Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

system slow and AntiVir keeps finding junk

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 21st, 2012, 9:46 pm

hey guys


.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702
Run by Administrator at 18:39:42 on 2012-06-21
AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
.
============== Running Processes ===============
.
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.com/
uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
mRun: [SoundMan] SOUNDMAN.EXE
mRun: [AudCtrl] RunDll32 AudCtrl.dll,RCMonitor
mRun: [UpdReg] c:\windows\UpdReg.EXE
mRun: [Jet Detection] c:\program files\creative\sbextigy\program\ADGJDet.exe
mRun: [CTStartup] c:\program files\creative\splash screen\CTEaxSpl.EXE /run
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
mRun: [nwiz] c:\program files\nvidia corporation\nview\nwiz.exe /installquiet
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
StartupFolder: c:\docume~1\alluse~1\startm~1\programs\startup\netgea~1.lnk - c:\program files\netgear\wna3100\WNA3100.exe
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
TCP: DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{7AE35506-1ABB-42B4-9272-DE8F5CA83E9D} : DhcpNameServer = 209.18.47.61 209.18.47.62
TCP: Interfaces\{D2370702-24CB-4B51-A03B-5C0738AD50A6} : DhcpNameServer = 209.18.47.61 209.18.47.62
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\administrator\application data\mozilla\firefox\profiles\3jwy243p.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_11_3_300_257.dll
.
============= SERVICES / DRIVERS ===============
.
.
=============== Created Last 30 ================
.
2012-06-20 03:15:27 -------- d-sh--w- c:\documents and settings\administrator\PrivacIE
2012-06-19 01:25:35 -------- d-----w- c:\documents and settings\administrator\application data\Electronic Arts
2012-06-19 01:10:28 953856 -c----w- c:\windows\system32\dllcache\mfc40u.dll
2012-06-17 19:36:00 -------- d-----w- c:\windows\system32\XPSViewer
2012-06-17 19:35:36 89088 ----a-w- c:\windows\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
2012-06-17 19:35:14 89088 -c----w- c:\windows\system32\dllcache\filterpipelineprintproc.dll
2012-06-17 19:35:14 597504 -c----w- c:\windows\system32\dllcache\printfilterpipelinesvc.exe
2012-06-17 19:35:14 597504 ------w- c:\windows\system32\spool\prtprocs\w32x86\printfilterpipelinesvc.exe
2012-06-17 19:35:14 575488 -c----w- c:\windows\system32\dllcache\xpsshhdr.dll
2012-06-17 19:35:14 575488 ------w- c:\windows\system32\xpsshhdr.dll
2012-06-17 19:35:14 117760 ------w- c:\windows\system32\prntvpt.dll
2012-06-17 19:35:12 1676288 -c----w- c:\windows\system32\dllcache\xpssvcs.dll
2012-06-17 19:35:12 1676288 ------w- c:\windows\system32\xpssvcs.dll
2012-06-17 19:35:11 -------- d-----w- C:\a936e757250915f049d1
2012-06-17 19:28:58 -------- d-sh--w- c:\documents and settings\administrator\IETldCache
2012-06-17 09:09:34 521728 -c----w- c:\windows\system32\dllcache\jsdbgui.dll
2012-06-17 09:09:02 6144 -c----w- c:\windows\system32\dllcache\iecompat.dll
2012-06-17 09:08:38 -------- d-----w- c:\windows\ie8updates
2012-06-17 09:08:33 12800 -c----w- c:\windows\system32\dllcache\xpshims.dll
2012-06-17 09:08:32 743424 -c----w- c:\windows\system32\dllcache\iedvtool.dll
2012-06-17 09:08:32 629760 -c----w- c:\windows\system32\dllcache\msfeeds.dll
2012-06-17 09:08:32 55296 -c----w- c:\windows\system32\dllcache\msfeedsbs.dll
2012-06-17 09:08:32 247808 -c----w- c:\windows\system32\dllcache\ieproxy.dll
2012-06-17 09:08:32 2000384 -c----w- c:\windows\system32\dllcache\iertutil.dll
2012-06-17 09:08:32 11111424 -c----w- c:\windows\system32\dllcache\ieframe.dll
2012-06-17 09:08:06 -------- dc-h--w- c:\windows\ie8
2012-06-17 08:26:51 70344 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-06-17 08:26:51 426184 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-06-17 07:47:36 -------- d-----w- c:\documents and settings\administrator\application data\Avira
2012-06-17 07:44:52 83392 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2012-06-17 07:44:52 36000 ----a-w- c:\windows\system32\drivers\avkmgr.sys
2012-06-17 07:44:51 -------- d-----w- c:\program files\Avira
2012-06-17 07:44:51 -------- d-----w- c:\documents and settings\all users\application data\Avira
2012-06-17 07:37:41 -------- d-----w- c:\documents and settings\administrator\application data\DaocTB
2012-06-17 07:21:48 1034240 ----a-w- c:\windows\system32\drivers\bcmwlhigh5.sys
2012-06-17 07:21:47 53299 ----a-w- c:\windows\system32\pthreadVC.dll
2012-06-17 07:21:47 50704 ----a-w- c:\windows\system32\drivers\npf.sys
2012-06-17 07:21:47 281104 ----a-w- c:\windows\system32\wpcap.dll
2012-06-17 07:21:47 100880 ----a-w- c:\windows\system32\Packet.dll
2012-06-17 07:21:46 413696 ----a-w- c:\windows\system32\msvc5164.rra
2012-06-17 07:21:46 -------- d-----w- c:\program files\NETGEAR
2012-06-17 07:09:07 4984 ----a-w- c:\windows\system32\drivers\nvphy.bin
2012-06-17 07:09:07 446464 ----a-w- c:\windows\system32\nvunrm.exe
2012-06-17 07:07:54 456320 -c----w- c:\windows\system32\dllcache\mrxsmb.sys
2012-06-17 07:07:53 272128 -c----w- c:\windows\system32\dllcache\bthport.sys
2012-06-17 06:59:56 617472 -c----w- c:\windows\system32\dllcache\comctl32.dll
2012-06-17 06:59:48 471552 -c----w- c:\windows\system32\dllcache\aclayers.dll
2012-06-17 06:59:01 40960 -c----w- c:\windows\system32\dllcache\ndproxy.sys
2012-06-17 06:58:24 81920 -c----w- c:\windows\system32\dllcache\fontsub.dll
2012-06-17 06:58:24 119808 -c----w- c:\windows\system32\dllcache\t2embed.dll
2012-06-17 06:58:20 203136 -c----w- c:\windows\system32\dllcache\rmcast.sys
2012-06-17 06:57:52 139656 -c----w- c:\windows\system32\dllcache\rdpwd.sys
2012-06-17 06:57:46 473600 -c----w- c:\windows\system32\dllcache\fastprox.dll
2012-06-17 06:57:46 401408 -c----w- c:\windows\system32\dllcache\rpcss.dll
2012-06-17 06:57:46 284160 -c----w- c:\windows\system32\dllcache\pdh.dll
2012-06-17 06:57:46 227840 -c----w- c:\windows\system32\dllcache\wmiprvse.exe
2012-06-17 06:57:46 110592 -c----w- c:\windows\system32\dllcache\services.exe
2012-06-17 06:57:45 617472 -c----w- c:\windows\system32\dllcache\advapi32.dll
2012-06-17 06:57:45 453120 -c----w- c:\windows\system32\dllcache\wmiprvsd.dll
2012-06-17 06:57:08 551936 -c----w- c:\windows\system32\dllcache\oleaut32.dll
2012-06-17 06:56:54 1172480 -c----w- c:\windows\system32\dllcache\msxml3.dll
2012-06-17 06:56:54 105472 -c----w- c:\windows\system32\dllcache\mup.sys
2012-06-17 06:56:52 331776 -c----w- c:\windows\system32\dllcache\msadce.dll
2012-06-17 06:56:18 65536 -c----w- c:\windows\system32\dllcache\asycfilt.dll
2012-06-17 06:56:16 3558912 -c----w- c:\windows\system32\dllcache\moviemk.exe
2012-06-17 06:56:13 204800 -c----w- c:\windows\system32\dllcache\mswebdvd.dll
2012-06-17 06:56:09 361600 -c----w- c:\windows\system32\dllcache\tcpip.sys
2012-06-17 06:56:09 138496 -c----w- c:\windows\system32\dllcache\afd.sys
2012-06-17 06:56:08 45568 -c----w- c:\windows\system32\dllcache\dnsrslvr.dll
2012-06-17 06:56:08 245248 -c----w- c:\windows\system32\dllcache\mswsock.dll
2012-06-17 06:56:08 226880 -c----w- c:\windows\system32\dllcache\tcpip6.sys
2012-06-17 06:56:08 149504 -c----w- c:\windows\system32\dllcache\dnsapi.dll
2012-06-17 06:55:55 758784 -c--a-w- c:\windows\system32\dllcache\vgx.dll
2012-06-17 06:55:52 718336 -c----w- c:\windows\system32\dllcache\ntdll.dll
2012-06-17 06:55:52 2192640 -c----w- c:\windows\system32\dllcache\ntoskrnl.exe
2012-06-17 06:55:52 2148352 -c----w- c:\windows\system32\dllcache\ntkrnlmp.exe
2012-06-17 06:55:51 2069120 -c----w- c:\windows\system32\dllcache\ntkrnlpa.exe
2012-06-17 06:55:51 2026496 -c----w- c:\windows\system32\dllcache\ntkrpamp.exe
2012-06-17 06:55:47 10496 -c----w- c:\windows\system32\dllcache\ndistapi.sys
2012-06-17 06:55:46 3072 -c----w- c:\windows\system32\dllcache\iacenc.dll
2012-06-17 06:55:46 3072 ------w- c:\windows\system32\iacenc.dll
2012-06-17 06:55:37 590848 -c----w- c:\windows\system32\dllcache\rpcrt4.dll
2012-06-17 06:55:37 5120 ----a-w- c:\windows\system32\xpsp4res.dll
2012-06-17 06:52:47 -------- d-----w- c:\windows\system32\PreInstall
2012-06-17 06:52:45 -------- d--h--w- c:\windows\$hf_mig$
2012-06-17 06:04:31 177664 -c----w- c:\windows\system32\dllcache\wintrust.dll
2012-06-17 06:04:31 148480 -c----w- c:\windows\system32\dllcache\imagehlp.dll
2012-06-17 06:04:27 744448 -c----w- c:\windows\system32\dllcache\helpsvc.exe
2012-06-17 06:04:20 337408 -c----w- c:\windows\system32\dllcache\netapi32.dll
2012-06-17 06:04:17 45568 -c----w- c:\windows\system32\dllcache\wab.exe
2012-06-17 05:55:07 76288 ----a-r- c:\windows\system32\drivers\nvraid.sys
2012-06-17 05:55:05 19456 ----a-w- c:\windows\system32\nvraiins.dll
2012-06-17 05:55:05 19456 ----a-r- c:\windows\system32\nvraidco.dll
2012-06-17 05:54:46 536576 -c----w- c:\windows\system32\dllcache\msado15.dll
2012-06-17 05:54:46 249856 -c----w- c:\windows\system32\dllcache\odbc32.dll
2012-06-17 05:54:46 200704 -c----w- c:\windows\system32\dllcache\msadox.dll
2012-06-17 05:54:46 180224 -c----w- c:\windows\system32\dllcache\msadomd.dll
2012-06-17 05:54:46 143360 -c----w- c:\windows\system32\dllcache\msadco.dll
2012-06-17 05:54:46 102400 -c----w- c:\windows\system32\dllcache\msjro.dll
2012-06-17 05:54:37 60416 -c----w- c:\windows\system32\dllcache\packager.exe
2012-06-17 05:54:30 218112 -c----w- c:\windows\system32\dllcache\wordpad.exe
2012-06-17 05:46:28 -------- d-----w- c:\windows\system32\SoftwareDistribution
2012-06-17 05:27:13 -------- d-----w- c:\documents and settings\administrator\application data\DAoC Portal
2012-06-17 05:27:04 -------- d-----w- c:\program files\DAoC Portal
2012-06-17 05:14:21 -------- d-----w- c:\windows\ServicePackFiles
2012-06-17 04:29:14 -------- d-----w- c:\documents and settings\all users\application data\NVIDIA Corporation
2012-06-17 04:29:10 164160 ----a-w- c:\windows\system32\nvsvc32.exe
2012-06-17 04:29:10 143680 ----a-w- c:\windows\system32\nvcolor.exe
2012-06-17 04:29:08 54272 ----a-w- c:\windows\system32\nvwddi.dll
2012-06-17 04:29:08 15504192 ----a-w- c:\windows\system32\nvcpl.dll
2012-06-17 04:29:08 108352 ----a-w- c:\windows\system32\nvmctray.dll
2012-06-17 04:27:56 -------- d-----w- c:\program files\NVIDIA Corporation
2012-06-17 04:27:35 -------- d-----w- C:\NVIDIA
2012-06-17 04:15:57 -------- d-s---w- c:\documents and settings\administrator\UserData
2012-06-16 01:29:36 413696 ----a-w- c:\windows\system32\msvc2b66.rra
2012-06-16 00:48:02 413696 ----a-w- c:\windows\system32\msvc1e30.rra
2012-06-15 02:33:15 413696 ----a-w- c:\windows\system32\msvc75ae.rra
2012-06-14 02:13:36 -------- d-----w- c:\windows\system32\appmgmt
2012-06-14 01:33:12 89088 ----a-w- c:\windows\system32\ATL71.DLL
2012-06-14 01:33:12 499712 ----a-w- c:\windows\system32\msvcp71.DLL
2012-06-14 01:33:12 413696 ----a-w- c:\windows\system32\msvc910c.rra
2012-06-14 01:33:12 348160 ----a-w- c:\windows\system32\msvcr71.DLL
2012-06-14 01:33:12 1060864 ----a-w- c:\windows\system32\MFC71.DLL
2012-06-14 00:48:10 6752 ------w- c:\windows\system32\PFMODNT.SYS
2012-06-14 00:46:11 41984 ------w- c:\windows\CTRegRun.exe
2012-06-14 00:46:11 -------- d-----w- c:\program files\Creative
2012-06-14 00:36:08 92800 ----a-r- c:\windows\system32\drivers\nvatabus.sys
2012-06-14 00:36:02 92800 ----a-r- c:\windows\system32\drivers\nvata.sys
2012-06-14 00:36:02 300032 ----a-r- c:\windows\system32\idecoi.dll
2012-06-14 00:35:18 -------- d-----w- c:\program files\Realtek Sound Manager
2012-06-14 00:35:16 -------- d-----w- c:\program files\AvRack
2012-06-14 00:35:12 77824 ----a-w- c:\windows\SOUNDMAN.EXE
2012-06-14 00:35:12 40960 ------w- c:\windows\system32\ChCfg.exe
2012-06-14 00:35:12 2304320 ----a-w- c:\windows\system32\drivers\ALCXWDM.SYS
2012-06-14 00:35:12 156672 ----a-w- c:\windows\system32\RTLCPAPI.dll
2012-06-14 00:35:09 9524224 ----a-w- c:\windows\system32\RTLCPL.EXE
2012-06-14 00:35:00 208896 ------w- c:\windows\alcupd.exe
2012-06-14 00:35:00 17584128 ----a-w- c:\windows\system32\ALSNDMGR.CPL
2012-06-14 00:35:00 139264 ------w- c:\windows\alcrmv.exe
2012-06-14 00:34:53 77824 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ctor.dll
2012-06-14 00:34:53 32768 ------w- c:\program files\common files\installshield\engine\6\intel 32\objectps.dll
2012-06-14 00:34:53 225280 ------w- c:\program files\common files\installshield\iscript\IScript.dll
2012-06-14 00:34:53 212992 ----a-w- c:\program files\common files\installshield\engine\6\intel 32\ILog.dll
2012-06-14 00:34:53 176128 ------w- c:\program files\common files\installshield\engine\6\intel 32\iuser.dll
2012-06-14 00:34:32 -------- d-----w- c:\windows\system32\ReinstallBackups
2012-06-14 00:34:29 36352 ----a-w- c:\windows\system32\drivers\AmdK8.sys
2012-06-14 00:34:29 -------- d-----w- c:\program files\AMD
2012-06-13 03:02:33 221184 -c--a-w- c:\windows\system32\dllcache\wmpns.dll
2012-06-13 03:01:58 229439 -c--a-w- c:\windows\system32\dllcache\multibox.dll
2012-06-13 03:00:59 7168 -c--a-w- c:\windows\system32\dllcache\wamregps.dll
.
==================== Find3M ====================
.
2012-06-17 04:28:49 1074636 ----a-w- c:\windows\system32\nvdrsdb0.bin
2012-06-17 04:28:49 1 ----a-w- c:\windows\system32\nvdrssel.bin
2012-06-17 04:28:45 1074636 ----a-w- c:\windows\system32\nvdrsdb1.bin
2012-06-02 22:19:44 22040 ----a-w- c:\windows\system32\wucltui.dll.mui
2012-06-02 22:19:38 219160 ----a-w- c:\windows\system32\wuaucpl.cpl
2012-06-02 22:19:38 15384 ----a-w- c:\windows\system32\wuaucpl.cpl.mui
2012-06-02 22:19:34 15384 ----a-w- c:\windows\system32\wuapi.dll.mui
2012-06-02 22:19:30 17944 ----a-w- c:\windows\system32\wuaueng.dll.mui
2012-05-31 13:22:09 599040 ----a-w- c:\windows\system32\crypt32.dll
2012-05-16 15:08:26 916992 ----a-w- c:\windows\system32\wininet.dll
2012-05-15 13:20:33 1863168 ----a-w- c:\windows\system32\win32k.sys
2012-05-15 10:18:00 883008 ----a-w- c:\windows\system32\nvgenco32.dll
2012-05-15 10:18:00 65536 ----a-w- c:\windows\system32\OpenCL.dll
2012-05-15 10:18:00 6012928 ----a-w- c:\windows\system32\nvcuda.dll
2012-05-15 10:18:00 4373248 ----a-w- c:\windows\system32\nv4_disp.dll
2012-05-15 10:18:00 2530624 ----a-w- c:\windows\system32\nvcuvid.dll
2012-05-15 10:18:00 2445120 ----a-w- c:\windows\system32\nvcuvenc.dll
2012-05-15 10:18:00 2359808 ----a-w- c:\windows\system32\nvapi.dll
2012-05-15 10:18:00 18771968 ----a-w- c:\windows\system32\nvoglnt.dll
2012-05-15 10:18:00 17543168 ----a-w- c:\windows\system32\nvcompiler.dll
2012-05-15 10:18:00 14014656 ----a-w- c:\windows\system32\drivers\nv4_mini.sys
2012-05-15 10:18:00 1000768 ----a-w- c:\windows\system32\nvdispco32.dll
2012-05-11 14:42:33 43520 ------w- c:\windows\system32\licmgr10.dll
2012-05-11 14:42:33 1469440 ------w- c:\windows\system32\inetcpl.cpl
2012-05-11 11:38:02 385024 ------w- c:\windows\system32\html.iec
2012-05-04 13:12:30 2192640 ----a-w- c:\windows\system32\ntoskrnl.exe
2012-05-04 12:32:19 2069120 ----a-w- c:\windows\system32\ntkrnlpa.exe
2012-05-02 13:46:36 139656 ----a-w- c:\windows\system32\drivers\rdpwd.sys
.
============= FINISH: 18:40:34.07 ===============
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm
Advertisement
Register to Remove

