Logfile of random's system information tool 1.06 (written by random/random)
Run by Hector Lamberti at 2007-10-04 14:12:14
Microsoft Windows XP Professional Service Pack 3
System drive C: has 42 GB (55%) free of 76 GB
Total RAM: 1022 MB (42% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 2:12:31 PM, on 10/4/2007
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\csrss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\a-squared Free\a2service.exe
C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\WINDOWS\system32\CTsvcCDA.exe
C:\WINDOWS\eHome\ehRecvr.exe
C:\WINDOWS\eHome\ehSched.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\IObit\IObit Security 360\IS360srv.exe
C:\WINDOWS\system32\Ati2evxx.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Kodak\printer\center\KodakSvc.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\WINDOWS\system32\PSIService.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\ehome\mcrdsvc.exe
C:\Program Files\Windows Media Player\WMPNetwk.exe
C:\WINDOWS\system32\dllhost.exe
C:\WINDOWS\System32\alg.exe
C:\Program Files\IObit\IObit Security 360\IS360tray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\IObit\IObit Security 360\is360.exe
C:\WINDOWS\system32\wscntfy.exe
C:\Documents and Settings\Hector Lamberti\Desktop\RSIT.exe
C:\WINDOWS\system32\wbem\wmiprvse.exe
C:\Program Files\Trend Micro\HijackThis\Hector Lamberti.exe
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL =
http://go.microsoft.com/fwlink/?LinkId=54896R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar =
http://red.clientapps.yahoo.com/customi ... earch.htmlR1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page =
http://go.microsoft.com/fwlink/?LinkId=54896R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page =
http://go.microsoft.com/fwlink/?LinkId=69157R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - (no file)
O2 - BHO: (no name) - {5C255C8A-E604-49b4-9D64-90988571CECB} - (no file)
O2 - BHO: Windows Live Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll
O4 - HKLM\..\Run: [Malwarebytes Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
O4 - HKLM\..\Run: [IObit Security 360] C:\Program Files\IObit\IObit Security 360\IS360tray.exe
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O8 - Extra context menu item: &AOL Toolbar search -
res://C:\Program Files\AOL Toolbar\toolbar.dll/SEARCH.HTML
O8 - Extra context menu item: &Search - ?p=ZRfox000
O8 - Extra context menu item: Send to &Bluetooth Device... - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0_02\bin\npjpi150_02.dll
O9 - Extra button: @btrez.dll,-4015 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra 'Tools' menuitem: @btrez.dll,-12650 - {CCA281CA-C863-46ef-9331-5C8D4460577F} - C:\Program Files\WIDCOMM\Bluetooth Software\btsendto_ie.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O14 - IERESET.INF: START_PAGE_URL=http://ie.redirect.hp.com/svs/rdr?TYPE=3&tp=iehome&locale=EN_US&c=Q305&bd=pavilion&pf=laptop
O16 - DPF: {03F998B2-0E00-11D3-A498-00104B6EB52E} (MetaStreamCtl Class) -
https://components.viewpoint.com/MTSIns ... cat_uid=12O16 - DPF: {22E5D91F-89E6-4405-AD9C-0AF27BA6F06B} (HidInputMonitorX Control) - file:///D:/components/hidinputmonitorx.ocx
O16 - DPF: {4F63D44B-6274-4D60-8AB1-CAA7116B8AF3} (A9Helper.A9) - file:///D:/components/A9.ocx
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) -
http://update.microsoft.com/microsoftup ... 4388671796O16 - DPF: {7030CC6C-1A88-4591-BB5A-651B9F7F0C30} (WMVHDRatingCtrl Class) - file:///D:/components/wmvhdrating.ocx
O16 - DPF: {CCA0B877-CB5E-4ADC-AD30-457C379512DD} (Gif89 Lite Class) -
http://192.168.0.35/xplugLite.cabO20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL
O23 - Service: a-squared Free Service (a2free) - Emsi Software GmbH - C:\Program Files\a-squared Free\a2service.exe
