Inactive [InActive] Does Anyone know what foxcglm.exe is?

I asked this on the Windows XP forum http://www.windowsbbs.com/windows-xp/79256-does-anyone-know-what-foycglm-exe.html#post430338and was advised to post in here. I followed the instructions in the Before you Post segment and have the logs required. I hope someone here can help.


info.txt logfile of random's system information tool 1.04 2008-12-05 09:00:16

======Uninstall list======

-->C:\WINDOWS\IsUninst.exe -fC:\WINDOWS\orun32.isu
-->C:\WINDOWS\System32\\MSIEXEC.EXE /x {09DA4F91-2A09-4232-AB8C-6BC740096DE3}
-->c:\WINDOWS\System32\\MSIEXEC.EXE /x {1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
-->c:\WINDOWS\System32\\MSIEXEC.EXE /x {8214CC02-6271-4DC8-B8DD-779933450264}
-->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf
Adobe Flash Player 9 ActiveX-->C:\WINDOWS\System32\Macromed\Flash\FlashUtil9c.exe -uninstallUnlock
America Online-->C:\Program Files\Common Files\aolshare\Aolunins_us.exe
AOL Coach Version 1.0(Build:20011028.1)-->C:\WINDOWS\AolCInUn.exe
Atomic Pop--> "C:\Program Files\wildtangent\apps\gamechannel.exe" \removeitem {96777B4D-1A97-492E-B5DA-C624AA675280}
Blasterball 2--> "C:\Program Files\wildtangent\apps\gamechannel.exe" \removeitem {357ECB62-CD36-4B63-B57E-769D0CA174F4}
Blasterball Wild--> "C:\Program Files\wildtangent\apps\gamechannel.exe" \removeitem {28BA89E7-2F60-4BE7-BAA2-7949EB3FE527}
Canon Camera Support Core Library-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{91F1A0D6-23AD-49FE-8D4E-379485652214} /l1033
Canon Camera Window DS for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{91203BD3-6C3E-472F-ADBD-F60FDC7C4010}
Canon Camera Window DVC for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{4C96958A-6562-4143-B820-FF4890D3B734}
Canon Camera Window for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{C7281207-4AA4-425E-B57A-0E9EF8445635}
Canon PhotoRecord-->MsiExec.exe /X{0878E100-C0BB-41E8-B4C6-C486B61FDA7B}
Canon RAW Image Task for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{45EF4EE3-F591-4B74-A477-0CAE12934CE7}
Canon RemoteCapture Task for ZoomBrowser EX-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{28291BD5-92D2-4685-82DC-CCA925C53CCA}
Canon Utilities PhotoStitch 3.1-->C:\Program Files\Common Files\InstallShield\Driver\8\Intel 32\IDriver.exe /M{218BBBE3-FE63-4BB2-81A8-7435575A84FA}
Canon ZoomBrowser EX-->MsiExec.exe /X{C1D76D7A-F3BB-47EA-A746-5B1E2FFC1DF2}
CCScore-->MsiExec.exe /I{B4B44FE7-41FF-4DAD-8C0A-E406DDA72992}
Click'N Design 3D-->C:\PROGRA~1\CLICK'~1\UNWISE.EXE C:\PROGRA~1\CLICK'~1\INSTALL.LOG
DLA-->MsiExec.exe /I{1206EF92-2E83-4859-ACCB-2048C3CB7DA6}
ESSBrwr-->MsiExec.exe /I{643EAE81-920C-4931-9F0B-4B343B225CA6}
ESSCDBK-->MsiExec.exe /I{AE1FA02D-E6A4-4EA0-8E58-6483CAC016DD}
ESScore-->MsiExec.exe /I{9D8FEE90-0377-49A9-AEFB-525BDE549BA4}
ESSgui-->MsiExec.exe /I{91517631-A9F3-4B7C-B482-43E0068FD55A}
ESShelp-->MsiExec.exe /I{87843A41-7808-4F2E-B13F-25C1E67CF2FD}
ESSini-->MsiExec.exe /I{8E92D746-CD9F-4B90-9668-42B74C14F765}
ESSPCD-->MsiExec.exe /I{14D4ED84-6A9A-45A0-96F6-1753768C3CB5}
ESSPDock-->MsiExec.exe /I{FCDB1C92-03C6-4C76-8625-371224256091}
ESSSONIC-->MsiExec.exe /I{073F22CE-9A5B-4A40-A604-C7270AC6BF34}
ESSTOOLS-->MsiExec.exe /I{8A502E38-29C9-49FA-BCFA-D727CA062589}
essvatgt-->MsiExec.exe /I{2D03B6F8-DF36-4980-B7B6-5B93D5BA3A8F}
essvcpt-->MsiExec.exe /I{D1973749-F5E7-40EB-B528-F2B78685B9FF}
HLPPDOCK-->MsiExec.exe /I{154508C0-07C5-4659-A7A0-E49968750D21}
hp center-->C:\WINDOWS\BWUnin-6.1.0.153.exe -AppId 137903
hp deskjet 3320 series (Remove only)-->C:\Program Files\hp deskjet 3320 series\hpfiui.exe -c -vdivid=HPF -vpnum=95 -vinstport=USB/DeskJet 3320/ -vproduct=3320 -huninstall
HP Instant Support-->C:\PROGRA~1\HPINST~1\UNWISE.EXE C:\PROGRA~1\HPINST~1\INSTALL.LOG
hp learning adventure-->c:\program files\HPSelect\Frontend\uninstall.exe
hp toolkit-->c:\Windows\HPTK\unhptkit.exe
Inactive HP Printer Drivers (Remove only)-->RunDll32 hpuninst.dll,InstallHinfSection UninstDefault 132 prntunin.inf
Intel(R) 845G Chipset Graphics Driver Software-->RUNDLL32.EXE C:\WINDOWS\System32\ialmrem.dll,UninstallW2KIGfx PCI\VEN_8086&DEV_2562
InterVideo WinDVD--> "C:\Program Files\InstallShield Installation Information\{C1939820-A945-11D4-86F6-0001031E5712}\setup.exe" REMOVEALL
IrfanView (remove only)-->C:\Program Files\IrfanView\iv_uninstall.exe
J2SE Runtime Environment 5.0 Update 3-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0150030}
kgcbaby-->MsiExec.exe /I{E18B549C-5D15-45DA-8D8F-8FD2BD946344}
kgcbase-->MsiExec.exe /I{F22C222C-3CE2-4A4B-A83F-AF4681371ABE}
kgchday-->MsiExec.exe /I{11F3F858-4131-4FFA-A560-3FE282933B6E}
kgchlwn-->MsiExec.exe /I{03EDED24-8375-407D-A721-4643D9768BE1}
kgcinvt-->MsiExec.exe /I{9BD54685-1496-46A5-AB62-357CD140ED8B}
kgckids-->MsiExec.exe /I{693C08A7-9E76-43FF-B11E-9A58175474C4}
kgcmove-->MsiExec.exe /I{A1588373-1D86-4D44-86C9-78ABD190F9CC}
kgcvday-->MsiExec.exe /I{8A8664E1-84C8-4936-891C-BC1F07797549}
Kodak EasyShare software-->C:\Documents and Settings\All Users\Application Data\Kodak\EasyShareSetup\$SETUP_140010_4392011\Setup.exe /APR-REMOVE
KSU-->MsiExec.exe /I{B997C2A0-4383-41BF-B76E-9B8B7ECFB267}
Kublox--> "C:\Program Files\wildtangent\apps\gamechannel.exe" \removeitem {F7A4D9BE-D989-45B9-BB49-2C0EA34B9991}
Lernout & Hauspie TruVoice American English TTS Engine-->RunDll32 advpack.dll,LaunchINFSection C:\WINDOWS\INF\tv_enua.inf, Uninstall
Malwarebytes' Anti-Malware--> "C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe "
Microsoft Web Publishing Wizard 1.52-->RunDll32 ADVPACK.DLL,LaunchINFSection C:\WINDOWS\INF\wpie4x86.inf,WebPostUninstall
Microsoft XML Parser and SDK-->MsiExec.exe /I{3E908702-AF35-4611-9518-955DA24B7E07}
Musicmatch® Jukebox-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{8EF1122E-E90C-4EE9-AB0C-7FDE2BA42C26}\setup.exe" -l0x9 -uninst
Nero Media Player-->C:\WINDOWS\UNNMP.exe /UNINSTALL
Network Play System (Patching)-->C:\WINDOWS\IsUninst.exe -f "C:\Program Files\Electronic Arts\Network Play System\NPSPatch.isu "
Notifier-->MsiExec.exe /I{0008546E-DF6E-4CC1-AFD0-2CB8E16C95A2}
NVIDIA Windows 2000/XP Display Drivers-->rundll32.exe C:\WINDOWS\System32\nvinstnt.dll,NvUninstallNT4 nvhp.inf
OfotoXMI-->MsiExec.exe /I{B162D0A6-9A1D-4B7C-91A5-88FB48113C45}
OTtBP-->MsiExec.exe /I{F71760CD-0F8B-4DCC-B7B7-6B223CC3843C}
OTtBPSDK-->MsiExec.exe /I{3CA39B0C-BA85-4D42-AC0F-1FF5F60C3353}
PC-Doctor for Windows-->C:\WINDOWS\UNWISE.EXE C:\PROGRA~1\PC-DOC~1\INSTALL.LOG
QuickTime-->C:\PROGRA~1\COMMON~1\INSTAL~1\Driver\11\INTEL3~1\IDriver.exe /M{929408E6-D265-4174-805F-81D1D914E2A4} /l1033
RD Platinum v5.0--> "C:\Program Files\Angle Interactive\RD Platinum v5.0\Uninstall.exe" "C:\Program Files\Angle Interactive\RD Platinum v5.0\install.log" -u
RealPlayer Basic-->C:\Program Files\Common Files\Real\Update\\rnuninst.exe RealNetworks|RealPlayer|6.0
RecordNow Update Manager-->MsiExec.exe /I{09DA4F91-2A09-4232-AB8C-6BC740096DE3}
RecordNow-->MsiExec.exe /I{8214CC02-6271-4DC8-B8DD-779933450264}
RingMaster from Hewlett-Packard Desktops (remove only)--> "C:\Program Files\WildTangent\Apps\GameChannel\Games\8c9c48d7-2d03-4a1f-a303-5bd22ccabae1\Uninstall.exe "
S3Display-->s3uninst.exe -reg 5 'HKLM\Software\S3\S3Uninst\S3Display'
S3Gamma2-->s3uninst.exe -reg 5 'HKLM\Software\S3\S3Uninst\S3Gamma2'
S3Info2-->s3uninst.exe -reg 5 'HKLM\Software\S3\S3Uninst\S3Info2'
S3Overlay-->s3uninst.exe -reg 5 'HKLM\Software\S3\S3Uninst\S3Overlay'
SFR-->MsiExec.exe /I{DB02F716-6275-42E9-B8D2-83BA2BF5100B}
SHASTA-->MsiExec.exe /I{605A4E39-613C-4A12-B56F-DEFBE6757237}
SKIN0001-->MsiExec.exe /I{FDF9943A-3D5C-46B3-9679-586BD237DDEE}
SKINXSDK-->MsiExec.exe /I{F4A2E7CC-60CA-4AFA-B67F-AD5E58173C3F}
staticcr-->MsiExec.exe /I{8943CE61-53BD-475E-90E1-A580869E98A2}
The Sims Hot Date-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{017E65B1-7484-461A-B16F-7C931166083B}\setup.exe" -l0009
TypingTutorial 4.40-->C:\WINDOWS\TypingTutorial\pmqUnInstall.exe
VPRINTOL-->MsiExec.exe /I{999D43F4-9709-4887-9B1A-83EBB15A8370}
Walgreens PhotoShow Express--> "C:\Program Files\Walgreens\Walgreens PhotoShow\data\Xtras\Uninstall.exe "
WildTangent GameChannel (remove only)--> "C:\Program Files\WildTangent\Apps\uninstallgamechannel.exe "
WildTangent Multiplayer Library-->C:\WINDOWS\wt\updater\wcmdmgr.exe -uninstall wtdmmp
WildTangent Updater-->C:\WINDOWS\wt\updater\wcmdmgr.exe -uninstall wcmdmgr.exe
WildTangent Web Driver-->C:\WINDOWS\wt\updater\wcmdmgr.exe -uninstall wtwebdriver
Windows XP Hotfix - KB823559-->C:\WINDOWS\$NtUninstallKB823559$\spuninst\spuninst.exe
Windows XP Hotfix - KB828741-->C:\WINDOWS\$NtUninstallKB828741$\spuninst\spuninst.exe
Windows XP Hotfix - KB834707-->C:\WINDOWS\$NtUninstallKB834707-IE6-20040929.115007$\spuninst\spuninst.exe
Windows XP Hotfix - KB835732-->C:\WINDOWS\$NtUninstallKB835732$\spuninst\spuninst.exe
Windows XP Hotfix - KB842773-->C:\WINDOWS\$NtUninstallKB842773$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q308676 for more information]-->C:\WINDOWS\$NtUninstallQ308676$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q308677 for more information]-->C:\WINDOWS\$NtUninstallQ308677$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q309521 for more information]-->C:\WINDOWS\$NtUninstallQ309521$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q309691 for more information]-->C:\WINDOWS\$NtUninstallQ309691$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q311842 for more information]-->C:\WINDOWS\$NtUninstallQ311842$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q311889 for more information]-->C:\WINDOWS\$NtUninstallQ311889$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q312370 for more information]-->C:\WINDOWS\$NtUninstallQ312370$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q315000 for more information]-->C:\WINDOWS\$NtUninstallQ315000$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q315403 for more information]-->C:\WINDOWS\$NtUninstallQ315403$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q321856 for more information]-->C:\WINDOWS\$NtUninstallQ321856$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329048 for more information]-->C:\WINDOWS\$NtUninstallQ329048$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329390 for more information]-->C:\WINDOWS\$NtUninstallQ329390$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329441 for more information]-->C:\WINDOWS\$NtUninstallQ329441$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) [See Q329834 for more information]-->C:\WINDOWS\$NtUninstallQ329834$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q329170-->C:\WINDOWS\$NtUninstallQ329170$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q810577-->C:\WINDOWS\$NtUninstallQ810577$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q810833-->C:\WINDOWS\$NtUninstallQ810833$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q815021-->C:\WINDOWS\$NtUninstallQ815021$\spuninst\spuninst.exe
Windows XP Hotfix (SP1) Q817606-->C:\WINDOWS\$NtUninstallQ817606$\spuninst\spuninst.exe
Windows XP Hotfix (SP2) [See Q329115 for more information]-->C:\WINDOWS\$NtUninstallQ329115$\spuninst\spuninst.exe
Windows XP Service Pack 2-->C:\WINDOWS\$NtServicePackUninstall$\spuninst\spuninst.exe
WIRELESS-->MsiExec.exe /I{F9593CFB-D836-49BC-BFF1-0E669A411D9F}
WordPerfect Productivity Pack-->C:\WINDOWS\Corel\uninst32.exe
WordPerfect Productivity Pack-->C:\WINDOWS\Corel\Uninst32.exe