Re: system slow and AntiVir keeps finding junk

Unread postby Alander » June 23rd, 2012, 12:02 am

Hello, I Am Alander :)

Welcome to the Malware Removal forums.

I would be glad to take a look at your log and help you with solving any malware problems.

DDS logs can take a while to research so please be patient while I work on your log and I will post back here with any recommendations.

As I am still training, everything that I post to you, must be checked by an Admin or Moderator.

Thus, there may be a tiny bit of a delay between posts. While it shouldn't be too long, you can be assured you will get the best possible advice.


  • I will working be on your Malware issues, this may or may not, solve other issues you have with your machine.
  • The fixes are specific to your problem and should only be used for this issue on this machine.
  • Please continue to review my answers until I tell you your machine appears to be clear. Absence of symptoms does not mean that everything is clear.
  • It's often worth reading through these instructions and printing them for ease of reference.
  • If you don't know or understand something, please don't hesitate to say or ask!! It's better to be sure and safe than sorry.
  • Please reply to this thread. Do not start a new topic.
User avatar
Alander
Regular Member
 
Posts: 1603
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: system slow and AntiVir keeps finding junk

Unread postby Alander » June 25th, 2012, 11:26 am

Hi, Sorry for the delay

Step 1.
Please download OTL by Old Timer and save it to your Desktop.
  • Double click on OTL.exe to run it.
  • Under Output, ensure that Standard Output is selected.
  • Under Extra Registry section, select Use SafeList.
  • Click the Scan All Users checkbox.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened
    • Extra.txt <-- Will be minimized
  • Please post the contents of these 2 Notepad files in your next reply.

Step 2.
TDSSKiller
Please download TDSSKiller.exe and save it to your Desktop.
  • Double click on TDSSKiller.exe to launch it.
  • Click on Start Scan, the scan will run.
  • When the scan has finished, if it finds anything please click on the drop down arrow next to Cure and select Skip
  • Now click on Report to open the log file created by TDSSKiller in your root directory C:\
  • To find the log go to Start > Computer > C:
  • Post the contents of that log in your next reply please.
  • DO NOT TRY TO FIX ANYTHING AT THIS POINT

Step 3.
Please include in your next reply:
  1. Any problem executing the instructions?
  2. OTL.txt and Extras.txt
  3. TDSSKiller Log
Thanks
User avatar
Alander
Regular Member
 
Posts: 1603
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 25th, 2012, 9:02 pm

it wont let me post. the log has to many characters.
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby Alander » June 26th, 2012, 12:42 am

hi, pls post each log into seperate posts e.g

otk.txt in 1 extras.txt in 1 and tdsskiller log in 1
User avatar
Alander
Regular Member
 
Posts: 1603
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 26th, 2012, 10:13 am

OTL logfile created on: 6/25/2012 5:42:06 PM - Run 1
OTL by OldTimer - Version 3.2.53.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.28 Gb Available Physical Memory | 76.02% Memory free
4.84 Gb Paging File | 4.27 Gb Available in Paging File | 88.23% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 91.48 Gb Free Space | 81.84% Space Free | Partition Type: NTFS
Drive D: | 627.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 127.99 Gb Total Space | 89.06 Gb Free Space | 69.58% Space Free | Partition Type: NTFS

Computer Name: MINE | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/06/25 17:35:12 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2012/06/14 15:20:13 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/05/15 03:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/02 00:31:38 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/04/24 02:11:59 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/12/08 16:53:32 | 008,364,288 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WNA3100.exe
PRC - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/12/22 02:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE


========== Modules (No Company Name) ==========

MOD - [2012/06/14 15:20:15 | 002,042,848 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/04/16 23:11:02 | 000,398,288 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011/12/08 16:53:32 | 008,364,288 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WNA3100.exe
MOD - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe
MOD - [2011/09/13 16:57:20 | 000,282,624 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvcLib.dll
MOD - [2011/08/18 11:22:38 | 000,323,584 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiLib.dll
MOD - [2002/03/21 03:53:58 | 000,047,897 | ---- | M] () -- C:\WINDOWS\system32\AudCtrl.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012/06/22 20:27:55 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/06/14 15:20:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/05/15 03:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () [Auto | Running] -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe -- (WSWNA3100)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\omxsgepc.sys -- (omxsgepc)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012/04/27 10:20:04 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/04/25 00:32:27 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012/04/16 21:18:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011/12/12 17:43:00 | 001,034,240 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcmwlhigh5.sys -- (BCMH43XX)
DRV - [2010/06/17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/02/03 11:21:56 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2008/08/01 18:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/08/01 18:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005/05/17 02:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2005/03/09 15:53:00 | 000,036,352 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004/12/22 02:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2002/05/30 10:21:32 | 001,152,916 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sbext.sys -- (sbext)
DRV - [1999/12/17 01:00:00 | 000,006,752 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\PFMODNT.SYS -- (PfModNT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0




IE - HKU\S-1-5-21-1177238915-117609710-839522115-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKU\S-1-5-21-1177238915-117609710-839522115-500\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-1177238915-117609710-839522115-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1177238915-117609710-839522115-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/06/16 21:52:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/06/16 21:52:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2012/06/18 18:21:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\3jwy243p.default\extensions
[2012/06/16 21:52:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/14 15:20:49 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/06/14 15:19:40 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/06/14 15:19:40 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2004/08/10 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [AudCtrl] C:\WINDOWS\System32\AudCtrl.dll ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [Jet Detection] C:\Program Files\Creative\SBExtigy\PROGRAM\ADGJDet.exe File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [UpdReg] C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk = C:\Program Files\NETGEAR\WNA3100\WNA3100.exe ()
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-117609710-839522115-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1177238915-117609710-839522115-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7AE35506-1ABB-42B4-9272-DE8F5CA83E9D}: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D2370702-24CB-4B51-A03B-5C0738AD50A6}: DhcpNameServer = 209.18.47.61 209.18.47.62
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/06/12 20:00:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [1998/10/04 20:57:04 | 000,000,043 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2011/08/20 00:41:07 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{67acdac2-b071-11e1-a6d1-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{67acdac2-b071-11e1-a6d1-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{67acdac2-b071-11e1-a6d1-806d6172696f}\Shell\AutoRun\command - "" = D:\Setup.exe -- [2005/06/30 04:49:12 | 000,430,080 | R--- | M] ()
O33 - MountPoints2\{8e56ac7e-b5c0-11e1-a72d-0014852513dd}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8e56ac7e-b5c0-11e1-a72d-0014852513dd}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL strongkey-rc1.3-build-208.exe
O33 - MountPoints2\{8e56ac7e-b5c0-11e1-a72d-0014852513dd}\Shell\default\command - "" = F:\strongkey-rc1.3-build-208.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 30 Days ==========

