}
SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}
FW: COMODO Firewall *enabled* {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Windows Defender\MSASCui.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
C:\Program Files\MediaMall\MediaMallServer.exe
C:\Windows\System32\WLTRAY.EXE
C:\Windows\sttray.exe
C:\Windows\System32\rundll32.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxWatch9.exe
C:\Program Files\Java\jre6\bin\jusched.exe
C:\Windows\PixArt\Pac207\Monitor.exe
C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACDaemon.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\Program Files\MediaMall\PlayOn.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\OpenOffice.org 3\program\soffice.exe
C:\Program Files\SigmaTel\C-Major Audio\WDM\STacSV.exe
C:\Program Files\OpenOffice.org 3\program\soffice.bin
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\vssvc.exe
C:\Windows\System32\svchost.exe -k swprv
C:\Windows\system32\Taskmgr.exe
C:\Users\Phillip\Downloads\dds.scr

============== Pseudo HJT Report ===============

uStart Page = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=3070507
uWindow Title = Internet Explorer provided by Dell
uURLSearchHooks: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Spybot-S&D IE Protection: {53707962-6f74-2d53-2644-206d7942484f} - c:\program files\spybot - search & destroy\SDHelper.dll
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\bae\BAE.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\program files\yahoo!\companion\installs\cpn0\YTSingleInstance.dll
TB: HopSurf toolbar: {e9fab13d-4600-49e1-90d1-ee961c859d39} - c:\program files\comodo\hopsurftoolbar\HopSurfToolbar_IE.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\program files\yahoo!\companion\installs\cpn0\yt.dll
uRun: [Sidebar] c:\program files\windows sidebar\sidebar.exe /autoRun
uRun: [DellSupport] "c:\program files\dellsupport\DSAgnt.exe" /startup
uRun: [PlayOn] c:\program files\mediamall\PlayOn.exe
uRun: [RoboForm] "c:\program files\siber systems\ai roboform\RoboTaskBarIcon.exe"
uRun: [AdobeBridge]
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
uRun: [SpybotSD TeaTimer] c:\program files\spybot - search & destroy\TeaTimer.exe
mRun: [Windows Defender] %ProgramFiles%\Windows Defender\MSASCui.exe -hide
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [NvSvc] RUNDLL32.EXE c:\windows\system32\nvsvc.dll,nvsvcStart
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [SigmatelSysTrayApp] sttray.exe
mRun: [ISUSScheduler] "c:\program files\common files\installshield\updateservice\issch.exe" -start
mRun: [<NO NAME>]
mRun: [COMODO Internet Security] "c:\program files\comodo\comodo internet security\cfp.exe" -h
mRun: [MSConfig] "c:\windows\system32\msconfig.exe" /auto
mRun: [AdobeCS4ServiceManager] "c:\program files\common files\adobe\cs4servicemanager\CS4ServiceManager.exe" -launchedbylogin
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [SunJavaUpdateSched] "c:\program files\java\jre6\bin\jusched.exe"
mRun: [PAC207_Monitor] c:\windows\pixart\pac207\Monitor.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [ArcSoft Connection Service] c:\program files\common files\arcsoft\connection service\bin\ACDaemon.exe
StartupFolder: c:\users\phillip\appdata\roaming\micros~1\windows\startm~1\programs\startup\openof~1.lnk - c:\program files\openoffice.org 3\program\quickstart.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\photof~1.lnk - c:\program files\panasonic\photofunstudio -viewer-\PhAutoRun.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\windows\installer\{53a01cc6-14b0-4512-a2e7-10d39bf83dc4}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe
IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: E&xport to Microsoft Excel - c:\progra~1\micros~3\office12\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~3\office12\ONBttnIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~3\office12\REFIEBAR.DLL
IE: {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - {53707962-6F74-2D53-2644-206D7942484F} - c:\program files\spybot - search & destroy\SDHelper.dll
IE: {ED98F8D1-09AC-4107-B2FF-91DBE011B0C5} - {6BBCFF8E-D837-4DA4-9141-1F645B34A179} - c:\program files\comodo\hopsurftoolbar\HopSurfToolbar_IE.dll
DPF: {4871A87A-BFDD-4106-8153-FFDE2BAC2967} - hxxp://dlm.tools.akamai.com/dlmanager/versions/activex/dlm-activex-2.2.5.0.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab
TCP: {9F0D3439-F027-42B5-892A-C73FFAC42247} = 156.154.70.22,156.154.71.22
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\progra~1\common~1\skype\SKYPE4~1.DLL
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.dll
AppInit_DLLs: c:\windows\system32\guard32.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL

================= FIREFOX ===================

FF - ProfilePath - c:\users\phillip\appdata\roaming\mozilla\firefox\profiles\1k06ae43.default\
FF - prefs.js: browser.startup.homepage - hxxp://search.swagbucks.com/
FF - component: c:\program files\comodo\hopsurftoolbar\hopsurfext_ff3_5\components\hopsurf.dll
FF - component: c:\program files\siber systems\ai roboform\firefox\components\rfproxy_31.dll
FF - component: c:\users\phillip\appdata\roaming\mozilla\firefox\profiles\1k06ae43.default\extensions\lazarus@interclue.com\platform\winnt_x86-msvc\components\WeaveCrypto.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npPandoWebInst.dll
FF - plugin: c:\users\phillip\appdata\roaming\mozilla\firefox\profiles\1k06ae43.default\extensions\{561a5fbe-9761-4eb3-9182-892d82532414}\plugins\npavwebscan.dll
FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - c:\windows\microsoft.net\framework\v3.5\windows presentation foundation\dotnetassistantextension\
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: yahoo.homepage.dontask - true
============= SERVICES / DRIVERS ===============

R0 Lbd;Lbd;c:\windows\system32\drivers\Lbd.sys [2009-9-18 64160]
R1 cmdGuard;COMODO Internet Security Sandbox Driver;c:\windows\system32\drivers\cmdguard.sys [2009-9-2 128888]
R1 cmdHlp;COMODO Internet Security Helper Driver;c:\windows\system32\drivers\cmdhlp.sys [2009-9-2 29520]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2009-9-4 9968]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2009-9-4 74480]
R2 MediaMall Server;MediaMall Server;c:\program files\mediamall\MediaMallServer.exe [2009-9-10 2984960]
R2 SBSDWSCService;SBSD Security Center Service;c:\program files\spybot - search & destroy\SDWinSec.exe [2009-9-18 1153368]
R2 YahooAUService;Yahoo! Updater;c:\program files\yahoo!\softwareupdate\YahooAUService.exe [2008-11-9 602392]
R3 SASENUM;SASENUM;c:\program files\superantispyware\SASENUM.SYS [2009-9-4 7408]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2009-7-3 1028432]
S3 PAC207;PC Camer@;c:\windows\system32\drivers\PFC027.SYS [2009-9-12 616064]