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft Inc. - C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Ares Chatroom server (AresChatServer) - Unknown owner - C:\Program Files\Ares\chatServer.exe (file missing)
O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Creative Service for CDROM Access - Creative Technology Ltd - C:\WINDOWS\system32\CTsvcCDA.exe
O23 - Service: Eset HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: Eset Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: HP WMI Interface (hpqwmi) - Hewlett-Packard Development Company, L.P. - C:\Program Files\HPQ\SHARED\HPQWMI.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: IS360service - IObit - C:\Program Files\IObit\IObit Security 360\IS360srv.exe
O23 - Service: Kodak AiO Device Service (KodakSvc) - Eastman Kodak Company - C:\Program Files\Kodak\printer\center\KodakSvc.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: PACSPTISVR - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\PACSPT~1.EXE
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
O23 - Service: ProtexisLicensing - Unknown owner - C:\WINDOWS\system32\PSIService.exe
O23 - Service: Symantec Network Drivers Service (SNDSrvc) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
O23 - Service: Sony SPTI Service (SPTISRV) - Sony Corporation - C:\PROGRA~1\COMMON~1\SONYSH~1\AVLib\Sptisrv.exe
--
End of file - 8754 bytes
======Scheduled tasks folder======
C:\WINDOWS\tasks\Ad-Aware Update (Weekly).job
C:\WINDOWS\tasks\AppleSoftwareUpdate.job
C:\WINDOWS\tasks\At1.job
C:\WINDOWS\tasks\Easy Internet Sign-up.job
C:\WINDOWS\tasks\EasyShare Registration Task.job
C:\WINDOWS\tasks\SmartDefrag.job
C:\WINDOWS\tasks\WebReg Deskjet 3840.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{02478D38-C3F9-4EFB-9B51-7695ECA05670}]
Yahoo! Toolbar Helper - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll [2006-10-26 440384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{3CA2F312-6F6E-4B53-A66E-4E65E497C8C0}]
AVG Safe Search
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB}]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9030D464-4C02-4ABF-8ECC-5164760863C6}]
Windows Live Sign-in Helper - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll [2009-02-17 408440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{EF99BD32-C1FB-11D2-892F-0090271D4F88} - Yahoo! Toolbar - C:\Program Files\Yahoo!\Companion\Installs\cpn1\yt.dll [2006-10-26 440384]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"Malwarebytes Anti-Malware (reboot)"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
"IObit Security 360"=C:\Program Files\IObit\IObit Security 360\IS360tray.exe [2009-08-20 943888]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-10-18 204288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Ad-Watch]
C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Photo Downloader]
C:\Program Files\Adobe\Photoshop Elements 6.0\apdproxy.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-10-15 39792]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AdobeCS4ServiceManager]
C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Advanced SystemCare 3]
C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2009-06-30 2329224]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ATIPTA]
C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [2005-03-09 339968]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AVG8_TRAY]
C:\PROGRA~1\AVG\AVG8\avgtray.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\BgMonitor_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}]
C:\Program Files\Common Files\Ahead\Lib\NMBgMonitor.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
C:\Program Files\Common Files\Symantec Shared\ccApp.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Cpqset]
C:\Program Files\HPQ\Default Settings\cpqset.exe [2004-10-22 229438]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ctfmon.exe]