[2012/06/25 17:35:34 | 002,128,472 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Administrator\Desktop\tdsskiller.exe
[2012/06/25 17:35:11 | 000,596,992 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012/06/21 20:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Mythic
[2012/06/21 18:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Videos
[2012/06/21 18:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Administrative Tools
[2012/06/19 20:15:27 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\PrivacIE
[2012/06/18 20:23:16 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012/06/18 18:25:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Electronic Arts
[2012/06/18 18:25:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Electronic Arts
[2012/06/18 18:10:28 | 000,953,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mfc40u.dll
[2012/06/17 12:36:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012/06/17 12:35:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012/06/17 12:35:48 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012/06/17 12:35:14 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe
[2012/06/17 12:35:14 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll
[2012/06/17 12:35:14 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll
[2012/06/17 12:35:14 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll
[2012/06/17 12:35:12 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll
[2012/06/17 12:35:12 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll
[2012/06/17 12:35:11 | 000,000,000 | ---D | C] -- C:\a936e757250915f049d1
[2012/06/17 12:28:58 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\IETldCache
[2012/06/17 02:09:34 | 000,521,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsdbgui.dll
[2012/06/17 02:08:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012/06/17 02:08:32 | 011,111,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll
[2012/06/17 02:08:32 | 002,000,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll
[2012/06/17 02:08:32 | 000,743,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll
[2012/06/17 02:08:32 | 000,629,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll
[2012/06/17 02:08:32 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll
[2012/06/17 02:08:25 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012/06/17 02:08:06 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012/06/17 01:28:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Macromedia
[2012/06/17 01:28:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Adobe
[2012/06/17 01:26:51 | 000,426,184 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/06/17 01:26:51 | 000,070,344 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/06/17 00:47:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Avira
[2012/06/17 00:45:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Avira
[2012/06/17 00:44:54 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2012/06/17 00:44:52 | 000,137,928 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2012/06/17 00:44:52 | 000,083,392 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2012/06/17 00:44:52 | 000,036,000 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avkmgr.sys
[2012/06/17 00:44:51 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2012/06/17 00:44:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira
[2012/06/17 00:37:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\DaocTB
[2012/06/17 00:21:48 | 001,034,240 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\bcmwlhigh5.sys
[2012/06/17 00:21:47 | 000,281,104 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\wpcap.dll
[2012/06/17 00:21:47 | 000,100,880 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\Packet.dll
[2012/06/17 00:21:47 | 000,050,704 | ---- | C] (CACE Technologies, Inc.) -- C:\WINDOWS\System32\drivers\npf.sys
[2012/06/17 00:21:46 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvc5164.rra
[2012/06/17 00:21:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\NETGEAR WNA3100 Genie
[2012/06/17 00:21:46 | 000,000,000 | ---D | C] -- C:\Program Files\NETGEAR
[2012/06/17 00:09:07 | 000,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvunrm.exe
[2012/06/17 00:07:54 | 000,456,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mrxsmb.sys
[2012/06/17 00:07:53 | 000,272,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthport.sys
[2012/06/16 23:59:56 | 000,617,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comctl32.dll
[2012/06/16 23:59:48 | 000,471,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aclayers.dll
[2012/06/16 23:59:01 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndproxy.sys
[2012/06/16 23:58:24 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\t2embed.dll
[2012/06/16 23:58:24 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fontsub.dll
[2012/06/16 23:58:20 | 000,203,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rmcast.sys
[2012/06/16 23:57:52 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys
[2012/06/16 23:57:08 | 000,551,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleaut32.dll
[2012/06/16 23:56:54 | 001,172,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml3.dll
[2012/06/16 23:56:54 | 000,105,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mup.sys
[2012/06/16 23:56:52 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll
[2012/06/16 23:56:18 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asycfilt.dll
[2012/06/16 23:56:16 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe
[2012/06/16 23:56:13 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll
[2012/06/16 23:56:09 | 000,361,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip.sys
[2012/06/16 23:56:09 | 000,138,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys
[2012/06/16 23:56:08 | 000,245,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswsock.dll
[2012/06/16 23:56:08 | 000,226,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcpip6.sys
[2012/06/16 23:56:08 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsapi.dll
[2012/06/16 23:56:08 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dnsrslvr.dll
[2012/06/16 23:55:55 | 000,758,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll
[2012/06/16 23:55:52 | 002,192,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntoskrnl.exe
[2012/06/16 23:55:52 | 002,148,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlmp.exe
[2012/06/16 23:55:51 | 002,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrnlpa.exe
[2012/06/16 23:55:51 | 002,026,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntkrpamp.exe
[2012/06/16 23:55:47 | 000,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ndistapi.sys
[2012/06/16 23:55:37 | 000,590,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcrt4.dll
[2012/06/16 23:52:47 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2012/06/16 23:52:45 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2012/06/16 23:06:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Electronic Arts
[2012/06/16 23:04:31 | 000,177,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wintrust.dll
[2012/06/16 23:04:31 | 000,148,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imagehlp.dll
[2012/06/16 23:04:27 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe
[2012/06/16 23:04:20 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\netapi32.dll
[2012/06/16 23:04:17 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe
[2012/06/16 22:55:05 | 000,019,456 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraidco.dll
[2012/06/16 22:55:05 | 000,019,456 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvraiins.dll
[2012/06/16 22:54:46 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll
[2012/06/16 22:54:46 | 000,249,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\odbc32.dll
[2012/06/16 22:54:46 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll
[2012/06/16 22:54:46 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll
[2012/06/16 22:54:46 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll
[2012/06/16 22:54:46 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll
[2012/06/16 22:54:46 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb
[2012/06/16 22:54:46 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb
[2012/06/16 22:54:46 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb
[2012/06/16 22:54:46 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb
[2012/06/16 22:54:46 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb
[2012/06/16 22:54:37 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\packager.exe
[2012/06/16 22:46:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2012/06/16 22:27:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\DAoC Portal
[2012/06/16 22:27:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\DAoCPortal
[2012/06/16 22:27:04 | 000,000,000 | ---D | C] -- C:\Program Files\DAoC Portal
[2012/06/16 22:24:37 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2012/06/16 22:21:49 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012/06/16 22:15:32 | 001,372,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6.dll
[2012/06/16 22:15:32 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msxml6r.dll
[2012/06/16 22:15:32 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxml6r.dll
[2012/06/16 22:15:28 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\irbus.sys
[2012/06/16 22:15:28 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\smtpapi.dll
[2012/06/16 22:15:28 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwnh.dll
[2012/06/16 22:15:28 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsdupd.exe
[2012/06/16 22:15:26 | 001,888,992 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3duag.dll
[2012/06/16 22:15:26 | 000,870,784 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ati3d1ag.dll
[2012/06/16 22:15:26 | 000,516,768 | ---- | C] (ATI Technologies Inc. ) -- C:\WINDOWS\System32\ativvaxx.dll
[2012/06/16 22:15:26 | 000,377,984 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvaa.dll
[2012/06/16 22:15:26 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\azroles.dll
[2012/06/16 22:15:26 | 000,229,376 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2cqag.dll
[2012/06/16 22:15:26 | 000,201,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ati2dvag.dll
[2012/06/16 22:15:26 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll
[2012/06/16 22:15:26 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3cfg.dll
[2012/06/16 22:15:26 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3msm.dll
[2012/06/16 22:15:26 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dhcpqec.dll
[2012/06/16 22:15:26 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3gpclnt.dll
[2012/06/16 22:15:26 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dimsroam.dll
[2012/06/16 22:15:26 | 000,032,768 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativtmxx.dll
[2012/06/16 22:15:26 | 000,023,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativmvxx.ax
[2012/06/16 22:15:26 | 000,009,728 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\ativdaxx.ax
[2012/06/16 22:15:26 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll
[2012/06/16 22:15:25 | 000,650,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dot3ui.dll
[2012/06/16 22:15:25 | 000,184,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapp3hst.dll
[2012/06/16 22:15:25 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapphost.dll
[2012/06/16 22:15:25 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eappgnui.dll
[2012/06/16 22:15:25 | 000,086,016 | ---- | C] (Conexant) -- C:\WINDOWS\System32\mdmxsdk.dll
[2012/06/16 22:15:25 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\eapqec.dll
[2012/06/16 22:15:25 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\l2gpstore.dll
[2012/06/16 22:15:25 | 000,032,285 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\hsfcisp2.dll
[2012/06/16 22:15:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpash.dll
[2012/06/16 22:15:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdnepr.dll
[2012/06/16 22:15:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdiultn.dll
[2012/06/16 22:15:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbhc.dll
[2012/06/16 22:15:24 | 001,737,856 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\mtxparhd.dll
[2012/06/16 22:15:24 | 000,412,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\photometadatahandler.dll
[2012/06/16 22:15:24 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcex.dll
[2012/06/16 22:15:24 | 000,397,056 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\s3gnb.dll
[2012/06/16 22:15:24 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll
[2012/06/16 22:15:24 | 000,286,792 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slextspk.dll
[2012/06/16 22:15:24 | 000,193,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napmontr.dll
[2012/06/16 22:15:24 | 000,188,508 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slgen.dll
[2012/06/16 22:15:24 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\microsoft.managementconsole.dll
[2012/06/16 22:15:24 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napstat.exe
[2012/06/16 22:15:24 | 000,155,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mssha.dll
[2012/06/16 22:15:24 | 000,150,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qagent.dll
[2012/06/16 22:15:24 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcfxcommon.dll
[2012/06/16 22:15:24 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msshavmsg.dll
[2012/06/16 22:15:24 | 000,073,832 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slcoinst.dll
[2012/06/16 22:15:24 | 000,073,796 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slserv.exe
[2012/06/16 22:15:24 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qcliprov.dll
[2012/06/16 22:15:24 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll
[2012/06/16 22:15:24 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmcperf.exe
[2012/06/16 22:15:24 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\slrundll.exe
[2012/06/16 22:15:24 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\setupn.exe
[2012/06/16 22:15:24 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\napipsec.dll
[2012/06/16 22:15:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\vidcap.ax
[2012/06/16 22:15:24 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\verclsid.exe
[2012/06/16 22:15:23 | 000,346,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\windowscodecsext.dll
[2012/06/16 22:15:23 | 000,276,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmphoto.dll
[2012/06/16 22:15:23 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wlanapi.dll
[2012/06/16 22:15:23 | 000,032,866 | ---- | C] (Smart Link) -- C:\WINDOWS\slrundll.exe
[2012/06/16 22:15:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2012/06/16 22:15:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\scripting
[2012/06/16 22:15:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012/06/16 22:15:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en
[2012/06/16 22:15:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012/06/16 22:14:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2012/06/16 22:13:44 | 000,701,440 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtag.sys
[2012/06/16 22:13:44 | 000,327,040 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati2mtaa.sys
[2012/06/16 22:13:44 | 000,104,960 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinrvxx.sys
[2012/06/16 22:13:44 | 000,073,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atintuxx.sys
[2012/06/16 22:13:44 | 000,063,663 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1rvxx.sys
[2012/06/16 22:13:44 | 000,063,488 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxsxx.sys
[2012/06/16 22:13:44 | 000,057,856 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinbtxx.sys
[2012/06/16 22:13:44 | 000,056,623 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1btxx.sys
[2012/06/16 22:13:44 | 000,052,224 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinraxx.sys
[2012/06/16 22:13:44 | 000,036,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bthprint.sys
[2012/06/16 22:13:44 | 000,036,463 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1tuxx.sys
[2012/06/16 22:13:44 | 000,034,735 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xsxx.sys
[2012/06/16 22:13:44 | 000,031,744 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinxbxx.sys
[2012/06/16 22:13:44 | 000,030,671 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1raxx.sys
[2012/06/16 22:13:44 | 000,029,455 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1xbxx.sys
[2012/06/16 22:13:44 | 000,028,672 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinsnxx.sys
[2012/06/16 22:13:44 | 000,026,367 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1snxx.sys
[2012/06/16 22:13:44 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv04nt5.dll
[2012/06/16 22:13:44 | 000,021,343 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1ttxx.sys
[2012/06/16 22:13:44 | 000,021,183 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv01nt5.dll
[2012/06/16 22:13:44 | 000,017,279 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv10nt5.dll
[2012/06/16 22:13:44 | 000,015,423 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\ch7xxnt5.dll
[2012/06/16 22:13:44 | 000,014,336 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinpdxx.sys
[2012/06/16 22:13:44 | 000,014,143 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv06nt5.dll
[2012/06/16 22:13:44 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinttxx.sys
[2012/06/16 22:13:44 | 000,013,824 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\atinmdxx.sys
[2012/06/16 22:13:44 | 000,012,047 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1pdxx.sys
[2012/06/16 22:13:44 | 000,011,615 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\drivers\ati1mdxx.sys
[2012/06/16 22:13:44 | 000,011,359 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\atv02nt5.dll
[2012/06/16 22:13:44 | 000,004,255 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv01nt5.dll
[2012/06/16 22:13:44 | 000,003,967 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv02nt5.dll
[2012/06/16 22:13:44 | 000,003,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv11nt5.dll
[2012/06/16 22:13:44 | 000,003,711 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv09nt5.dll
[2012/06/16 22:13:44 | 000,003,647 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv07nt5.dll
[2012/06/16 22:13:44 | 000,003,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv05nt5.dll
[2012/06/16 22:13:44 | 000,003,135 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\adv08nt5.dll
[2012/06/16 22:13:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012/06/16 22:13:43 | 001,309,184 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlstrm.sys
[2012/06/16 22:13:43 | 000,452,736 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\drivers\mtxparhm.sys
[2012/06/16 22:13:43 | 000,404,990 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slntamr.sys
[2012/06/16 22:13:43 | 000,180,360 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\ntmtlfax.sys
[2012/06/16 22:13:43 | 000,166,912 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\drivers\s3gnbm.sys
[2012/06/16 22:13:43 | 000,129,535 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnt7554.sys
[2012/06/16 22:13:43 | 000,126,686 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\mtlmnt5.sys
[2012/06/16 22:13:43 | 000,095,424 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slnthal.sys
[2012/06/16 22:13:43 | 000,030,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\rndismpx.sys
[2012/06/16 22:13:43 | 000,013,776 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\recagent.sys
[2012/06/16 22:13:43 | 000,013,240 | ---- | C] (Smart Link) -- C:\WINDOWS\System32\drivers\slwdmsup.sys
[2012/06/16 22:13:43 | 000,012,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mutohpen.sys
[2012/06/16 22:13:43 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\smbali.sys
[2012/06/16 22:13:43 | 000,003,901 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\siint5.dll
[2012/06/16 22:13:42 | 000,025,471 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv10nt.sys
[2012/06/16 22:13:42 | 000,022,271 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\watv06nt.sys
[2012/06/16 22:13:42 | 000,011,935 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv11nt.sys
[2012/06/16 22:13:42 | 000,011,871 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv09nt.sys
[2012/06/16 22:13:42 | 000,011,807 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv07nt.sys
[2012/06/16 22:13:42 | 000,011,325 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\vchnt5.dll
[2012/06/16 22:13:42 | 000,011,295 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\drivers\wadv08nt.sys
[2012/06/16 22:13:12 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll
[2012/06/16 22:13:05 | 000,026,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spupdsvc.exe
[2012/06/16 22:12:09 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012/06/16 21:56:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\My Documents\Downloads
[2012/06/16 21:52:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Mozilla
[2012/06/16 21:52:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Mozilla
[2012/06/16 21:52:05 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012/06/16 21:52:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Mozilla
[2012/06/16 21:52:02 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012/06/16 21:29:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
[2012/06/16 21:29:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\NVIDIA
[2012/06/16 21:29:10 | 000,143,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2012/06/16 21:29:08 | 015,504,192 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2012/06/16 21:29:08 | 000,108,352 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2012/06/16 21:29:08 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2012/06/16 21:28:49 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2012/06/16 21:28:32 | 018,771,968 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2012/06/16 21:28:32 | 006,012,928 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2012/06/16 21:28:32 | 002,530,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvid.dll