=============== Created Last 30 ================

2009-09-27 08:48 <DIR> --d----- c:\programdata\Gosu
2009-09-27 08:48 <DIR> --d----- c:\progra~2\Gosu
2009-09-22 13:22 26 a------- C:\UpdaterforApp.ini
2009-09-22 13:21 245,408 a------- c:\windows\system32\unicows.dll
2009-09-22 13:21 11,776 a------- c:\windows\system32\drivers\afc.sys
2009-09-22 13:21 126,976 a------- c:\windows\system32\MediaImpression Slideshow.scr
2009-09-22 13:20 <DIR> --d----- c:\windows\system32\MediaImpression Slideshow
2009-09-22 13:15 45,056 a------- c:\windows\system32\PhDi2.sys
2009-09-18 18:41 <DIR> --d----- c:\users\phillip\appdata\roaming\Malwarebytes
2009-09-18 18:41 38,224 a------- c:\windows\system32\drivers\mbamswissarmy.sys
2009-09-18 18:41 19,160 a------- c:\windows\system32\drivers\mbam.sys
2009-09-18 18:41 <DIR> --d----- c:\programdata\Malwarebytes
2009-09-18 18:41 <DIR> --d----- c:\progra~2\Malwarebytes
2009-09-18 18:41 <DIR> --d----- c:\program files\Malwarebytes' Anti-Malware
2009-09-18 17:59 15,688 a------- c:\windows\system32\lsdelete.exe
2009-09-18 16:21 64,160 a------- c:\windows\system32\drivers\Lbd.sys
2009-09-18 16:19 <DIR> -cd-h--- c:\programdata\{EF63305C-BAD7-4144-9208-D65528260864}
2009-09-18 16:19 <DIR> -cd-h--- c:\progra~2\{EF63305C-BAD7-4144-9208-D65528260864}
2009-09-18 16:18 <DIR> --d----- c:\programdata\Lavasoft
2009-09-18 16:18 <DIR> --d----- c:\program files\Lavasoft
2009-09-18 16:10 <DIR> --d----- c:\programdata\Spybot - Search & Destroy
2009-09-18 16:10 <DIR> --d----- c:\program files\Spybot - Search & Destroy
2009-09-18 16:10 <DIR> --d----- c:\progra~2\Spybot - Search & Destroy
2009-09-17 21:58 <DIR> --d----- c:\users\phillip\appdata\roaming\.purple
2009-09-17 21:56 <DIR> --d----- c:\program files\Pidgin
2009-09-17 21:56 <DIR> --d----- c:\program files\common files\GTK
2009-09-17 21:17 <DIR> --dsh--- c:\windows\system32\%APPDATA%
2009-09-16 16:58 <DIR> --d----- c:\programdata\MediaMall
2009-09-16 16:58 <DIR> --d----- c:\progra~2\MediaMall
2009-09-13 22:02 <DIR> --d----- c:\program files\common files\MAGIX Shared
2009-09-13 22:02 120,200 a------- c:\windows\system32\DLLDEV32i.dll
2009-09-13 22:02 <DIR> --d----- c:\program files\MAGIX
2009-09-13 22:02 700,416 a------- c:\windows\system32\mgxoschk.dll
2009-09-13 22:02 6,211 a------- c:\windows\mgxoschk.ini
2009-09-13 22:02 <DIR> --d----- c:\windows\system32\MAGIX
2009-09-13 21:11 <DIR> --d----- c:\program files\common files\TV-Websites
2009-09-13 21:11 <DIR> --d----- c:\program files\common files\ffdshowEx
2009-09-13 19:53 <DIR> --d----- c:\programdata\SUPERAntiSpyware.com
2009-09-13 19:53 <DIR> --d----- c:\progra~2\SUPERAntiSpyware.com
2009-09-13 19:53 <DIR> --d----- c:\users\phillip\appdata\roaming\SUPERAntiSpyware.com
2009-09-13 19:53 <DIR> --d----- c:\program files\SUPERAntiSpyware
2009-09-13 19:53 <DIR> --d----- c:\program files\common files\Wise Installation Wizard
2009-09-13 19:43 <DIR> --d----- c:\program files\CCleaner
2009-09-13 19:13 240 a------- c:\windows\system32\drivers\kgpcpy.cfg
2009-09-13 19:00 <DIR> --d----- c:\programdata\SITEguard
2009-09-13 19:00 <DIR> --d----- c:\progra~2\SITEguard
2009-09-13 18:58 <DIR> --d----- c:\program files\common files\iS3
2009-09-13 18:58 <DIR> --d----- c:\programdata\STOPzilla!
2009-09-13 18:58 <DIR> --d----- c:\progra~2\STOPzilla!
2009-09-13 16:56 49,152 a------- c:\windows\system32\INETWH32.DLL
2009-09-13 16:56 1,056,768 a------- c:\windows\system32\ROBOEX32.DLL
2009-09-13 16:56 <DIR> --d----- c:\program files\NetObjects
2009-09-13 16:54 327,168 a------- c:\windows\IsUninst.exe
2009-09-13 09:50 737,280 a------- c:\windows\iun6002.exe
2009-09-13 09:49 <DIR> --d----- c:\program files\BlueVoda Website Builder
2009-09-12 19:50 <DIR> --d----- c:\users\phillip\appdata\roaming\Turbine
2009-09-12 19:47 2,297,552 a------- c:\windows\system32\d3dx9_26.dll
2009-09-12 19:42 <DIR> --d----- c:\windows\system32\URTTEMP
2009-09-12 19:23 <DIR> --d----- c:\program files\Turbine
2009-09-12 18:12 <DIR> --d----- c:\programdata\PMB Files
2009-09-12 18:12 <DIR> --d----- c:\progra~2\PMB Files
2009-09-12 14:40 48,128 a------- c:\windows\system32\Remove.exe
2009-09-12 14:40 399 a------- c:\windows\system32\Remover.ini
2009-09-12 14:40 616,064 a------- c:\windows\system32\drivers\PFC027.SYS
2009-09-12 14:40 119,568 a------- c:\windows\system32\KSPR45.rra