======Environment variables======

"ComSpec "=%SystemRoot%\system32\cmd.exe
"Path "=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;c:\Python22;C:\Program files\PC-Doctor for Windows XP\WINDSAPI;C:\Program Files\QuickTime\QTSystem\
"windir "=%SystemRoot%
"OS "=Windows_NT
"PROCESSOR_ARCHITECTURE "=x86
"PROCESSOR_LEVEL "=15
"PROCESSOR_IDENTIFIER "=x86 Family 15 Model 2 Stepping 7, GenuineIntel
"PROCESSOR_REVISION "=0207
"NUMBER_OF_PROCESSORS "=1
"PATHEXT "=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"TEMP "=%SystemRoot%\TEMP
"TMP "=%SystemRoot%\TEMP
"CLASSPATH "=C:\Program Files\QuickTime\QTSystem\QTJava.zip
"QTJAVA "=C:\Program Files\QuickTime\QTSystem\QTJava.zip

-----------------EOF-----------------

 

Logfile of random's system information tool 1.04 (written by random/random)
Run by Alexis at 2008-12-05 10:27:08
Microsoft Windows XP Home Edition
System drive C: has 36 GB (67%) free of 53 GB
Total RAM: 254 MB (28% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:27:10 AM, on 12/5/2008
Platform: Windows XP (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 (6.00.2600.0000)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\QuickTime\qttask.exe
C:\PROGRA~1\WALGRE~1\WALGRE~1\data\xtras\mssysmgr.exe
C:\WINDOWS\System32\wuauclt.exe
C:\Documents and Settings\Alexis\Desktop\RSIT.exe
C:\Documents and Settings\Alexis\Desktop\trend micro\Alexis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.mchsi.com
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us6.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us6.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-us6.hpwis.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://us6.hpwis.com/
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = http://srch-us6.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://register.wildtangent.com/product_purchase.asp?pguid=E1CB0904-9898-4D8E-88F3-046284DED3FD
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,AutoConfigURL = http://proxycfg.marketscore.com/gencfg.asp?id1=0xz3voCoNh7&id2=U2a0MADfs3a&nsv=5.2.4.5
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
R3 - URLSearchHook: (no name) - - (no file)
O3 - Toolbar: &Radio - {8E718888-423F-11D2-876E-00A0C9082467} - C:\WINDOWS\System32\msdxm.ocx
O3 - Toolbar: hp toolkit - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\HP\EXPLOREBAR\HPTOOLKT.DLL
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\qttask.exe" -atboottime
O4 - HKLM\..\Run: [MSConfig] C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe /auto
O4 - HKLM\..\Run: [foycglm] "C:\WINDOWS\System32\foycglm.exe "
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [PhotoShow Deluxe Media Manager] C:\PROGRA~1\WALGRE~1\WALGRE~1\data\xtras\mssysmgr.exe
O4 - HKUS\S-1-5-19\..\Run: [OSSProxy] C:\WINDOWS\System32\ossproxy.exe (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [NSCheck] C:\WINDOWS\System32\nscheck.exe /check (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [OSSProxy] C:\WINDOWS\System32\ossproxy.exe (User 'NETWORK SERVICE')
O4 - HKUS\S-1-5-18\..\Run: [OSSProxy] C:\WINDOWS\System32\ossproxy.exe (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [OSSProxy] C:\WINDOWS\System32\ossproxy.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoPlay.exe (User 'Default user')
O9 - Extra button: Related - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra 'Tools' menuitem: Show &Related Links - {c95fe080-8f5d-11d2-a20b-00aa003c157a} - C:\WINDOWS\web\related.htm
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\System32\Shdocvw.dll
O14 - IERESET.INF: START_PAGE_URL=http://www.mchsi.com
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {620E2BE4-59B9-4EB4-BDF2-EBFF5BD102E6} (nsBrowserConfig Class 2) - https://www.marketscore.com/globalconfig/nsconfig_th.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1134607927998
O20 - Winlogon Notify: Marketscore - C:\WINDOWS\System32\osmim.dll (file missing)
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\System32\nvsvc32.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 4367 bytes

 

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{8E718888-423F-11D2-876E-00A0C9082467} - &Radio - C:\WINDOWS\System32\msdxm.ocx [2001-10-04 844048]
{B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - hp toolkit - C:\HP\EXPLOREBAR\HPTOOLKT.DLL [2002-06-04 86016]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"QuickTime Task "=C:\Program Files\QuickTime\qttask.exe [2007-01-15 155648]
"MSConfig "=C:\WINDOWS\PCHealth\HelpCtr\Binaries\MSConfig.exe [2001-08-18 145408]
"foycglm "=C:\WINDOWS\System32\foycglm.exe [2003-11-03 28160]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"MSMSGS "=C:\Program Files\Messenger\msmsgs.exe [2001-08-02 1077277]
"PhotoShow Deluxe Media Manager "=C:\PROGRA~1\WALGRE~1\WALGRE~1\data\xtras\mssysmgr.exe [2005-05-19 176128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AlcxMonitor]
C:\WINDOWS\ALCXMNTR.EXE [2004-09-07 57344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\checktime]
c:\program files\HPSelect\Frontend\ct.exe [2002-01-26 45056]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\dla]
C:\WINDOWS\system32\dla\tfswctrl.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\foycglm]
C:\WINDOWS\System32\foycglm.exe [2003-11-03 28160]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
C:\WINDOWS\System32\hkcmd.exe [2002-05-15 114688]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HPDJ Taskbar Utility]
C:\WINDOWS\System32\spool\drivers\w32x86\3\hpztsb05.exe [2002-05-22 188416]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\hpsysdrv]
c:\windows\system\hpsysdrv.exe [1998-05-07 52736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
C:\WINDOWS\System32\i [2007-07-19 69]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Marketscore]
c:\windows\system32\ossproxy.exe -boot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
C:\Program Files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe [2004-09-22 53248]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
C:\Program Files\Messenger\msmsgs.exe [2001-08-02 1077277]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NAV Agent]
c:\PROGRA~1\NORTON~1\navapw32.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\WINDOWS\system32\NeroCheck.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
NvQTwk []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\nwiz]
nwiz.exe /install []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PhotoShow Deluxe Media Manager]
C:\PROGRA~1\WALGRE~1\WALGRE~1\data\Xtras\mssysmgr.exe [2005-05-19 176128]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PS2]
C:\WINDOWS\system32\ps2.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QAGENT]
C:\Program Files\QUICKENW\QAGENT.EXE []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
C:\Program Files\QuickTime\qttask.exe [2007-01-15 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RealTray]
C:\Program Files\Real\RealPlayer\RealPlay.exe [2007-04-14 26112]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Recguard]
C:\WINDOWS\SMINST\RECGUARD.EXE [2001-12-19 212992]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpywareBot]
C:\Program Files\SpywareBot\SpywareBot.exe -boot []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\StorageGuard]
C:\Program Files\VERITAS Software\Update Manager\sgtray.exe [2002-05-09 155648]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
C:\Program Files\Java\jre1.5.0_03\bin\jusched.exe [2005-04-13 36975]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\wcmdmgr]
C:\WINDOWS\wt\updater\wcmdmgrl.exe [2002-09-27 20480]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WT GameChannel]
C:\Program Files\WildTangent\Apps\GameChannel.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^America Online 7.0 Tray Icon.lnk]
C:\PROGRA~1\AMERIC~1.0\aoltray.exe [2001-11-26 32839]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^hp center UI.lnk]
C:\PROGRA~1\HPCENT~1\137903\Shadow\SHADOW~1.EXE [2002-07-24 69632]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^hp center.lnk]
C:\PROGRA~1\HPCENT~1\137903\Program\BACKWE~1.EXE [2002-07-24 16384]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Kodak EasyShare software.lnk]
C:\PROGRA~1\Kodak\KODAKE~1\bin\EASYSH~1.EXE [2006-06-02 180224]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^KODAK Software Updater.lnk]
C:\PROGRA~1\Kodak\KODAKS~1\7288971\Program\KODAKS~1.EXE [2004-02-13 16423]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Owner^Start Menu^Programs^Startup^LimeWire On Startup.lnk]
C:\PROGRA~1\LimeWire\LimeWire.exe -startup []

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\WINDOWS\system32\igfxsrvc.dll [2002-05-15 307200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Marketscore]
C:\WINDOWS\System32\osmim.dll []

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\SYMTDI]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\UploadMgr]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername "=0
"legalnoticecaption "=
"legalnoticetext "=
"shutdownwithoutlogon "=1
"undockwithoutlogon "=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun "=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

 