[2012/06/16 21:28:32 | 002,445,120 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2012/06/16 21:28:32 | 001,000,768 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2012/06/16 21:28:32 | 000,883,008 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[2012/06/16 21:28:30 | 017,543,168 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2012/06/16 21:28:30 | 014,014,656 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_mini.sys
[2012/06/16 21:28:30 | 004,373,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nv4_disp.dll
[2012/06/16 21:28:30 | 004,373,248 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv4_disp.dll
[2012/06/16 21:28:30 | 002,359,808 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2012/06/16 21:27:56 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012/06/16 21:27:35 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012/06/16 21:27:06 | 100,834,120 | ---- | C] (NVIDIA Corporation) -- C:\Documents and Settings\Administrator\Desktop\301.42-desktop-winxp-32bit-english-whql.exe
[2012/06/16 21:15:57 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\UserData
[2012/06/16 19:16:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\Minidump
[2012/06/15 18:29:36 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvc2b66.rra
[2012/06/15 17:48:02 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvc1e30.rra
[2012/06/14 19:33:15 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvc75ae.rra
[2012/06/13 19:13:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2012/06/13 18:33:12 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFC71.DLL
[2012/06/13 18:33:12 | 000,413,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvc910c.rra
[2012/06/13 18:33:12 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ATL71.DLL
[2012/06/13 17:51:16 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012/06/13 17:49:31 | 000,090,112 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\Updreg.EXE
[2012/06/13 17:49:31 | 000,053,552 | ---- | C] (Creative® Technology Ltd.) -- C:\WINDOWS\CTCCW.DLL
[2012/06/13 17:49:31 | 000,024,976 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\CTRES.DLL
[2012/06/13 17:49:30 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFCANS32.DLL
[2012/06/13 17:49:30 | 000,108,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MFCUIA32.DLL
[2012/06/13 17:49:30 | 000,084,992 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\SFCVRT32.DLL
[2012/06/13 17:49:30 | 000,082,432 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\CTWFLT32.DLL
[2012/06/13 17:49:30 | 000,054,784 | ---- | C] (Blue Sky Software Corporation.) -- C:\WINDOWS\System32\INETWH32.DLL
[2012/06/13 17:49:30 | 000,026,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\CTL3D.DLL
[2012/06/13 17:49:28 | 000,147,456 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\USBAudio.cpl
[2012/06/13 17:49:28 | 000,032,768 | ---- | C] (Creative Technology Ltd) -- C:\WINDOWS\System32\USBAudio.CRL
[2012/06/13 17:49:21 | 000,020,480 | ---- | C] (Creative Technology Limited) -- C:\WINDOWS\INRES.DLL
[2012/06/13 17:49:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Data
[2012/06/13 17:49:20 | 001,152,916 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\drivers\sbext.sys
[2012/06/13 17:49:17 | 000,090,112 | ---- | C] (Creative Labs) -- C:\WINDOWS\System32\OpenAL32.dll
[2012/06/13 17:48:10 | 000,006,752 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\PFMODNT.SYS
[2012/06/13 17:48:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Creative
[2012/06/13 17:46:11 | 000,041,984 | ---- | C] (Creative Technology Ltd ) -- C:\WINDOWS\CTRegRun.exe
[2012/06/13 17:46:11 | 000,000,000 | ---D | C] -- C:\Program Files\Creative
[2012/06/13 17:36:08 | 000,092,800 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvatabus.sys
[2012/06/13 17:36:02 | 000,300,032 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\idecoi.dll
[2012/06/13 17:36:02 | 000,092,800 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\drivers\nvata.sys
[2012/06/13 17:35:18 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager
[2012/06/13 17:35:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Realtek Sound Manager
[2012/06/13 17:35:16 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack
[2012/06/13 17:35:12 | 002,304,320 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS
[2012/06/13 17:35:12 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
[2012/06/13 17:35:09 | 009,524,224 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.EXE
[2012/06/13 17:35:00 | 017,584,128 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL
[2012/06/13 17:35:00 | 000,208,896 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe
[2012/06/13 17:35:00 | 000,139,264 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcrmv.exe
[2012/06/13 17:34:32 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2012/06/13 17:34:29 | 000,036,352 | ---- | C] (Advanced Micro Devices) -- C:\WINDOWS\System32\drivers\AmdK8.sys
[2012/06/13 17:34:29 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012/06/13 17:34:29 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2012/06/13 17:32:45 | 000,200,704 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\fdco1ins.dll
[2012/06/13 17:32:43 | 000,009,216 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\bdco1ins.dll
[2012/06/13 17:32:41 | 000,446,464 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\NVUNINST.EXE
[2012/06/13 17:32:41 | 000,176,128 | R--- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvusmb.exe
[2012/06/13 17:32:22 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012/06/12 20:04:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Application Data\Identities
[2012/06/12 20:04:24 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2012/06/12 20:04:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Pictures
[2012/06/12 20:04:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Music
[2012/06/12 20:04:20 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Administrator\Application Data\Microsoft
[2012/06/12 20:04:20 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\SendTo
[2012/06/12 20:04:20 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Recent
[2012/06/12 20:04:20 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Administrator\Application Data
[2012/06/12 20:04:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Startup
[2012/06/12 20:04:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu
[2012/06/12 20:04:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents
[2012/06/12 20:04:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Favorites
[2012/06/12 20:04:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Accessories
[2012/06/12 20:04:20 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Administrator\Cookies
[2012/06/12 20:04:20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Templates
[2012/06/12 20:04:20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\PrintHood
[2012/06/12 20:04:20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\NetHood
[2012/06/12 20:04:20 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Administrator\Local Settings
[2012/06/12 20:04:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft
[2012/06/12 20:04:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Administrator\Desktop
[2012/06/12 20:04:19 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2012/06/12 20:04:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2012/06/12 20:04:15 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2012/06/12 20:04:14 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Application Data\Microsoft
[2012/06/12 20:04:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Local Settings\Application Data\Microsoft
[2012/06/12 20:03:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Local Settings\Application Data\Microsoft
[2012/06/12 20:03:33 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Application Data\Microsoft
[2012/06/12 20:02:33 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll
[2012/06/12 20:02:30 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2012/06/12 20:02:30 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2012/06/12 20:02:29 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2012/06/12 20:02:29 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2012/06/12 20:02:29 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2012/06/12 20:02:29 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2012/06/12 20:02:28 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2012/06/12 20:02:28 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2012/06/12 20:02:28 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2012/06/12 20:02:27 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2012/06/12 20:02:27 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2012/06/12 20:02:27 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2012/06/12 20:02:27 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2012/06/12 20:02:26 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2012/06/12 20:02:26 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2012/06/12 20:02:25 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2012/06/12 20:02:25 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2012/06/12 20:02:25 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2012/06/12 20:02:24 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2012/06/12 20:02:23 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2012/06/12 20:02:23 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2012/06/12 20:02:23 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2012/06/12 20:02:22 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2012/06/12 20:02:21 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2012/06/12 20:02:21 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2012/06/12 20:02:21 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2012/06/12 20:02:20 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2012/06/12 20:02:19 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2012/06/12 20:02:18 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2012/06/12 20:02:18 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2012/06/12 20:02:17 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2012/06/12 20:02:16 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2012/06/12 20:02:16 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2012/06/12 20:02:16 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2012/06/12 20:02:16 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2012/06/12 20:02:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2012/06/12 20:02:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2012/06/12 20:02:15 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2012/06/12 20:02:15 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2012/06/12 20:02:15 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2012/06/12 20:02:15 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2012/06/12 20:02:15 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2012/06/12 20:02:15 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2012/06/12 20:02:15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2012/06/12 20:02:15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2012/06/12 20:02:15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2012/06/12 20:02:15 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2012/06/12 20:02:15 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2012/06/12 20:02:14 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2012/06/12 20:02:10 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2012/06/12 20:02:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2012/06/12 20:02:09 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2012/06/12 20:02:09 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2012/06/12 20:02:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2012/06/12 20:02:08 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2012/06/12 20:02:07 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2012/06/12 20:02:06 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2012/06/12 20:02:06 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2012/06/12 20:02:06 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2012/06/12 20:02:04 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2012/06/12 20:02:04 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2012/06/12 20:02:04 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2012/06/12 20:02:04 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2012/06/12 20:02:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2012/06/12 20:02:04 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2012/06/12 20:02:03 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2012/06/12 20:02:03 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2012/06/12 20:02:03 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2012/06/12 20:02:03 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2012/06/12 20:02:03 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2012/06/12 20:02:02 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2012/06/12 20:02:02 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2012/06/12 20:02:02 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2012/06/12 20:02:01 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2012/06/12 20:02:00 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll
[2012/06/12 20:02:00 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2012/06/12 20:01:58 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2012/06/12 20:01:56 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2012/06/12 20:01:56 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2012/06/12 20:01:51 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2012/06/12 20:01:51 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2012/06/12 20:01:50 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2012/06/12 20:01:50 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2012/06/12 20:01:49 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2012/06/12 20:01:48 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2012/06/12 20:01:48 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2012/06/12 20:01:47 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2012/06/12 20:01:47 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2012/06/12 20:01:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2012/06/12 20:01:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2012/06/12 20:01:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2012/06/12 20:01:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2012/06/12 20:01:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2012/06/12 20:01:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2012/06/12 20:01:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2012/06/12 20:01:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2012/06/12 20:01:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2012/06/12 20:01:46 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2012/06/12 20:01:46 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2012/06/12 20:01:46 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2012/06/12 20:01:45 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2012/06/12 20:01:45 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2012/06/12 20:01:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2012/06/12 20:01:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2012/06/12 20:01:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2012/06/12 20:01:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2012/06/12 20:01:45 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2012/06/12 20:01:45 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2012/06/12 20:01:45 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2012/06/12 20:01:44 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2012/06/12 20:01:44 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2012/06/12 20:01:43 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2012/06/12 20:01:43 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2012/06/12 20:01:42 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2012/06/12 20:01:42 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2012/06/12 20:01:42 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2012/06/12 20:01:42 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2012/06/12 20:01:42 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2012/06/12 20:01:42 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2012/06/12 20:01:42 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2012/06/12 20:01:42 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2012/06/12 20:01:41 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2012/06/12 20:01:41 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2012/06/12 20:01:41 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2012/06/12 20:01:41 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2012/06/12 20:01:41 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2012/06/12 20:01:41 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2012/06/12 20:01:41 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2012/06/12 20:01:41 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2012/06/12 20:01:40 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2012/06/12 20:01:40 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2012/06/12 20:01:40 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2012/06/12 20:01:40 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2012/06/12 20:01:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2012/06/12 20:01:40 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2012/06/12 20:01:40 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2012/06/12 20:01:40 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2012/06/12 20:01:39 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2012/06/12 20:01:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2012/06/12 20:01:36 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2012/06/12 20:01:30 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2012/06/12 20:01:28 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2012/06/12 20:01:26 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2012/06/12 20:01:26 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2012/06/12 20:01:26 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2012/06/12 20:01:25 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2012/06/12 20:01:25 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2012/06/12 20:01:25 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2012/06/12 20:01:24 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2012/06/12 20:01:23 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2012/06/12 20:01:23 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2012/06/12 20:01:23 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2012/06/12 20:01:22 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2012/06/12 20:01:22 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2012/06/12 20:01:22 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2012/06/12 20:01:18 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2012/06/12 20:01:17 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2012/06/12 20:01:17 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2012/06/12 20:01:17 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2012/06/12 20:01:17 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2012/06/12 20:01:17 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2012/06/12 20:01:15 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2012/06/12 20:01:15 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2012/06/12 20:01:15 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2012/06/12 20:01:14 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2012/06/12 20:01:14 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2012/06/12 20:01:14 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2012/06/12 20:01:14 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2012/06/12 20:01:13 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2012/06/12 20:01:13 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2012/06/12 20:01:13 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2012/06/12 20:01:13 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2012/06/12 20:01:13 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2012/06/12 20:01:12 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2012/06/12 20:01:12 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2012/06/12 20:01:12 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2012/06/12 20:01:07 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2012/06/12 20:01:06 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2012/06/12 20:01:05 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2012/06/12 20:01:05 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2012/06/12 20:01:04 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2012/06/12 20:01:03 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2012/06/12 20:01:03 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2012/06/12 20:01:03 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2012/06/12 20:01:01 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll
[2012/06/12 20:01:01 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll
[2012/06/12 20:01:00 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe
[2012/06/12 20:00:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2012/06/12 20:00:54 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2012/06/12 20:00:54 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2012/06/12 20:00:53 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2012/06/12 20:00:53 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2012/06/12 20:00:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2012/06/12 20:00:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2012/06/12 20:00:50 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2012/06/12 20:00:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2012/06/12 20:00:43 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 26th, 2012, 10:14 am

