1. You are viewing our forum as a guest. For full access please Register. WindowsBBS.com is completely free, paid for by advertisers and donations.

Solved Copy errors from XP CD and Windows Component Wizard

Discussion in 'Malware and Virus Removal Archive' started by IndustrialOne, 2014/02/24.

  1. 2014/02/24
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    [Solved] Copy errors from XP CD and Windows Component Wizard

    I've been instructed to post in tihs thread all the Malware bytes logs. Here they all are:

    Malware bytes log:

    Malwarebytes Anti-Malware 1.75.0.1300
    www.malwarebytes.org

    Database version: v2014.02.24.05

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 6.0.2900.5512
    Admin :: XP1 [administrator]

    2/24/2014 9:10:11 AM
    mbam-log-2014-02-24 (09-10-11).txt

    Scan type: Quick scan
    Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
    Scan options disabled: P2P
    Objects scanned: 322911
    Time elapsed: 6 minute(s), 19 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 26
    HKCR\CLSID\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.
    HKCR\funmoods.funmoodsHlpr.1 (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.
    HKCR\funmoods.funmoodsHlpr (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{75EBB0AA-4214-4CB4-90EC-E3E07ECD04F7} (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.
    HKCR\CLSID\{965B9DBE-B104-44AC-950A-8A5F97AFF439} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\escort.escortIEPane.1 (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\escort.escortIEPane (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\CLSID\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\funmoods.dskBnd.1 (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\funmoods.dskBnd (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{A4C272EC-ED9E-4ACE-A6F2-9558C7F29EF3} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\CLSID\{A9DB719C-7156-415E-B49D-BAD039DE4F13} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\funmoodsApp.appCore.1 (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\funmoodsApp.appCore (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\CLSID\{F03FD9D0-4F2B-497C-8A71-DD41D70B07D9} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\f (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\Typelib\{1D085C0A-E4F4-4F66-BDBF-4BE51015BFC3} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\Interface\{0D80F1C5-D17B-4177-AC68-955F3EF9F191} (PUP.Optional.Funmoods.A) -> Quarantined and deleted successfully.
    HKCR\Typelib\{DCABB943-792E-44C4-9029-ECBEE6265AF9} (PUP.Optional.OutBrowse) -> Quarantined and deleted successfully.
    HKCR\Interface\{3408AC0D-510E-4808-8F7B-6B70B1F88534} (PUP.Optional.OutBrowse) -> Quarantined and deleted successfully.
    HKCU\Software\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Quarantined and deleted successfully.
    HKCU\Software\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.
    HKLM\SOFTWARE\Google\Chrome\Extensions\bbjciahceamgodcoidkjpchnokgfpphh (PUP.Funmoods) -> Quarantined and deleted successfully.
    HKLM\SOFTWARE\Google\Chrome\Extensions\cjpglkicenollcignonpgiafdgfeehoj (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 2
    HKCR\scrfile\shell\open\command| (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: ( "%1" /S) -> Quarantined and repaired successfully.
    HKCR\regfile\shell\open\command| (Broken.OpenCommand) -> Bad: (NOTEPAD.EXE %1) Good: (regedit.exe "%1 ") -> Quarantined and repaired successfully.

    Folders Detected: 1
    C:\WINDOWS\system32\msibm (Adware.IEHelper) -> Quarantined and deleted successfully.

    Files Detected: 14
    C:\Documents and Settings\Admin\Application Data\PowerISO\Upgrade\PowerISO5.exe (PUP.Optional.OpenCandy) -> Quarantined and deleted successfully.
    C:\Documents and Settings\All Users\Application Data\YTD Video Downloader\ytd_installer.exe (PUP.Optional.Spigot.A) -> Quarantined and deleted successfully.
    C:\Documents and Settings\All Users\Application Data\YTD YouTube Downloader & Converter\ytd_installer.exe (PUP.Optional.Spigot.A) -> Quarantined and deleted successfully.
    C:\Downloads\cc11.zip (Malware.Packer.Krunchy) -> Quarantined and deleted successfully.
    C:\Downloads\uncovering_static_(64k)_by_fairlight_&_alcatraz.zip (Malware.Packer.Krunchy) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_bbjciahceamgodcoidkjpchnokgfpphh_0.localstorage (PUP.Funmoods) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\funmoods.crx (PUP.Funmoods) -> Quarantined and deleted successfully.
    C:\WINDOWS\hosts (Trojan.Agent) -> Quarantined and deleted successfully.
    C:\WINDOWS\inf\vvt.pnf (Malware.Trace) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msibm\intro.tpl (Adware.IEHelper) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msibm\intro.htm (Adware.IEHelper) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msibm\post.htm (Adware.IEHelper) -> Quarantined and deleted successfully.
    C:\WINDOWS\system32\msibm\post.tpl (Adware.IEHelper) -> Quarantined and deleted successfully.
    C:\Documents and Settings\Admin\Local Settings\Application Data\Google\Chrome\User Data\Default\Local Storage\chrome-extension_cjpglkicenollcignonpgiafdgfeehoj_0.localstorage (PUP.Optional.FunMoods.A) -> Quarantined and deleted successfully.

    (end)


    Attach.txt


    UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
    IF REQUESTED, ZIP IT UP & ATTACH IT
    .
    DDS (Ver_2012-11-20.01)
    .
    Microsoft Windows XP Professional
    Boot Device: \Device\HarddiskVolume2
    Install Date: 2/23/2014 7:17:36 AM
    System Uptime: 2/24/2014 9:43:13 AM (1 hours ago)
    .
    Motherboard: ASUSTeK Computer INC. | | P7H55-M PRO
    Processor: Intel(R) Core(TM) i7 CPU 860 @ 2.80GHz | LGA1156 | 2808/133mhz
    .
    ==== Disk Partitions =========================
    .
    C: is FIXED (NTFS) - 300 GiB total, 124.159 GiB free.
    E: is Removable
    F: is Removable
    G: is Removable
    H: is CDROM (CDFS)
    I: is FIXED (NTFS) - 4 GiB total, 1.394 GiB free.
    J: is FIXED (exFAT) - 200 GiB total, 0 GiB free.
    N: is FIXED (exFAT) - 466 GiB total, 0.062 GiB free.
    Q: is FIXED (exFAT) - 20 GiB total, 0 GiB free.
    Z: is FIXED (NTFS) - 500 GiB total, 499.915 GiB free.
    .
    ==== Disabled Device Manager Items =============
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_D155&SUBSYS_00830043&REV_11\3&11583659&0&40
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_D155&SUBSYS_00830043&REV_11\3&11583659&0&40
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_D156&SUBSYS_00830043&REV_11\3&11583659&0&41
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_D156&SUBSYS_00830043&REV_11\3&11583659&0&41
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_D157&SUBSYS_00830043&REV_11\3&11583659&0&42
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_D157&SUBSYS_00830043&REV_11\3&11583659&0&42
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_D158&SUBSYS_00000000&REV_11\3&11583659&0&43
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_D158&SUBSYS_00000000&REV_11\3&11583659&0&43
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_D150&SUBSYS_00000000&REV_11\3&11583659&0&80
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_D150&SUBSYS_00000000&REV_11\3&11583659&0&80
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_D151&SUBSYS_00000000&REV_11\3&11583659&0&81
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_D151&SUBSYS_00000000&REV_11\3&11583659&0&81
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_83831043&REV_06\3&11583659&0&B0
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_3B64&SUBSYS_83831043&REV_06\3&11583659&0&B0
    Service:
    .
    Class GUID: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Description:
    Device ID: PCI\VEN_8086&DEV_3B30&SUBSYS_83831043&REV_06\3&11583659&0&FB
    Manufacturer:
    Name:
    PNP Device ID: PCI\VEN_8086&DEV_3B30&SUBSYS_83831043&REV_06\3&11583659&0&FB
    Service:
    .
    ==== System Restore Points ===================
    .
    RP6: 2/22/2014 6:07:54 AM - Removed Norton Ghost
    RP7: 2/23/2014 3:03:27 AM - Installed Windows XP KB955704.
    RP8: 2/23/2014 5:39:29 AM - Removed TurboV
    RP9: 2/23/2014 5:41:35 AM - Removed COMODO Internet Security
    RP10: 2/23/2014 5:44:18 AM - Removed Logitech QuickCam
    RP11: 2/23/2014 5:53:49 AM - Installed Windows XP KB955704.
    RP12: 2/23/2014 6:02:57 AM - Removed GPU Boost Driver
    RP13: 2/23/2014 6:10:01 AM - Removed PC Probe II
    RP14: 2/23/2014 6:10:30 AM - Removed AI Suite
    RP15: 2/23/2014 6:11:11 AM - Removed ASUSUpdate
    RP16: 2/23/2014 7:56:59 AM - Installed Windows XP KB955704.
    RP17: 2/23/2014 11:12:35 AM - Installed Realtek High Definition Audio Driver
    RP18: 2/23/2014 11:20:21 AM - Installed Realtek High Definition Audio Driver
    RP19: 2/23/2014 11:36:46 AM - Installed Realtek High Definition Audio Driver
    RP20: 2/23/2014 3:56:42 PM - Removed Skype™ 6.14
    RP21: 2/24/2014 7:16:36 AM - burnin
    .
    ==== Installed Programs ======================
    .
    7-Zip 4.23
    Ableton Live 9 Suite
    ACDSee 32
    Adobe Flash Player 12 ActiveX
    Adobe Flash Player 12 Plugin
    Adobe Photoshop CS6
    Adobe Reader 6.0
    Adobe Shockwave Player
    Advanced RAR Password Recovery (remove only)
    Advanced ZIP Password Recovery
    AOL Instant Messenger
    AOpen FM56-SV Soft PCI Modem
    Apple Application Support
    Apple Software Update
    Arena 3.0
    ArtMoney SE v7.22
    AudioPaint
    AutoHotkey 1.0.48.05
    Avidemux 2.4
    Avidemux 2.6 (32-bit)
    AviSynth 2.5
    Bandwidth Monitor Pro
    Bink and Smacker
    BitComet 1.00
    Blaze Media Pro
    BurnInTest v7.1 Pro
    Cedocida DV Codec
    CloneSpy 3.1
    Corel Applications
    CrystalDiskMark 3.0.2f
    DataNumen RAR Repair v2.1
    Dead Disc Doctor
    DiamondCS Port Explorer v2.000
    Disktrix UltimateDefrag
    Disktrix UltimateDefrag 3.0
    Download Accelerator Plus Beta
    EaseUS Data Recovery Wizard 6.1
    EaseUS Partition Master 9.2.2
    EASEUS Partition Recovery 5.0.1
    Eassos PartitionGuru Professional 3.7.0
    Ethereal 0.99.0
    Fraps
    Free Countdown Timer 2.7.2
    Free Fire Screensaver
    FreshUI
    GIMP 2.4.1
    Gimp 2.8.1
    HashCheck Shell Extension (x86-32)
    Hermetic Stego 5.17
    Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
    HWiNFO32 Version 4.22
    iolo technologies' System Mechanic Professional 6
    IVONA 2
    J2SE Runtime Environment 5.0 Update 6
    Java(TM) 6 Update 3
    JDownloader 0.9
    JGsoft EditPad Pro 6 v.6.4.5
    jZip
    K-Lite Mega Codec Pack 10.2.0
    KhalSetup
    Logitech SetPoint
    Magic ISO Maker v5.3 (build 0221)
    MagicDisc 2.7.106
    Malwarebytes Anti-Malware version 1.75.0.1300
    MediaInfo 0.7.64
    MeGUI modern media encoder (remove only)
    Messenger Plus!
    Messenger Plus! 3
    Messenger Plus! for Skype
    Microsoft .NET Framework 2.0 Service Pack 2
    Microsoft .NET Framework 3.0 Service Pack 2
    Microsoft .NET Framework 3.5 SP1
    Microsoft .NET Framework 4 Client Profile
    Microsoft .NET Framework 4 Extended
    Microsoft Application Error Reporting
    Microsoft Choice Guard
    Microsoft Office Professional Edition 2003
    Microsoft Platform SDK (3790.1830)
    Microsoft Virtual PC 2007 SP1
    Microsoft Visual C++ 2005 Redistributable
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
    Microsoft Visual C++ 6.0 Standard Edition
    Microsoft_VC80_CRT_x86
    Microsoft_VC90_CRT_x86
    MIDI Yoke
    Midi2Wav Recorder
    MKVToolNix 6.7.0 [20140102-565]
    Mozilla Firefox 27.0.1 (x86 en-US)
    Mozilla Maintenance Service
    Mpeg Layer3 Codec FHG-Radium v1.263
    MSVCRT
    MSXML 4.0 SP2 (KB954430)
    MSXML 4.0 SP2 (KB973688)
    MSXML 6.0 Parser (KB927977)
    Music MasterWorks v3.60
    NCH Tone Generator
    Neat Video v3.4.0 Pro plug-in for VirtualDub
    Nero 6
    NetConceal Anonymizer
    Ninotech Date Edit 4.0
    NirSoft ShellExView
    Notepad++
    NVIDIA Control Panel 306.81
    NVIDIA GeForce Experience 1.8.1
    NVIDIA Graphics Driver 306.81
    NVIDIA Install Application
    NVIDIA Network Service
    NVIDIA nView 136.28
    NVIDIA PhysX
    NVIDIA PhysX System Software 9.13.0725
    NVIDIA Update 10.11.15
    NVIDIA Update Core
    Oracle VM VirtualBox 4.2.6
    Oracle VM VirtualBox Guest Additions 4.1.8
    Original CD Emulator Personal Edition
    Osmo4/GPAC (remove only)
    PasswordTools
    PDF Settings CS6
    PeerBlock 1.2 (r693)
    PeerGuardian 2.0
    PerformanceTest v7.0
    PerformanceTest v8.0
    PowerDVD
    PowerISO
    Privoxy 3.0.6
    Project64 1.6
    Python 2.5.2
    QuickTime
    Realtek High Definition Audio Driver
    Renesas Electronics USB 3.0 Host Controller Driver
    Resource Hacker Version 3.6.0
    ScAIEdit III
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2604111)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2736416)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2840629)
    Security Update for Microsoft .NET Framework 3.5 SP1 (KB2861697)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2736428)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2840628v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2858302v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2861188)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2898855v2)
    Security Update for Microsoft .NET Framework 4 Client Profile (KB2901110v2)
    Security Update for Microsoft .NET Framework 4 Extended (KB2487367)
    Security Update for Microsoft .NET Framework 4 Extended (KB2736428)
    Security Update for Microsoft .NET Framework 4 Extended (KB2742595)
    Security Update for Microsoft .NET Framework 4 Extended (KB2858302v2)
    Security Update for Microsoft .NET Framework 4 Extended (KB2901110v2)
    Segoe UI
    Skype™ 6.14
    Sony Ericsson PC Suite
    Sony Noise Reduction Plug-In 2.0h
    Sony Sound Forge 9.0
    SoundMAX
    Sp5
    Sp5Intl
    Sp5TTInt
    SpCommon
    SpPhones
    StarCraft
    StarCraft II
    StarCraft X-tra Editor Version 2.5
    StealthNet 0.8.1.3
    Sweet Plumcot
    SysTracer v2.4
    Tag&Rename 3.4.6
    TCC LE 13.0
    Text2Go
    Tracks Eraser Pro v5.5
    TreeSize Professional 4.3.2
    Trillian
    Tweak UI
    UltimateDefrag 2008
    UltraISO Premium V9.36
    Unlocker 1.9.0
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
    Update for Windows XP (KB955704)
    VLC media player 2.0.5
    VobSub v2.23 (Remove Only)
    Voice Converter version 1.0
    Vuze
    Wav2MP3 n1.0.16 - i1.0.04
    WebFldrs XP
    Winamp
    Winamp Detector Plug-in
    WinDirStat 1.1.2
    Windows Live Call
    Windows Live Communications Platform
    Windows Live Essentials
    Windows Live Messenger
    Windows Live Sign-in Assistant
    Windows Live Upload Tool
    Windows Media Format Runtime
    Windows Password
    Windows PowerShell(TM) 1.0
    Windows Presentation Foundation
    Windows Resource Kit Tools
    Windows Resource Kit Tools - SubInAcl.exe
    WinRAR 5.01 (32-bit)
    x264vfw - H.264/MPEG-4 AVC codec (remove only)
    XML Paper Specification Shared Components Pack 1.0
    XXConsole: Super Console Generator ver 0.96
    XYplorer 11.50
    YTD Video Downloader 3.9.6
    zbattle.net 1.09 SR-1 beta
    ZD-spc
    .
    ==== Event Viewer Messages From Past Week ========
    .
    2/21/2014 6:52:21 AM, error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load: VBoxSF
    2/21/2014 6:50:03 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the VirtualBox Guest Additions Service service to connect.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7009] - Timeout (30000 milliseconds) waiting for the Messenger Plus! Service service to connect.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7000] - The VirtualBox Guest Additions Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7000] - The Parallel port driver service failed to start due to the following error: The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7000] - The Messenger Plus! Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7000] - The COM+ Messages service failed to start due to the following error: The system cannot find the file specified.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7000] - The avast! iAVS4 Control Service service failed to start due to the following error: The system cannot find the file specified.
    2/21/2014 6:50:03 AM, error: Service Control Manager [7000] - The avast! Antivirus service failed to start due to the following error: The system cannot find the file specified.
    2/21/2014 6:49:14 AM, error: dmboot [6] - dmboot: Failed to auto-import disk group Xp2Dg0. All volumes in the disk group are not available.
    2/21/2014 6:43:01 AM, error: Setup [60055] - Windows Setup encountered non-fatal errors during installation. Please check the setuperr.log found in your Windows directory for more information.
    2/21/2014 6:37:58 AM, error: DCOM [10005] - DCOM got error "%1058" attempting to start the service SENS with arguments " " in order to run the server: {D3938AB0-5B9D-11D1-8DD2-00AA004ABD5E}
    .
    ==== End Of File ===========================


    dds.txt

    DDS (Ver_2012-11-20.01) - NTFS_x86
    Internet Explorer: 6.0.2900.5512 BrowserJavaVersion: 1.6.0_03
    Run by Admin at 10:04:08 on 2014-02-24
    Microsoft Windows XP Professional 5.1.2600.3.1252.1.1033.18.3550.2471 [GMT -7:00]
    .
    AV: Avira Desktop *Enabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
    AV: avast! antivirus 4.8.1229 [VPS 081102-0] *Disabled/Outdated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
    FW: COMODO Firewall *Enabled*
    .
    ============== Running Processes ================
    .
    C:\WINDOWS\system32\spoolsv.exe
    C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
    C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe
    C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    C:\Program Files\Yuna Software\Messenger Plus! for Skype\MsgPlusForSkypeService.exe
    C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
    C:\WINDOWS\Explorer.EXE
    C:\WINDOWS\system32\nvsvc32.exe
    C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
    C:\WINDOWS\System32\alg.exe
    C:\Program Files\iolo\System Mechanic Professional 6\SystemGuardAlerter.exe
    C:\Program Files\Yuna Software\Messenger Plus!\PlusService.exe
    C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
    C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
    C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
    C:\WINDOWS\system32\RUNDLL32.EXE
    C:\WINDOWS\RTHDCPL.EXE
    C:\program files\Bandwidth Monitor Pro\Bandwidth Monitor Pro.exe
    C:\WINDOWS\system32\ctfmon.exe
    C:\Program Files\Skype\Phone\Skype.exe
    C:\Program Files\Yuna Software\Messenger Plus! for Skype\Messenger Plus! for Skype.exe
    C:\Program Files\MagicDisc\MagicDisc.exe
    C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe
    C:\WINDOWS\notepad.exe
    C:\Program Files\Mozilla Firefox\firefox.exe
    C:\Program Files\Mozilla Firefox\plugin-container.exe
    C:\WINDOWS\system32\wbem\wmiprvse.exe
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k NetworkService
    C:\WINDOWS\system32\svchost.exe -k LocalService
    C:\WINDOWS\System32\svchost.exe -k netsvcs
    C:\WINDOWS\system32\svchost.exe -k imgsvc
    .
    ============== Pseudo HJT Report ===============
    .
    uStart Page = hxxp://www.google.com/
    uSearch Page = hxxp://www.google.com
    BHO: DAPBHO Class: {0096CC0A-623C-4829-AD9C-19AF0DC9D8FE} - c:\program files\dap\DAPIEBar.dll
    BHO: AcroIEHlprObj Class: {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - c:\program files\adobe\acrobat 6.0\reader\activex\AcroIEHelper.dll
    BHO: Anonymizer Proxy: {0DB66BA8-5E1F-4963-93D1-E1D6B78FE9A2} - c:\program files\netconceal anonymizer\ProxyNew.dll
    BHO: BitComet Helper: {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - c:\program files\bitcomet\tools\BitCometBHO_1.2.2.28.dll
    BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - <orphaned>
    BHO: SSVHelper Class: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - c:\program files\java\jre1.6.0_03\bin\ssv.dll
    BHO: Windows Live Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    TB: DAP Bar: {62999427-33FC-4baf-9C9C-BCE6BD127F08} - c:\program files\dap\DAPIEBar.dll
    TB: Text2Go: {1a4ee09d-2bc1-452e-9049-63c6bd3ceb43} -
    EB: {32683183-48a0-441b-a342-7c2a440a9478} - <orphaned>
    uRun: [Bandwidth Monitor Pro] "c:\program files\bandwidth monitor pro\Bandwidth Monitor Pro.exe" /minimized
    uRun: [ctfmon.exe] c:\windows\system32\ctfmon.exe
    uRun: [AdobeBridge] <no file>
    mRun: [SystemGuardAlerter] "c:\program files\iolo\system mechanic professional 6\SystemGuardAlerter.exe "
    mRun: [ioloDelayModule] c:\program files\iolo\system mechanic professional 6\delay.exe
    mRun: [Logitech Hardware Abstraction Layer] KHALMNPR.EXE
    mRun: [PlusService] c:\program files\yuna software\messenger plus!\PlusService.exe
    mRun: [IMJPMIG8.1] "c:\windows\ime\imjp8_1\IMJPMIG.EXE" /Spoil /RemAdvDef /Migration32
    mRun: [IMEKRMIG6.1] c:\windows\ime\imkr6_1\IMEKRMIG.EXE
    mRun: [PHIME2002ASync] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /SYNC
    mRun: [PHIME2002A] c:\windows\system32\ime\tintlgnt\TINTSETP.EXE /IMEName
    mRun: [MessengerPlusForSkypeService] "c:\program files\yuna software\messenger plus! for skype\MsgPlusForSkypeService.exe "
    mRun: [AdobeAAMUpdater-1.0] "c:\program files\common files\adobe\oobe\pdapp\uwa\UpdaterStartupUtility.exe "
    mRun: [NUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\nusb3mon.exe "
    mRun: [RUSB3MON] "c:\program files\renesas electronics\usb 3.0 host controller driver\application\rusb3mon.exe "
    mRun: [QuickTime Task] "c:\program files\quicktime\qttask.exe" -atboottime
    mRun: [NvBackend] "c:\program files\nvidia corporation\update core\NvBackend.exe "
    mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
    mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
    mRun: [RTHDCPL] RTHDCPL.EXE
    dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
    StartupFolder: c:\docume~1\admin\startm~1\programs\startup\magicd~1.lnk - c:\program files\magicdisc\MagicDisc.exe
    uPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    mPolicies-Explorer: NoDriveTypeAutoRun = dword:145
    IE: &D&ownload &with BitComet - c:\program files\bitcomet\BitComet.exe/AddLink.htm
    IE: &D&ownload all video with BitComet - c:\program files\bitcomet\BitComet.exe/AddVideo.htm
    IE: &D&ownload all with BitComet - c:\program files\bitcomet\BitComet.exe/AddAllLink.htm
    IE: &Download with &DAP - c:\progra~1\dap\dapextie.htm
    IE: Add Text - c:\program files\tumbywood software\text2go\AddTextContextMenu.htm
    IE: Check Text - c:\program files\tumbywood software\text2go\CheckSelectedContextMenu.htm
    IE: Download &all with DAP - c:\program files\dap\dapextie2.htm
    IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office11\EXCEL.EXE/3000
    IE: Speak - c:\program files\tumbywood software\text2go\SpeakSelectedContextMenu.htm
    IE: Text2Go - c:\program files\tumbywood software\text2go\Text2GoContextMenu.htm
    IE: Use as Text2Go Artwork - c:\program files\tumbywood software\text2go\AddArtworkContextMenu.htm
    IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_03\bin\ssv.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
    IE: {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - c:\program files\bitcomet\tools\BitCometBHO_1.2.2.28.dll/206
    IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
    IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\program files\messenger\msmsgs.exe
    LSP: c:\windows\system32\dcsws2.dll
    DPF: Microsoft XML Parser for Java - file://c:\windows\java\classes\xmldso.cab
    DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-0012-0000-0000-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.2.0/jinstall-1_2_0-windows-i586.cab
    DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    TCP: NameServer = 192.168.1.254 75.153.176.1
    TCP: Interfaces\{10F11122-BC2D-48D6-88AC-7FC411E1D158} : DHCPNameServer = 64.59.135.133 64.59.135.135 64.59.128.120
    TCP: Interfaces\{2ADFBFD1-CCF2-4519-A80E-9B90C0099C31} : DHCPNameServer = 192.168.1.254 75.153.176.1
    TCP: Interfaces\{CEB9ABED-5521-4131-8C78-5B5E4C59C174} : DHCPNameServer = 192.168.1.254
    Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - c:\program files\common files\skype\Skype4COM.dll
    Name-Space Handler: ftp\DLA.IEClickMon - {A5A08E80-B472-11D2-89D1-0080C8C12A3A} - c:\program files\iolo\common\lib\URLStopper.dll
    Name-Space Handler: http\DLA.IEClickMon - {A5A08E80-B472-11D2-89D1-0080C8C12A3A} - c:\program files\iolo\common\lib\URLStopper.dll
    AppInit_DLLs= c:\windows\system32\guard32.dll
    .
    ================= FIREFOX ===================
    .
    FF - ProfilePath - c:\documents and settings\admin\application data\mozilla\firefox\profiles\mpuxkbdf.default\
    FF - prefs.js: browser.search.selectedEngine - Search
    FF - prefs.js: browser.startup.homepage - hxxp://www.google.com/
    FF - prefs.js: keyword.URL - hxxp://blekko.com/ws/?source={SourceID}&tbp=url&toolbarid=blekkotb_031&u=USERGUID&q=
    FF - plugin: c:\program files\winamp detect\npwachk.dll
    FF - plugin: c:\windows\system32\macromed\flash\NPSWF32_12_0_0_70.dll
    .
    ---- FIREFOX POLICIES ----
    FF - user.js: extensions.funmoods.hmpg - true
    FF - user.js: extensions.funmoods.hmpgUrl - hxxp://start.funmoods.com/?f=1&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=681617477
    FF - user.js: extensions.funmoods.dfltSrch - true
    FF - user.js: extensions.funmoods.srchPrvdr - Search
    FF - user.js: extensions.funmoods.dnsErr - true
    FF - user.js: extensions.funmoods_i.newTab - true
    FF - user.js: extensions.funmoods.newTabUrl - hxxp://start.funmoods.com/?f=2&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=681617477
    FF - user.js: extensions.funmoods.tlbrSrchUrl - hxxp://start.funmoods.com/?f=3&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=681617477&q=
    FF - user.js: extensions.funmoods.id - 485B39D1F106DA70
    FF - user.js: extensions.funmoods.instlDay - 15597
    FF - user.js: extensions.funmoods.vrsn - 1.5.23.22
    FF - user.js: extensions.funmoods.vrsni - 1.5.23.22
    FF - user.js: extensions.funmoods_i.vrsnTs - 1.5.23.2219:14:36
    FF - user.js: extensions.funmoods.prtnrId - funmoods
    FF - user.js: extensions.funmoods.prdct - funmoods
    FF - user.js: extensions.funmoods.aflt - ddrnw
    FF - user.js: extensions.funmoods_i.smplGrp - none
    FF - user.js: extensions.funmoods.tlbrId - base
    FF - user.js: extensions.funmoods.instlRef - ddrnw
    FF - user.js: extensions.funmoods.dfltLng -
    FF - user.js: extensions.funmoods.excTlbr - false
    FF - user.js: extensions.funmoods.autoRvrt - false
    FF - user.js: extensions.funmoods.envrmnt - production
    FF - user.js: extensions.funmoods.isdcmntcmplt - true
    FF - user.js: extensions.funmoods.mntrvrsn - 1.3.0
    .
    ============= SERVICES / DRIVERS ===============
    .
    R0 IoloFilter;IoloFilter;c:\windows\system32\drivers\IoloFltr.sys [2007-11-8 65024]
    R1 AsUpIO;AsUpIO;c:\windows\system32\drivers\AsUpIO.sys [2012-9-16 11448]
    R1 aswSP;avast! Self Protection;c:\windows\system32\drivers\aswSP.sys [2012-8-1 78416]
    R1 crlscsi;crlscsi;c:\windows\system32\drivers\crlscsi.sys [2005-9-2 6144]
    R1 HWiNFO32;HWiNFO32/64 Kernel Driver;c:\windows\system32\drivers\HWiNFO32.SYS [2013-9-6 22560]
    R1 VBoxDrv;VirtualBox Service;c:\windows\system32\drivers\VBoxDrv.sys [2012-8-8 188328]
    R1 VBoxUSBMon;VirtualBox USB Monitor Driver;c:\windows\system32\drivers\VBoxUSBMon.sys [2012-8-8 94632]
    R2 AsSysCtrlService;ASUS System Control Service;c:\program files\asus\assysctrlservice\1.00.02\AsSysCtrlService.exe [2013-8-15 90112]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2012-8-1 20560]
    R2 LBeepKE;LBeepKE;c:\windows\system32\drivers\LBeepKE.sys [2007-11-17 3712]
    R2 MsgPlusService;Messenger Plus! Service;c:\program files\yuna software\messenger plus! for skype\MsgPlusForSkypeService.exe [2013-1-25 125952]
    R2 NvNetworkService;NVIDIA Network Service;c:\program files\nvidia corporation\netservice\NvNetworkService.exe [2014-2-5 1494304]
    R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2014-2-24 40776]
    R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\drivers\nusb3hub.sys [2013-9-25 85768]
    R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\drivers\nusb3xhc.sys [2013-9-25 177800]
    R3 VBoxMouse;VirtualBox Guest Mouse Service;c:\windows\system32\drivers\VBoxMouse.sys [2012-8-1 85808]
    R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\drivers\VBoxNetAdp.sys [2011-12-19 104872]
    R3 VBoxNetFlt;VirtualBox Bridged Networking Service;c:\windows\system32\drivers\VBoxNetFlt.sys [2012-12-19 116136]
    S0 OCDE;ZTekWare Original CD Emulator Service;c:\windows\system32\drivers\OCDE.sys [2004-8-9 26384]
    S0 VBoxGuest;VirtualBox Guest Driver;c:\windows\system32\drivers\VBoxGuest.sys [2012-8-1 107312]
    S1 VBoxSF;VirtualBox Shared Folders;c:\windows\system32\drivers\VBoxSF.sys [2012-8-1 227632]
    S2 avast! Antivirus;avast! Antivirus; "c:\program files\alwil software\avast4\ashserv.exe" --> c:\program files\alwil software\avast4\ashServ.exe [?]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2012-8-12 130384]
    S2 COM+ Messages;COM+ Messages; "c:\windows\system32\svchosts.exe" -e mc-110-12-0001291 --> c:\windows\system32\svchosts.exe [?]
    S2 SkypeUpdate;Skype Updater;c:\program files\skype\updater\Updater.exe [2013-10-23 172192]
    S2 VBoxService;VirtualBox Guest Additions Service;system32\VBoxService.exe --> system32\VBoxService.exe [?]
    S3 ALSysIO;ALSysIO;\??\c:\docume~1\admin\locals~1\temp\alsysio.sys --> c:\docume~1\admin\locals~1\temp\ALSysIO.sys [?]
    S3 Ambfilt;Ambfilt;c:\windows\system32\drivers\Ambfilt.sys [2012-8-1 1684736]
    S3 avast! Mail Scanner;avast! Mail Scanner; "c:\program files\alwil software\avast4\ashmaisv.exe" /service --> c:\program files\alwil software\avast4\ashMaiSv.exe [?]
    S3 avast! Web Scanner;avast! Web Scanner; "c:\program files\alwil software\avast4\ashwebsv.exe" /service --> c:\program files\alwil software\avast4\ashWebSv.exe [?]
    S3 epmntdrv;epmntdrv;c:\windows\system32\epmntdrv.sys [2013-10-12 13896]
    S3 EuGdiDrv;EuGdiDrv;c:\windows\system32\EuGdiDrv.sys [2013-10-12 9160]
    S3 NTice;NTice;c:\windows\system32\drivers\ntice.sys [2006-9-2 1246338]
    S3 prwntdrv;prwntdrv;c:\windows\system32\prwntdrv.sys [2012-8-11 13064]
    S3 PsShutdownSvc;PsShutdown;c:\windows\PSSDNSVC.EXE [2013-8-25 87616]
    S3 sdd;sdd;c:\windows\system32\drivers\sddmini.sys --> c:\windows\system32\drivers\sddmini.sys [?]
    S3 SE2Fbus;Sony Ericsson Device 047 Driver driver (WDM);c:\windows\system32\drivers\SE2Fbus.sys [2008-1-10 61600]
    S3 SE2Fmdfl;Sony Ericsson Device 047 USB WMC Modem Filter;c:\windows\system32\drivers\SE2Fmdfl.sys [2013-5-10 9360]
    S3 SE2Fmdm;Sony Ericsson Device 047 USB WMC Modem Driver;c:\windows\system32\drivers\SE2Fmdm.sys [2013-5-10 97184]
    S3 SE2Fmgmt;Sony Ericsson Device 047 USB WMC Device Management Drivers (WDM);c:\windows\system32\drivers\SE2Fmgmt.sys [2013-5-10 88688]
    S3 se2Fnd5;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (NDIS);c:\windows\system32\drivers\se2Fnd5.sys [2013-5-10 18704]
    S3 SE2Fobex;Sony Ericsson Device 047 USB WMC OBEX Interface;c:\windows\system32\drivers\SE2Fobex.sys [2013-5-10 86560]
    S3 se2Funic;Sony Ericsson Device 047 USB Ethernet Emulation SEMC47 (WDM);c:\windows\system32\drivers\se2Funic.sys [2008-1-10 90800]
    S3 SetupNTGLM7X;SetupNTGLM7X;\??\e:\ntglm7x.sys --> e:\NTGLM7X.sys [?]
    S3 SwitchBoard;SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
    S3 VBoxUSB;VirtualBox USB;c:\windows\system32\drivers\VBoxUSB.sys [2013-2-27 84904]
    S3 VBoxVideo;VBoxVideo;c:\windows\system32\drivers\VBoxVideo.sys [2012-8-1 104240]
    S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2013-7-20 754856]
    .
    =============== File Associations ===============
    .
    ShellExec: BitComet.exe: open= "c:\program files\bitcomet\BitComet.exe "
    ShellExec: Game Lad.exe: open=blank
    ShellExec: tone.exe: open= "c:\program files\nch swift sound\tonegen\tone" "%L "
    .
    =============== Created Last 30 ================
    .
    2014-02-24 16:47:26 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
    2014-02-24 16:09:24 -------- d-----w- c:\documents and settings\admin\application data\Malwarebytes
    2014-02-24 16:09:00 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
    2014-02-24 16:09:00 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
    2014-02-24 16:09:00 -------- d-----w- c:\documents and settings\all users\application data\Malwarebytes
    2014-02-24 15:25:22 116224 -c--a-w- c:\windows\system32\dllcache\xrxwiadr.dll
    2014-02-24 15:25:20 23040 -c--a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
    2014-02-24 15:25:19 18944 -c--a-w- c:\windows\system32\dllcache\xrxscnui.dll
    2014-02-24 15:25:17 27648 -c--a-w- c:\windows\system32\dllcache\xrxftplt.exe
    2014-02-24 15:25:15 4608 -c--a-w- c:\windows\system32\dllcache\xrxflnch.exe
    2014-02-24 15:24:44 99865 -c--a-w- c:\windows\system32\dllcache\xlog.exe
    2014-02-24 15:24:42 16970 -c--a-w- c:\windows\system32\dllcache\xem336n5.sys
    2014-02-24 15:24:41 19455 -c--a-w- c:\windows\system32\dllcache\wvchntxx.sys
    2014-02-24 15:24:28 12063 -c--a-w- c:\windows\system32\dllcache\wsiintxx.sys
    2014-02-24 15:24:27 8192 -c--a-w- c:\windows\system32\dllcache\wshirda.dll
    2014-02-24 15:24:08 8832 -c--a-w- c:\windows\system32\dllcache\wmiacpi.sys
    2014-02-24 15:24:01 154624 -c--a-w- c:\windows\system32\dllcache\wlluc48.sys
    2014-02-24 15:22:57 19528 -c--a-w- c:\windows\system32\dllcache\w840nd.sys
    2014-02-24 15:21:55 94720 -c--a-w- c:\windows\system32\dllcache\umaxud32.dll
    2014-02-24 15:20:58 82944 -c--a-w- c:\windows\system32\dllcache\tp4mon.exe
    2014-02-24 15:19:59 32640 -c--a-w- c:\windows\system32\dllcache\symc8xx.sys
    2014-02-24 15:18:57 61824 -c--a-w- c:\windows\system32\dllcache\speed.sys
    2014-02-24 15:17:59 28672 -c--a-w- c:\windows\system32\dllcache\sma0w.dll
    2014-02-24 15:16:43 6912 -c--a-w- c:\windows\system32\dllcache\seaddsmc.sys
    2014-02-24 15:15:58 79872 -c--a-w- c:\windows\system32\dllcache\rwia430.dll
    2014-02-24 15:15:57 29696 -c--a-w- c:\windows\system32\dllcache\rw450ext.dll
    2014-02-24 15:15:57 27648 -c--a-w- c:\windows\system32\dllcache\rw430ext.dll
    2014-02-24 15:15:50 20992 -c--a-w- c:\windows\system32\dllcache\rtl8139.sys
    2014-02-24 15:15:49 19017 -c--a-w- c:\windows\system32\dllcache\rtl8029.sys
    2014-02-24 15:15:45 30720 -c--a-w- c:\windows\system32\dllcache\rthwcls.sys
    2014-02-24 15:15:32 9216 -c--a-w- c:\windows\system32\dllcache\rsmgrstr.dll
    2014-02-24 15:15:22 3840 -c--a-w- c:\windows\system32\dllcache\rpfun.sys
    2014-02-24 15:15:13 79104 -c--a-w- c:\windows\system32\dllcache\rocket.sys
    2014-02-24 15:15:12 30592 -c--a-w- c:\windows\system32\dllcache\rndismpx.sys
    2014-02-24 15:15:08 37563 -c--a-w- c:\windows\system32\dllcache\rlnet5.sys
    2014-02-24 15:15:06 59136 -c--a-w- c:\windows\system32\dllcache\rfcomm.sys
    2014-02-24 15:15:03 86097 -c--a-w- c:\windows\system32\dllcache\reslog32.dll
    2014-02-24 15:13:58 5632 -c--a-w- c:\windows\system32\dllcache\ptpusb.dll
    2014-02-24 15:12:58 116736 -c--a-w- c:\windows\system32\dllcache\ovcodec2.dll
    2014-02-24 15:11:59 15872 -c--a-w- c:\windows\system32\dllcache\ne2000.sys
    2014-02-24 15:10:59 51200 -c--a-w- c:\windows\system32\dllcache\msdv.sys
    2014-02-24 15:09:55 70730 -c--a-w- c:\windows\system32\dllcache\lne100tx.sys
    2014-02-24 15:08:58 45632 -c--a-w- c:\windows\system32\dllcache\ip5515.sys
    2014-02-24 15:07:59 50751 -c--a-w- c:\windows\system32\dllcache\hsf_tone.sys
    2014-02-24 15:06:54 92160 -c--a-w- c:\windows\system32\dllcache\fuusd.dll
    2014-02-24 15:05:58 19996 -c--a-w- c:\windows\system32\dllcache\em556n4.sys
    2014-02-24 15:04:59 29531 -c--a-w- c:\windows\system32\dllcache\dgapci.sys
    2014-02-24 15:03:59 8192 -c--a-w- c:\windows\system32\dllcache\changer.sys
    2014-02-24 15:02:59 57856 -c--a-w- c:\windows\system32\dllcache\atinbtxx.sys
    2014-02-24 15:01:46 66048 -c--a-w- c:\windows\system32\dllcache\s3legacy.dll
    2014-02-24 15:01:41 2188928 -c--a-w- c:\windows\system32\dllcache\ntoskrnl.exe
    2014-02-24 14:18:16 -------- d-----w- c:\windows\system32\temp
    2014-02-24 14:18:12 -------- d-----w- c:\program files\BurnInTest
    2014-02-24 13:53:21 281088 -c--a-w- c:\windows\system32\dllcache\pinball.exe
    2014-02-24 13:53:21 281088 ----a-w- c:\program files\windows nt\pinball\PINBALL.EXE
    2014-02-24 11:29:44 184320 -c--a-w- c:\windows\system32\dllcache\accwiz.exe
    2014-02-24 11:29:44 184320 ----a-w- c:\windows\system32\accwiz.exe
    2014-02-24 11:28:58 68608 ----a-w- c:\windows\system32\access.cpl
    2014-02-23 18:25:47 131584 -c--a-w- c:\windows\system32\dllcache\sndrec32.exe
    2014-02-23 18:25:47 131584 ----a-w- c:\windows\system32\sndrec32.exe
    2014-02-23 17:23:54 -------- d-----w- c:\documents and settings\admin\local settings\application data\Skype
    2014-02-23 16:52:18 123392 -c--a-w- c:\windows\system32\dllcache\mplay32.exe
    2014-02-23 16:52:18 123392 ----a-w- c:\windows\system32\mplay32.exe
    2014-02-23 16:24:00 347136 ----a-w- c:\windows\system32\hypertrm.dll
    2014-02-23 16:20:41 539136 -c--a-w- c:\windows\system32\dllcache\dialer.exe
    2014-02-23 16:20:41 539136 ----a-w- c:\program files\windows nt\dialer.exe
    2014-02-23 15:37:49 343040 -c--a-w- c:\windows\system32\dllcache\mspaint.exe
    2014-02-23 15:37:49 343040 ----a-w- c:\windows\system32\mspaint.exe
    2014-02-23 15:37:42 102912 -c--a-w- c:\windows\system32\dllcache\clipbrd.exe
    2014-02-23 15:37:42 102912 ----a-w- c:\windows\system32\clipbrd.exe
    2014-02-23 15:33:40 18944 -c--a-w- c:\windows\system32\dllcache\simptcp.dll
    2014-02-23 15:33:40 18944 ----a-w- c:\windows\system32\simptcp.dll
    2014-02-23 15:33:33 966656 ----a-w- c:\program files\msn\msncorefiles\oobe\obemetal.dll
    2014-02-23 15:33:33 86016 ----a-w- c:\program files\msn\msncorefiles\oobe\obepopc.dll
    2014-02-23 15:33:33 77824 ----a-w- c:\program files\msn\msncorefiles\oobe\obemtllc.dll
    2014-02-23 15:33:33 229376 ----a-w- c:\program files\msn\msncorefiles\oobe\obelog.dll
    2014-02-23 15:33:26 884712 ----a-w- c:\program files\msn\msncorefiles\install\msn9components\Digcore.exe
    2014-02-23 15:33:25 1327320 ----a-w- c:\program files\msn\msncorefiles\install\msnsusii.exe
    2014-02-23 15:33:25 11053008 ----a-w- c:\program files\msn\msncorefiles\install\msn9components\Msncli.exe
    2014-02-23 15:32:25 538624 -c--a-w- c:\windows\system32\dllcache\spider.exe
    2014-02-23 15:32:25 538624 ----a-w- c:\windows\system32\spider.exe
    2014-02-23 15:05:46 35328 -c--a-w- c:\windows\system32\dllcache\iprip.dll
    2014-02-23 15:05:46 35328 ----a-w- c:\windows\system32\iprip.dll
    2014-02-23 14:56:29 57344 -c----w- c:\windows\system32\dllcache\uexfat.dll
    2014-02-23 14:56:29 133632 -c----w- c:\windows\system32\dllcache\exfat.sys
    2014-02-23 14:16:59 5632 -c--a-w- c:\windows\system32\dllcache\smimsgif.dll
    2014-02-23 14:15:59 8192 -c--a-w- c:\windows\system32\dllcache\httpmb51.dll
    2014-02-23 14:12:18 214528 -c--a-w- c:\windows\system32\dllcache\icwconn1.exe
    2014-02-23 14:12:18 214528 ----a-w- c:\program files\internet explorer\connection wizard\icwconn1.exe
    2014-02-23 13:52:35 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
    2014-02-23 13:52:35 24661 ----a-w- c:\windows\system32\spxcoins.dll
    2014-02-23 13:52:35 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
    2014-02-23 13:52:35 13312 ----a-w- c:\windows\system32\irclass.dll
    2014-02-23 13:52:01 16535 ----a-r- c:\windows\SET129.tmp
    2014-02-23 13:51:58 1088840 ----a-r- c:\windows\SET11D.tmp
    2014-02-23 13:51:56 1296669 ----a-r- c:\windows\SET119.tmp
    2014-02-23 11:11:05 16535 ----a-r- c:\windows\SET12B.tmp
    2014-02-23 11:11:00 1088840 ----a-r- c:\windows\SET11F.tmp
    2014-02-23 11:10:58 1296669 ----a-r- c:\windows\SET11C.tmp
    2014-02-22 20:48:20 -------- d-----w- c:\program files\common files\EZB Systems
    2014-02-22 20:48:19 -------- d-----w- c:\program files\UltraISO
    2014-02-22 11:30:39 1505104 ------w- c:\windows\system32\msvcr100d.dll
    2014-02-22 10:40:55 16535 ----a-r- c:\windows\SET1A8.tmp
    2014-02-22 10:40:43 1088840 ----a-r- c:\windows\SET19C.tmp
    2014-02-22 10:40:41 1296669 ----a-r- c:\windows\SET199.tmp
    2014-02-22 09:42:36 -------- d-----w- C:\I386
    2014-02-21 21:26:23 -------- d-----w- c:\documents and settings\admin\application data\EurekaLog
    2014-02-21 15:39:27 -------- d-----w- c:\windows\system32\MRT
    2014-02-21 13:57:46 214528 -c--a-w- c:\windows\system32\dllcache\wordpad.exe
    2014-02-21 13:57:46 214528 ----a-w- c:\program files\windows nt\accessories\wordpad.exe
    2014-02-21 13:57:21 56832 ----a-w- c:\windows\system32\SET9F.tmp
    2014-02-21 13:57:21 54272 ----a-w- c:\windows\system32\SET9E.tmp
    2014-02-21 13:57:21 301568 ----a-w- c:\windows\system32\SETA2.tmp
    2014-02-21 13:57:21 147456 ----a-w- c:\windows\system32\SETA0.tmp
    2014-02-21 13:56:57 136192 ------w- c:\windows\system32\SETAB.tmp
    2014-02-21 13:11:21 16535 ----a-r- c:\windows\SET1A4.tmp
    2014-02-21 13:11:18 1088840 ----a-r- c:\windows\SET198.tmp
    2014-02-21 13:11:16 1296669 ----a-r- c:\windows\SET195.tmp
    2014-02-19 18:35:23 -------- d-----w- c:\documents and settings\admin\application data\X-Chat 2
    2014-02-19 18:18:40 -------- d-----w- c:\program files\xchat
    2014-02-11 20:16:56 -------- d-----w- c:\program files\IVONA
    2014-02-11 19:16:59 -------- d-----w- c:\program files\dspeech
    2014-02-09 20:42:20 -------- d-----w- c:\documents and settings\admin\application data\Tumbywood Software
    2014-02-09 20:42:16 -------- d-----w- c:\documents and settings\admin\local settings\application data\Tumbywood_Software
    2014-02-09 20:41:30 -------- d-----w- c:\documents and settings\all users\application data\Tumbywood Software
    2014-02-09 20:41:15 -------- d-----w- c:\program files\Tumbywood Software
    2014-02-08 23:38:09 -------- d-----w- c:\program files\Resource Hacker
    2014-02-08 03:45:33 -------- d-----w- c:\program files\Mozilla Maintenance Service
    2014-02-05 16:18:41 -------- d-----w- c:\documents and settings\admin\local settings\application data\NVIDIA
    2014-02-05 16:09:59 893728 ----a-w- c:\windows\system32\nvdispgenco3233221.dll
    2014-02-05 16:09:59 1049888 ----a-w- c:\windows\system32\nvdispco3233221.dll
    2014-02-05 15:53:38 -------- d-----w- c:\windows\system32\wbem\repository\FS
    2014-02-05 15:53:38 -------- d-----w- c:\windows\system32\wbem\Repository
    .
    ==================== Find3M ====================
    .
    2014-02-23 14:01:35 1101436 ----a-w- c:\windows\system32\nvdrsdb1.bin
    2014-02-23 14:01:35 1 ----a-w- c:\windows\system32\nvdrssel.bin
    2014-02-23 13:59:56 1101436 ----a-w- c:\windows\system32\nvdrsdb0.bin
    2014-02-21 14:21:48 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2014-02-21 14:21:48 692616 ----a-w- c:\windows\system32\FlashPlayerApp.exe
    2014-02-03 01:47:08 87616 ----a-w- c:\windows\PSSDNSVC.EXE
    2014-02-03 01:47:02 25 ----a-w- c:\documents and settings\admin\coutndown hibernate.bat
    2013-12-20 18:00:00 112640 ----a-w- c:\windows\system32\ff_vfw.dll
    2013-12-01 13:10:54 218200 ----a-w- c:\windows\system32\unrar.dll
    .
    ============= FINISH: 10:05:43.25 ===============
     
    Last edited by a moderator: 2014/02/24
  2. 2014/02/24
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Welcome aboard [​IMG]

    Please, observe following rules:
    • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
    • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
    • Please refrain from running any tools, fixes or applying any changes to your computer other than those I suggest.
    • Never run more than one scan at a time.
    • Keep updating me regarding your computer behavior, good, or bad.
    • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
    • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
    • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.