======List of files/folders created in the last 3 months======

2008-12-05 09:00:05 ----D---- C:\Program Files\trend micro
2008-12-05 09:00:04 ----D---- C:\rsit
2008-12-04 10:54:06 ----SHD---- C:\Config.Msi
2008-12-01 12:31:12 ----D---- C:\Documents and Settings\Alexis\Application Data\Malwarebytes
2008-12-01 12:31:03 ----D---- C:\Program Files\Malwarebytes' Anti-Malware
2008-12-01 12:31:03 ----D---- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-12-01 12:30:37 ----D---- C:\Documents and Settings\Alexis\Application Data\Simple Star
2008-12-01 11:05:33 ----A---- C:\WINDOWS\ntbtlog.txt
2008-11-29 10:43:40 ----A---- C:\WINDOWS\System32\ltcljctg.dll
2008-11-29 10:43:36 ----A---- C:\WINDOWS\System32\lgbwasaq.dll
2008-11-28 10:42:36 ----A---- C:\WINDOWS\System32\enjumode.dll
2008-11-28 10:42:32 ----A---- C:\WINDOWS\System32\mcumkovg.dll
2008-11-27 10:42:01 ----A---- C:\WINDOWS\System32\ttgoxxwv.dll
2008-11-27 10:41:56 ----A---- C:\WINDOWS\System32\xdfcxgwi.dll
2008-11-26 10:25:45 ----A---- C:\WINDOWS\kuwibu.com
2008-11-23 02:33:35 ----A---- C:\WINDOWS\System32\itsmcc.dll
2008-11-23 02:33:31 ----A---- C:\WINDOWS\System32\jxklovpj.dll
2008-11-23 01:42:44 ----A---- C:\WINDOWS\System32\sprecovr.exe
2008-11-23 01:24:06 ----A---- C:\WINDOWS\System32\spupdsvc.exe
2008-11-23 01:22:02 ----A---- C:\WINDOWS\System32\hccoin.dll
2008-11-23 01:22:01 ----A---- C:\WINDOWS\System32\ir50_qcx.dll
2008-11-23 01:22:01 ----A---- C:\WINDOWS\System32\ir50_qc.dll
2008-11-23 01:22:01 ----A---- C:\WINDOWS\System32\ir50_32.dll
2008-11-23 01:22:01 ----A---- C:\WINDOWS\System32\ir41_qcx.dll
2008-11-23 01:22:01 ----A---- C:\WINDOWS\System32\ir41_qc.dll
2008-11-23 01:22:00 ----A---- C:\WINDOWS\System32\wmsdmoe2.dll
2008-11-23 01:22:00 ----A---- C:\WINDOWS\System32\wmidx.dll
2008-11-23 01:22:00 ----A---- C:\WINDOWS\System32\winhttp.dll
2008-11-23 01:22:00 ----A---- C:\WINDOWS\System32\mspmsnsv.dll
2008-11-23 01:22:00 ----A---- C:\WINDOWS\System32\mp4sdmod.dll
2008-11-23 01:22:00 ----A---- C:\WINDOWS\System32\mp43dmod.dll
2008-11-23 01:21:59 ----A---- C:\WINDOWS\System32\wmvdmoe2.dll
2008-11-23 01:21:59 ----A---- C:\WINDOWS\System32\wmspdmoe.dll
2008-11-23 01:21:59 ----A---- C:\WINDOWS\System32\wmspdmod.dll
2008-11-23 01:21:58 ----A---- C:\WINDOWS\System32\xpob2res.dll
2008-11-23 01:21:24 ----A---- C:\WINDOWS\System32\pidgen.dll
2008-11-23 01:21:24 ----A---- C:\WINDOWS\System32\dpcdll.dll
2008-11-23 01:21:23 ----A---- C:\WINDOWS\System32\bitsprx2.dll
2008-11-23 01:21:20 ----A---- C:\WINDOWS\System32\qmgr.dll
2008-11-23 01:21:19 ----A---- C:\WINDOWS\System32\bitsprx3.dll
2008-11-23 01:21:17 ----A---- C:\WINDOWS\System32\wuauserv.dll
2008-11-23 01:19:11 ----A---- C:\WINDOWS\regedit.exe
2008-11-23 01:19:11 ----A---- C:\WINDOWS\hh.exe
2008-11-23 01:19:11 ----A---- C:\WINDOWS\explorer.exe
2008-11-23 01:19:10 ----A---- C:\WINDOWS\winhlp32.exe
2008-11-23 01:19:10 ----A---- C:\WINDOWS\twain_32.dll
2008-11-23 01:19:02 ----A---- C:\WINDOWS\System32\6to4svc.dll
2008-11-23 01:19:01 ----A---- C:\WINDOWS\System32\actxprxy.dll
2008-11-23 01:19:01 ----A---- C:\WINDOWS\System32\actmovie.exe
2008-11-23 01:19:01 ----A---- C:\WINDOWS\System32\activeds.dll
2008-11-23 01:19:01 ----A---- C:\WINDOWS\System32\aclui.dll
2008-11-23 01:19:01 ----A---- C:\WINDOWS\System32\accwiz.exe
2008-11-23 01:19:00 ----A---- C:\WINDOWS\System32\advpack.dll
2008-11-23 01:19:00 ----A---- C:\WINDOWS\System32\adsnt.dll
2008-11-23 01:19:00 ----A---- C:\WINDOWS\System32\adsmsext.dll
2008-11-23 01:19:00 ----A---- C:\WINDOWS\System32\adsldpc.dll
2008-11-23 01:19:00 ----A---- C:\WINDOWS\System32\adsldp.dll
2008-11-23 01:19:00 ----A---- C:\WINDOWS\System32\admparse.dll
2008-11-23 01:18:59 ----A---- C:\WINDOWS\System32\apphelp.dll
2008-11-23 01:18:59 ----A---- C:\WINDOWS\System32\amstream.dll
2008-11-23 01:18:59 ----A---- C:\WINDOWS\System32\alrsvc.dll
2008-11-23 01:18:59 ----A---- C:\WINDOWS\System32\alg.exe
2008-11-23 01:18:59 ----A---- C:\WINDOWS\System32\ahui.exe
2008-11-23 01:18:58 ----A---- C:\WINDOWS\System32\atmfd.dll
2008-11-23 01:18:58 ----A---- C:\WINDOWS\System32\atmadm.exe
2008-11-23 01:18:58 ----A---- C:\WINDOWS\System32\atl.dll
2008-11-23 01:18:58 ----A---- C:\WINDOWS\System32\at.exe
2008-11-23 01:18:58 ----A---- C:\WINDOWS\System32\asycfilt.dll
2008-11-23 01:18:58 ----A---- C:\WINDOWS\System32\asferror.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\batt.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\batmeter.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\basesrv.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\avifil32.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\autolfn.exe
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\autofmt.exe
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\authz.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\audiosrv.dll
2008-11-23 01:18:57 ----A---- C:\WINDOWS\System32\atmlib.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\cabinet.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\browsewm.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\browseui.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\browser.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\browselc.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\blackbox.dll
2008-11-23 01:18:56 ----A---- C:\WINDOWS\System32\bidispl.dll
2008-11-23 01:18:55 ----A---- C:\WINDOWS\System32\catsrvut.dll
2008-11-23 01:18:55 ----A---- C:\WINDOWS\System32\catsrvps.dll
2008-11-23 01:18:55 ----A---- C:\WINDOWS\System32\catsrv.dll
2008-11-23 01:18:55 ----A---- C:\WINDOWS\System32\camocx.dll
2008-11-23 01:18:55 ----A---- C:\WINDOWS\System32\cabview.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\cfgmgr32.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\cfgbkend.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\cewmdm.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\certmgr.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\certcli.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\cdosys.dll
2008-11-23 01:18:54 ----A---- C:\WINDOWS\System32\cdfview.dll
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\cliconfg.exe
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\cliconfg.dll
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\cleanmgr.exe
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\clbcatq.dll
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\clbcatex.dll
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\cisvc.exe
2008-11-23 01:18:53 ----A---- C:\WINDOWS\System32\ciodm.dll
2008-11-23 01:18:52 ----A---- C:\WINDOWS\System32\cmdial32.dll
2008-11-23 01:18:52 ----A---- C:\WINDOWS\System32\cmcfg32.dll
2008-11-23 01:18:52 ----A---- C:\WINDOWS\System32\clusapi.dll
2008-11-23 01:18:52 ----A---- C:\WINDOWS\System32\clipsrv.exe
2008-11-23 01:18:51 ----A---- C:\WINDOWS\System32\cmprops.dll
2008-11-23 01:18:51 ----A---- C:\WINDOWS\System32\cmmon32.exe
2008-11-23 01:18:51 ----A---- C:\WINDOWS\System32\cmdl32.exe
2008-11-23 01:18:50 ----A---- C:\WINDOWS\System32\compstui.dll
2008-11-23 01:18:50 ----A---- C:\WINDOWS\System32\compatui.dll
2008-11-23 01:18:50 ----A---- C:\WINDOWS\System32\colbact.dll
2008-11-23 01:18:50 ----A---- C:\WINDOWS\System32\cnbjmon.dll
2008-11-23 01:18:50 ----A---- C:\WINDOWS\System32\cmutil.dll
2008-11-23 01:18:50 ----A---- C:\WINDOWS\System32\cmstp.exe
2008-11-23 01:18:49 ----A---- C:\WINDOWS\System32\corpol.dll
2008-11-23 01:18:49 ----A---- C:\WINDOWS\System32\conime.exe
2008-11-23 01:18:49 ----A---- C:\WINDOWS\System32\comuid.dll
2008-11-23 01:18:49 ----A---- C:\WINDOWS\System32\comsvcs.dll
2008-11-23 01:18:49 ----A---- C:\WINDOWS\System32\comres.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\cryptsvc.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\cryptnet.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\cryptext.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\cryptdll.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\cryptdlg.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\crypt32.dll
2008-11-23 01:18:48 ----A---- C:\WINDOWS\System32\credui.dll
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\d3d8thk.dll
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\d3d8.dll
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\ctfmon.exe
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\csrss.exe
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\cscui.dll
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\cscript.exe
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\cscdll.dll
2008-11-23 01:18:47 ----A---- C:\WINDOWS\System32\cryptui.dll
2008-11-23 01:18:46 ----A---- C:\WINDOWS\System32\dataclen.dll
2008-11-23 01:18:46 ----A---- C:\WINDOWS\System32\danim.dll
2008-11-23 01:18:46 ----A---- C:\WINDOWS\System32\d3dim700.dll
2008-11-23 01:18:45 ----A---- C:\WINDOWS\System32\dbnmpntw.dll
2008-11-23 01:18:45 ----A---- C:\WINDOWS\System32\dbnetlib.dll
2008-11-23 01:18:45 ----A---- C:\WINDOWS\System32\dbmsrpcn.dll
2008-11-23 01:18:45 ----A---- C:\WINDOWS\System32\dbghelp.dll
2008-11-23 01:18:45 ----A---- C:\WINDOWS\System32\davclnt.dll
2008-11-23 01:18:44 ----A---- C:\WINDOWS\System32\defrag.exe
2008-11-23 01:18:44 ----A---- C:\WINDOWS\System32\ddrawex.dll
2008-11-23 01:18:44 ----A---- C:\WINDOWS\System32\ddraw.dll
2008-11-23 01:18:44 ----A---- C:\WINDOWS\System32\ddeshare.exe
2008-11-23 01:18:44 ----A---- C:\WINDOWS\System32\dciman32.dll
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\dgnet.dll
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\dfsshlex.dll
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\dfrgui.dll
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\dfrgsnap.dll
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\dfrgntfs.exe
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\dfrgfat.exe
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\devmgr.dll
2008-11-23 01:18:43 ----A---- C:\WINDOWS\System32\devenum.dll
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\dmadmin.exe
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\dllhost.exe
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\diskpart.exe
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\dinput8.dll
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\dinput.dll
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\digest.dll
2008-11-23 01:18:42 ----A---- C:\WINDOWS\System32\diantz.exe
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmstyle.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmserver.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmscript.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmremote.exe
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmloader.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmime.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmdskmgr.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmcompos.dll