[2012/06/12 20:00:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\microsoft.net
[2012/06/12 20:00:43 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2012/06/12 20:00:23 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Administrative Tools
[2012/06/12 19:59:36 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll
[2012/06/12 19:59:16 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2012/06/12 19:59:08 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2012/06/12 19:59:08 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2012/06/12 19:58:59 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2012/06/12 19:58:55 | 000,000,000 | ---D | C] -- C:\Program Files\Online Services
[2012/06/12 19:58:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2012/06/12 19:58:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2012/06/12 19:55:22 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe
[2012/06/12 19:55:22 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll
[2012/06/12 19:55:22 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll
[2012/06/12 19:55:17 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe
[2012/06/12 19:55:17 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll
[2012/06/12 19:55:17 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll
[2012/06/12 19:53:51 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe
[2012/06/12 19:53:49 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll
[2012/06/12 19:53:49 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll
[2012/06/12 19:53:47 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe
[2012/06/12 19:53:46 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe
[2012/06/12 19:53:46 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe
[2012/06/12 19:53:42 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll
[2012/06/12 19:53:42 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll
[2012/06/12 19:53:39 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2012/06/12 19:53:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll
[2012/06/12 19:53:17 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll
[2012/06/12 19:53:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2012/06/12 19:53:15 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll
[2012/06/12 19:53:04 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe
[2012/06/12 19:53:04 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll
[2012/06/12 19:53:04 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll
[2012/06/12 19:53:04 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2012/06/12 19:53:03 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll
[2012/06/12 19:52:53 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll
[2012/06/12 19:52:53 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012/06/12 19:52:46 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx
[2012/06/12 19:52:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2012/06/12 19:52:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2012/06/12 19:52:24 | 000,819,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe
[2012/06/12 19:52:24 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll
[2012/06/12 19:52:22 | 000,991,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe
[2012/06/12 19:52:22 | 000,356,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll
[2012/06/12 19:52:20 | 000,073,728 | --S- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe
[2012/06/12 19:52:18 | 000,329,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2012/06/12 19:52:18 | 000,329,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2012/06/12 19:52:18 | 000,210,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2012/06/12 19:52:18 | 000,183,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll
[2012/06/12 19:52:18 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2012/06/12 19:52:17 | 001,933,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2012/06/12 19:52:17 | 000,219,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2012/06/12 19:52:17 | 000,165,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe
[2012/06/12 19:52:17 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2012/06/12 19:52:17 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2012/06/12 19:52:16 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2012/06/12 19:52:16 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2012/06/12 19:52:16 | 000,053,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2012/06/12 19:52:08 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll
[2012/06/12 19:52:08 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll
[2012/06/12 19:52:08 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll
[2012/06/12 19:51:02 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2012/06/12 19:50:27 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll
[2012/06/12 19:50:27 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll
[2012/06/12 19:50:27 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll
[2012/06/12 19:50:27 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll
[2012/06/12 19:48:43 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltmc.exe
[2012/06/12 19:48:37 | 000,239,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll
[2012/06/12 19:48:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2012/06/12 19:48:35 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll
[2012/06/12 19:48:34 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll
[2012/06/12 19:48:34 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll
[2012/06/12 19:48:34 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll
[2012/06/12 19:48:33 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll
[2012/06/12 19:48:07 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2012/06/12 19:48:04 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll
[2012/06/12 19:47:53 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll
[2012/06/12 19:47:51 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll
[2012/06/12 19:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2012/06/12 19:46:33 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe
[2012/06/12 19:46:26 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll
[2012/06/12 19:46:26 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll
[2012/06/12 19:46:25 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll
[2012/06/12 19:46:25 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll
[2012/06/12 19:44:56 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2012/06/12 19:28:09 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2012/06/12 19:28:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Pictures
[2012/06/12 19:28:08 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Music
[2012/06/12 19:21:00 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2012/06/12 19:20:59 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll
[2012/06/12 19:20:59 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll
[2012/06/12 19:20:59 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll
[2012/06/12 19:20:59 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll
[2012/06/12 19:20:59 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe
[2012/06/12 19:20:59 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe
[2012/06/12 19:20:58 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll
[2012/06/12 19:20:58 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll
[2012/06/12 19:20:58 | 000,780,885 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll
[2012/06/12 19:20:58 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll
[2012/06/12 19:20:58 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll
[2012/06/12 19:20:58 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe
[2012/06/12 19:20:58 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe
[2012/06/12 19:20:58 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe
[2012/06/12 19:20:58 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll
[2012/06/12 19:20:58 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll
[2012/06/12 19:20:58 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll
[2012/06/12 19:20:58 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll
[2012/06/12 19:20:58 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll
[2012/06/12 19:20:57 | 001,039,955 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll
[2012/06/12 19:20:57 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll
[2012/06/12 19:20:57 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll
[2012/06/12 19:20:57 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe
[2012/06/12 19:20:57 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll
[2012/06/12 19:20:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe
[2012/06/12 19:20:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe
[2012/06/12 19:20:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2012/06/12 19:20:49 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll
[2012/06/12 19:20:49 | 000,227,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll
[2012/06/12 19:20:49 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe
[2012/06/12 19:20:49 | 000,138,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe
[2012/06/12 19:20:49 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll
[2012/06/12 19:20:49 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll
[2012/06/12 19:20:49 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll
[2012/06/12 19:20:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll
[2012/06/12 19:20:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll
[2012/06/12 19:20:49 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll
[2012/06/12 19:20:48 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe
[2012/06/12 19:20:48 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe
[2012/06/12 19:20:43 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll
[2012/06/12 19:20:43 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll
[2012/06/12 19:20:43 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe
[2012/06/12 19:20:43 | 000,114,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe
[2012/06/12 19:20:43 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe
[2012/06/12 19:20:43 | 000,080,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe
[2012/06/12 19:20:42 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe
[2012/06/12 19:20:42 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe
[2012/06/12 19:20:42 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe
[2012/06/12 19:20:42 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe
[2012/06/12 19:20:42 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe
[2012/06/12 19:20:42 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe
[2012/06/12 19:20:42 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe
[2012/06/12 19:20:42 | 000,055,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe
[2012/06/12 19:20:42 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe
[2012/06/12 19:20:42 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe
[2012/06/12 19:20:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe
[2012/06/12 19:20:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe
[2012/06/12 19:20:42 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe
[2012/06/12 19:20:42 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe
[2012/06/12 19:20:41 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe
[2012/06/12 19:20:41 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe
[2012/06/12 19:20:41 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe
[2012/06/12 19:20:41 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe
[2012/06/12 19:20:41 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe
[2012/06/12 19:20:41 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe
[2012/06/12 19:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe
[2012/06/12 19:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe
[2012/06/12 19:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe
[2012/06/12 19:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe
[2012/06/12 19:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe
[2012/06/12 19:20:41 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe
[2012/06/12 19:20:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll
[2012/06/12 19:20:41 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll
[2012/06/12 19:20:40 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe
[2012/06/12 19:20:40 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe
[2012/06/12 19:20:40 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe
[2012/06/12 19:20:40 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe
[2012/06/12 19:20:40 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll
[2012/06/12 19:20:40 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll
[2012/06/12 19:20:40 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe
[2012/06/12 19:20:40 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe
[2012/06/12 19:20:39 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll
[2012/06/12 19:20:39 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll
[2012/06/12 19:20:39 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll
[2012/06/12 19:20:39 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll
[2012/06/12 19:20:39 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll
[2012/06/12 19:20:39 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll
[2012/06/12 19:20:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb
[2012/06/12 19:20:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe
[2012/06/12 19:20:39 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll
[2012/06/12 19:20:38 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll
[2012/06/12 19:20:36 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll
[2012/06/12 19:20:36 | 000,075,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll
[2012/06/12 19:20:36 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll
[2012/06/12 19:20:36 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb
[2012/06/12 19:20:36 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll
[2012/06/12 19:20:36 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll
[2012/06/12 19:20:36 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb
[2012/06/12 19:20:36 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe
[2012/06/12 19:20:36 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll
[2012/06/12 19:20:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe
[2012/06/12 19:20:36 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll
[2012/06/12 19:20:35 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll
[2012/06/12 19:20:35 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll
[2012/06/12 19:20:35 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll
[2012/06/12 19:20:35 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll
[2012/06/12 19:20:35 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll
[2012/06/12 19:20:11 | 000,000,000 | ---D | C] -- C:\Program Files\MSN
[2012/06/12 19:20:09 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe
[2012/06/12 19:20:09 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl
[2012/06/12 19:20:08 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe
[2012/06/12 19:20:02 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe
[2012/06/12 19:20:02 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe
[2012/06/12 19:20:01 | 000,347,136 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll
[2012/06/12 19:20:00 | 000,343,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe
[2012/06/12 19:20:00 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe
[2012/06/12 19:20:00 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2012/06/12 19:19:59 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe
[2012/06/12 19:19:38 | 000,093,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll
[2012/06/12 19:19:37 | 002,066,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstscax.dll
[2012/06/12 19:19:37 | 000,407,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstsc.exe
[2012/06/12 19:19:36 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll
[2012/06/12 19:19:36 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe
[2012/06/12 19:19:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe
[2012/06/12 19:19:36 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe
[2012/06/12 19:19:36 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe
[2012/06/12 19:19:25 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll
[2012/06/12 19:19:25 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe
[2012/06/12 19:19:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll
[2012/06/12 19:19:25 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe
[2012/06/12 19:19:24 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll
[2012/06/12 19:19:24 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll
[2012/06/12 19:19:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2012/06/12 19:19:23 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll
[2012/06/12 19:19:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll
[2012/06/12 19:19:22 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll
[2012/06/12 19:19:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll
[2012/06/12 19:19:19 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll
[2012/06/12 19:19:19 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll
[2012/06/12 19:19:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2012/06/12 19:19:16 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll
[2012/06/12 19:17:46 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll
[2012/06/12 19:17:46 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll
[2012/06/12 19:17:46 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll
[2012/06/12 19:17:45 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll
[2012/06/12 19:17:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents\My Videos
[2012/06/12 19:17:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
[2012/06/07 00:25:18 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys
[2012/06/07 00:25:18 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax
[2012/06/07 00:25:18 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys
[2012/06/07 00:25:18 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll
[2012/06/07 00:24:07 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll
[2012/06/07 00:23:07 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2012/06/07 00:23:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2012/06/07 00:23:05 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll
[2012/06/07 00:23:05 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll
[2012/06/07 00:23:01 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll
[2012/06/07 00:22:59 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe
[2012/06/07 00:22:59 | 000,000,000 | R--D | C] -- C:\Program Files
[2012/06/07 00:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2012/06/07 00:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2012/06/07 00:22:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2012/06/07 00:22:55 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll
[2012/06/07 00:22:55 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll
[2012/06/07 00:22:55 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll
[2012/06/07 00:22:55 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll
[2012/06/07 00:22:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll
[2012/06/07 00:22:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll
[2012/06/07 00:22:51 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll
[2012/06/07 00:22:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll
[2012/06/07 00:22:49 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll
[2012/06/07 00:22:49 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll
[2012/06/07 00:22:49 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll
[2012/06/07 00:22:49 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll
[2012/06/07 00:22:49 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll
[2012/06/07 00:22:49 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll
[2012/06/07 00:22:49 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll
[2012/06/07 00:22:49 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll
[2012/06/07 00:22:49 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll
[2012/06/07 00:22:49 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll
[2012/06/07 00:22:49 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll
[2012/06/07 00:22:49 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll
[2012/06/07 00:22:49 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll
[2012/06/07 00:22:49 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll
[2012/06/07 00:22:47 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll
[2012/06/07 00:22:47 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll
[2012/06/07 00:22:47 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll
[2012/06/07 00:22:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll
[2012/06/07 00:22:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll
[2012/06/07 00:22:47 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll
[2012/06/07 00:22:47 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll
[2012/06/07 00:22:47 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll
[2012/06/07 00:22:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll
[2012/06/07 00:22:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll
[2012/06/07 00:22:44 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll
[2012/06/07 00:22:44 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll
[2012/06/07 00:22:44 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll
[2012/06/07 00:22:44 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll
[2012/06/07 00:22:44 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll
[2012/06/07 00:22:44 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdpl1.dll
[2012/06/07 00:22:44 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll
[2012/06/07 00:22:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll
[2012/06/07 00:22:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdpl1.dll
[2012/06/07 00:22:44 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll
[2012/06/07 00:22:41 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll
[2012/06/07 00:22:41 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll
[2012/06/07 00:22:41 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll
[2012/06/07 00:22:41 | 000,085,020 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll
[2012/06/07 00:22:41 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2012/06/07 00:22:41 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2012/06/07 00:22:41 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2012/06/07 00:22:41 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2012/06/07 00:22:40 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll
[2012/06/07 00:22:40 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll
[2012/06/07 00:22:40 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL
[2012/06/07 00:22:40 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL
[2012/06/07 00:22:40 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL
[2012/06/07 00:22:40 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV
[2012/06/07 00:22:40 | 000,009,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL
[2012/06/07 00:22:40 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL
[2012/06/07 00:22:40 | 000,004,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV
[2012/06/07 00:22:40 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV
[2012/06/07 00:22:40 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV
[2012/06/07 00:22:40 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV
[2012/06/07 00:22:39 | 000,126,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL
[2012/06/07 00:22:39 | 000,073,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV
[2012/06/07 00:22:39 | 000,032,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL
[2012/06/07 00:22:39 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV
[2012/06/07 00:22:39 | 000,025,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV
[2012/06/07 00:22:39 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL
[2012/06/07 00:22:39 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV
[2012/06/07 00:22:39 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV
[2012/06/07 00:22:39 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK
[2012/06/07 00:22:38 | 000,109,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL
[2012/06/07 00:22:38 | 000,069,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL
[2012/06/07 00:22:38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE
[2012/06/07 00:22:38 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe
[2012/06/07 00:22:37 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\winspool.drv
[2012/06/07 00:22:37 | 000,068,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL
[2012/06/07 00:22:37 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll
[2012/06/07 00:22:36 | 000,074,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll
[2012/06/07 00:22:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup
[2012/06/07 00:22:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Start Menu
[2012/06/07 00:22:29 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Documents
[2012/06/07 00:22:29 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Templates
[2012/06/07 00:22:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Favorites
[2012/06/07 00:22:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Desktop
[2012/06/07 00:22:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2012/06/07 00:22:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2012/06/07 00:22:10 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft
[2012/06/07 00:22:10 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Application Data
[2012/06/07 00:21:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012/06/07 00:21:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2012/06/07 00:14:58 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2012/06/07 00:14:58 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2012/06/07 00:14:58 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\inf
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2012/06/07 00:14:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2012/05/31 06:22:09 | 000,599,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/06/25 17:35:38 | 002,128,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Administrator\Desktop\tdsskiller.exe
[2012/06/25 17:35:12 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012/06/25 17:27:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/06/23 11:47:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/06/22 20:27:53 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/06/22 20:27:52 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/06/21 19:02:33 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/06/18 20:29:29 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012/06/18 20:28:41 | 000,412,006 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/06/18 20:28:41 | 000,061,586 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/06/18 18:01:48 | 000,095,072 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/06/17 12:29:02 | 000,000,815 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/06/17 00:49:20 | 000,003,584 | ---- | M] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/17 00:21:46 | 000,000,595 | ---- | M] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk
[2012/06/16 22:26:02 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2012/06/16 22:22:14 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012/06/16 22:13:36 | 000,250,048 | RHS- | M] () -- C:\ntldr
[2012/06/16 21:52:05 | 000,000,742 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/06/16 21:28:49 | 001,074,636 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/06/16 21:28:49 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/06/16 21:28:45 | 001,074,636 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/06/16 21:28:45 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012/06/16 21:27:34 | 100,834,120 | ---- | M] (NVIDIA Corporation) -- C:\Documents and Settings\Administrator\Desktop\301.42-desktop-winxp-32bit-english-whql.exe
[2012/06/13 17:49:31 | 000,000,000 | ---- | M] () -- C:\WINDOWS\SBWIN.INI
[2012/06/12 20:04:31 | 000,000,079 | ---- | M] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2012/06/12 20:03:36 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2012/06/12 20:02:48 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012/06/12 20:00:17 | 000,002,577 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012/06/12 20:00:17 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012/06/12 20:00:17 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012/06/12 20:00:17 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012/06/12 20:00:17 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012/06/12 20:00:03 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012/06/12 20:00:03 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012/06/12 19:59:36 | 000,004,161 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012/06/12 19:17:41 | 000,000,209 | -HS- | M] () -- C:\boot.ini
[2012/06/02 15:19:44 | 000,022,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui
[2012/06/02 15:19:38 | 000,329,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll
[2012/06/02 15:19:38 | 000,329,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll
[2012/06/02 15:19:38 | 000,219,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl
[2012/06/02 15:19:38 | 000,210,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll
[2012/06/02 15:19:34 | 000,097,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdm.dll
[2012/06/02 15:19:34 | 000,097,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll
[2012/06/02 15:19:34 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe
[2012/06/02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll
[2012/06/02 15:19:34 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll
[2012/06/02 15:19:34 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll
[2012/06/02 15:19:34 | 000,015,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui
[2012/06/02 15:19:24 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll
[2012/06/02 15:19:24 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll
[2012/06/02 15:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll
[2012/05/31 06:22:09 | 000,599,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/06/17 01:26:52 | 000,000,830 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/06/17 00:49:20 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/17 00:21:47 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2012/06/17 00:21:46 | 000,000,595 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk
[2012/06/17 00:09:07 | 000,006,045 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2012/06/17 00:09:07 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2012/06/16 23:55:46 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/06/16 23:55:46 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012/06/16 22:26:11 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2012/06/16 22:13:44 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2012/06/16 22:13:44 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2012/06/16 22:13:43 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2012/06/16 21:52:05 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Mozilla Firefox.lnk
[2012/06/16 21:52:05 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk
[2012/06/16 21:28:45 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/06/16 21:28:45 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/06/16 21:28:45 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/06/16 21:28:45 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012/06/16 21:28:32 | 002,807,708 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012/06/16 21:28:32 | 000,010,264 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2012/06/15 18:25:07 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Windows Media Player.lnk
[2012/06/15 18:25:06 | 000,000,815 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Internet Explorer Browser.lnk
[2012/06/15 18:25:06 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Internet Explorer.lnk
[2012/06/15 18:25:06 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Outlook Express.lnk
[2012/06/13 17:49:31 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
[2012/06/13 17:49:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2012/06/13 17:49:29 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\SFMAN.DAT
[2012/06/13 17:49:18 | 002,259,070 | ---- | C] () -- C:\WINDOWS\System32\drivers\eapci2m.ecw
[2012/06/13 17:49:18 | 000,059,392 | ---- | C] ( ) -- C:\WINDOWS\System32\dllcache\a3d.dll
[2012/06/13 17:49:18 | 000,059,392 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[2012/06/13 17:49:18 | 000,047,897 | ---- | C] () -- C:\WINDOWS\System32\AudCtrl.dll
[2012/06/13 17:49:17 | 000,004,501 | ---- | C] () -- C:\WINDOWS\System32\EXTIGY.INI
[2012/06/13 17:35:16 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2012/06/13 17:35:12 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2012/06/13 17:35:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012/06/13 17:35:09 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV
[2012/06/13 17:32:41 | 000,001,231 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2012/06/12 20:04:31 | 000,000,079 | ---- | C] () -- C:\Documents and Settings\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Show Desktop.scf
[2012/06/12 20:04:20 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Administrator\Start Menu\Programs\Remote Assistance.lnk
[2012/06/12 20:03:36 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2012/06/12 20:02:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012/06/12 20:02:03 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2012/06/12 20:01:48 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2012/06/12 20:01:42 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2012/06/12 20:01:41 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2012/06/12 20:01:40 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2012/06/12 20:01:33 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2012/06/12 20:01:28 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2012/06/12 20:01:15 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2012/06/12 20:00:17 | 000,002,577 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2012/06/12 20:00:17 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012/06/12 20:00:17 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012/06/12 20:00:17 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2012/06/12 20:00:17 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2012/06/12 20:00:03 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2012/06/12 20:00:03 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2012/06/12 20:00:02 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2012/06/12 19:58:58 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
[2012/06/12 19:58:34 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2012/06/12 19:54:56 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2012/06/12 19:54:56 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2012/06/12 19:53:51 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2012/06/12 19:20:45 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Zapotec.bmp
[2012/06/12 19:20:44 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Soap Bubbles.bmp
[2012/06/12 19:20:44 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Prairie Wind.bmp
[2012/06/12 19:20:44 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Santa Fe Stucco.bmp
[2012/06/12 19:20:44 | 000,026,680 | ---- | C] () -- C:\WINDOWS\River Sumida.bmp
[2012/06/12 19:20:44 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Greenstone.bmp
[2012/06/12 19:20:44 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rhododendron.bmp
[2012/06/12 19:20:44 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Gone Fishing.bmp
[2012/06/12 19:20:44 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Coffee Bean.bmp
[2012/06/12 19:20:44 | 000,016,730 | ---- | C] () -- C:\WINDOWS\FeatherTexture.bmp
[2012/06/12 19:20:44 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Blue Lace 16.bmp
[2012/06/12 19:20:42 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2012/06/12 19:20:42 | 000,001,161 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2012/06/12 19:20:40 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2012/06/12 19:20:35 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc
[2012/06/07 00:23:09 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2012/06/07 00:23:06 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012/06/07 00:23:01 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2012/06/07 00:23:01 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2012/06/07 00:23:00 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2012/06/07 00:22:59 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2012/06/07 00:22:37 | 000,001,688 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2012/06/07 00:22:28 | 000,797,189 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2012/06/07 00:22:28 | 000,399,645 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2012/06/07 00:22:28 | 000,106,147 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2012/06/07 00:22:28 | 000,077,881 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plus.cat
[2012/06/07 00:22:28 | 000,037,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2012/06/07 00:22:28 | 000,017,916 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sonic.cat
[2012/06/07 00:22:28 | 000,013,472 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2012/06/07 00:22:28 | 000,008,574 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2012/06/07 00:22:28 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2012/06/07 00:22:28 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2012/06/07 00:21:41 | 000,095,072 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/06/07 00:20:54 | 000,000,209 | -HS- | C] () -- C:\boot.ini
[2012/06/07 00:20:51 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf

< End of report >
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 26th, 2012, 10:15 am

OTL Extras logfile created on: 6/25/2012 5:42:06 PM - Run 1
OTL by OldTimer - Version 3.2.53.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.28 Gb Available Physical Memory | 76.02% Memory free
4.84 Gb Paging File | 4.27 Gb Available in Paging File | 88.23% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 91.48 Gb Free Space | 81.84% Space Free | Partition Type: NTFS
Drive D: | 627.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 127.99 Gb Total Space | 89.06 Gb Free Space | 69.58% Space Free | Partition Type: NTFS

Computer Name: MINE | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-1177238915-117609710-839522115-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
htmlfile [edit] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"F:\strongkey-rc1.3-build-208.exe" = F:\strongkey-rc1.3-build-208.exe:*:Microsoft Enabled


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{7A9E9D61-E4DC-4B18-B866-38D99405706D}" = Sound Blaster Extigy
"{951D4810-1C32-47D1-A5BD-7A1BFB526D94}" = DAoC Portal
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = NVIDIA Control Panel 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Graphics Driver 301.42
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.27
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA PhysX System Software 9.12.0213
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = NVIDIA Update 1.8.15
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{C2425F91-1F7B-4037-9A05-9F290184798D}" = NETGEAR WNA3100 wireless USB 2.0 adapter
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Avira AntiVir Desktop" = Avira Free Antivirus
"Dark Age of Camelot" = Dark Age of Camelot
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Mozilla Firefox 13.0.1 (x86 en-US)" = Mozilla Firefox 13.0.1 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"NVIDIA Drivers" = NVIDIA Drivers
"Windows XP Service Pack" = Windows XP Service Pack 3

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 6/24/2012 8:04:20 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

Error - 6/24/2012 8:04:21 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

Error - 6/24/2012 8:04:58 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

Error - 6/25/2012 8:00:14 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

Error - 6/25/2012 8:00:14 AM | Computer Name = MINE | Source = VSS | ID = 8193
Description = Volume Shadow Copy Service error: Unexpected error calling routine
CoCreateInstance. hr = 0x80040154.

Error - 6/25/2012 8:00:14 AM | Computer Name = MINE | Source = VSS | ID = 8193
Description = Volume Shadow Copy Service error: Unexpected error calling routine
CoCreateInstance. hr = 0x80040154.

Error - 6/25/2012 8:00:14 AM | Computer Name = MINE | Source = VSS | ID = 5013
Description = Volume Shadow Copy Service error: Shadow Copy writer Microsoft Writer
(Bootable State) called routine CVssWriterShim::Subscribe which failed with status
0x8000ffff (converted to 0x800423f4).

Error - 6/25/2012 8:03:41 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

Error - 6/25/2012 8:03:57 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

Error - 6/25/2012 8:03:59 AM | Computer Name = MINE | Source = VSS | ID = 12289
Description = Volume Shadow Copy Service error: Unexpected error RegOpenKeyExW(HKLM,SYSTEM\CurrentControlSet\Services\VSS\Providers,0,KEY_ALL_ACCESS,&ptr).
hr = 0x80070002.

[ System Events ]
Error - 6/21/2012 12:47:01 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:04 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:08 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:11 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:14 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:17 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:21 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:24 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:27 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.

Error - 6/21/2012 12:47:30 PM | Computer Name = MINE | Source = Disk | ID = 262151
Description = The device, \Device\Harddisk1\D, has a bad block.


< End of report >
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 26th, 2012, 10:16 am