C:\WINDOWS\system32\ctfmon.exe [2008-04-13 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe]
C:\Program Files\Creative\Sync Manager Unicode\CTSyncU.exe [2006-06-12 700416]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\eabconfg.cpl]
C:\Program Files\HPQ\Quick Launch Buttons\EabServr.exe [2004-12-03 290816]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui]
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2008-02-29 1443072]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray]
C:\WINDOWS\ehome\ehtray.exe [2005-08-05 64512]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EKIJ5000StatusMonitor]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\EKIJ5000MUI.exe [2007-11-13 1052672]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Desktop Search]
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe /startup []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Component Manager]
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-12-22 241664]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HP Software Update]
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2005-05-12 49152]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb10.exe [2004-03-04 172032]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPHUPD08]
C:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpWirelessAssistant]
C:\Program Files\hpq\HP Wireless Assistant\HP Wireless Assistant.exe [2005-04-01 794624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IntelliPoint]
C:\Program Files\Microsoft IntelliPoint\point32.exe [2005-06-10 217088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IObit Security 360]
C:\Program Files\IObit\IObit Security 360\IS360tray.exe [2009-08-20 943888]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iRiver Updater]
\Updater.exe [2004-07-01 212992]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ISUSPM Startup]
C:\Program Files\Common Files\InstallShield\UpdateService\ISUSPM.exe [2005-08-11 249856]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
C:\Program Files\iTunes\iTunesHelper.exe [2007-06-01 257088]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LSBWatcher]
c:\hp\drivers\hplsbwatcher\lsburnwatcher.exe [2004-10-14 253952]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Malwarebytes Anti-Malware (reboot)]
C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2009-09-10 1312080]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Microsoft Works Update Detection]
C:\Program Files\Common Files\Microsoft Shared\Works Shared\WkUFind.exe [2003-09-13 50688]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MsnMsgr]
C:\Program Files\MSN Messenger\msnmsgr.exe /background []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\My Web Search Bar]
rundll32 C:\PROGRA~1\MYWEBS~1\bar\3.bin\MWSBAR.DLL,S []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MyWebSearch Email Plugin]
C:\PROGRA~1\MYWEBS~1\bar\3.bin\mwsoemon.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PDUDS700Tskbr]
C:\Program Files\Canon\Memory Card Utility\SELPHY DS700\PDUDS700Tskbr.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PinnacleDriverCheck]
C:\WINDOWS\system32\PSDrvCheck.exe -CheckReg []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\QTTask.exe [2009-05-26 413696]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SeekmoOE]
C:\Program Files\Seekmo\bin\10.0.406.0\OEAddOn.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SeekmoSA]
C:\Program Files\Seekmo\bin\10.0.406.0\SeekmoSA.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.5.0_02\bin\jusched.exe [2005-03-04 36975]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SUPERAntiSpyware]
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe [2007-09-17 1994480]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Symantec NetDriver Monitor]