2008-11-23 01:18:41 ----A---- C:\WINDOWS\System32\dmband.dll
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\dosx.exe
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\docprop2.dll
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\dnsrslvr.dll
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\dnsapi.dll
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\dmutil.dll
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\dmusic.dll
2008-11-23 01:18:40 ----A---- C:\WINDOWS\System32\dmsynth.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dpnlobby.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dpnhupnp.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dpnhpast.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dpnet.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dpnaddr.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dpmodemx.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dplayx.dll
2008-11-23 01:18:39 ----A---- C:\WINDOWS\System32\dplaysvr.exe
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\drmstor.dll
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\drmclien.dll
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\dpwsockx.dll
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\dpvvox.dll
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\dpvsetup.exe
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\dpvoice.dll
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\dpvacm.dll
2008-11-23 01:18:38 ----A---- C:\WINDOWS\System32\dpnsvr.exe
2008-11-23 01:18:37 ----A---- C:\WINDOWS\System32\dsdmoprp.dll
2008-11-23 01:18:37 ----A---- C:\WINDOWS\System32\dsdmo.dll
2008-11-23 01:18:37 ----A---- C:\WINDOWS\System32\ds32gt.dll
2008-11-23 01:18:37 ----A---- C:\WINDOWS\System32\drprov.dll
2008-11-23 01:18:37 ----A---- C:\WINDOWS\System32\drmv2clt.dll
2008-11-23 01:18:36 ----A---- C:\WINDOWS\System32\dsprop.dll
2008-11-23 01:18:36 ----A---- C:\WINDOWS\System32\dsound3d.dll
2008-11-23 01:18:36 ----A---- C:\WINDOWS\System32\dsound.dll
2008-11-23 01:18:36 ----A---- C:\WINDOWS\System32\dskquota.dll
2008-11-23 01:18:35 ----A---- C:\WINDOWS\System32\dsuiext.dll
2008-11-23 01:18:35 ----A---- C:\WINDOWS\System32\dssenh.dll
2008-11-23 01:18:35 ----A---- C:\WINDOWS\System32\dssec.dll
2008-11-23 01:18:35 ----A---- C:\WINDOWS\System32\dsquery.dll
2008-11-23 01:18:34 ----A---- C:\WINDOWS\System32\dx7vb.dll
2008-11-23 01:18:34 ----A---- C:\WINDOWS\System32\dwwin.exe
2008-11-23 01:18:34 ----A---- C:\WINDOWS\System32\dvdupgrd.exe
2008-11-23 01:18:34 ----A---- C:\WINDOWS\System32\duser.dll
2008-11-23 01:18:34 ----A---- C:\WINDOWS\System32\dumprep.exe
2008-11-23 01:18:34 ----A---- C:\WINDOWS\System32\dswave.dll
2008-11-23 01:18:33 ----A---- C:\WINDOWS\System32\dxtmsft.dll
2008-11-23 01:18:33 ----A---- C:\WINDOWS\System32\dxmasf.dll
2008-11-23 01:18:33 ----A---- C:\WINDOWS\System32\dxdiag.exe
2008-11-23 01:18:33 ----A---- C:\WINDOWS\System32\dx8vb.dll
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\eventlog.dll
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\eudcedit.exe
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\esent.dll
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\es.dll
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\ersvc.dll
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\els.dll
2008-11-23 01:18:32 ----A---- C:\WINDOWS\System32\dxtrans.dll
2008-11-23 01:18:31 ----A---- C:\WINDOWS\System32\faultrep.dll
2008-11-23 01:18:31 ----A---- C:\WINDOWS\System32\extrac32.exe
2008-11-23 01:18:31 ----A---- C:\WINDOWS\System32\expsrv.dll
2008-11-23 01:18:30 ----A---- C:\WINDOWS\System32\filemgmt.dll
2008-11-23 01:18:30 ----A---- C:\WINDOWS\System32\feclient.dll
2008-11-23 01:18:29 ----A---- C:\WINDOWS\System32\findstr.exe
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\fxscom.dll
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\fxsclnt.exe
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\fxsapi.dll
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\framebuf.dll
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\fontview.exe
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\fontext.dll
2008-11-23 01:18:28 ----A---- C:\WINDOWS\System32\fldrclnr.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxsres.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxsperf.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxsmon.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxsext32.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxsevent.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxsdrv.dll
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxscover.exe
2008-11-23 01:18:27 ----A---- C:\WINDOWS\System32\fxscomex.dll
2008-11-23 01:18:26 ----A---- C:\WINDOWS\System32\fxswzrd.dll
2008-11-23 01:18:26 ----A---- C:\WINDOWS\System32\fxsui.dll
2008-11-23 01:18:26 ----A---- C:\WINDOWS\System32\fxstiff.dll
2008-11-23 01:18:26 ----A---- C:\WINDOWS\System32\fxst30.dll
2008-11-23 01:18:26 ----A---- C:\WINDOWS\System32\fxssvc.exe
2008-11-23 01:18:26 ----A---- C:\WINDOWS\System32\fxsst.dll
2008-11-23 01:18:25 ----A---- C:\WINDOWS\System32\grpconv.exe
2008-11-23 01:18:25 ----A---- C:\WINDOWS\System32\gpkrsrc.dll
2008-11-23 01:18:25 ----A---- C:\WINDOWS\System32\glu32.dll
2008-11-23 01:18:25 ----A---- C:\WINDOWS\System32\gdi32.dll
2008-11-23 01:18:25 ----A---- C:\WINDOWS\System32\fxsxp32.dll
2008-11-23 01:18:24 ----A---- C:\WINDOWS\System32\hnetcfg.dll
2008-11-23 01:18:24 ----A---- C:\WINDOWS\System32\hid.dll
2008-11-23 01:18:24 ----A---- C:\WINDOWS\System32\hhsetup.dll
2008-11-23 01:18:24 ----A---- C:\WINDOWS\System32\h323msp.dll
2008-11-23 01:18:23 ----A---- C:\WINDOWS\System32\htui.dll
2008-11-23 01:18:23 ----A---- C:\WINDOWS\System32\hotplug.dll
2008-11-23 01:18:23 ----A---- C:\WINDOWS\System32\hnetwiz.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\icwphbk.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\icwdial.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\icmp.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\icm32.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\iccvid.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\icaapi.dll
2008-11-23 01:18:22 ----A---- C:\WINDOWS\System32\iasrad.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\iesetup.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\iernonce.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\iepeers.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\iedkcs32.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\ieaksie.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\ieakeng.dll
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\ie4uinit.exe
2008-11-23 01:18:21 ----A---- C:\WINDOWS\System32\idq.dll
2008-11-23 01:18:20 ----A---- C:\WINDOWS\System32\imeshare.dll
2008-11-23 01:18:20 ----A---- C:\WINDOWS\System32\imapi.exe
2008-11-23 01:18:20 ----A---- C:\WINDOWS\System32\ils.dll
2008-11-23 01:18:20 ----A---- C:\WINDOWS\System32\igmpagnt.dll
2008-11-23 01:18:20 ----A---- C:\WINDOWS\System32\ifmon.dll
2008-11-23 01:18:20 ----A---- C:\WINDOWS\System32\iexpress.exe
2008-11-23 01:18:19 ----A---- C:\WINDOWS\System32\inetmib1.dll
2008-11-23 01:18:19 ----A---- C:\WINDOWS\System32\inetcomm.dll
2008-11-23 01:18:19 ----A---- C:\WINDOWS\System32\inetcfg.dll
2008-11-23 01:18:19 ----A---- C:\WINDOWS\System32\imm32.dll
2008-11-23 01:18:19 ----A---- C:\WINDOWS\System32\imgutil.dll
2008-11-23 01:18:18 ----A---- C:\WINDOWS\System32\input.dll
2008-11-23 01:18:18 ----A---- C:\WINDOWS\System32\initpki.dll
2008-11-23 01:18:18 ----A---- C:\WINDOWS\System32\inetres.dll
2008-11-23 01:18:18 ----A---- C:\WINDOWS\System32\inetppui.dll
2008-11-23 01:18:18 ----A---- C:\WINDOWS\System32\inetpp.dll
2008-11-23 01:18:17 ----A---- C:\WINDOWS\System32\inseng.dll
2008-11-23 01:18:15 ----A---- C:\WINDOWS\System32\ippromon.dll
2008-11-23 01:18:15 ----A---- C:\WINDOWS\System32\ipnathlp.dll
2008-11-23 01:18:15 ----A---- C:\WINDOWS\System32\iphlpapi.dll
2008-11-23 01:18:15 ----A---- C:\WINDOWS\System32\ipconfig.exe
2008-11-23 01:18:14 ----A---- C:\WINDOWS\System32\ipv6mon.dll
2008-11-23 01:18:14 ----A---- C:\WINDOWS\System32\ipv6.exe
2008-11-23 01:18:14 ----A---- C:\WINDOWS\System32\ipsmsnap.dll
2008-11-23 01:18:14 ----A---- C:\WINDOWS\System32\ipsecsvc.dll
2008-11-23 01:18:14 ----A---- C:\WINDOWS\System32\ipsecsnp.dll
2008-11-23 01:18:13 ----A---- C:\WINDOWS\System32\isign32.dll
2008-11-23 01:18:13 ----A---- C:\WINDOWS\System32\ipxroute.exe
2008-11-23 01:18:12 ----A---- C:\WINDOWS\System32\isrdbg32.dll
2008-11-23 01:18:11 ----A---- C:\WINDOWS\System32\itircl.dll
2008-11-23 01:18:09 ----A---- C:\WINDOWS\System32\iyuv_32.dll
2008-11-23 01:18:09 ----A---- C:\WINDOWS\System32\ixsso.dll
2008-11-23 01:18:09 ----A---- C:\WINDOWS\System32\itss.dll
2008-11-23 01:18:08 ----A---- C:\WINDOWS\System32\jsproxy.dll
2008-11-23 01:18:08 ----A---- C:\WINDOWS\System32\jscript.dll
2008-11-23 01:18:07 ----A---- C:\WINDOWS\System32\kerberos.dll
2008-11-23 01:18:07 ----A---- C:\WINDOWS\System32\kd1394.dll
2008-11-23 01:18:04 ----A---- C:\WINDOWS\System32\keymgr.dll
2008-11-23 01:18:01 ----A---- C:\WINDOWS\System32\krnl386.exe
2008-11-23 01:17:59 ----A---- C:\WINDOWS\System32\ksuser.dll
2008-11-23 01:17:57 ----A---- C:\WINDOWS\System32\laprxy.dll
2008-11-23 01:17:56 ----A---- C:\WINDOWS\System32\licdll.dll
2008-11-23 01:17:54 ----A---- C:\WINDOWS\System32\licmgr10.dll
2008-11-23 01:17:53 ----A---- C:\WINDOWS\System32\licwmi.dll
2008-11-23 01:17:52 ----A---- C:\WINDOWS\System32\linkinfo.dll
2008-11-23 01:17:51 ----A---- C:\WINDOWS\System32\lmrt.dll
2008-11-23 01:17:48 ----A---- C:\WINDOWS\System32\loadperf.dll
2008-11-23 01:17:45 ----A---- C:\WINDOWS\System32\localsec.dll
2008-11-23 01:17:43 ----A---- C:\WINDOWS\System32\logagent.exe
2008-11-23 01:17:43 ----A---- C:\WINDOWS\System32\localui.dll
2008-11-23 01:17:38 ----A---- C:\WINDOWS\System32\logonui.exe
2008-11-23 01:17:36 ----A---- C:\WINDOWS\System32\lpk.dll
2008-11-23 01:17:35 ----A---- C:\WINDOWS\System32\lprhelp.dll
2008-11-23 01:17:34 ----A---- C:\WINDOWS\System32\magnify.exe
2008-11-23 01:17:34 ----A---- C:\WINDOWS\System32\lsass.exe
2008-11-23 01:17:32 ----A---- C:\WINDOWS\System32\makecab.exe
2008-11-23 01:17:30 ----A---- C:\WINDOWS\System32\mcastmib.dll
2008-11-23 01:17:29 ----A---- C:\WINDOWS\System32\mciavi32.dll
2008-11-23 01:17:27 ----A---- C:\WINDOWS\System32\mciqtz32.dll
2008-11-23 01:17:25 ----A---- C:\WINDOWS\System32\mciseq.dll
2008-11-23 01:17:24 ----A---- C:\WINDOWS\System32\mciwave.dll
2008-11-23 01:17:21 ----A---- C:\WINDOWS\System32\mdminst.dll
2008-11-23 01:17:20 ----A---- C:\WINDOWS\System32\mf3216.dll
2008-11-23 01:17:17 ----A---- C:\WINDOWS\System32\mfc42.dll
2008-11-23 01:17:16 ----A---- C:\WINDOWS\System32\mfc42u.dll