17:50:25.0510 171392 TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
17:50:26.0151 171392 ============================================================
17:50:26.0151 171392 Current date / time: 2012/06/25 17:50:26.0151
17:50:26.0151 171392 SystemInfo:
17:50:26.0151 171392
17:50:26.0151 171392 OS Version: 5.1.2600 ServicePack: 3.0
17:50:26.0151 171392 Product type: Workstation
17:50:26.0151 171392 ComputerName: MINE
17:50:26.0151 171392 UserName: Administrator
17:50:26.0151 171392 Windows directory: C:\WINDOWS
17:50:26.0151 171392 System windows directory: C:\WINDOWS
17:50:26.0151 171392 Processor architecture: Intel x86
17:50:26.0151 171392 Number of processors: 1
17:50:26.0151 171392 Page size: 0x1000
17:50:26.0151 171392 Boot type: Normal boot
17:50:26.0151 171392 ============================================================
17:50:26.0994 171392 Drive \Device\Harddisk0\DR0 - Size: 0x1BF286DE00 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
17:50:26.0994 171392 Drive \Device\Harddisk1\DR2 - Size: 0x1FFFEF7C00 (128.00 Gb), SectorSize: 0x200, Cylinders: 0x4103E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000050
17:50:26.0994 171392 ============================================================
17:50:26.0994 171392 \Device\Harddisk0\DR0:
17:50:27.0010 171392 MBR partitions:
17:50:27.0010 171392 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xDF8F8C1
17:50:27.0010 171392 \Device\Harddisk1\DR2:
17:50:27.0010 171392 MBR partitions:
17:50:27.0010 171392 \Device\Harddisk1\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xFFF9D41
17:50:27.0010 171392 ============================================================
17:50:27.0026 171392 C: <-> \Device\Harddisk0\DR0\Partition0
17:50:28.0994 171392 E: <-> \Device\Harddisk1\DR2\Partition0
17:50:28.0994 171392 ============================================================
17:50:28.0994 171392 Initialize success
17:50:28.0994 171392 ============================================================
17:50:38.0932 171728 ============================================================
17:50:38.0932 171728 Scan started
17:50:38.0932 171728 Mode: Manual;
17:50:38.0932 171728 ============================================================
17:50:40.0072 171728 Abiosdsk - ok
17:50:40.0072 171728 abp480n5 - ok
17:50:40.0135 171728 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:50:40.0135 171728 ACPI - ok
17:50:40.0182 171728 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
17:50:40.0182 171728 ACPIEC - ok
17:50:40.0276 171728 AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
17:50:40.0276 171728 AdobeFlashPlayerUpdateSvc - ok
17:50:40.0276 171728 adpu160m - ok
17:50:40.0307 171728 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:50:40.0307 171728 aec - ok
17:50:40.0369 171728 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:50:40.0369 171728 AFD - ok
17:50:40.0385 171728 Aha154x - ok
17:50:40.0385 171728 aic78u2 - ok
17:50:40.0401 171728 aic78xx - ok
17:50:40.0541 171728 ALCXWDM (f5d4d3899e16e1f75398297844386226) C:\WINDOWS\system32\drivers\ALCXWDM.SYS
17:50:40.0604 171728 ALCXWDM - ok
17:50:40.0697 171728 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
17:50:40.0697 171728 Alerter - ok
17:50:40.0713 171728 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
17:50:40.0713 171728 ALG - ok
17:50:40.0729 171728 AliIde - ok
17:50:40.0776 171728 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys
17:50:40.0776 171728 AmdK8 - ok
17:50:40.0791 171728 amsint - ok
17:50:40.0916 171728 AntiVirSchedulerService (0a1cc583e8147004e4ad4625d7fbf88c) C:\Program Files\Avira\AntiVir Desktop\sched.exe
17:50:40.0916 171728 AntiVirSchedulerService - ok
17:50:40.0963 171728 AntiVirService (c9a36ef935aced86aedf93e97e606911) C:\Program Files\Avira\AntiVir Desktop\avguard.exe
17:50:40.0963 171728 AntiVirService - ok
17:50:41.0010 171728 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
17:50:41.0010 171728 AppMgmt - ok
17:50:41.0010 171728 asc - ok
17:50:41.0026 171728 asc3350p - ok
17:50:41.0041 171728 asc3550 - ok
17:50:41.0182 171728 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:50:41.0182 171728 aspnet_state - ok
17:50:41.0229 171728 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:50:41.0229 171728 AsyncMac - ok
17:50:41.0244 171728 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:50:41.0244 171728 atapi - ok
17:50:41.0276 171728 Atdisk - ok
17:50:41.0307 171728 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:50:41.0307 171728 Atmarpc - ok
17:50:41.0354 171728 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
17:50:41.0354 171728 AudioSrv - ok
17:50:41.0401 171728 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:50:41.0401 171728 audstub - ok
17:50:41.0416 171728 avgntflt (d5541f0afb767e85fc412fc609d96a74) C:\WINDOWS\system32\DRIVERS\avgntflt.sys
17:50:41.0416 171728 avgntflt - ok
17:50:41.0463 171728 avipbb (7d967a682d4694df7fa57d63a2db01fe) C:\WINDOWS\system32\DRIVERS\avipbb.sys
17:50:41.0463 171728 avipbb - ok
17:50:41.0494 171728 avkmgr (53e56450da16a1a7f0d002f511113f67) C:\WINDOWS\system32\DRIVERS\avkmgr.sys
17:50:41.0494 171728 avkmgr - ok
17:50:41.0572 171728 BCMH43XX (bcdf72dce41874b3ad9143d537b493b2) C:\WINDOWS\system32\DRIVERS\bcmwlhigh5.sys
17:50:41.0619 171728 BCMH43XX - ok
17:50:41.0666 171728 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:50:41.0666 171728 Beep - ok
17:50:41.0729 171728 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
17:50:41.0744 171728 BITS - ok
17:50:41.0776 171728 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
17:50:41.0776 171728 Browser - ok
17:50:41.0822 171728 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:50:41.0822 171728 cbidf2k - ok
17:50:41.0838 171728 cd20xrnt - ok
17:50:41.0885 171728 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:50:41.0885 171728 Cdaudio - ok
17:50:41.0932 171728 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:50:41.0932 171728 Cdfs - ok
17:50:41.0947 171728 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:50:41.0947 171728 Cdrom - ok
17:50:41.0947 171728 Changer - ok
17:50:42.0010 171728 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
17:50:42.0010 171728 CiSvc - ok
17:50:42.0010 171728 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
17:50:42.0026 171728 ClipSrv - ok
17:50:42.0119 171728 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:50:42.0119 171728 clr_optimization_v2.0.50727_32 - ok
17:50:42.0135 171728 CmdIde - ok
17:50:42.0166 171728 Cpqarray - ok
17:50:42.0213 171728 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
17:50:42.0213 171728 CryptSvc - ok
17:50:42.0213 171728 dac2w2k - ok
17:50:42.0229 171728 dac960nt - ok
17:50:42.0291 171728 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
17:50:42.0291 171728 DcomLaunch - ok
17:50:42.0354 171728 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
17:50:42.0354 171728 Dhcp - ok
17:50:42.0385 171728 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:50:42.0385 171728 Disk - ok
17:50:42.0401 171728 dmadmin - ok
17:50:42.0432 171728 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
17:50:42.0447 171728 dmboot - ok
17:50:42.0479 171728 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
17:50:42.0479 171728 dmio - ok
17:50:42.0494 171728 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:50:42.0494 171728 dmload - ok
17:50:42.0526 171728 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
17:50:42.0526 171728 dmserver - ok
17:50:42.0572 171728 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:50:42.0588 171728 DMusic - ok
17:50:42.0635 171728 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
17:50:42.0635 171728 Dnscache - ok
17:50:42.0697 171728 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
17:50:42.0697 171728 Dot3svc - ok
17:50:42.0697 171728 dpti2o - ok
17:50:42.0744 171728 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:50:42.0744 171728 drmkaud - ok
17:50:42.0760 171728 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
17:50:42.0760 171728 EapHost - ok
17:50:42.0791 171728 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
17:50:42.0791 171728 ERSvc - ok
17:50:42.0838 171728 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
17:50:42.0838 171728 Eventlog - ok
17:50:42.0885 171728 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:50:42.0885 171728 Fastfat - ok
17:50:42.0947 171728 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
17:50:42.0947 171728 FastUserSwitchingCompatibility - ok
17:50:42.0947 171728 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:50:42.0963 171728 Fdc - ok
17:50:42.0979 171728 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
17:50:42.0979 171728 Fips - ok
17:50:42.0979 171728 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:50:42.0979 171728 Flpydisk - ok
17:50:43.0041 171728 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:50:43.0041 171728 FltMgr - ok
17:50:43.0135 171728 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:50:43.0135 171728 FontCache3.0.0.0 - ok
17:50:43.0166 171728 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:50:43.0166 171728 Fs_Rec - ok
17:50:43.0182 171728 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:50:43.0182 171728 Ftdisk - ok
17:50:43.0229 171728 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:50:43.0229 171728 Gpc - ok
17:50:43.0291 171728 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:50:43.0307 171728 helpsvc - ok
17:50:43.0307 171728 HidServ - ok
17:50:43.0354 171728 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:50:43.0354 171728 hidusb - ok
17:50:43.0401 171728 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
17:50:43.0401 171728 hkmsvc - ok
17:50:43.0416 171728 hpn - ok
17:50:43.0463 171728 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:50:43.0463 171728 HTTP - ok
17:50:43.0494 171728 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
17:50:43.0494 171728 HTTPFilter - ok
17:50:43.0494 171728 i2omgmt - ok
17:50:43.0510 171728 i2omp - ok
17:50:43.0541 171728 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:50:43.0541 171728 i8042prt - ok
17:50:43.0651 171728 idsvc (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:50:43.0682 171728 idsvc - ok
17:50:43.0713 171728 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:50:43.0713 171728 Imapi - ok
17:50:43.0760 171728 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
17:50:43.0760 171728 ImapiService - ok
17:50:43.0776 171728 ini910u - ok
17:50:43.0807 171728 IntelIde - ok
17:50:43.0854 171728 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:50:43.0854 171728 Ip6Fw - ok
17:50:43.0885 171728 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:50:43.0885 171728 IpFilterDriver - ok
17:50:43.0885 171728 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:50:43.0885 171728 IpInIp - ok
17:50:43.0916 171728 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:50:43.0916 171728 IpNat - ok
17:50:43.0932 171728 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:50:43.0932 171728 IPSec - ok
17:50:43.0979 171728 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:50:43.0979 171728 IRENUM - ok
17:50:43.0994 171728 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:50:43.0994 171728 isapnp - ok
17:50:44.0010 171728 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:50:44.0010 171728 Kbdclass - ok
17:50:44.0041 171728 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:50:44.0041 171728 kmixer - ok
17:50:44.0088 171728 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:50:44.0088 171728 KSecDD - ok
17:50:44.0119 171728 lanmanserver (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
17:50:44.0135 171728 lanmanserver - ok
17:50:44.0182 171728 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
17:50:44.0182 171728 lanmanworkstation - ok
17:50:44.0182 171728 lbrtfdc - ok
17:50:44.0244 171728 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
17:50:44.0244 171728 LmHosts - ok
17:50:44.0276 171728 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
17:50:44.0276 171728 Messenger - ok
17:50:44.0322 171728 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:50:44.0338 171728 mnmdd - ok
17:50:44.0369 171728 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
17:50:44.0385 171728 mnmsrvc - ok
17:50:44.0416 171728 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
17:50:44.0416 171728 Modem - ok
17:50:44.0432 171728 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:50:44.0432 171728 Mouclass - ok
17:50:44.0479 171728 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:50:44.0479 171728 mouhid - ok
17:50:44.0494 171728 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:50:44.0494 171728 MountMgr - ok
17:50:44.0588 171728 MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
17:50:44.0588 171728 MozillaMaintenance - ok
17:50:44.0588 171728 mraid35x - ok
17:50:44.0619 171728 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:50:44.0619 171728 MRxDAV - ok
17:50:44.0666 171728 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:50:44.0682 171728 MRxSmb - ok
17:50:44.0729 171728 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:50:44.0729 171728 Msfs - ok
17:50:44.0744 171728 MSIServer - ok
17:50:44.0760 171728 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:50:44.0760 171728 MSKSSRV - ok
17:50:44.0760 171728 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:50:44.0776 171728 MSPCLOCK - ok
17:50:44.0776 171728 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:50:44.0791 171728 MSPQM - ok
17:50:44.0838 171728 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:50:44.0838 171728 mssmbios - ok
17:50:44.0869 171728 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:50:44.0869 171728 Mup - ok
17:50:44.0947 171728 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
17:50:44.0947 171728 napagent - ok
17:50:44.0979 171728 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:50:44.0979 171728 NDIS - ok
17:50:45.0010 171728 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:50:45.0010 171728 NdisTapi - ok
17:50:45.0057 171728 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:50:45.0057 171728 Ndisuio - ok
17:50:45.0072 171728 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:50:45.0072 171728 NdisWan - ok
17:50:45.0119 171728 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:50:45.0119 171728 NDProxy - ok
17:50:45.0135 171728 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:50:45.0135 171728 NetBIOS - ok
17:50:45.0182 171728 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:50:45.0182 171728 NetBT - ok
17:50:45.0229 171728 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
17:50:45.0229 171728 NetDDE - ok
17:50:45.0244 171728 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
17:50:45.0244 171728 NetDDEdsdm - ok
17:50:45.0307 171728 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:50:45.0307 171728 Netlogon - ok
17:50:45.0385 171728 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
17:50:45.0385 171728 Netman - ok
17:50:45.0494 171728 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:50:45.0510 171728 NetTcpPortSharing - ok
17:50:45.0541 171728 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
17:50:45.0541 171728 Nla - ok
17:50:45.0588 171728 NPF (b9730495e0cf674680121e34bd95a73b) C:\WINDOWS\system32\DRIVERS\npf.sys
17:50:45.0588 171728 NPF - ok
17:50:45.0604 171728 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:50:45.0604 171728 Npfs - ok
17:50:45.0666 171728 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:50:45.0682 171728 Ntfs - ok
17:50:45.0682 171728 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:50:45.0697 171728 NtLmSsp - ok
17:50:45.0744 171728 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
17:50:45.0744 171728 NtmsSvc - ok
17:50:45.0791 171728 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:50:45.0791 171728 Null - ok
17:50:46.0229 171728 nv (7b5a17bd54bb9142843dbe99a1caaed8) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
17:50:46.0666 171728 nv - ok
17:50:46.0760 171728 nvatabus (dce353985c988bfb7e84fd942068151f) C:\WINDOWS\system32\DRIVERS\nvatabus.sys
17:50:46.0760 171728 nvatabus - ok
17:50:46.0807 171728 NVENETFD (7d275ecda4628318912f6c945d5cf963) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
17:50:46.0807 171728 NVENETFD - ok
17:50:46.0822 171728 nvnetbus (b64aacefad2be5bff5353fe681253c67) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
17:50:46.0822 171728 nvnetbus - ok
17:50:46.0854 171728 nvraid (9c8a8e00648eaf7a1d794f7cfb25a6b4) C:\WINDOWS\system32\DRIVERS\nvraid.sys
17:50:46.0854 171728 nvraid - ok
17:50:46.0901 171728 NVSvc (5150b108ea88831e1c599603d8b89621) C:\WINDOWS\system32\nvsvc32.exe
17:50:46.0901 171728 NVSvc - ok
17:50:47.0057 171728 nvUpdatusService (83e8ab7bb3c8956c53fec071c94f0bbb) C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
17:50:47.0088 171728 nvUpdatusService - ok
17:50:47.0135 171728 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:50:47.0135 171728 NwlnkFlt - ok
17:50:47.0151 171728 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:50:47.0151 171728 NwlnkFwd - ok
17:50:47.0151 171728 omxsgepc - ok
17:50:47.0197 171728 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
17:50:47.0213 171728 Parport - ok
17:50:47.0244 171728 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:50:47.0244 171728 PartMgr - ok
17:50:47.0291 171728 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
17:50:47.0291 171728 ParVdm - ok
17:50:47.0307 171728 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
17:50:47.0307 171728 PCI - ok
17:50:47.0307 171728 PCIDump - ok
17:50:47.0322 171728 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:50:47.0354 171728 PCIIde - ok
17:50:47.0385 171728 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
17:50:47.0385 171728 Pcmcia - ok
17:50:47.0401 171728 perc2 - ok
17:50:47.0401 171728 perc2hib - ok
17:50:47.0510 171728 PfModNT (2f5532f9b0f903b26847da674b4f55b2) C:\WINDOWS\system32\PfModNT.sys
17:50:47.0510 171728 PfModNT - ok
17:50:47.0557 171728 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
17:50:47.0557 171728 PlugPlay - ok
17:50:47.0572 171728 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:50:47.0572 171728 PolicyAgent - ok
17:50:47.0619 171728 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:50:47.0619 171728 PptpMiniport - ok
17:50:47.0635 171728 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
17:50:47.0635 171728 Processor - ok
17:50:47.0651 171728 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:50:47.0651 171728 ProtectedStorage - ok
17:50:47.0651 171728 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:50:47.0651 171728 PSched - ok
17:50:47.0682 171728 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:50:47.0682 171728 Ptilink - ok
17:50:47.0697 171728 ql1080 - ok
17:50:47.0713 171728 Ql10wnt - ok
17:50:47.0729 171728 ql12160 - ok
17:50:47.0776 171728 ql1240 - ok
17:50:47.0776 171728 ql1280 - ok
17:50:47.0822 171728 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:50:47.0822 171728 RasAcd - ok
17:50:47.0854 171728 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
17:50:47.0854 171728 RasAuto - ok
17:50:47.0885 171728 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:50:47.0885 171728 Rasl2tp - ok
17:50:47.0947 171728 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
17:50:47.0947 171728 RasMan - ok
17:50:47.0963 171728 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:50:47.0963 171728 RasPppoe - ok
17:50:48.0010 171728 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:50:48.0010 171728 Raspti - ok
17:50:48.0026 171728 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:50:48.0026 171728 Rdbss - ok
17:50:48.0072 171728 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:50:48.0072 171728 redbook - ok
17:50:48.0104 171728 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
17:50:48.0104 171728 RemoteAccess - ok
17:50:48.0151 171728 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
17:50:48.0151 171728 RemoteRegistry - ok
17:50:48.0182 171728 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
17:50:48.0197 171728 RpcLocator - ok
17:50:48.0244 171728 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
17:50:48.0244 171728 RpcSs - ok
17:50:48.0291 171728 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
17:50:48.0291 171728 RSVP - ok
17:50:48.0338 171728 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
17:50:48.0338 171728 SamSs - ok
17:50:48.0401 171728 sbext (c5d8cc129720797547c133487289f7e3) C:\WINDOWS\system32\DRIVERS\sbext.sys
17:50:48.0432 171728 sbext - ok
17:50:48.0479 171728 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
17:50:48.0494 171728 SCardSvr - ok
17:50:48.0526 171728 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
17:50:48.0541 171728 Schedule - ok
17:50:48.0572 171728 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:50:48.0572 171728 Secdrv - ok
17:50:48.0619 171728 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
17:50:48.0619 171728 seclogon - ok
17:50:48.0635 171728 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
17:50:48.0635 171728 SENS - ok
17:50:48.0651 171728 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
17:50:48.0666 171728 serenum - ok
17:50:48.0666 171728 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
17:50:48.0666 171728 Serial - ok
17:50:48.0744 171728 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:50:48.0744 171728 Sfloppy - ok
17:50:48.0791 171728 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
17:50:48.0807 171728 SharedAccess - ok
17:50:48.0854 171728 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
17:50:48.0854 171728 ShellHWDetection - ok
17:50:48.0869 171728 Simbad - ok
17:50:48.0885 171728 Sparrow - ok
17:50:48.0901 171728 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:50:48.0901 171728 splitter - ok
17:50:48.0947 171728 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
17:50:48.0947 171728 Spooler - ok
17:50:48.0963 171728 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
17:50:48.0963 171728 sr - ok
17:50:49.0010 171728 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
17:50:49.0026 171728 srservice - ok
17:50:49.0072 171728 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:50:49.0088 171728 Srv - ok
17:50:49.0135 171728 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
17:50:49.0135 171728 SSDPSRV - ok
17:50:49.0182 171728 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys
17:50:49.0182 171728 ssmdrv - ok
17:50:49.0244 171728 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
17:50:49.0260 171728 stisvc - ok
17:50:49.0291 171728 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:50:49.0291 171728 swenum - ok
17:50:49.0307 171728 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:50:49.0307 171728 swmidi - ok
17:50:49.0322 171728 symc810 - ok
17:50:49.0338 171728 symc8xx - ok
17:50:49.0354 171728 sym_hi - ok
17:50:49.0369 171728 sym_u3 - ok
17:50:49.0432 171728 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:50:49.0432 171728 sysaudio - ok
17:50:49.0494 171728 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
17:50:49.0494 171728 SysmonLog - ok
17:50:49.0541 171728 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
17:50:49.0541 171728 TapiSrv - ok
17:50:49.0588 171728 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:50:49.0604 171728 Tcpip - ok
17:50:49.0666 171728 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
17:50:49.0666 171728 Themes - ok
17:50:49.0697 171728 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
17:50:49.0713 171728 TlntSvr - ok
17:50:49.0713 171728 TosIde - ok
17:50:49.0760 171728 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
17:50:49.0776 171728 TrkWks - ok
17:50:49.0822 171728 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:50:49.0822 171728 Udfs - ok
17:50:49.0822 171728 ultra - ok
17:50:49.0869 171728 UMWdf (1977313e362c8732c1af4d1bcb9c06b7) C:\WINDOWS\system32\wdfmgr.exe
17:50:49.0869 171728 UMWdf - ok
17:50:49.0916 171728 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:50:49.0932 171728 Update - ok
17:50:49.0979 171728 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
17:50:49.0979 171728 upnphost - ok
17:50:49.0994 171728 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
17:50:49.0994 171728 UPS - ok
17:50:50.0010 171728 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
17:50:50.0010 171728 usbaudio - ok
17:50:50.0041 171728 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:50:50.0041 171728 usbccgp - ok
17:50:50.0057 171728 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:50:50.0057 171728 usbehci - ok
17:50:50.0119 171728 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:50:50.0119 171728 usbhub - ok
17:50:50.0166 171728 usbohci (0daecce65366ea32b162f85f07c6753b) C:\WINDOWS\system32\DRIVERS\usbohci.sys
17:50:50.0166 171728 usbohci - ok
17:50:50.0182 171728 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:50:50.0182 171728 USBSTOR - ok
17:50:50.0197 171728 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:50:50.0197 171728 VgaSave - ok
17:50:50.0213 171728 ViaIde - ok
17:50:50.0229 171728 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
17:50:50.0229 171728 VolSnap - ok
17:50:50.0276 171728 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
17:50:50.0291 171728 VSS - ok
17:50:50.0322 171728 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
17:50:50.0322 171728 W32Time - ok
17:50:50.0369 171728 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:50:50.0369 171728 Wanarp - ok
17:50:50.0416 171728 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:50:50.0416 171728 wdmaud - ok
17:50:50.0447 171728 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
17:50:50.0447 171728 WebClient - ok
17:50:50.0526 171728 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
17:50:50.0541 171728 winmgmt - ok
17:50:50.0588 171728 WmdmPmSN (6eaa72fd9ef993ec1fa9a06de65105da) C:\WINDOWS\system32\mspmsnsv.dll
17:50:50.0588 171728 WmdmPmSN - ok
17:50:50.0635 171728 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
17:50:50.0651 171728 Wmi - ok
17:50:50.0697 171728 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
17:50:50.0697 171728 wscsvc - ok
17:50:50.0807 171728 WSWNA3100 (e7c84a8a763c460fe182f4dcbc17b9dc) C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe
17:50:50.0822 171728 WSWNA3100 - ok
17:50:50.0854 171728 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
17:50:50.0854 171728 wuauserv - ok
17:50:50.0916 171728 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
17:50:50.0932 171728 WZCSVC - ok
17:50:50.0979 171728 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
17:50:50.0979 171728 xmlprov - ok
17:50:51.0026 171728 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
17:50:51.0369 171728 \Device\Harddisk0\DR0 - ok
17:50:51.0401 171728 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR2
17:50:57.0822 171728 \Device\Harddisk1\DR2 - ok
17:50:57.0838 171728 Boot (0x1200) (f3bac16e5d2077364b63b04db2273c62) \Device\Harddisk0\DR0\Partition0
17:50:57.0838 171728 \Device\Harddisk0\DR0\Partition0 - ok
17:50:57.0854 171728 Boot (0x1200) (65bbf61d8fda282f9fc3485832ed86c9) \Device\Harddisk1\DR2\Partition0
17:50:57.0854 171728 \Device\Harddisk1\DR2\Partition0 - ok
17:50:57.0854 171728 ============================================================
17:50:57.0854 171728 Scan finished
17:50:57.0854 171728 ============================================================
17:50:57.0885 171720 Detected object count: 0
17:50:57.0885 171720 Actual detected object count: 0
17:55:26.0401 171380 Deinitialize success
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby Alander » June 27th, 2012, 9:57 am