C:\PROGRA~1\SYMNET~1\SNDMon.exe [2005-08-21 100056]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPEnh]
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2005-02-02 692316]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SynTPLpr]
C:\Program Files\Synaptics\SynTP\SynTPLpr.exe [2005-02-02 102492]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\URLLSTCK.exe]
C:\Program Files\Norton Internet Security\UrlLstCk.exe []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-10-18 204288]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Yahoo! Pager]
C:\PROGRA~1\Yahoo!\MESSEN~1\ypager.exe [2005-12-08 3096576]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqtra08.exe [2005-05-12 282624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Image Zone Fast Start.lnk]
C:\PROGRA~1\HP\DIGITA~1\bin\hpqthb08.exe -s []
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]
C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE [2007-09-19 282624]
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Printkey2000.lnk]
C:\PROGRA~1\PRINTK~1\PRINTK~1.EXE [1999-09-30 869376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows]
"AppInit_DLLS"="C:\PROGRA~1\Google\GOOGLE~2\GOEC62~1.DLL"
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.DLL [2007-09-17 548352]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent]
C:\WINDOWS\system32\Ati2evxx.dll [2005-03-08 61440]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\WINDOWS\system32\WgaLogon.dll [2006-06-19 702768]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WRNotifier]
WRLogonNTF.dll []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"=C:\Program Files\SUPERAntiSpyware\SASSEH.DLL [2008-05-13 77824]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\svcWRSSSDK]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\zeijnqgo.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Driver]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\AVG Anti-Spyware Guard]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\nm.sys]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\svcWRSSSDK]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\zeijnqgo.sys]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"InstallVisualStyle"=C:\WINDOWS\Resources\Themes\Royale\Royale.msstyles
"InstallTheme"=C:\WINDOWS\Resources\Themes\Royale.theme
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"HonorAutoRunSetting"=
"NoResolveSearch"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\Yahoo!\Messenger\YPager.exe"="C:\Program Files\Yahoo!\Messenger\YPager.exe:*:Enabled:Yahoo! Messenger"
"C:\Program Files\Yahoo!\Messenger\YServer.exe"="C:\Program Files\Yahoo!\Messenger\YServer.exe:*:Enabled:Yahoo! FT Server"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\iTunes\iTunes.exe"="C:\Program Files\iTunes\iTunes.exe:*:Enabled:iTunes"
"C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe"="C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare"
"C:\Program Files\Laplink\PCsync\SFTHost.exe"="C:\Program Files\Laplink\PCsync\SFTHost.exe:*:Enabled:PCsync Host Module"
"C:\Program Files\Laplink\PCsync\PCsync.exe"="C:\Program Files\Laplink\PCsync\PCsync.exe:*:Enabled:Laplink PCsync"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Windows Live\Messenger\wlcsdk.exe"="C:\Program Files\Windows Live\Messenger\wlcsdk.exe:*:Enabled:Windows Live Call"
"C:\Program Files\Windows Live\Messenger\msnmsgr.exe"="C:\Program Files\Windows Live\Messenger\msnmsgr.exe:*:Enabled:Windows Live Messenger"
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe"="C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL"
"C:\Program Files\America Online 9.0\waol.exe"="C:\Program Files\America Online 9.0\waol.exe:*:Enabled:America Online 9.0"
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{92f6d0d5-9907-11db-aba5-00c09fbe7e53}]
shell\AutoRun\command - F:\Installer.exe