2008-11-23 01:17:14 ----A---- C:\WINDOWS\System32\mfcsubs.dll
2008-11-23 01:17:13 ----A---- C:\WINDOWS\System32\miglibnt.dll
2008-11-23 01:17:13 ----A---- C:\WINDOWS\System32\midimap.dll
2008-11-23 01:17:11 ----A---- C:\WINDOWS\System32\mlang.dll
2008-11-23 01:17:09 ----A---- C:\WINDOWS\System32\mmc.exe
2008-11-23 01:17:07 ----A---- C:\WINDOWS\System32\mmcbase.dll
2008-11-23 01:17:06 ----A---- C:\WINDOWS\System32\mmcndmgr.dll
2008-11-23 01:17:04 ----A---- C:\WINDOWS\System32\mmcshext.dll
2008-11-23 01:17:03 ----A---- C:\WINDOWS\System32\mmfutil.dll
2008-11-23 01:16:59 ----A---- C:\WINDOWS\System32\mmsystem.dll
2008-11-23 01:16:57 ----A---- C:\WINDOWS\System32\mnmdd.dll
2008-11-23 01:16:55 ----A---- C:\WINDOWS\System32\mnmsrvc.exe
2008-11-23 01:16:54 ----A---- C:\WINDOWS\System32\mobsync.dll
2008-11-23 01:16:51 ----A---- C:\WINDOWS\System32\mobsync.exe
2008-11-23 01:16:48 ----A---- C:\WINDOWS\System32\modemui.dll
2008-11-23 01:16:45 ----A---- C:\WINDOWS\System32\moricons.dll
2008-11-23 01:16:39 ----A---- C:\WINDOWS\System32\mpg4dmod.dll
2008-11-23 01:16:32 ----A---- C:\WINDOWS\System32\mplay32.exe
2008-11-23 01:16:30 ----A---- C:\WINDOWS\System32\mpr.dll
2008-11-23 01:16:29 ----A---- C:\WINDOWS\System32\mprapi.dll
2008-11-23 01:16:28 ----A---- C:\WINDOWS\System32\msacm32.dll
2008-11-23 01:16:25 ----A---- C:\WINDOWS\System32\msafd.dll
2008-11-23 01:16:24 ----A---- C:\WINDOWS\System32\msapsspc.dll
2008-11-23 01:16:23 ----A---- C:\WINDOWS\System32\msasn1.dll
2008-11-23 01:16:20 ----A---- C:\WINDOWS\System32\mscms.dll
2008-11-23 01:16:18 ----A---- C:\WINDOWS\System32\msconf.dll
2008-11-23 01:16:17 ----A---- C:\WINDOWS\System32\mscpxl32.dll
2008-11-23 01:16:17 ----A---- C:\WINDOWS\System32\mscpx32r.dll
2008-11-23 01:16:16 ----A---- C:\WINDOWS\System32\msctf.dll
2008-11-23 01:16:15 ----A---- C:\WINDOWS\System32\msctfp.dll
2008-11-23 01:16:13 ----A---- C:\WINDOWS\System32\msdart.dll
2008-11-23 01:16:10 ----A---- C:\WINDOWS\System32\msdmo.dll
2008-11-23 01:16:09 ----A---- C:\WINDOWS\System32\msdtclog.dll
2008-11-23 01:16:09 ----A---- C:\WINDOWS\System32\msdtc.exe
2008-11-23 01:16:07 ----A---- C:\WINDOWS\System32\msdtcprx.dll
2008-11-23 01:16:05 ----A---- C:\WINDOWS\System32\msdtctm.dll
2008-11-23 01:16:01 ----A---- C:\WINDOWS\System32\msdtcuiu.dll
2008-11-23 01:15:57 ----A---- C:\WINDOWS\System32\msdxmlc.dll
2008-11-23 01:15:56 ----A---- C:\WINDOWS\System32\msexch40.dll
2008-11-23 01:15:53 ----A---- C:\WINDOWS\System32\msexcl40.dll
2008-11-23 01:15:50 ----A---- C:\WINDOWS\System32\msgina.dll
2008-11-23 01:15:44 ----A---- C:\WINDOWS\System32\mshta.exe
2008-11-23 01:15:41 ----A---- C:\WINDOWS\System32\mshtml.dll
2008-11-23 01:15:38 ----A---- C:\WINDOWS\System32\mshtmled.dll
2008-11-23 01:15:37 ----A---- C:\WINDOWS\System32\mshtmler.dll
2008-11-23 01:15:35 ----A---- C:\WINDOWS\System32\msident.dll
2008-11-23 01:15:35 ----A---- C:\WINDOWS\System32\msi.dll
2008-11-23 01:15:34 ----A---- C:\WINDOWS\System32\msidle.dll
2008-11-23 01:15:33 ----A---- C:\WINDOWS\System32\msieftp.dll
2008-11-23 01:15:32 ----A---- C:\WINDOWS\System32\msiexec.exe
2008-11-23 01:15:30 ----A---- C:\WINDOWS\System32\msihnd.dll
2008-11-23 01:15:28 ----A---- C:\WINDOWS\System32\msimg32.dll
2008-11-23 01:15:27 ----A---- C:\WINDOWS\System32\msimsg.dll
2008-11-23 01:15:25 ----A---- C:\WINDOWS\System32\msimtf.dll
2008-11-23 01:15:24 ----A---- C:\WINDOWS\System32\msisip.dll
2008-11-23 01:15:23 ----A---- C:\WINDOWS\System32\msjet40.dll
2008-11-23 01:15:21 ----A---- C:\WINDOWS\System32\msjetoledb40.dll
2008-11-23 01:15:15 ----A---- C:\WINDOWS\System32\msjint40.dll
2008-11-23 01:15:13 ----A---- C:\WINDOWS\System32\msjter40.dll
2008-11-23 01:15:10 ----A---- C:\WINDOWS\System32\msjtes40.dll
2008-11-23 01:15:08 ----A---- C:\WINDOWS\System32\mslbui.dll
2008-11-23 01:15:06 ----A---- C:\WINDOWS\System32\msltus40.dll
2008-11-23 01:15:03 ----A---- C:\WINDOWS\System32\msnetobj.dll
2008-11-23 01:15:01 ----A---- C:\WINDOWS\System32\msnsspc.dll
2008-11-23 01:14:59 ----A---- C:\WINDOWS\System32\msoeacct.dll
2008-11-23 01:14:57 ----A---- C:\WINDOWS\System32\msoert2.dll
2008-11-23 01:14:55 ----A---- C:\WINDOWS\System32\msorcl32.dll
2008-11-23 01:14:55 ----A---- C:\WINDOWS\System32\msorc32r.dll
2008-11-23 01:14:52 ----A---- C:\WINDOWS\System32\mspaint.exe
2008-11-23 01:14:40 ----A---- C:\WINDOWS\System32\mspatcha.dll
2008-11-23 01:14:39 ----A---- C:\WINDOWS\System32\mspbde40.dll
2008-11-23 01:14:37 ----A---- C:\WINDOWS\System32\mspmsp.dll
2008-11-23 01:14:36 ----A---- C:\WINDOWS\System32\msprivs.dll
2008-11-23 01:14:34 ----A---- C:\WINDOWS\System32\msrating.dll
2008-11-23 01:14:32 ----A---- C:\WINDOWS\System32\msrd2x40.dll
2008-11-23 01:14:30 ----A---- C:\WINDOWS\System32\msrd3x40.dll
2008-11-23 01:14:27 ----A---- C:\WINDOWS\System32\msrepl40.dll
2008-11-23 01:14:25 ----A---- C:\WINDOWS\System32\msrle32.dll
2008-11-23 01:14:22 ----A---- C:\WINDOWS\System32\msscp.dll
2008-11-23 01:14:16 ----A---- C:\WINDOWS\System32\mstask.dll
2008-11-23 01:14:15 ----A---- C:\WINDOWS\System32\mstext40.dll
2008-11-23 01:14:12 ----A---- C:\WINDOWS\System32\mstime.dll
2008-11-23 01:14:10 ----A---- C:\WINDOWS\System32\mstinit.exe
2008-11-23 01:14:09 ----A---- C:\WINDOWS\System32\mstlsapi.dll
2008-11-23 01:14:07 ----A---- C:\WINDOWS\System32\mstsc.exe
2008-11-23 01:14:05 ----A---- C:\WINDOWS\System32\mstscax.dll
2008-11-23 01:14:02 ----A---- C:\WINDOWS\System32\msutb.dll
2008-11-23 01:14:01 ----A---- C:\WINDOWS\System32\msvbvm60.dll
2008-11-23 01:13:56 ----A---- C:\WINDOWS\System32\msvcirt.dll
2008-11-23 01:13:55 ----A---- C:\WINDOWS\System32\msvcp60.dll
2008-11-23 01:13:54 ----A---- C:\WINDOWS\System32\msvcrt40.dll
2008-11-23 01:13:54 ----A---- C:\WINDOWS\System32\msvcrt.dll
2008-11-23 01:13:53 ----A---- C:\WINDOWS\System32\msvfw32.dll
2008-11-23 01:13:50 ----A---- C:\WINDOWS\System32\msvidctl.dll
2008-11-23 01:13:48 ----A---- C:\WINDOWS\System32\msw3prt.dll
2008-11-23 01:13:46 ----A---- C:\WINDOWS\System32\mswdat10.dll
2008-11-23 01:13:44 ----A---- C:\WINDOWS\System32\mswebdvd.dll
2008-11-23 01:13:42 ----A---- C:\WINDOWS\System32\mswmdm.dll
2008-11-23 01:13:41 ----A---- C:\WINDOWS\System32\mswsock.dll
2008-11-23 01:13:40 ----A---- C:\WINDOWS\System32\mswstr10.dll
2008-11-23 01:13:38 ----A---- C:\WINDOWS\System32\msxbde40.dll
2008-11-23 01:13:36 ----A---- C:\WINDOWS\System32\msxml.dll
2008-11-23 01:13:34 ----A---- C:\WINDOWS\System32\msxml2.dll
2008-11-23 01:13:32 ----A---- C:\WINDOWS\System32\msxml3.dll
2008-11-23 01:13:31 ----A---- C:\WINDOWS\System32\mtxclu.dll
2008-11-23 01:13:31 ----A---- C:\WINDOWS\System32\msyuv.dll
2008-11-23 01:13:29 ----A---- C:\WINDOWS\System32\mtxoci.dll
2008-11-23 01:13:28 ----A---- C:\WINDOWS\System32\narrator.exe
2008-11-23 01:13:28 ----A---- C:\WINDOWS\System32\mydocs.dll
2008-11-23 01:13:27 ----A---- C:\WINDOWS\System32\ncobjapi.dll
2008-11-23 01:13:26 ----A---- C:\WINDOWS\System32\nddenb32.dll
2008-11-23 01:13:26 ----A---- C:\WINDOWS\System32\nddeapir.exe
2008-11-23 01:13:26 ----A---- C:\WINDOWS\System32\nddeapi.dll
2008-11-23 01:13:24 ----A---- C:\WINDOWS\System32\net.exe
2008-11-23 01:13:23 ----A---- C:\WINDOWS\System32\net1.exe
2008-11-23 01:13:22 ----A---- C:\WINDOWS\System32\netapi32.dll
2008-11-23 01:13:21 ----A---- C:\WINDOWS\System32\netcfgx.dll
2008-11-23 01:13:19 ----A---- C:\WINDOWS\System32\netdde.exe
2008-11-23 01:13:18 ----A---- C:\WINDOWS\System32\netid.dll
2008-11-23 01:13:17 ----A---- C:\WINDOWS\System32\netlogon.dll
2008-11-23 01:13:15 ----A---- C:\WINDOWS\System32\netman.dll
2008-11-23 01:13:13 ----A---- C:\WINDOWS\System32\netplwiz.dll
2008-11-23 01:13:12 ----A---- C:\WINDOWS\System32\netrap.dll
2008-11-23 01:13:11 ----A---- C:\WINDOWS\System32\netsetup.exe
2008-11-23 01:13:09 ----A---- C:\WINDOWS\System32\netsh.exe
2008-11-23 01:13:06 ----A---- C:\WINDOWS\System32\netstat.exe
2008-11-23 01:13:06 ----A---- C:\WINDOWS\System32\netshell.dll
2008-11-23 01:13:05 ----A---- C:\WINDOWS\System32\netui0.dll
2008-11-23 01:13:04 ----A---- C:\WINDOWS\System32\netui1.dll
2008-11-23 01:13:03 ----A---- C:\WINDOWS\System32\newdev.dll
2008-11-23 01:13:02 ----A---- C:\WINDOWS\System32\nlhtml.dll
2008-11-23 01:13:00 ----A---- C:\WINDOWS\System32\nmmkcert.dll
2008-11-23 01:12:59 ----A---- C:\WINDOWS\System32\npptools.dll
2008-11-23 01:12:59 ----A---- C:\WINDOWS\System32\notepad.exe
2008-11-23 01:12:59 ----A---- C:\WINDOWS\notepad.exe
2008-11-23 01:12:58 ----A---- C:\WINDOWS\System32\ntdsapi.dll
2008-11-23 01:12:52 ----A---- C:\WINDOWS\System32\ntlanman.dll
2008-11-23 01:12:51 ----A---- C:\WINDOWS\System32\ntmarta.dll
2008-11-23 01:12:50 ----A---- C:\WINDOWS\System32\ntmsapi.dll
2008-11-23 01:12:49 ----A---- C:\WINDOWS\System32\ntmsdba.dll
2008-11-23 01:12:48 ----A---- C:\WINDOWS\System32\ntmsmgr.dll
2008-11-23 01:12:46 ----A---- C:\WINDOWS\System32\ntmssvc.dll
2008-11-23 01:12:44 ----A---- C:\WINDOWS\System32\ntshrui.dll
2008-11-23 01:12:41 ----A---- C:\WINDOWS\System32\oakley.dll
2008-11-23 01:12:39 ----A---- C:\WINDOWS\System32\objsel.dll
2008-11-23 01:12:38 ----A---- C:\WINDOWS\System32\occache.dll
2008-11-23 01:12:36 ----A---- C:\WINDOWS\System32\odbc32gt.dll
2008-11-23 01:12:36 ----A---- C:\WINDOWS\System32\odbc32.dll
2008-11-23 01:12:35 ----A---- C:\WINDOWS\System32\odbcad32.exe
2008-11-23 01:12:34 ----A---- C:\WINDOWS\System32\odbcbcp.dll
2008-11-23 01:12:33 ----A---- C:\WINDOWS\System32\odbcconf.dll
2008-11-23 01:12:32 ----A---- C:\WINDOWS\System32\odbcconf.exe
2008-11-23 01:12:29 ----A---- C:\WINDOWS\System32\odbccp32.dll
2008-11-23 01:12:27 ----A---- C:\WINDOWS\System32\odbccr32.dll
2008-11-23 01:12:26 ----A---- C:\WINDOWS\System32\odbccu32.dll
2008-11-23 01:12:25 ----A---- C:\WINDOWS\System32\odbcji32.dll
2008-11-23 01:12:25 ----A---- C:\WINDOWS\System32\odbcint.dll
2008-11-23 01:12:23 ----A---- C:\WINDOWS\System32\odbcjt32.dll
2008-11-23 01:12:21 ----A---- C:\WINDOWS\System32\odbcp32r.dll
2008-11-23 01:12:20 ----A---- C:\WINDOWS\System32\odbctrac.dll
2008-11-23 01:12:19 ----A---- C:\WINDOWS\System32\oddbse32.dll
2008-11-23 01:12:18 ----A---- C:\WINDOWS\System32\odfox32.dll
2008-11-23 01:12:18 ----A---- C:\WINDOWS\System32\odexl32.dll
2008-11-23 01:12:17 ----A---- C:\WINDOWS\System32\odtext32.dll
2008-11-23 01:12:17 ----A---- C:\WINDOWS\System32\odpdx32.dll
2008-11-23 01:12:15 ----A---- C:\WINDOWS\System32\offfilt.dll
2008-11-23 01:12:14 ----A---- C:\WINDOWS\System32\ole32.dll
2008-11-23 01:12:13 ----A---- C:\WINDOWS\System32\oleprn.dll
2008-11-23 01:12:12 ----A---- C:\WINDOWS\System32\olepro32.dll
2008-11-23 01:12:10 ----A---- C:\WINDOWS\System32\opengl32.dll
2008-11-23 01:12:08 ----A---- C:\WINDOWS\System32\osk.exe
2008-11-23 01:12:07 ----A---- C:\WINDOWS\System32\osuninst.dll
2008-11-23 01:12:06 ----A---- C:\WINDOWS\System32\packager.exe
2008-11-23 01:12:05 ----A---- C:\WINDOWS\System32\pautoenr.dll
2008-11-23 01:12:03 ----A---- C:\WINDOWS\System32\pdh.dll