2009-09-12 14:40 6,656 a------- c:\windows\system32\CoInst_071102.dll
2009-09-12 14:40 40,960 a------- c:\windows\98Setup.exe
2009-09-12 14:40 <DIR> --d----- c:\program files\PC Camera
2009-09-12 14:40 129,024 a------- c:\windows\system32\SP207.AX
2009-09-12 14:40 <DIR> --d----- c:\program files\common files\PAC207
2009-09-12 14:35 304,160 a------- C:\PA207.DAT
2009-09-11 13:13 <DIR> --d----- c:\users\phillip\appdata\roaming\Anthropics
2009-09-11 13:13 <DIR> --d----- c:\program files\Portrait Professional 9 Trial
2009-09-10 21:20 <DIR> --d----- c:\program files\Microsoft Windows 7 Upgrade Advisor
2009-09-10 17:14 <DIR> --d----- c:\program files\SystemRequirementsLab
2009-09-10 09:06 <DIR> --d----- c:\programdata\EwisoftWeb
2009-09-10 09:06 <DIR> --d----- c:\program files\EwisoftWeb
2009-09-10 09:06 <DIR> --d----- c:\progra~2\EwisoftWeb
2009-09-09 21:36 813,568 a------- c:\windows\system32\drivers\tcpip.sys
2009-09-09 21:36 213,592 a------- c:\windows\system32\drivers\netio.sys
2009-09-09 21:36 103,936 a------- c:\windows\system32\netiohlp.dll
2009-09-09 21:36 167,424 a------- c:\windows\system32\tcpipcfg.dll
2009-09-09 21:35 22,016 a------- c:\windows\system32\netiougc.exe
2009-09-09 21:35 27,136 a------- c:\windows\system32\NETSTAT.EXE
2009-09-09 21:35 19,968 a------- c:\windows\system32\ARP.EXE
2009-09-09 21:35 17,920 a------- c:\windows\system32\ROUTE.EXE
2009-09-09 21:35 11,264 a------- c:\windows\system32\MRINFO.EXE
2009-09-09 21:35 10,240 a------- c:\windows\system32\finger.exe
2009-09-09 21:35 9,728 a------- c:\windows\system32\TCPSVCS.EXE
2009-09-09 21:35 8,704 a------- c:\windows\system32\HOSTNAME.EXE
2009-09-09 21:35 15,360 a------- c:\windows\system32\netevent.dll
2009-09-09 19:23 <DIR> --d----- c:\users\phillip\appdata\roaming\IrfanView
2009-09-09 19:23 <DIR> --d----- c:\program files\IrfanView
2009-09-09 12:49 <DIR> --d----- c:\users\phillip\appdata\roaming\YouDataAIR.CDA5CEB063BC2A22C44BAA035F25F65FCCDA2208.1
2009-09-09 12:49 <DIR> --d----- c:\program files\YouData
2009-09-09 12:13 <DIR> --d----- c:\users\phillip\appdata\roaming\TweetDeckFast.F9107117265DB7542C1A806C8DB837742CE14C21.1
2009-09-09 12:12 <DIR> --d----- c:\program files\TweetDeck
2009-09-07 16:49 <DIR> --d----- c:\programdata\Office Genuine Advantage
2009-09-07 16:49 <DIR> --d----- c:\users\phillip\Office Genuine Advantage
2009-09-07 16:03 1,638,912 a------- c:\windows\system32\mshtml.tlb
2009-09-05 19:56 <DIR> --d----- c:\programdata\Apple Computer
2009-09-05 19:55 <DIR> --d----- c:\programdata\Apple
2009-09-04 21:38 56 a---h--- c:\programdata\ezsidmv.dat
2009-09-04 21:38 56 a---h--- c:\progra~2\ezsidmv.dat
2009-09-04 21:37 <DIR> --d--r-- c:\program files\Skype
2009-09-04 21:36 <DIR> --d----- c:\programdata\Skype
2009-09-04 21:34 <DIR> --d----- c:\programdata\Yahoo! Companion
2009-09-04 21:33 <DIR> --d----- c:\programdata\Yahoo!
2009-09-04 21:20 <DIR> --d----- c:\windows\PixArt
2009-09-04 19:24 32,656 a------- c:\windows\system32\msonpmon.dll
2009-09-04 19:21 <DIR> --d----- c:\windows\PCHEALTH
2009-09-04 19:19 <DIR> --d----- c:\windows\SHELLNEW
2009-09-04 19:18 <DIR> --d----- c:\programdata\Microsoft Help
2009-09-04 19:03 <DIR> --d----- c:\users\phillip\appdata\roaming\GetRightToGo
2009-09-04 18:58 <DIR> --d----- c:\program files\MSECache
2009-09-04 15:09 <DIR> --d----- c:\programdata\NOS
2009-09-03 22:02 268,800 a------- c:\windows\system32\es.dll
2009-09-03 15:11 <DIR> --d----- c:\users\phillip\appdata\roaming\OpenOffice.org
2009-09-03 14:59 <DIR> --d----- c:\program files\JRE
2009-09-03 13:00 <DIR> --d----- c:\program files\OpenOffice.org 3
2009-09-03 12:59 411,368 a------- c:\windows\system32\deploytk.dll
2009-09-03 10:34 <DIR> --d----- c:\programdata\RoboForm
2009-09-03 10:33 <DIR> --d----- c:\program files\Siber Systems
2009-09-03 10:03 <DIR> --d----- c:\programdata\FLEXnet
2009-09-03 10:01 <DIR> --d----- c:\programdata\ALM
2009-09-03 10:01 <DIR> --d----- c:\progra~2\ALM
2009-09-03 09:49 <DIR> --d----- c:\program files\common files\Macrovision Shared
2009-09-03 08:53 622,080 a------- c:\windows\system32\icardagt.exe
2009-09-03 08:53 11,264 a------- c:\windows\system32\icardres.dll
2009-09-03 08:53 97,800 a------- c:\windows\system32\infocardapi.dll
2009-09-03 08:53 37,384 a------- c:\windows\system32\infocardcpl.cpl