======List of files/folders created in the last 1 months======
2009-07-24 16:51:03 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\com.adobe.ExMan
2009-07-22 12:27:19 ----D---- C:\Program Files\Adobe Media Player
2009-07-22 12:23:55 ----D---- C:\Program Files\Common Files\Adobe AIR
2009-07-22 00:25:14 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Download Manager
2009-07-21 15:08:12 ----D---- C:\Program Files\a-squared Free
2009-07-19 00:23:40 ----D---- C:\WINDOWS\ie8updates
2009-07-19 00:17:55 ----HDC---- C:\WINDOWS\ie8
2009-07-18 23:50:32 ----D---- C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware.com
2009-07-18 23:50:26 ----D---- C:\Program Files\SUPERAntiSpyware
2009-07-18 23:50:26 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\SUPERAntiSpyware.com
2009-07-10 14:47:39 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Canon
2009-07-05 10:20:19 ----HDC---- C:\WINDOWS\$NtUninstallWdf01005$
2009-07-01 17:04:56 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Panasonic
2009-07-01 17:04:15 ----A---- C:\WINDOWS\system32\PICSDK.ini
2009-07-01 17:04:15 ----A---- C:\WINDOWS\system32\PICSDK.dll
2009-07-01 17:04:13 ----A---- C:\WINDOWS\system32\EpPicPrt.dll
2009-07-01 17:04:13 ----A---- C:\WINDOWS\system32\EPPicMgr.dll
2009-07-01 17:03:43 ----D---- C:\Program Files\Panasonic
2009-06-25 22:43:04 ----RA---- C:\WINDOWS\system32\hpvcr70.dll
2009-06-25 22:43:04 ----RA---- C:\WINDOWS\system32\hpvcp70.dll
2009-06-25 22:43:04 ----RA---- C:\WINDOWS\system32\hpvaut32.dll
2009-06-25 22:41:49 ----A---- C:\WINDOWS\hpbvspst.ini
2009-06-25 22:26:47 ----A---- C:\WINDOWS\hpdj3840.ini
2009-06-23 21:11:07 ----D---- C:\Program Files\Digital Photo Software
2009-06-22 21:56:35 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\EBookSys
2009-06-22 21:55:19 ----D---- C:\Program Files\Paint.NET
2009-06-22 21:49:20 ----D---- C:\Documents and Settings\All Users\Application Data\EBookSys
2009-06-18 19:00:25 ----D---- C:\Program Files\Common Files\Sonic
2009-06-18 18:59:37 ----AD---- C:\HP Personal Media Drive
2009-06-17 18:03:39 ----D---- C:\Program Files\ArcSoft
2009-06-17 18:03:36 ----D---- C:\Program Files\Common Files\ArcSoft
2009-06-17 14:14:14 ----D---- C:\Documents and Settings\All Users\Application Data\Sony Ericsson
2009-06-17 14:13:32 ----D---- C:\Program Files\Common Files\Sony Ericsson Shared
2009-06-17 14:13:17 ----D---- C:\Program Files\Sony Ericsson
2009-06-17 14:13:17 ----D---- C:\Documents and Settings\All Users\Application Data\Teleca
2009-06-17 10:24:19 ----A---- C:\WINDOWS\system32\CNMVS7F.DLL
2009-06-17 10:24:18 ----A---- C:\WINDOWS\system32\CNMLM7F.DLL
2009-06-17 10:24:12 ----RA---- C:\WINDOWS\system32\CNMCP7F.exe
2009-06-17 10:24:03 ----HD---- C:\Documents and Settings\All Users\Application Data\CanonBJ
2009-06-15 10:25:11 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\IObit
2009-06-15 10:25:10 ----D---- C:\Program Files\IObit
2009-06-12 22:59:56 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\AOL
2009-06-12 22:59:43 ----D---- C:\Documents and Settings\All Users\Application Data\Pure Networks
2009-06-12 22:59:28 ----A---- C:\WINDOWS\system32\aamd532.dll
2009-06-12 22:59:26 ----A---- C:\WINDOWS\system32\SimpleRegistry.dll
2009-06-12 22:59:25 ----A---- C:\WINDOWS\system32\vbar332.dll
2009-06-12 22:59:21 ----D---- C:\Program Files\Pure Networks
2009-06-12 22:59:19 ----D---- C:\WINDOWS\occache
2009-06-12 22:59:19 ----D---- C:\Program Files\Learn2.com
2009-06-12 22:59:19 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\You've Got Pictures Screensaver
2009-06-12 22:59:14 ----A---- C:\WINDOWS\system32\shdocvw.bak
2009-06-12 22:58:54 ----D---- C:\Program Files\Common Files\Nullsoft
2009-06-12 22:58:43 ----D---- C:\My Music
2009-06-12 22:58:36 ----A---- C:\WINDOWS\system32\rmoc3260.dll
2009-06-12 22:58:34 ----A---- C:\WINDOWS\system32\pndx5032.dll
2009-06-12 22:58:34 ----A---- C:\WINDOWS\system32\pndx5016.dll