2008-11-23 01:12:02 ----A---- C:\WINDOWS\System32\perfmon.exe
2008-11-23 01:12:02 ----A---- C:\WINDOWS\System32\perfdisk.dll
2008-11-23 01:12:01 ----A---- C:\WINDOWS\System32\perfos.dll
2008-11-23 01:12:00 ----A---- C:\WINDOWS\System32\perfproc.dll
2008-11-23 01:11:59 ----A---- C:\WINDOWS\System32\photowiz.dll
2008-11-23 01:11:57 ----A---- C:\WINDOWS\System32\pid.dll
2008-11-23 01:11:56 ----A---- C:\WINDOWS\System32\pjlmon.dll
2008-11-23 01:11:56 ----A---- C:\WINDOWS\System32\ping.exe
2008-11-23 01:11:54 ----A---- C:\WINDOWS\System32\polstore.dll
2008-11-23 01:11:54 ----A---- C:\WINDOWS\System32\pngfilt.dll
2008-11-23 01:11:51 ----A---- C:\WINDOWS\System32\powrprof.dll
2008-11-23 01:11:49 ----A---- C:\WINDOWS\System32\profmap.dll
2008-11-23 01:11:48 ----A---- C:\WINDOWS\System32\progman.exe
2008-11-23 01:11:46 ----A---- C:\WINDOWS\System32\proquota.exe
2008-11-23 01:11:45 ----A---- C:\WINDOWS\System32\psapi.dll
2008-11-23 01:11:44 ----A---- C:\WINDOWS\System32\psbase.dll
2008-11-23 01:11:43 ----A---- C:\WINDOWS\System32\pstorec.dll
2008-11-23 01:11:42 ----A---- C:\WINDOWS\System32\pstorsvc.dll
2008-11-23 01:11:40 ----A---- C:\WINDOWS\System32\qasf.dll
2008-11-23 01:11:38 ----A---- C:\WINDOWS\System32\qcap.dll
2008-11-23 01:11:36 ----A---- C:\WINDOWS\System32\qdv.dll
2008-11-23 01:11:33 ----A---- C:\WINDOWS\System32\qdvd.dll
2008-11-23 01:11:30 ----A---- C:\WINDOWS\System32\qedit.dll
2008-11-23 01:11:26 ----A---- C:\WINDOWS\System32\qedwipes.dll
2008-11-23 01:11:25 ----A---- C:\WINDOWS\System32\qmgrprxy.dll
2008-11-23 01:11:23 ----A---- C:\WINDOWS\System32\qprocess.exe
2008-11-23 01:11:21 ----A---- C:\WINDOWS\System32\quartz.dll
2008-11-23 01:11:15 ----A---- C:\WINDOWS\System32\query.dll
2008-11-23 01:11:13 ----A---- C:\WINDOWS\System32\racpldlg.dll
2008-11-23 01:11:12 ----A---- C:\WINDOWS\System32\raschap.dll
2008-11-23 01:11:12 ----A---- C:\WINDOWS\System32\rasadhlp.dll
2008-11-23 01:11:10 ----A---- C:\WINDOWS\System32\rasmans.dll
2008-11-23 01:11:08 ----A---- C:\WINDOWS\System32\rasphone.exe
2008-11-23 01:11:06 ----A---- C:\WINDOWS\System32\rasppp.dll
2008-11-23 01:11:05 ----A---- C:\WINDOWS\System32\rassapi.dll
2008-11-23 01:11:04 ----A---- C:\WINDOWS\System32\rastls.dll
2008-11-23 01:11:02 ----A---- C:\WINDOWS\System32\rcimlby.exe
2008-11-23 01:11:02 ----A---- C:\WINDOWS\System32\rcbdyctl.dll
2008-11-23 01:11:01 ----A---- C:\WINDOWS\System32\rcp.exe
2008-11-23 01:10:59 ----A---- C:\WINDOWS\System32\rdchost.dll
2008-11-23 01:10:57 ----A---- C:\WINDOWS\System32\rdpclip.exe
2008-11-23 01:10:56 ----A---- C:\WINDOWS\System32\rdpdd.dll
2008-11-23 01:10:54 ----A---- C:\WINDOWS\System32\rdpwsx.dll
2008-11-23 01:10:54 ----A---- C:\WINDOWS\System32\rdpsnd.dll
2008-11-23 01:10:52 ----A---- C:\WINDOWS\System32\rdshost.exe
2008-11-23 01:10:52 ----A---- C:\WINDOWS\System32\rdsaddin.exe
2008-11-23 01:10:50 ----A---- C:\WINDOWS\System32\redir.exe
2008-11-23 01:10:49 ----A---- C:\WINDOWS\System32\reg.exe
2008-11-23 01:10:48 ----A---- C:\WINDOWS\System32\regapi.dll
2008-11-23 01:10:46 ----A---- C:\WINDOWS\System32\regsvc.dll
2008-11-23 01:10:45 ----A---- C:\WINDOWS\System32\regsvr32.exe
2008-11-23 01:10:43 ----A---- C:\WINDOWS\System32\regwizc.dll
2008-11-23 01:10:41 ----A---- C:\WINDOWS\System32\remotepg.dll
2008-11-23 01:10:38 ----A---- C:\WINDOWS\System32\resutils.dll
2008-11-23 01:10:37 ----A---- C:\WINDOWS\System32\rexec.exe
2008-11-23 01:10:35 ----A---- C:\WINDOWS\System32\riched20.dll
2008-11-23 01:10:34 ----A---- C:\WINDOWS\System32\rpcrt4.dll
2008-11-23 01:10:33 ----A---- C:\WINDOWS\System32\rpcss.dll
2008-11-23 01:10:32 ----A---- C:\WINDOWS\System32\rsaenh.dll
2008-11-23 01:10:30 ----A---- C:\WINDOWS\System32\rsmps.dll
2008-11-23 01:10:30 ----A---- C:\WINDOWS\System32\rsh.exe
2008-11-23 01:10:29 ----A---- C:\WINDOWS\System32\rtcshare.exe
2008-11-23 01:10:27 ----A---- C:\WINDOWS\System32\rtipxmib.dll
2008-11-23 01:10:26 ----A---- C:\WINDOWS\System32\runonce.exe
2008-11-23 01:10:26 ----A---- C:\WINDOWS\System32\rundll32.exe
2008-11-23 01:10:26 ----A---- C:\WINDOWS\System32\rtutils.dll
2008-11-23 01:10:25 ----A---- C:\WINDOWS\System32\safrcdlg.dll
2008-11-23 01:10:24 ----A---- C:\WINDOWS\System32\safrslv.dll
2008-11-23 01:10:24 ----A---- C:\WINDOWS\System32\safrdm.dll
2008-11-23 01:10:22 ----A---- C:\WINDOWS\System32\scarddlg.dll
2008-11-23 01:10:21 ----A---- C:\WINDOWS\System32\sccbase.dll
2008-11-23 01:10:18 ----A---- C:\WINDOWS\System32\sccsccp.dll
2008-11-23 01:10:17 ----A---- C:\WINDOWS\System32\scecli.dll
2008-11-23 01:10:15 ----A---- C:\WINDOWS\System32\scesrv.dll
2008-11-23 01:10:13 ----A---- C:\WINDOWS\System32\schedsvc.dll
2008-11-23 01:10:11 ----A---- C:\WINDOWS\System32\sclgntfy.dll
2008-11-23 01:10:09 ----A---- C:\WINDOWS\System32\scrobj.dll
2008-11-23 01:10:08 ----A---- C:\WINDOWS\System32\scrrun.dll
2008-11-23 01:10:07 ----A---- C:\WINDOWS\System32\sdbinst.exe
2008-11-23 01:10:05 ----A---- C:\WINDOWS\System32\secur32.dll
2008-11-23 01:10:05 ----A---- C:\WINDOWS\System32\seclogon.dll
2008-11-23 01:10:04 ----A---- C:\WINDOWS\System32\sendcmsg.dll
2008-11-23 01:10:04 ----A---- C:\WINDOWS\System32\security.dll
2008-11-23 01:10:03 ----A---- C:\WINDOWS\System32\sendmail.dll
2008-11-23 01:10:02 ----A---- C:\WINDOWS\System32\sens.dll
2008-11-23 01:10:01 ----A---- C:\WINDOWS\System32\servdeps.dll
2008-11-23 01:10:01 ----A---- C:\WINDOWS\System32\sensapi.dll
2008-11-23 01:09:59 ----A---- C:\WINDOWS\System32\sethc.exe
2008-11-23 01:09:58 ----A---- C:\WINDOWS\System32\setup.exe
2008-11-23 01:09:57 ----A---- C:\WINDOWS\System32\sfc.dll
2008-11-23 01:09:56 ----A---- C:\WINDOWS\System32\sfc_os.dll
2008-11-23 01:09:54 ----A---- C:\WINDOWS\System32\sfcfiles.dll
2008-11-23 01:09:52 ----A---- C:\WINDOWS\System32\shdoclc.dll
2008-11-23 01:09:50 ----A---- C:\WINDOWS\System32\shdocvw.dll
2008-11-23 01:09:37 ----A---- C:\WINDOWS\System32\shgina.dll
2008-11-23 01:09:37 ----A---- C:\WINDOWS\System32\shfolder.dll
2008-11-23 01:09:37 ----A---- C:\WINDOWS\System32\shell32.dll
2008-11-23 01:09:36 ----A---- C:\WINDOWS\System32\shimeng.dll
2008-11-23 01:09:35 ----A---- C:\WINDOWS\System32\shimgvw.dll
2008-11-23 01:09:34 ----A---- C:\WINDOWS\System32\shmedia.dll
2008-11-23 01:09:34 ----A---- C:\WINDOWS\System32\shlwapi.dll
2008-11-23 01:09:32 ----A---- C:\WINDOWS\System32\shmgrate.exe
2008-11-23 01:09:30 ----A---- C:\WINDOWS\System32\shrpubw.exe
2008-11-23 01:09:28 ----A---- C:\WINDOWS\System32\shscrap.dll
2008-11-23 01:09:27 ----A---- C:\WINDOWS\System32\shsvcs.dll
2008-11-23 01:09:25 ----A---- C:\WINDOWS\System32\sigtab.dll
2008-11-23 01:09:25 ----A---- C:\WINDOWS\System32\shutdown.exe
2008-11-23 01:09:24 ----A---- C:\WINDOWS\System32\sigverif.exe
2008-11-23 01:09:22 ----A---- C:\WINDOWS\System32\skeys.exe
2008-11-23 01:09:18 ----A---- C:\WINDOWS\System32\slayerxp.dll
2008-11-23 01:09:16 ----A---- C:\WINDOWS\System32\slbcsp.dll
2008-11-23 01:09:13 ----A---- C:\WINDOWS\System32\slbiop.dll
2008-11-23 01:09:10 ----A---- C:\WINDOWS\System32\smlogcfg.dll
2008-11-23 01:09:07 ----A---- C:\WINDOWS\System32\smlogsvc.exe
2008-11-23 01:09:05 ----A---- C:\WINDOWS\System32\sndrec32.exe
2008-11-23 01:09:03 ----A---- C:\WINDOWS\System32\snmpapi.dll
2008-11-23 01:09:02 ----A---- C:\WINDOWS\System32\snmpsnap.dll
2008-11-23 01:08:59 ----A---- C:\WINDOWS\System32\spoolss.dll
2008-11-23 01:08:59 ----A---- C:\WINDOWS\System32\spider.exe
2008-11-23 01:08:57 ----A---- C:\WINDOWS\System32\spoolsv.exe
2008-11-23 01:08:55 ----A---- C:\WINDOWS\System32\sqlsrv32.dll
2008-11-23 01:08:50 ----A---- C:\WINDOWS\System32\sqlunirl.dll
2008-11-23 01:08:37 ----A---- C:\WINDOWS\System32\srclient.dll
2008-11-23 01:08:36 ----A---- C:\WINDOWS\System32\srsvc.dll
2008-11-23 01:08:36 ----A---- C:\WINDOWS\System32\srrstr.dll
2008-11-23 01:08:29 ----A---- C:\WINDOWS\System32\ssdpapi.dll
2008-11-23 01:08:28 ----A---- C:\WINDOWS\System32\ssdpsrv.dll
2008-11-23 01:08:16 ----A---- C:\WINDOWS\System32\sti.dll
2008-11-23 01:08:14 ----A---- C:\WINDOWS\System32\sti_ci.dll
2008-11-23 01:08:11 ----A---- C:\WINDOWS\System32\stimon.exe
2008-11-23 01:08:10 ----A---- C:\WINDOWS\System32\stobject.dll
2008-11-23 01:08:09 ----A---- C:\WINDOWS\System32\storprop.dll
2008-11-23 01:08:05 ----A---- C:\WINDOWS\System32\strmdll.dll
2008-11-23 01:08:04 ----A---- C:\WINDOWS\System32\svchost.exe
2008-11-23 01:08:02 ----A---- C:\WINDOWS\System32\sxs.dll
2008-11-23 01:08:01 ----A---- C:\WINDOWS\System32\synceng.dll
2008-11-23 01:08:00 ----A---- C:\WINDOWS\System32\syncui.dll
2008-11-23 01:07:55 ----A---- C:\WINDOWS\System32\sysocmgr.exe
2008-11-23 01:07:53 ----A---- C:\WINDOWS\System32\t2embed.dll
2008-11-23 01:07:50 ----A---- C:\WINDOWS\System32\tapi3.dll
2008-11-23 01:07:48 ----A---- C:\WINDOWS\System32\tapi32.dll
2008-11-23 01:07:47 ----A---- C:\WINDOWS\System32\tapisrv.dll
2008-11-23 01:07:45 ----A---- C:\WINDOWS\System32\taskmgr.exe
2008-11-23 01:07:42 ----A---- C:\WINDOWS\System32\tcpmib.dll
2008-11-23 01:07:41 ----A---- C:\WINDOWS\System32\tcpmon.dll
2008-11-23 01:07:40 ----A---- C:\WINDOWS\System32\tcpmon.ini
2008-11-23 01:07:37 ----A---- C:\WINDOWS\System32\telnet.exe
2008-11-23 01:07:35 ----A---- C:\WINDOWS\System32\termmgr.dll
2008-11-23 01:07:34 ----A---- C:\WINDOWS\System32\termsrv.dll
2008-11-23 01:07:31 ----A---- C:\WINDOWS\System32\themeui.dll
2008-11-23 01:07:27 ----A---- C:\WINDOWS\System32\tourstart.exe
2008-11-23 01:07:26 ----A---- C:\WINDOWS\System32\tracert.exe
2008-11-23 01:07:25 ----A---- C:\WINDOWS\System32\trkwks.dll
2008-11-23 01:07:24 ----A---- C:\WINDOWS\System32\tscfgwmi.dll
2008-11-23 01:07:22 ----A---- C:\WINDOWS\System32\tscupgrd.exe
2008-11-23 01:07:21 ----A---- C:\WINDOWS\System32\txflog.dll
2008-11-23 01:07:21 ----A---- C:\WINDOWS\System32\tsddd.dll
2008-11-23 01:07:19 ----A---- C:\WINDOWS\System32\udhisapi.dll
2008-11-23 01:07:18 ----A---- C:\WINDOWS\System32\umandlg.dll
2008-11-23 01:07:17 ----A---- C:\WINDOWS\System32\umpnpmgr.dll
2008-11-23 01:07:12 ----A---- C:\WINDOWS\System32\unimdmat.dll
2008-11-23 01:07:10 ----A---- C:\WINDOWS\System32\uniplat.dll
2008-11-23 01:07:09 ----A---- C:\WINDOWS\System32\upnp.dll
2008-11-23 01:07:06 ----A---- C:\WINDOWS\System32\upnpcont.exe
2008-11-23 01:07:05 ----A---- C:\WINDOWS\System32\upnphost.dll
2008-11-23 01:07:03 ----A---- C:\WINDOWS\System32\upnpui.dll
2008-11-23 01:07:01 ----A---- C:\WINDOWS\System32\url.dll
2008-11-23 01:07:01 ----A---- C:\WINDOWS\System32\ups.exe
2008-11-23 01:06:59 ----A---- C:\WINDOWS\System32\usbmon.dll
2008-11-23 01:06:59 ----A---- C:\WINDOWS\System32\urlmon.dll
2008-11-23 01:06:57 ----A---- C:\WINDOWS\System32\usbui.dll
2008-11-23 01:06:54 ----A---- C:\WINDOWS\System32\user32.dll
2008-11-23 01:06:52 ----A---- C:\WINDOWS\System32\userenv.dll
2008-11-23 01:06:51 ----A---- C:\WINDOWS\System32\usp10.dll
2008-11-23 01:06:50 ----A---- C:\WINDOWS\System32\utilman.exe
2008-11-23 01:06:48 ----A---- C:\WINDOWS\System32\vbajet32.dll
2008-11-23 01:06:48 ----A---- C:\WINDOWS\System32\uxtheme.dll
2008-11-23 01:06:45 ----A---- C:\WINDOWS\System32\vbscript.dll
2008-11-23 01:06:44 ----A---- C:\WINDOWS\System32\vdmdbg.dll
2008-11-23 01:06:43 ----A---- C:\WINDOWS\System32\vdmredir.dll
2008-11-23 01:06:41 ----A---- C:\WINDOWS\System32\version.dll
2008-11-23 01:06:40 ----A---- C:\WINDOWS\System32\vssapi.dll
2008-11-23 01:06:37 ----A---- C:\WINDOWS\System32\vssvc.exe
2008-11-23 01:06:35 ----A---- C:\WINDOWS\System32\w32time.dll
2008-11-23 01:06:32 ----A---- C:\WINDOWS\System32\wdigest.dll
2008-11-23 01:06:30 ----A---- C:\WINDOWS\System32\webcheck.dll
2008-11-23 01:06:29 ----A---- C:\WINDOWS\System32\webclnt.dll
2008-11-23 01:06:20 ----A---- C:\WINDOWS\System32\webvw.dll
2008-11-23 01:06:18 ----A---- C:\WINDOWS\System32\wextract.exe
2008-11-23 01:06:14 ----A---- C:\WINDOWS\System32\wiaacmgr.exe
2008-11-23 01:06:10 ----A---- C:\WINDOWS\System32\wiadefui.dll
2008-11-23 01:06:07 ----A---- C:\WINDOWS\System32\wiadss.dll
2008-11-23 01:06:04 ----A---- C:\WINDOWS\System32\wiascr.dll
2008-11-23 01:06:01 ----A---- C:\WINDOWS\System32\wiaservc.dll
2008-11-23 01:05:57 ----A---- C:\WINDOWS\System32\wiashext.dll
2008-11-23 01:05:56 ----A---- C:\WINDOWS\System32\wiavideo.dll
2008-11-23 01:05:52 ----A---- C:\WINDOWS\System32\wininet.dll
2008-11-23 01:05:51 ----A---- C:\WINDOWS\System32\winipsec.dll
2008-11-23 01:05:49 ----A---- C:\WINDOWS\System32\winlogon.exe
2008-11-23 01:05:47 ----A---- C:\WINDOWS\System32\winmm.dll
2008-11-23 01:05:46 ----A---- C:\WINDOWS\System32\winntbbu.dll
2008-11-23 01:05:43 ----A---- C:\WINDOWS\System32\winrnr.dll
2008-11-23 01:05:42 ----A---- C:\WINDOWS\System32\winscard.dll
2008-11-23 01:05:39 ----A---- C:\WINDOWS\System32\winsrv.dll
2008-11-23 01:05:37 ----A---- C:\WINDOWS\System32\wintrust.dll
2008-11-23 01:05:37 ----A---- C:\WINDOWS\System32\winsta.dll
2008-11-23 01:05:36 ----A---- C:\WINDOWS\System32\winver.exe
2008-11-23 01:05:35 ----A---- C:\WINDOWS\System32\wldap32.dll
2008-11-23 01:05:33 ----A---- C:\WINDOWS\System32\wlnotify.dll
2008-11-23 01:05:30 ----A---- C:\WINDOWS\System32\wmadmod.dll
2008-11-23 01:05:27 ----A---- C:\WINDOWS\System32\wmadmoe.dll
2008-11-23 01:05:24 ----A---- C:\WINDOWS\System32\wmasf.dll
2008-11-23 01:05:22 ----A---- C:\WINDOWS\System32\wmdmlog.dll
2008-11-23 01:05:21 ----A---- C:\WINDOWS\System32\wmdmps.dll
2008-11-23 01:05:20 ----A---- C:\WINDOWS\System32\wmi.dll
2008-11-23 01:05:18 ----A---- C:\WINDOWS\System32\wmnetmgr.dll
2008-11-23 01:05:13 ----A---- C:\WINDOWS\System32\wmpcd.dll
2008-11-23 01:05:11 ----A---- C:\WINDOWS\System32\wmpcore.dll
2008-11-23 01:05:08 ----A---- C:\WINDOWS\System32\wmploc.dll
2008-11-23 01:05:06 ----A---- C:\WINDOWS\System32\wmpshell.dll
2008-11-23 01:05:04 ----A---- C:\WINDOWS\System32\wmpui.dll
2008-11-23 01:05:00 ----A---- C:\WINDOWS\System32\wmsdmod.dll
2008-11-23 01:04:58 ----A---- C:\WINDOWS\System32\wmsdmoe.dll
2008-11-23 01:04:57 ----A---- C:\WINDOWS\System32\wmstream.dll
2008-11-23 01:04:51 ----A---- C:\WINDOWS\System32\wmvcore.dll
2008-11-23 01:04:49 ----A---- C:\WINDOWS\System32\wmvdmod.dll
2008-11-23 01:04:43 ----A---- C:\WINDOWS\System32\wow32.dll
2008-11-23 01:04:41 ----A---- C:\WINDOWS\System32\wpabaln.exe
2008-11-23 01:04:40 ----A---- C:\WINDOWS\System32\wpnpinst.exe
2008-11-23 01:04:39 ----A---- C:\WINDOWS\System32\ws2_32.dll
2008-11-23 01:04:38 ----A---- C:\WINDOWS\System32\ws2help.dll
2008-11-23 01:04:37 ----A---- C:\WINDOWS\System32\wscript.exe
2008-11-23 01:04:36 ----A---- C:\WINDOWS\System32\wshcon.dll
2008-11-23 01:04:35 ----A---- C:\WINDOWS\System32\wship6.dll
2008-11-23 01:04:35 ----A---- C:\WINDOWS\System32\wshext.dll
2008-11-23 01:04:31 ----A---- C:\WINDOWS\System32\wshrm.dll
2008-11-23 01:04:30 ----A---- C:\WINDOWS\System32\wsnmp32.dll
2008-11-23 01:04:30 ----A---- C:\WINDOWS\System32\wshtcpip.dll
2008-11-23 01:04:29 ----A---- C:\WINDOWS\System32\wstdecod.dll
2008-11-23 01:04:29 ----A---- C:\WINDOWS\System32\wsock32.dll
2008-11-23 01:04:27 ----A---- C:\WINDOWS\System32\wzcdlg.dll
2008-11-23 01:04:27 ----A---- C:\WINDOWS\System32\wtsapi32.dll
2008-11-23 01:04:25 ----A---- C:\WINDOWS\System32\wzcsvc.dll
2008-11-23 01:04:25 ----A---- C:\WINDOWS\System32\wzcsapi.dll
2008-11-23 01:04:23 ----A---- C:\WINDOWS\System32\xactsrv.dll
2008-11-23 01:04:21 ----A---- C:\WINDOWS\System32\xenroll.dll
2008-11-23 01:04:21 ----A---- C:\WINDOWS\System32\xcopy.exe
2008-11-23 01:04:19 ----A---- C:\WINDOWS\System32\zipfldr.dll
2008-11-23 01:04:19 ----A---- C:\WINDOWS\System32\xolehlp.dll
2008-11-23 01:04:15 ----A---- C:\WINDOWS\System32\advapi32.dll
2008-11-23 01:04:14 ----A---- C:\WINDOWS\System32\autochk.exe
2008-11-23 01:04:12 ----A---- C:\WINDOWS\System32\autoconv.exe
2008-11-23 01:04:10 ----A---- C:\WINDOWS\System32\cmd.exe
2008-11-23 01:04:08 ----A---- C:\WINDOWS\System32\comctl32.dll
2008-11-23 01:04:07 ----A---- C:\WINDOWS\System32\csrsrv.dll
2008-11-23 01:04:07 ----A---- C:\WINDOWS\System32\comdlg32.dll
2008-11-23 01:04:04 ----A---- C:\WINDOWS\System32\ftp.exe
2008-11-23 01:04:04 ----A---- C:\WINDOWS\System32\dhcpcsvc.dll
2008-11-23 01:04:03 ----A---- C:\WINDOWS\System32\hypertrm.dll
2008-11-23 01:04:01 ----A---- C:\WINDOWS\System32\imagehlp.dll
2008-11-23 01:03:59 ----A---- C:\WINDOWS\System32\lmhsvc.dll
2008-11-23 01:03:59 ----A---- C:\WINDOWS\System32\kernel32.dll
2008-11-23 01:03:57 ----A---- C:\WINDOWS\System32\localspl.dll
2008-11-23 01:03:56 ----A---- C:\WINDOWS\System32\locator.exe
2008-11-23 01:03:54 ----A---- C:\WINDOWS\System32\lsasrv.dll
2008-11-23 01:03:53 ----A---- C:\WINDOWS\System32\mgmtapi.dll
2008-11-23 01:03:52 ----A---- C:\WINDOWS\System32\msgsvc.dll
2008-11-23 01:03:51 ----A---- C:\WINDOWS\System32\msv1_0.dll
2008-11-23 01:03:50 ----A---- C:\WINDOWS\System32\nslookup.exe
2008-11-23 01:03:49 ----A---- C:\WINDOWS\System32\ntdll.dll
2008-11-23 01:03:48 ----A---- C:\WINDOWS\System32\ntprint.dll
2008-11-23 01:03:48 ----A---- C:\WINDOWS\System32\ntlsapi.dll
2008-11-23 01:03:47 ----A---- C:\WINDOWS\System32\ntvdm.exe
2008-11-23 01:03:46 ----A---- C:\WINDOWS\System32\nwprovau.dll
2008-11-23 01:03:44 ----A---- C:\WINDOWS\System32\perfctrs.dll
2008-11-23 01:03:44 ----A---- C:\WINDOWS\System32\oleaut32.dll
2008-11-23 01:03:43 ----A---- C:\WINDOWS\System32\rasapi32.dll
2008-11-23 01:03:43 ----A---- C:\WINDOWS\System32\printui.dll
2008-11-23 01:03:42 ----A---- C:\WINDOWS\System32\rasauto.dll
2008-11-23 01:03:41 ----A---- C:\WINDOWS\System32\rasdlg.dll
2008-11-23 01:03:40 ----A---- C:\WINDOWS\System32\rastapi.dll
2008-11-23 01:03:40 ----A---- C:\WINDOWS\System32\rasman.dll
2008-11-23 01:03:39 ----A---- C:\WINDOWS\System32\rshx32.dll
2008-11-23 01:03:38 ----A---- C:\WINDOWS\System32\samsrv.dll
2008-11-23 01:03:38 ----A---- C:\WINDOWS\System32\samlib.dll
2008-11-23 01:03:37 ----A---- C:\WINDOWS\System32\savedump.exe
2008-11-23 01:03:36 ----A---- C:\WINDOWS\System32\scardsvr.exe
2008-11-23 01:03:35 ----A---- C:\WINDOWS\System32\schannel.dll
2008-11-23 01:03:34 ----A---- C:\WINDOWS\System32\services.exe
2008-11-23 01:03:33 ----A---- C:\WINDOWS\System32\sessmgr.exe
2008-11-23 01:03:31 ----A---- C:\WINDOWS\System32\setupapi.dll
2008-11-23 01:03:30 ----A---- C:\WINDOWS\System32\smss.exe
2008-11-23 01:03:29 ----A---- C:\WINDOWS\System32\srvsvc.dll
2008-11-23 01:03:25 ----A---- C:\WINDOWS\System32\syssetup.dll
2008-11-23 01:03:23 ----A---- C:\WINDOWS\System32\tcpmonui.dll
2008-11-23 01:03:22 ----A---- C:\WINDOWS\System32\ulib.dll
2008-11-23 01:03:19 ----A---- C:\WINDOWS\System32\untfs.dll
2008-11-23 01:03:18 ----A---- C:\WINDOWS\System32\userinit.exe
2008-11-23 01:03:11 ----A---- C:\WINDOWS\System32\win32spl.dll
2008-11-23 01:03:07 ----A---- C:\WINDOWS\System32\wkssvc.dll
2008-11-23 01:01:17 ----A---- C:\ntdetect.com
2008-11-23 01:01:12 ----A---- C:\WINDOWS\System32\hal.dll
2008-11-23 01:01:10 ----A---- C:\WINDOWS\System32\ntkrnlpa.exe
2008-11-23 01:01:06 ----A---- C:\WINDOWS\System32\ntoskrnl.exe
2008-11-23 01:00:32 ----A---- C:\WINDOWS\System32\asfsipc.dll
2008-11-23 01:00:30 ----A---- C:\WINDOWS\System32\dxmrtp.dll
2008-11-23 01:00:29 ----A---- C:\WINDOWS\System32\iuctl.dll
2008-11-23 01:00:28 ----A---- C:\WINDOWS\System32\msdvdopt.dll
2008-11-23 01:00:27 ----A---- C:\WINDOWS\System32\mspmspsv.dll
2008-11-23 01:00:26 ----A---- C:\WINDOWS\System32\mstvca.dll
2008-11-23 01:00:24 ----A---- C:\WINDOWS\System32\mstvgs.dll
2008-11-23 01:00:23 ----A---- C:\WINDOWS\System32\rtcdll.dll
2008-11-23 01:00:22 ----A---- C:\WINDOWS\System32\wupdinfo.dll
2008-11-23 01:00:21 ----A---- C:\WINDOWS\System32\wuv3is.dll
2008-11-23 00:44:23 ----HDC---- C:\WINDOWS\$NtServicePackUninstall$
2008-11-23 00:43:53 ----D---- C:\WINDOWS\EHome
2008-11-22 21:26:08 ----A---- C:\WINDOWS\System32\agyd.bat
2008-11-22 21:26:05 ----A---- C:\Program Files\Common Files\enuh.exe
2008-11-22 21:26:04 ----A---- C:\Documents and Settings\All Users\Application Data\yhudocotel.dll
2008-11-22 15:41:26 ----A---- C:\WINDOWS\System32\khedwlab.dll
2008-11-22 15:40:31 ----A---- C:\WINDOWS\System32\qsadbwve.dll
2008-11-21 15:41:22 ----A---- C:\WINDOWS\System32\kghvtx.dll
2008-11-21 15:41:19 ----A---- C:\WINDOWS\System32\yjjhqclc.dll
2008-11-20 14:49:14 ----D---- C:\Program Files\MSXML 4.0
2008-11-19 21:17:32 ----A---- C:\WINDOWS\System32\ricnhy.dll
2008-11-19 21:17:28 ----A---- C:\WINDOWS\System32\lbikrmpo.dll
2008-11-19 20:53:34 ----A---- C:\WINDOWS\System32\abgnpa.dll
2008-11-19 20:53:32 ----A---- C:\WINDOWS\System32\luwqctme.dll
2008-11-18 20:53:36 ----D---- C:\Program Files\HighKey
2008-11-18 20:53:28 ----A---- C:\WINDOWS\System32\eadudj.dll
2008-11-18 20:53:26 ----A---- C:\WINDOWS\System32\elugtewb.dll
2008-11-17 19:46:13 ----A---- C:\WINDOWS\System32\klcrzx.dll
2008-11-17 19:46:12 ----A---- C:\WINDOWS\System32\pmfdfoir.dll
2008-11-17 14:37:45 ----A---- C:\WINDOWS\System32\winhost.exe
2008-11-17 14:37:28 ----A---- C:\Documents and Settings\All Users\Application Data\FreeApp.exe
2008-11-16 18:23:12 ----D---- C:\ProgramData
2008-11-16 18:23:12 ----D---- C:\Program Files\Angle Interactive
2008-11-16 17:57:21 ----A---- C:\WINDOWS\System32\oumdzz.dll
2008-11-16 17:57:19 ----A---- C:\WINDOWS\System32\omtmvdrp.dll
2008-11-15 20:09:56 ----A---- C:\WINDOWS\System32\incnud.dll
2008-11-15 20:09:54 ----A---- C:\WINDOWS\System32\pftikpms.dll
2008-11-15 17:22:19 ----A---- C:\WINDOWS\System32\ef1679de-.txt
2008-11-08 20:17:39 ----D---- C:\WINDOWS\System32\NtmsData
2008-10-29 19:32:55 ----A---- C:\WINDOWS\IE4 Error Log.txt
2008-09-21 19:10:22 ----A---- C:\WINDOWS\System32\2838C370.exe
2008-09-20 19:42:45 ----HD---- C:\WINDOWS\PIF
2008-09-10 20:14:49 ----D---- C:\Program Files\Mystery P.I. - The Vegas Heist
2008-09-10 20:12:13 ----AD---- C:\Documents and Settings\All Users\Application Data\TEMP
2008-09-10 20:11:41 ----D---- C:\Program Files\SCRABBLE