    ===================================

    [​IMG] Do NOT wrap logs in code brackets.

    [​IMG] You're running two AV programs, Avast and Avira.
    You must uninstall one of them.

    [​IMG] Please give me more details about computer problems.

    [​IMG] Download RogueKiller from one of the following links and save it to your Desktop:
    • Close all the running programs
    • Windows Vista/7 users: right click on RogueKiller.exe, click Run as Administrator
    • Otherwise just double-click on RogueKiller.exe
    • Pre-scan will start. Let it finish.
    • Click on SCAN button.
    • Wait until the Status box shows Scan Finished
    • Click on Delete.
    • Wait until the Status box shows Deleting Finished.
    • Click on Report and copy/paste the content of the Notepad into your next reply.
    • RKreport.txt could also be found on your desktop.
    • If more than one log is produced post all logs.
    • If RogueKiller has been blocked, do not hesitate to try a few times more. If really won't run, rename it to winlogon.exe (or winlogon.com) and try again

    [​IMG] Create new restore point before proceeding with the next step....
    How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

    Download Malwarebytes Anti-Rootkit (MBAR) from HERE
    • Unzip downloaded file.
    • Open the folder where the contents were unzipped and run mbar.exe
    • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
    • Click on the Cleanup button to remove any threats and reboot if prompted to do so.
    • Wait while the system shuts down and the cleanup process is performed.
    • Perform another scan with Malwarebytes Anti-Rootkit to verify that no threats remain. If they do, then click Cleanup once more and repeat the process.
    • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt
     

  3. to hide this advert.

  4. 2014/02/25
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    http://www.windowsbbs.com/windows-xp/107153-getting-copy-errors-windows-component-wizard.html

    That's the original thread with my problem where I was instructed to start this new thread from.

    Avast! has been uninstalled a long time ago but some of its files are present on the system which I thought I got rid of. Nevertheless, be assured it's uninstalled and not running.

    Avira I uninstalled just a few days ago because I thought it might've been interfering with the Windows repair install. It turns out this wasn't the case but now due to your instructions of not changing anything on my system yet I have not reinstalled it.

    RogueKiller logs:

    RogueKiller V8.8.9 [Feb 24 2014] by Tigzy
    mail : tigzyRK<at>gmail<dot>com
    Feedback : http://forum.adlice.com
    Website : http://www.adlice.com/softwares/roguekiller/
    Blog : http://www.adlice.com

    Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
    Started in : Normal mode
    User : Admin [Admin rights]
    Mode : Scan -- Date : 02/25/2014 05:51:02
    | ARK || FAK || MBR |

    ¤¤¤ Bad processes : 0 ¤¤¤

    ¤¤¤ Registry Entries : 2 ¤¤¤
    [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND
    [HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\RECYCLER\S-1-5-21-823518204-1482476501-

    682003330-1003\$3a203b97305b2e2652729a47be1de5ac\n. [x]) -> FOUND

    ¤¤¤ Scheduled tasks : 1 ¤¤¤
    [V1][SUSP PATH] AE8C5ED190BBDA95.job : c:\docume~1\admin\applic~1\licens~1\Bleh Junk Does.exe [x]

    -> FOUND

    ¤¤¤ Startup Entries : 0 ¤¤¤

    ¤¤¤ Web browsers : 0 ¤¤¤

    ¤¤¤ Browser Addons : 0 ¤¤¤

    ¤¤¤ Particular Files / Folders: ¤¤¤
    [ZeroAccess][File] @ : C:\Documents and Settings\Admin\Local Settings\Application Data\{3a203b97

    -305b-2e26-5272-9a47be1de5ac}\@ [-] --> FOUND
    [ZeroAccess][File] @ : C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac\@ [-] --> FOUND
    [ZeroAccess][File] @ : C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003

    \$3a203b97305b2e2652729a47be1de5ac\@ [-] --> FOUND
    [ZeroAccess][Folder] U : C:\Documents and Settings\Admin\Local Settings\Application

    Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}\U [-] --> FOUND
    [ZeroAccess][Folder] U : C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac\U [-] --> FOUND
    [ZeroAccess][Folder] U : C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003

    \$3a203b97305b2e2652729a47be1de5ac\U [-] --> FOUND
    [ZeroAccess][Folder] L : C:\Documents and Settings\Admin\Local Settings\Application

    Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}\L [-] --> FOUND
    [ZeroAccess][Folder] L : C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac\L [-] --> FOUND
    [ZeroAccess][Folder] L : C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003

    \$3a203b97305b2e2652729a47be1de5ac\L [-] --> FOUND

    ¤¤¤ Driver : [LOADED] ¤¤¤
    [Address] SSDT[41] : NtCreateKey @ 0x80623786 -> HOOKED (IoloFltr.sys @ 0xB81126C2)
    [Address] SSDT[63] : NtDeleteKey @ 0x80623C16 -> HOOKED (IoloFltr.sys @ 0xB811292C)
    [Address] SSDT[65] : NtDeleteValueKey @ 0x80623DE6 -> HOOKED (IoloFltr.sys @ 0xB81127DE)
    [Address] SSDT[119] : NtOpenKey @ 0x80624B58 -> HOOKED (IoloFltr.sys @ 0xB811232E)
    [Address] SSDT[247] : NtSetValueKey @ 0x80621D0C -> HOOKED (IoloFltr.sys @ 0xB8112A30)
    [Inline] EAT @firefox.exe (LdrLoadDll) : ntdll.dll -> HOOKED (C:\Program Files\Mozilla

    Firefox\mozglue.dll @ 0x10001FFD)

    ¤¤¤ External Hives: ¤¤¤
    -> I:\windows\system32\config\SYSTEM | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND]

    | USERINFO [Startup - FOUND]
    -> I:\windows\system32\config\SOFTWARE | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 -

    FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\Administrator\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys -

    E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\Default User\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:]

    [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\LocalService\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:]

    [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\NetworkService\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys -

    E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\UpdatusUser\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:]

    [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\Admin\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32

    - FOUND] | USERINFO [Startup - FOUND]

    ¤¤¤ Infection : ZeroAccess ¤¤¤

    ¤¤¤ HOSTS File: ¤¤¤
    --> %SystemRoot%\System32\drivers\etc\hosts


    127.0.0.1 localhost


    ¤¤¤ MBR Check: ¤¤¤

    +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST3500418AS +++++
    --- User ---
    [MBR] 417f3fbb58624b130ae6d1b6f7227b9f
    [BSP] 0484f25171d550239914ef657eaebe9d : Windows XP MBR Code
    Partition table:
    0 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 64 | Size: 476937 Mo
    User = LL1 ... OK!
    User = LL2 ... OK!

    +++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) Disk drive +++++
    --- User ---
    [MBR] 8f6bbd88f218f9b547d013ebfd6b44c5
    [BSP] 51a26957ce5fc4983e5460f46a3879f7 : Windows XP MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 307196 Mo
    1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 629137530 | Size: 1231019 Mo
    User = LL1 ... OK!
    User = LL2 ... OK!

    +++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) SanDisk U3 Cruzer Micro USB Device +++++
    --- User ---
    [MBR] d7f9722e0d56124df7235afadfcac5be
    [BSP] 7c9a4e15195d9c9d0e2602fe9131ec8c : MBR Code unknown
    Partition table:
    0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 3223366781 | Size: 120449 Mo
    1 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 432871117 | Size: 378751 Mo
    2 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1869562563 | Size: 937124 Mo
    3 - [XXXXXX] OS/2 (0x0a) [VISIBLE] Offset (sectors): 515375104 | Size: 4064 Mo
    User = LL1 ... OK!
    Error reading LL2 MBR! ([0x32] The request is not supported. )

    +++++ PhysicalDrive3: (\\.\PHYSICALDRIVE3 @ USB) Lexar JumpDrive USB Device +++++
    --- User ---
    [MBR] 3c36e150104972ab9dcf0287cf759b04
    [BSP] 287e8b011874a54b9f30aa45ecc5a59e : Windows XP MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 128 | Size: 61055 Mo
    User = LL1 ... OK!
    Error reading LL2 MBR! ([0x32] The request is not supported. )

    +++++ PhysicalDrive4: (\\.\PHYSICALDRIVE4 @ USB) Lexar USB Flash Drive USB Device +++++
    --- User ---
    [MBR] 94e6e4a78645cba187c07cff4329e214
    [BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
    Partition table:
    0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 34976 | Size: 61070 Mo
    User = LL1 ... OK!
    Error reading LL2 MBR! ([0x32] The request is not supported. )

    Finished : << RKreport[0]_S_02252014_055102.txt >>




    RogueKiller V8.8.9 [Feb 24 2014] by Tigzy
    mail : tigzyRK<at>gmail<dot>com
    Feedback : http://forum.adlice.com
    Website : http://www.adlice.com/softwares/roguekiller/
    Blog : http://www.adlice.com

    Operating System : Windows XP (5.1.2600 Service Pack 3) 32 bits version
    Started in : Normal mode
    User : Admin [Admin rights]
    Mode : Remove -- Date : 02/25/2014 05:54:32
    | ARK || FAK || MBR |

    ¤¤¤ Bad processes : 0 ¤¤¤

    ¤¤¤ Registry Entries : 2 ¤¤¤
    [HJ DESK][PUM] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> REPLACED (0)
    [HJ INPROC][ZeroAccess] HKCR\[...]\InprocServer32 : (C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003\$3a203b97305b2e2652729a47be1de5ac\n. [x]) -> REPLACED (C:\WINDOWS\system32\shell32.dll)

    ¤¤¤ Scheduled tasks : 1 ¤¤¤
    [V1][SUSP PATH] AE8C5ED190BBDA95.job : c:\docume~1\admin\applic~1\licens~1\Bleh Junk Does.exe [x] -> DELETED

    ¤¤¤ Startup Entries : 0 ¤¤¤

    ¤¤¤ Web browsers : 0 ¤¤¤

    ¤¤¤ Browser Addons : 0 ¤¤¤

    ¤¤¤ Particular Files / Folders: ¤¤¤
    [ZeroAccess][File] @ : C:\Documents and Settings\Admin\Local Settings\Application Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}\@ [-] --> DELETED
    [ZeroAccess][File] @ : C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac\@ [-] --> DELETED
    [ZeroAccess][File] @ : C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003\$3a203b97305b2e2652729a47be1de5ac\@ [-] --> DELETED
    [ZeroAccess][Folder] U : C:\Documents and Settings\Admin\Local Settings\Application Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}\U [-] --> DELETED
    [ZeroAccess][Folder] U : C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac\U [-] --> DELETED
    [ZeroAccess][Folder] U : C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003\$3a203b97305b2e2652729a47be1de5ac\U [-] --> DELETED
    [ZeroAccess][Folder] L : C:\Documents and Settings\Admin\Local Settings\Application Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}\L [-] --> DELETED
    [ZeroAccess][Folder] L : C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac\L [-] --> DELETED
    [ZeroAccess][Folder] L : C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003\$3a203b97305b2e2652729a47be1de5ac\L [-] --> DELETED
    [ZeroAccess][File] 00000001.@ : C:\RECYCLER\S-1-5-18\$3A203~1\U\00000001.@ [-] --> DELETED
    [ZeroAccess][File] 00000001.@ : C:\RECYCLER\S-1-5-~1\$3A203~1\U\00000001.@ [-] --> DELETED
    [ZeroAccess][File] 800000cb.@ : C:\RECYCLER\S-1-5-~1\$3A203~1\U\800000cb.@ [-] --> DELETED

    ¤¤¤ Driver : [LOADED] ¤¤¤
    [Address] SSDT[41] : NtCreateKey @ 0x80623786 -> HOOKED (IoloFltr.sys @ 0xB81126C2)
    [Address] SSDT[63] : NtDeleteKey @ 0x80623C16 -> HOOKED (IoloFltr.sys @ 0xB811292C)
    [Address] SSDT[65] : NtDeleteValueKey @ 0x80623DE6 -> HOOKED (IoloFltr.sys @ 0xB81127DE)
    [Address] SSDT[119] : NtOpenKey @ 0x80624B58 -> HOOKED (IoloFltr.sys @ 0xB811232E)
    [Address] SSDT[247] : NtSetValueKey @ 0x80621D0C -> HOOKED (IoloFltr.sys @ 0xB8112A30)
    [Inline] EAT @firefox.exe (LdrLoadDll) : ntdll.dll -> HOOKED (C:\Program Files\Mozilla Firefox\mozglue.dll @ 0x10001FFD)

    ¤¤¤ External Hives: ¤¤¤
    -> I:\windows\system32\config\SYSTEM | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\windows\system32\config\SOFTWARE | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\Administrator\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\Default User\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\LocalService\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\NetworkService\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\UpdatusUser\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]
    -> I:\Documents and Settings\Admin\NTUSER.DAT | DRVINFO [Drv - I:] | SYSTEMINFO [Sys - E:] [Sys32 - FOUND] | USERINFO [Startup - FOUND]

    ¤¤¤ Infection : ZeroAccess ¤¤¤

    ¤¤¤ HOSTS File: ¤¤¤
    --> %SystemRoot%\System32\drivers\etc\hosts


    127.0.0.1 localhost


    ¤¤¤ MBR Check: ¤¤¤

    +++++ PhysicalDrive0: (\\.\PHYSICALDRIVE0 @ IDE) ST3500418AS +++++
    --- User ---
    [MBR] 417f3fbb58624b130ae6d1b6f7227b9f
    [BSP] 0484f25171d550239914ef657eaebe9d : Windows XP MBR Code
    Partition table:
    0 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 64 | Size: 476937 Mo
    User = LL1 ... OK!
    User = LL2 ... OK!

    +++++ PhysicalDrive1: (\\.\PHYSICALDRIVE1 @ IDE) Disk drive +++++
    --- User ---
    [MBR] 8f6bbd88f218f9b547d013ebfd6b44c5
    [BSP] 51a26957ce5fc4983e5460f46a3879f7 : Windows XP MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 307196 Mo
    1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 629137530 | Size: 1231019 Mo
    User = LL1 ... OK!
    User = LL2 ... OK!

    +++++ PhysicalDrive2: (\\.\PHYSICALDRIVE2 @ USB) SanDisk U3 Cruzer Micro USB Device +++++
    --- User ---
    [MBR] d7f9722e0d56124df7235afadfcac5be
    [BSP] 7c9a4e15195d9c9d0e2602fe9131ec8c : MBR Code unknown
    Partition table:
    0 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 3223366781 | Size: 120449 Mo
    1 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 432871117 | Size: 378751 Mo
    2 - [XXXXXX] UNKNOWN (0x00) [VISIBLE] Offset (sectors): 1869562563 | Size: 937124 Mo
    3 - [XXXXXX] OS/2 (0x0a) [VISIBLE] Offset (sectors): 515375104 | Size: 4064 Mo
    User = LL1 ... OK!
    Error reading LL2 MBR! ([0x32] The request is not supported. )

    +++++ PhysicalDrive3: (\\.\PHYSICALDRIVE3 @ USB) Lexar JumpDrive USB Device +++++
    --- User ---
    [MBR] 3c36e150104972ab9dcf0287cf759b04
    [BSP] 287e8b011874a54b9f30aa45ecc5a59e : Windows XP MBR Code
    Partition table:
    0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 128 | Size: 61055 Mo
    User = LL1 ... OK!
    Error reading LL2 MBR! ([0x32] The request is not supported. )

    +++++ PhysicalDrive4: (\\.\PHYSICALDRIVE4 @ USB) Lexar USB Flash Drive USB Device +++++
    --- User ---
    [MBR] 94e6e4a78645cba187c07cff4329e214
    [BSP] 33a07a59d299ab4ea9f4ab0156f9d86f : Windows XP MBR Code
    Partition table:
    0 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 34976 | Size: 61070 Mo
    User = LL1 ... OK!
    Error reading LL2 MBR! ([0x32] The request is not supported. )

    Finished : << RKreport[0]_D_02252014_055432.txt >>
    RKreport[0]_S_02252014_055102.txt



    Malwarebytes antirootkit logs:

    Malwarebytes Anti-Rootkit BETA 1.07.0.1009
    www.malwarebytes.org

    Database version: v2014.02.25.05

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 6.0.2900.5512
    :: XP1 [administrator]

    2/25/2014 7:23:53 AM
    mbar-log-2014-02-25 (07-23-53).txt

    Scan type: Quick scan
    Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
    Scan options disabled:
    Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
    Objects scanned: 359812
    Time elapsed: 34 minute(s), 45 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 3
    HKLM\SOFTWARE\CLASSES\INTERFACE\{977A494A-6AEC-4555-9CAF-FA6EB00ACF91} (Trojan.BHO) -> Delete on reboot.
    HKLM\SOFTWARE\CLASSES\TypeLib\{A8954909-1F0F-41A5-A7FA-3B376D69E226} (Trojan.BHO) -> Delete on reboot.
    HKCU\SOFTWARE\CLASSES\CLSID\{fbeb8a05-beee-4442-804e-409d6c4515e9} (Hijack.Trojan.Siredef.C) -> Delete on reboot.

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 2
    C:\RECYCLER\S-1-5-18\$3a203b97305b2e2652729a47be1de5ac (Trojan.Siredef.C) -> Delete on reboot.
    C:\RECYCLER\S-1-5-21-823518204-1482476501-682003330-1003\$3a203b97305b2e2652729a47be1de5ac (Trojan.Siredef.C) -> Delete on reboot.

    Files Detected: 1
    C:\Documents and Settings\Admin\Desktop\ROMS\Takeruloader\TK.exe (RiskWare.Tool.CK) -> No action taken.

    Physical Sectors Detected: 0
    (No malicious items detected)

    (end)

    Malwarebytes Anti-Rootkit BETA 1.07.0.1009
    www.malwarebytes.org

    Database version: v2014.02.25.06

    Windows XP Service Pack 3 x86 NTFS
    Internet Explorer 6.0.2900.5512
    :: XP1 [administrator]

    2/25/2014 8:16:20 AM
    mbar-log-2014-02-25 (08-16-20).txt

    Scan type: Quick scan
    Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken
    Scan options disabled:
    Kernel memory modifications detected. Deep Anti-Rootkit Scan engaged.
    Objects scanned: 359727
    Time elapsed: 33 minute(s), 9 second(s)

    Memory Processes Detected: 0
    (No malicious items detected)

    Memory Modules Detected: 0
    (No malicious items detected)

    Registry Keys Detected: 0
    (No malicious items detected)

    Registry Values Detected: 0
    (No malicious items detected)

    Registry Data Items Detected: 0
    (No malicious items detected)

    Folders Detected: 0
    (No malicious items detected)

    Files Detected: 1
    C:\Documents and Settings\Admin\Desktop\ROMS\Takeruloader\TK.exe (RiskWare.Tool.CK) -> No action taken.

    Physical Sectors Detected: 0
    (No malicious items detected)

    (end)
     
  5. 2014/02/25
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Are you saying that you don't have any AV program running right now?

    You're (were) infected with ZeroAccess rootkit so no wonder you had some problems.

    [​IMG] Please download AdwCleaner by Xplode onto your desktop.
    • Close all open programs and internet browsers.
    • Double click on adwcleaner.exe to run the tool.
    • Click on Scan button.
    • When the scan has finished click on Clean button.
    • Your computer will be rebooted automatically. A text file will open after the restart.
    • Please post the contents of that logfile with your next reply.
    • You can find the logfile at C:\AdwCleaner[S1].txt as well.

    [​IMG] Please download Junkware Removal Tool to your desktop.
    • Shut down your protection software now to avoid potential conflicts.
    • Run the tool by double-clicking it. If you are using Windows Vista, 7, or 8; instead of double-clicking, right-mouse click JRT.exe and select "Run as Administrator ".
    • The tool will open and start scanning your system.
    • Please be patient as this can take a while to complete depending on your system's specifications.
    • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
    • Post the contents of JRT.txt into your next message.

    [​IMG] Please download Farbar Recovery Scan Tool and save it to your Desktop.

    Note: You need to run the version compatibale with your system. If you are not sure which version applies to your system download both of them and try to run them. Only one of them will run on your system, that will be the right version.
    • Double-click to run it. When the tool opens click Yes to disclaimer.
    • Press Scan button.
    • It will make a log (FRST.txt) in the same directory the tool is run. Please copy and paste it to your reply.
    • The first time the tool is run, it makes also another log (Addition.txt). Please copy and paste it to your reply.
     
  6. 2014/02/26
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    Correct. No AVs installed. I'll reinstall them when this is all over.

    Upon looking up ZeroAccess it seems to be a bitcoin miner. Whoever wrote it I admire because I never noticed my computer working hard when it shouldn't. Explorer.exe did sometimes take up 100% of one core for no conceivable reason though upon which I just restarted it with task manager. Whoever wrote ZeroAccess made it rather discrete. Oh well, glad it's gone.

    Logs you requested are too long to fit on this page so I zipped it.
     
  7. 2014/02/26
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    I just posted a link but it got deleted.

    h t t p : / / w w w . s e n d s p a c e . c o m / f i l e / x x b r f 6
     
  8. 2014/02/26
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Bitcoin miner and ZeroAccess rootkit are two different things.

    What is that link for?

    You need to post all logs I requested right here.

    Before you even run the above tools you need to install some AV program.

    Install ONE of these:

    - Avast! free antivirus: http://www.avast.com/eng/download-avast-home.html

    - free Microsoft Security Essentials: http://windows.microsoft.com/en-GB/windows/products/security-essentials
    Note for Windows 8 users: Microsoft Security Essentials comes preinstalled and renamed as Windows Defender.
    You can keep it or you have to disable it before installing another AV program. How to...

    - free Comodo Antivirus: http://www.comodo.com/home/internet-security/antivirus.php

    Update, run full scan, report on any findings.
     
  9. 2014/02/27
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    ZeroAccess IS a bitcoin miner, that's what all the pages I read about it said.

    The link is a .zip of all the logs that wouldn't fit on one page like I said. How do I post logs right here that don't fit? It's 300,000 characters and it says only 50,000 characters per page.
     
  10. 2014/02/27
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    You're reading wrong pages or you're not reading them carefully.
    More info:
    http://nakedsecurity.sophos.com/zeroaccess2/
    http://www.symantec.com/security_response/writeup.jsp?docid=2011-071314-0410-99

    Then if you read our preliminaries carefully it tells you exactly what to do: http://www.windowsbbs.com/malware-virus-removal/announcements.html
     
  11. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    Thanks for those pages, it appears it's for click fraud instead. Whoever's behind it hopefully gets what's coming to him and if it was a kid who wrote it then hopefully the law goes easy on him and lets his parents deal with him.

    The logs I have to post are 300,000 characters and it says my limit is 50,000 per page. For that I would have to make 6 posts which would take more than one attempt for each since I have no way of knowing exactly how many characters I have cut out so far. I'm grateful that you guys are helping me out for free but surely you can see what an unnecessary inconvenience this is? I don't understand why can you not accept the ZIP I uploaded? I recall even somewhere saying if it's too big to post that you guys may request for it to be zipped and uploaded.
     
  12. 2014/02/28
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    I will NOT open any zipped files from any infected computer especially while dealing with such serious infection like ZeroAccess rootkit.

    By now you'd have to all logs posted already like everyone else does it with no problem.
    Instead you chose to get involved in unnecessary discussion.
     
  13. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    I could've uploaded text files just as easy if that were the case. You and I both know .TXT files even if containing virus code cannot infect your machine, but okay, I'll post them here.

    # AdwCleaner v3.019 - Report created 26/02/2014 at 05:11:19
    # Updated 17/02/2014 by Xplode
    # Operating System : Microsoft Windows XP Service Pack 3 (32 bits)
    # Username : Admin - XP1
    # Running from : C:\Documents and Settings\Admin\Desktop\adwcleaner.exe
    # Option : Clean

    ***** [ Services ] *****


    ***** [ Files / Folders ] *****

    Folder Deleted : C:\Documents and Settings\All Users\Application Data\~0
    Folder Deleted : C:\Documents and Settings\All Users\Application Data\apn
    Folder Deleted : C:\Documents and Settings\All Users\Application Data\blekko toolbars
    Folder Deleted : C:\Documents and Settings\All Users\Application Data\NCH Software
    Folder Deleted : C:\Program Files\GreenTree Applications
    Folder Deleted : C:\Program Files\jZip
    Folder Deleted : C:\Program Files\NCH Software
    [x] Not Deleted : C:\Program Files\Vuze
    Folder Deleted : C:\Documents and Settings\Admin\Local Settings\Application Data\blekkotb_031
    Folder Deleted : C:\Documents and Settings\Admin\Local Settings\Application Data\jZip
    Folder Deleted : C:\Documents and Settings\Admin\Application Data\NCH Software
    Folder Deleted : C:\Documents and Settings\Admin\Start Menu\Programs\registry mechanic
    Folder Deleted : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\pwbcqoz7.123\Extensions\ffxtlbr@funmoods.com
    File Deleted : C:\Documents and Settings\Admin\Local Settings\Application Data\funmoods-speeddial.crx
    File Deleted : C:\Documents and Settings\Admin\Start Menu\Programs\jZip.lnk
    File Deleted : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\pci27uoa.Free\.autoreg
    File Deleted : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\mpuxkbdf.default\searchplugins\search.xml
    File Deleted : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\mpuxkbdf.default\user.js
    File Deleted : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\pwbcqoz7.123\user.js

    ***** [ Shortcuts ] *****


    ***** [ Registry ] *****

    Value Deleted : HKCU\Software\Microsoft\Internet Explorer\Main [Backup.old.Start Page]
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escort.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortApp.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escortEng.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\escorTlbr.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCDGrabber2.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioCompress3.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\NCTAudioFormatSettings3.DLL
    Key Deleted : HKLM\SOFTWARE\Classes\IMsiDe1egate.Application.1
    Key Deleted : HKLM\SOFTWARE\Classes\jZip.file
    Key Deleted : HKLM\SOFTWARE\Classes\S
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\AppPath\jZip.exe
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{09C554C3-109B-483C-A06B-F14172F1A947}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{B12E99ED-69BD-437C-86BE-C862B9E5444D}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{EA28B360-05E0-4F93-8150-02891F1D8D3C}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F54A0D21-6A53-460C-8301-C694EC9E1033}
    Key Deleted : HKLM\SOFTWARE\Classes\AppID\{F7BCCFD4-2FA6-477D-A1B0-EF7500B3C49E}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{03F14321-8FED-4CBC-B01A-4B57FC199062}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{2C6F7E96-73BC-47A5-9F51-B67F0BAFE24D}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{35B8892D-C3FB-4D88-990D-31DB2EBD72BD}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4C58EB04-7B72-4D3D-A36E-66167A99BC31}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{4EE0B011-604C-47F3-8F2B-39F79640B85E}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{5EB0259D-AB79-4AE6-A6E6-24FFE21C3DA4}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{8769ADCE-DBA5-48E9-AFB5-67B12CDF2E61}
    Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{CADAF6BE-BF50-4669-8BFD-C27BD4E6181B}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23C70BCA-6E23-4A65-AD2E-1389062074F1}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{23D8EEF7-0E13-4000-B9C4-6603C1E912D1}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{295CACB4-51F5-46FD-914E-C72BAAE1B672}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2BEF239C-752E-4001-8048-F256E0D8CD93}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2CE5C4B9-6DBE-4528-96FA-C9FF38EF1762}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{34C1FDF7-02C1-4F23-B393-F48B16E071D1}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3F607E46-0D3C-4442-B1DE-DE7FA4768F5C}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{49C00A51-6E59-41FE-B3FA-2D2157FAD67B}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{54291324-7A3D-4F11-B707-3FB6A2C97BD9}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{59C63F11-D4E5-46E7-9B8A-EE158DCA83A8}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5DA22CBD-0029-4A09-B757-CF0FAFC488ED}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{6DFF5DBA-AE3A-46DB-B301-ECFFC6DB2982}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{77A6E7D4-4A83-4A9B-A2A0-EF3B125DC29D}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C0585B2F-74D7-4734-88DE-6C150C5D4036}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{CA17D76B-F91D-4659-A7FD-A9F7ED375CDD}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8242E89-2F81-484A-AE5B-BA8CAD5B7347}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DE34CD67-F1C8-4001-9A23-B8A68F63F377}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EF0588D6-1621-4A75-B8BE-F4BC34794136}
    Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FE0273D1-99DF-4AC0-87D5-1371C6271785}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{4E1E9D45-8BF9-4139-915C-9F83CC3D5921}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{6C9945B7-1D19-46CB-88C0-45A24DF6CD6E}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{84B9B044-17C0-48FB-A300-C9747D5DF29C}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{93E3D79C-0786-48FF-9329-93BC9F6DC2B3}
    Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{D7EE8177-D51E-4F89-92B6-83EA2EC40800}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{0579B4B1-0293-4D73-B02D-5EBB0BA0F0A2}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8769ADCE-DBA5-48E9-AFB5-67B12CDF2E61}
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{F0D4B239-DA4B-4DAF-81E4-DFEE4931A4AA}
    Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{3614D305-2DBB-4991-9297-750DD60FFC73}
    Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
    Key Deleted : HKCU\Software\caphyon
    Key Deleted : HKCU\Software\Conduit
    Key Deleted : HKCU\Software\DeviceVM
    Key Deleted : HKCU\Software\Headlight
    Key Deleted : HKCU\Software\jZip
    Key Deleted : HKCU\Software\NCH Software
    Key Deleted : HKCU\Software\YahooPartnerToolbar
    Key Deleted : HKLM\Software\caphyon
    Key Deleted : HKLM\Software\Conduit
    Key Deleted : HKLM\Software\Driver-Soft
    Key Deleted : HKLM\Software\NCH Software
    Key Deleted : HKLM\Software\OpenCandy
    Key Deleted : HKLM\Software\Viewpoint
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Uninstall\jZip
    Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\App Management\ARPCache\jZip
    Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Anti-phishing Domain Advisor

    ***** [ Browsers ] *****

    -\\ Internet Explorer v6.0.2900.5512


    -\\ Mozilla Firefox v27.0.1 (en-US)

    [ File : C:\Documents and Settings\LocalService\Application Data\Mozilla\Firefox\Profiles\2t7k1ldl.default\prefs.js ]


    [ File : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\ckwkef0c.test\prefs.js ]


    [ File : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\mpuxkbdf.default\prefs.js ]

    Line Deleted : user_pref( "extensions.funmoods.aflt ", "ddrnw ");
    Line Deleted : user_pref( "extensions.funmoods.autoRvrt ", false);
    Line Deleted : user_pref( "extensions.funmoods.brwsrsrc ", "ietlbr ");
    Line Deleted : user_pref( "extensions.funmoods.cntry ", "CA ");
    Line Deleted : user_pref( "extensions.funmoods.cv ", "cv5 ");
    Line Deleted : user_pref( "extensions.funmoods.dfltLng ", " ");
    Line Deleted : user_pref( "extensions.funmoods.dfltSrch ", true);
    Line Deleted : user_pref( "extensions.funmoods.dfltlng ", "en ");
    Line Deleted : user_pref( "extensions.funmoods.dfltsrch ", "false ");
    Line Deleted : user_pref( "extensions.funmoods.dnsErr ", true);
    Line Deleted : user_pref( "extensions.funmoods.envrmnt ", "production ");
    Line Deleted : user_pref( "extensions.funmoods.excTlbr ", false);
    Line Deleted : user_pref( "extensions.funmoods.hdrMd5 ", "8D686CEC1DEF015F96B85B82EB91159D ");
    Line Deleted : user_pref( "extensions.funmoods.hmpg ", true);
    Line Deleted : user_pref( "extensions.funmoods.hmpgUrl ", "hxxp://start.funmoods.com/?f=1&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=681617477 ")[...]
    Line Deleted : user_pref( "extensions.funmoods.hrdid ", "485B39D1F106DA70 ");
    Line Deleted : user_pref( "extensions.funmoods.id ", "485B39D1F106DA70 ");
    Line Deleted : user_pref( "extensions.funmoods.instlDay ", "15597 ");
    Line Deleted : user_pref( "extensions.funmoods.instlRef ", "ddrnw ");
    Line Deleted : user_pref( "extensions.funmoods.instlday ", "15597 ");
    Line Deleted : user_pref( "extensions.funmoods.instlref ", "ddrnw ");
    Line Deleted : user_pref( "extensions.funmoods.isdcmntcmplt ", true);
    Line Deleted : user_pref( "extensions.funmoods.keywordurl ", " ");
    Line Deleted : user_pref( "extensions.funmoods.lastVrsnTs ", "1.5.23.2219:14:36 ");
    Line Deleted : user_pref( "extensions.funmoods.mntrvrsn ", "1.3.0 ");
    Line Deleted : user_pref( "extensions.funmoods.newTab ", true);
    Line Deleted : user_pref( "extensions.funmoods.newTabUrl ", "hxxp://start.funmoods.com/?f=2&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=681617477[...]
    Line Deleted : user_pref( "extensions.funmoods.newtab ", true);
    Line Deleted : user_pref( "extensions.funmoods.newtaburl ", "hxxp://start.funmoods.com/?f=2&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=681617477[...]
    Line Deleted : user_pref( "extensions.funmoods.prdct ", "funmoods ");
    Line Deleted : user_pref( "extensions.funmoods.prtnrId ", "funmoods ");
    Line Deleted : user_pref( "extensions.funmoods.prtnrid ", "funmoods ");
    Line Deleted : user_pref( "extensions.funmoods.savedVrsnTs ", "1 ");
    Line Deleted : user_pref( "extensions.funmoods.sg ", "none ");
    Line Deleted : user_pref( "extensions.funmoods.smplGrp ", "none ");
    Line Deleted : user_pref( "extensions.funmoods.smplgrp ", "none ");
    Line Deleted : user_pref( "extensions.funmoods.srch ", " ");
    Line Deleted : user_pref( "extensions.funmoods.srchPrvdr ", "Search ");
    Line Deleted : user_pref( "extensions.funmoods.srchprvdr ", "Search ");
    Line Deleted : user_pref( "extensions.funmoods.tlbrId ", "base ");
    Line Deleted : user_pref( "extensions.funmoods.tlbrSrchUrl ", "hxxp://start.funmoods.com/?f=3&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=6816174[...]
    Line Deleted : user_pref( "extensions.funmoods.tlbrid ", "base ");
    Line Deleted : user_pref( "extensions.funmoods.tlbrsrchurl ", "hxxp://start.funmoods.com/?f=3&a=ddrnw&chnl=ddrnw&cd=2XzuyEtN2Y1L1QzuyEzzyD0BtAzy0DtC0FtCtDyC0D0AyBtDtN0D0Tzu0CtByDzztN1L2XzutBtFtCtFtCtFtAtCtB&cr=6816174[...]
    Line Deleted : user_pref( "extensions.funmoods.vrsn ", "1.5.23.22 ");
    Line Deleted : user_pref( "extensions.funmoods.vrsnTs ", "1.5.23.2219:14:36 ");
    Line Deleted : user_pref( "extensions.funmoods.vrsni ", "1.5.23.22 ");
    Line Deleted : user_pref( "extensions.funmoods.vrsnts ", "1.5.23.2219:14:36 ");
    Line Deleted : user_pref( "extensions.funmoods_i.newTab ", true);
    Line Deleted : user_pref( "extensions.funmoods_i.smplGrp ", "none ");
    Line Deleted : user_pref( "extensions.funmoods_i.vrsnTs ", "1.5.23.2219:14:36 ");
    Line Deleted : user_pref( "keyword.URL ", "hxxp://blekko.com/ws/?source={SourceID}&tbp=url&toolbarid=blekkotb_031&u=USERGUID&q= ");

    [ File : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\pci27uoa.Free\prefs.js ]


    [ File : C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\pwbcqoz7.123\prefs.js ]

    Line Deleted : user_pref( "browser.search.defaultenginename ", "Blekko ");
    Line Deleted : user_pref( "browser.search.selectedEngine ", "Blekko ");
    Line Deleted : user_pref( "browser.search.order.1 ", "Blekko ");
    Line Deleted : user_pref( "keyword.URL ", "hxxp://blekko.com/ws/?source=c3348dd4&tbp=rbox&toolbarid=blekkotb_031&u=434ECB10478B995FF381605026F07807&q= ");

    *************************

    AdwCleaner[R0].txt - [12646 octets] - [26/02/2014 05:04:33]
    AdwCleaner[S0].txt - [12883 octets] - [26/02/2014 05:11:19]

    ########## EOF - C:\AdwCleaner\AdwCleaner[S0].txt - [12944 octets] ##########

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Junkware Removal Tool (JRT) by Thisisu
    Version: 6.1.2 (02.20.2014:1)
    OS: Microsoft Windows XP x86
    Ran by Admin on Wed 02/26/2014 at 5:16:03.39
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




    ~~~ Services



    ~~~ Registry Values

    Successfully deleted: [Registry Value] HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\plusservice



    ~~~ Registry Keys

    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\yuna software
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\yuna software
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\msgplusforskype.skinpack
    Successfully deleted: [Registry Key] HKEY_LOCAL_MACHINE\Software\Classes\msgplusforskype.soundpack
    Successfully deleted: [Registry Key] HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\SearchScopes\{3284677D-DBC5-9FA7-B113-46C336EB4303}



    ~~~ Files

    Successfully deleted: [File] C:\Documents and Settings\Admin\Local Settings\Application Data\{E3B4AC0C-E2A5-11E1-8270-B8AC6F996F26}\chrome\content\browser.xul [Trojan:JS/Medfos.A]



    ~~~ Folders

    Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\messenger plus! for skype "
    Successfully deleted: [Folder] "C:\Documents and Settings\All Users\application data\ytd video downloader "
    Successfully deleted: [Folder] "C:\Program Files\regzooka "
    Successfully deleted: [Folder] "C:\Program Files\yuna software "
    Successfully deleted: [Folder] "C:\Documents and Settings\All Users\start menu\programs\ytd video downloader "
    Successfully deleted: [Folder] C:\Documents and Settings\Admin\Local Settings\Application Data\{E3B4AC0C-E2A5-11E1-8270-B8AC6F996F26} [Trojan:JS/Medfos.A]



    ~~~ FireFox

    Emptied folder: C:\Documents and Settings\Admin\Application Data\mozilla\firefox\profiles\mpuxkbdf.default\minidumps [4 files]





    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    Scan was completed on Wed 02/26/2014 at 5:20:01.50
    End of JRT log
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 26-02-2014
    Ran by Admin (administrator) on XP1 on 26-02-2014 05:21:35
    Running from C:\Documents and Settings\Admin\Desktop
    Microsoft Windows XP Professional Service Pack 3 (X86) OS Language: English(US)
    Internet Explorer Version 6
    Boot Mode: Normal

    The only official download link for FRST:
    Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/
    Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/
    Download link from any site other than Bleeping Computer is unpermitted or outdated.
    See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

    ==================== Processes (Whitelisted) =================

    () C:\Program Files\iolo\System Mechanic Professional 6\SystemGuardAlerter.exe
    (Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
    (Renesas Electronics Corporation) C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe
    (ASUSTeK Computer Inc.) C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
    (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE
    (Pro²soft) C:\program files\Bandwidth Monitor Pro\Bandwidth Monitor Pro.exe
    (DT Soft Ltd.) C:\Program Files\DAEMON Tools Pro\DTProAgent.exe
    () C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe
    (Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
    (NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe
    (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe
    (Analog Devices, Inc.) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe


    ==================== Registry (Whitelisted) ==================

    HKLM\...\Run: [SystemGuardAlerter] - C:\Program Files\iolo\System Mechanic Professional 6\SystemGuardAlerter.exe [386560 2005-11-08] ()
    HKLM\...\Run: [ioloDelayModule] - C:\Program Files\iolo\System Mechanic Professional 6\delay.exe [96256 2005-06-08] ()
    HKLM\...\Run: [Logitech Hardware Abstraction Layer] - C:\WINDOWS\KHALMNPR.EXE [94208 2006-05-10] (Logitech Inc.)
    HKLM\...\Run: [IMJPMIG8.1] - C:\WINDOWS\IME\imjp8_1\IMJPMIG.EXE [208952 2008-04-14] (Microsoft Corporation)
    HKLM\...\Run: [IMEKRMIG6.1] - C:\WINDOWS\ime\imkr6_1\IMEKRMIG.EXE [44032 2008-04-14] (Microsoft Corporation)
    HKLM\...\Run: [PHIME2002ASync] - C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /SYNC
    HKLM\...\Run: [PHIME2002A] - C:\WINDOWS\system32\IME\TINTLGNT\TINTSETP.EXE /IMEName
    HKLM\...\Run: [AdobeAAMUpdater-1.0] - C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe [446392 2012-04-04] (Adobe Systems Incorporated)
    HKLM\...\Run: [] - [X]
    HKLM\...\Run: [NUSB3MON] - C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe [115048 2011-09-16] (Renesas Electronics Corporation)
    HKLM\...\Run: [RUSB3MON] - C:\Program Files\Renesas Electronics\USB 3.0 Host Controller Driver\Application\rusb3mon.exe [115048 2011-09-20] (Renesas Electronics Corporation)
    HKLM\...\Run: [QuickTime Task] - C:\Program Files\QuickTime\qttask.exe [421888 2013-05-01] (Apple Inc.)
    HKLM\...\Run: [NvBackend] - C:\Program Files\NVIDIA Corporation\Update Core\NvBackend.exe [2279712 2013-12-09] (NVIDIA Corporation)
    HKLM\...\Run: [NvCplDaemon] - C:\WINDOWS\system32\NvCpl.dll [15512424 2012-09-23] (NVIDIA Corporation)
    HKLM\...\Run: [NvMediaCenter] - C:\WINDOWS\system32\NvMcTray.dll [108392 2012-09-23] (NVIDIA Corporation)
    HKLM\...\Run: [RTHDCPL] - C:\WINDOWS\RTHDCPL.EXE [18782720 2009-11-02] (Realtek Semiconductor Corp.)
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Run: [Bandwidth Monitor Pro] - C:\program files\Bandwidth Monitor Pro\Bandwidth Monitor Pro.exe [225280 2005-02-16] (Pro²soft)
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Run: [AdobeBridge] - [X]
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Run: [DAEMON Tools Pro Agent] - C:\Program Files\DAEMON Tools Pro\DTProAgent.exe [136136 2007-09-06] (DT Soft Ltd.)
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoBandCustomize] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoMovingBands] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoCloseDragDropBands] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoSetTaskbar] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoToolbarsOnTaskbar] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoSaveSettings] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [ClassicShell] 0
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\MountPoints2: {5b410b73-de58-11dc-ab82-00112fe4b74c} - G:\LaunchU3.exe -a
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\MountPoints2: {81216bec-dc9f-11e1-9548-806d6172696f} - F:\setup.exe

    ==================== Internet (Whitelisted) ====================

    HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
    HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
    HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd={SUB_PRD}&clcid={SUB_CLSID}&pver={SUB_PVER}&ar=home
    SearchScopes: HKLM - DefaultScope value is missing.
    SearchScopes: HKCU - Backup.Old.DefaultScope {3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
    BHO: DAPBHO Class - {0096CC0A-623C-4829-AD9C-19AF0DC9D8FE} - C:\Program Files\DAP\DAPIEBar.dll ()
    BHO: AcroIEHlprObj Class - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
    BHO: Anonymizer Proxy - {0DB66BA8-5E1F-4963-93D1-E1D6B78FE9A2} - C:\Program Files\NetConceal Anonymizer\ProxyNew.dll (Anonymizer Software)
    BHO: BitComet Helper - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - C:\Program Files\BitComet\tools\BitCometBHO_1.2.2.28.dll (BitComet)
    BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
    BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_03\bin\ssv.dll (Sun Microsystems, Inc.)
    Toolbar: HKLM - DAP Bar - {62999427-33FC-4baf-9C9C-BCE6BD127F08} - C:\Program Files\DAP\DAPIEBar.dll ()
    Toolbar: HKLM - Text2Go - {1a4ee09d-2bc1-452e-9049-63c6bd3ceb43} - C:\WINDOWS\system32\mscoree.dll (Microsoft Corporation)
    Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
    Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
    DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
    DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-0012-0000-0000-ABCDEFFEDCBA} http://java.sun.com/update/1.2.0/jinstall-1_2_0-windows-i586.cab
    DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
    DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_03-windows-i586.cab
    DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
    Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation)
    Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL No File
    Tcpip\Parameters: [DhcpNameServer] 192.168.1.254 75.153.176.1

    FireFox:
    ========
    FF ProfilePath: C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\ckwkef0c.test
    FF Homepage: hxxp://www.google.com/
    FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_12_0_0_70.dll ()
    FF Plugin: @microsoft.com/WPF,version=3.5 - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
    FF Plugin: @nullsoft.com/winampDetector;version=1 - C:\Program Files\Winamp Detect\npwachk.dll (Nullsoft, Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np32dsw.dll (Adobe Systems, Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll (BitComet)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.)
    FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin6.dll (Apple Inc.)
    FF Extension: Microsoft .NET Framework Assistant - C:\Documents and Settings\Admin\Application Data\Mozilla\Firefox\Profiles\ckwkef0c.test\Extensions\{20a82645-c095-46ed-80e3-08825760534b} [2013-12-14]
    FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\
    FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ []

    ========================== Services (Whitelisted) =================

    R2 AsSysCtrlService; C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe [90112 2009-08-19] (ASUSTeK Computer Inc.)
    S3 Autocomplete; C:\Program Files\Acesoft\Tracks Eraser Pro\delautocomp.exe [27648 2005-10-28] (Acesoft)
    R2 IOLO_SRV; C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe [195584 2005-11-08] ()
    R2 NvNetworkService; C:\Program Files\NVIDIA Corporation\NetService\NvNetworkService.exe [1494304 2013-12-09] (NVIDIA Corporation)
    S3 PsShutdownSvc; C:\WINDOWS\PSSDNSVC.EXE [87616 2014-02-02] (Systems Internals)
    R2 SoundMAX Agent Service (default); C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe [45056 2002-09-20] (Analog Devices, Inc.)
    S2 VBoxService; C:\WINDOWS\System32\VBoxService.exe [1069360 2011-12-19] (Oracle Corporation)
    S2 aswUpdSv; "C:\Program Files\Alwil Software\Avast4\aswUpdSv.exe" [X]
    S2 avast! Antivirus; "C:\Program Files\Alwil Software\Avast4\ashServ.exe" [X]
    S3 avast! Mail Scanner; "C:\Program Files\Alwil Software\Avast4\ashMaiSv.exe" /service [X]
    S3 avast! Web Scanner; "C:\Program Files\Alwil Software\Avast4\ashWebSv.exe" /service [X]
    S2 COM+ Messages; "C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0001291 [X]
    S3 rpcapd; No ImagePath

    ==================== Drivers (Whitelisted) ====================

    R1 Aavmker4; C:\WINDOWS\system32\Drivers\Aavmker4.sys [26944 2008-07-19] (ALWIL Software)
    S3 ac97intc; C:\WINDOWS\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
    S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1684736 2008-08-05] (Creative)
    R1 AsIO; C:\WINDOWS\System32\drivers\AsIO.sys [11296 2009-08-03] ()
    R2 Aspi32; C:\WINDOWS\System32\drivers\aspi32.sys [28320 2002-05-06] (Adaptec)
    R1 AsUpIO; C:\WINDOWS\System32\drivers\AsUpIO.sys [11448 2009-07-05] ()
    S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
    R1 crlscsi; C:\WINDOWS\system32\Drivers\crlscsi.sys [6144 1995-11-07] (Corel Corporation)
    S3 epmntdrv; C:\WINDOWS\system32\epmntdrv.sys [13896 2013-03-07] ()
    S3 EuGdiDrv; C:\WINDOWS\system32\EuGdiDrv.sys [9160 2013-03-07] ()
    R1 FileDisk; C:\WINDOWS\system32\Drivers\FileDisk.sys [9728 2004-05-29] (iolo technologies, LLC (based on original work by Bo Brantén))
    R1 HWiNFO32; C:\WINDOWS\system32\drivers\HWiNFO32.SYS [22560 2013-09-06] (REALiX(tm))
    R0 IoloFilter; C:\WINDOWS\System32\drivers\IoloFltr.sys [65024 2005-10-24] (iolo Technologies)
    S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1389056 2006-01-04] (Creative Technology Ltd.)
    R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-12] ()
    S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation)
    S3 nm; C:\WINDOWS\System32\DRIVERS\NMnt.sys [40320 2008-04-14] (Microsoft Corporation)
    S3 NTice; C:\WINDOWS\system32\Drivers\NTice.sys [1246338 2006-09-02] ()
    R3 nusb3hub; C:\WINDOWS\System32\DRIVERS\nusb3hub.sys [85768 2012-08-27] (Renesas Electronics Corporation)
    R3 nusb3xhc; C:\WINDOWS\System32\DRIVERS\nusb3xhc.sys [177800 2012-08-27] (Renesas Electronics Corporation)
    R0 OCDE; C:\WINDOWS\System32\Drivers\OCDE.sys [26384 2004-08-09] (ZTekWare.)
    S3 prwntdrv; C:\WINDOWS\system32\prwntdrv.sys [13064 2010-08-25] ()
    S3 SE2Fbus; C:\WINDOWS\System32\DRIVERS\SE2Fbus.sys [61600 2006-05-15] (MCCI)
    S3 SE2Fmdfl; C:\WINDOWS\System32\DRIVERS\SE2Fmdfl.sys [9360 2006-05-15] (MCCI)
    S3 SE2Fmdm; C:\WINDOWS\System32\DRIVERS\SE2Fmdm.sys [97184 2006-05-15] (MCCI)
    S3 SE2Fmgmt; C:\WINDOWS\System32\DRIVERS\SE2Fmgmt.sys [88688 2006-05-15] (MCCI)
    S3 se2Fnd5; C:\WINDOWS\System32\DRIVERS\se2Fnd5.sys [18704 2006-05-15] (MCCI)
    S3 SE2Fobex; C:\WINDOWS\System32\DRIVERS\SE2Fobex.sys [86560 2006-05-15] (MCCI)
    S3 se2Funic; C:\WINDOWS\System32\DRIVERS\se2Funic.sys [90800 2006-05-15] (MCCI)
    R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [685816 2014-02-25] ()
    R0 VBoxGuest; C:\WINDOWS\System32\DRIVERS\VBoxGuest.sys [107312 2011-12-19] (Oracle Corporation)
    R3 VBoxMouse; C:\WINDOWS\System32\DRIVERS\VBoxMouse.sys [85808 2011-12-19] (Oracle Corporation)
    S1 VBoxSF; C:\WINDOWS\System32\drivers\VBoxSF.sys [227632 2011-12-19] (Oracle Corporation)
    S3 VBoxVideo; C:\WINDOWS\System32\DRIVERS\VBoxVideo.sys [104240 2011-12-19] (Oracle Corporation)
    U3 ab0w7vb9; C:\WINDOWS\system32\Drivers\ab0w7vb9.sys [0 ] (Microsoft Corporation)
    S3 ALSysIO; \??\C:\DOCUME~1\Admin\LOCALS~1\Temp\ALSysIO.sys [X]
    S2 aswFsBlk; system32\DRIVERS\aswFsBlk.sys [X]
    S2 aswMon2; No ImagePath
    S3 aswRdr; No ImagePath
    S1 aswSP; No ImagePath
    S1 aswTdi; No ImagePath
    S3 basic2; system32\DRIVERS\basic2.sys [X]
    S2 Cnxtdiag; system32\DRIVERS\cnxtdiag.sys [X]
    S2 Fallback; system32\DRIVERS\fallback.sys [X]
    S2 Fsks; system32\DRIVERS\fsksnt.sys [X]
    S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
    S2 K56; system32\DRIVERS\k56nt.sys [X]
    S3 LVUSBSta; system32\drivers\LVUSBSta.sys [X]
    S3 mcdbus; system32\DRIVERS\mcdbus.sys [X]
    S3 NTACCESS; \??\E:\NTACCESS.sys [X]
    S3 pepifilter; system32\DRIVERS\lv302af.sys [X]
    S3 PID_0928; system32\DRIVERS\LV561AV.SYS [X]
    S3 PID_PEPI; system32\DRIVERS\LV302V32.SYS [X]
    S3 Rksample; system32\DRIVERS\rksample.sys [X]
    S3 rtl8139; system32\DRIVERS\RTL8139.SYS [X]
    S3 sdd; system32\DRIVERS\sddmini.sys [X]
    S3 SetupNTGLM7X; \??\E:\NTGLM7X.sys [X]
    S2 Tones; system32\DRIVERS\tonesnt.sys [X]
    U5 UnlockerDriver5; C:\Program Files\Unlocker\UnlockerDriver5.sys [4096 2010-07-04] ()
    S2 V124; system32\DRIVERS\v124nt.sys [X]
    S3 winachsf; system32\DRIVERS\HSF_CNXT.sys [X]
    U1 WS2IFSL;

    ========================== Drivers MD5 =======================

    C:\WINDOWS\system32\Drivers\Aavmker4.sys B36C2D3A46078F4A278386F5C974564D
    C:\WINDOWS\System32\drivers\ac97intc.sys 0F2D66D5F08EBE2F77BB904288DCF6F0
    C:\WINDOWS\System32\DRIVERS\ACPI.sys 8FD99680A539792A30E97944FDAECF17
    C:\WINDOWS\system32\Drivers\ACPIEC.sys 9859C0F6936E723E4892D7141B1327D5
    C:\WINDOWS\System32\drivers\aeaudio.sys 11C04B17ED2ABBB4833694BCD644AC90
    C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557
    C:\WINDOWS\System32\drivers\afd.sys 322D0E36693D6E24A2398BEE62A268CD
    C:\WINDOWS\System32\DRIVERS\agp440.sys 08FD04AA961BDC77FB983F328334E3D7
    C:\WINDOWS\System32\drivers\Ambfilt.sys F6AF59D6EEE5E1C304F7F73706AD11D8
    C:\WINDOWS\System32\drivers\AsIO.sys 9D8CB58B9A9E177DDD599791A58A654D
    C:\WINDOWS\System32\drivers\aspi32.sys 4984E50EA8A399B66A9545708595FB75
    C:\WINDOWS\System32\drivers\AsUpIO.sys E67493490466B5F04B58C22D2590E8CA
    C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC
    C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674
    C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159
    C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68
    C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9
    C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9
    C:\WINDOWS\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C
    C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B
    C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32
    C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE
    C:\WINDOWS\System32\DRIVERS\CmBatt.sys 0F6C187D38D98F8DF904589A5F94D411
    C:\WINDOWS\System32\DRIVERS\compbatt.sys 6E4C9F21F0FAE8940661144F41B13203
    C:\WINDOWS\system32\Drivers\crlscsi.sys E08AC114B931DACAFBDD9D5E0B93815C
    C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25
    C:\WINDOWS\System32\drivers\dmboot.sys D992FE1274BDE0F84AD826ACAE022A41
    C:\WINDOWS\System32\DRIVERS\dmio.sys 7C824CF7BBDE77D95C08005717A95F6F
    C:\WINDOWS\system32\Drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F
    C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45
    C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8
    C:\WINDOWS\system32\epmntdrv.sys D57F1811D8258D8D277CD9F53657EEF9
    C:\WINDOWS\system32\EuGdiDrv.sys F1DE3EEF501DDA7DDF99F2EDF0C5540E
    C:\WINDOWS\system32\Drivers\exFat.sys 3EF58F2EAE3AECAB45D682152DB2F67D
    C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E
    C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81
    C:\WINDOWS\system32\Drivers\FileDisk.sys 711E55000153B1F03B193087DEB82AEA
    C:\WINDOWS\system32\Drivers\Fips.sys D45926117EB9FA946A6AF572FBE1CAA3
    C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0
    C:\WINDOWS\System32\DRIVERS\fltMgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0
    C:\WINDOWS\system32\Drivers\Fs_Rec.sys C865B83411D7347627A4BEEC22543FB1
    C:\WINDOWS\System32\DRIVERS\ftdisk.sys 6AC26732762483366C3969C9E4D2259D
    C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2
    C:\WINDOWS\System32\DRIVERS\HDAudBus.sys 573C7D0A32852B48F3058CFD8026F511
    C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1
    C:\WINDOWS\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9
    C:\WINDOWS\system32\drivers\HWiNFO32.SYS 4CEB223FD716CB7E04216F7408CDEB28
    C:\WINDOWS\System32\DRIVERS\i8042prt.sys 4A0B06AA8943C1E332520F7440C0AA30
    C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E
    C:\WINDOWS\System32\drivers\RtkHDAud.sys 5F2CE51D5CA5E5473F1E9307D93A58D7
    C:\WINDOWS\System32\DRIVERS\intelide.sys B5466A9250342A7AA0CD1FBA13420678
    C:\WINDOWS\System32\DRIVERS\intelppm.sys 8C953733D8F36EB2133F5BB58808B66B
    C:\WINDOWS\System32\drivers\IoloFltr.sys 3767E3F43066F90D87171E4D21E1E729
    C:\WINDOWS\System32\DRIVERS\Ip6Fw.sys 3BB22519A194418D5FEC05D800A19AD0
    C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182
    C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5
    C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB
    C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91
    C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89
    C:\WINDOWS\System32\DRIVERS\isapnp.sys 05A299EC56E52649B1CF2FC52D20F2D7
    C:\WINDOWS\System32\DRIVERS\kbdclass.sys 463C1EC80CD17420A542B7F36A36F128
    C:\WINDOWS\System32\DRIVERS\kbdhid.sys 9EF487A186DEA361AA06913A75B3FA99
    C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378
    C:\WINDOWS\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517
    C:\WINDOWS\System32\Drivers\L8042Kbd.sys E141AB3701EA166109212DCA4B28CA2C
    C:\WINDOWS\System32\Drivers\L8042mou.sys F0F944E4DA9A75DEE6A37D4AFC7E1BBC
    C:\WINDOWS\System32\Drivers\LBeepKE.sys B28C741AE2912A079CF90041A9E5C0A4
    C:\WINDOWS\System32\DRIVERS\LHidKE.Sys DD40C03D85649205EC086722474C8A63
    C:\WINDOWS\System32\DRIVERS\LMouKE.Sys 2EBD4C02D259944869630A912EC86BCE
    C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6
    C:\WINDOWS\system32\Drivers\Modem.sys DFCBAD3CEC1C5F964962AE10E0BCC8E1
    C:\WINDOWS\System32\drivers\MODEMCSA.sys 1992E0D143B09653AB0F9C5E04B0FD65
    C:\WINDOWS\System32\drivers\Monfilt.sys 9FA7207D1B1ADEAD88AE8EED9CDBBAA5
    C:\WINDOWS\System32\DRIVERS\mouclass.sys 35C9E97194C8CFB8430125F8DBC34D04
    C:\WINDOWS\System32\DRIVERS\mouhid.sys B1C303E17FB9D46E87A98E4BA6769685
    C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD
    C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD
    C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 68755F0FF16070178B54674FE5B847B0
    C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027
    C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1
    C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E
    C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D
    C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136
    C:\WINDOWS\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D
    C:\WINDOWS\System32\DRIVERS\ASACPI.sys D48659BB24C48345D926ECB45C1EBDF5
    C:\WINDOWS\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1
    C:\WINDOWS\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB
    C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D
    C:\WINDOWS\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97
    C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F
    C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849
    C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB
    C:\WINDOWS\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A
    C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0
    C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D
    C:\WINDOWS\System32\DRIVERS\NMnt.sys 1E421A6BCF2203CC61B821ADA9DE878B
    C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A
    C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA
    C:\WINDOWS\system32\Drivers\NTice.sys 0097DEE329112B210A56ECD943476DEE
    C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD
    C:\WINDOWS\System32\DRIVERS\nusb3hub.sys 2F0A60F501FEED76F040864E9D4E947F
    C:\WINDOWS\System32\DRIVERS\nusb3xhc.sys 7D3ABA058912D4574E7F1CE1D9713DAE
    C:\WINDOWS\System32\DRIVERS\nv4_mini.sys 68B8C35782FFD20973524F748234B5A9
    C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57
    C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9
    C:\WINDOWS\System32\Drivers\OCDE.sys 3C2D353811231DE301543FC88D1A3B0A
    C:\WINDOWS\System32\DRIVERS\parport.sys 5575FAF8F97CE5E713D108C2A58D7C7C
    C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6
    C:\WINDOWS\system32\Drivers\ParVdm.sys 70E98B3FD8E963A6A46A2E6247E0BEA1
    C:\WINDOWS\System32\DRIVERS\pci.sys A219903CCF74233761D92BEF471A07B1
    C:\WINDOWS\System32\DRIVERS\pciide.sys CCF5F451BB1A5A2A522A76E670000FF0
    C:\WINDOWS\system32\Drivers\Pcmcia.sys 9E89EF60E9EE05E3F2EEF2DA7397F1C1
    C:\WINDOWS\System32\DRIVERS\pcntpci5.sys 7BC8027D56FAB153A987C56AE9835664
    C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99
    C:\WINDOWS\System32\DRIVERS\processr.sys A32BEBAF723557681BFC6BD93E98BD26
    C:\WINDOWS\system32\prwntdrv.sys C590535D68FD6C84707DC1DEBD2AFD68
    C:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424
    C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD
    C:\WINDOWS\System32\Drivers\PxHelp20.sys E42E3433DBB4CFFE8FDD91EAB29AEA8E
    C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C
    C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6
    C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE
    C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242
    C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A
    C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332
    C:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1
    C:\WINDOWS\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD
    C:\WINDOWS\System32\DRIVERS\redbook.sys F828DD7E1419B6653894A8F97A0094C5
    C:\WINDOWS\System32\DRIVERS\Rtenicxp.sys E47C52F0380F0950E2BC9F1BCDC0DE9B
    C:\WINDOWS\system32\Drivers\SCDEmu.sys 612A3D69E603DBBE5C3C1079186A0393
    C:\WINDOWS\System32\DRIVERS\SE2Fbus.sys 7908A132B5C5A0106A8F24C6A9261BD7
    C:\WINDOWS\System32\DRIVERS\SE2Fmdfl.sys 24463020DDFC4EBE78EB661276102A71
    C:\WINDOWS\System32\DRIVERS\SE2Fmdm.sys 61303EB7956D551E3DE8D60CA62BF727
    C:\WINDOWS\System32\DRIVERS\SE2Fmgmt.sys FCE069D255AD162CAA8494D84A41930C
    C:\WINDOWS\System32\DRIVERS\se2Fnd5.sys 6CFF42151B4F5B224FBCA2E685A98A98
    C:\WINDOWS\System32\DRIVERS\SE2Fobex.sys 1E2A0F3B1548F03929BCA8A63E137007
    C:\WINDOWS\System32\DRIVERS\se2Funic.sys 7A3F56B67D73D61A0948F60112725652
    C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit
    C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE
    C:\WINDOWS\System32\DRIVERS\serial.sys CCA207A8896D4C6A0C9CE29A4AE411A7
    C:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562
    C:\WINDOWS\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14
    C:\WINDOWS\System32\drivers\smwdm.sys BF208C85119770E6A9B6577019A3D810
    C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F
    C:\WINDOWS\System32\Drivers\sptd.sys D41D8CD98F00B204E9800998ECF8427E
    C:\WINDOWS\System32\DRIVERS\sr.sys 76BB022C2FB6902FD5BDD4F78FC13A5D
    C:\WINDOWS\System32\DRIVERS\srv.sys 5252605079810904E31C332E241CD59B
    C:\WINDOWS\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2
    C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F
    C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01
    C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290
    C:\WINDOWS\System32\DRIVERS\tcpip.sys 93EA8D04EC73A85DB02EB8805988F733
    C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397
    C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61
    C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E
    C:\WINDOWS\System32\drivers\truecrypt.sys ED5E4CE36C54F55E7698642E94D32EC7
    C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9
    C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31
    C:\WINDOWS\System32\drivers\usbaudio.sys E919708DB44ED8543A7C017953148330
    C:\WINDOWS\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8
    C:\WINDOWS\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7
    C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C
    C:\WINDOWS\System32\DRIVERS\usbohci.sys 0DAECCE65366EA32B162F85F07C6753B
    C:\WINDOWS\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00
    C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9
    C:\WINDOWS\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6
    C:\WINDOWS\System32\DRIVERS\VBoxDrv.sys E74EC30ED50F381E36491EAA656C3AF5
    C:\WINDOWS\System32\DRIVERS\VBoxGuest.sys 631EBC210F9176D3E4679DA698450B43
    C:\WINDOWS\System32\DRIVERS\VBoxMouse.sys 328B8E217157015B1C182FE142B4E356
    C:\WINDOWS\System32\DRIVERS\VBoxNetAdp.sys B1EF938CEF5C6F24D89E567893E01C39
    C:\WINDOWS\System32\DRIVERS\VBoxNetFlt.sys CE82E6842751BF6B9B95DE176D0378B5
    C:\WINDOWS\System32\drivers\VBoxSF.sys EC73B7002FD375BB05DFB4F0BF13A1DD
    C:\WINDOWS\System32\Drivers\VBoxUSB.sys A3E472EA968618865DE2A63408FF7C5B
    C:\WINDOWS\System32\DRIVERS\VBoxUSBMon.sys F71A17A8834AF81D9B287F63DA59D725
    C:\WINDOWS\System32\DRIVERS\VBoxVideo.sys EBEE2A75077F4DB577625DCE04B52031
    C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1
    C:\WINDOWS\system32\Drivers\vmm.sys B0FD6E31ED4ACD87EB852C5DAC27734A
    C:\WINDOWS\system32\Drivers\VolSnap.sys 4C8FCB5CC53AAB716D810740FE59D025
    C:\WINDOWS\System32\DRIVERS\VMNetSrv.sys 2ABE8281DB609D8BB1BD1B2F93800D5F
    C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6
    C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F
    C:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78
    C:\WINDOWS\system32\Drivers\ab0w7vb9.sys

    ==================== NetSvcs (Whitelisted) ===================


    ==================== One Month Created Files and Folders ========

    2014-02-26 05:21 - 2014-02-26 05:21 - 00029436 _____ () C:\Documents and Settings\Admin\Desktop\FRST.txt
    2014-02-26 05:21 - 2014-02-26 05:21 - 00000000 ____D () C:\FRST
    2014-02-26 05:21 - 2014-02-26 05:21 - 00000000 ____D () C:\FRST
    2014-02-26 05:21 - 2013-03-30 06:18 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
    2014-02-26 05:20 - 2014-02-26 05:20 - 00002161 _____ () C:\Documents and Settings\Admin\Desktop\JRT.txt
    2014-02-26 05:20 - 2014-02-26 05:20 - 00002161 _____ () C:\Documents and Settings\Admin\Desktop\JRT.txt
    2014-02-26 05:15 - 2014-02-26 05:15 - 00013025 _____ () C:\Documents and Settings\Admin\Desktop\AdwCleaner[S0].txt
    2014-02-26 05:15 - 2014-02-26 05:15 - 00000000 ____D () C:\WINDOWS\ERUNT
    2014-02-26 05:15 - 2014-02-26 05:15 - 00000000 ____D () C:\WINDOWS\ERUNT
    2014-02-26 05:13 - 2007-11-09 00:15 - 00000000 ____D () C:\Program Files\Bandwidth Monitor Pro
    2014-02-26 05:12 - 2005-11-10 12:30 - 00012288 _____ () C:\Volume{52C8E4FE-B853-42c1-9528-92978438BBF3}
    2014-02-26 05:12 - 2005-08-29 03:17 - 00000216 _____ () C:\WINDOWS\wiadebug.log
    2014-02-26 05:12 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\security
    2014-02-26 05:12 - 2012-08-05 14:29 - 00015864 _____ () C:\00007E00-E82B1ABA
    2014-02-26 05:12 - 2005-08-29 01:56 - 00000278 ___SH () C:\Documents and Settings\Admin\ntuser.ini
    2014-02-26 05:12 - 2005-08-29 01:55 - 00032576 _____ () C:\WINDOWS\SchedLgU.Txt
    2014-02-26 05:12 - 2005-08-29 01:55 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
    2014-02-26 05:12 - 2005-08-29 01:47 - 01198025 _____ () C:\WINDOWS\WindowsUpdate.log
    2014-02-26 05:11 - 2014-02-26 05:04 - 00000000 ____D () C:\AdwCleaner
    2014-02-26 05:04 - 2014-02-26 05:11 - 00000000 ____D () C:\AdwCleaner
    2014-02-26 04:51 - 2013-03-07 22:52 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\vlc
    2014-02-26 04:31 - 2005-08-31 12:25 - 00092672 _____ () C:\Documents and Settings\Admin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2014-02-26 04:24 - 2014-02-26 04:23 - 01144320 _____ (Farbar) C:\Documents and Settings\Admin\Desktop\FRST.exe
    2014-02-26 04:23 - 2014-02-26 04:24 - 01144320 _____ (Farbar) C:\Documents and Settings\Admin\Desktop\FRST.exe
    2014-02-26 04:23 - 2014-02-26 04:23 - 01241834 _____ () C:\Documents and Settings\Admin\Desktop\adwcleaner.exe
    2014-02-26 04:23 - 2014-02-26 04:23 - 01037734 _____ (Thisisu) C:\Documents and Settings\Admin\Desktop\JRT.exe
    2014-02-26 04:23 - 2014-02-26 04:23 - 01037734 _____ (Thisisu) C:\Documents and Settings\Admin\Desktop\JRT.exe
    2014-02-26 02:56 - 2014-02-23 06:51 - 00560417 _____ () C:\WINDOWS\setupapi.log
    2014-02-26 02:25 - 2005-08-29 03:17 - 00000049 _____ () C:\WINDOWS\wiaservc.log
    2014-02-26 02:13 - 2007-11-07 19:25 - 00809864 _____ () C:\WINDOWS\comsetup.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 02101389 _____ () C:\WINDOWS\FaxSetup.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 01475491 _____ () C:\WINDOWS\iis6.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00003739 _____ () C:\WINDOWS\imsins.BAK
    2014-02-26 02:13 - 2005-08-29 03:14 - 00001917 _____ () C:\WINDOWS\imsins.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00169315 _____ () C:\WINDOWS\MedCtrOC.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00117025 _____ () C:\WINDOWS\msgsocm.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00930836 _____ () C:\WINDOWS\msmqinst.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00384634 _____ () C:\WINDOWS\netfxocm.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00539548 _____ () C:\WINDOWS\ntdtcsetup.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 01475759 _____ () C:\WINDOWS\ocgen.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00125330 _____ () C:\WINDOWS\ocmsn.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00104402 _____ () C:\WINDOWS\tabletoc.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 01110730 _____ () C:\WINDOWS\tsoc.log
    2014-02-26 02:13 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Cursors
    2014-02-26 02:05 - 2006-01-04 22:58 - 00000000 __SHD () C:\WINDOWS\CSC
    2014-02-25 16:06 - 2006-04-18 10:53 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
    2014-02-25 15:31 - 2013-06-26 23:48 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Skype
    2014-02-25 15:31 - 2013-05-13 12:04 - 00000000 ___RD () C:\Program Files\Skype
    2014-02-25 15:31 - 2008-01-08 03:15 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
    2014-02-25 15:28 - 2005-08-29 03:14 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
    2014-02-25 09:01 - 2014-02-25 05:51 - 00006259 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_S_02252014_055102.txt
    2014-02-25 08:16 - 2014-02-25 07:23 - 00107224 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
    2014-02-25 08:15 - 2014-02-25 07:23 - 00052312 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
    2014-02-25 08:12 - 2005-08-29 01:56 - 00000000 ____D () C:\Documents and Settings\Admin
    2014-02-25 08:10 - 2012-08-08 16:24 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
    2014-02-25 07:23 - 2014-02-25 08:16 - 00107224 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
    2014-02-25 07:23 - 2014-02-25 08:15 - 00052312 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
    2014-02-25 07:22 - 2014-02-25 07:22 - 00000000 ____D () C:\Documents and Settings\Admin\Desktop\mwb antirootkit
    2014-02-25 07:22 - 2014-02-25 07:22 - 00000000 ____D () C:\Documents and Settings\Admin\Desktop\mwb antirootkit
     