2009-06-12 22:58:33 ----D---- C:\Program Files\Real
2009-06-12 22:58:33 ----A---- C:\WINDOWS\system32\pncrt.dll
2009-06-12 22:58:32 ----D---- C:\Program Files\Common Files\Real
2009-06-12 22:57:34 ----A---- C:\WINDOWS\system32\roboex32.dll
2009-06-12 22:55:59 ----D---- C:\Documents and Settings\All Users\Application Data\AOL
2009-06-12 22:55:29 ----D---- C:\Program Files\Common Files\AOL
2009-06-11 18:49:40 ----D---- C:\Program Files\WIDCOMM
2009-06-11 18:36:32 ----D---- C:\Program Files\Windows Live SkyDrive
2009-06-11 18:35:38 ----D---- C:\Program Files\Windows Live
2009-06-11 18:23:35 ----D---- C:\Program Files\ESET
2009-06-11 18:23:35 ----D---- C:\Documents and Settings\All Users\Application Data\ESET
2009-06-11 18:22:57 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\WinRAR
2009-06-11 18:22:07 ----D---- C:\Program Files\WinRAR
2009-06-11 15:11:42 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Pixmantec
2009-06-11 15:06:27 ----D---- C:\Program Files\Pixmantec
2009-06-09 20:51:53 ----A---- C:\WINDOWS\system32\mucltui.dll.mui
2009-06-09 20:51:53 ----A---- C:\WINDOWS\system32\mucltui.dll
2009-06-09 11:17:34 ----D---- C:\Program Files\Microsoft CAPICOM 2.1.0.2
2009-06-07 13:23:37 ----D---- C:\WINDOWS\Prefetch
2009-06-07 13:06:10 ----D---- C:\WINDOWS\system32\scripting
2009-06-07 13:06:03 ----D---- C:\WINDOWS\l2schemas
2009-06-07 13:06:02 ----D---- C:\WINDOWS\system32\en
2009-06-07 13:06:02 ----D---- C:\WINDOWS\system32\bits
2009-06-07 13:00:05 ----D---- C:\WINDOWS\ServicePackFiles
2009-06-07 12:51:46 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2009-06-06 12:09:32 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\ZoomBrowser EX
2009-06-06 11:47:02 ----D---- C:\Program Files\Common Files\Canon
2009-06-04 11:15:09 ----A---- C:\WINDOWS\muveeapp.INI
2009-06-04 11:14:23 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\muvee Technologies
2009-06-03 19:45:36 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Laplink
2009-06-03 19:41:43 ----D---- C:\Program Files\Laplink
2009-06-03 19:41:43 ----D---- C:\Program Files\Common Files\Laplink
2009-06-03 19:33:32 ----D---- C:\Program Files\Microsoft
2009-06-03 19:33:21 ----HDC---- C:\WINDOWS\$NtUninstallWETCable$
2009-05-25 12:20:09 ----D---- C:\CNYSELPHYCP
2009-05-09 01:14:52 ----A---- C:\WINDOWS\system32\wdfcoinstaller01005.dll
2009-04-17 09:12:24 ----N---- C:\WINDOWS\system32\xpsp4res.dll
2009-03-31 13:38:49 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Malwarebytes
2009-03-31 13:38:34 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2009-03-31 13:38:33 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2009-03-15 22:12:16 ----D---- C:\Program Files\Lavasoft
2009-03-15 22:12:16 ----D---- C:\Documents and Settings\All Users\Application Data\Lavasoft
2009-03-15 22:05:25 ----A---- C:\WINDOWS\wininit.ini
2009-03-15 21:35:18 ----D---- C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2009-03-08 14:22:30 ----N---- C:\WINDOWS\system32\msrating.dll.mui
2009-03-08 14:22:18 ----N---- C:\WINDOWS\system32\mshta.exe.mui
2009-03-08 14:21:06 ----N---- C:\WINDOWS\system32\ie4uinit.exe.mui
2009-03-08 14:20:54 ----N---- C:\WINDOWS\system32\iedkcs32.dll.mui
2009-02-06 13:47:40 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Sony Ericsson
2009-02-06 11:14:29 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Uniblue
2009-01-13 23:45:47 ----HDC---- C:\WINDOWS\ie7
2009-01-07 18:20:18 ----A---- C:\WINDOWS\system32\msdbg2.dll
2008-12-02 22:37:20 ----A---- C:\WINDOWS\system32\sirenacm.dll
2008-10-27 12:53:41 ----N---- C:\WINDOWS\system32\wmphoto.dll
2008-10-27 12:53:37 ----N---- C:\WINDOWS\system32\wlanapi.dll
2008-10-27 12:53:35 ----N---- C:\WINDOWS\system32\windowscodecsext.dll
2008-10-27 12:53:35 ----N---- C:\WINDOWS\system32\windowscodecs.dll
2008-10-27 12:53:15 ----N---- C:\WINDOWS\system32\tspkg.dll