2009-09-03 08:53 105,016 a------- c:\windows\system32\PresentationCFFRasterizerNative_v0300.dll
2009-09-03 08:53 781,344 a------- c:\windows\system32\PresentationNative_v0300.dll
2009-09-03 08:53 326,160 a------- c:\windows\system32\PresentationHost.exe
2009-09-03 08:53 43,544 a------- c:\windows\system32\PresentationHostProxy.dll
2009-09-02 22:50 2,048 a------- c:\windows\system32\tzres.dll
2009-09-02 22:48 28,672 a------- c:\windows\system32\FwRemoteSvr.dll
2009-09-02 22:48 361,984 a------- c:\windows\system32\IPSECSVC.DLL
2009-09-02 22:48 272,896 a------- c:\windows\system32\polstore.dll
2009-09-02 22:48 61,440 a------- c:\windows\system32\winipsec.dll
2009-09-02 22:44 241,152 a------- c:\windows\system32\PortableDeviceApi.dll
2009-09-02 22:44 160,768 a------- c:\windows\system32\PortableDeviceTypes.dll
2009-09-02 22:44 95,232 a------- c:\windows\system32\PortableDeviceClassExtension.dll
2009-09-02 22:43 205,824 a------- c:\windows\system32\msoeacct.dll
2009-09-02 22:43 87,040 a------- c:\windows\system32\msoert2.dll
2009-09-02 22:43 39,424 a------- c:\windows\system32\ACCTRES.dll
2009-09-02 22:41 704,000 a------- c:\windows\system32\PhotoScreensaver.scr
2009-09-02 22:41 356,352 a------- c:\windows\system32\wbem\wbemcomn.dll
2009-09-02 22:41 258,232 a------- c:\windows\system32\drivers\acpi.sys
2009-09-02 22:41 24,064 a------- c:\windows\system32\wtsapi32.dll
2009-09-02 22:41 20,920 a------- c:\windows\system32\drivers\compbatt.sys
2009-09-02 22:41 11,264 a------- c:\windows\system32\drivers\wmiacpi.sys
2009-09-02 22:41 28,344 a------- c:\windows\system32\drivers\battc.sys
2009-09-02 22:41 14,208 a------- c:\windows\system32\drivers\CmBatt.sys
2009-09-02 22:41 542,720 a------- c:\windows\system32\sysmain.dll
2009-09-02 22:41 714,240 a------- c:\windows\system32\timedate.cpl
2009-09-02 22:41 12,876 a------- c:\windows\system32\wbem\wlan.mof
2009-09-02 22:40 110,080 a------- c:\windows\system32\drivers\mrxdav.sys
2009-09-02 22:40 194,560 a------- c:\windows\system32\WebClnt.dll
2009-09-02 22:39 2,028,032 a------- c:\windows\system32\win32k.sys
2009-09-02 22:37 156,160 a------- c:\windows\system32\t2embed.dll
2009-09-02 22:37 289,792 a------- c:\windows\system32\atmfd.dll
2009-09-02 22:37 72,704 a------- c:\windows\system32\fontsub.dll
2009-09-02 22:37 34,304 a------- c:\windows\system32\atmlib.dll
2009-09-02 22:37 24,064 a------- c:\windows\system32\lpk.dll
2009-09-02 22:37 10,240 a------- c:\windows\system32\dciman32.dll
2009-09-02 22:36 376,320 a------- c:\windows\system32\winsrv.dll
2009-09-02 22:36 49,664 a------- c:\windows\system32\csrsrv.dll
2009-09-02 22:32 376,832 a------- c:\windows\system32\winhttp.dll
2009-09-02 22:31 71,680 a------- c:\windows\system32\atl.dll
2009-09-02 22:28 297,472 a------- c:\windows\system32\gdi32.dll
2009-09-02 22:27 1,060,920 a------- c:\windows\system32\drivers\ntfs.sys
2009-09-02 22:27 41,984 a------- c:\windows\system32\drivers\monitor.sys
2009-09-02 22:26 211,456 a------- c:\windows\system32\drivers\mrxsmb10.sys
2009-09-02 22:24 374,456 a------- c:\windows\system32\mcupdate_GenuineIntel.dll
2009-09-02 22:23 500,736 a------- c:\windows\system32\msdtcprx.dll
2009-09-02 22:23 30,208 a------- c:\windows\system32\xolehlp.dll
2009-09-02 22:22 156,160 a------- c:\windows\system32\wkssvc.dll
2009-09-02 22:21 116,736 a------- c:\windows\system32\aaclient.dll
2009-09-02 22:21 36,352 a------- c:\windows\system32\tsgqec.dll
2009-09-02 22:21 1,871,872 a------- c:\windows\system32\mstscax.dll
2009-09-02 22:19 303,616 a------- c:\windows\system32\wmpeffects.dll
2009-09-02 22:18 1,194,496 a------- c:\windows\system32\msxml3.dll
2009-09-02 22:18 2,048 a------- c:\windows\system32\msxml3r.dll
2009-09-02 22:17 414,208 a------- c:\windows\system32\msscp.dll
2009-09-02 22:15 356,864 a------- c:\windows\system32\MediaMetadataHandler.dll
2009-09-02 22:14 396,800 a------- c:\windows\system32\MPSSVC.dll
2009-09-02 22:14 392,192 a------- c:\windows\system32\FirewallAPI.dll
2009-09-02 22:14 63,488 a------- c:\windows\system32\drivers\mpsdrv.sys
2009-09-02 22:14 86,016 a------- c:\windows\system32\icfupgd.dll
2009-09-02 22:14 61,952 a------- c:\windows\system32\cmifw.dll
2009-09-02 22:14 16,896 a------- c:\windows\system32\wfapigp.dll
2009-09-02 22:14 178,688 a------- c:\windows\system32\iphlpsvc.dll