  14. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    2014-02-25 07:20 - 2014-02-25 05:48 - 00000000 ____D () C:\Documents and Settings\Admin\Desktop\RK_Quarantine
    2014-02-25 07:15 - 2014-02-25 07:11 - 00000000 ____D () C:\Program Files\DAEMON Tools Pro
    2014-02-25 07:14 - 2014-02-25 07:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
    2014-02-25 07:13 - 2014-02-25 07:14 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
    2014-02-25 07:13 - 2014-02-25 07:13 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\DAEMON Tools Pro
    2014-02-25 07:13 - 2014-02-25 07:13 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\DAEMON Tools Pro
    2014-02-25 07:11 - 2014-02-25 07:15 - 00000000 ____D () C:\Program Files\DAEMON Tools Pro
    2014-02-25 07:11 - 2014-02-25 07:11 - 00001645 _____ () C:\Documents and Settings\All Users\Desktop\DAEMON Tools Pro.lnk
    2014-02-25 07:11 - 2014-02-25 07:11 - 00001645 _____ () C:\Documents and Settings\All Users\Desktop\DAEMON Tools Pro.lnk
    2014-02-25 07:11 - 2014-02-25 07:11 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DAEMON Tools Pro
    2014-02-25 07:11 - 2014-02-25 07:11 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DAEMON Tools Pro
    2014-02-25 07:06 - 2014-02-25 07:06 - 00685816 _____ () C:\WINDOWS\system32\Drivers\sptd.sys
    2014-02-25 07:06 - 2014-02-25 07:06 - 00685816 _____ () C:\WINDOWS\system32\Drivers\sptd.sys
    2014-02-25 06:58 - 2014-02-25 06:58 - 00005490 ____N () C:\bootex.log
    2014-02-25 06:58 - 2014-02-25 06:58 - 00005490 ____N () C:\bootex.log
    2014-02-25 06:38 - 2001-12-31 16:12 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
    2014-02-25 06:24 - 2014-02-25 06:24 - 00004712 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_S_02252014_062422.txt
    2014-02-25 06:24 - 2014-02-25 06:24 - 00004712 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_S_02252014_062422.txt
    2014-02-25 05:54 - 2014-02-25 05:54 - 00006637 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_D_02252014_055432.txt
    2014-02-25 05:54 - 2014-02-25 05:54 - 00006637 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_D_02252014_055432.txt
    2014-02-25 05:54 - 2008-04-14 05:00 - 00000000 __SHD () C:\Documents and Settings\Admin\Local Settings\Application Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}
    2014-02-25 05:51 - 2014-02-25 09:01 - 00006259 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_S_02252014_055102.txt
    2014-02-25 05:49 - 2014-02-25 05:49 - 12589848 _____ (Malwarebytes Corp.) C:\Documents and Settings\Admin\Desktop\mbar-1.07.0.1009.exe
    2014-02-25 05:49 - 2014-02-25 05:49 - 12589848 _____ (Malwarebytes Corp.) C:\Documents and Settings\Admin\Desktop\mbar-1.07.0.1009.exe
    2014-02-25 05:48 - 2014-02-25 07:20 - 00000000 ____D () C:\Documents and Settings\Admin\Desktop\RK_Quarantine
    2014-02-25 05:48 - 2014-02-25 05:48 - 03818496 _____ () C:\Documents and Settings\Admin\Desktop\RogueKiller.exe
    2014-02-25 05:48 - 2014-02-25 05:48 - 03818496 _____ () C:\Documents and Settings\Admin\Desktop\RogueKiller.exe
    2014-02-24 10:23 - 2014-02-22 02:42 - 00000000 ____D () C:\I386
    2014-02-24 10:13 - 2014-02-24 10:05 - 00012662 _____ () C:\Documents and Settings\Admin\Desktop\attach.txt
    2014-02-24 10:13 - 2014-02-24 10:05 - 00027164 _____ () C:\Documents and Settings\Admin\Desktop\dds.txt
    2014-02-24 10:13 - 2005-04-07 15:52 - 00000000 ___RD () C:\Documents and Settings\Admin\Desktop\TIF's
    2014-02-24 10:05 - 2014-02-24 10:13 - 00027164 _____ () C:\Documents and Settings\Admin\Desktop\dds.txt
    2014-02-24 10:03 - 2014-02-24 10:03 - 00688992 ____R (Swearware) C:\Documents and Settings\Admin\Desktop\dds.com
    2014-02-24 10:03 - 2014-02-24 10:03 - 00688992 ____R (Swearware) C:\Documents and Settings\Admin\Desktop\dds.com
    2014-02-24 09:43 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system
    2014-02-24 09:41 - 2013-04-11 18:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\YTD YouTube Downloader & Converter
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Malwarebytes
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Malwarebytes
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000834 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000834 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
    2014-02-24 09:09 - 2013-04-04 14:50 - 00022856 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbam.sys
    2014-02-24 09:06 - 2014-02-24 09:06 - 10285040 _____ (Malwarebytes Corporation ) C:\Documents and Settings\Admin\Desktop\mbam-setup-1.75.0.1300.exe
    2014-02-24 09:06 - 2014-02-24 09:06 - 10285040 _____ (Malwarebytes Corporation ) C:\Documents and Settings\Admin\Desktop\mbam-setup-1.75.0.1300.exe
    2014-02-24 08:25 - 2008-04-14 05:42 - 00018944 ____C () C:\WINDOWS\system32\dllcache\xrxscnui.dll
    2014-02-24 08:25 - 2008-04-14 05:42 - 00116224 ____C (Xerox) C:\WINDOWS\system32\dllcache\xrxwiadr.dll
    2014-02-24 08:25 - 2001-08-17 22:37 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\xrxflnch.exe
    2014-02-24 08:25 - 2001-08-17 22:37 - 00027648 ____C () C:\WINDOWS\system32\dllcache\xrxftplt.exe
    2014-02-24 08:25 - 2001-08-17 22:36 - 00023040 ____C (Xerox Corporation) C:\WINDOWS\system32\dllcache\xrxwbtmp.dll
    2014-02-24 08:24 - 2008-04-14 05:42 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wshirda.dll
    2014-02-24 08:24 - 2008-04-14 00:06 - 00008832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wmiacpi.sys
    2014-02-24 08:24 - 2008-04-13 22:05 - 00154624 ____C (Lucent Technologies) C:\WINDOWS\system32\dllcache\wlluc48.sys
    2014-02-24 08:24 - 2008-04-13 22:04 - 00012063 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wsiintxx.sys
    2014-02-24 08:24 - 2008-04-13 22:04 - 00019455 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wvchntxx.sys
    2014-02-24 08:24 - 2001-08-17 22:37 - 00099865 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\xlog.exe
    2014-02-24 08:24 - 2001-08-17 12:11 - 00016970 ____C (US Robotics MCD (Megahertz)) C:\WINDOWS\system32\dllcache\xem336n5.sys
    2014-02-24 08:23 - 2008-04-14 00:15 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wceusbsh.sys
    2014-02-24 08:23 - 2008-04-14 00:13 - 00014208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wacompen.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00012415 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv01nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00012127 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv02nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00011775 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv05nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00011807 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv07nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00011295 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv08nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00011871 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv09nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00011935 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wadv11nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00029311 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\watv01nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00019551 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\watv02nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00033599 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\watv04nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00022271 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\watv06nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00025471 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\watv10nt.sys
    2014-02-24 08:23 - 2008-04-13 22:04 - 00023615 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\wch7xxnt.sys
    2014-02-24 08:23 - 2001-08-17 22:36 - 00087040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiafbdrv.dll
    2014-02-24 08:23 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wiamsmud.dll
    2014-02-24 08:23 - 2001-08-17 13:28 - 00701386 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\wdhaalba.sys
    2014-02-24 08:23 - 2001-08-17 13:28 - 00771581 ____C (Rockwell) C:\WINDOWS\system32\dllcache\winacisa.sys
    2014-02-24 08:23 - 2001-08-17 12:13 - 00019016 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w926nd.sys
    2014-02-24 08:23 - 2001-08-17 12:13 - 00016925 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w940nd.sys
    2014-02-24 08:23 - 2001-08-17 12:12 - 00034890 ____C (Raytheon Corp.) C:\WINDOWS\system32\dllcache\wlandrv2.sys
    2014-02-24 08:23 - 2001-08-17 12:10 - 00035871 ____C (Winbond Electronics Corp.) C:\WINDOWS\system32\dllcache\wbfirdma.sys
    2014-02-24 08:22 - 2008-04-14 05:42 - 00011325 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\vchnt5.dll
    2014-02-24 08:22 - 2008-04-14 00:26 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usb8023x.sys
    2014-02-24 08:22 - 2008-04-14 00:16 - 00121984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbvideo.sys
    2014-02-24 08:22 - 2008-04-14 00:15 - 00015104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbscan.sys
    2014-02-24 08:22 - 2008-04-14 00:15 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\usbser.sys
    2014-02-24 08:22 - 2008-04-14 00:10 - 00005376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\viaide.sys
    2014-02-24 08:22 - 2008-04-13 22:05 - 00032384 ____C (KLSI USA, Inc.) C:\WINDOWS\system32\dllcache\usb101et.sys
    2014-02-24 08:22 - 2001-08-17 13:49 - 00024576 ____C (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\viairda.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00794654 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1801.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00793598 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00794399 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usr1806v.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00224802 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usr1807a.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00007556 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usroslba.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00113762 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrpda.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00765884 ____C (U.S. Robotics, Inc.) C:\WINDOWS\system32\dllcache\usrti.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00687999 ____C (U.S. Robotics Corporation) C:\WINDOWS\system32\dllcache\usrwdxjs.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00604253 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\vmodem.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00397502 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vpctcom.sys
    2014-02-24 08:22 - 2001-08-17 13:28 - 00064605 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\vvoice.sys
    2014-02-24 08:22 - 2001-08-17 12:14 - 00249402 ____C (Xircom) C:\WINDOWS\system32\dllcache\vinwm.sys
    2014-02-24 08:22 - 2001-08-17 12:13 - 00019528 ____C (Winbond Electronics Corporation) C:\WINDOWS\system32\dllcache\w840nd.sys
    2014-02-24 08:21 - 2001-08-17 22:36 - 00525568 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxp.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00216064 ____C (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um34scan.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00211968 ____C (UMAX Data Systems Inc.) C:\WINDOWS\system32\dllcache\um54scan.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxcam.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxp60.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00050688 ____C (UMAX DATA SYSTEMS INC.) C:\WINDOWS\system32\dllcache\umaxscan.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00069632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu12.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu22.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxu40.dll
    2014-02-24 08:21 - 2001-08-17 22:36 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxud32.dll
    2014-02-24 08:21 - 2001-08-17 14:56 - 00315520 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3d.dll
    2014-02-24 08:21 - 2001-08-17 14:56 - 00440576 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkb.dll
    2014-02-24 08:21 - 2001-08-17 13:58 - 00022912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\umaxpcls.sys
    2014-02-24 08:21 - 2001-08-17 13:52 - 00036736 ____C (Promise Technology, Inc.) C:\WINDOWS\system32\dllcache\ultra.sys
    2014-02-24 08:21 - 2001-08-17 13:48 - 00011520 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\twotrack.sys
    2014-02-24 08:21 - 2001-08-17 12:51 - 00222336 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\trid3dm.sys
    2014-02-24 08:21 - 2001-08-17 12:51 - 00159232 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridkbm.sys
    2014-02-24 08:21 - 2001-08-17 12:51 - 00166784 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tridxpm.sys
    2014-02-24 08:21 - 2001-08-17 12:12 - 00034375 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\tpro4.sys
    2014-02-24 08:20 - 2008-04-14 05:42 - 00082944 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4mon.exe
    2014-02-24 08:20 - 2008-04-14 00:10 - 00149376 ____C (M-Systems) C:\WINDOWS\system32\dllcache\tffsport.sys
    2014-02-24 08:20 - 2001-08-17 22:36 - 00031744 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4.dll
    2014-02-24 08:20 - 2001-08-17 22:35 - 00042496 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\tp4res.dll
    2014-02-24 08:20 - 2001-08-17 14:56 - 00172768 ____C (Number Nine Visual Technology) C:\WINDOWS\system32\dllcache\t2r4disp.dll
    2014-02-24 08:20 - 2001-08-17 14:56 - 00081408 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiul50.dll
    2014-02-24 08:20 - 2001-08-17 14:02 - 00230912 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd03.sys
    2014-02-24 08:20 - 2001-08-17 14:01 - 00241664 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tosdvd02.sys
    2014-02-24 08:20 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tandqic.sys
    2014-02-24 08:20 - 2001-08-17 13:51 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\toside.sys
    2014-02-24 08:20 - 2001-08-17 13:49 - 00030464 ____C (Toshiba Corporation) C:\WINDOWS\system32\dllcache\tbatm155.sys
    2014-02-24 08:20 - 2001-08-17 12:51 - 00138528 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\tgiulnt5.sys
    2014-02-24 08:20 - 2001-08-17 12:50 - 00036640 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\t2r4mini.sys
    2014-02-24 08:20 - 2001-08-17 12:14 - 00123995 ____C (Tiger Jet Network) C:\WINDOWS\system32\dllcache\tjisdn.sys
    2014-02-24 08:20 - 2001-08-17 12:13 - 00037961 ____C (TDK Corporation) C:\WINDOWS\system32\dllcache\tdk100b.sys
    2014-02-24 08:20 - 2001-08-17 12:13 - 00017129 ____C (TDK Corporation) C:\WINDOWS\system32\dllcache\tdkcd31.sys
    2014-02-24 08:20 - 2001-08-17 12:10 - 00028232 ____C (TOSHIBA Corporation) C:\WINDOWS\system32\dllcache\tos4mo.sys
    2014-02-24 08:19 - 2001-08-17 22:36 - 00024660 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxupchk.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00099328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusd.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00053248 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlncoin.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00155648 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnprop.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_effct.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00053760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sw_wheel.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpdflt2.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swpidflt.dll
    2014-02-24 08:19 - 2001-08-17 22:36 - 00094293 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sxports.dll
    2014-02-24 08:19 - 2001-08-17 14:07 - 00028384 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\sym_hi.sys
    2014-02-24 08:19 - 2001-08-17 14:07 - 00030688 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\sym_u3.sys
    2014-02-24 08:19 - 2001-08-17 14:07 - 00016256 ____C (Symbios Logic Inc.) C:\WINDOWS\system32\dllcache\symc810.sys
    2014-02-24 08:19 - 2001-08-17 14:07 - 00032640 ____C (LSI Logic) C:\WINDOWS\system32\dllcache\symc8xx.sys
    2014-02-24 08:19 - 2001-08-17 14:02 - 00003968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\swusbflt.sys
    2014-02-24 08:19 - 2001-08-17 13:51 - 00016896 ____C (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\stcusb.sys
    2014-02-24 08:19 - 2001-08-17 13:50 - 00103936 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\sx.sys
    2014-02-24 08:19 - 2001-08-17 12:18 - 00285760 ____C (Stallion Technologies) C:\WINDOWS\system32\dllcache\stlnata.sys
    2014-02-24 08:19 - 2001-08-17 12:11 - 00048736 ____C (3Com) C:\WINDOWS\system32\dllcache\srwlnd5.sys
    2014-02-24 08:18 - 2008-04-14 00:10 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonyait.sys
    2014-02-24 08:18 - 2008-04-14 00:06 - 00005888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbali.sys
    2014-02-24 08:18 - 2008-04-14 00:06 - 00016000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbbatt.sys
    2014-02-24 08:18 - 2008-04-14 00:06 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbclass.sys
    2014-02-24 08:18 - 2001-08-17 22:36 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb0w.dll
    2014-02-24 08:18 - 2001-08-17 22:36 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb3w.dll
    2014-02-24 08:18 - 2001-08-17 22:36 - 00114688 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.dll
    2014-02-24 08:18 - 2001-08-17 22:36 - 00106584 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spdports.dll
    2014-02-24 08:18 - 2001-08-17 14:56 - 00147200 ____C (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smidispb.dll
    2014-02-24 08:18 - 2001-08-17 14:07 - 00019072 ____C (Adaptec, Inc.) C:\WINDOWS\system32\dllcache\sparrow.sys
    2014-02-24 08:18 - 2001-08-17 13:57 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smbhc.sys
    2014-02-24 08:18 - 2001-08-17 13:56 - 00007552 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypvu1.sys
    2014-02-24 08:18 - 2001-08-17 13:53 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snyaitmc.sys
    2014-02-24 08:18 - 2001-08-17 13:53 - 00009600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sonymc.sys
    2014-02-24 08:18 - 2001-08-17 13:51 - 00061824 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\speed.sys
    2014-02-24 08:18 - 2001-08-17 12:51 - 00058368 ____C (Silicon Motion Inc.) C:\WINDOWS\system32\dllcache\smiminib.sys
    2014-02-24 08:18 - 2001-08-17 12:51 - 00020752 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonync.sys
    2014-02-24 08:18 - 2001-08-17 12:51 - 00037040 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\sonypi.sys
    2014-02-24 08:18 - 2001-08-17 12:12 - 00024576 ____C (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smc8000n.sys
    2014-02-24 08:18 - 2001-08-17 12:12 - 00025034 ____C (SMC Networks, Inc.) C:\WINDOWS\system32\dllcache\smcpwr2n.sys
    2014-02-24 08:18 - 2001-08-17 12:10 - 00035913 ____C (SMC) C:\WINDOWS\system32\dllcache\smcirda.sys
    2014-02-24 08:17 - 2008-04-14 05:42 - 00003901 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\siint5.dll
    2014-02-24 08:17 - 2008-04-14 05:42 - 00073832 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slcoinst.dll
    2014-02-24 08:17 - 2008-04-14 05:42 - 00286792 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slextspk.dll
    2014-02-24 08:17 - 2008-04-14 05:42 - 00188508 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slgen.dll
    2014-02-24 08:17 - 2008-04-14 05:42 - 00032866 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slrundll.exe
    2014-02-24 08:17 - 2008-04-14 05:42 - 00073796 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slserv.exe
    2014-02-24 08:17 - 2008-04-13 23:53 - 00129535 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slnt7554.sys
    2014-02-24 08:17 - 2008-04-13 23:53 - 00404990 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slntamr.sys
    2014-02-24 08:17 - 2008-04-13 23:53 - 00095424 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slnthal.sys
    2014-02-24 08:17 - 2008-04-13 23:53 - 00013240 ____C (Smart Link) C:\WINDOWS\system32\dllcache\slwdmsup.sys
    2014-02-24 08:17 - 2008-04-13 22:05 - 00032768 ____C (SiS Corporation) C:\WINDOWS\system32\dllcache\sisnic.sys
    2014-02-24 08:17 - 2008-04-13 22:05 - 00063547 ____C (Symbol Technologies) C:\WINDOWS\system32\dllcache\sla30nd5.sys
    2014-02-24 08:17 - 2001-08-17 22:36 - 00386560 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiul50.dll
    2014-02-24 08:17 - 2001-08-17 22:36 - 00238592 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrv.dll
    2014-02-24 08:17 - 2001-08-17 22:36 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm91w.dll
    2014-02-24 08:17 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma0w.dll
    2014-02-24 08:17 - 2001-08-17 14:56 - 00252032 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300iv.dll
    2014-02-24 08:17 - 2001-08-17 14:56 - 00150144 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306v.dll
    2014-02-24 08:17 - 2001-08-17 14:56 - 00157696 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv256.dll
    2014-02-24 08:17 - 2001-08-17 13:53 - 00006784 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\serscan.sys
    2014-02-24 08:17 - 2001-08-17 13:48 - 00017664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sermouse.sys
    2014-02-24 08:17 - 2001-08-17 12:51 - 00098080 ____C (Trident Microsystems Inc.) C:\WINDOWS\system32\dllcache\sgiulnt5.sys
    2014-02-24 08:17 - 2001-08-17 12:50 - 00101760 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis300ip.sys
    2014-02-24 08:17 - 2001-08-17 12:50 - 00068608 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sis6306p.sys
    2014-02-24 08:17 - 2001-08-17 12:50 - 00104064 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisgrp.sys
    2014-02-24 08:17 - 2001-08-17 12:50 - 00050432 ____C (Silicon Integrated Systems Corporation) C:\WINDOWS\system32\dllcache\sisv.sys
    2014-02-24 08:17 - 2001-08-17 12:19 - 00036480 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sfmanm.sys
    2014-02-24 08:17 - 2001-08-17 12:12 - 00094698 ____C (SysKonnect GmbH.) C:\WINDOWS\system32\dllcache\sk98xwin.sys
    2014-02-24 08:17 - 2001-08-17 12:12 - 00091294 ____C (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) C:\WINDOWS\system32\dllcache\skfpwin.sys
    2014-02-24 08:17 - 2001-07-21 14:29 - 00018400 ____C (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmld.sys
    2014-02-24 08:17 - 2001-07-21 14:29 - 00161568 ____C (Micro Systemation) C:\WINDOWS\system32\dllcache\sgsmusb.sys
    2014-02-24 08:16 - 2008-04-14 05:42 - 00397056 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3gnb.dll
    2014-02-24 08:16 - 2008-04-14 00:15 - 00011520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiscan.sys
    2014-02-24 08:16 - 2008-04-14 00:10 - 00043904 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sbp2port.sys
    2014-02-24 08:16 - 2008-04-13 22:04 - 00166912 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3gnbm.sys
    2014-02-24 08:16 - 2001-08-17 22:36 - 00082432 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia450.dll
    2014-02-24 08:16 - 2001-08-17 22:36 - 00062496 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mtrio.dll
    2014-02-24 08:16 - 2001-08-17 22:36 - 00495616 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\sblfx.dll
    2014-02-24 08:16 - 2001-08-17 14:56 - 00182272 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.dll
    2014-02-24 08:16 - 2001-08-17 14:56 - 00210496 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mvirge.dll
    2014-02-24 08:16 - 2001-08-17 14:56 - 00179264 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3d.dll
    2014-02-24 08:16 - 2001-08-17 14:56 - 00198400 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4.dll
    2014-02-24 08:16 - 2001-08-17 14:56 - 00245632 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmx.dll
    2014-02-24 08:16 - 2001-08-17 13:57 - 00065664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.sys
    2014-02-24 08:16 - 2001-08-17 13:53 - 00006912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seaddsmc.sys
    2014-02-24 08:16 - 2001-08-17 13:52 - 00011648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scsiprnt.sys
    2014-02-24 08:16 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmn50m.sys
    2014-02-24 08:16 - 2001-08-17 13:51 - 00023936 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\sccmusbm.sys
    2014-02-24 08:16 - 2001-08-17 13:51 - 00016640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\scmstcs.sys
    2014-02-24 08:16 - 2001-08-17 13:51 - 00017280 ____C (SCM Microsystems) C:\WINDOWS\system32\dllcache\scr111.sys
    2014-02-24 08:16 - 2001-08-17 12:50 - 00166720 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3m.sys
    2014-02-24 08:16 - 2001-08-17 12:50 - 00041216 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3mt3d.sys
    2014-02-24 08:16 - 2001-08-17 12:50 - 00061504 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav3dm.sys
    2014-02-24 08:16 - 2001-08-17 12:50 - 00077824 ____C (S3 Incorporated) C:\WINDOWS\system32\dllcache\s3sav4m.sys
    2014-02-24 08:16 - 2001-08-17 12:50 - 00075392 ____C (S3 Graphics, Inc.) C:\WINDOWS\system32\dllcache\s3savmxm.sys
    2014-02-24 08:15 - 2008-04-14 05:42 - 00027648 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw430ext.dll
    2014-02-24 08:15 - 2008-04-14 05:42 - 00029696 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw450ext.dll
    2014-02-24 08:15 - 2008-04-14 00:26 - 00030592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rndismpx.sys
    2014-02-24 08:15 - 2008-04-14 00:16 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rfcomm.sys
    2014-02-24 08:15 - 2008-04-14 00:10 - 00079104 ____C (Comtrol Corporation) C:\WINDOWS\system32\dllcache\rocket.sys
    2014-02-24 08:15 - 2008-04-13 22:05 - 00020992 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8139.sys
    2014-02-24 08:15 - 2001-08-17 22:36 - 00086097 ____C (Xircom) C:\WINDOWS\system32\dllcache\reslog32.dll
    2014-02-24 08:15 - 2001-08-17 22:36 - 00009216 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\rsmgrstr.dll
    2014-02-24 08:15 - 2001-08-17 22:36 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia430.dll
    2014-02-24 08:15 - 2001-08-17 12:19 - 00003840 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rpfun.sys
    2014-02-24 08:15 - 2001-08-17 12:19 - 00030720 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\rthwcls.sys
    2014-02-24 08:15 - 2001-08-17 12:12 - 00037563 ____C (RadioLAN) C:\WINDOWS\system32\dllcache\rlnet5.sys
    2014-02-24 08:15 - 2001-08-17 12:12 - 00019017 ____C (Realtek Semiconductor Corporation) C:\WINDOWS\system32\dllcache\rtl8029.sys
    2014-02-24 08:14 - 2008-04-14 05:42 - 00159232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusd.dll
    2014-02-24 08:14 - 2008-04-14 00:10 - 00006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qic157.sys
    2014-02-24 08:14 - 2008-04-13 23:53 - 00013776 ____C (Smart Link) C:\WINDOWS\system32\dllcache\recagent.sys
    2014-02-24 08:14 - 2001-08-17 22:36 - 00041472 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qvusd.dll
    2014-02-24 08:14 - 2001-08-17 13:53 - 00003328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\qv2kux.sys
    2014-02-24 08:14 - 2001-08-17 13:52 - 00040320 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql1080.sys
    2014-02-24 08:14 - 2001-08-17 13:52 - 00033152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ql10wnt.sys
    2014-02-24 08:14 - 2001-08-17 13:52 - 00045312 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql12160.sys
    2014-02-24 08:14 - 2001-08-17 13:52 - 00040448 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ql1240.sys
    2014-02-24 08:14 - 2001-08-17 13:52 - 00049024 ____C (QLogic Corporation) C:\WINDOWS\system32\dllcache\ql1280.sys
    2014-02-24 08:14 - 2001-08-17 13:51 - 00019584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rasirda.sys
    2014-02-24 08:14 - 2001-08-17 13:28 - 00128286 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserli.sys
    2014-02-24 08:14 - 2001-08-17 13:28 - 00112574 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlp.sys
    2014-02-24 08:14 - 2001-08-17 13:28 - 00130942 ____C (PCTEL, INC.) C:\WINDOWS\system32\dllcache\ptserlv.sys
    2014-02-24 08:14 - 2001-08-17 13:28 - 00899146 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdkxga.sys
    2014-02-24 08:14 - 2001-08-17 13:28 - 00714762 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\r2mdmkxx.sys
    2014-02-24 08:13 - 2008-04-14 05:42 - 00363520 ____C () C:\WINDOWS\system32\dllcache\psisdecd.dll
    2014-02-24 08:13 - 2008-04-14 05:42 - 00033280 ____C () C:\WINDOWS\system32\dllcache\psisrndr.ax
    2014-02-24 08:13 - 2008-04-14 05:40 - 00211584 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2dll.dll
    2014-02-24 08:13 - 2008-04-14 05:40 - 00259328 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3dd.dll
    2014-02-24 08:13 - 2008-04-14 00:14 - 00027904 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm2.sys
    2014-02-24 08:13 - 2008-04-14 00:14 - 00028032 ____C (Microsoft Corp., 3Dlabs Inc. Ltd.) C:\WINDOWS\system32\dllcache\perm3.sys
    2014-02-24 08:13 - 2008-04-14 00:11 - 00017664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa3.sys
    2014-02-24 08:13 - 2008-04-14 00:10 - 00008832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\powerfil.sys
    2014-02-24 08:13 - 2008-04-13 22:05 - 00029502 ____C (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\pca200e.sys
    2014-02-24 08:13 - 2008-04-13 21:42 - 00169984 ____C (Cisco Systems) C:\WINDOWS\system32\dllcache\pcx500.sys
    2014-02-24 08:13 - 2001-08-17 22:37 - 00105984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phdsext.ax
    2014-02-24 08:13 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcomc.dll
    2014-02-24 08:13 - 2001-08-17 22:36 - 00039424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcoms.exe
    2014-02-24 08:13 - 2001-08-17 22:36 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2.dll
    2014-02-24 08:13 - 2001-08-17 22:36 - 00041984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovui2rc.dll
    2014-02-24 08:13 - 2001-08-17 22:36 - 00086016 ____C (PCtel, Inc.) C:\WINDOWS\system32\dllcache\pctspk.exe
    2014-02-24 08:13 - 2001-08-17 22:36 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.dll
    2014-02-24 08:13 - 2001-08-17 22:36 - 00121344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phvfwext.dll
    2014-02-24 08:13 - 2001-08-17 22:36 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\psisload.dll
    2014-02-24 08:13 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ptpusb.dll
    2014-02-24 08:13 - 2001-08-17 14:07 - 00027296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perc2.sys
    2014-02-24 08:13 - 2001-08-17 14:07 - 00005504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\perc2hib.sys
    2014-02-24 08:13 - 2001-08-17 14:07 - 00019840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philtune.sys
    2014-02-24 08:13 - 2001-08-17 14:05 - 00351616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodek2.sys
    2014-02-24 08:13 - 2001-08-17 14:05 - 00025216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovsound2.sys
    2014-02-24 08:13 - 2001-08-17 14:04 - 00075776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam1.sys
    2014-02-24 08:13 - 2001-08-17 14:04 - 00173696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\philcam2.sys
    2014-02-24 08:13 - 2001-08-17 14:04 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\phildec.sys
    2014-02-24 08:13 - 2001-08-17 13:53 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pnrmc.sys
    2014-02-24 08:13 - 2001-08-17 13:53 - 00017792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ppa.sys
    2014-02-24 08:13 - 2001-08-17 13:51 - 00016128 ____C (SCM Microsystems, Inc.) C:\WINDOWS\system32\dllcache\pscr.sys
    2014-02-24 08:13 - 2001-08-17 12:12 - 00030495 ____C (Linksys) C:\WINDOWS\system32\dllcache\pc100nds.sys
    2014-02-24 08:13 - 2001-08-17 12:12 - 00026153 ____C (Linksys) C:\WINDOWS\system32\dllcache\pcmlm56.sys
    2014-02-24 08:13 - 2001-08-17 12:11 - 00030282 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5hl.sys
    2014-02-24 08:13 - 2001-08-17 12:11 - 00029769 ____C (AMD Inc.) C:\WINDOWS\system32\dllcache\pcntn5m.sys
    2014-02-24 08:12 - 2008-04-14 00:24 - 00028672 ____C (National Semiconductor Corporation) C:\WINDOWS\system32\dllcache\nscirda.sys
    2014-02-24 08:12 - 2008-04-14 00:16 - 00061696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ohci1394.sys
    2014-02-24 08:12 - 2008-04-14 00:01 - 02065792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntkrnlpa.exe
    2014-02-24 08:12 - 2008-04-13 23:53 - 00180360 ____C (Smart Link) C:\WINDOWS\system32\dllcache\ntmtlfax.sys
    2014-02-24 08:12 - 2008-04-13 22:05 - 00132695 ____C (802.11b) C:\WINDOWS\system32\dllcache\netwlan5.sys
    2014-02-24 08:12 - 2001-08-17 22:36 - 00060480 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.dll
    2014-02-24 08:12 - 2001-08-17 22:36 - 00123776 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.dll
    2014-02-24 08:12 - 2001-08-17 22:36 - 00116736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcodec2.dll
    2014-02-24 08:12 - 2001-08-17 14:05 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovca.sys
    2014-02-24 08:12 - 2001-08-17 14:05 - 00048000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcam2.sys
    2014-02-24 08:12 - 2001-08-17 14:05 - 00028032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovcd.sys
    2014-02-24 08:12 - 2001-08-17 14:05 - 00031872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ovce.sys
    2014-02-24 08:12 - 2001-08-17 13:53 - 00007552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsmmc.sys
    2014-02-24 08:12 - 2001-08-17 13:47 - 00009344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntapm.sys
    2014-02-24 08:12 - 2001-08-17 13:28 - 00054186 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otcsercb.sys
    2014-02-24 08:12 - 2001-08-17 12:50 - 00039264 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\neo20xx.sys
    2014-02-24 08:12 - 2001-08-17 12:50 - 00198144 ____C (NVIDIA Corporation) C:\WINDOWS\system32\dllcache\nv3.sys
    2014-02-24 08:12 - 2001-08-17 12:49 - 00051552 ____C (Kensington Technology Group) C:\WINDOWS\system32\dllcache\ntgrip.sys
    2014-02-24 08:12 - 2001-08-17 12:20 - 00126080 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm5a2wdm.sys
    2014-02-24 08:12 - 2001-08-17 12:20 - 00087040 ____C (NeoMagic Corporation) C:\WINDOWS\system32\dllcache\nm6wdm.sys
    2014-02-24 08:12 - 2001-08-17 12:20 - 00054528 ____C (Yamaha Corp.) C:\WINDOWS\system32\dllcache\opl3sax.sys
    2014-02-24 08:12 - 2001-08-17 12:12 - 00032840 ____C (NETGEAR Corporation.) C:\WINDOWS\system32\dllcache\ngrpci.sys
    2014-02-24 08:12 - 2001-08-17 12:12 - 00027209 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otc06x5.sys
    2014-02-24 08:12 - 2001-08-17 12:12 - 00043689 ____C (Ositech Communications, Inc.) C:\WINDOWS\system32\dllcache\otceth5.sys
    2014-02-24 08:12 - 2001-08-17 12:11 - 00065278 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\netflx3.sys
    2014-02-24 08:11 - 2008-04-14 05:42 - 00056832 ____C () C:\WINDOWS\system32\dllcache\msdvbnp.ax
    2014-02-24 08:11 - 2008-04-14 05:42 - 01737856 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mtxparhd.dll
    2014-02-24 08:11 - 2008-04-14 00:24 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msircomm.sys
    2014-02-24 08:11 - 2008-04-14 00:16 - 00049024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mstape.sys
    2014-02-24 08:11 - 2008-04-14 00:13 - 00012672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mutohpen.sys
    2014-02-24 08:11 - 2008-04-13 23:53 - 00126686 ____C (Smart Link) C:\WINDOWS\system32\dllcache\mtlmnt5.sys
    2014-02-24 08:11 - 2008-04-13 23:53 - 01309184 ____C (Smart Link) C:\WINDOWS\system32\dllcache\mtlstrm.sys
    2014-02-24 08:11 - 2008-04-13 22:04 - 00452736 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mtxparhm.sys
    2014-02-24 08:11 - 2001-08-17 22:36 - 00019968 ____C (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxicfg.dll
    2014-02-24 08:11 - 2001-08-17 22:36 - 00007168 ____C (Moxa Technologies Co., Ltd) C:\WINDOWS\system32\dllcache\mxport.dll
    2014-02-24 08:11 - 2001-08-17 22:36 - 00059104 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.dll
    2014-02-24 08:11 - 2001-08-17 14:56 - 00035392 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.dll
    2014-02-24 08:11 - 2001-08-17 14:56 - 00091488 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3disp.dll
    2014-02-24 08:11 - 2001-08-17 14:02 - 00035200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msgame.sys
    2014-02-24 08:11 - 2001-08-17 14:00 - 00002944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msmpu401.sys
    2014-02-24 08:11 - 2001-08-17 13:50 - 00021888 ____C (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxcard.sys
    2014-02-24 08:11 - 2001-08-17 13:50 - 00075520 ____C (Moxa Technologies Co., Ltd.) C:\WINDOWS\system32\dllcache\mxport.sys
    2014-02-24 08:11 - 2001-08-17 13:49 - 00019968 ____C (Macronix International Co., Ltd. ) C:\WINDOWS\system32\dllcache\mxnic.sys
    2014-02-24 08:11 - 2001-08-17 13:49 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ne2000.sys
    2014-02-24 08:11 - 2001-08-17 13:48 - 00006016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msfsio.sys
    2014-02-24 08:11 - 2001-08-17 13:48 - 00012416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msriffwv.sys
    2014-02-24 08:11 - 2001-08-17 12:50 - 00103296 ____C (Matrox Graphics Inc) C:\WINDOWS\system32\dllcache\mtxvideo.sys
    2014-02-24 08:11 - 2001-08-17 12:50 - 00013664 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128.sys
    2014-02-24 08:11 - 2001-08-17 12:50 - 00033088 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i128v2.sys
    2014-02-24 08:11 - 2001-08-17 12:50 - 00027936 ____C (Number Nine Visual Technology Corp.) C:\WINDOWS\system32\dllcache\n9i3d.sys
    2014-02-24 08:11 - 2001-08-17 12:11 - 00052255 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n1000nt5.sys
    2014-02-24 08:11 - 2001-08-17 12:11 - 00128000 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\n100325.sys
    2014-02-24 08:10 - 2008-04-14 00:16 - 00015232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mpe.sys
    2014-02-24 08:10 - 2008-04-14 00:16 - 00051200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msdv.sys
    2014-02-24 08:10 - 2008-04-14 00:11 - 00026112 ____C (Sony Corporation) C:\WINDOWS\system32\dllcache\memstpci.sys
    2014-02-24 08:10 - 2008-04-14 00:10 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ltotape.sys
    2014-02-24 08:10 - 2008-04-13 23:53 - 00606684 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmnt.sys
    2014-02-24 08:10 - 2008-04-13 23:53 - 00420992 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmntt.sys
    2014-02-24 08:10 - 2008-04-13 22:09 - 00020864 ____C (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwadihid.sys
    2014-02-24 08:10 - 2001-08-17 22:36 - 00058368 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3091dc.dll
    2014-02-24 08:10 - 2001-08-17 22:36 - 00058880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\m3092dc.dll
    2014-02-24 08:10 - 2001-08-17 22:36 - 00047616 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memgrp.dll
    2014-02-24 08:10 - 2001-08-17 14:56 - 00235648 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaud.dll
    2014-02-24 08:10 - 2001-08-17 13:58 - 00008320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\memcard.sys
    2014-02-24 08:10 - 2001-08-17 13:53 - 00004992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\loop.sys
    2014-02-24 08:10 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mammoth.sys
    2014-02-24 08:10 - 2001-08-17 13:52 - 00006528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\miniqic.sys
    2014-02-24 08:10 - 2001-08-17 13:52 - 00017280 ____C (American Megatrends Inc.) C:\WINDOWS\system32\dllcache\mraid35x.sys
    2014-02-24 08:10 - 2001-08-17 13:28 - 00727786 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ltck000c.sys
    2014-02-24 08:10 - 2001-08-17 13:28 - 00576746 ____C (LT) C:\WINDOWS\system32\dllcache\ltmdmntl.sys
    2014-02-24 08:10 - 2001-08-17 13:28 - 00802683 ____C (Lucent Technologies) C:\WINDOWS\system32\dllcache\ltsm.sys
    2014-02-24 08:10 - 2001-08-17 13:28 - 00797500 ____C (LT) C:\WINDOWS\system32\dllcache\ltsmt.sys
    2014-02-24 08:10 - 2001-08-17 12:50 - 00320384 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\mgaum.sys
    2014-02-24 08:10 - 2001-08-17 12:49 - 00022848 ____C (Logitech Inc.) C:\WINDOWS\system32\dllcache\lwusbhid.sys
    2014-02-24 08:10 - 2001-08-17 12:19 - 00048768 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\maestro.sys
    2014-02-24 08:10 - 2001-08-17 12:12 - 00164586 ____C (Madge Networks Ltd) C:\WINDOWS\system32\dllcache\mdgndis5.sys
    2014-02-24 08:09 - 2008-04-14 05:42 - 00151552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irftp.exe
    2014-02-24 08:09 - 2008-04-14 05:41 - 00028160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irmon.dll
    2014-02-24 08:09 - 2008-04-14 05:41 - 00048640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsui.dll
    2014-02-24 08:09 - 2008-04-14 05:41 - 00253952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kdsusd.dll
    2014-02-24 08:09 - 2008-04-14 00:24 - 00088192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irda.sys
    2014-02-24 08:09 - 2008-04-14 00:15 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irbus.sys
    2014-02-24 08:09 - 2008-04-14 00:10 - 00034688 ____C (Toshiba Corp.) C:\WINDOWS\system32\dllcache\lbrtfdc.sys
    2014-02-24 08:09 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kousd.dll
    2014-02-24 08:09 - 2001-08-17 13:51 - 00018688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irsir.sys
    2014-02-24 08:09 - 2001-08-17 13:51 - 00015744 ____C (Litronic Industries) C:\WINDOWS\system32\dllcache\lit220p.sys
    2014-02-24 08:09 - 2001-08-17 13:49 - 00023552 ____C (MKNet Corporation) C:\WINDOWS\system32\dllcache\irmk7.sys
    2014-02-24 08:09 - 2001-08-17 13:49 - 00026624 ____C (SigmaTel, Inc.) C:\WINDOWS\system32\dllcache\irstusb.sys
    2014-02-24 08:09 - 2001-08-17 12:12 - 00019016 ____C (Kingston Technology Company ) C:\WINDOWS\system32\dllcache\ktc111.sys
    2014-02-24 08:09 - 2001-08-17 12:12 - 00026442 ____C (SMSC) C:\WINDOWS\system32\dllcache\lanepic5.sys
    2014-02-24 08:09 - 2001-08-17 12:12 - 00020573 ____C (The Linksts Group ) C:\WINDOWS\system32\dllcache\lne100.sys
    2014-02-24 08:09 - 2001-08-17 12:12 - 00070730 ____C (Linksys Group, Inc.) C:\WINDOWS\system32\dllcache\lne100tx.sys
    2014-02-24 08:09 - 2001-08-17 12:11 - 00025065 ____C (D-Link) C:\WINDOWS\system32\dllcache\lmndis3.sys
    2014-02-24 08:08 - 2008-04-14 05:41 - 00032285 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfcisp2.dll
    2014-02-24 08:08 - 2008-04-14 05:41 - 00702845 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\i81xdnt5.dll
    2014-02-24 08:08 - 2008-04-14 00:11 - 00008576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\i2omgmt.sys
    2014-02-24 08:08 - 2008-04-14 00:11 - 00018560 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\i2omp.sys
    2014-02-24 08:08 - 2008-04-13 23:53 - 00220032 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfbs2s2.sys
    2014-02-24 08:08 - 2008-04-13 23:53 - 00685056 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfcxts2.sys
    2014-02-24 08:08 - 2008-04-13 23:53 - 01041536 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\hsfdpsp2.sys
    2014-02-24 08:08 - 2008-04-13 22:04 - 00161020 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\i81xnt5.sys
    2014-02-24 08:08 - 2001-08-17 22:36 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3ext.dll
    2014-02-24 08:08 - 2001-08-17 22:36 - 00091136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4com.dll
    2014-02-24 08:08 - 2001-08-17 22:36 - 00061952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4ext.dll
    2014-02-24 08:08 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5com.dll
    2014-02-24 08:08 - 2001-08-17 22:36 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5ext.dll
    2014-02-24 08:08 - 2001-08-17 22:36 - 00372824 ____C (Xircom) C:\WINDOWS\system32\dllcache\iconf32.dll
    2014-02-24 08:08 - 2001-08-17 22:36 - 00090200 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8ports.dll
    2014-02-24 08:08 - 2001-08-17 22:34 - 00009216 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmsgnet.dll
    2014-02-24 08:08 - 2001-08-17 14:56 - 00353184 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\i740dnt5.dll
    2014-02-24 08:08 - 2001-08-17 14:06 - 00038528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ibmvcap.sys
    2014-02-24 08:08 - 2001-08-17 14:06 - 00154496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam4usb.sys
    2014-02-24 08:08 - 2001-08-17 14:06 - 00100992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam5usb.sys
    2014-02-24 08:08 - 2001-08-17 14:05 - 00141056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icam3.sys
    2014-02-24 08:08 - 2001-08-17 13:52 - 00016000 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ini910u.sys
    2014-02-24 08:08 - 2001-08-17 13:50 - 00038784 ____C (Perle Systems Ltd. ) C:\WINDOWS\system32\dllcache\io8.sys
    2014-02-24 08:08 - 2001-08-17 13:47 - 00013056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inport.sys
    2014-02-24 08:08 - 2001-08-17 13:28 - 00488383 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_v124.sys
    2014-02-24 08:08 - 2001-08-17 12:49 - 00058592 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\i740nt5.sys
    2014-02-24 08:08 - 2001-08-17 12:12 - 00100936 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtok.sys
    2014-02-24 08:08 - 2001-08-17 12:12 - 00109085 ____C (IBM Corporation) C:\WINDOWS\system32\dllcache\ibmtrp.sys
    2014-02-24 08:08 - 2001-08-17 12:12 - 00045632 ____C (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) C:\WINDOWS\system32\dllcache\ip5515.sys
    2014-02-24 08:08 - 2001-08-17 12:11 - 00028700 ____C (IBM Corp.) C:\WINDOWS\system32\dllcache\ibmexmp.sys
    2014-02-24 08:07 - 2008-04-14 00:16 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbth.sys
    2014-02-24 08:07 - 2008-04-14 00:15 - 00010624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gameenum.sys
    2014-02-24 08:07 - 2008-04-14 00:15 - 00059136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gckernel.sys
    2014-02-24 08:07 - 2008-04-14 00:15 - 00019200 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidir.sys
    2014-02-24 08:07 - 2008-04-14 00:10 - 00028288 ____C (Gemplus) C:\WINDOWS\system32\dllcache\grserial.sys
    2014-02-24 08:07 - 2008-04-14 00:06 - 00020352 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidbatt.sys
    2014-02-24 08:07 - 2001-08-17 22:36 - 00119296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpdigwia.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00083968 ____C () C:\WINDOWS\system32\dllcache\hpgt21.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt21tk.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00089088 ____C () C:\WINDOWS\system32\dllcache\hpgt33.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt33tk.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00101376 ____C () C:\WINDOWS\system32\dllcache\hpgt34.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00126976 ____C (Hewlett Packard) C:\WINDOWS\system32\dllcache\hpgt34tk.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00093696 ____C () C:\WINDOWS\system32\dllcache\hpgt42.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgt42tk.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00165888 ____C () C:\WINDOWS\system32\dllcache\hpgt53.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00068608 ____C (Avisioin) C:\WINDOWS\system32\dllcache\hpgt53tk.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpgtmcro.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00324608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpojwia.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpsjmcro.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hr1w.dll
    2014-02-24 08:07 - 2001-08-17 22:36 - 00009759 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_inst.dll
    2014-02-24 08:07 - 2001-08-17 14:56 - 00470144 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200d.dll
    2014-02-24 08:07 - 2001-08-17 14:56 - 01733120 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400d.dll
    2014-02-24 08:07 - 2001-08-17 14:07 - 00025952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpn.sys
    2014-02-24 08:07 - 2001-08-17 14:02 - 00008576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidgame.sys
    2014-02-24 08:07 - 2001-08-17 14:02 - 00002688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hidswvd.sys
    2014-02-24 08:07 - 2001-08-17 13:52 - 00005760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hpt4qic.sys
    2014-02-24 08:07 - 2001-08-17 13:51 - 00017408 ____C (Gemplus) C:\WINDOWS\system32\dllcache\gpr400.sys
    2014-02-24 08:07 - 2001-08-17 13:51 - 00082304 ____C (Gemplus) C:\WINDOWS\system32\dllcache\grclass.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00907456 ____C (Conexant) C:\WINDOWS\system32\dllcache\hcf_msft.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00150239 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_amos.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00067167 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_bsc2.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00289887 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_fall.sys
     
  15. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    2014-02-24 08:07 - 2001-08-17 13:28 - 00199711 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_faxx.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00115807 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_fsks.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00391199 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_k56k.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00542879 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_msft.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00057471 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_samp.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00044863 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_soar.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00073279 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_spkp.sys
    2014-02-24 08:07 - 2001-08-17 13:28 - 00050751 ____C (Conexant) C:\WINDOWS\system32\dllcache\hsf_tone.sys
    2014-02-24 08:07 - 2001-08-17 12:49 - 00320384 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g200m.sys
    2014-02-24 08:07 - 2001-08-17 12:49 - 00322432 ____C (Matrox Graphics Inc.) C:\WINDOWS\system32\dllcache\g400m.sys
    2014-02-24 08:07 - 2001-08-17 12:15 - 00454912 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fxusbase.sys
    2014-02-24 08:06 - 2008-04-13 22:06 - 00137088 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\essm2e.sys
    2014-02-24 08:06 - 2008-04-13 22:05 - 00034173 ____C (Marconi Communications, Inc.) C:\WINDOWS\system32\dllcache\forehe.sys
    2014-02-24 08:06 - 2001-08-17 22:36 - 00053248 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqndiag.exe
    2014-02-24 08:06 - 2001-08-17 22:36 - 00051200 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnlogr.exe
    2014-02-24 08:06 - 2001-08-17 22:36 - 00061952 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqnloop.exe
    2014-02-24 08:06 - 2001-08-17 22:36 - 00043008 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucm.dll
    2014-02-24 08:06 - 2001-08-17 22:36 - 00034816 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimg.dll
    2014-02-24 08:06 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuni.dll
    2014-02-24 08:06 - 2001-08-17 22:36 - 00045568 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunib.dll
    2014-02-24 08:06 - 2001-08-17 22:36 - 00071680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fnfilter.dll
    2014-02-24 08:06 - 2001-08-17 22:36 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fuusd.dll
    2014-02-24 08:06 - 2001-08-17 13:52 - 00007040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exabyte2.sys
    2014-02-24 08:06 - 2001-08-17 13:50 - 00144896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epcfw2k.sys
    2014-02-24 08:06 - 2001-08-17 13:50 - 00114944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\epstw2k.sys
    2014-02-24 08:06 - 2001-08-17 13:46 - 00006400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\enum1394.sys
    2014-02-24 08:06 - 2001-08-17 13:28 - 00595647 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56cvmp.sys
    2014-02-24 08:06 - 2001-08-17 13:28 - 00594238 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56hpi.sys
    2014-02-24 08:06 - 2001-08-17 13:28 - 00347550 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es56tpi.sys
    2014-02-24 08:06 - 2001-08-17 12:19 - 00283904 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\emu10k1m.sys
    2014-02-24 08:06 - 2001-08-17 12:19 - 00037120 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1370mp.sys
    2014-02-24 08:06 - 2001-08-17 12:19 - 00040704 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\es1371mp.sys
    2014-02-24 08:06 - 2001-08-17 12:19 - 00072192 ____C (ESS Technology Inc.) C:\WINDOWS\system32\dllcache\es1969.sys
    2014-02-24 08:06 - 2001-08-17 12:19 - 00174464 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\es198x.sys
    2014-02-24 08:06 - 2001-08-17 12:19 - 00063360 ____C (ESS Technology, Inc.) C:\WINDOWS\system32\dllcache\ess.sys
    2014-02-24 08:06 - 2001-08-17 12:17 - 00629952 ____C (Equinox Systems Inc.) C:\WINDOWS\system32\dllcache\eqn.sys
    2014-02-24 08:06 - 2001-08-17 12:15 - 00442240 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpnpbase.sys
    2014-02-24 08:06 - 2001-08-17 12:15 - 00455680 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fus2base.sys
    2014-02-24 08:06 - 2001-08-17 12:15 - 00455296 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fusbbase.sys
    2014-02-24 08:06 - 2001-08-17 12:14 - 00444416 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcibase.sys
    2014-02-24 08:06 - 2001-08-17 12:14 - 00441728 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\fpcmbase.sys
    2014-02-24 08:06 - 2001-08-17 12:13 - 00027165 ____C (VIA Technologies, Inc. ) C:\WINDOWS\system32\dllcache\fetnd5.sys
    2014-02-24 08:06 - 2001-08-17 12:12 - 00018503 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\epro4.sys
    2014-02-24 08:06 - 2001-08-17 12:12 - 00016998 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\ex10.sys
    2014-02-24 08:06 - 2001-08-17 12:12 - 00016074 ____C (NETGEAR Corp.) C:\WINDOWS\system32\dllcache\fa312nd5.sys
    2014-02-24 08:06 - 2001-08-17 12:12 - 00024618 ____C (NETGEAR) C:\WINDOWS\system32\dllcache\fa410nd5.sys
    2014-02-24 08:06 - 2001-08-17 12:11 - 00012362 ____C (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xi.sys
    2014-02-24 08:06 - 2001-08-17 12:11 - 00011850 ____C (FUJITSU LIMITED) C:\WINDOWS\system32\dllcache\f3ab18xj.sys
    2014-02-24 08:06 - 2001-08-17 12:10 - 00022090 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\fem556n5.sys
    2014-02-24 08:05 - 2008-04-14 05:42 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dshowext.ax
    2014-02-24 08:05 - 2008-04-14 00:10 - 00008320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dlttape.sys
    2014-02-24 08:05 - 2008-04-14 00:09 - 00206976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4.sys
    2014-02-24 08:05 - 2001-08-17 22:36 - 00419357 ____C (Digi International) C:\WINDOWS\system32\dllcache\dgconfig.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00065622 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00131156 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidbp.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00229462 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifwrk.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00159828 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digihlc.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00102484 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiinf.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00041046 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00110621 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00614429 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiview.exe
    2014-02-24 08:05 - 2001-08-17 22:36 - 00006729 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvci.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00031305 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvpp.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00038985 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\disrvsu.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00236060 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\ditrace.exe
    2014-02-24 08:05 - 2001-08-17 22:36 - 00006216 ____C () C:\WINDOWS\system32\dllcache\divaci.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00037962 ____C () C:\WINDOWS\system32\dllcache\divaprop.dll
    2014-02-24 08:05 - 2001-08-17 22:36 - 00029768 ____C () C:\WINDOWS\system32\dllcache\divasu.dll
    2014-02-24 08:05 - 2001-08-17 14:07 - 00020192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dpti2o.sys
    2014-02-24 08:05 - 2001-08-17 13:53 - 00007296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\elmsmc.sys
    2014-02-24 08:05 - 2001-08-17 13:47 - 00012928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4prt.sys
    2014-02-24 08:05 - 2001-08-17 13:47 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4scan.sys
    2014-02-24 08:05 - 2001-08-17 13:47 - 00023808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dot4usb.sys
    2014-02-24 08:05 - 2001-08-17 13:28 - 00634134 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656ct5.sys
    2014-02-24 08:05 - 2001-08-17 13:28 - 00241206 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656se5.sys
    2014-02-24 08:05 - 2001-08-17 12:20 - 00334208 ____C (Yamaha Corp.) C:\WINDOWS\system32\dllcache\ds1wdm.sys
    2014-02-24 08:05 - 2001-08-17 12:17 - 00090525 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digifep5.sys
    2014-02-24 08:05 - 2001-08-17 12:17 - 00042432 ____C (Digi International, Inc.) C:\WINDOWS\system32\dllcache\digirlpt.sys
    2014-02-24 08:05 - 2001-08-17 12:14 - 00021606 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiisdn.sys
    2014-02-24 08:05 - 2001-08-17 12:14 - 00952007 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\diwan.sys
    2014-02-24 08:05 - 2001-08-17 12:13 - 00037735 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digiasyn.sys
    2014-02-24 08:05 - 2001-08-17 12:13 - 00103044 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\digidxb.sys
    2014-02-24 08:05 - 2001-08-17 12:13 - 00091305 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\dimaint.sys
    2014-02-24 08:05 - 2001-08-17 12:12 - 00028062 ____C (National Semiconductor Coproration) C:\WINDOWS\system32\dllcache\dp83820.sys
    2014-02-24 08:05 - 2001-08-17 12:12 - 00050719 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e1000nt5.sys
    2014-02-24 08:05 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e100b325.sys
    2014-02-24 08:05 - 2001-08-17 12:12 - 00019594 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\e100isa4.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00026698 ____C (D-Link Corporation) C:\WINDOWS\system32\dllcache\dlh5xnd5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00029696 ____C (CNet Technology, Inc. ) C:\WINDOWS\system32\dllcache\dm9pci5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00069194 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656cd5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00077386 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el656nd5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00066591 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xbc5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00153631 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xnd5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00455199 ____C (3Com Corporation.) C:\WINDOWS\system32\dllcache\el985n51.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00070174 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el98xn5.sys
    2014-02-24 08:05 - 2001-08-17 12:11 - 00171520 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el99xn51.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00044103 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el515.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00055999 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el556nd5.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00024653 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el574nd4.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00069692 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el575nd5.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00026141 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el589nd5.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00025159 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\elnk3.sys
    2014-02-24 08:05 - 2001-08-17 12:10 - 00019996 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\em556n4.sys
    2014-02-24 08:04 - 2008-04-14 05:41 - 00249856 ____C (Comtrol® Corporation) C:\WINDOWS\system32\dllcache\ctmasetp.dll
    2014-02-24 08:04 - 2008-04-13 22:06 - 00048640 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwrwdm.sys
    2014-02-24 08:04 - 2001-08-17 22:36 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnusd.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00216064 ____C (COMPAQ Inc.) C:\WINDOWS\system32\dllcache\cpscan.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00175104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\csamsp.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00004096 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctwdm32.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00028672 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyycoins.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyports.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00027136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzcoins.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzports.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00025600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210_32.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00080896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc210usd.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc240usd.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00110592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dc260usd.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00256512 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devcon32.dll
    2014-02-24 08:04 - 2001-08-17 22:36 - 00024064 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\devldr32.exe
    2014-02-24 08:04 - 2001-08-17 14:56 - 00091264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.dll
    2014-02-24 08:04 - 2001-08-17 14:56 - 00111232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl5465.dll
    2014-02-24 08:04 - 2001-08-17 14:56 - 00170880 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546x.dll
    2014-02-24 08:04 - 2001-08-17 14:02 - 00272640 ____C (RAVISENT Technologies Inc.) C:\WINDOWS\system32\dllcache\cinemclc.sys
    2014-02-24 08:04 - 2001-08-17 13:57 - 00045696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cirrus.sys
    2014-02-24 08:04 - 2001-08-17 13:57 - 00248064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cl546xm.sys
    2014-02-24 08:04 - 2001-08-17 13:52 - 00014976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cpqarray.sys
    2014-02-24 08:04 - 2001-08-17 13:52 - 00179584 ____C (Mylex Corporation) C:\WINDOWS\system32\dllcache\dac2w2k.sys
    2014-02-24 08:04 - 2001-08-17 13:52 - 00014720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dac960nt.sys
    2014-02-24 08:04 - 2001-08-17 13:52 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ddsmc.sys
    2014-02-24 08:04 - 2001-08-17 13:51 - 00020736 ____C (OMNIKEY AG) C:\WINDOWS\system32\dllcache\cmbp0wdm.sys
    2014-02-24 08:04 - 2001-08-17 13:51 - 00006656 ____C (CMD Technology, Inc.) C:\WINDOWS\system32\dllcache\cmdide.sys
    2014-02-24 08:04 - 2001-08-17 13:50 - 00017152 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclad-z.sys
    2014-02-24 08:04 - 2001-08-17 13:50 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyclom-y.sys
    2014-02-24 08:04 - 2001-08-17 13:50 - 00050176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyyport.sys
    2014-02-24 08:04 - 2001-08-17 13:50 - 00049792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cyzport.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00042112 ____C (Conexant Systems Inc.) C:\WINDOWS\system32\dllcache\crtaud.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00006912 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctlfacem.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00003712 ____C (Creative Technology Ltd.) C:\WINDOWS\system32\dllcache\ctljystk.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00096256 ____C (Copyright (C) Creative Technology Ltd. 1994-2001) C:\WINDOWS\system32\dllcache\ctlsb16.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbase.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00003072 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbmidi.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00072832 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwbwdm.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00003584 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcosnt5.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00111872 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcspud.sys
    2014-02-24 08:04 - 2001-08-17 12:19 - 00093952 ____C (Crystal Semiconductor Corp.) C:\WINDOWS\system32\dllcache\cwcwdm.sys
    2014-02-24 08:04 - 2001-08-17 12:17 - 00029531 ____C (Digi International Inc.) C:\WINDOWS\system32\dllcache\dgapci.sys
    2014-02-24 08:04 - 2001-08-17 12:13 - 00980034 ____C (Xircom) C:\WINDOWS\system32\dllcache\cicap.sys
    2014-02-24 08:04 - 2001-08-17 12:13 - 00021533 ____C (Compaq Computer Corporation) C:\WINDOWS\system32\dllcache\cpqndis5.sys
    2014-02-24 08:04 - 2001-08-17 12:12 - 00117760 ____C (Intel Corporation) C:\WINDOWS\system32\dllcache\d100ib5.sys
    2014-02-24 08:04 - 2001-08-17 12:12 - 00063208 ____C (Intel Corporation.) C:\WINDOWS\system32\dllcache\dc21x4.sys
    2014-02-24 08:04 - 2001-08-17 12:11 - 00039936 ____C (Conexant Systems, Inc.) C:\WINDOWS\system32\dllcache\cnxt1803.sys
    2014-02-24 08:04 - 2001-08-17 12:11 - 00060970 ____C (Compaq Computer Corp.) C:\WINDOWS\system32\dllcache\cpqtrnd5.sys
    2014-02-24 08:04 - 2001-08-17 12:11 - 00020928 ____C (Digital Networks, LLC) C:\WINDOWS\system32\dllcache\defpa.sys
    2014-02-24 08:04 - 2001-08-17 12:11 - 00024648 ____C (D-Link) C:\WINDOWS\system32\dllcache\dfe650.sys
    2014-02-24 08:04 - 2001-08-17 12:11 - 00024649 ____C (D-Link) C:\WINDOWS\system32\dllcache\dfe650d.sys
    2014-02-24 08:03 - 2008-04-14 05:42 - 00009728 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativdaxx.ax
    2014-02-24 08:03 - 2008-04-14 05:42 - 00023040 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativmvxx.ax
    2014-02-24 08:03 - 2008-04-14 05:42 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdaplgin.ax
    2014-02-24 08:03 - 2008-04-14 05:41 - 00032768 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ativtmxx.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00516768 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ativvaxx.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00021183 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\atv01nt5.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00011359 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\atv02nt5.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00025471 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\atv04nt5.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00014143 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\atv06nt5.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00017279 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\atv10nt5.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00121856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.dll
    2014-02-24 08:03 - 2008-04-14 05:41 - 00015423 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\ch7xxnt5.dll
    2014-02-24 08:03 - 2008-04-14 00:21 - 00101120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthpan.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avc.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00013696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcstrm.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00011776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bdasup.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00017024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthenum.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00037888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthmodem.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00036480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthprint.sys
    2014-02-24 08:03 - 2008-04-14 00:16 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bthusb.sys
    2014-02-24 08:03 - 2008-04-14 00:11 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\changer.sys
    2014-02-24 08:03 - 2008-04-13 22:04 - 00028672 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinsnxx.sys
    2014-02-24 08:03 - 2008-04-13 22:04 - 00013824 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinttxx.sys
    2014-02-24 08:03 - 2008-04-13 22:04 - 00073216 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atintuxx.sys
    2014-02-24 08:03 - 2008-04-13 22:04 - 00031744 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinxbxx.sys
    2014-02-24 08:03 - 2008-04-13 22:04 - 00063488 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinxsxx.sys
    2014-02-24 08:03 - 2001-08-17 22:37 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.ax
    2014-02-24 08:03 - 2001-08-17 22:37 - 00244224 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.ax
    2014-02-24 08:03 - 2001-08-17 22:37 - 00116736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext30.ax
    2014-02-24 08:03 - 2001-08-17 22:36 - 00087552 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmcoxp.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00144384 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmenum.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00102400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\binlsvc.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00019456 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brbidiif.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brcoinst.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00012800 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brevif.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00015360 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfbidi.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00081408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\brmfcwia.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00029696 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmflpt.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00032256 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfrsmg.exe
    2014-02-24 08:03 - 2001-08-17 22:36 - 00041472 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brmfusb.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00005120 ____C (Brother Industries,Ltd.) C:\WINDOWS\system32\dllcache\brscnrsm.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00009728 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brserif.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00074240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camexo20.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00236032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camext20.dll
    2014-02-24 08:03 - 2001-08-17 22:36 - 00032256 ____C (Eicon Technology Corporation) C:\WINDOWS\system32\dllcache\diapi2NT.dll
    2014-02-24 08:03 - 2001-08-17 14:56 - 00104832 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiraged.dll
    2014-02-24 08:03 - 2001-08-17 14:56 - 00342336 ____C (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.dll
    2014-02-24 08:03 - 2001-08-17 14:05 - 00314752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdro21.sys
    2014-02-24 08:03 - 2001-08-17 14:04 - 00223232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv21.sys
    2014-02-24 08:03 - 2001-08-17 14:04 - 00171264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\camdrv30.sys
    2014-02-24 08:03 - 2001-08-17 14:01 - 00036096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avcaudio.sys
    2014-02-24 08:03 - 2001-08-17 13:52 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cd20xrnt.sys
    2014-02-24 08:03 - 2001-08-17 13:51 - 00013824 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bulltlp3.sys
    2014-02-24 08:03 - 2001-08-17 13:28 - 00871388 ____C (BCM) C:\WINDOWS\system32\dllcache\bcmdm.sys
    2014-02-24 08:03 - 2001-08-17 13:28 - 00714698 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cbmdmkxx.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00002944 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brfilt.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00012160 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltlo.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00003968 ____C (Brother Industries, Ltd.) C:\WINDOWS\system32\dllcache\brfiltup.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00003168 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparimg.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00039552 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brparwdm.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00060416 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brserwdm.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00011008 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbmdm.sys
    2014-02-24 08:03 - 2001-08-17 13:12 - 00010368 ____C (Brother Industries Ltd.) C:\WINDOWS\system32\dllcache\brusbscn.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00010240 ____C () C:\WINDOWS\system32\dllcache\atipcxxx.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00049920 ____C () C:\WINDOWS\system32\dllcache\atirtcap.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00026880 ____C () C:\WINDOWS\system32\dllcache\atirtsnd.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00017152 ____C () C:\WINDOWS\system32\dllcache\atitunep.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00017152 ____C () C:\WINDOWS\system32\dllcache\atitvsnd.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00009472 ____C () C:\WINDOWS\system32\dllcache\ativmdcd.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00019456 ____C () C:\WINDOWS\system32\dllcache\ativttxx.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00026624 ____C () C:\WINDOWS\system32\dllcache\ativxbar.sys
    2014-02-24 08:03 - 2001-08-17 12:49 - 00023552 ____C () C:\WINDOWS\system32\dllcache\atixbar.sys
    2014-02-24 08:03 - 2001-08-17 12:48 - 00070528 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atiragem.sys
    2014-02-24 08:03 - 2001-08-17 12:48 - 00036128 ____C (3Dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\banshee.sys
    2014-02-24 08:03 - 2001-08-17 12:19 - 00036992 ____C (Aztech Systems Ltd) C:\WINDOWS\system32\dllcache\aztw2320.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00037568 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\avmwan.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00089952 ____C (AVM GmbH) C:\WINDOWS\system32\dllcache\b1cbase.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00046108 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cben5.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00021530 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce2n5.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00027164 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\ce3n5.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem28n5.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00022044 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem33n5.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00049182 ____C (Xircom, Inc.) C:\WINDOWS\system32\dllcache\cem56n5.sys
    2014-02-24 08:03 - 2001-08-17 12:13 - 00164923 ____C (Eicon Technology) C:\WINDOWS\system32\dllcache\diapi2.sys
    2014-02-24 08:03 - 2001-08-17 12:12 - 00037916 ____C (Fast Ethernet Controller Provider) C:\WINDOWS\system32\dllcache\cb102.sys
    2014-02-24 08:03 - 2001-08-17 12:12 - 00039680 ____C (Silicom Ltd.) C:\WINDOWS\system32\dllcache\cb325.sys
    2014-02-24 08:03 - 2001-08-17 12:11 - 00096640 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\b57xp32.sys
    2014-02-24 08:03 - 2001-08-17 12:11 - 00066557 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42u.sys
    2014-02-24 08:03 - 2001-08-17 12:11 - 00054271 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm42xx5.sys
    2014-02-24 08:03 - 2001-08-17 12:11 - 00026568 ____C (Broadcom Corporation) C:\WINDOWS\system32\dllcache\bcm4e5.sys
    2014-02-24 08:03 - 2001-08-17 12:11 - 00031529 ____C (BreezeCOM) C:\WINDOWS\system32\dllcache\brzwlan.sys
    2014-02-24 08:02 - 2008-04-14 05:41 - 00004255 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv01nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00003967 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv02nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00003615 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv05nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00003647 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv07nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00003135 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv08nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00003711 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv09nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00003775 ____C (Intel(R) Corporation) C:\WINDOWS\system32\dllcache\adv11nt5.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00229376 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2cqag.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00377984 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvaa.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00201728 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2dvag.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 00870784 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3d1ag.dll
    2014-02-24 08:02 - 2008-04-14 05:41 - 01888992 ____C (ATI Technologies Inc. ) C:\WINDOWS\system32\dllcache\ati3duag.dll
    2014-02-24 08:02 - 2008-04-14 00:16 - 00053376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394bus.sys
    2014-02-24 08:02 - 2008-04-14 00:16 - 00048128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\61883.sys
    2014-02-24 08:02 - 2008-04-14 00:10 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\4mmdat.sys
    2014-02-24 08:02 - 2008-04-13 22:06 - 00231552 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ac97ali.sys
    2014-02-24 08:02 - 2008-04-13 22:06 - 00084480 ____C (VIA Technologies, Inc.) C:\WINDOWS\system32\dllcache\ac97via.sys
    2014-02-24 08:02 - 2008-04-13 22:06 - 00010880 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\admjoy.sys
    2014-02-24 08:02 - 2008-04-13 22:05 - 00036224 ____C (ADMtek Incorporated.) C:\WINDOWS\system32\dllcache\an983.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00056623 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1btxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00011615 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1mdxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00012047 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1pdxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00030671 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1raxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00063663 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1rvxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00026367 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1snxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00021343 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1ttxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00036463 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1tuxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00029455 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1xbxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00034735 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati1xsxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00327040 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtaa.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00701440 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\ati2mtag.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00057856 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinbtxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00013824 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinmdxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00014336 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinpdxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00052224 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinraxx.sys
    2014-02-24 08:02 - 2008-04-13 22:04 - 00104960 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atinrvxx.sys
    2014-02-24 08:02 - 2001-08-17 22:37 - 00024576 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agcgauge.ax
    2014-02-24 08:02 - 2001-08-17 22:36 - 00462848 ____C (Aureal Inc.) C:\WINDOWS\system32\dllcache\a3dapi.dll
    2014-02-24 08:02 - 2001-08-17 22:36 - 00061440 ____C (Color Flatbed Scanner) C:\WINDOWS\system32\dllcache\acerscad.dll
    2014-02-24 08:02 - 2001-08-17 22:36 - 00037376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\atievxx.exe
    2014-02-24 08:02 - 2001-08-17 14:56 - 00137216 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrae.dll
    2014-02-24 08:02 - 2001-08-17 14:56 - 00268160 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidvai.dll
    2014-02-24 08:02 - 2001-08-17 14:55 - 00689216 ____C (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvs.dll
    2014-02-24 08:02 - 2001-08-17 14:55 - 00038400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\8514a.dll
    2014-02-24 08:02 - 2001-08-17 14:55 - 00096128 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ati.dll
    2014-02-24 08:02 - 2001-08-17 14:55 - 00382592 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atidrab.dll
    2014-02-24 08:02 - 2001-08-17 14:07 - 00101888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adpu160m.sys
    2014-02-24 08:02 - 2001-08-17 14:07 - 00055168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aic78u2.sys
    2014-02-24 08:02 - 2001-08-17 14:07 - 00056960 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aic78xx.sys
    2014-02-24 08:02 - 2001-08-17 14:06 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\1394vdbg.sys
    2014-02-24 08:02 - 2001-08-17 13:57 - 00077568 ____C (ATI Technologies, Inc.) C:\WINDOWS\system32\dllcache\ati.sys
    2014-02-24 08:02 - 2001-08-17 13:53 - 00007424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adicvls.sys
    2014-02-24 08:02 - 2001-08-17 13:52 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\abp480n5.sys
    2014-02-24 08:02 - 2001-08-17 13:52 - 00012800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aha154x.sys
    2014-02-24 08:02 - 2001-08-17 13:52 - 00012032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\amsint.sys
    2014-02-24 08:02 - 2001-08-17 13:52 - 00026496 ____C (Advanced System Products, Inc.) C:\WINDOWS\system32\dllcache\asc.sys
    2014-02-24 08:02 - 2001-08-17 13:52 - 00022400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asc3350p.sys
    2014-02-24 08:02 - 2001-08-17 13:51 - 00005248 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\aliide.sys
    2014-02-24 08:02 - 2001-08-17 13:51 - 00014848 ____C (Advanced System Products, Inc.) C:\WINDOWS\system32\dllcache\asc3550.sys
    2014-02-24 08:02 - 2001-08-17 13:49 - 00026624 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\alifir.sys
    2014-02-24 08:02 - 2001-08-17 13:47 - 00006272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\apmbatt.sys
    2014-02-24 08:02 - 2001-08-17 13:28 - 00762780 ____C (3Com, Inc.) C:\WINDOWS\system32\dllcache\3cwmcru.sys
    2014-02-24 08:02 - 2001-08-17 12:49 - 00046464 ____C () C:\WINDOWS\system32\dllcache\atibt829.sys
    2014-02-24 08:02 - 2001-08-17 12:49 - 00075136 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpae.sys
    2014-02-24 08:02 - 2001-08-17 12:48 - 00148352 ____C (3dfx Interactive, Inc.) C:\WINDOWS\system32\dllcache\3dfxvsm.sys
    2014-02-24 08:02 - 2001-08-17 12:48 - 00289664 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimpab.sys
    2014-02-24 08:02 - 2001-08-17 12:48 - 00281600 ____C (ATI Technologies Inc.) C:\WINDOWS\system32\dllcache\atimtai.sys
    2014-02-24 08:02 - 2001-08-17 12:20 - 00297728 ____C (Silicon Integrated Systems Corp.) C:\WINDOWS\system32\dllcache\ac97sis.sys
    2014-02-24 08:02 - 2001-08-17 12:19 - 00584448 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8810.sys
    2014-02-24 08:02 - 2001-08-17 12:19 - 00553984 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8820.sys
    2014-02-24 08:02 - 2001-08-17 12:19 - 00747392 ____C (Aureal, Inc.) C:\WINDOWS\system32\dllcache\adm8830.sys
    2014-02-24 08:02 - 2001-08-17 12:12 - 00097354 ____C (Bay Networks, Inc.) C:\WINDOWS\system32\dllcache\aspndis3.sys
    2014-02-24 08:02 - 2001-08-17 12:11 - 00020160 ____C (ADMtek Incorporated) C:\WINDOWS\system32\dllcache\adm8511.sys
    2014-02-24 08:02 - 2001-08-17 12:11 - 00046112 ____C (Adaptec, Inc ) C:\WINDOWS\system32\dllcache\adptsf50.sys
    2014-02-24 08:02 - 2001-08-17 12:11 - 00027678 ____C (Acer Laboratories Inc.) C:\WINDOWS\system32\dllcache\ali5261.sys
    2014-02-24 08:02 - 2001-08-17 12:11 - 00016969 ____C (AmbiCom, Inc.) C:\WINDOWS\system32\dllcache\amb8002.sys
    2014-02-24 08:01 - 2008-04-14 00:57 - 02188928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ntoskrnl.exe
    2014-02-24 08:01 - 2001-08-17 14:56 - 00066048 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\s3legacy.dll
    2014-02-24 07:51 - 2008-04-14 05:00 - 00001272 _____ () C:\WINDOWS\Blue Lace 16.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00017062 _____ () C:\WINDOWS\Coffee Bean.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00016730 _____ () C:\WINDOWS\FeatherTexture.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00017336 _____ () C:\WINDOWS\Gone Fishing.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00026582 _____ () C:\WINDOWS\Greenstone.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00065954 _____ () C:\WINDOWS\Prairie Wind.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00017362 _____ () C:\WINDOWS\Rhododendron.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00026680 _____ () C:\WINDOWS\River Sumida.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00065832 _____ () C:\WINDOWS\Santa Fe Stucco.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00065978 _____ () C:\WINDOWS\Soap Bubbles.bmp
    2014-02-24 07:51 - 2008-04-14 05:00 - 00006948 _____ () C:\WINDOWS\system32\kanji_1.uce
    2014-02-24 07:51 - 2008-04-14 05:00 - 00008484 _____ () C:\WINDOWS\system32\kanji_2.uce
    2014-02-24 07:51 - 2008-04-14 05:00 - 00012876 _____ () C:\WINDOWS\system32\korean.uce
    2014-02-24 07:51 - 2008-04-14 05:00 - 00016740 _____ () C:\WINDOWS\system32\shiftjis.uce
    2014-02-24 07:51 - 2008-04-14 05:00 - 00093702 _____ () C:\WINDOWS\system32\subrange.uce
    2014-02-24 07:51 - 2008-04-14 05:00 - 00009522 _____ () C:\WINDOWS\Zapotec.bmp
    2014-02-24 07:51 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Help
    2014-02-24 07:50 - 2008-04-14 05:00 - 00022984 _____ () C:\WINDOWS\system32\bopomofo.uce
    2014-02-24 07:50 - 2008-04-14 05:00 - 00114688 _____ (Microsoft Corporation) C:\WINDOWS\system32\calc.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00080384 _____ (Microsoft Corporation) C:\WINDOWS\system32\charmap.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00114688 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\calc.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00080384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\charmap.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\freecell.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00605696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\getuname.dll
    2014-02-24 07:50 - 2008-04-14 05:00 - 00126976 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mshearts.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00056832 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sol.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winmine.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00055296 _____ (Microsoft Corporation) C:\WINDOWS\system32\freecell.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00024006 _____ () C:\WINDOWS\system32\gb2312.uce
    2014-02-24 07:50 - 2008-04-14 05:00 - 00605696 _____ (Microsoft Corporation) C:\WINDOWS\system32\getuname.dll
    2014-02-24 07:50 - 2008-04-14 05:00 - 00060458 _____ () C:\WINDOWS\system32\ideograf.uce
    2014-02-24 07:50 - 2008-04-14 05:00 - 00126976 _____ (Microsoft Corporation) C:\WINDOWS\system32\mshearts.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\sol.exe
    2014-02-24 07:50 - 2008-04-14 05:00 - 00119808 _____ (Microsoft Corporation) C:\WINDOWS\system32\winmine.exe
    2014-02-24 07:18 - 2014-02-24 07:18 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\BurnInTest
    2014-02-24 07:18 - 2014-02-24 07:18 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\BurnInTest
    2014-02-24 07:18 - 2014-02-24 07:18 - 00000000 ____D () C:\Program Files\BurnInTest
    2014-02-24 07:18 - 2014-02-24 07:18 - 00000000 ____D () C:\Program Files\BurnInTest
    2014-02-24 07:18 - 2012-09-21 19:21 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\PassMark
    2014-02-24 06:53 - 2008-04-14 05:00 - 00281088 ____C (Cinematronics) C:\WINDOWS\system32\dllcache\pinball.exe
    2014-02-24 04:36 - 2014-02-24 04:36 - 00121069 _____ () C:\Documents and Settings\Admin\Desktop\memtest86+-5.01.usb.installer.zip
    2014-02-24 04:36 - 2014-02-24 04:36 - 00121069 _____ () C:\Documents and Settings\Admin\Desktop\memtest86+-5.01.usb.installer.zip
    2014-02-24 04:29 - 2008-04-14 05:00 - 00184320 _____ (Microsoft Corporation) C:\WINDOWS\system32\accwiz.exe
    2014-02-24 04:29 - 2008-04-14 05:00 - 00184320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\accwiz.exe
    2014-02-24 04:28 - 2008-04-14 05:00 - 00068608 _____ (Microsoft Corporation) C:\WINDOWS\system32\access.cpl
    2014-02-24 04:28 - 2008-04-14 05:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\access.cpl
    2014-02-23 11:38 - 2012-08-01 19:45 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
    2014-02-23 11:36 - 2012-08-01 19:45 - 00001769 _____ () C:\WINDOWS\Language_trs.ini
    2014-02-23 11:34 - 2012-08-05 16:24 - 2147483648 _____ () C:\WINDOWS\MEMORY.DMP
    2014-02-23 11:25 - 2008-04-14 05:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndrec32.exe
    2014-02-23 11:25 - 2008-04-14 05:00 - 00131584 _____ (Microsoft Corporation) C:\WINDOWS\system32\sndrec32.exe
    2014-02-23 11:19 - 2001-12-31 15:29 - 00032256 _____ () C:\WINDOWS\Ascd_tmp.ini
    2014-02-23 10:54 - 2001-08-23 08:00 - 00001053 _____ () C:\WINDOWS\win.ini
    2014-02-23 10:23 - 2014-02-23 10:23 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Skype
    2014-02-23 10:23 - 2014-02-23 10:23 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Skype
    2014-02-23 09:52 - 2008-04-14 05:00 - 00123392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mplay32.exe
    2014-02-23 09:52 - 2008-04-14 05:00 - 00123392 _____ (Microsoft Corporation) C:\WINDOWS\system32\mplay32.exe
    2014-02-23 09:24 - 2008-04-14 05:00 - 00347136 _____ (Hilgraeve, Inc.) C:\WINDOWS\system32\hypertrm.dll
    2014-02-23 09:20 - 2008-04-14 05:00 - 00539136 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\dialer.exe
    2014-02-23 09:20 - 2005-08-29 01:44 - 00000000 ____D () C:\Program Files\Windows NT
    2014-02-23 08:37 - 2008-04-14 05:00 - 00102912 _____ (Microsoft Corporation) C:\WINDOWS\system32\clipbrd.exe
    2014-02-23 08:37 - 2008-04-14 05:00 - 00102912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\clipbrd.exe
    2014-02-23 08:37 - 2008-04-14 05:00 - 00343040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mspaint.exe
    2014-02-23 08:37 - 2008-04-14 05:00 - 00343040 _____ (Microsoft Corporation) C:\WINDOWS\system32\mspaint.exe
    2014-02-23 08:33 - 2008-04-14 05:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\simptcp.dll
    2014-02-23 08:33 - 2008-04-14 05:00 - 00018944 _____ (Microsoft Corporation) C:\WINDOWS\system32\simptcp.dll
    2014-02-23 08:32 - 2008-04-14 05:00 - 00538624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\spider.exe
    2014-02-23 08:32 - 2008-04-14 05:00 - 00538624 _____ (Microsoft Corporation) C:\WINDOWS\system32\spider.exe
    2014-02-23 08:31 - 2012-03-09 01:26 - 00000000 ____D () C:\Documents and Settings\Admin\.VirtualBox
    2014-02-23 08:05 - 2008-04-14 05:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iprip.dll
    2014-02-23 08:05 - 2008-04-14 05:00 - 00035328 _____ (Microsoft Corporation) C:\WINDOWS\system32\iprip.dll
    2014-02-23 07:59 - 2012-08-01 19:32 - 00007214 _____ () C:\WINDOWS\COM+.log
    2014-02-23 07:57 - 2013-10-12 13:45 - 00066469 _____ () C:\WINDOWS\KB955704.log
    2014-02-23 07:57 - 2012-08-12 20:29 - 00114531 _____ () C:\WINDOWS\updspapi.log
    2014-02-23 07:56 - 2014-02-23 07:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955704$
    2014-02-23 07:56 - 2014-02-23 07:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955704$
    2014-02-23 07:56 - 2008-09-29 23:19 - 00057344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uexfat.dll
    2014-02-23 07:56 - 2008-09-29 03:21 - 00133632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exfat.sys
    2014-02-23 07:33 - 2005-08-29 03:14 - 00738966 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
    2014-02-23 07:31 - 2014-02-23 07:31 - 00004915 _____ () C:\Documents and Settings\Admin\Desktop\DriveInfo.txt
    2014-02-23 07:31 - 2014-02-23 07:31 - 00004915 _____ () C:\Documents and Settings\Admin\Desktop\DriveInfo.txt
    2014-02-23 07:25 - 2005-08-29 01:45 - 00000000 ____D () C:\WINDOWS\Registration
    2014-02-23 07:23 - 2014-02-23 07:23 - 00000775 _____ () C:\Documents and Settings\Admin\Start Menu\Programs\Internet Explorer.lnk
    2014-02-23 07:23 - 2014-02-23 07:23 - 00000775 _____ () C:\Documents and Settings\Admin\Start Menu\Programs\Internet Explorer.lnk
    2014-02-23 07:20 - 2001-08-23 08:00 - 00002228 _____ () C:\WINDOWS\system32\wpa.dbl
    2014-02-23 07:18 - 2005-08-29 03:13 - 00742745 _____ () C:\WINDOWS\setupact.log
    2014-02-23 07:17 - 2008-04-14 05:00 - 00138752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sndvol32.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00033280 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmp.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00259072 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpcl.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00358400 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpincl.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpmib.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00188416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpsmir.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpstup.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmpthrd.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\snmptrap.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00101376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\srusbusd.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ssinc51.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sspifilt.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00016896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\status.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\svcext51.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00013192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdasync.sys
    2014-02-23 07:17 - 2008-04-14 05:00 - 00021896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdipx.sys
    2014-02-23 07:17 - 2008-04-14 05:00 - 00019464 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tdspx.sys
    2014-02-23 07:17 - 2008-04-14 05:00 - 00185344 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\thawbrkr.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00571392 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlgnt.ime
    2014-02-23 07:17 - 2008-04-14 05:00 - 00044032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintlphr.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00455168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tintsetp.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tmigrate.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tools.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tsprof.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00103424 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uihelper.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00032339 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\uniansi.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00048256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w32.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00004608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ctrs51.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00073728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3ext.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svapi.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00364032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\w3svc.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wam51.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamps51.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamreg51.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00041600 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00031232 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\weitekp9.sys
    2014-02-23 07:17 - 2008-04-14 05:00 - 00035328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\winchat.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\write.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00036937 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zclientm.exe
    2014-02-23 07:17 - 2008-04-14 05:00 - 00041029 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zcorem.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00004677 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zeeverm.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00029760 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\znetm.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00113222 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zoneclim.dll
    2014-02-23 07:17 - 2008-04-14 05:00 - 00013894 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\zonelibm.dll
    2014-02-23 07:17 - 2001-08-17 22:36 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_snprfdll.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 10096640 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hwxcht.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00086016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn2.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00032768 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwdl.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisadmin.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00145408 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iische51.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00060928 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisclex4.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iiscrmap.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisfecnv.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iislog51.dll
     
  16. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    2014-02-23 07:16 - 2008-04-14 05:00 - 00003584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismui.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iissync.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00059392 ____C () C:\WINDOWS\system32\dllcache\imscinst.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00015360 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetin51.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetwiz.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00257024 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infocomm.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoctrs.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isapips.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iscomlog.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isignup.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iwrps.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00018432 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\jupiw.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda1.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda2.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbda3.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarme.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdarmw.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv1.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbddiv2.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdfa.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005120 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdgeo.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdheb.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdindev.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinguj.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinhin.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinkan.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinmar.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdinpun.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintam.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdintel.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr1.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdsyr2.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth0.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth1.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth2.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdth3.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdurdu.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdusa.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\kbdvntc.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lmmib2.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00022016 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logscrpt.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lonsint.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00022528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lpdsvc.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\lprmon.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00037888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\md5filt.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mdsync.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00085504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\metada51.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00092032 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00092416 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mga.sys
    2014-02-23 07:16 - 2008-04-14 05:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\migregdb.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00119808 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\mtstocom.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00053248 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nextlink.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00044544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\nsepm.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pagecnt.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00020992 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\permchk.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00482304 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlgnt.ime
    2014-02-23 07:16 - 2008-04-14 05:00 - 00070144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pintlphr.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00067584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmigrate.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxgl.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxmcro.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00131584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pmxviceo.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\pwsdata.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\query.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\quser.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00020736 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ramdisk.sys
    2014-02-23 07:16 - 2008-04-14 05:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\register.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00004096 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rpcref.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00048706 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvse.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00753236 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvseres.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00042574 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rvsezm.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00027648 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rw001ext.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00029184 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rw330ext.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia001.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00079872 ____C (Ricoh Co., Ltd.) C:\WINDOWS\system32\dllcache\rwia330.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\rwnh.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00221696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\seo.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00066113 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvl.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 02178131 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlres.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shvlzm.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00025088 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm59w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm81w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00030208 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm87w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm89w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8aw.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8cw.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm8dw.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm90w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm92w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm93w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sm9aw.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\sma3w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smb6w.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00236544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smi2smir.exe
    2014-02-23 07:16 - 2008-04-14 05:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsm.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smierrsy.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smimsgif.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00010752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpapi.dll
    2014-02-23 07:16 - 2008-04-14 05:00 - 00456192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsvc.dll
    2014-02-23 07:16 - 2001-08-17 22:36 - 00065536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_mailmsg.dll
    2014-02-23 07:16 - 2001-08-17 22:36 - 00038912 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_ntfsdrv.dll
    2014-02-23 07:16 - 2001-08-17 22:36 - 00023040 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_regtrace.exe
    2014-02-23 07:16 - 2001-08-17 22:36 - 00057856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_scripto.dll
    2014-02-23 07:16 - 2001-08-17 22:36 - 00026112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_seos.dll
    2014-02-23 07:16 - 2001-08-17 22:36 - 00012288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_smtpctrs.dll
    2014-02-23 07:15 - 2014-02-23 07:15 - 00000000 ____D () C:\Program Files\msn gaming zone
    2014-02-23 07:15 - 2014-02-23 07:15 - 00000000 ____D () C:\Program Files\msn gaming zone
    2014-02-23 07:15 - 2008-04-14 05:00 - 00029696 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admexs.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admwprox.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admxprox.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00049664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adrot.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00290816 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\adsiis51.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt0401.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00019456 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\agt040d.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00108544 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\appconf.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00331264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aqueue.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00369664 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asp51.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00010240 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\aspperf.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00029184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\asptxn.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00009216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\authfilt.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avmeter.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00227840 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avtapi.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00073216 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\avwav.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00082501 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckg.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 01817687 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgres.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00042577 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\bckgzm.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00045568 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\browscap.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10004.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10005.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_10021.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1047.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1140.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1141.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1142.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1143.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1144.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1145.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1146.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1147.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1148.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_1149.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00186402 ____C () C:\WINDOWS\system32\dllcache\c_20001.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00173602 ____C () C:\WINDOWS\system32\dllcache\c_20002.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00185378 ____C () C:\WINDOWS\system32\dllcache\c_20003.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00180258 ____C () C:\WINDOWS\system32\dllcache\c_20004.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00187938 ____C () C:\WINDOWS\system32\dllcache\c_20005.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20105.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20106.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20107.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20108.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20269.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20273.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20277.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20278.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20280.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20284.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20285.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20297.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20420.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20423.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20424.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20833.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20838.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20871.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20880.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_20924.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_21025.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_28596.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_708.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_720.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_858.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_862.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066594 ____C () C:\WINDOWS\system32\dllcache\c_864.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00066082 ____C () C:\WINDOWS\system32\dllcache\c_870.nls
    2014-02-23 07:15 - 2008-04-14 05:00 - 00010752 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\c_iscii.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00054528 ____C (Philips Semiconductors GmbH) C:\WINDOWS\system32\dllcache\cap7146.sys
    2014-02-23 07:15 - 2008-04-14 05:00 - 00094720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certmap.ocx
    2014-02-23 07:15 - 2008-04-14 05:00 - 00275968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\certwiz.ocx
    2014-02-23 07:15 - 2008-04-14 05:00 - 00009728 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\change.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chglogon.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00015872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgport.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chgusr.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00040515 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkr.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00780885 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrres.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00042575 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chkrzm.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00097792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtmbx.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\chtskdic.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00173568 ____C () C:\WINDOWS\system32\dllcache\chtskf.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00198656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintime.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00021504 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintlgnt.ime
    2014-02-23 07:15 - 2008-04-14 05:00 - 00480256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cintsetp.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00217160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnclim.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 01039955 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cmnresm.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00076288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cnfgprts.ocx
    2014-02-23 07:15 - 2008-04-14 05:00 - 00046592 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\coadmin.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00024064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\compfilt.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00033792 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\controt.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00056320 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\convlog.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00020480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\counters.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00018944 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cprofile.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00042496 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\davcdata.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00031744 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esucmd.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00057856 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esuimgd.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00045056 ____C (SEIKO EPSON CORP.) C:\WINDOWS\system32\dllcache\esunid.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00025856 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\et4000.sys
    2014-02-23 07:15 - 2008-04-14 05:00 - 00101888 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntagnt.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00024064 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntcmd.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00092160 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\evntwin.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\exstrace.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00014848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\flattemp.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftlx041e.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpctrs2.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpmib.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00006144 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsapi2.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00125952 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\ftpsv251.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00451584 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsapi.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00111104 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscfgwz.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00142848 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclnt.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00132608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsclntr.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00072192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscom.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00285184 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscomex.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00229376 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxscover.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00026624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsdrv.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00055296 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsevent.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsext32.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00023552 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsmon.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00008704 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsperf.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00006656 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsres.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00031744 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsroute.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00011264 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssend.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00562176 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsst.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00267776 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxssvc.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00246272 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxst30.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00397312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxstiff.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00154112 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsui.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00192512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxswzrd.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00400384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fxsxp32.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00032256 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\gzip.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00039936 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hostmib.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00057409 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtz.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 01175635 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzres.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00042573 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\hrtzzm.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00013312 ____C (Hilgraeve, Inc.) C:\WINDOWS\system32\dllcache\htrn_jis.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00268288 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpext.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpmb51.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00061440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\httpod51.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisext51.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00064512 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iismap.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00014336 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisreset.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstap.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00030720 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrstas.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00133632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisrtl.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00169984 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\iisui.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00829440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00007680 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetmgr.exe
    2014-02-23 07:15 - 2008-04-14 05:00 - 00019968 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\inetsloc.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\infoadmn.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00068608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\isatq.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00076800 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\logui.ocx
    2014-02-23 07:15 - 2008-04-14 05:00 - 00189440 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpadm.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 02134528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\smtpsnap.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00008192 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\staxmem.dll
    2014-02-23 07:15 - 2008-04-14 05:00 - 00007168 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wamregps.dll
    2014-02-23 07:15 - 2004-05-13 00:39 - 00184435 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4amsft.dll
    2014-02-23 07:15 - 2004-05-13 00:39 - 00876653 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awel.dll
    2014-02-23 07:15 - 2004-05-13 00:39 - 00598071 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmc.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\admin.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00020540 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00016439 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\author.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00188480 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\cfgwiz.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00082035 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4anscp.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00147513 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4apws.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00049210 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4areg.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00102509 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4atxt.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00041020 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avnb.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00032826 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4avss.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00049212 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp4awebs.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00014608 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98sadm.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00109328 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fp98swin.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00024632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmcgi.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpadmdll.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00188494 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpcount.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00094208 ____C () C:\WINDOWS\system32\dllcache\fpencode.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00020541 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpexedll.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00208896 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpmmcsat.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00020538 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\fpremadm.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00020536 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.dll
    2014-02-23 07:15 - 2003-03-24 16:52 - 00016437 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\shtml.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00032827 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptest.exe
    2014-02-23 07:15 - 2003-03-24 16:52 - 00016384 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\tcptsat.dll
    2014-02-23 07:15 - 2001-08-17 22:36 - 00005632 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_adsiisex.dll
    2014-02-23 07:15 - 2001-08-17 22:36 - 00045056 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_aqadmin.dll
    2014-02-23 07:15 - 2001-08-17 22:36 - 00043520 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\EXCH_fcachdll.dll
    2014-02-23 07:14 - 2007-11-07 15:04 - 00001615 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
    2014-02-23 07:14 - 2007-11-07 15:04 - 00524288 _____ () C:\WINDOWS\system32\config\userdifr
    2014-02-23 07:14 - 2007-11-07 15:04 - 00001024 _____ () C:\WINDOWS\system32\config\userdifr.LOG
    2014-02-23 07:14 - 2005-08-29 03:12 - 00001024 _____ () C:\WINDOWS\system32\config\userdiff.LOG
    2014-02-23 07:14 - 2005-08-29 01:50 - 00000398 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk
    2014-02-23 07:14 - 2005-08-29 01:50 - 00001515 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
    2014-02-23 07:14 - 2005-08-29 01:50 - 00001607 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk
    2014-02-23 07:14 - 2005-08-29 01:49 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
    2014-02-23 07:14 - 2005-08-29 01:45 - 00321396 _____ () C:\WINDOWS\wmsetup.log
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
    2014-02-23 07:13 - 2005-12-22 01:49 - 00014710 _____ () C:\WINDOWS\setuperr.log
    2014-02-23 07:13 - 2005-08-29 03:14 - 00004161 _____ () C:\WINDOWS\ODBCINST.INI
    2014-02-23 07:13 - 2005-08-29 03:08 - 00000000 ___RD () C:\WINDOWS\Web
    2014-02-23 07:13 - 2005-08-29 01:48 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
    2014-02-23 07:13 - 2005-08-29 01:48 - 00000488 ___RH () C:\WINDOWS\system32\WindowsLogon.manifest
    2014-02-23 07:12 - 2008-04-14 05:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\icwconn1.exe
    2014-02-23 07:12 - 2005-08-29 01:46 - 00007268 _____ () C:\WINDOWS\sessmgr.setup.log
    2014-02-23 07:11 - 2005-08-29 01:44 - 00000000 ____D () C:\WINDOWS\system32\Com
    2014-02-23 07:11 - 2005-08-29 01:30 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
    2014-02-23 07:10 - 2005-08-29 01:45 - 00000838 _____ () C:\WINDOWS\DtcInstall.log
    2014-02-23 07:10 - 2005-08-29 01:45 - 00024252 _____ () C:\WINDOWS\system32\emptyregdb.dat
    2014-02-23 07:09 - 2005-08-29 01:30 - 00001584 _____ () C:\WINDOWS\cmsetacl.log
    2014-02-23 07:05 - 2005-08-29 03:12 - 00000330 ___SH () C:\boot.ini
    2014-02-23 07:01 - 2012-08-01 19:29 - 01101436 _____ () C:\WINDOWS\system32\nvdrsdb1.bin
    2014-02-23 07:01 - 2012-08-01 19:29 - 00000001 _____ () C:\WINDOWS\system32\nvdrssel.bin
    2014-02-23 06:59 - 2012-08-01 19:29 - 01101436 _____ () C:\WINDOWS\system32\nvdrsdb0.bin
    2014-02-23 06:52 - 2008-04-14 05:00 - 00016535 ____R () C:\WINDOWS\SET129.tmp
    2014-02-23 06:52 - 2008-04-14 05:00 - 00034063 ____C () C:\WINDOWS\system32\dllcache\FP4.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00013472 ____C () C:\WINDOWS\system32\dllcache\HPCRDP.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00008574 ____C () C:\WINDOWS\system32\dllcache\IASNT4.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00016535 ____C () C:\WINDOWS\system32\dllcache\IMS.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00013312 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\irclass.dll
    2014-02-23 06:52 - 2008-04-14 05:00 - 00399645 ____C () C:\WINDOWS\system32\dllcache\MAPIMIG.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00034747 ____C () C:\WINDOWS\system32\dllcache\mediactr.cat
    2014-02-23 06:52 - 2008-04-14 05:00 - 00012363 ____C () C:\WINDOWS\system32\dllcache\MSMSGS.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00026991 ____C () C:\WINDOWS\system32\dllcache\msn7.cat
    2014-02-23 06:52 - 2008-04-14 05:00 - 00014433 ____C () C:\WINDOWS\system32\dllcache\msn9.cat
    2014-02-23 06:52 - 2008-04-14 05:00 - 00010027 ____C () C:\WINDOWS\system32\dllcache\MSTSWEB.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00037484 ____C () C:\WINDOWS\system32\dllcache\MW770.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00144484 ____C () C:\WINDOWS\system32\dllcache\netfx.cat
    2014-02-23 06:52 - 2008-04-14 05:00 - 02144487 ____C () C:\WINDOWS\system32\dllcache\NT5.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00797189 ____C () C:\WINDOWS\system32\dllcache\NT5IIS.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00522220 ____C () C:\WINDOWS\system32\dllcache\NT5INF.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 01088840 ____C () C:\WINDOWS\system32\dllcache\NTPRINT.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00007382 ____C () C:\WINDOWS\system32\dllcache\OEMBIOS.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 01296669 ____C () C:\WINDOWS\system32\dllcache\SP3.CAT
    2014-02-23 06:52 - 2008-04-14 05:00 - 00024661 ____C (Perle Systems Ltd.) C:\WINDOWS\system32\dllcache\spxcoins.dll
    2014-02-23 06:52 - 2008-04-14 05:00 - 00112918 ____C () C:\WINDOWS\system32\dllcache\tabletpc.cat
    2014-02-23 06:52 - 2008-04-14 05:00 - 00013312 _____ (Microsoft Corporation) C:\WINDOWS\system32\irclass.dll
    2014-02-23 06:52 - 2008-04-14 05:00 - 00024661 _____ (Perle Systems Ltd.) C:\WINDOWS\system32\spxcoins.dll
    2014-02-23 06:52 - 2005-08-29 03:14 - 00013544 _____ () C:\WINDOWS\regopt.log
    2014-02-23 06:52 - 2001-08-23 08:00 - 00000273 _____ () C:\WINDOWS\system.ini
    2014-02-23 06:51 - 2014-02-26 02:56 - 00560417 _____ () C:\WINDOWS\setupapi.log
    2014-02-23 06:51 - 2008-04-14 05:00 - 01296669 ____R () C:\WINDOWS\SET119.tmp
    2014-02-23 06:51 - 2008-04-14 05:00 - 01088840 ____R () C:\WINDOWS\SET11D.tmp
    2014-02-23 06:41 - 2005-08-29 03:13 - 00061440 _____ () C:\WINDOWS\system32\config\security.sav
    2014-02-23 06:11 - 2012-09-16 11:54 - 00000000 ____D () C:\Program Files\ASUS
    2014-02-23 06:10 - 2008-12-30 01:45 - 00026947 _____ () C:\WINDOWS\DirectX.log
    2014-02-23 06:10 - 2005-08-29 02:06 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
    2014-02-23 06:01 - 2005-08-29 03:13 - 00480337 _____ () C:\WINDOWS\setupapi.old
    2014-02-23 05:57 - 2013-08-12 09:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avira
    2014-02-23 05:57 - 2008-10-25 02:41 - 00000000 ____D () C:\Program Files\COMODO
    2014-02-23 05:53 - 2014-02-23 05:53 - 00000868 _____ () C:\WINDOWS\KB909095.log
    2014-02-23 05:53 - 2014-02-23 05:53 - 00000868 _____ () C:\WINDOWS\KB909095.log
    2014-02-23 05:53 - 2005-12-22 01:49 - 00010945 _____ () C:\WINDOWS\KB893803v2.log
    2014-02-23 05:50 - 2005-11-13 17:25 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Spybot
    2014-02-23 05:50 - 2005-11-13 17:25 - 00000000 ____D () C:\Program Files\Spybot
    2014-02-23 05:47 - 2007-12-26 07:51 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
    2014-02-23 05:44 - 2007-11-17 20:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Logitech
    2014-02-23 05:44 - 2006-11-11 04:51 - 00000000 ____D () C:\Program Files\Logitech
    2014-02-23 05:40 - 2013-03-23 15:31 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Unity
    2014-02-23 05:36 - 2014-02-23 05:36 - 00055897 _____ () C:\Documents and Settings\Admin\Desktop\memtest86+-5.01.zip
    2014-02-23 05:36 - 2014-02-23 05:36 - 00055897 _____ () C:\Documents and Settings\Admin\Desktop\memtest86+-5.01.zip
    2014-02-23 04:11 - 2008-04-14 05:00 - 01088840 ____R () C:\WINDOWS\SET11F.tmp
    2014-02-23 04:11 - 2008-04-14 05:00 - 00016535 ____R () C:\WINDOWS\SET12B.tmp
    2014-02-23 04:10 - 2008-04-14 05:00 - 01296669 ____R () C:\WINDOWS\SET11C.tmp
    2014-02-22 23:49 - 2005-08-29 03:12 - 00524288 _____ () C:\WINDOWS\system32\config\default.sav
    2014-02-22 23:49 - 2005-08-29 03:12 - 38535168 _____ () C:\WINDOWS\system32\config\software.sav
    2014-02-22 23:49 - 2005-08-29 03:12 - 12582912 _____ () C:\WINDOWS\system32\config\system.sav
    2014-02-22 23:49 - 2005-08-29 03:12 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
    2014-02-22 23:48 - 2014-02-21 20:36 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
    2014-02-22 23:48 - 2012-07-30 10:47 - 00000000 ____D () C:\WINDOWS\L2Schemas
    2014-02-22 23:48 - 2012-07-30 10:47 - 00000000 ____D () C:\WINDOWS\system32\scripting
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\ime
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Media
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\mui
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\usmt
    2014-02-22 23:47 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\msagent
    2014-02-22 23:47 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\PeerNet
    2014-02-22 23:47 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\npp
    2014-02-22 23:45 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\twain_32
    2014-02-22 23:44 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\1033
    2014-02-22 23:44 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\ias
    2014-02-22 23:44 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\icsxml
    2014-02-22 23:43 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Driver Cache
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\UltraISO
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\UltraISO
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Program Files\Common Files\EZB Systems
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Program Files\Common Files\EZB Systems
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Program Files\UltraISO
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Program Files\UltraISO
    2014-02-22 12:40 - 2008-02-28 07:44 - 00000000 ____D () C:\Program Files\ArtMoney
    2014-02-22 10:08 - 2007-11-29 17:21 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
    2014-02-22 06:09 - 2008-02-08 16:32 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Symantec
    2014-02-22 06:09 - 2008-02-08 16:32 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
    2014-02-22 05:30 - 2006-01-02 18:46 - 00000000 ____D () C:\WINDOWS\pss
    2014-02-22 04:30 - 2013-09-24 12:04 - 01505104 ____N (Microsoft Corporation) C:\WINDOWS\system32\msvcr100d.dll
    2014-02-22 04:25 - 2005-08-29 03:13 - 03665584 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
    2014-02-22 04:12 - 2005-08-29 01:46 - 00000000 ____D () C:\Program Files\Outlook Express
    2014-02-22 04:11 - 2005-08-29 01:46 - 00000000 ____D () C:\Program Files\Movie Maker
    2014-02-22 03:40 - 2008-04-14 05:00 - 01296669 ____R () C:\WINDOWS\SET199.tmp
    2014-02-22 03:40 - 2008-04-14 05:00 - 01088840 ____R () C:\WINDOWS\SET19C.tmp
    2014-02-22 03:40 - 2008-04-14 05:00 - 00016535 ____R () C:\WINDOWS\SET1A8.tmp
    2014-02-22 02:45 - 2005-08-29 01:46 - 00000000 ____D () C:\WINDOWS\system32\Restore
    2014-02-22 02:42 - 2014-02-24 10:23 - 00000000 ____D () C:\I386
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\default.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\default.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\software.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\software.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\system.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\system.tmp.LOG
    2014-02-21 20:36 - 2014-02-22 23:48 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
    2014-02-21 14:26 - 2014-02-21 14:26 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\EurekaLog
    2014-02-21 14:26 - 2014-02-21 14:26 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\EurekaLog
    2014-02-21 13:43 - 2014-02-21 07:16 - 00060613 _____ () C:\WINDOWS\KB2909921.log
    2014-02-21 13:43 - 2014-02-21 07:15 - 00044445 _____ () C:\WINDOWS\KB2909212.log
    2014-02-21 10:57 - 2012-08-09 22:01 - 00014492 _____ () C:\WINDOWS\spupdsvc.log
    2014-02-21 10:42 - 2014-02-21 07:16 - 00022404 _____ () C:\WINDOWS\KB2868626.log
    2014-02-21 10:42 - 2012-08-28 17:54 - 00078742 _____ () C:\WINDOWS\KB960859.log
    2014-02-21 10:37 - 2012-08-28 17:51 - 00079702 _____ () C:\WINDOWS\KB2691442.log
    2014-02-21 10:30 - 2012-08-28 18:39 - 00054963 _____ () C:\WINDOWS\KB2229593.log
    2014-02-21 10:29 - 2012-08-28 18:37 - 00051099 _____ () C:\WINDOWS\KB954155.log
    2014-02-21 10:29 - 2012-08-28 18:31 - 00056098 _____ () C:\WINDOWS\KB956572.log
    2014-02-21 10:28 - 2014-02-21 10:28 - 00005793 _____ () C:\WINDOWS\KB2845142.log
    2014-02-21 10:28 - 2014-02-21 10:28 - 00005793 _____ () C:\WINDOWS\KB2845142.log
    2014-02-21 10:28 - 2014-02-21 10:27 - 00012668 _____ () C:\WINDOWS\KB941569.log
    2014-02-21 10:28 - 2014-02-21 07:14 - 00016505 _____ () C:\WINDOWS\KB2862152.log
    2014-02-21 10:27 - 2014-02-21 10:28 - 00012668 _____ () C:\WINDOWS\KB941569.log
    2014-02-21 10:27 - 2014-02-21 10:27 - 00007794 _____ () C:\WINDOWS\KB2807986.log
    2014-02-21 10:27 - 2014-02-21 10:27 - 00007794 _____ () C:\WINDOWS\KB2807986.log
    2014-02-21 10:27 - 2014-02-21 07:14 - 00018138 _____ () C:\WINDOWS\KB2820917.log
    2014-02-21 10:27 - 2012-08-28 17:44 - 00048266 _____ () C:\WINDOWS\KB2508429.log
    2014-02-21 10:27 - 2005-09-05 16:26 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
    2014-02-21 10:26 - 2014-02-21 07:13 - 00016373 _____ () C:\WINDOWS\KB2893984.log
    2014-02-21 10:26 - 2012-08-28 17:39 - 00042463 _____ () C:\WINDOWS\KB978542.log
    2014-02-21 10:22 - 2005-08-29 01:56 - 00000000 ___RD () C:\Documents and Settings\Admin\Start Menu\Programs\Accessories
    2014-02-21 10:17 - 2014-02-21 10:14 - 00035154 _____ () C:\WINDOWS\ie8Uninst.log
    2014-02-21 10:14 - 2014-02-21 10:17 - 00035154 _____ () C:\WINDOWS\ie8Uninst.log
    2014-02-21 10:06 - 2012-08-05 14:29 - 00004096 _____ () C:\00007E00-E82B1ABA_Backup
    2014-02-21 10:06 - 2005-11-10 12:30 - 00012288 _____ () C:\Volume{52C8E4FE-B853-42c1-9528-92978438BBF3}_Backup
    2014-02-21 09:42 - 2012-08-28 19:16 - 00125283 _____ () C:\WINDOWS\KB951376-v2.log
    2014-02-21 09:42 - 2012-08-28 17:55 - 00143437 _____ () C:\WINDOWS\KB952954.log
    2014-02-21 09:42 - 2012-08-28 17:55 - 00142407 _____ () C:\WINDOWS\KB959426.log
    2014-02-21 09:37 - 2012-08-28 18:55 - 00090197 _____ () C:\WINDOWS\KB2387149.log
    2014-02-21 09:37 - 2012-08-28 17:54 - 00110968 _____ () C:\WINDOWS\KB2712808.log
    2014-02-21 09:33 - 2012-08-28 17:53 - 00107544 _____ () C:\WINDOWS\KB2479943.log
    2014-02-21 09:32 - 2012-08-28 18:54 - 00084214 _____ () C:\WINDOWS\KB2659262.log
    2014-02-21 09:32 - 2012-08-28 18:53 - 00082959 _____ () C:\WINDOWS\KB2564958.log
    2014-02-21 09:31 - 2014-02-21 07:15 - 00046041 _____ () C:\WINDOWS\KB2758857.log
    2014-02-21 09:31 - 2014-02-21 07:15 - 00045100 _____ () C:\WINDOWS\KB2916036.log
    2014-02-21 09:31 - 2012-08-28 17:53 - 00100899 _____ () C:\WINDOWS\KB2478971.log
    2014-02-21 09:31 - 2012-08-28 17:52 - 00098986 _____ () C:\WINDOWS\KB2544893-v2.log
    2014-02-21 09:30 - 2014-02-21 09:30 - 00032207 _____ () C:\WINDOWS\KB2834886.log
    2014-02-21 09:30 - 2014-02-21 09:30 - 00032207 _____ () C:\WINDOWS\KB2834886.log
    2014-02-21 09:30 - 2012-08-28 18:52 - 00081353 _____ () C:\WINDOWS\KB2536276-v2.log
    2014-02-21 09:30 - 2012-08-28 17:52 - 00100148 _____ () C:\WINDOWS\KB2585542.log
    2014-02-21 09:30 - 2012-08-28 17:52 - 00098629 _____ () C:\WINDOWS\KB2631813.log
    2014-02-21 09:29 - 2012-08-28 18:50 - 00075652 _____ () C:\WINDOWS\KB2296011.log
    2014-02-21 09:26 - 2014-02-21 09:26 - 00031033 _____ () C:\WINDOWS\KB2900986.log
    2014-02-21 09:26 - 2014-02-21 09:26 - 00031033 _____ () C:\WINDOWS\KB2900986.log
    2014-02-21 09:26 - 2012-08-28 17:51 - 00096913 _____ () C:\WINDOWS\KB2115168.log
    2014-02-21 09:23 - 2012-08-28 18:45 - 00078063 _____ () C:\WINDOWS\KB975558.log
    2014-02-21 09:23 - 2012-08-28 18:44 - 00081087 _____ () C:\WINDOWS\KB955759.log
    2014-02-21 09:23 - 2005-08-29 03:14 - 02006047 _____ () C:\WINDOWS\iis6.BAK
    2014-02-21 09:22 - 2014-02-21 07:15 - 00041534 _____ () C:\WINDOWS\KB2847311.log
    2014-02-21 09:22 - 2012-08-28 18:44 - 00074288 _____ () C:\WINDOWS\KB2378111.log
    2014-02-21 09:22 - 2012-08-28 17:50 - 00094615 _____ () C:\WINDOWS\KB951978.log
    2014-02-21 09:22 - 2012-08-28 17:50 - 00096218 _____ () C:\WINDOWS\KB974318.log
    2014-02-21 09:21 - 2014-02-21 07:15 - 00041556 _____ () C:\WINDOWS\KB2802968.log
    2014-02-21 09:21 - 2012-08-28 17:50 - 00096911 _____ () C:\WINDOWS\KB2655992.log
    2014-02-21 09:21 - 2012-08-28 17:49 - 00092240 _____ () C:\WINDOWS\KB950974.log
    2014-02-21 09:21 - 2012-08-28 17:49 - 00093235 _____ () C:\WINDOWS\KB969059.log
    2014-02-21 09:21 - 2012-08-28 17:48 - 00092262 _____ () C:\WINDOWS\KB2443105.log
    2014-02-21 09:20 - 2014-02-21 07:15 - 00038286 _____ () C:\WINDOWS\KB2898715.log
    2014-02-21 09:20 - 2012-08-28 18:38 - 00071150 _____ () C:\WINDOWS\KB2686509.log
    2014-02-21 09:20 - 2012-08-28 17:50 - 00089672 _____ () C:\WINDOWS\KB2598479.log
    2014-02-21 09:20 - 2012-08-28 17:48 - 00093548 _____ () C:\WINDOWS\KB2481109.log
    2014-02-21 09:20 - 2012-08-28 17:47 - 00089485 _____ () C:\WINDOWS\KB975713.log
    2014-02-21 09:19 - 2014-02-21 09:19 - 00026033 _____ () C:\WINDOWS\KB2862335.log
    2014-02-21 09:19 - 2014-02-21 09:19 - 00026033 _____ () C:\WINDOWS\KB2862335.log
    2014-02-21 09:19 - 2012-08-28 17:49 - 00087281 _____ () C:\WINDOWS\KB982132.log
    2014-02-21 09:19 - 2012-08-28 17:48 - 00087662 _____ () C:\WINDOWS\KB971657.log
    2014-02-21 09:16 - 2012-08-28 18:37 - 00066585 _____ () C:\WINDOWS\KB961118.log
    2014-02-21 09:16 - 2012-08-28 17:48 - 00087368 _____ () C:\WINDOWS\KB978338.log
    2014-02-21 09:15 - 2014-02-21 07:15 - 00038382 _____ () C:\WINDOWS\KB2780091.log
    2014-02-21 09:15 - 2012-08-28 17:50 - 00088141 _____ () C:\WINDOWS\KB2507938.log
    2014-02-21 09:12 - 2014-02-21 07:14 - 00035062 _____ () C:\WINDOWS\KB2845187.log
    2014-02-21 09:12 - 2012-08-28 17:47 - 00090144 _____ () C:\WINDOWS\KB2510581.log
    2014-02-21 09:11 - 2014-02-21 09:11 - 00023988 _____ () C:\WINDOWS\KB2904266.log
    2014-02-21 09:11 - 2014-02-21 09:11 - 00023988 _____ () C:\WINDOWS\KB2904266.log
    2014-02-21 09:11 - 2014-02-21 07:14 - 00034912 _____ () C:\WINDOWS\KB2876217.log
    2014-02-21 09:11 - 2012-08-28 18:31 - 00063800 _____ () C:\WINDOWS\KB956844.log
    2014-02-21 09:11 - 2012-08-28 18:17 - 00011702 _____ () C:\WINDOWS\system32\TZLog.log
    2014-02-21 09:11 - 2012-08-28 17:46 - 00084258 _____ () C:\WINDOWS\KB974112.log
    2014-02-21 09:10 - 2012-08-28 17:46 - 00082725 _____ () C:\WINDOWS\KB2483185.log
    2014-02-21 09:06 - 2014-02-21 07:14 - 00033137 _____ () C:\WINDOWS\KB2864063.log
    2014-02-21 09:06 - 2012-08-28 18:23 - 00060549 _____ () C:\WINDOWS\KB973869.log
    2014-02-21 09:06 - 2012-08-28 17:45 - 00076639 _____ () C:\WINDOWS\KB975025.log
    2014-02-21 09:06 - 2012-08-28 17:45 - 00080511 _____ () C:\WINDOWS\KB979687.log
    2014-02-21 09:05 - 2012-08-28 18:23 - 00057331 _____ () C:\WINDOWS\KB2592799.log
    2014-02-21 09:05 - 2012-08-28 17:45 - 00080506 _____ () C:\WINDOWS\KB2719985.log
     
  17. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    2014-02-21 09:05 - 2012-08-28 17:44 - 00078047 _____ () C:\WINDOWS\KB952004.log
    2014-02-21 09:05 - 2012-08-28 17:44 - 00074277 _____ () C:\WINDOWS\KB974571.log
    2014-02-21 08:54 - 2012-08-28 17:42 - 00071844 _____ () C:\WINDOWS\KB973507.log
    2014-02-21 08:50 - 2014-02-21 07:14 - 00029516 _____ () C:\WINDOWS\KB2850869.log
    2014-02-21 08:50 - 2012-08-28 18:21 - 00052832 _____ () C:\WINDOWS\KB2535512.log
    2014-02-21 08:50 - 2012-08-28 17:40 - 00067007 _____ () C:\WINDOWS\KB977816.log
    2014-02-21 08:49 - 2014-02-21 07:14 - 00030421 _____ () C:\WINDOWS\KB2859537.log
    2014-02-21 08:49 - 2014-02-21 07:14 - 00029110 _____ () C:\WINDOWS\KB2876331.log
    2014-02-21 08:49 - 2012-08-28 18:21 - 00052333 _____ () C:\WINDOWS\KB950762.log
    2014-02-21 08:48 - 2012-08-28 18:21 - 00051274 _____ () C:\WINDOWS\KB2570947.log
    2014-02-21 08:43 - 2014-02-21 08:39 - 00000000 ____D () C:\WINDOWS\system32\MRT
    2014-02-21 08:39 - 2014-02-21 08:43 - 00000000 ____D () C:\WINDOWS\system32\MRT
    2014-02-21 08:34 - 2014-02-21 08:34 - 00018852 _____ () C:\WINDOWS\KB2868038.log
    2014-02-21 08:34 - 2014-02-21 08:34 - 00018852 _____ () C:\WINDOWS\KB2868038.log
    2014-02-21 08:34 - 2012-08-28 18:20 - 00050413 _____ () C:\WINDOWS\KB952287.log
    2014-02-21 08:34 - 2012-08-28 18:19 - 00045357 _____ () C:\WINDOWS\KB978695.log
    2014-02-21 08:27 - 2014-02-21 07:13 - 00030015 _____ () C:\WINDOWS\KB2757638.log
    2014-02-21 08:27 - 2014-02-21 07:13 - 00028099 _____ () C:\WINDOWS\KB2893294.log
    2014-02-21 08:27 - 2012-08-28 18:19 - 00049825 _____ () C:\WINDOWS\KB2603381.log
    2014-02-21 08:27 - 2012-08-28 18:19 - 00051309 _____ () C:\WINDOWS\KB973904.log
    2014-02-21 08:26 - 2012-08-28 17:39 - 00066949 _____ () C:\WINDOWS\KB2419632.log
    2014-02-21 08:25 - 2014-02-21 07:13 - 00023593 _____ () C:\WINDOWS\KB2749655.log
    2014-02-21 08:25 - 2012-08-28 17:42 - 00051802 _____ () C:\WINDOWS\KB971029.log
    2014-02-21 08:25 - 2012-08-28 17:40 - 00049519 _____ () C:\WINDOWS\KB2506212.log
    2014-02-21 08:25 - 2012-08-28 17:40 - 00053459 _____ () C:\WINDOWS\KB2653956.log
    2014-02-21 08:25 - 2012-08-28 17:39 - 00051904 _____ () C:\WINDOWS\KB974392.log
    2014-02-21 08:24 - 2014-02-21 08:24 - 00008819 _____ () C:\WINDOWS\KB2834903-v2.log
    2014-02-21 08:24 - 2014-02-21 08:24 - 00008819 _____ () C:\WINDOWS\KB2834903-v2.log
    2014-02-21 08:24 - 2014-02-21 07:13 - 00019017 _____ () C:\WINDOWS\KB2892075.log
    2014-02-21 08:24 - 2012-08-28 18:18 - 00033148 _____ () C:\WINDOWS\KB952069.log
    2014-02-21 08:24 - 2012-08-28 18:17 - 00033915 _____ () C:\WINDOWS\KB2698365.log
    2014-02-21 08:24 - 2012-08-28 17:41 - 00051157 _____ () C:\WINDOWS\KB977914.log
    2014-02-21 08:24 - 2012-08-28 17:40 - 00046240 _____ () C:\WINDOWS\KB2619339.log
    2014-02-21 08:23 - 2014-02-21 07:13 - 00021183 _____ () C:\WINDOWS\KB2705219-v2.log
    2014-02-21 08:23 - 2014-02-21 07:10 - 00019598 _____ () C:\WINDOWS\KB2727528.log
    2014-02-21 08:23 - 2012-08-28 17:43 - 00046254 _____ () C:\WINDOWS\KB979482.log
    2014-02-21 08:23 - 2012-08-28 17:33 - 00044104 _____ () C:\WINDOWS\KB979309.log
    2014-02-21 08:22 - 2014-02-21 08:22 - 00009785 _____ () C:\WINDOWS\KB2723135-v2.log
    2014-02-21 08:22 - 2014-02-21 08:22 - 00009785 _____ () C:\WINDOWS\KB2723135-v2.log
    2014-02-21 08:22 - 2012-08-28 18:16 - 00030727 _____ () C:\WINDOWS\KB981997.log
    2014-02-21 08:22 - 2012-08-28 17:38 - 00044767 _____ () C:\WINDOWS\KB973815.log
    2014-02-21 08:21 - 2014-02-21 06:58 - 00021406 _____ () C:\WINDOWS\KB2813345.log
    2014-02-21 08:21 - 2012-08-28 17:37 - 00046999 _____ () C:\WINDOWS\KB2509553.log
    2014-02-21 08:20 - 2012-08-28 17:37 - 00050557 _____ () C:\WINDOWS\KB2676562.log
    2014-02-21 08:18 - 2012-08-28 17:38 - 00035447 _____ () C:\WINDOWS\KB960803.log
    2014-02-21 07:51 - 2012-08-12 19:35 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
    2014-02-21 07:37 - 2012-08-28 17:35 - 00041664 _____ () C:\WINDOWS\KB982665.log
    2014-02-21 07:37 - 2005-08-29 01:45 - 00000000 ____D () C:\Program Files\Online Services
    2014-02-21 07:36 - 2005-08-29 01:45 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
    2014-02-21 07:27 - 2012-08-28 18:02 - 00035600 _____ () C:\WINDOWS\KB2393802.log
    2014-02-21 07:26 - 2012-08-28 18:02 - 00029080 _____ () C:\WINDOWS\KB2566454.log
    2014-02-21 07:26 - 2012-08-28 18:02 - 00032512 _____ () C:\WINDOWS\KB923561.log
    2014-02-21 07:26 - 2012-08-28 17:31 - 00039351 _____ () C:\WINDOWS\KB2620712.log
    2014-02-21 07:25 - 2014-02-21 07:25 - 00010270 _____ () C:\WINDOWS\KB2914368.log
    2014-02-21 07:25 - 2014-02-21 07:25 - 00010270 _____ () C:\WINDOWS\KB2914368.log
    2014-02-21 07:25 - 2012-08-28 17:29 - 00038295 _____ () C:\WINDOWS\KB2584146.log
    2014-02-21 07:21 - 2012-08-06 15:36 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
    2014-02-21 07:21 - 2012-08-06 15:33 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
    2014-02-21 07:19 - 2012-08-28 18:01 - 00022923 _____ () C:\WINDOWS\KB2423089.log
    2014-02-21 07:19 - 2012-08-28 17:26 - 00040482 _____ () C:\WINDOWS\KB968389.log
    2014-02-21 07:19 - 2012-08-28 17:26 - 00040053 _____ () C:\WINDOWS\KB975467.log
    2014-02-21 07:16 - 2014-02-21 13:43 - 00060613 _____ () C:\WINDOWS\KB2909921.log
    2014-02-21 07:16 - 2014-02-21 10:42 - 00022404 _____ () C:\WINDOWS\KB2868626.log
    2014-02-21 07:15 - 2014-02-21 13:43 - 00044445 _____ () C:\WINDOWS\KB2909212.log
    2014-02-21 07:15 - 2014-02-21 09:31 - 00046041 _____ () C:\WINDOWS\KB2758857.log
    2014-02-21 07:15 - 2014-02-21 09:31 - 00045100 _____ () C:\WINDOWS\KB2916036.log
    2014-02-21 07:15 - 2014-02-21 09:22 - 00041534 _____ () C:\WINDOWS\KB2847311.log
    2014-02-21 07:15 - 2014-02-21 09:21 - 00041556 _____ () C:\WINDOWS\KB2802968.log
    2014-02-21 07:15 - 2014-02-21 09:20 - 00038286 _____ () C:\WINDOWS\KB2898715.log
    2014-02-21 07:15 - 2014-02-21 09:15 - 00038382 _____ () C:\WINDOWS\KB2780091.log
    2014-02-21 07:14 - 2014-02-21 10:28 - 00016505 _____ () C:\WINDOWS\KB2862152.log
    2014-02-21 07:14 - 2014-02-21 10:27 - 00018138 _____ () C:\WINDOWS\KB2820917.log
    2014-02-21 07:14 - 2014-02-21 09:12 - 00035062 _____ () C:\WINDOWS\KB2845187.log
    2014-02-21 07:14 - 2014-02-21 09:11 - 00034912 _____ () C:\WINDOWS\KB2876217.log
    2014-02-21 07:14 - 2014-02-21 09:06 - 00033137 _____ () C:\WINDOWS\KB2864063.log
    2014-02-21 07:14 - 2014-02-21 08:50 - 00029516 _____ () C:\WINDOWS\KB2850869.log
    2014-02-21 07:14 - 2014-02-21 08:49 - 00030421 _____ () C:\WINDOWS\KB2859537.log
    2014-02-21 07:14 - 2014-02-21 08:49 - 00029110 _____ () C:\WINDOWS\KB2876331.log
    2014-02-21 07:13 - 2014-02-21 10:26 - 00016373 _____ () C:\WINDOWS\KB2893984.log
    2014-02-21 07:13 - 2014-02-21 08:27 - 00030015 _____ () C:\WINDOWS\KB2757638.log
    2014-02-21 07:13 - 2014-02-21 08:27 - 00028099 _____ () C:\WINDOWS\KB2893294.log
    2014-02-21 07:13 - 2014-02-21 08:25 - 00023593 _____ () C:\WINDOWS\KB2749655.log
    2014-02-21 07:13 - 2014-02-21 08:24 - 00019017 _____ () C:\WINDOWS\KB2892075.log
    2014-02-21 07:13 - 2014-02-21 08:23 - 00021183 _____ () C:\WINDOWS\KB2705219-v2.log
    2014-02-21 07:10 - 2014-02-21 08:23 - 00019598 _____ () C:\WINDOWS\KB2727528.log
    2014-02-21 06:58 - 2014-02-21 08:21 - 00021406 _____ () C:\WINDOWS\KB2813345.log
    2014-02-21 06:58 - 2012-08-28 17:42 - 00032343 _____ () C:\WINDOWS\KB978706.log
    2014-02-21 06:57 - 2009-06-25 01:25 - 00054272 _____ (Microsoft Corporation) C:\WINDOWS\system32\SET9E.tmp
    2014-02-21 06:57 - 2009-06-25 01:25 - 00056832 _____ (Microsoft Corporation) C:\WINDOWS\system32\SET9F.tmp
    2014-02-21 06:57 - 2009-06-25 01:25 - 00147456 _____ (Microsoft Corporation) C:\WINDOWS\system32\SETA0.tmp
    2014-02-21 06:57 - 2009-06-25 01:25 - 00301568 _____ (Microsoft Corporation) C:\WINDOWS\system32\SETA2.tmp
    2014-02-21 06:57 - 2008-04-14 05:00 - 00214528 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\wordpad.exe
    2014-02-21 06:56 - 2009-09-11 07:18 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\SETAB.tmp
    2014-02-21 06:38 - 2005-08-29 01:49 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
    2014-02-21 06:38 - 2005-08-29 01:49 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
    2014-02-21 06:36 - 2012-07-30 17:09 - 00000794 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
    2014-02-21 06:36 - 2005-08-29 01:47 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
    2014-02-21 06:19 - 2012-08-01 19:29 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
    2014-02-21 06:11 - 2008-04-14 05:00 - 01296669 ____R () C:\WINDOWS\SET195.tmp
    2014-02-21 06:11 - 2008-04-14 05:00 - 01088840 ____R () C:\WINDOWS\SET198.tmp
    2014-02-21 06:11 - 2008-04-14 05:00 - 00016535 ____R () C:\WINDOWS\SET1A4.tmp
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\Antivirus.Evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\Antivirus.Evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\NetLimit.evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\NetLimit.evt
    2014-02-21 05:36 - 2014-02-05 09:18 - 00003814 _____ () C:\WINDOWS\system32\nvAppTimestamps
    2014-02-21 02:32 - 2014-02-19 11:35 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\X-Chat 2
    2014-02-19 11:55 - 2014-02-19 11:18 - 00000000 ____D () C:\Program Files\xchat
    2014-02-19 11:35 - 2014-02-21 02:32 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\X-Chat 2
    2014-02-19 11:18 - 2014-02-19 11:55 - 00000000 ____D () C:\Program Files\xchat
    2014-02-19 02:15 - 2012-03-09 01:37 - 00000000 ____D () C:\Documents and Settings\Admin\VirtualBox VMs
    2014-02-18 04:41 - 2014-02-18 04:41 - 00201274 _____ () C:\Documents and Settings\Admin\Desktop\f6flpy3288.zip
    2014-02-18 04:41 - 2014-02-18 04:41 - 00201274 _____ () C:\Documents and Settings\Admin\Desktop\f6flpy3288.zip
    2014-02-18 02:00 - 2014-02-07 20:45 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
    2014-02-15 01:33 - 2014-02-15 01:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox
    2014-02-15 01:33 - 2014-02-15 01:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox
    2014-02-12 14:06 - 2014-02-12 14:04 - 00532549 _____ (www.cozli.com) C:\Documents and Settings\Admin\Desktop\WBICreator.exe
    2014-02-12 14:04 - 2014-02-12 14:06 - 00532549 _____ (www.cozli.com) C:\Documents and Settings\Admin\Desktop\WBICreator.exe
    2014-02-11 13:16 - 2014-02-11 13:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\IVONA
    2014-02-11 13:16 - 2014-02-11 13:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\IVONA
    2014-02-11 13:16 - 2014-02-11 13:16 - 00000000 ____D () C:\Program Files\IVONA
    2014-02-11 13:16 - 2014-02-11 13:16 - 00000000 ____D () C:\Program Files\IVONA
    2014-02-11 12:22 - 2014-02-11 12:16 - 00000000 ____D () C:\Program Files\dspeech
    2014-02-11 12:16 - 2014-02-11 12:22 - 00000000 ____D () C:\Program Files\dspeech
    2014-02-10 23:57 - 2014-02-10 23:54 - 00001992 _____ () C:\Documents and Settings\Admin\Desktop\run.zip
    2014-02-10 23:54 - 2014-02-10 23:57 - 00001992 _____ () C:\Documents and Settings\Admin\Desktop\run.zip
    2014-02-09 16:05 - 2014-02-09 16:05 - 01864872 _____ () C:\Documents and Settings\Admin\Desktop\dspeech.zip
    2014-02-09 16:05 - 2014-02-09 16:05 - 01864872 _____ () C:\Documents and Settings\Admin\Desktop\dspeech.zip
    2014-02-09 14:35 - 2014-02-09 13:41 - 00002513 _____ () C:\Documents and Settings\Admin\Start Menu\Programs\Text2Go.lnk
    2014-02-09 13:42 - 2014-02-09 13:42 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Tumbywood Software
    2014-02-09 13:42 - 2014-02-09 13:42 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Tumbywood Software
    2014-02-09 13:42 - 2014-02-09 13:42 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Tumbywood_Software
    2014-02-09 13:42 - 2014-02-09 13:42 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Tumbywood_Software
    2014-02-09 13:41 - 2014-02-09 14:35 - 00002513 _____ () C:\Documents and Settings\Admin\Start Menu\Programs\Text2Go.lnk
    2014-02-09 13:41 - 2014-02-09 13:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Tumbywood Software
    2014-02-09 13:41 - 2014-02-09 13:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Tumbywood Software
    2014-02-09 13:41 - 2014-02-09 13:41 - 00000000 ____D () C:\Program Files\Tumbywood Software
    2014-02-09 13:41 - 2014-02-09 13:41 - 00000000 ____D () C:\Program Files\Tumbywood Software
    2014-02-08 18:08 - 2014-02-08 16:38 - 00000000 ____D () C:\Program Files\Resource Hacker
    2014-02-08 16:38 - 2014-02-08 18:08 - 00000000 ____D () C:\Program Files\Resource Hacker
    2014-02-08 16:38 - 2014-02-08 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Resource Hacker
    2014-02-08 16:38 - 2014-02-08 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Resource Hacker
    2014-02-07 21:17 - 2014-02-07 21:17 - 00000324 _____ () C:\Documents and Settings\Admin\2014-02-08-04-17-12.092-VirtualBox.exe-8756.log
    2014-02-07 21:17 - 2014-02-07 21:17 - 00000324 _____ () C:\Documents and Settings\Admin\2014-02-08-04-17-12.092-VirtualBox.exe-8756.log
    2014-02-07 20:45 - 2014-02-18 02:00 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
    2014-02-07 20:45 - 2014-02-07 20:45 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Mozilla
    2014-02-07 20:45 - 2014-02-07 20:45 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Mozilla
    2014-02-07 13:37 - 2008-02-12 14:40 - 00000000 ____D () C:\Program Files\megui
    2014-02-05 09:50 - 2007-01-12 14:14 - 00000000 ____D () C:\Program Files\X-NetStat Professional
    2014-02-05 09:33 - 2005-09-21 04:38 - 00000000 ___RD () C:\Documents and Settings\Admin\Desktop\ROMS
    2014-02-05 09:18 - 2014-02-21 05:36 - 00003814 _____ () C:\WINDOWS\system32\nvAppTimestamps
    2014-02-05 09:18 - 2014-02-05 09:18 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\NVIDIA
    2014-02-05 09:18 - 2014-02-05 09:18 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\NVIDIA
    2014-02-05 09:14 - 2012-08-01 19:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NVIDIA
    2014-02-05 09:14 - 2012-08-01 19:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
    2014-02-05 09:13 - 2014-02-05 09:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\NVIDIA Corporation
    2014-02-05 09:13 - 2014-02-05 09:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\NVIDIA Corporation
    2014-02-05 09:13 - 2014-02-05 09:13 - 00000000 ____D () C:\Program Files\AGEIA Technologies
    2014-02-05 09:13 - 2014-02-05 09:13 - 00000000 ____D () C:\Program Files\AGEIA Technologies
    2014-02-05 09:10 - 2012-08-05 15:11 - 00000000 ____D () C:\Documents and Settings\UpdatusUser.XP1
    2014-02-05 09:10 - 2012-08-05 15:11 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.XP1\ntuser.ini
    2014-02-05 09:09 - 2013-12-19 13:17 - 01049888 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispco3233221.dll
    2014-02-05 09:09 - 2013-12-19 13:17 - 00893728 _____ (NVIDIA Corporation) C:\WINDOWS\system32\nvdispgenco3233221.dll
    2014-02-05 08:53 - 2005-08-30 01:57 - 00000000 ____D () C:\Documents and Settings\Administrator
    2014-02-05 08:53 - 2005-08-29 01:55 - 00000000 __SHD () C:\Documents and Settings\LocalService
    2014-02-05 08:53 - 2005-08-29 01:55 - 00000000 __SHD () C:\Documents and Settings\NetworkService
    2014-02-05 08:49 - 2012-07-11 11:27 - 00000000 ____D () C:\Program Files\Acronis
    2014-02-04 19:09 - 2012-08-28 19:01 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
    2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Acronis
    2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Acronis
    2014-02-04 11:31 - 2013-08-14 19:07 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\TrueCrypt
    2014-02-03 14:51 - 2014-02-03 14:51 - 00085836 _____ () C:\Documents and Settings\Admin\2014-02-03-21-51-24.045-VirtualBox.exe-31088.log
    2014-02-03 14:51 - 2014-02-03 14:51 - 00085836 _____ () C:\Documents and Settings\Admin\2014-02-03-21-51-24.045-VirtualBox.exe-31088.log
    2014-02-03 08:53 - 2014-02-03 08:53 - 00031610 _____ () C:\Documents and Settings\Admin\.recently-used.xbel
    2014-02-03 08:53 - 2014-02-03 08:53 - 00031610 _____ () C:\Documents and Settings\Admin\.recently-used.xbel
    2014-02-03 08:53 - 2007-11-09 20:34 - 00000000 ____D () C:\Documents and Settings\Admin\.gimp-2.4
    2014-02-03 08:21 - 2007-11-16 09:25 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\gtk-2.0
    2014-02-03 07:53 - 2013-04-21 00:35 - 00000132 _____ () C:\Documents and Settings\Admin\Application Data\Adobe PNG Format CS6 Prefs
    2014-02-02 18:47 - 2013-08-25 05:40 - 00087616 _____ (Systems Internals) C:\WINDOWS\PSSDNSVC.EXE
    2014-02-02 18:47 - 2013-08-25 05:31 - 00000025 _____ () C:\Documents and Settings\Admin\coutndown hibernate.bat
    2014-02-02 15:49 - 2005-08-29 02:04 - 00000000 ____D () C:\Program Files\Winamp
    2014-02-02 15:39 - 2013-02-28 14:33 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\CloneSpy
    2014-02-02 14:13 - 2013-10-19 01:57 - 00001582 _____ () C:\Documents and Settings\Admin\Application Data\MPQEditor.ini
    2014-02-02 13:14 - 2014-02-02 13:14 - 00448512 _____ (OldTimer Tools) C:\Documents and Settings\Admin\Desktop\TFC.exe
    2014-02-02 13:14 - 2014-02-02 13:14 - 00448512 _____ (OldTimer Tools) C:\Documents and Settings\Admin\Desktop\TFC.exe
    2014-02-02 04:30 - 2014-02-02 04:30 - 00000000 ____D () C:\Documents and Settings\Admin\Start Menu\Programs\CloneSpy
    2014-02-02 04:30 - 2014-02-02 04:30 - 00000000 ____D () C:\Documents and Settings\Admin\Start Menu\Programs\CloneSpy
    2014-02-01 16:37 - 2005-09-03 16:44 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Adobe
    2014-01-30 11:27 - 2013-01-10 14:47 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
    2014-01-29 14:55 - 2006-09-03 15:01 - 00000000 ____D () C:\Program Files\PeerGuardian2



    ==================== One Month Modified Files and Folders =======

    2014-02-26 05:21 - 2014-02-26 05:21 - 00029436 _____ () C:\Documents and Settings\Admin\Desktop\FRST.txt
    2014-02-26 05:21 - 2014-02-26 05:21 - 00000000 ____D () C:\FRST
    2014-02-26 05:21 - 2013-03-30 06:18 - 00000830 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
    2014-02-26 05:20 - 2014-02-26 05:20 - 00002161 _____ () C:\Documents and Settings\Admin\Desktop\JRT.txt
    2014-02-26 05:15 - 2014-02-26 05:15 - 00013025 _____ () C:\Documents and Settings\Admin\Desktop\AdwCleaner[S0].txt
    2014-02-26 05:15 - 2014-02-26 05:15 - 00000000 ____D () C:\WINDOWS\ERUNT
    2014-02-26 05:13 - 2007-11-09 00:15 - 00000000 ____D () C:\Program Files\Bandwidth Monitor Pro
    2014-02-26 05:12 - 2012-08-05 14:29 - 00015864 _____ () C:\00007E00-E82B1ABA
    2014-02-26 05:12 - 2005-08-29 01:56 - 00000278 ___SH () C:\Documents and Settings\Admin\ntuser.ini
    2014-02-26 05:12 - 2005-11-10 12:30 - 00012288 _____ () C:\Volume{52C8E4FE-B853-42c1-9528-92978438BBF3}
    2014-02-26 05:12 - 2005-08-29 01:55 - 00032576 _____ () C:\WINDOWS\SchedLgU.Txt
    2014-02-26 05:12 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\security
    2014-02-26 05:12 - 2005-08-29 01:55 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
    2014-02-26 05:12 - 2005-08-29 03:17 - 00000216 _____ () C:\WINDOWS\wiadebug.log
    2014-02-26 05:12 - 2005-08-29 01:47 - 01198025 _____ () C:\WINDOWS\WindowsUpdate.log
    2014-02-26 05:11 - 2014-02-26 05:04 - 00000000 ____D () C:\AdwCleaner
    2014-02-26 04:51 - 2013-03-07 22:52 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\vlc
    2014-02-26 04:31 - 2005-08-31 12:25 - 00092672 _____ () C:\Documents and Settings\Admin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
    2014-02-26 04:24 - 2014-02-26 04:23 - 01144320 _____ (Farbar) C:\Documents and Settings\Admin\Desktop\FRST.exe
    2014-02-26 04:23 - 2014-02-26 04:23 - 01241834 _____ () C:\Documents and Settings\Admin\Desktop\adwcleaner.exe
    2014-02-26 04:23 - 2014-02-26 04:23 - 01037734 _____ (Thisisu) C:\Documents and Settings\Admin\Desktop\JRT.exe
    2014-02-26 02:56 - 2014-02-23 06:51 - 00560417 _____ () C:\WINDOWS\setupapi.log
    2014-02-26 02:25 - 2005-08-29 03:17 - 00000049 _____ () C:\WINDOWS\wiaservc.log
    2014-02-26 02:13 - 2007-11-07 19:25 - 00809864 _____ () C:\WINDOWS\comsetup.log
    2014-02-26 02:13 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Cursors
    2014-02-26 02:13 - 2005-08-29 03:14 - 02101389 _____ () C:\WINDOWS\FaxSetup.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 01475491 _____ () C:\WINDOWS\iis6.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00003739 _____ () C:\WINDOWS\imsins.BAK
    2014-02-26 02:13 - 2005-08-29 03:14 - 00001917 _____ () C:\WINDOWS\imsins.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00169315 _____ () C:\WINDOWS\MedCtrOC.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00117025 _____ () C:\WINDOWS\msgsocm.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00930836 _____ () C:\WINDOWS\msmqinst.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00384634 _____ () C:\WINDOWS\netfxocm.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00539548 _____ () C:\WINDOWS\ntdtcsetup.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 01475759 _____ () C:\WINDOWS\ocgen.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00125330 _____ () C:\WINDOWS\ocmsn.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 00104402 _____ () C:\WINDOWS\tabletoc.log
    2014-02-26 02:13 - 2005-08-29 03:14 - 01110730 _____ () C:\WINDOWS\tsoc.log
    2014-02-26 02:05 - 2006-01-04 22:58 - 00000000 __SHD () C:\WINDOWS\CSC
    2014-02-25 16:06 - 2006-04-18 10:53 - 00000000 ____D () C:\Program Files\Common Files\Wise Installation Wizard
    2014-02-25 15:31 - 2013-06-26 23:48 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Skype
    2014-02-25 15:31 - 2008-01-08 03:15 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Skype
    2014-02-25 15:31 - 2013-05-13 12:04 - 00000000 ___RD () C:\Program Files\Skype
    2014-02-25 15:28 - 2005-08-29 03:14 - 00000000 ____D () C:\Program Files\Common Files\Microsoft Shared
    2014-02-25 09:01 - 2014-02-25 05:51 - 00006259 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_S_02252014_055102.txt
    2014-02-25 08:16 - 2014-02-25 07:23 - 00107224 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys
    2014-02-25 08:15 - 2014-02-25 07:23 - 00052312 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys
    2014-02-25 08:12 - 2005-08-29 01:56 - 00000000 ____D () C:\Documents and Settings\Admin
    2014-02-25 08:10 - 2012-08-08 16:24 - 00000000 ____D () C:\WINDOWS\SxsCaPendDel
    2014-02-25 07:22 - 2014-02-25 07:22 - 00000000 ____D () C:\Documents and Settings\Admin\Desktop\mwb antirootkit
    2014-02-25 07:20 - 2014-02-25 05:48 - 00000000 ____D () C:\Documents and Settings\Admin\Desktop\RK_Quarantine
    2014-02-25 07:15 - 2014-02-25 07:11 - 00000000 ____D () C:\Program Files\DAEMON Tools Pro
    2014-02-25 07:14 - 2014-02-25 07:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\DAEMON Tools Pro
    2014-02-25 07:13 - 2014-02-25 07:13 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\DAEMON Tools Pro
    2014-02-25 07:11 - 2014-02-25 07:11 - 00001645 _____ () C:\Documents and Settings\All Users\Desktop\DAEMON Tools Pro.lnk
    2014-02-25 07:11 - 2014-02-25 07:11 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DAEMON Tools Pro
    2014-02-25 07:06 - 2014-02-25 07:06 - 00685816 _____ () C:\WINDOWS\system32\Drivers\sptd.sys
    2014-02-25 06:58 - 2014-02-25 06:58 - 00005490 ____N () C:\bootex.log
    2014-02-25 06:53 - 2011-09-27 00:26 - 00000000 ____D () C:\Program Files\MagicDisc
    2014-02-25 06:38 - 2001-12-31 16:12 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
    2014-02-25 06:24 - 2014-02-25 06:24 - 00004712 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_S_02252014_062422.txt
    2014-02-25 05:54 - 2014-02-25 05:54 - 00006637 _____ () C:\Documents and Settings\Admin\Desktop\RKreport[0]_D_02252014_055432.txt
    2014-02-25 05:54 - 2008-04-14 05:00 - 00000000 __SHD () C:\Documents and Settings\Admin\Local Settings\Application Data\{3a203b97-305b-2e26-5272-9a47be1de5ac}
    2014-02-25 05:49 - 2014-02-25 05:49 - 12589848 _____ (Malwarebytes Corp.) C:\Documents and Settings\Admin\Desktop\mbar-1.07.0.1009.exe
    2014-02-25 05:48 - 2014-02-25 05:48 - 03818496 _____ () C:\Documents and Settings\Admin\Desktop\RogueKiller.exe
    2014-02-24 10:23 - 2014-02-22 02:42 - 00000000 ____D () C:\I386
    2014-02-24 10:13 - 2014-02-24 10:05 - 00012662 _____ () C:\Documents and Settings\Admin\Desktop\attach.txt
    2014-02-24 10:13 - 2014-02-24 10:05 - 00027164 _____ () C:\Documents and Settings\Admin\Desktop\dds.txt
    2014-02-24 10:13 - 2005-04-07 15:52 - 00000000 ___RD () C:\Documents and Settings\Admin\Desktop\TIF's
    2014-02-24 10:03 - 2014-02-24 10:03 - 00688992 ____R (Swearware) C:\Documents and Settings\Admin\Desktop\dds.com
    2014-02-24 09:43 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system
    2014-02-24 09:41 - 2013-04-11 18:46 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\YTD YouTube Downloader & Converter
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Malwarebytes
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Malwarebytes
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000834 _____ () C:\Documents and Settings\All Users\Desktop\Malwarebytes Anti-Malware.lnk
    2014-02-24 09:09 - 2014-02-24 09:09 - 00000000 ____D () C:\Program Files\Malwarebytes' Anti-Malware
    2014-02-24 09:06 - 2014-02-24 09:06 - 10285040 _____ (Malwarebytes Corporation ) C:\Documents and Settings\Admin\Desktop\mbam-setup-1.75.0.1300.exe
    2014-02-24 07:51 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Help
    2014-02-24 07:18 - 2012-09-21 19:21 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\PassMark
    2014-02-24 07:18 - 2014-02-24 07:18 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\BurnInTest
    2014-02-24 07:18 - 2014-02-24 07:18 - 00000000 ____D () C:\Program Files\BurnInTest
    2014-02-24 04:36 - 2014-02-24 04:36 - 00121069 _____ () C:\Documents and Settings\Admin\Desktop\memtest86+-5.01.usb.installer.zip
    2014-02-23 11:38 - 2012-08-01 19:45 - 00000000 ____D () C:\WINDOWS\system32\RTCOM
    2014-02-23 11:36 - 2012-08-01 19:45 - 00001769 _____ () C:\WINDOWS\Language_trs.ini
    2014-02-23 11:34 - 2012-08-05 16:24 - 2147483648 _____ () C:\WINDOWS\MEMORY.DMP
    2014-02-23 11:19 - 2001-12-31 15:29 - 00032256 _____ () C:\WINDOWS\Ascd_tmp.ini
    2014-02-23 10:54 - 2001-08-23 08:00 - 00001053 _____ () C:\WINDOWS\win.ini
    2014-02-23 10:23 - 2014-02-23 10:23 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Skype
    2014-02-23 09:20 - 2005-08-29 01:44 - 00000000 ____D () C:\Program Files\Windows NT
    2014-02-23 08:31 - 2012-03-09 01:26 - 00000000 ____D () C:\Documents and Settings\Admin\.VirtualBox
    2014-02-23 07:59 - 2012-08-01 19:32 - 00007214 _____ () C:\WINDOWS\COM+.log
    2014-02-23 07:57 - 2013-10-12 13:45 - 00066469 _____ () C:\WINDOWS\KB955704.log
    2014-02-23 07:57 - 2012-08-12 20:29 - 00114531 _____ () C:\WINDOWS\updspapi.log
    2014-02-23 07:56 - 2014-02-23 07:56 - 00000000 __HDC () C:\WINDOWS\$NtUninstallKB955704$
    2014-02-23 07:33 - 2005-08-29 03:14 - 00738966 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
    2014-02-23 07:31 - 2014-02-23 07:31 - 00004915 _____ () C:\Documents and Settings\Admin\Desktop\DriveInfo.txt
    2014-02-23 07:30 - 2009-01-17 17:49 - 00000000 ____D () C:\Program Files\SpeedFan
    2014-02-23 07:25 - 2005-08-29 01:45 - 00000000 ____D () C:\WINDOWS\Registration
    2014-02-23 07:23 - 2014-02-23 07:23 - 00000775 _____ () C:\Documents and Settings\Admin\Start Menu\Programs\Internet Explorer.lnk
    2014-02-23 07:20 - 2001-08-23 08:00 - 00002228 _____ () C:\WINDOWS\system32\wpa.dbl
    2014-02-23 07:18 - 2005-08-29 03:13 - 00742745 _____ () C:\WINDOWS\setupact.log
    2014-02-23 07:15 - 2014-02-23 07:15 - 00000000 ____D () C:\Program Files\msn gaming zone
    2014-02-23 07:14 - 2007-11-07 15:04 - 00001615 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk
    2014-02-23 07:14 - 2005-08-29 01:50 - 00000398 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Catalog.lnk
    2014-02-23 07:14 - 2005-08-29 01:50 - 00001515 _____ () C:\Documents and Settings\All Users\Start Menu\Windows Update.lnk
    2014-02-23 07:14 - 2005-08-29 01:50 - 00001607 _____ () C:\Documents and Settings\Default User\Start Menu\Programs\Remote Assistance.lnk
    2014-02-23 07:14 - 2005-08-29 03:12 - 00001024 _____ () C:\WINDOWS\system32\config\userdiff.LOG
    2014-02-23 07:14 - 2007-11-07 15:04 - 00524288 _____ () C:\WINDOWS\system32\config\userdifr
    2014-02-23 07:14 - 2007-11-07 15:04 - 00001024 _____ () C:\WINDOWS\system32\config\userdifr.LOG
    2014-02-23 07:14 - 2005-08-29 01:45 - 00321396 _____ () C:\WINDOWS\wmsetup.log
    2014-02-23 07:14 - 2005-08-29 01:49 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx
    2014-02-23 07:13 - 2005-08-29 03:14 - 00004161 _____ () C:\WINDOWS\ODBCINST.INI
    2014-02-23 07:13 - 2005-12-22 01:49 - 00014710 _____ () C:\WINDOWS\setuperr.log
    2014-02-23 07:13 - 2005-08-29 01:48 - 00000749 ___RH () C:\WINDOWS\system32\cdplayer.exe.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000488 ___RH () C:\WINDOWS\system32\logonui.exe.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\ncpa.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\nwc.cpl.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\sapi.cpl.manifest
    2014-02-23 07:13 - 2005-08-29 01:48 - 00000488 ___RH () C:\WINDOWS\system32\WindowsLogon.manifest
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\system32\wuaucpl.cpl.manifest
    2014-02-23 07:13 - 2005-08-29 03:08 - 00000000 ___RD () C:\WINDOWS\Web
    2014-02-23 07:13 - 2014-02-23 07:13 - 00000749 ___RH () C:\WINDOWS\WindowsShell.Manifest
    2014-02-23 07:12 - 2005-08-29 01:46 - 00007268 _____ () C:\WINDOWS\sessmgr.setup.log
    2014-02-23 07:11 - 2005-08-29 01:30 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories
    2014-02-23 07:11 - 2005-08-29 01:44 - 00000000 ____D () C:\WINDOWS\system32\Com
    2014-02-23 07:10 - 2005-08-29 01:45 - 00000838 _____ () C:\WINDOWS\DtcInstall.log
    2014-02-23 07:10 - 2005-08-29 01:45 - 00024252 _____ () C:\WINDOWS\system32\emptyregdb.dat
    2014-02-23 07:09 - 2005-08-29 01:30 - 00001584 _____ () C:\WINDOWS\cmsetacl.log
    2014-02-23 07:05 - 2005-08-29 03:12 - 00000330 ___SH () C:\boot.ini
    2014-02-23 07:01 - 2012-08-01 19:29 - 01101436 _____ () C:\WINDOWS\system32\nvdrsdb1.bin
    2014-02-23 07:01 - 2012-08-01 19:29 - 00000001 _____ () C:\WINDOWS\system32\nvdrssel.bin
    2014-02-23 06:59 - 2012-08-01 19:29 - 01101436 _____ () C:\WINDOWS\system32\nvdrsdb0.bin
    2014-02-23 06:52 - 2005-08-29 03:14 - 00013544 _____ () C:\WINDOWS\regopt.log
    2014-02-23 06:52 - 2001-08-23 08:00 - 00000273 _____ () C:\WINDOWS\system.ini
    2014-02-23 06:41 - 2005-08-29 03:13 - 00061440 _____ () C:\WINDOWS\system32\config\security.sav
    2014-02-23 06:11 - 2012-09-16 11:54 - 00000000 ____D () C:\Program Files\ASUS
    2014-02-23 06:10 - 2005-08-29 02:06 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
    2014-02-23 06:10 - 2008-12-30 01:45 - 00026947 _____ () C:\WINDOWS\DirectX.log
    2014-02-23 06:01 - 2005-08-29 03:13 - 00480337 _____ () C:\WINDOWS\setupapi.old
    2014-02-23 05:57 - 2013-08-12 09:52 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Avira
    2014-02-23 05:57 - 2008-10-25 02:41 - 00000000 ____D () C:\Program Files\COMODO
    2014-02-23 05:53 - 2005-12-22 01:49 - 00010945 _____ () C:\WINDOWS\KB893803v2.log
    2014-02-23 05:53 - 2014-02-23 05:53 - 00000868 _____ () C:\WINDOWS\KB909095.log
    2014-02-23 05:50 - 2005-11-13 17:25 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Spybot
    2014-02-23 05:50 - 2005-11-13 17:25 - 00000000 ____D () C:\Program Files\Spybot
    2014-02-23 05:47 - 2007-12-26 07:51 - 00000000 ____D () C:\Program Files\Common Files\LogiShrd
    2014-02-23 05:44 - 2007-11-17 20:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Logitech
    2014-02-23 05:44 - 2006-11-11 04:51 - 00000000 ____D () C:\Program Files\Logitech
    2014-02-23 05:40 - 2013-03-23 15:31 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Unity
    2014-02-23 05:36 - 2014-02-23 05:36 - 00055897 _____ () C:\Documents and Settings\Admin\Desktop\memtest86+-5.01.zip
    2014-02-23 03:02 - 2005-03-10 07:32 - 00000000 ___RD () C:\Documents and Settings\Admin\Desktop\Unused Desktop Shortcuts
    2014-02-22 23:49 - 2005-08-29 03:12 - 00524288 _____ () C:\WINDOWS\system32\config\default.sav
    2014-02-22 23:49 - 2005-08-29 03:12 - 38535168 _____ () C:\WINDOWS\system32\config\software.sav
    2014-02-22 23:49 - 2005-08-29 03:12 - 12582912 _____ () C:\WINDOWS\system32\config\system.sav
    2014-02-22 23:49 - 2005-08-29 03:12 - 00262144 _____ () C:\WINDOWS\system32\config\userdiff
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\ime
    2014-02-22 23:48 - 2012-07-30 10:47 - 00000000 ____D () C:\WINDOWS\L2Schemas
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Media
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\mui
    2014-02-22 23:48 - 2014-02-21 20:36 - 00001024 ____H () C:\WINDOWS\system32\config\TempKey.LOG
    2014-02-22 23:48 - 2012-07-30 10:47 - 00000000 ____D () C:\WINDOWS\system32\scripting
    2014-02-22 23:48 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\usmt
    2014-02-22 23:47 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\msagent
    2014-02-22 23:47 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\PeerNet
    2014-02-22 23:47 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\npp
    2014-02-22 23:45 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\twain_32
    2014-02-22 23:44 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\1033
    2014-02-22 23:44 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\ias
    2014-02-22 23:44 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\system32\icsxml
    2014-02-22 23:43 - 2005-08-29 03:08 - 00000000 ____D () C:\WINDOWS\Driver Cache
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\UltraISO
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Program Files\Common Files\EZB Systems
    2014-02-22 13:48 - 2014-02-22 13:48 - 00000000 ____D () C:\Program Files\UltraISO
    2014-02-22 12:40 - 2008-02-28 07:44 - 00000000 ____D () C:\Program Files\ArtMoney
    2014-02-22 10:08 - 2007-11-29 17:21 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
    2014-02-22 06:09 - 2008-02-08 16:32 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Symantec
    2014-02-22 06:09 - 2008-02-08 16:32 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared
    2014-02-22 05:30 - 2006-01-02 18:46 - 00000000 ____D () C:\WINDOWS\pss
    2014-02-22 04:25 - 2005-08-29 03:13 - 03665584 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
    2014-02-22 04:12 - 2005-08-29 01:46 - 00000000 ____D () C:\Program Files\Outlook Express
    2014-02-22 04:11 - 2005-08-29 01:46 - 00000000 ____D () C:\Program Files\Movie Maker
    2014-02-22 02:45 - 2005-08-29 01:46 - 00000000 ____D () C:\WINDOWS\system32\Restore
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\default.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\software.tmp.LOG
    2014-02-21 20:37 - 2014-02-21 20:37 - 00000000 ____H () C:\WINDOWS\system32\config\system.tmp.LOG
    2014-02-21 14:30 - 2012-02-25 08:43 - 00000000 ____D () C:\Program Files\Clonespy
    2014-02-21 14:26 - 2014-02-21 14:26 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\EurekaLog
    2014-02-21 14:26 - 2012-02-16 15:27 - 00000000 ____D () C:\Program Files\TreeSize Free
    2014-02-21 13:43 - 2014-02-21 07:15 - 00044445 _____ () C:\WINDOWS\KB2909212.log
    2014-02-21 13:43 - 2014-02-21 07:16 - 00060613 _____ () C:\WINDOWS\KB2909921.log
    2014-02-21 10:57 - 2012-08-09 22:01 - 00014492 _____ () C:\WINDOWS\spupdsvc.log
    2014-02-21 10:42 - 2014-02-21 07:16 - 00022404 _____ () C:\WINDOWS\KB2868626.log
    2014-02-21 10:42 - 2012-08-28 17:54 - 00078742 _____ () C:\WINDOWS\KB960859.log
    2014-02-21 10:37 - 2012-08-28 17:51 - 00079702 _____ () C:\WINDOWS\KB2691442.log
    2014-02-21 10:30 - 2012-08-28 18:39 - 00054963 _____ () C:\WINDOWS\KB2229593.log
    2014-02-21 10:29 - 2012-08-28 18:37 - 00051099 _____ () C:\WINDOWS\KB954155.log
    2014-02-21 10:29 - 2012-08-28 18:31 - 00056098 _____ () C:\WINDOWS\KB956572.log
    2014-02-21 10:28 - 2014-02-21 10:28 - 00005793 _____ () C:\WINDOWS\KB2845142.log
    2014-02-21 10:28 - 2014-02-21 07:14 - 00016505 _____ () C:\WINDOWS\KB2862152.log
    2014-02-21 10:28 - 2014-02-21 10:27 - 00012668 _____ () C:\WINDOWS\KB941569.log
    2014-02-21 10:27 - 2005-09-05 16:26 - 00000000 ___HD () C:\WINDOWS\$hf_mig$
    2014-02-21 10:27 - 2012-08-28 17:44 - 00048266 _____ () C:\WINDOWS\KB2508429.log
    2014-02-21 10:27 - 2014-02-21 10:27 - 00007794 _____ () C:\WINDOWS\KB2807986.log
    2014-02-21 10:27 - 2014-02-21 07:14 - 00018138 _____ () C:\WINDOWS\KB2820917.log
    2014-02-21 10:26 - 2014-02-21 07:13 - 00016373 _____ () C:\WINDOWS\KB2893984.log
    2014-02-21 10:26 - 2012-08-28 17:39 - 00042463 _____ () C:\WINDOWS\KB978542.log
    2014-02-21 10:22 - 2005-08-29 01:56 - 00000000 ___RD () C:\Documents and Settings\Admin\Start Menu\Programs\Accessories
    2014-02-21 10:17 - 2014-02-21 10:14 - 00035154 _____ () C:\WINDOWS\ie8Uninst.log
    2014-02-21 10:06 - 2012-08-05 14:29 - 00004096 _____ () C:\00007E00-E82B1ABA_Backup
    2014-02-21 10:06 - 2005-11-10 12:30 - 00012288 _____ () C:\Volume{52C8E4FE-B853-42c1-9528-92978438BBF3}_Backup
    2014-02-21 09:42 - 2012-08-28 19:16 - 00125283 _____ () C:\WINDOWS\KB951376-v2.log
    2014-02-21 09:42 - 2012-08-28 17:55 - 00143437 _____ () C:\WINDOWS\KB952954.log
    2014-02-21 09:42 - 2012-08-28 17:55 - 00142407 _____ () C:\WINDOWS\KB959426.log
    2014-02-21 09:37 - 2012-08-28 18:55 - 00090197 _____ () C:\WINDOWS\KB2387149.log
    2014-02-21 09:37 - 2012-08-28 17:54 - 00110968 _____ () C:\WINDOWS\KB2712808.log
    2014-02-21 09:33 - 2012-08-28 17:53 - 00107544 _____ () C:\WINDOWS\KB2479943.log
    2014-02-21 09:32 - 2012-08-28 18:53 - 00082959 _____ () C:\WINDOWS\KB2564958.log
    2014-02-21 09:32 - 2012-08-28 18:54 - 00084214 _____ () C:\WINDOWS\KB2659262.log
    2014-02-21 09:31 - 2012-08-28 17:53 - 00100899 _____ () C:\WINDOWS\KB2478971.log
    2014-02-21 09:31 - 2012-08-28 17:52 - 00098986 _____ () C:\WINDOWS\KB2544893-v2.log
    2014-02-21 09:31 - 2014-02-21 07:15 - 00046041 _____ () C:\WINDOWS\KB2758857.log
    2014-02-21 09:31 - 2014-02-21 07:15 - 00045100 _____ () C:\WINDOWS\KB2916036.log
    2014-02-21 09:30 - 2012-08-28 18:52 - 00081353 _____ () C:\WINDOWS\KB2536276-v2.log
    2014-02-21 09:30 - 2012-08-28 17:52 - 00100148 _____ () C:\WINDOWS\KB2585542.log
    2014-02-21 09:30 - 2012-08-28 17:52 - 00098629 _____ () C:\WINDOWS\KB2631813.log
    2014-02-21 09:30 - 2014-02-21 09:30 - 00032207 _____ () C:\WINDOWS\KB2834886.log
    2014-02-21 09:29 - 2012-08-28 18:50 - 00075652 _____ () C:\WINDOWS\KB2296011.log
    2014-02-21 09:26 - 2012-08-28 17:51 - 00096913 _____ () C:\WINDOWS\KB2115168.log
    2014-02-21 09:26 - 2014-02-21 09:26 - 00031033 _____ () C:\WINDOWS\KB2900986.log
    2014-02-21 09:23 - 2005-08-29 03:14 - 02006047 _____ () C:\WINDOWS\iis6.BAK
    2014-02-21 09:23 - 2012-08-28 18:44 - 00081087 _____ () C:\WINDOWS\KB955759.log
    2014-02-21 09:23 - 2012-08-28 18:45 - 00078063 _____ () C:\WINDOWS\KB975558.log
    2014-02-21 09:22 - 2012-08-28 18:44 - 00074288 _____ () C:\WINDOWS\KB2378111.log
    2014-02-21 09:22 - 2014-02-21 07:15 - 00041534 _____ () C:\WINDOWS\KB2847311.log
    2014-02-21 09:22 - 2012-08-28 17:50 - 00094615 _____ () C:\WINDOWS\KB951978.log
    2014-02-21 09:22 - 2012-08-28 17:50 - 00096218 _____ () C:\WINDOWS\KB974318.log
    2014-02-21 09:21 - 2012-08-28 17:48 - 00092262 _____ () C:\WINDOWS\KB2443105.log
    2014-02-21 09:21 - 2012-08-28 17:50 - 00096911 _____ () C:\WINDOWS\KB2655992.log
    2014-02-21 09:21 - 2014-02-21 07:15 - 00041556 _____ () C:\WINDOWS\KB2802968.log
    2014-02-21 09:21 - 2012-08-28 17:49 - 00092240 _____ () C:\WINDOWS\KB950974.log
    2014-02-21 09:21 - 2012-08-28 17:49 - 00093235 _____ () C:\WINDOWS\KB969059.log
    2014-02-21 09:20 - 2012-08-28 17:48 - 00093548 _____ () C:\WINDOWS\KB2481109.log
    2014-02-21 09:20 - 2012-08-28 17:50 - 00089672 _____ () C:\WINDOWS\KB2598479.log
    2014-02-21 09:20 - 2012-08-28 18:38 - 00071150 _____ () C:\WINDOWS\KB2686509.log
    2014-02-21 09:20 - 2014-02-21 07:15 - 00038286 _____ () C:\WINDOWS\KB2898715.log
    2014-02-21 09:20 - 2012-08-28 17:47 - 00089485 _____ () C:\WINDOWS\KB975713.log
    2014-02-21 09:19 - 2014-02-21 09:19 - 00026033 _____ () C:\WINDOWS\KB2862335.log
    2014-02-21 09:19 - 2012-08-28 17:48 - 00087662 _____ () C:\WINDOWS\KB971657.log
    2014-02-21 09:19 - 2012-08-28 17:49 - 00087281 _____ () C:\WINDOWS\KB982132.log
    2014-02-21 09:16 - 2012-08-28 18:37 - 00066585 _____ () C:\WINDOWS\KB961118.log
    2014-02-21 09:16 - 2012-08-28 17:48 - 00087368 _____ () C:\WINDOWS\KB978338.log
    2014-02-21 09:15 - 2012-08-28 17:50 - 00088141 _____ () C:\WINDOWS\KB2507938.log
    2014-02-21 09:15 - 2014-02-21 07:15 - 00038382 _____ () C:\WINDOWS\KB2780091.log
    2014-02-21 09:12 - 2012-08-28 17:47 - 00090144 _____ () C:\WINDOWS\KB2510581.log
    2014-02-21 09:12 - 2014-02-21 07:14 - 00035062 _____ () C:\WINDOWS\KB2845187.log
    2014-02-21 09:11 - 2014-02-21 07:14 - 00034912 _____ () C:\WINDOWS\KB2876217.log
    2014-02-21 09:11 - 2014-02-21 09:11 - 00023988 _____ () C:\WINDOWS\KB2904266.log
    2014-02-21 09:11 - 2012-08-28 18:31 - 00063800 _____ () C:\WINDOWS\KB956844.log
    2014-02-21 09:11 - 2012-08-28 17:46 - 00084258 _____ () C:\WINDOWS\KB974112.log
    2014-02-21 09:11 - 2012-08-28 18:17 - 00011702 _____ () C:\WINDOWS\system32\TZLog.log
    2014-02-21 09:10 - 2012-08-28 17:46 - 00082725 _____ () C:\WINDOWS\KB2483185.log
    2014-02-21 09:06 - 2014-02-21 07:14 - 00033137 _____ () C:\WINDOWS\KB2864063.log
    2014-02-21 09:06 - 2012-08-28 18:23 - 00060549 _____ () C:\WINDOWS\KB973869.log
    2014-02-21 09:06 - 2012-08-28 17:45 - 00076639 _____ () C:\WINDOWS\KB975025.log
    2014-02-21 09:06 - 2012-08-28 17:45 - 00080511 _____ () C:\WINDOWS\KB979687.log
    2014-02-21 09:05 - 2012-08-28 18:23 - 00057331 _____ () C:\WINDOWS\KB2592799.log
    2014-02-21 09:05 - 2012-08-28 17:45 - 00080506 _____ () C:\WINDOWS\KB2719985.log
    2014-02-21 09:05 - 2012-08-28 17:44 - 00078047 _____ () C:\WINDOWS\KB952004.log
    2014-02-21 09:05 - 2012-08-28 17:44 - 00074277 _____ () C:\WINDOWS\KB974571.log
    2014-02-21 08:54 - 2012-08-28 17:42 - 00071844 _____ () C:\WINDOWS\KB973507.log
    2014-02-21 08:50 - 2012-08-28 18:21 - 00052832 _____ () C:\WINDOWS\KB2535512.log
    2014-02-21 08:50 - 2014-02-21 07:14 - 00029516 _____ () C:\WINDOWS\KB2850869.log
    2014-02-21 08:50 - 2012-08-28 17:40 - 00067007 _____ () C:\WINDOWS\KB977816.log
    2014-02-21 08:49 - 2014-02-21 07:14 - 00030421 _____ () C:\WINDOWS\KB2859537.log
    2014-02-21 08:49 - 2014-02-21 07:14 - 00029110 _____ () C:\WINDOWS\KB2876331.log
    2014-02-21 08:49 - 2012-08-28 18:21 - 00052333 _____ () C:\WINDOWS\KB950762.log
    2014-02-21 08:48 - 2012-08-28 18:21 - 00051274 _____ () C:\WINDOWS\KB2570947.log
    2014-02-21 08:43 - 2014-02-21 08:39 - 00000000 ____D () C:\WINDOWS\system32\MRT
    2014-02-21 08:34 - 2014-02-21 08:34 - 00018852 _____ () C:\WINDOWS\KB2868038.log
    2014-02-21 08:34 - 2012-08-28 18:20 - 00050413 _____ () C:\WINDOWS\KB952287.log
    2014-02-21 08:34 - 2012-08-28 18:19 - 00045357 _____ () C:\WINDOWS\KB978695.log
    2014-02-21 08:27 - 2012-08-28 18:19 - 00049825 _____ () C:\WINDOWS\KB2603381.log
    2014-02-21 08:27 - 2014-02-21 07:13 - 00030015 _____ () C:\WINDOWS\KB2757638.log
    2014-02-21 08:27 - 2014-02-21 07:13 - 00028099 _____ () C:\WINDOWS\KB2893294.log
    2014-02-21 08:27 - 2012-08-28 18:19 - 00051309 _____ () C:\WINDOWS\KB973904.log
    2014-02-21 08:26 - 2012-08-28 17:39 - 00066949 _____ () C:\WINDOWS\KB2419632.log
    2014-02-21 08:25 - 2012-08-28 17:40 - 00049519 _____ () C:\WINDOWS\KB2506212.log
    2014-02-21 08:25 - 2012-08-28 17:40 - 00053459 _____ () C:\WINDOWS\KB2653956.log
    2014-02-21 08:25 - 2014-02-21 07:13 - 00023593 _____ () C:\WINDOWS\KB2749655.log
    2014-02-21 08:25 - 2012-08-28 17:42 - 00051802 _____ () C:\WINDOWS\KB971029.log
    2014-02-21 08:25 - 2012-08-28 17:39 - 00051904 _____ () C:\WINDOWS\KB974392.log
    2014-02-21 08:24 - 2012-08-28 17:40 - 00046240 _____ () C:\WINDOWS\KB2619339.log
    2014-02-21 08:24 - 2012-08-28 18:17 - 00033915 _____ () C:\WINDOWS\KB2698365.log
    2014-02-21 08:24 - 2014-02-21 08:24 - 00008819 _____ () C:\WINDOWS\KB2834903-v2.log
    2014-02-21 08:24 - 2014-02-21 07:13 - 00019017 _____ () C:\WINDOWS\KB2892075.log
    2014-02-21 08:24 - 2012-08-28 18:18 - 00033148 _____ () C:\WINDOWS\KB952069.log
    2014-02-21 08:24 - 2012-08-28 17:41 - 00051157 _____ () C:\WINDOWS\KB977914.log
    2014-02-21 08:23 - 2014-02-21 07:13 - 00021183 _____ () C:\WINDOWS\KB2705219-v2.log
    2014-02-21 08:23 - 2014-02-21 07:10 - 00019598 _____ () C:\WINDOWS\KB2727528.log
    2014-02-21 08:23 - 2012-08-28 17:33 - 00044104 _____ () C:\WINDOWS\KB979309.log
    2014-02-21 08:23 - 2012-08-28 17:43 - 00046254 _____ () C:\WINDOWS\KB979482.log
    2014-02-21 08:22 - 2014-02-21 08:22 - 00009785 _____ () C:\WINDOWS\KB2723135-v2.log
    2014-02-21 08:22 - 2012-08-28 17:38 - 00044767 _____ () C:\WINDOWS\KB973815.log
    2014-02-21 08:22 - 2012-08-28 18:16 - 00030727 _____ () C:\WINDOWS\KB981997.log
    2014-02-21 08:21 - 2012-08-28 17:37 - 00046999 _____ () C:\WINDOWS\KB2509553.log
    2014-02-21 08:21 - 2014-02-21 06:58 - 00021406 _____ () C:\WINDOWS\KB2813345.log
    2014-02-21 08:20 - 2012-08-28 17:37 - 00050557 _____ () C:\WINDOWS\KB2676562.log
    2014-02-21 08:18 - 2012-08-28 17:38 - 00035447 _____ () C:\WINDOWS\KB960803.log
    2014-02-21 07:51 - 2012-08-12 19:35 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer
    2014-02-21 07:37 - 2005-08-29 01:45 - 00000000 ____D () C:\Program Files\Online Services
    2014-02-21 07:37 - 2012-08-28 17:35 - 00041664 _____ () C:\WINDOWS\KB982665.log
    2014-02-21 07:36 - 2005-08-29 01:45 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Games
    2014-02-21 07:27 - 2012-08-28 18:02 - 00035600 _____ () C:\WINDOWS\KB2393802.log
    2014-02-21 07:26 - 2012-08-28 18:02 - 00029080 _____ () C:\WINDOWS\KB2566454.log
    2014-02-21 07:26 - 2012-08-28 17:31 - 00039351 _____ () C:\WINDOWS\KB2620712.log
    2014-02-21 07:26 - 2012-08-28 18:02 - 00032512 _____ () C:\WINDOWS\KB923561.log
    2014-02-21 07:25 - 2012-08-28 17:29 - 00038295 _____ () C:\WINDOWS\KB2584146.log
    2014-02-21 07:25 - 2014-02-21 07:25 - 00010270 _____ () C:\WINDOWS\KB2914368.log
    2014-02-21 07:21 - 2012-08-06 15:36 - 00692616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
    2014-02-21 07:21 - 2012-08-06 15:33 - 00071048 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
    2014-02-21 07:19 - 2012-08-28 18:01 - 00022923 _____ () C:\WINDOWS\KB2423089.log
    2014-02-21 07:19 - 2012-08-28 17:26 - 00040482 _____ () C:\WINDOWS\KB968389.log
    2014-02-21 07:19 - 2012-08-28 17:26 - 00040053 _____ () C:\WINDOWS\KB975467.log
    2014-02-21 06:58 - 2012-08-28 17:42 - 00032343 _____ () C:\WINDOWS\KB978706.log
    2014-02-21 06:38 - 2005-08-29 01:49 - 00016832 _____ () C:\WINDOWS\system32\amcompat.tlb
    2014-02-21 06:38 - 2005-08-29 01:49 - 00023392 _____ () C:\WINDOWS\system32\nscompat.tlb
    2014-02-21 06:36 - 2012-07-30 17:09 - 00000794 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Movie Maker.lnk
    2014-02-21 06:36 - 2005-08-29 01:47 - 00000000 ___RD () C:\Documents and Settings\Default User\Start Menu\Programs\Accessories
    2014-02-21 06:19 - 2012-08-01 19:29 - 00000000 ____D () C:\Program Files\NVIDIA Corporation
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\Antivirus.Evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\Internet.evt
    2014-02-21 06:09 - 2014-02-21 06:09 - 00065536 _____ () C:\WINDOWS\system32\config\NetLimit.evt
    2014-02-21 05:36 - 2014-02-05 09:18 - 00003814 _____ () C:\WINDOWS\system32\nvAppTimestamps
    2014-02-21 02:32 - 2014-02-19 11:35 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\X-Chat 2
    2014-02-19 11:55 - 2014-02-19 11:18 - 00000000 ____D () C:\Program Files\xchat
    2014-02-19 02:15 - 2012-03-09 01:37 - 00000000 ____D () C:\Documents and Settings\Admin\VirtualBox VMs
    2014-02-18 04:41 - 2014-02-18 04:41 - 00201274 _____ () C:\Documents and Settings\Admin\Desktop\f6flpy3288.zip
    2014-02-18 02:00 - 2014-02-07 20:45 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
    2014-02-15 01:33 - 2014-02-15 01:33 - 00000000 ____D () C:\Program Files\Mozilla Firefox
    2014-02-12 14:04 - 2014-02-12 14:06 - 00532549 _____ (www.cozli.com) C:\Documents and Settings\Admin\Desktop\WBICreator.exe
    2014-02-11 13:16 - 2014-02-11 13:16 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\IVONA
    2014-02-11 13:16 - 2014-02-11 13:16 - 00000000 ____D () C:\Program Files\IVONA
    2014-02-11 12:22 - 2014-02-11 12:16 - 00000000 ____D () C:\Program Files\dspeech
    2014-02-09 16:05 - 2014-02-09 16:05 - 01864872 _____ () C:\Documents and Settings\Admin\Desktop\dspeech.zip
    2014-02-09 14:35 - 2014-02-09 13:41 - 00002513 _____ () C:\Documents and Settings\Admin\Start Menu\Programs\Text2Go.lnk
    2014-02-09 13:42 - 2014-02-09 13:42 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\Tumbywood Software
    2014-02-09 13:42 - 2014-02-09 13:42 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Tumbywood_Software
    2014-02-09 13:41 - 2014-02-09 13:41 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Tumbywood Software
    2014-02-09 13:41 - 2014-02-09 13:41 - 00000000 ____D () C:\Program Files\Tumbywood Software
    2014-02-08 18:08 - 2014-02-08 16:38 - 00000000 ____D () C:\Program Files\Resource Hacker
    2014-02-08 16:38 - 2014-02-08 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Resource Hacker
    2014-02-07 21:17 - 2014-02-07 21:17 - 00000324 _____ () C:\Documents and Settings\Admin\2014-02-08-04-17-12.092-VirtualBox.exe-8756.log
    2014-02-07 20:45 - 2014-02-07 20:45 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Mozilla
    2014-02-07 13:37 - 2008-02-12 14:40 - 00000000 ____D () C:\Program Files\megui
    2014-02-05 09:50 - 2007-01-12 14:14 - 00000000 ____D () C:\Program Files\X-NetStat Professional
    2014-02-05 09:18 - 2014-02-05 09:18 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\NVIDIA
    2014-02-05 09:14 - 2012-08-01 19:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NVIDIA
    2014-02-05 09:14 - 2012-08-01 19:31 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\NVIDIA Corporation
    2014-02-05 09:13 - 2014-02-05 09:13 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\NVIDIA Corporation
    2014-02-05 09:13 - 2014-02-05 09:13 - 00000000 ____D () C:\Program Files\AGEIA Technologies
    2014-02-05 09:10 - 2012-08-05 15:11 - 00000000 ____D () C:\Documents and Settings\UpdatusUser.XP1
    2014-02-05 09:10 - 2012-08-05 15:11 - 00000178 ___SH () C:\Documents and Settings\UpdatusUser.XP1\ntuser.ini
    2014-02-05 08:53 - 2005-08-30 01:57 - 00000000 ____D () C:\Documents and Settings\Administrator
    2014-02-05 08:53 - 2005-08-29 01:55 - 00000000 __SHD () C:\Documents and Settings\LocalService
    2014-02-05 08:53 - 2005-08-29 01:55 - 00000000 __SHD () C:\Documents and Settings\NetworkService
    2014-02-05 08:49 - 2012-07-11 11:27 - 00000000 ____D () C:\Program Files\Acronis
    2014-02-04 19:09 - 2012-08-28 19:01 - 85946576 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
    2014-02-04 15:38 - 2014-02-04 15:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Acronis
    2014-02-04 11:31 - 2013-08-14 19:07 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\TrueCrypt
    2014-02-03 14:51 - 2014-02-03 14:51 - 00085836 _____ () C:\Documents and Settings\Admin\2014-02-03-21-51-24.045-VirtualBox.exe-31088.log
    2014-02-03 09:14 - 2008-12-10 04:16 - 00000000 ____D () C:\Program Files\MSU Video Quality Measurement Tool
     
  18. 2014/02/28
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    2014-02-03 08:53 - 2007-11-09 20:34 - 00000000 ____D () C:\Documents and Settings\Admin\.gimp-2.4
    2014-02-03 08:53 - 2014-02-03 08:53 - 00031610 _____ () C:\Documents and Settings\Admin\.recently-used.xbel
    2014-02-03 08:21 - 2007-11-16 09:25 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\gtk-2.0
    2014-02-03 07:53 - 2013-04-21 00:35 - 00000132 _____ () C:\Documents and Settings\Admin\Application Data\Adobe PNG Format CS6 Prefs
    2014-02-02 18:47 - 2013-08-25 05:31 - 00000025 _____ () C:\Documents and Settings\Admin\coutndown hibernate.bat
    2014-02-02 18:47 - 2013-08-25 05:40 - 00087616 _____ (Systems Internals) C:\WINDOWS\PSSDNSVC.EXE
    2014-02-02 15:49 - 2005-08-29 02:04 - 00000000 ____D () C:\Program Files\Winamp
    2014-02-02 15:39 - 2013-02-28 14:33 - 00000000 ____D () C:\Documents and Settings\Admin\Application Data\CloneSpy
    2014-02-02 14:13 - 2013-10-19 01:57 - 00001582 _____ () C:\Documents and Settings\Admin\Application Data\MPQEditor.ini
    2014-02-02 13:14 - 2014-02-02 13:14 - 00448512 _____ (OldTimer Tools) C:\Documents and Settings\Admin\Desktop\TFC.exe
    2014-02-02 04:30 - 2014-02-02 04:30 - 00000000 ____D () C:\Documents and Settings\Admin\Start Menu\Programs\CloneSpy
    2014-02-01 16:37 - 2005-09-03 16:44 - 00000000 ____D () C:\Documents and Settings\Admin\Local Settings\Application Data\Adobe
    2014-01-30 11:27 - 2013-01-10 14:47 - 00000284 _____ () C:\WINDOWS\Tasks\AppleSoftwareUpdate.job
    2014-01-29 14:55 - 2006-09-03 15:01 - 00000000 ____D () C:\Program Files\PeerGuardian2


    Files to move or delete:
    ====================


    Some content of TEMP:
    ====================
    C:\Documents and Settings\Admin\Local Settings\Temp\MsgPlusUninstall.exe
    C:\Documents and Settings\Admin\Local Settings\Temp\ntdll_dump.dll
    C:\Documents and Settings\Admin\Local Settings\Temp\Quarantine.exe
    C:\Documents and Settings\Admin\Local Settings\Temp\Update_f678.exe


    ==================== Bamital & volsnap Check =================

    C:\WINDOWS\explorer.exe => MD5 is legit
    C:\WINDOWS\system32\winlogon.exe => MD5 is legit
    C:\WINDOWS\system32\svchost.exe => MD5 is legit
    C:\WINDOWS\system32\services.exe => MD5 is legit
    C:\WINDOWS\system32\User32.dll => MD5 is legit
    C:\WINDOWS\system32\userinit.exe => MD5 is legit
    C:\WINDOWS\system32\rpcss.dll
    [2008-04-14 05:00] - [2008-04-14 05:00] - 0399360 ____A (Microsoft Corporation) 2589fe6015a316c0f5d5112b4da7b509

    ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
    C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit

    ==================== End Of Log ============================

    Additional scan result of Farbar Recovery Scan Tool (x86) Version: 26-02-2014
    Ran by Admin at 2014-02-26 05:22:53
    Running from C:\Documents and Settings\Admin\Desktop
    Boot Mode: Normal
    ==========================================================


    ==================== Security Center ========================

    AV: Avira Desktop (Disabled - Up to date) {AD166499-45F9-482A-A743-FDD3350758C7}
    AV: avast! antivirus 4.8.1229 [VPS 081102-0] (Disabled - Up to date) {7591DB91-41F0-48A3-B128-1A293FD8233D}
    FW: COMODO Firewall (Disabled) {043803A3-4F86-4ef6-AFC5-F6E02A79969B}

    ==================== Installed Programs ======================

    7-Zip 4.23 (HKLM\...\7-Zip) (Version: - )
    Ableton Live 9 Suite (HKLM\...\{A8D189F5-A5BD-4F59-94C3-BD39662B96F7}) (Version: 9.0.0.0 - Ableton)
    ACDSee 32 (HKLM\...\ACDSee 32) (Version: - )
    Adobe Flash Player 12 ActiveX (HKLM\...\Adobe Flash Player ActiveX) (Version: 12.0.0.70 - Adobe Systems Incorporated)
    Adobe Flash Player 12 Plugin (HKLM\...\Adobe Flash Player Plugin) (Version: 12.0.0.70 - Adobe Systems Incorporated)
    Adobe Photoshop CS6 (HKLM\...\{74EB3499-8B95-4B5C-96EB-7B342F3FD0C6}) (Version: 13.0 - Adobe Systems Incorporated)
    Adobe Reader 6.0 (HKLM\...\{AC76BA86-7AD7-1033-7B44-000000000001}) (Version: 6.0 - Adobe Systems Incorporated)
    Adobe Shockwave Player (HKLM\...\Adobe Shockwave Player) (Version: 10.1.3.18 - Adobe Systems, Inc.)
    Advanced RAR Password Recovery (remove only) (HKLM\...\Advanced RAR Password Recovery) (Version: - )
    Advanced ZIP Password Recovery (HKLM\...\Advanced ZIP Password Recovery) (Version: - )
    AOL Instant Messenger (HKLM\...\AOL Instant Messenger) (Version: - )
    AOpen FM56-SV Soft PCI Modem (HKLM\...\CNXT_MODEM_PCI_VEN_14F1&DEV_2F01&SUBSYS_00C1A0A0) (Version: - )
    Apple Application Support (HKLM\...\{F5266D28-E0B2-4130-BFC5-EE155AD514DC}) (Version: 2.3 - Apple Inc.)
    Apple Software Update (HKLM\...\{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}) (Version: 2.1.3.127 - Apple Inc.)
    Arena 3.0 (HKLM\...\Arena 3.0_is1) (Version: - )
    ArtMoney SE v7.22 (HKLM\...\ArtMoney SE_is1) (Version: 7.22 - System SoftLab)
    AudioPaint (HKLM\...\{7E9F464A-4118-4A5D-85D9-F50FDAD1754F}) (Version: 1.0.0 - Nicolas Fournel)
    AutoHotkey 1.0.48.05 (HKLM\...\AutoHotkey) (Version: 1.0.48.05 - Chris Mallett)
    Avidemux 2.4 (HKLM\...\Avidemux 2.4) (Version: 2.4 - )
    Avidemux 2.6 (32-bit) (HKLM\...\Avidemux 2.6) (Version: 2.6.1.8321 - )
    AviSynth 2.5 (HKLM\...\AviSynth) (Version: - )
    Bandwidth Monitor Pro (HKLM\...\Bandwidth Monitor Pro) (Version: - )
    Bink and Smacker (HKLM\...\Bink and Smacker) (Version: - )
    BitComet 1.00 (HKLM\...\BitComet) (Version: 1.00 - ~RnySmile~)
    Blaze Media Pro (Version: 6.0 - Mystik Media) Hidden
    BurnInTest v7.1 Pro (HKLM\...\BurnInTest_is1) (Version: 7.1 - Passmark Software)
    Cedocida DV Codec (HKLM\...\cedocida) (Version: - )
    CloneSpy 3.1 (HKLM\...\CloneSpy) (Version: 3.1 - The CloneSpy Team)
    Corel Applications (HKLM\...\Corel Applications) (Version: - )
    Cryptosystem ME6 7.31 (HKLM\...\Cryptosystem ME6 7.31_is1) (Version: - Hermetic Systems)
    Cryptosystem ME6 7.62 (HKLM\...\Cryptosystem ME6 7.62_is1) (Version: - Hermetic Systems)
    CrystalDiskMark 3.0.2f (HKLM\...\CrystalDiskMark_is1) (Version: 3.0.2f - Crystal Dew World)
    DataNumen RAR Repair v2.1 (HKLM\...\DataNumen RAR Repair v2.1) (Version: - )
    Dead Disc Doctor (HKLM\...\{E5682FDA-E8C5-497D-ADE0-F5B2089940D5}) (Version: 1.32 - Dead Disc Doctor)
    DiamondCS Port Explorer v2.000 (HKLM\...\DiamondCS Port Explorer_is1) (Version: - DiamondCS)
    Disktrix UltimateDefrag (HKLM\...\UltimateDefrag) (Version: - )
    Disktrix UltimateDefrag 3.0 (HKLM\...\3.0.100.39_is1) (Version: 3.0.100.39 - DiskTrix Inc)
    Download Accelerator Plus Beta (HKLM\...\Download Accelerator Plus Beta) (Version: - )
    EaseUS Data Recovery Wizard 6.1 (HKLM\...\EaseUS Data Recovery Wizard 6.1_is1) (Version: - EaseUS)
    EaseUS Partition Master 9.2.2 (HKLM\...\EaseUS Partition Master_is1) (Version: - EaseUS)
    EASEUS Partition Recovery 5.0.1 (HKLM\...\EASEUS Partition Recovery_is1) (Version: - EASEUS)
    Eassos PartitionGuru Professional 3.7.0 (HKLM\...\{FC4FF5F4-2265-4E18-8BBC-12CBA9794388}_is1) (Version: - Eassos Co., Ltd.)
    Ethereal 0.99.0 (HKLM\...\Ethereal) (Version: 0.99.0 - The Ethereal developer community, http://www.ethereal.com)
    Fraps (HKLM\...\Fraps) (Version: - )
    Free Countdown Timer 2.7.2 (HKLM\...\{404245D0-E836-4737-9C12-D4D0034540F5}_is1) (Version: 2.7 - Comfort Software Group)
    Free Fire Screensaver (HKLM\...\Free Fire Screensaver) (Version: - Laconic Software)
    FreshUI (HKLM\...\FreshDevices - FreshUI_is1) (Version: - )
    GameCheater 1.2 (HKLM\...\GameCheater 1.2) (Version: 1.2 - Boosted Soft Inc)
    GIMP 2.4.1 (HKLM\...\WinGimp-2.0_is1) (Version: - )
    Gimp 2.8.1 (HKLM\...\Gimp) (Version: 2.8.1 - Partha Bagchi)
    HashCheck Shell Extension (x86-32) (HKLM\...\HashCheck Shell Extension) (Version: 2.1.11.1 - Kai Liu)
    Hermetic Stego 5.17 (HKLM\...\Hermetic Stego 5.17_is1) (Version: - Hermetic Systems)
    HWiNFO32 Version 4.22 (HKLM\...\HWiNFO32_is1) (Version: 4.22 - Martin Malík - REALiX)
    iolo technologies' System Mechanic Professional 6 (HKLM\...\System Mechanic Professional 6_is1) (Version: 6.0n - iolo technologies, LLC)
    IVONA 2 (HKLM\...\IVONA 2) (Version: 1.6.60 - IVONA Software Sp. z o.o.)
    J2SE Runtime Environment 5.0 Update 6 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0150060}) (Version: 1.5.0.60 - Sun Microsystems, Inc.)
    Java(TM) 6 Update 3 (HKLM\...\{3248F0A8-6813-11D6-A77B-00B0D0160030}) (Version: 1.6.0.30 - Sun Microsystems, Inc.)
    JDownloader 0.9 (HKLM\...\jdownloader09) (Version: 0.9 - AppWork GmbH)
    JGsoft EditPad Pro 6 v.6.4.5 (HKLM\...\EditPad Pro 6) (Version: v.6.4.5 - JGsoft)
    KhalSetup (Version: 3.0.101 - Logitech) Hidden
    K-Lite Mega Codec Pack 10.2.0 (HKLM\...\KLiteCodecPack_is1) (Version: 10.2.0 - )
    Logitech SetPoint (HKLM\...\{2E8EAC71-BFE4-417A-88F0-5A1BDFBCF5D3}) (Version: 3.0 - Logitech)
    Magic ISO Maker v5.3 (build 0221) (HKLM\...\Magic ISO Maker v5.3 (build 0221)) (Version: - )
    Malwarebytes Anti-Malware version 1.75.0.1300 (HKLM\...\Malwarebytes' Anti-Malware_is1) (Version: 1.75.0.1300 - Malwarebytes Corporation)
    MediaInfo 0.7.64 (HKLM\...\MediaInfo) (Version: 0.7.64 - MediaArea.net)
    MeGUI modern media encoder (remove only) (HKLM\...\MeGUI modern media encoder) (Version: - )
    Messenger Plus! (HKLM\...\Messenger Plus!) (Version: 6.00.0.775 - Yuna Software)
    Messenger Plus! 3 (HKLM\...\MsgPlus! Plugin) (Version: - )
    Microsoft .NET Framework 2.0 Service Pack 2 (HKLM\...\{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}) (Version: 2.2.30729 - Microsoft Corporation)
    Microsoft .NET Framework 3.0 Service Pack 2 (HKLM\...\{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}) (Version: 3.2.30729 - Microsoft Corporation)
    Microsoft .NET Framework 3.5 SP1 (HKLM\...\Microsoft .NET Framework 3.5 SP1) (Version: - Microsoft Corporation)
    Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729 - Microsoft Corporation) Hidden
    Microsoft .NET Framework 4 Client Profile (HKLM\...\Microsoft .NET Framework 4 Client Profile) (Version: 4.0.30319 - Microsoft Corporation)
    Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319 - Microsoft Corporation) Hidden
    Microsoft .NET Framework 4 Extended (HKLM\...\Microsoft .NET Framework 4 Extended) (Version: 4.0.30319 - Microsoft Corporation)
    Microsoft .NET Framework 4 Extended (Version: 4.0.30319 - Microsoft Corporation) Hidden
    Microsoft Application Error Reporting (Version: 12.0.6012.5000 - Microsoft Corporation) Hidden
    Microsoft Choice Guard (Version: 2.0.48.0 - Microsoft Corporation) Hidden
    Microsoft Office Professional Edition 2003 (HKLM\...\{90110409-6000-11D3-8CFE-0150048383C9}) (Version: 11.0.5614.0 - Microsoft Corporation)
    Microsoft Platform SDK (3790.1830) (HKLM\...\{BA96A695-E9CE-4B2A-919A-540B73E7A78E}) (Version: 5.2.3790.1830 - Microsoft Corporation)
    Microsoft Virtual PC 2007 SP1 (HKLM\...\{AD483998-2E9A-4405-83FF-6E503AF49CBB}) (Version: 6.0.192.0 - Microsoft Corporation)
    Microsoft Visual C++ 2005 Redistributable (HKLM\...\{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}) (Version: 8.0.61001 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (HKLM\...\{9A25302D-30C0-39D9-BD6F-21E6EC160475}) (Version: 9.0.30729 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (HKLM\...\{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}) (Version: 9.0.30729.4148 - Microsoft Corporation)
    Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (HKLM\...\{9BE518E6-ECC6-35A9-88E4-87755C07200F}) (Version: 9.0.30729.6161 - Microsoft Corporation)
    Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 (HKLM\...\{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}) (Version: 10.0.40219 - Microsoft Corporation)
    Microsoft Visual C++ 6.0 Standard Edition (HKLM\...\Visual C++ 6.0 Standard Edition) (Version: - )
    Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053 - Adobe) Hidden
    Microsoft_VC90_CRT_x86 (Version: 1.00.0000 - Adobe) Hidden
    MIDI Yoke (HKLM\...\{CCB3F587-BAD0-4F32-99FC-301E6F9ABAB4}) (Version: 1.75.53 - JOConnell)
    Midi2Wav Recorder (HKLM\...\Midi2Wav Recorder) (Version: - )
    MKVToolNix 6.7.0 [20140102-565] (HKLM\...\MKVToolNix) (Version: 6.7.0 - Moritz Bunkus)
    Mozilla Firefox 27.0.1 (x86 en-US) (HKLM\...\Mozilla Firefox 27.0.1 (x86 en-US)) (Version: 27.0.1 - Mozilla)
    Mozilla Maintenance Service (HKLM\...\MozillaMaintenanceService) (Version: 27.0.1 - Mozilla)
    Mpeg Layer3 Codec FHG-Radium v1.263 (HKLM\...\Mp3 Codec) (Version: - )
    MSVCRT (Version: 14.0.1468.721 - Microsoft) Hidden
    MSXML 4.0 SP2 (KB954430) (HKLM\...\{86493ADD-824D-4B8E-BD72-8C5DCDC52A71}) (Version: 4.20.9870.0 - Microsoft Corporation)
    MSXML 4.0 SP2 (KB973688) (HKLM\...\{F662A8E6-F4DC-41A2-901E-8C11F044BDEC}) (Version: 4.20.9876.0 - Microsoft Corporation)
    MSXML 6.0 Parser (KB927977) (HKLM\...\{5A710547-B58E-488B-828D-CA9A25A0533C}) (Version: 6.00.3890.0 - Microsoft Corporation)
    Music MasterWorks v3.60 (HKLM\...\Music MasterWorks_is1) (Version: - )
    NCH Tone Generator (HKLM\...\ToneGen) (Version: - NCH Swift Sound)
    Nero 6 (HKLM\...\Nero - Burning Rom!UninstallKey) (Version: - )
    NetConceal Anonymizer (HKLM\...\NetConceal Anonymizer) (Version: - )
    Ninotech Date Edit 4.0 (HKLM\...\Ninotech Date Edit) (Version: - )
    NirSoft ShellExView (HKLM\...\NirSoft ShellExView) (Version: - )
    Notepad++ (HKLM\...\Notepad++) (Version: - )
    NVIDIA Control Panel 306.81 (Version: 306.81 - NVIDIA Corporation) Hidden
    NVIDIA GeForce Experience 1.8.1 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience) (Version: 1.8.1 - NVIDIA Corporation)
    NVIDIA Graphics Driver 306.81 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver) (Version: 306.81 - NVIDIA Corporation)
    NVIDIA Install Application (Version: 2.1002.142.992 - NVIDIA Corporation) Hidden
    NVIDIA Network Service (Version: 1.0 - NVIDIA Corporation) Hidden
    NVIDIA nView 136.28 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView) (Version: 136.28 - NVIDIA Corporation)
    NVIDIA PhysX (Version: 9.13.0725 - NVIDIA Corporation) Hidden
    NVIDIA PhysX System Software 9.13.0725 (HKLM\...\{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX) (Version: 9.13.0725 - NVIDIA Corporation)
    NVIDIA Update 10.11.15 (Version: 10.11.15 - NVIDIA Corporation) Hidden
    NVIDIA Update Core (Version: 10.11.15 - NVIDIA Corporation) Hidden
    Oracle VM VirtualBox 4.2.6 (HKLM\...\{8FDEDFA3-C1F2-4A8D-8727-7759D4C433E4}) (Version: 4.2.6 - Oracle Corporation)
    Oracle VM VirtualBox Guest Additions 4.1.8 (HKLM\...\Oracle VM VirtualBox Guest Additions) (Version: 4.1.8.0 - Oracle Corporation)
    Osmo4/GPAC (remove only) (HKLM\...\Osmo4) (Version: - )
    PasswordTools (HKLM\...\PasswordTools) (Version: - )
    PDF Settings CS6 (Version: 11.0 - Adobe Systems Incorporated) Hidden
    PeerBlock 1.2 (r693) (HKLM\...\{015C5B35-B678-451C-9AEE-821E8D69621C}_is1) (Version: 1.2.0.693 - PeerBlock, LLC)
    PeerGuardian 2.0 (HKLM\...\PeerGuardian_is1) (Version: 2.0.6.4 - Methlabs Productions)
    PerformanceTest v7.0 (HKLM\...\PerformanceTest 7_is1) (Version: 7.0 - Passmark Software)
    PerformanceTest v8.0 (HKLM\...\PerformanceTest 8_is1) (Version: 8.0.1019.0 - Passmark Software)
    PowerDVD (HKLM\...\{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}) (Version: - )
    PowerISO (HKLM\...\PowerISO) (Version: - )
    Privoxy 3.0.6 (HKLM\...\Privoxy) (Version: - )
    Project64 1.6 (HKLM\...\{9559F7CA-5E34-4237-A2D9-D856464AD727}) (Version: 1.6 - Project64)
    Python 2.5.2 (HKLM\...\{6B976ADF-8AE8-434E-B282-A06C7F624D2F}) (Version: 2.5.2150 - Python Software Foundation)
    QuickTime (HKLM\...\{B67BAFBA-4C9F-48FA-9496-933E3B255044}) (Version: 7.74.80.86 - Apple Inc.)
    Realtek High Definition Audio Driver (HKLM\...\{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}) (Version: 5.10.0.5973 - Realtek Semiconductor Corp.)
    Renesas Electronics USB 3.0 Host Controller Driver (HKLM\...\InstallShield_{17528CE4-C333-48FB-A9E4-D841E795CDCE}) (Version: 3.0.23.0 - Renesas Electronics Corporation)
    Renesas Electronics USB 3.0 Host Controller Driver (HKLM\...\InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}) (Version: 2.1.39.0 - Renesas Electronics Corporation)
    Renesas Electronics USB 3.0 Host Controller Driver (Version: 2.1.39.0 - Renesas Electronics Corporation) Hidden
    Renesas Electronics USB 3.0 Host Controller Driver (Version: 3.0.23.0 - Renesas Electronics Corporation) Hidden
    Resource Hacker Version 3.6.0 (HKLM\...\ResourceHacker_is1) (Version: - )
    ScAIEdit III (HKLM\...\ScAIEdit III) (Version: - )
    Segoe UI (Version: 14.0.4327.805 - Microsoft Corp) Hidden
    Sony Ericsson PC Suite (HKLM\...\{26B5D684-75D6-44B9-BBFF-D4100F43092A}) (Version: 1.30.8 - Sony Ericsson)
    Sony Noise Reduction Plug-In 2.0h (HKLM\...\{06A1BE8A-4CA4-4A39-B9E4-E815AA8FE05C}) (Version: 2.0.451 - Sony)
    Sony Sound Forge 9.0 (HKLM\...\{4AEA9A23-D627-4699-8A0F-FC474308C2E6}) (Version: 9.0.441 - Sony)
    SoundMAX (HKLM\...\{F0A37341-D692-11D4-A984-009027EC0A9C}) (Version: 5.12.01.3665 - Analog Devices)
    Sp5 (Version: 5.1.4324.0 - Microsoft) Hidden
    Sp5Intl (Version: 5.1.4324.0 - Microsoft) Hidden
    Sp5TTInt (Version: 5.1.4324.0 - Microsoft) Hidden
    SpCommon (Version: 5.1.4324.0 - Microsoft) Hidden
    SpPhones (Version: 6.0.3122.0 - Microsoft) Hidden
    StarCraft (HKLM\...\StarCraft) (Version: - Blizzard Entertainment)
    StarCraft II (HKLM\...\StarCraft II) (Version: 2.0.6.25180 - Blizzard Entertainment)
    StarCraft X-tra Editor Version 2.5 (HKLM\...\StarCraft X-tra Editor (Professional Edition)_is1) (Version: 2.5 - Camelot Systems)
    StealthNet 0.8.1.3 (HKLM\...\StealthNet_is1) (Version: - The StealthNet Team)
    Sweet Plumcot (HKLM\...\Sweet Plumcot) (Version: - )
    SysTracer v2.4 (HKLM\...\SysTracer) (Version: - Blue Project Software)
    Tag&Rename 3.4.6 (HKLM\...\Tag&Rename_is1) (Version: 3.4.6 - Softpointer Inc)
    TCC LE 13.0 (HKLM\...\TCC LE 13.0 13.06.77) (Version: 13.06.77 - JP Software)
    TCC LE 13.0 (Version: 13.06.77 - JP Software) Hidden
    Text2Go (HKLM\...\{74F15BB4-5DA6-4DDE-A091-F8DEE3C9E425}) (Version: 1.0.0 - Tumbywood Software)
    Tracks Eraser Pro v5.5 (HKLM\...\Tracks Eraser Pro_is1) (Version: - Acesoft, Inc.)
    TreeSize Professional 4.3.2 (HKLM\...\TreeSize Professional_is1) (Version: - JAM Software)
    Trillian (HKLM\...\Trillian) (Version: - )
    TrueCrypt (HKLM\...\TrueCrypt) (Version: 7.1a - TrueCrypt Foundation)
    Tweak UI (HKLM\...\Tweak UI 2.10) (Version: - )
    UltimateDefrag 2008 (HKLM\...\UltimateDefrag 2008) (Version: 2.0.0.53 - DiskTrix)
    UltraISO Premium V9.36 (HKLM\...\UltraISO_is1) (Version: - )
    Unlocker 1.9.0 (HKLM\...\Unlocker) (Version: 1.9.0 - Cedrick Collomb)
    Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (HKLM\...\{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}.KB963707) (Version: 1 - Microsoft Corporation)
    Update for Windows XP (KB955704) (HKLM\...\KB955704) (Version: 1 - Microsoft Corporation)
    VLC media player 2.0.5 (HKLM\...\VLC media player) (Version: 2.0.5 - VideoLAN)
    VobSub v2.23 (Remove Only) (HKLM\...\VobSub) (Version: - )
    Voice Converter version 1.0 (HKCU\...\{801A00A1-4DFF-4D92-8D4B-96AC89731309}_is1) (Version: 1.0 - Voice·F0)
    Vuze (HKLM\...\8461-7759-5462-8226) (Version: 4.8.1.2 - Azureus Software, Inc.)
    Wav2MP3 n1.0.16 - i1.0.04 (HKLM\...\Wav2MP3 Wizard_is1) (Version: - )
    WebFldrs XP (Version: 9.50.7523 - Microsoft Corporation) Hidden
    Winamp (HKLM\...\Winamp) (Version: 5.666 - Nullsoft, Inc)
    Winamp Detector Plug-in (HKCU\...\Winamp Detect) (Version: 1.0.0.1 - Nullsoft, Inc)
    WinDirStat 1.1.2 (HKCU\...\WinDirStat) (Version: - )
    Windows Live Call (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
    Windows Live Communications Platform (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
    Windows Live Essentials (HKLM\...\WinLiveSuite_Wave3) (Version: 14.0.8117.0416 - Microsoft Corporation)
    Windows Live Essentials (Version: 14.0.8117.416 - Microsoft Corporation) Hidden
    Windows Live Messenger (Version: 14.0.8117.0416 - Microsoft Corporation) Hidden
    Windows Media Format Runtime (HKLM\...\Windows Media Format Runtime) (Version: - )
    Windows Password (HKLM\...\Windows Password) (Version: - )
    Windows PowerShell(TM) 1.0 (HKLM\...\KB926139-v2) (Version: 2 - Microsoft Corporation)
    Windows Presentation Foundation (Version: 3.0.6920.0 - Microsoft Corporation) Hidden
    Windows Resource Kit Tools - SubInAcl.exe (HKLM\...\{D3EE034D-5B92-4A55-AA02-2E6D0A6A96EE}) (Version: 5.2.3790.1164 - Microsoft Corporation)
    Windows Resource Kit Tools (HKLM\...\{FA237125-51FF-408C-8BB8-30C2B3DFFF9C}) (Version: 5.2.3790 - Microsoft Corporation)
    WinRAR 5.01 (32-bit) (HKLM\...\WinRAR archiver) (Version: 5.01.0 - win.rar GmbH)
    x264vfw - H.264/MPEG-4 AVC codec (remove only) (HKLM\...\x264vfw) (Version: - )
    XML Paper Specification Shared Components Pack 1.0 (Version: - Microsoft Corporation) Hidden
    XXConsole: Super Console Generator ver 0.96 (HKLM\...\XXConsole) (Version: 0.96 - Pixelab, Inc.)
    XYplorer 11.50 (HKLM\...\XYplorer) (Version: 11.50 - Donald Lessau)
    YTD Video Downloader 3.9.6 (HKLM\...\{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}) (Version: 3.9.6 - GreenTree Applications SRL)
    zbattle.net 1.09 SR-1 beta (HKLM\...\zbattle.net_is1) (Version: - )
    ZD-spc (HKLM\...\ZD-spc_is1) (Version: - )

    ==================== Restore Points =========================

    22-02-2014 13:07:54 Removed Norton Ghost
    23-02-2014 10:03:27 Installed Windows XP KB955704.
    23-02-2014 12:39:29 Removed TurboV
    23-02-2014 12:41:35 Removed COMODO Internet Security
    23-02-2014 12:44:18 Removed Logitech QuickCam
    23-02-2014 12:53:49 Installed Windows XP KB955704.
    23-02-2014 13:02:57 Removed GPU Boost Driver
    23-02-2014 13:10:01 Removed PC Probe II
    23-02-2014 13:10:30 Removed AI Suite
    23-02-2014 13:11:11 Removed ASUSUpdate
    23-02-2014 14:56:59 Installed Windows XP KB955704.
    23-02-2014 18:12:35 Installed Realtek High Definition Audio Driver
    23-02-2014 18:20:21 Installed Realtek High Definition Audio Driver
    23-02-2014 18:36:46 Installed Realtek High Definition Audio Driver
    23-02-2014 22:56:42 Removed Skypeâ„¢ 6.14
    24-02-2014 14:16:36 burnin
    25-02-2014 14:06:41 SPTD setup V1.50
    25-02-2014 14:21:49 malwarebytes rootkit remove
    25-02-2014 15:09:37 Malwarebytes Anti-Rootkit Restore Point
    25-02-2014 15:53:23 Malwarebytes Anti-Rootkit Restore Point
    25-02-2014 22:28:00 Removed Windows Live Sign-in Assistant
    25-02-2014 22:30:39 Removed Windows Live Upload Tool
    25-02-2014 22:31:24 Removed Skypeâ„¢ 6.14
    25-02-2014 23:06:31 Removed Original CD Emulator Personal Edition

    ==================== Hosts content: ==========================

    2001-08-23 08:00 - 2001-08-23 08:00 - 00000734 ____A C:\WINDOWS\system32\Drivers\etc\hosts
    127.0.0.1 localhost

    ==================== Scheduled Tasks (whitelisted) =============

    Task: C:\WINDOWS\Tasks\Adobe Flash Player Updater.job => C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
    Task: C:\WINDOWS\Tasks\AppleSoftwareUpdate.job => C:\Program Files\Apple Software Update\SoftwareUpdate.exe

    ==================== Loaded Modules (whitelisted) =============

    2007-11-08 21:25 - 2005-11-08 11:04 - 00386560 _____ () C:\Program Files\iolo\System Mechanic Professional 6\SystemGuardAlerter.exe
    2014-02-25 07:12 - 2007-09-27 10:16 - 00035840 _____ () C:\Program Files\DAEMON Tools Pro\cryptapi.dll
    2007-09-06 06:08 - 2007-09-06 06:08 - 00053248 _____ () C:\Program Files\DAEMON Tools Pro\Lang\ENU.dll
    2007-04-04 17:59 - 2007-04-04 17:59 - 00007680 _____ () C:\Program Files\DAEMON Tools Pro\Plugins\Images\bw5mount.dll
    2007-11-08 21:25 - 2005-11-08 11:04 - 00195584 _____ () C:\Program Files\iolo\System Mechanic Professional 6\IoloSGCtrl.exe
    2008-04-28 23:54 - 2008-04-29 00:05 - 00327680 _____ () C:\Program Files\DAP\DAPIEBar.dll

    ==================== Alternate Data Streams (whitelisted) =========

    AlternateDataStreams: C:\Documents and Settings\Admin\DJ Shog - Stranger on this planet (Vocal Mix).mp4:SummaryInformation
    AlternateDataStreams: C:\Documents and Settings\Admin\DJ Shog - Stranger on this planet (Vocal Mix).mp4:{4c8cc155-6c1e-11d1-8e41-00c04fb9386d}
    AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:3C57BFC0
    AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:4B7BEAFF
    AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:6DFF1A8A
    AlternateDataStreams: C:\Documents and Settings\All Users\Application Data\TEMP:BC359956

    ==================== Safe Mode (whitelisted) ===================

    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm => " "= "Service "
    HKLM\SYSTEM\CurrentControlSet\Control\SafeBoot\Network\nm.sys => " "= "Driver "

    ==================== Disabled items from MSCONFIG ==============

    MSCONFIG\startupfolder: C:^Documents and Settings^Admin^Start Menu^Programs^Startup^Text2Go.lnk => C:\WINDOWS\pss\Text2Go.lnkStartup
    MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Logitech SetPoint.lnk => C:\WINDOWS\pss\Logitech SetPoint.lnkCommon Startup
    MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^PGPtray.exe.lnk => C:\WINDOWS\pss\PGPtray.exe.lnkCommon Startup
    MSCONFIG\startupfolder: C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Privoxy.lnk => C:\WINDOWS\pss\Privoxy.lnkCommon Startup
    MSCONFIG\startupreg: AdobeAAMUpdater-1.0 => "C:\Program Files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe "
    MSCONFIG\startupreg: AdobeBridge =>
    MSCONFIG\startupreg: AdobeCS6ServiceManager => "C:\Program Files\Common Files\Adobe\CS6ServiceManager\CS6ServiceManager.exe" -launchedbylogin
    MSCONFIG\startupreg: AIM => C:\Program Files\AIM\aim.exe -cnetwait.odl
    MSCONFIG\startupreg: APSDaemon => "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe "
    MSCONFIG\startupreg: ASUS Update Checker => C:\Program Files\ASUS\ASUSUpdate\UpdateChecker\UpdateChecker.exe
    MSCONFIG\startupreg: avast! => C:\PROGRA~1\ALWILS~1\Avast4\ashDisp.exe
    MSCONFIG\startupreg: ctfmon.exe => D:\WINDOWS\system32\ctfmon.exe
    MSCONFIG\startupreg: EaseUS EPM tray => C:\Program Files\EaseUS\EaseUS Partition Master 9.2.2\bin\EpmNews.exe
    MSCONFIG\startupreg: Eraser => C:\Program Files\Eraser\eraser.exe -hide
    MSCONFIG\startupreg: ioloDelayModule => C:\Program Files\iolo\System Mechanic Professional 6\delay.exe
    MSCONFIG\startupreg: Logitech Hardware Abstraction Layer => KHALMNPR.EXE
    MSCONFIG\startupreg: LogitechCommunicationsManager => "C:\Program Files\Common Files\LogiShrd\LComMgr\Communications_Helper.exe "
    MSCONFIG\startupreg: LogitechQuickCamRibbon => "C:\Program Files\Logitech\QuickCam10\QuickCam10.exe" /hide
    MSCONFIG\startupreg: MSMSGS => "C:\Program Files\Messenger\msmsgs.exe" /background
    MSCONFIG\startupreg: Norton Ghost 12.0 => "C:\Program Files\Norton Ghost\Agent\VProTray.exe "
    MSCONFIG\startupreg: pg2.exe => C:\Program Files\PeerGuardian2\pg2.exe
    MSCONFIG\startupreg: PWRISOVM.EXE => C:\Program Files\PowerISO\PWRISOVM.EXE
    MSCONFIG\startupreg: QuickTime Task => "C:\Program Files\QuickTime\QTTask.exe" -atboottime
    MSCONFIG\startupreg: Skype => "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
    MSCONFIG\startupreg: SMSystemAnalyzer => "C:\Program Files\iolo\System Mechanic Professional 6\SMSystemAnalyzer.exe "
    MSCONFIG\startupreg: Sony Ericsson PC Suite => "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions
    MSCONFIG\startupreg: SunJavaUpdateSched => C:\Program Files\Java\jre1.5.0_06\bin\jusched.exe
    MSCONFIG\startupreg: SwitchBoard => C:\Program Files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
    MSCONFIG\startupreg: System Mechanic Popup Blocker => "C:\Program Files\iolo\System Mechanic Professional 6\PopupBlocker.exe "
    MSCONFIG\startupreg: Tracks Eraser Pro => C:\Program Files\Acesoft\Tracks Eraser Pro\te.exe min
    MSCONFIG\startupreg: VBoxTray => C:\WINDOWS\system32\VBoxTray.exe
    MSCONFIG\startupreg: Zone Labs Client => C:\PROGRA~1\ZONELA~1\ZONEAL~1\zapro.exe
    MSCONFIG\startupreg: {E08DEE40-05E6-1033-0914-040616010001} => "C:\Program Files\Common Files\{E08DEE40-05E6-1033-0914-040616010001}\Update.exe" mc-110-12-0001291
    MSCONFIG\startupreg: {E08DEE40-05E7-1033-0914-040616010001} => "C:\Program Files\Common Files\{E08DEE40-05E7-1033-0914-040616010001}\Update.exe" mc-110-12-0001291

    ==================== Faulty Device Manager Devices =============

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.

    Name:
    Description:
    Class Guid: {4D36E97E-E325-11CE-BFC1-08002BE10318}
    Manufacturer:
    Service:
    Problem: : The drivers for this device are not installed. (Code 28)
    Resolution: To install the drivers for this device, click "Update Driver ", which starts the Hardware Update wizard.


    ==================== Event log errors: =========================

    Application errors:
    ==================
    Error: (02/22/2014 09:55:02 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.DirectoryServices.AccountManagement, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Configuration, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Configuration, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Xml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Xml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Data.SqlXml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Data.SqlXml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06

    Error: (02/22/2014 09:55:00 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Security, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06

    Error: (02/22/2014 09:55:00 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Security, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06

    Error: (02/22/2014 09:55:00 AM) (Source: .NET Runtime Optimization Service) (User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.DirectoryServices.Protocols, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06


    System errors:
    =============
    Error: (02/21/2014 08:04:48 AM) (Source: Service Control Manager) (User: )
    Description: The following boot-start or system-start driver(s) failed to load:
    VBoxSF

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: The Messenger Plus! Service service failed to start due to the following error:
    %%1053

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: Timeout (30000 milliseconds) waiting for the Messenger Plus! Service service to connect.

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: The COM+ Messages service failed to start due to the following error:
    %%2

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: The Parallel port driver service failed to start due to the following error:
    %%1058

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: The avast! Antivirus service failed to start due to the following error:
    %%2

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: The avast! iAVS4 Control Service service failed to start due to the following error:
    %%2

    Error: (02/21/2014 08:02:24 AM) (Source: Service Control Manager) (User: )
    Description: The VirtualBox Guest Additions Service service failed to start due to the following error:
    %%1053

    Error: (02/21/2014 08:02:23 AM) (Source: Service Control Manager) (User: )
    Description: Timeout (30000 milliseconds) waiting for the VirtualBox Guest Additions Service service to connect.

    Error: (02/21/2014 06:52:21 AM) (Source: Service Control Manager) (User: )
    Description: The following boot-start or system-start driver(s) failed to load:
    VBoxSF


    Microsoft Office Sessions:
    =========================
    Error: (02/22/2014 09:55:02 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.DirectoryServices.AccountManagement, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
    System.DirectoryServices.AccountManagement, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Configuration, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06
    System.Configuration, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Configuration, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06
    System.Configuration, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Xml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
    System.Xml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Xml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
    System.Xml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Data.SqlXml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
    System.Data.SqlXml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

    Error: (02/22/2014 09:55:01 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Data.SqlXml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80131f06
    System.Data.SqlXml, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089

    Error: (02/22/2014 09:55:00 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Security, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06
    System.Security, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

    Error: (02/22/2014 09:55:00 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.Security, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06
    System.Security, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a

    Error: (02/22/2014 09:55:00 AM) (Source: .NET Runtime Optimization Service)(User: )
    Description: .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - 1>Failed to compile: System.DirectoryServices.Protocols, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a . Error code = 0x80131f06
    System.DirectoryServices.Protocols, Version=4.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a


    ==================== Memory info ===========================

    Percentage of memory in use: 15%
    Total physical RAM: 3549.98 MB
    Available physical RAM: 2994.23 MB
    Total Pagefile: 5433.98 MB
    Available Pagefile: 5099.77 MB
    Total Virtual: 2047.88 MB
    Available Virtual: 1950.22 MB

    ==================== Drives ================================

    Drive c: (XP1) (Fixed) (Total:300 GB) (Free:123.43 GB) NTFS ==>[Drive with boot components (Windows XP)]
    Drive d: (GRTMPVOL_EN) (CDROM) (Total:0.58 GB) (Free:0 GB) CDFS
    Drive f: (Lexar) (Removable) (Total:59.64 GB) (Free:0.11 GB) exFAT
    Drive g: (Lexar) (Removable) (Total:59.62 GB) (Free:0.01 GB) exFAT
    Drive i: () (Fixed) (Total:4.01 GB) (Free:1.39 GB) NTFS ==>[Drive with boot components (Windows XP)]
    Drive j: () (Fixed) (Total:199.99 GB) (Free:0 GB) exFAT
    Drive n: () (Fixed) (Total:465.74 GB) (Free:0.06 GB) exFAT
    Drive q: () (Fixed) (Total:20 GB) (Free:0 GB) exFAT
    Drive z: () (Fixed) (Total:499.99 GB) (Free:499.92 GB) NTFS

    ==================== MBR & Partition Table ==================

    ========================================================
    Disk: 0 (MBR Code: Windows XP) (Size: 466 GB) (Disk ID: 9310DBDE)
    Partition 1: (Not Active) - (Size=466 GB) - (Type=OF Extended)

    ========================================================
    Disk: 1 (MBR Code: Windows XP) (Size: 1863 GB) (Disk ID: E82B1ABA)

    Partition: GPT Partition Type.

    ========================================================
    Disk: 2 (Size: 60 GB) (Disk ID: 0304B609)
    Partition 1: (Active) - (Size=60 GB) - (Type=07 NTFS)

    ========================================================
    Disk: 3 (MBR Code: Windows XP) (Size: 60 GB) (Disk ID: C3072E18)

    Partition: GPT Partition Type.

    ==================== End Of Log ============================
     
  19. 2014/02/28
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    [​IMG] Uninstall System Mechanic Professional 6.
    Registry cleaners/optimizers are not recommended for several reasons:

    • Registry cleaners are extremely powerful applications that can damage the registry by using aggressive cleaning routines and cause your computer to become unbootable.

      The Windows registry is a central repository (database) for storing configuration data, user settings and machine-dependent settings, and options for the operating system. It contains information and settings for all hardware, software, users, and preferences. Whenever a user makes changes to settings, file associations, system policies, or installed software, the changes are reflected and stored in this repository. The registry is a crucial component because it is where Windows "remembers" all this information, how it works together, how Windows boots the system and what files it uses when it does. The registry is also a vulnerable subsystem, in that relatively small changes done incorrectly can render the system inoperable. For a more detailed explanation, read Understanding The Registry.
    • Not all registry cleaners are created equal. There are a number of them available but they do not all work entirely the same way. Each vendor uses different criteria as to what constitutes a "bad entry ". One cleaner may find entries on your system that will not cause problems when removed, another may not find the same entries, and still another may want to remove entries required for a program to work.
    • Not all registry cleaners create a backup of the registry before making changes. If the changes prevent the system from booting up, then there is no backup available to restore it in order to regain functionality. A backup of the registry is essential BEFORE making any changes to the registry.
    • Improperly removing registry entries can hamper malware disinfection and make the removal process more difficult if your computer becomes infected. For example, removing malware related registry entries before the infection is properly identified can contribute to system instability and even make the malware undetectable to removal tools.
    • The usefulness of cleaning the registry is highly overrated and can be dangerous. In most cases, using a cleaner to remove obsolete, invalid, and erroneous entries does not affect system performance but it can result in "unpredictable results ".
    Unless you have a particular problem that requires a registry edit to correct it, I would suggest you leave the registry alone. Using registry cleaning tools unnecessarily or incorrectly could lead to disastrous effects on your operating system such as preventing it from ever starting again. For routine use, the benefits to your computer are negligible while the potential risks are great.


    [​IMG] I can see some Avast and Avira leftovers.
    Run this tool to remove Avast leftovers: http://www.avast.com/uninstall-utility
    Run these steps to remove Avira leftovers: http://www.avira.com/en/support-for-home-knowledgebase-detail/kbid/902 (skip step 1)

    [​IMG] In addition to ZeroAccess rootkit you're also infected with Zekos malware. We'll deal with it in a moment.

    [​IMG] Download attached fixlist.txt file and save it to the Desktop.
    NOTE. It's important that both files, FRST and fixlist.txt are in the same location or the fix will not work.

    NOTICE: This script was written specifically for this user, for use on that particular machine. Running this on another machine may cause damage to your operating system

    Run FRST(FRST64) and press the Fix button just once and wait.
    The tool will make a log on the Desktop (Fixlog.txt). Please post it to your reply.

    Restart computer.

    [​IMG] Re-run FRST again.
    Type the following in the edit box after "Search: ".

    rpcss.dll

    Click Search button and post the log (Search.txt) it makes in your reply.
     

    Attached Files:

  20. 2014/03/02
    IndustrialOne

    IndustrialOne Inactive Thread Starter

    Joined:
    2014/02/23
    Messages:
    45
    Likes Received:
    0
    I've resolved my original problem of getting copy errors during repair install/adding windows components but I would like to continue with this and remove the malware from my system which I have a good hunch was the culprit behind the corrupting of my c:\windows\security\database\secedit.sdb

    I don't use the registry tool of System Mechanic, haven't for over 5 years. I use it to make backups of the registry and the numerous other tools it offers. I lost the original installation CD so I can't remove it now or it'll be gone forever and I can't afford the latest one (nor do I desire it, i hate the interface).

    I ran the Avast uninstaller tool but I know it failed to remove the remains. One of its services is still on services.msc, not running though and that's upon immediate inspection. I bet the rest of the files remain despite what the tool claimed it removed.

    Avira I reinstalled because you told me to so no need to mess with it.

    Fix result of Farbar Recovery Tool (FRST written by Farbar) (x86) Version: 02-03-2014 02
    Ran by Admin at 2014-03-02 09:05:23 Run:1
    Running from C:\Documents and Settings\Admin\Desktop
    Boot Mode: Normal

    ==============================================

    Content of fixlist:
    *****************
    HKLM\...\Run: [] - [X]
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\Run: [AdobeBridge] - [X]
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\MountPoints2: {5b410b73-de58-11dc-ab82-00112fe4b74c} - G:\LaunchU3.exe -a
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\...\MountPoints2: {81216bec-dc9f-11e1-9548-806d6172696f} - F:\setup.exe
    SearchScopes: HKLM - DefaultScope value is missing.
    BHO: No Name - {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
    Handler: msnim - {828030A1-22C1-4009-854F-8E305202313F} - C:\PROGRA~1\WI1F86~1\MESSEN~1\MSGRAP~1.DLL No File
    S2 COM+ Messages; "C:\WINDOWS\system32\svchosts.exe" -e mc-110-12-0001291 [X]
    S3 rpcapd; No ImagePath
    C:\WINDOWS\system32\Drivers\ab0w7vb9.sys
    C:\Documents and Settings\Admin\Local Settings\Temp\MsgPlusUninstall.exe
    C:\Documents and Settings\Admin\Local Settings\Temp\ntdll_dump.dll
    C:\Documents and Settings\Admin\Local Settings\Temp\Quarantine.exe
    C:\Documents and Settings\Admin\Local Settings\Temp\Update_f678.exe


    *****************

    HKLM\Software\Microsoft\Windows\CurrentVersion\Run\\ => Value deleted successfully.
    HKU\S-1-5-21-823518204-1482476501-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Run\\AdobeBridge => Value deleted successfully.
    HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{5b410b73-de58-11dc-ab82-00112fe4b74c} => Key not found.
    HKCR\CLSID\{5b410b73-de58-11dc-ab82-00112fe4b74c} => Key not found.
    HKU\1\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{81216bec-dc9f-11e1-9548-806d6172696f} => Key not found.
    HKCR\CLSID\{81216bec-dc9f-11e1-9548-806d6172696f} => Key not found.
    HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\\DefaultScope => Value was restored successfully.
    HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{5C255C8A-E604-49b4-9D64-90988571CECB} => Key deleted successfully.
    HKCR\CLSID\{5C255C8A-E604-49b4-9D64-90988571CECB} => Key not found.
    HKCR\PROTOCOLS\Handler\msnim => Key deleted successfully.
    HKCR\CLSID\{828030A1-22C1-4009-854F-8E305202313F} => Key deleted successfully.
    COM+ Messages => Service deleted successfully.
    rpcapd => Service deleted successfully.
    "C:\WINDOWS\system32\Drivers\ab0w7vb9.sys" => File/Directory not found.
    "C:\Documents and Settings\Admin\Local Settings\Temp\MsgPlusUninstall.exe" => File/Directory not found.
    "C:\Documents and Settings\Admin\Local Settings\Temp\ntdll_dump.dll" => File/Directory not found.
    "C:\Documents and Settings\Admin\Local Settings\Temp\Quarantine.exe" => File/Directory not found.
    "C:\Documents and Settings\Admin\Local Settings\Temp\Update_f678.exe" => File/Directory not found.

    ==== End of Fixlog ====

    Farbar Recovery Scan Tool (x86) Version: 02-03-2014 02
    Ran by Admin at 2014-03-02 09:38:54
    Running from C:\Documents and Settings\Admin\Desktop
    Boot Mode: Normal

    ================== Search: "rpcss.dll" ===================

    C:\WINDOWS\system32\rpcss.dll
    [2008-04-14 05:00] - [2008-04-14 05:00] - 0399360 ____A (Microsoft Corporation) 2589fe6015a316c0f5d5112b4da7b509

    C:\WINDOWS\system32\dllcache\rpcss.dll
    [2008-04-14 05:00] - [2008-04-14 05:00] - 0399360 ___AC (Microsoft Corporation) 2589fe6015a316c0f5d5112b4da7b509

    C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3QFE\rpcss.dll
    [2014-02-21 07:01] - [2009-02-09 03:56] - 0401408 ____A (Microsoft Corporation) 9222562d44021b988b9f9f62207fb6f2

    C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP3GDR\rpcss.dll
    [2014-02-21 07:01] - [2009-02-09 05:10] - 0401408 ____A (Microsoft Corporation) 6b27a5c03dfb94b4245739065431322c

    C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2QFE\rpcss.dll
    [2014-02-21 07:01] - [2009-02-09 03:01] - 0401408 ____A (Microsoft Corporation) 24b5d53b9accc1e2edcf0a878d6659d4

    C:\WINDOWS\SoftwareDistribution\Download\51401b498f4675531d9efb941ee01ef3\SP2GDR\rpcss.dll
    [2014-02-21 07:01] - [2009-02-09 03:20] - 0399360 ____A (Microsoft Corporation) 01095febf33beea00c2a0730b9b3ec28

    C:\WINDOWS\$hf_mig$\KB956572\SP3QFE\rpcss.dll
    [2012-08-28 17:46] - [2009-02-09 03:56] - 0401408 ____A (Microsoft Corporation) 9222562d44021b988b9f9f62207fb6f2

    === End Of Search ===
     
  21. 2014/03/02
    broni

    broni Moderator Malware Analyst

    Joined:
    2002/08/01
    Messages:
    21,701
    Likes Received:
    116
    Good :)

    [​IMG] Create new restore point before proceeding with the next step....
    How to: http://www.smartestcomputing.us.com/topic/63983-how-to-create-new-restore-point-all-windows/

    [​IMG] Please download ComboFix from Here, Here or Here to your Desktop.

    **Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
    • Never rename Combofix unless instructed.
    • Close any open browsers.
    • Very Important! Temporarily disable your anti-virus and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results ".
    • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    • Close any open browsers.
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
      If the connection is not there use restore point you created prior to running Combofix.
    • Double click on combofix.exe & follow the prompts.

    • NOTE1. If Combofix asks you to install Recovery Console, please allow it.
      NOTE 2. If Combofix asks you to update the program, always do so.
    • When finished, it will produce a report for you.
    • Please post the "C:\ComboFix.txt"
    **Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall
    **Note 2 for AVG and CA Internet Security (Total Defense Internet Security) users: ComboFix will not run until AVG/CA Internet Security is uninstalled as a protective measure against the anti-virus. This is because AVG/CA Internet Security "falsely" detects ComboFix (or its embedded files) as a threat and may remove them resulting in the tool not working correctly which in turn can cause "unpredictable results ". Since AVG/CA Internet Security cannot be effectively disabled before running ComboFix, the author recommends you to uninstall AVG/CA Internet Security first.
    Use AppRemover to uninstall it: http://www.appremover.com/
    We can reinstall it when we're done with CF.
    **Note 3: If you receive an error Illegal operation attempted on a registery key that has been marked for deletion, restart computer to fix the issue.
    **Note 4: Some infections may take some significant time to be cured. As long as your computer clock is running Combofix is still working. Be patient.


    Make sure, you re-enable your security programs, when you're done with Combofix.

    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
    ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

    NOTE.
    If, for some reason, Combofix refuses to run, try the following...

    Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
    Do NOT run it yet.
    Download Rkill (courtesy of BleepingComputer.com) to your desktop.
    There are 2 different versions. If one of them won't run then download and try to run the other one.
    You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

    rKill.exe: http://www.bleepingcomputer.com/download/rkill/dl/10/
    iExplore.exe (renamed rKill.exe): http://www.bleepingcomputer.com/download/rkill/dl/11/

    Restart computer in safe mode

    • Double-click on the Rkill desktop icon to run the tool.
    • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
    • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
    • If not, delete the file, then download and use the one provided in Link 2.
    • Do not reboot until instructed.
    • If the tool does not run from any of the links provided, please let me know.

    When the scan is done Notepad will open with rKill.txt log.
    NOTE. rKill.txt log will also be present on your desktop.

    Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

    IF you had to run rKill post BOTH logs, rKill.txt and Combofix.txt.
     

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.