2008-10-27 12:53:15 ----N---- C:\WINDOWS\system32\tsgqec.dll
2008-10-27 12:52:51 ----N---- C:\WINDOWS\system32\spupdwxp.exe
2008-10-27 12:52:49 ----A---- C:\WINDOWS\system32\spdwnwxp.exe
2008-10-27 12:52:48 ----N---- C:\WINDOWS\system32\slserv.exe
2008-10-27 12:52:47 ----N---- C:\WINDOWS\system32\slrundll.exe
2008-10-27 12:52:47 ----N---- C:\WINDOWS\system32\slgen.dll
2008-10-27 12:52:47 ----N---- C:\WINDOWS\system32\slextspk.dll
2008-10-27 12:52:47 ----N---- C:\WINDOWS\system32\slcoinst.dll
2008-10-27 12:52:47 ----N---- C:\WINDOWS\slrundll.exe
2008-10-27 12:52:43 ----N---- C:\WINDOWS\system32\setupn.exe
2008-10-27 12:52:39 ----N---- C:\WINDOWS\system32\s3gnb.dll
2008-10-27 12:52:38 ----N---- C:\WINDOWS\system32\rhttpaa.dll
2008-10-27 12:52:36 ----N---- C:\WINDOWS\system32\rasqec.dll
2008-10-27 12:52:35 ----N---- C:\WINDOWS\system32\qutil.dll
2008-10-27 12:52:34 ----N---- C:\WINDOWS\system32\qcliprov.dll
2008-10-27 12:52:33 ----N---- C:\WINDOWS\system32\qagentrt.dll
2008-10-27 12:52:33 ----N---- C:\WINDOWS\system32\qagent.dll
2008-10-27 12:52:32 ----N---- C:\WINDOWS\system32\photometadatahandler.dll
2008-10-27 12:52:29 ----N---- C:\WINDOWS\system32\onex.dll
2008-10-27 12:52:25 ----N---- C:\WINDOWS\system32\nv4_disp.dll
2008-10-27 12:52:18 ----N---- C:\WINDOWS\system32\napstat.exe
2008-10-27 12:52:18 ----N---- C:\WINDOWS\system32\napmontr.dll
2008-10-27 12:52:18 ----N---- C:\WINDOWS\system32\napipsec.dll
2008-10-27 12:52:17 ----N---- C:\WINDOWS\system32\mtxparhd.dll
2008-10-27 12:52:16 ----N---- C:\WINDOWS\system32\msxml6r.dll
2008-10-27 12:52:16 ----N---- C:\WINDOWS\system32\msxml6.dll
2008-10-27 12:52:13 ----N---- C:\WINDOWS\system32\msshavmsg.dll
2008-10-27 12:52:13 ----N---- C:\WINDOWS\system32\mssha.dll
2008-10-27 12:51:45 ----N---- C:\WINDOWS\system32\mmcperf.exe
2008-10-27 12:51:45 ----N---- C:\WINDOWS\system32\mmcfxcommon.dll
2008-10-27 12:51:45 ----N---- C:\WINDOWS\system32\mmcex.dll
2008-10-27 12:51:44 ----N---- C:\WINDOWS\system32\microsoft.managementconsole.dll
2008-10-27 12:51:18 ----N---- C:\WINDOWS\system32\l2gpstore.dll
2008-10-27 12:51:07 ----N---- C:\WINDOWS\system32\kmsvc.dll
2008-10-27 12:51:07 ----N---- C:\WINDOWS\system32\kbdpash.dll
2008-10-27 12:51:07 ----N---- C:\WINDOWS\system32\kbdnepr.dll
2008-10-27 12:51:07 ----N---- C:\WINDOWS\system32\kbdiultn.dll
2008-10-27 12:51:06 ----N---- C:\WINDOWS\system32\kbdbhc.dll
2008-10-27 12:50:41 ----N---- C:\WINDOWS\system32\comsdupd.exe
2008-10-27 12:50:36 ----N---- C:\WINDOWS\system32\hsfcisp2.dll
2008-10-27 12:50:30 ----N---- C:\WINDOWS\system32\faxpatch.exe
2008-10-27 12:50:28 ----N---- C:\WINDOWS\system32\eapsvc.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eapqec.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eappprxy.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eapphost.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eappgnui.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eappcfg.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eapp3hst.dll
2008-10-27 12:50:27 ----N---- C:\WINDOWS\system32\eapolqec.dll
2008-10-27 12:50:24 ----N---- C:\WINDOWS\system32\dot3ui.dll
2008-10-27 12:50:24 ----N---- C:\WINDOWS\system32\dot3svc.dll
2008-10-27 12:50:24 ----N---- C:\WINDOWS\system32\dot3msm.dll
2008-10-27 12:50:24 ----N---- C:\WINDOWS\system32\dot3dlg.dll
2008-10-27 12:50:23 ----N---- C:\WINDOWS\system32\dot3gpclnt.dll
2008-10-27 12:50:23 ----N---- C:\WINDOWS\system32\dot3cfg.dll
2008-10-27 12:50:23 ----N---- C:\WINDOWS\system32\dot3api.dll
2008-10-27 12:50:21 ----N---- C:\WINDOWS\system32\dimsroam.dll
2008-10-27 12:50:21 ----N---- C:\WINDOWS\system32\dimsntfy.dll
2008-10-27 12:50:20 ----N---- C:\WINDOWS\system32\dhcpqec.dll
2008-10-27 12:50:16 ----N---- C:\WINDOWS\system32\credssp.dll
2008-10-27 12:50:09 ----N---- C:\WINDOWS\system32\bitsprx4.dll
2008-10-27 12:50:08 ----N---- C:\WINDOWS\system32\azroles.dll