2009-09-02 22:14 23,040 a------- c:\windows\system32\drivers\tunnel.sys
2009-09-02 22:14 15,360 a------- c:\windows\system32\drivers\TUNMP.SYS
2009-09-02 22:09 696,832 a------- c:\windows\system32\localspl.dll
2009-09-02 22:08 123,904 a------- c:\windows\system32\msvfw32.dll
2009-09-02 22:08 88,576 a------- c:\windows\system32\avifil32.dll
2009-09-02 22:08 82,944 a------- c:\windows\system32\mciavi32.dll
2009-09-02 22:08 65,024 a------- c:\windows\system32\avicap32.dll
2009-09-02 22:08 31,232 a------- c:\windows\system32\msvidc32.dll
2009-09-02 22:08 12,800 a------- c:\windows\system32\msrle32.dll
2009-09-02 22:06 110,136 a------- c:\windows\system32\drivers\ataport.sys
2009-09-02 22:06 45,112 a------- c:\windows\system32\drivers\pciidex.sys
2009-09-02 22:06 21,560 a------- c:\windows\system32\drivers\atapi.sys
2009-09-02 22:06 17,976 a------- c:\windows\system32\drivers\intelide.sys
2009-09-02 22:06 211,000 a------- c:\windows\system32\drivers\volsnap.sys
2009-09-02 22:06 154,624 a------- c:\windows\system32\drivers\nwifi.sys
2009-09-02 22:05 2,923,520 a------- c:\windows\explorer.exe
2009-09-02 22:02 494,592 a------- c:\windows\system32\kerberos.dll
2009-09-02 22:02 1,233,920 a------- c:\windows\system32\lsasrv.dll
2009-09-02 22:02 408,136 a------- c:\windows\system32\drivers\ksecdd.sys
2009-09-02 22:02 216,576 a------- c:\windows\system32\msv1_0.dll
2009-09-02 22:02 175,104 a------- c:\windows\system32\wdigest.dll
2009-09-02 22:02 72,704 a------- c:\windows\system32\secur32.dll
2009-09-02 22:02 7,680 a------- c:\windows\system32\lsass.exe
2009-09-02 22:02 272,384 a------- c:\windows\system32\schannel.dll
2009-09-02 22:00 24,064 a------- c:\windows\system32\netcfg.exe
2009-09-02 21:53 1,585,664 a------- c:\windows\system32\setupapi.dll
2009-09-02 21:49 549,888 a------- c:\windows\system32\rpcss.dll
2009-09-02 21:49 3,503,584 a------- c:\windows\system32\ntkrnlpa.exe
2009-09-02 21:49 3,469,280 a------- c:\windows\system32\ntoskrnl.exe
2009-09-02 21:49 654,336 a------- c:\windows\system32\printfilterpipelinesvc.exe
2009-09-02 21:49 130,560 a------- c:\windows\system32\wbem\WmiDcPrv.dll
2009-09-02 21:49 24,576 a------- c:\windows\system32\printfilterpipelineprxy.dll
2009-09-02 21:49 614,912 a------- c:\windows\system32\wbem\fastprox.dll
2009-09-02 21:49 501,760 a------- c:\windows\system32\wbem\WmiPrvSD.dll
2009-09-02 21:49 247,296 a------- c:\windows\system32\wbem\WmiPrvSE.exe
2009-09-02 21:49 158,720 a------- c:\windows\system32\sdohlp.dll
2009-09-02 21:49 97,280 a------- c:\windows\system32\iasrecst.dll
2009-09-02 21:49 53,248 a------- c:\windows\system32\iasads.dll
2009-09-02 21:49 37,888 a------- c:\windows\system32\iasdatastore.dll
2009-09-02 21:48 82,432 a------- c:\windows\system32\drivers\sdbus.sys
2009-09-02 21:46 223,232 a------- c:\windows\system32\WMASF.DLL
2009-09-02 21:46 9,728 a------- c:\windows\system32\LAPRXY.DLL
2009-09-02 21:46 2,048 a------- c:\windows\system32\asferror.dll
2009-09-02 21:45 25,600 a------- c:\windows\system32\amxread.dll
2009-09-02 21:45 14,848 a------- c:\windows\system32\apilogen.dll
2009-09-02 21:44 268,288 a------- c:\windows\system32\mcbuilder.exe
2009-09-02 21:44 223,232 a------- c:\windows\system32\SLC.dll
2009-09-02 21:44 33,280 a------- c:\windows\system32\slwmi.dll
2009-09-02 21:44 566,784 a------- c:\windows\system32\SLCommDlg.dll
2009-09-02 21:44 351,232 a------- c:\windows\system32\SLUI.exe
2009-09-02 21:44 186,368 a------- c:\windows\system32\SLLUA.exe
2009-09-02 21:44 57,856 a------- c:\windows\system32\SLUINotify.dll
2009-09-02 21:44 2,605,568 a------- c:\windows\system32\SLsvc.exe
2009-09-02 21:44 39,936 a------- c:\windows\system32\slcinst.dll
2009-09-02 21:42 425,472 a------- c:\windows\system32\PhotoMetadataHandler.dll
2009-09-02 21:42 712,192 a------- c:\windows\system32\WindowsCodecs.dll
2009-09-02 21:42 347,136 a------- c:\windows\system32\WindowsCodecsExt.dll
2009-09-02 21:38 220,160 a------- c:\windows\system32\ntprint.dll
2009-09-02 21:38 61,440 a------- c:\windows\system32\ntprint.exe
2009-09-02 21:38 120,320 a------- c:\windows\system32\dhcpcsvc6.dll
2009-09-02 21:38 10,240 a------- c:\windows\system32\dhcpcmonitor.dll
2009-09-02 21:38 1,984,512 a------- c:\windows\system32\authui.dll
2009-09-02 21:37 69,632 a------- c:\windows\system32\sendmail.dll
2009-09-02 21:37 8,138,240 a------- c:\windows\system32\ssBranded.scr
2009-09-02 21:37 441,856 a------- c:\windows\system32\win32spl.dll
2009-09-02 21:37 37,376 a------- c:\windows\system32\printcom.dll
2009-09-02 21:36 113,664 a------- c:\windows\system32\drivers\rmcast.sys
2009-09-02 21:36 14,848 a------- c:\windows\system32\wshrm.dll
2009-09-02 21:35 8,147,968 a------- c:\windows\system32\wmploc.DLL
2009-09-02 21:35 7,680 a------- c:\windows\system32\spwmp.dll
2009-09-02 21:35 4,096 a------- c:\windows\system32\msdxm.ocx
2009-09-02 21:35 4,096 a------- c:\windows\system32\dxmasf.dll
2009-09-02 21:35 313,344 a------- c:\windows\system32\wmpdxm.dll
2009-09-02 21:35 18,432 a------- c:\windows\system32\amcompat.tlb
2009-09-02 21:35 43,520 a------- c:\windows\system32\msdxm.tlb
2009-09-02 21:34 11,776 a------- c:\windows\system32\sbunattend.exe
2009-09-02 21:33 290,304 a------- c:\windows\system32\drivers\srv.sys
2009-09-02 21:32 83,968 a------- c:\windows\system32\dnsrslvr.dll
2009-09-02 21:32 24,576 a------- c:\windows\system32\dnscacheugc.exe
2009-09-02 21:31 53,760 a------- c:\windows\system32\drivers\hdaudbus.sys
2009-09-02 21:17 327,680 a------- c:\windows\ocsetup_cbs_install_NetFx3.perf
2009-09-02 21:17 65,536 a------- c:\windows\ocsetup_cbs_install_NetFx3.dpx
2009-09-02 21:17 20,774,912 a------- c:\windows\ocsetup_install_NetFx3.etl
2009-09-02 21:14 96,760 a------- c:\windows\system32\dfshim.dll
2009-09-02 21:14 41,984 a------- c:\windows\system32\netfxperf.dll
2009-09-02 21:14 282,112 a------- c:\windows\system32\mscoree.dll
2009-09-02 21:14 158,720 a------- c:\windows\system32\mscorier.dll
2009-09-02 21:14 83,968 a------- c:\windows\system32\mscories.dll
2009-09-02 20:57 28,672 a------- c:\windows\system32\Apphlpdm.dll
2009-09-02 20:57 4,247,552 a------- c:\windows\system32\GameUXLegacyGDFs.dll
2009-09-02 20:57 1,686,528 a------- c:\windows\system32\gameux.dll
2009-09-02 20:55 996,352 a------- c:\windows\system32\WMNetMgr.dll
2009-09-02 20:55 94,720 a------- c:\windows\system32\logagent.exe
2009-09-02 20:55 130,048 a------- c:\windows\system32\drivers\srv2.sys
2009-09-02 20:55 101,888 a------- c:\windows\system32\drivers\mrxsmb.sys
2009-09-02 20:55 84,992 a------- c:\windows\system32\drivers\srvnet.sys
2009-09-02 20:55 58,368 a------- c:\windows\system32\drivers\mrxsmb20.sys
2009-09-02 20:54 737,792 a------- c:\windows\system32\inetcomm.dll
2009-09-02 20:54 84,480 a------- c:\windows\system32\INETRES.dll
2009-09-02 20:54 1,645,568 a------- c:\windows\system32\connect.dll
2009-09-02 20:54 152,576 a------- c:\windows\system32\imagehlp.dll
2009-09-02 20:54 12,800 a------- c:\windows\system32\drivers\fs_rec.sys
2009-09-02 20:54 5,120 a------- c:\windows\system32\wmi.dll
2009-09-02 20:53 788,992 a------- c:\windows\system32\rpcrt4.dll
2009-09-02 20:53 1,327,104 a------- c:\windows\system32\quartz.dll
2009-09-02 20:52 633,856 a------- c:\windows\system32\user32.dll
2009-09-02 20:52 1,341,440 a------- c:\windows\system32\msxml6.dll
2009-09-02 20:52 2,048 a------- c:\windows\system32\msxml6r.dll
2009-09-02 20:43 750,080 a------- c:\windows\system32\qmgr.dll
2009-09-02 20:11 <DIR> --d----- c:\program files\MediaMall
2009-09-02 20:02 <DIR> --d----- c:\programdata\SiteAdvisor
2009-09-02 19:30 174,464 a------- c:\windows\system32\drivers\sfi.dat
2009-09-02 19:17 <DIR> --d----- c:\users\phillip\appdata\roaming\Comodo
2009-09-02 19:14 <DIR> --d----- c:\programdata\Comodo
2009-09-02 19:14 <DIR> --d----- c:\progra~2\Comodo
2009-09-02 19:14 179,792 a------- c:\windows\system32\guard32.dll
2009-09-02 19:14 29,520 a------- c:\windows\system32\drivers\cmdhlp.sys
2009-09-02 19:14 128,888 a------- c:\windows\system32\drivers\cmdguard.sys
2009-09-02 19:14 <DIR> --d----- c:\program files\COMODO
2009-09-02 19:08 13,119 a------- c:\users\phillip\appdata\roaming\nvModes.dat
2009-09-02 19:02 <DIR> --d----- c:\users\Phillip
2009-09-02 18:59 1,524,736 a------- c:\windows\system32\wucltux.dll
2009-09-02 18:57 83,456 a------- c:\windows\system32\wudriver.dll
2009-09-02 18:57 <DIR> --dsh--- c:\programdata\Documents
2009-09-02 18:57 <DIR> --dsh--- C:\Documents and Settings
2009-09-02 18:56 162,064 a------- c:\windows\system32\wuwebv.dll
2009-09-02 18:56 31,232 a------- c:\windows\system32\wuapp.exe

==================== Find3M ====================

2009-09-12 14:42 86,016 a------- c:\windows\inf\infstrng.dat
2009-09-12 14:42 86,016 a------- c:\windows\inf\infstor.dat
2009-09-12 14:42 51,200 a------- c:\windows\inf\infpub.dat
2009-09-03 08:12 665,600 a------- c:\windows\inf\drvindex.dat
2009-09-03 08:09 174 a--sh--- c:\program files\desktop.ini
2009-09-02 21:58 1,808,896 a------- c:\windows\system32\NlsLexicons0046.dll
2009-09-02 21:52 313,856 a------- c:\windows\system32\rstrui.exe
2009-09-02 21:45 40,960 a------- c:\windows\apppatch\apihex86.dll
2009-09-02 21:40 52,736 a------- c:\windows\apppatch\iebrshim.dll
2009-09-02 20:57 2,560 a------- c:\windows\apppatch\AcRes.dll
2009-09-02 20:57 2,143,744 a------- c:\windows\apppatch\AcGenral.dll
2009-09-02 20:57 449,024 a------- c:\windows\apppatch\AcSpecfc.dll
2009-09-02 20:57 537,600 a------- c:\windows\apppatch\AcLayers.dll
2009-09-02 20:57 173,056 a------- c:\windows\apppatch\AcXtrnal.dll
2009-08-03 15:07 403,816 a------- c:\windows\system32\OGACheckControl.dll
2009-08-03 15:07 322,928 a------- c:\windows\system32\OGAAddin.dll
2009-08-03 15:07 230,768 a------- c:\windows\system32\OGAEXEC.exe
2009-07-21 16:52 915,456 a------- c:\windows\system32\wininet.dll
2009-07-21 16:47 109,056 a------- c:\windows\system32\iesysprep.dll
2009-07-21 16:47 71,680 a------- c:\windows\system32\iesetup.dll
2009-07-21 15:13 133,632 a------- c:\windows\system32\ieUnatt.exe
2009-07-11 14:32 502,272 a------- c:\windows\system32\wlansvc.dll
2009-07-11 14:32 297,984 a------- c:\windows\system32\wlansec.dll
2009-07-11 14:32 290,816 a------- c:\windows\system32\wlanmsm.dll
2009-07-11 14:32 67,584 a------- c:\windows\system32\wlanhlp.dll
2009-07-11 14:32 47,104 a------- c:\windows\system32\wlanapi.dll
2009-07-11 14:26 123,904 a------- c:\windows\system32\L2SecHC.dll
2006-11-02 07:39 287,440 a------- c:\windows\inf\perflib\0409\perfi.dat
2006-11-02 07:39 287,440 a------- c:\windows\inf\perflib\0409\perfh.dat
2006-11-02 07:39 30,674 a------- c:\windows\inf\perflib\0409\perfd.dat
2006-11-02 07:39 30,674 a------- c:\windows\inf\perflib\0409\perfc.dat
2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfi.dat
2006-11-02 04:20 287,440 a------- c:\windows\inf\perflib\0000\perfh.dat
2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfd.dat
2006-11-02 04:20 30,674 a------- c:\windows\inf\perflib\0000\perfc.dat
2007-05-07 17:58 8,192 a--sh--- c:\windows\users\default\NTUSER.DAT

============= FINISH: 9:39:08.11 ===============

Ried

Hi khakigirl,

No, I'm not seeing any malware here. Regarding the alert from Comodo, you might try contacting them http://forums.comodo.com/index.php and ask what that means and what might prompt that sort of message.

khakigirl

Thank you!

Ried

You're welcome.