 

======List of files/folders modified in the last 3 months======

2008-12-05 09:35:00 ----D---- C:\WINDOWS\Prefetch
2008-12-05 09:00:05 ----RD---- C:\Program Files
2008-12-05 08:59:00 ----D---- C:\WINDOWS\System32\CatRoot2
2008-12-04 11:23:41 ----RSH---- C:\BOOT.INI
2008-12-04 11:23:41 ----A---- C:\WINDOWS\win.ini
2008-12-04 11:23:41 ----A---- C:\WINDOWS\system.ini
2008-12-04 10:54:11 ----D---- C:\WINDOWS\system32
2008-12-04 10:54:05 ----SHD---- C:\WINDOWS\Installer
2008-12-04 10:46:52 ----SD---- C:\WINDOWS\Tasks
2008-12-04 10:46:50 ----D---- C:\WINDOWS
2008-12-04 10:20:04 ----D---- C:\WINDOWS\Temp
2008-12-04 10:20:04 ----D---- C:\WINDOWS\System32\ias
2008-12-04 10:18:36 ----A---- C:\WINDOWS\ModemLog_Lucent Win Modem.txt
2008-12-04 10:18:32 ----D---- C:\WINDOWS\Debug
2008-12-04 10:17:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2008-12-03 15:53:39 ----A---- C:\WINDOWS\System32\PerfStringBackup.INI
2008-12-03 15:53:29 ----D---- C:\WINDOWS\Cursors
2008-12-03 15:53:27 ----D---- C:\WINDOWS\Help
2008-12-03 15:35:15 ----SHD---- C:\RECYCLER
2008-12-03 14:34:30 ----D---- C:\WINDOWS\System32\drivers
2008-12-01 12:11:39 ----D---- C:\Temp
2008-12-01 12:06:23 ----D---- C:\Program Files\PC-Doctor for Windows XP
2008-12-01 11:51:11 ----D---- C:\Program Files\Common Files\Symantec Shared
2008-12-01 11:47:40 ----D---- C:\Documents and Settings\All Users\Application Data\Symantec
2008-12-01 11:06:11 ----D---- C:\Documents and Settings
2008-11-23 05:54:06 ----D---- C:\WINDOWS\System32\FxsTmp
2008-11-23 03:57:01 ----D---- C:\WINDOWS\inf
2008-11-23 02:23:17 ----D---- C:\WINDOWS\Web
2008-11-23 02:23:17 ----D---- C:\WINDOWS\System32\wbem
2008-11-23 02:23:13 ----D---- C:\WINDOWS\System32\usmt
2008-11-23 02:23:10 ----D---- C:\WINDOWS\System32\Setup
2008-11-23 02:23:09 ----D---- C:\WINDOWS\System32\Restore
2008-11-23 02:23:08 ----D---- C:\WINDOWS\System32\oobe
2008-11-23 02:23:05 ----D---- C:\WINDOWS\System32\npp
2008-11-23 02:22:49 ----RSHDC---- C:\WINDOWS\System32\dllcache
2008-11-23 02:20:31 ----D---- C:\WINDOWS\System32\Com
2008-11-23 02:18:05 ----D---- C:\WINDOWS\system
2008-11-23 02:18:04 ----D---- C:\WINDOWS\srchasst
2008-11-23 02:18:00 ----D---- C:\WINDOWS\msagent
2008-11-23 02:17:40 ----D---- C:\WINDOWS\ime
2008-11-23 02:17:31 ----D---- C:\WINDOWS\Fonts
2008-11-23 02:17:28 ----D---- C:\WINDOWS\AppPatch
2008-11-23 02:17:25 ----D---- C:\Program Files\Windows NT
2008-11-23 02:17:25 ----D---- C:\Program Files\Windows Media Player
2008-11-23 02:17:23 ----D---- C:\Program Files\Outlook Express
2008-11-23 02:17:21 ----D---- C:\Program Files\NetMeeting
2008-11-23 02:17:17 ----D---- C:\Program Files\Movie Maker
2008-11-23 02:17:17 ----D---- C:\Program Files\Messenger
2008-11-23 02:17:15 ----D---- C:\Program Files\Internet Explorer
2008-11-23 02:17:07 ----D---- C:\Program Files\Common Files\System
2008-11-23 01:54:38 ----D---- C:\WINDOWS\wt
2008-11-23 01:31:50 ----D---- C:\WINDOWS\security
2008-11-23 01:24:54 ----D---- C:\WINDOWS\System32\ReinstallBackups
2008-11-22 21:26:08 ----D---- C:\Program Files\Common Files
2008-11-20 14:49:36 ----D---- C:\WINDOWS\WinSxS
2008-11-20 14:49:22 ----D---- C:\Program Files\Common Files\Microsoft Shared
2008-11-08 20:16:48 ----D---- C:\WINDOWS\Registration

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 {6080A529-897E-4629-A488-ABA0C29B635E};Intel(R) Graphics Platform (SoftBIOS) Driver; C:\WINDOWS\system32\drivers\ialmsbw.sys [2002-05-22 90336]
R1 sscdbhk5;sscdbhk5; C:\WINDOWS\system32\drivers\sscdbhk5.sys [2002-06-19 5589]
R1 ssrtln;ssrtln; C:\WINDOWS\system32\drivers\ssrtln.sys [2002-06-19 22995]
R2 ASCTRM;ASCTRM; C:\WINDOWS\System32\drivers\ASCTRM.sys [2007-04-14 8552]
R2 drvnddm;drvnddm; C:\WINDOWS\system32\drivers\drvnddm.sys [2002-06-06 40368]
R2 mrtRate;mrtRate; C:\WINDOWS\System32\drivers\mrtRate.sys [2001-02-28 34712]
R2 tfsnboio;tfsnboio; C:\WINDOWS\system32\dla\tfsnboio.sys [2002-07-16 23701]
R2 tfsncofs;tfsncofs; C:\WINDOWS\system32\dla\tfsncofs.sys [2002-07-16 34805]
R2 tfsndrct;tfsndrct; C:\WINDOWS\system32\dla\tfsndrct.sys [2002-07-16 4117]
R2 tfsndres;tfsndres; C:\WINDOWS\system32\dla\tfsndres.sys [2002-07-16 2201]
R2 tfsnifs;tfsnifs; C:\WINDOWS\system32\dla\tfsnifs.sys [2002-07-16 54900]
R2 tfsnopio;tfsnopio; C:\WINDOWS\system32\dla\tfsnopio.sys [2002-07-16 14421]
R2 tfsnpool;tfsnpool; C:\WINDOWS\system32\dla\tfsnpool.sys [2002-07-16 6325]
R2 tfsnudf;tfsnudf; C:\WINDOWS\system32\dla\tfsnudf.sys [2002-07-16 91156]
R2 tfsnudfa;tfsnudfa; C:\WINDOWS\system32\dla\tfsnudfa.sys [2002-07-16 95125]
R3 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91};Intel(R) Graphics Chipset (KCH) Driver; C:\WINDOWS\system32\drivers\ialmkchw.sys [2002-05-22 69504]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-10-01 2279424]
R3 ialm;ialm; C:\WINDOWS\System32\DRIVERS\ialmnt5.sys [2002-05-22 78045]
R3 ltmodem5;LT Modem Driver; C:\WINDOWS\System32\DRIVERS\ltmdmnt.sys [2003-03-31 625537]
R3 MxlW2k;MxlW2k; C:\WINDOWS\System32\drivers\MxlW2k.sys [2006-02-17 28352]
R3 pfc;Padus ASPI Shell; C:\WINDOWS\system32\drivers\pfc.sys [2004-04-01 10368]
R3 Ps2;PS2; C:\WINDOWS\System32\DRIVERS\PS2.sys [2001-06-04 14112]
R3 rtl8139;Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [2001-08-17 23070]
R3 usbehci;Microsoft USB 2.0 Enhanced Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbehci.sys [2002-04-01 19072]
R3 usbhub;USB Root Hub (usbport); C:\WINDOWS\System32\DRIVERS\usbhub.sys [2002-04-01 51584]
R3 USBSTOR;USB Mass Storage Driver; C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS [2001-08-17 21760]
R3 usbuhci;Microsoft USB Universal Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbuhci.sys [2001-08-18 18944]
R3 wanatw;WAN Miniport (ATW); C:\WINDOWS\System32\DRIVERS\wanatw4.sys [2001-09-27 28396]
S3 E100B;Intel(R) PRO Adapter Driver; C:\WINDOWS\System32\DRIVERS\e100b325.sys [2001-08-17 117760]
S3 HidUsb;Microsoft HID Class Driver; C:\WINDOWS\System32\DRIVERS\hidusb.sys [2001-08-17 9600]
S3 i81x;i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [2001-08-08 158140]
S3 iAimFP0;iAimFP0; C:\WINDOWS\System32\DRIVERS\wADV01nt.sys [2001-08-08 12479]
S3 iAimFP1;iAimFP1; C:\WINDOWS\System32\DRIVERS\wADV02NT.sys [2001-08-08 12031]
S3 iAimFP2;iAimFP2; C:\WINDOWS\System32\DRIVERS\wADV05NT.sys [2001-08-08 11679]
S3 iAimFP3;iAimFP3; C:\WINDOWS\System32\DRIVERS\wSiINTxx.sys [2001-08-08 11999]
S3 iAimFP4;iAimFP4; C:\WINDOWS\System32\DRIVERS\wVchNTxx.sys [2001-08-08 19359]
S3 iAimTV0;iAimTV0; C:\WINDOWS\System32\DRIVERS\wATV01nt.sys [2001-08-08 29215]
S3 iAimTV1;iAimTV1; C:\WINDOWS\System32\DRIVERS\wATV02NT.sys [2001-08-08 19199]
S3 iAimTV3;iAimTV3; C:\WINDOWS\System32\DRIVERS\wATV04nt.sys [2001-08-08 33503]
S3 iAimTV4;iAimTV4; C:\WINDOWS\System32\DRIVERS\wCh7xxNT.sys [2001-08-08 23519]
S3 mouhid;Mouse HID Driver; C:\WINDOWS\System32\DRIVERS\mouhid.sys [2001-08-17 12160]
S3 nv;nv; C:\WINDOWS\System32\DRIVERS\nv4_mini.sys [2002-05-03 931882]
S3 nv4;nv4; C:\WINDOWS\System32\DRIVERS\nv4.sys [2001-08-17 731648]
S3 PCDRDRV;Pcdr CPU Helper Driver; C:\WINDOWS\system32\drivers\PCDRDRV.sys []
S3 PcdrNt;PcdrNt; C:\WINDOWS\System32\drivers\PcdrNt.sys [2000-03-23 44192]
S3 S3Psddr;S3Psddr; C:\WINDOWS\System32\DRIVERS\s3gnbm.sys [2002-07-13 155008]
S3 SiS315;SiS315; C:\WINDOWS\System32\DRIVERS\sisgrp.sys [2002-04-08 188032]
S3 usbohci;Microsoft USB Open Host Controller Miniport Driver; C:\WINDOWS\System32\DRIVERS\usbohci.sys [2001-08-18 15616]
S3 usbprint;Microsoft USB PRINTER Class; C:\WINDOWS\System32\DRIVERS\usbprint.sys [2001-08-17 24832]
S3 usbscan;Usbscan; C:\WINDOWS\System32\DRIVERS\usbscan.sys [2001-08-17 13824]
S4 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-18 12032]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 WANMiniportService;WAN Miniport (ATW) Service; C:\WINDOWS\wanmpsvc.exe [2002-01-31 65536]
S2 Fax;Fax; C:\WINDOWS\system32\fxssvc.exe [2001-08-18 249344]
S2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\System32\nvsvc32.exe [2002-05-03 61440]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [2005-04-04 69632]

-----------------EOF-----------------

 

Hi agraves,

You have got a badly infected computer. It was well infected before you installed the XP Service Pack. Please visit the following webpage for instructions for downloading and running ComboFix

How to use ComboFix


Download ComboFix by sUBs from here, saving the file to your desktop.


Please disable realtime protection applications as they sometimes interfere with the tool. Check this link for your applicable programs.

• Close all open programs and windows
• Double click ComboFix.exe and follow the prompts.
• It may reboot your computer and resume running when you logon. Wait for it to complete. When finished, it will open a log for you. Post that log in your next reply.

Note: Do not mouseclick combofix's window while its running. That may cause it to stall

**NOTE - I recommend you allow the Recovery Console to be downloaded and installed when prompted.

 

Thank you. I apologize for taking so long to get back to you, but have had an extremely hectic schedule for a couple of days. I connected to the internet to download the file you suggested directly to my system. However I immediately started having trouble. When I figured out what was going on it was too late. One of the infections on my machine had begun downloading files. I unplugged the cable from my machine, but it was completely frozen. When I tried to reboot I got the BSOD and haven't been able to get the machine back up to the desk top since. I used a boot disk and ran the disk scan utility which indicates I have several errors and bad sectors on my hard drive. Thank you for your help and all I can say is I wish I had come here first.

 

Start the computer and begin tapping F8 on startup to enable the Advanced Start menu. Try Safe mode first. If that works, run System Restore to go back a day or two. Restart should be normal. If Safe Mode boot is unsuccessful .........

do an F8 startup and select Last Know Good Configuration.

 

I can get to the startup menu, but it goes to the BSOD when I select safemode or last known good configuration. Also, from some of the posts and info I got from this forum, my system was horribly infected some time back, so last known good may not be all that good. I can boot from an install disk, and get to a C: prompt, but when I try to run the dir cmd I get "error when enumerating directories" (not an exact quote)

 

Not knowing what, if any, switches you used with checkdisk, please run it again with the following command.

chkdsk /r

Does the computer stop at a blue screen upon normal startup? If so, please provide the error message displayed. If it blue screens and immediately restarts, we need to force a full BSOD that will display an error. To do so, do an F8 startup and select Disable Automatic Restart. You will have to hold the power switch in to shut down after it BSODs.

Do you have another computer available to burn a cd, and a blank cd?

 

I thought the BSOD and being unable to get into safe mode or recovery console meant the end of the drive. I appreciate and will follow your advice if you think there is a chance of getting it back, but I had already figured to get another drive. I pretty much brought this on myself, so I thought I would just have to bite the bullet and shell out for a new one.The /r switch is the only one I used. I will run it again to get the message it gave me for posting here. Also, I wrote down the BSOD message, but now I can't find it. I will check that again also. And finally, the hard drive is now making a grinding type noise. That can't be good right?

 

Grinding noises are definitely not good. That cannot be contributed to anything brought on by you either. That's physical failure.

 

It BSOD's and stops. message is x00000024. Now it just sits when I run chkdsk /r. It has been sitting at a flashing cursor for over 20 minutes. (This is the second try)

 

As Dave said, it's looking like a hard drive failure

Use the relevant tool from these and run drive diagnostics.

Quoted from a previous post by PeteC

 

Yeah, I was afraid of that. Okay I will try the diagnostics and see what happens. Thanks to everyone for the help.