2008-10-27 12:50:06 ----N---- C:\WINDOWS\system32\ativtmxx.dll
2008-10-27 12:50:06 ----N---- C:\WINDOWS\system32\ati3d1ag.dll
2008-10-27 12:50:05 ----N---- C:\WINDOWS\system32\ati2dvaa.dll
2008-10-27 12:49:57 ----N---- C:\WINDOWS\system32\aaclient.dll
2008-10-16 14:07:48 ----A---- C:\WINDOWS\system32\muweb.dll
2008-10-11 13:03:15 ----D---- C:\Program Files\CCleaner
2008-09-30 16:43:34 ----A---- C:\WINDOWS\system32\msxml4.dll
2008-08-23 22:20:07 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Apple Computer
2008-08-16 11:34:23 ----D---- C:\Documents and Settings\All Users\Application Data\Trymedia
2008-08-16 11:34:18 ----D---- C:\Documents and Settings\All Users\Application Data\NeoEdge Networks
2008-08-13 10:08:05 ----D---- C:\ConverterOutput
2008-07-31 10:16:54 ----A---- C:\WINDOWS\system32\msjava.dll
2008-07-29 21:10:04 ----A---- C:\WINDOWS\system32\TsWpfWrp.exe
2008-07-29 21:10:04 ----A---- C:\WINDOWS\system32\evr.dll
2008-07-29 21:10:04 ----A---- C:\WINDOWS\system32\dxva2.dll
2008-07-29 20:35:46 ----A---- C:\WINDOWS\system32\PresentationHost.exe
2008-07-29 19:59:58 ----A---- C:\WINDOWS\system32\UIAutomationCore.dll
2008-07-29 19:59:58 ----A---- C:\WINDOWS\system32\PresentationNative_v0300.dll
2008-07-29 19:59:58 ----A---- C:\WINDOWS\system32\PresentationHostProxy.dll
2008-07-29 19:59:58 ----A---- C:\WINDOWS\system32\PresentationCFFRasterizerNative_v0300.dll
2008-07-29 19:24:50 ----A---- C:\WINDOWS\system32\infocardapi.dll
2008-07-29 19:24:50 ----A---- C:\WINDOWS\system32\icardres.dll
2008-07-29 19:24:50 ----A---- C:\WINDOWS\system32\icardagt.exe
2008-07-29 05:49:58 ----A---- C:\WINDOWS\system32\icardres.dll.mui
2008-07-25 11:16:58 ----A---- C:\WINDOWS\system32\mscories.dll
2008-07-25 11:16:58 ----A---- C:\WINDOWS\system32\mscorier.dll
2008-07-25 11:16:58 ----A---- C:\WINDOWS\system32\mscoree.dll
2008-07-25 11:16:46 ----A---- C:\WINDOWS\system32\dfshim.dll
2008-01-04 13:38:20 ----A---- C:\WINDOWS\system32\EKDeviceServices.dll
2008-01-04 13:33:44 ----A---- C:\WINDOWS\system32\EKIJ5000MON.dll
2008-01-04 13:09:03 ----D---- C:\Documents and Settings\All Users\Application Data\Eastman Kodak Company
2008-01-04 13:08:45 ----D---- C:\Documents and Settings\All Users\Application Data\kds_kodak
2008-01-04 13:08:24 ----D---- C:\WINDOWS\system32\kodak
2008-01-04 13:08:16 ----A---- C:\WINDOWS\system32\wiafbdrv.dll
2007-12-22 16:34:23 ----A---- C:\AdobeDebug.txt
2007-12-22 16:34:22 ----D---- C:\Documents and Settings\All Users\Application Data\espionServerData
2007-12-22 16:23:50 ----D---- C:\Documents and Settings\All Users\Application Data\FLEXnet
2007-12-18 16:25:58 ----A---- C:\WINDOWS\system32\ptpusb.dll
2007-12-18 16:25:57 ----A---- C:\WINDOWS\system32\ptpusd.dll
2007-12-18 16:25:50 ----D---- C:\Program Files\Common Files\Kodak
2007-12-18 16:24:05 ----D---- C:\Program Files\Kodak
2007-12-18 16:20:17 ----D---- C:\Documents and Settings\All Users\Application Data\Kodak
2007-12-13 12:59:12 ----A---- C:\WINDOWS\system32\wiaaut.dll
2007-12-11 12:33:08 ----D---- C:\Program Files\Audible
2007-12-11 12:29:43 ----N---- C:\WINDOWS\system32\CTSVCCTL.EXE
2007-12-11 12:29:43 ----N---- C:\WINDOWS\system32\CTSVCCDA.EXE
2007-12-11 12:29:18 ----D---- C:\Program Files\Common Files\Creative
2007-12-11 12:24:44 ----D---- C:\Documents and Settings\All Users\Application Data\Creative
2007-10-04 14:12:14 ----D---- C:\rsit
2007-09-24 13:33:24 ----D---- C:\WINDOWS\CSC
2007-09-20 22:29:23 ----A---- C:\usbfix.exe
2007-09-20 09:37:12 ----A---- C:\WINDOWS\log32.txt
2007-09-10 23:48:00 ----A---- C:\WINDOWS\tdlp32.ini
2007-09-10 13:00:36 ----D---- C:\Documents and Settings\Hector Lamberti\Application Data\Moyea
2007-09-10 12:57:03 ----D---- C:\Program Files\Moyea
2007-09-10 12:10:22 ----D---- C:\Program Files\Vertus Fluid Mask 3
2007-09-09 00:47:32 ----D---- C:\Documents and Settings\All Users\Application Data\VertusTech