OTL
  1. Double click on OTL.exe to run it.
  2. Click the Scan All Users checkbox.
    Change the File Age Drop Down to 7 Days from the default 30 days and Leave the remaining selections to the default settings.
  3. Click on Run Scan at the top left hand corner.
  4. When done, one Notepad files will open.
  5. OTL.txt <-- Will be opened, maximized
  6. Please post the contents of OTL.txt in your next reply.
User avatar
Alander
Regular Member
 
Posts: 1603
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 27th, 2012, 10:11 pm

OTL logfile created on: 6/27/2012 7:06:37 PM - Run 2
OTL by OldTimer - Version 3.2.53.0 Folder = C:\Documents and Settings\Administrator\Desktop
Windows XP Media Center Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.18 Gb Available Physical Memory | 72.74% Memory free
4.84 Gb Paging File | 4.18 Gb Available in Paging File | 86.43% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 111.78 Gb Total Space | 91.93 Gb Free Space | 82.24% Space Free | Partition Type: NTFS
Drive D: | 627.46 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS
Drive E: | 127.99 Gb Total Space | 89.06 Gb Free Space | 69.58% Space Free | Partition Type: NTFS

Computer Name: MINE | User Name: Administrator | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 7 Days

========== Processes (SafeList) ==========

PRC - [2012/06/25 17:35:12 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
PRC - [2012/06/14 15:20:13 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012/05/15 03:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2012/05/02 00:31:38 | 000,348,624 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2012/04/24 02:11:59 | 000,080,336 | ---- | M] (Avira Operations GmbH & Co. KG) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011/12/08 16:53:32 | 008,364,288 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WNA3100.exe
PRC - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe
PRC - [2008/04/14 05:42:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2004/12/22 02:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE


========== Modules (No Company Name) ==========

MOD - [2012/06/14 15:20:15 | 002,042,848 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012/05/15 03:18:00 | 000,357,184 | ---- | M] () -- C:\Program Files\NVIDIA Corporation\nview\nvShell.dll
MOD - [2012/04/16 23:11:02 | 000,398,288 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2011/12/08 16:53:32 | 008,364,288 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WNA3100.exe
MOD - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe
MOD - [2011/09/13 16:57:20 | 000,282,624 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiSvcLib.dll
MOD - [2011/08/18 11:22:38 | 000,323,584 | ---- | M] () -- C:\Program Files\NETGEAR\WNA3100\WifiLib.dll
MOD - [2002/03/21 03:53:58 | 000,047,897 | ---- | M] () -- C:\WINDOWS\system32\AudCtrl.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2012/06/22 20:27:55 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012/06/14 15:20:14 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012/05/15 03:18:00 | 001,262,400 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)
SRV - [2012/05/02 01:42:31 | 000,086,224 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2012/05/02 00:34:37 | 000,110,032 | ---- | M] (Avira Operations GmbH & Co. KG) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011/12/07 18:31:00 | 000,303,360 | ---- | M] () [Auto | Running] -- C:\Program Files\NETGEAR\WNA3100\WifiSvc.exe -- (WSWNA3100)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\omxsgepc.sys -- (omxsgepc)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - [2012/04/27 10:20:04 | 000,137,928 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2012/04/25 00:32:27 | 000,083,392 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2012/04/16 21:18:01 | 000,036,000 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avkmgr.sys -- (avkmgr)
DRV - [2011/12/12 17:43:00 | 001,034,240 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\bcmwlhigh5.sys -- (BCMH43XX)
DRV - [2010/06/17 15:14:27 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010/02/03 11:21:56 | 000,050,704 | ---- | M] (CACE Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\npf.sys -- (NPF)
DRV - [2008/08/01 18:36:26 | 000,022,016 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008/08/01 18:36:20 | 000,054,784 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005/05/17 02:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2005/03/09 15:53:00 | 000,036,352 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004/12/22 02:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2002/05/30 10:21:32 | 001,152,916 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\sbext.sys -- (sbext)
DRV - [1999/12/17 01:00:00 | 000,006,752 | ---- | M] (Creative Technology Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\PFMODNT.SYS -- (PfModNT)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com/
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.startup.homepage: "http://www.google.com/"
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/06/16 21:52:04 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2012/06/16 21:52:15 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Extensions
[2012/06/18 18:21:14 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\3jwy243p.default\extensions
[2012/06/16 21:52:04 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/06/14 15:20:49 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/06/14 15:19:40 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/06/14 15:19:40 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

O1 HOSTS File: ([2004/08/10 05:00:00 | 000,000,734 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [AudCtrl] C:\WINDOWS\System32\AudCtrl.dll ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira Operations GmbH & Co. KG)
O4 - HKLM..\Run: [CTStartup] C:\Program Files\Creative\Splash Screen\CTEaxSpl.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [Jet Detection] C:\Program Files\Creative\SBExtigy\PROGRAM\ADGJDet.exe File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [UpdReg] C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\NETGEAR WNA3100 Genie.lnk = C:\Program Files\NETGEAR\WNA3100\WNA3100.exe ()
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7AE35506-1ABB-42B4-9272-DE8F5CA83E9D}: DhcpNameServer = 209.18.47.61 209.18.47.62
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D2370702-24CB-4B51-A03B-5C0738AD50A6}: DhcpNameServer = 209.18.47.61 209.18.47.62
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Administrator\Local Settings\Application Data\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012/06/12 20:00:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [1998/10/04 20:57:04 | 000,000,043 | R--- | M] () - D:\AUTORUN.INF -- [ CDFS ]
O32 - AutoRun File - [2011/08/20 00:41:07 | 000,000,000 | ---- | M] () - E:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{67acdac2-b071-11e1-a6d1-806d6172696f}\Shell - "" = AutoRun
O33 - MountPoints2\{67acdac2-b071-11e1-a6d1-806d6172696f}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{67acdac2-b071-11e1-a6d1-806d6172696f}\Shell\AutoRun\command - "" = D:\Setup.exe -- [2005/06/30 04:49:12 | 000,430,080 | R--- | M] ()
O33 - MountPoints2\{8e56ac7e-b5c0-11e1-a72d-0014852513dd}\Shell\AutoRun - "" = Auto&Play
O33 - MountPoints2\{8e56ac7e-b5c0-11e1-a72d-0014852513dd}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL strongkey-rc1.3-build-208.exe
O33 - MountPoints2\{8e56ac7e-b5c0-11e1-a72d-0014852513dd}\Shell\default\command - "" = F:\strongkey-rc1.3-build-208.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

========== Files/Folders - Created Within 7 Days ==========

[2012/06/25 17:35:34 | 002,128,472 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Administrator\Desktop\tdsskiller.exe
[2012/06/25 17:35:11 | 000,596,992 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012/06/21 20:04:13 | 000,000,000 | ---D | C] -- C:\Program Files\Mythic
[2012/06/21 18:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\My Documents\My Videos
[2012/06/21 18:39:42 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Administrator\Start Menu\Programs\Administrative Tools
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 7 Days ==========

[2012/06/27 18:27:00 | 000,000,830 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012/06/25 17:35:38 | 002,128,472 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Administrator\Desktop\tdsskiller.exe
[2012/06/25 17:35:12 | 000,596,992 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Administrator\Desktop\OTL.exe
[2012/06/23 11:47:10 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/06/22 20:27:53 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe
[2012/06/22 20:27:52 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl
[2012/06/21 19:02:33 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[4 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\drivers\*.tmp files -> C:\WINDOWS\System32\drivers\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/06/17 00:49:20 | 000,003,584 | ---- | C] () -- C:\Documents and Settings\Administrator\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/06/17 00:21:47 | 000,053,299 | ---- | C] () -- C:\WINDOWS\System32\pthreadVC.dll
[2012/06/17 00:09:07 | 000,004,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2012/06/16 23:55:46 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/06/16 21:28:45 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012/06/16 21:28:45 | 001,074,636 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012/06/16 21:28:45 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012/06/16 21:28:32 | 002,807,708 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012/06/13 17:49:31 | 000,000,231 | ---- | C] () -- C:\WINDOWS\AC3API.INI
[2012/06/13 17:49:31 | 000,000,000 | ---- | C] () -- C:\WINDOWS\SBWIN.INI
[2012/06/13 17:49:29 | 001,048,576 | ---- | C] () -- C:\WINDOWS\System32\SFMAN.DAT
[2012/06/13 17:49:18 | 000,059,392 | ---- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[2012/06/13 17:49:18 | 000,047,897 | ---- | C] () -- C:\WINDOWS\System32\AudCtrl.dll
[2012/06/13 17:49:17 | 000,004,501 | ---- | C] () -- C:\WINDOWS\System32\EXTIGY.INI
[2012/06/13 17:35:16 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2012/06/13 17:35:12 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2012/06/13 17:35:12 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012/06/12 20:02:48 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012/06/07 00:23:06 | 000,004,161 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012/06/07 00:21:41 | 000,095,072 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT

< End of report >
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby Alander » June 28th, 2012, 1:13 pm

Hi,

Step 1.
Upload File/Files for testing

Please go to Virustotal

Copy/paste this file and path into the white box at the top:
F:\strongkey-rc1.3-build-208.exe
D:\Setup.exe

Press Submit - this will submit the file for testing.
Please wait for all the scanners to finish then copy and paste the permalink (web address) in your next response.
Example of web address :
Image
Repeat the scan for each file, you should come back with 2 perma links

Step 2.
ESET online scannner

Note: You can use either Internet Explorer or Mozilla FireFox for this scan.

Note: If you are using Windows Vista or Windows 7, open your browser by right-clicking on its icon and select 'Run as administrator' to perform this scan.
  • First please Disable any Antivirus you have active, as shown in This topic.
  • Note: Don't forget to re-enable it after the scan.
  • Next hold down Control then click on the following link to open a new window to ESET online scannner
  • Select the option YES, I accept the Terms of Use then click on Start.
    Note: If using Mozilla Firefox you will need to download esetsmartinstaller_enu.exe when prompted then double click on it to install.
    All of the below instructions are compatible with either Internet Explorer or Mozilla FireFox.
  • When prompted allow the Add-On/Active X to install.
  • Make sure that the option Remove found threats is NOT checked, and the option Scan archives is checked.
  • Now click on Advanced Settings and select the following:
    • Scan for potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth Technology
  • Now click on Start.
  • The virus signature database... will begin to download. Be patient this make take some time depending on the speed of your Internet Connection.
  • When completed the Online Scan will begin automatically.
  • Do not touch either the Mouse or keyboard during the scan otherwise it may stall.
  • When completed select Uninstall application on close if you so wish, make sure you copy the logfile first!
  • Now click on Finish.
  • Use notepad to open the logfile located at C:\Program Files\ESET\EsetOnlineScanner\log.txt.
  • Copy and paste that log as a reply to this topic.

Step 3.
Malwarebytes' Anti-Malware

Please download Malwarebytes' Anti-Malware and save to your desktop.

  • Double-click mbam-setup.exe and follow the prompts to install the program.
  • At the end, be sure a checkmark is placed next to:
    Update Malwarebytes' Anti-Malware
    Launch Malwarebytes' Anti-Malware
  • Then click Finish.
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform Quick Scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Check all items except items in the C:\System Volume Information folder... and click Remove Selected.
    Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.
  • When completed, a log will open in Notepad. Please copy and paste the log back into your next reply
  • The log can also be found here:
    C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Step 4.
Please include in your next reply:
  1. Any problem executing the instructions?
  2. the 2 perma links
  3. ESET Log
  4. MBAM Log
Thanks
User avatar
Alander
Regular Member
 
Posts: 1603
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: system slow and AntiVir keeps finding junk

Unread postby level18barbarian » June 30th, 2012, 5:08 pm

ok, i took out my E drive and now everything seems to be running fine...anti-vir has been running clean checks. so i am going to consider this matter closed. thanks for the help.
Chris
level18barbarian
Regular Member
 
Posts: 39
Joined: December 10th, 2008, 8:14 pm

Re: system slow and AntiVir keeps finding junk

Unread postby Alander » July 1st, 2012, 3:30 pm

Hi Chris,

You may want to format your E Drive before using it again as it may be infected
User avatar
Alander
Regular Member
 
Posts: 1603
Joined: September 15th, 2007, 2:04 pm
Location: Singapore

Re: system slow and AntiVir keeps finding junk

Unread postby askey127 » July 2nd, 2012, 7:44 am

this topic is now closed.

We are pleased we could help you resolve your computer's malware issues.

If you would like to make a comment or leave a compliment regarding the help you have received, please see Feedback for Our Helpers - Say "Thanks" Here.
User avatar
askey127
Admin/Teacher
Admin/Teacher
 
Posts: 14025
Joined: April 17th, 2005, 3:25 pm
Location: New Hampshire USA
Advertisement
Register to Remove


  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 140 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware