PDA

View Full Version : Computer is very slow



flyingpopat
2008-03-03, 01:58
My computer has suddenly become extremely slow to load and switch between tasks. The CPU usage is nothing unusual.

Here is the HijackThis log.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 6:45:03 PM, on 3/2/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\progra~1\mcafee\mcafee antispyware\massrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\Explorer.EXE
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\AIM\aim.exe
C:\Program Files\Digital Line Detect\DLG.exe
c:\progra~1\mcafee.com\vso\mcvsftsn.exe
C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
C:\Program Files\Common Files\AOL\1112543894\EE\aolsoftware.exe
c:\program files\common files\aol\1112543894\ee\services\antiSpywareApp\ver2_0_32_1\AOLSP Scheduler.exe
C:\Program Files\Common Files\AOL\1112543894\EE\aolsoftware.exe
C:\Program Files\AOL 9.1\waol.exe
C:\Program Files\AOL 9.1\shellmon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://bfc.myway.com/search/de_srchlft.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll (file missing)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.1\AOL.EXE" -b
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [AIM] C:\Program Files\AIM\aim.exe -cnetwait.odl (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [AOL Fast Start] "C:\Program Files\AOL 9.1\AOL.EXE" -b (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-us\local\search.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: AOL Toolbar - {3369AF0D-62E9-4bda-8103-B4C75499B578} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll
O9 - Extra button: AIM - {AC9E2541-2814-11d5-BC6D-00B0D0A1DE45} - C:\Program Files\AIM\aim.exe
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {A7EA8AD2-287F-11D3-B120-006008C39542} (CBSTIEPrint Class) - http://offers.e-centives.com/cif/download/bin/actxcab.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee AntiSpyware Service - McAfee, Inc. - c:\progra~1\mcafee\mcafee antispyware\massrv.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://www.cindisplace.com/images/Gallery/wallpaper/horsePair.jpg

--
End of file - 12481 bytes

I had some unusual entries in the Security Event logs. Here is a sample:

Type Date Time Source Category Event User Computer
Success Audit 3/2/2008 5:45:34 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 5:44:54 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Logon/Logoff 538 Trusha TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Privilege Use 576 Trusha TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Logon/Logoff 528 Trusha TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Logon/Logoff 538 Trusha TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Privilege Use 576 Trusha TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Logon/Logoff 528 Trusha TANAYTRUSHA
Success Audit 3/2/2008 5:39:17 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 5:13:21 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 5:12:41 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 4:41:09 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 4:40:28 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 4:08:56 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 4:08:16 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 3:36:43 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 3:36:03 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 3:04:30 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 3:03:50 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 2:32:18 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 2:31:37 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 2:00:05 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Logon/Logoff 538 Trusha TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Privilege Use 576 Trusha TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Logon/Logoff 528 Trusha TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Logon/Logoff 538 Trusha TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Privilege Use 576 Trusha TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Logon/Logoff 528 Trusha TANAYTRUSHA
Success Audit 3/2/2008 1:59:30 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 1:59:25 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 1:27:52 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 1:27:12 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 12:55:39 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 12:54:59 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 12:23:54 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:54 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:23:53 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:43 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:43 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:23:40 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:30 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:30 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:23:29 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:19 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:19 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:23:17 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:07 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:23:07 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:22:47 PM Security Logon/Logoff 538 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 12:22:46 PM Security Logon/Logoff 540 ANONYMOUS LOGON TANAYTRUSHA
Success Audit 3/2/2008 12:22:46 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:37 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:37 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:22:35 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:25 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:25 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:22:23 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:13 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:13 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:22:11 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:01 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:22:01 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:22:00 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:50 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:50 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:21:50 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:40 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:40 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:21:38 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:28 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:28 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:21:26 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:16 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:16 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:21:14 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:04 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:21:04 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:21:02 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:20:52 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:20:52 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:20:50 PM Security Logon/Logoff 538 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:20:40 PM Security Privilege Use 576 Guest TANAYTRUSHA
Success Audit 3/2/2008 12:20:40 PM Security Account Logon 680 SYSTEM TANAYTRUSHA
Success Audit 3/2/2008 12:20:38 PM Security Logon/Logoff 538 Guest TANAYTRUSHA

little eagle
2008-03-07, 03:55
I'd like to see an Uninstall List.
Please open up HijackThis.
Click on Open the Misc Tools section button
Click on Open Uninstall Manager
Click on Save
A notepad document will open with a list of your installed programs.
Please copy that into your reply.

flyingpopat
2008-03-08, 20:44
Thanks for the reply. Here is the list.

Abacast Client
ActivePerl 5.8.7 Build 815
Adobe Flash Player 9 ActiveX
Adobe Flash Player Plugin
Adobe Photoshop 7.0.1
Adobe Reader 7.0.9
Adobe Shockwave Player
AOL Coach Version 1.0(Build:20040229.1 en)
AOL Coach Version 2.0(Build:20041026.5 en)
AOL Deskbar
AOL Instant Messenger
AOL Toolbar 5.0
AOL Uninstaller (Choose which Products to Remove)
AOL You've Got Pictures Screensaver
ArcSoft PhotoImpression 5
Audacity 1.2.3
AVG Anti-Spyware 7.5
AVIMPG Screensaver Trial
Azureus
Banctec Service Agreement
Conexant D850 56K V.9x DFVc Modem
Coupon Printer for Windows
Coupon Printer for Windows
Cover Art Downloader v1.2
DAEMON Tools
dBpowerAMP Music Converter
Dell Driver Reset Tool
Dell Media Experience
Dell Picture Studio v3.0
DellSupport
Demonic Defence 4 4
DFX for Windows Media Player
Digital Line Detect
Direct Show Ogg Vorbis Filter (remove only)
Disney's Magic Artist
DivX
DVD Decrypter (Remove Only)
DVD Shrink 3.1.4
EarthLink setup files
eMusic - 100 Free MP3 offer
EPSON CX 3800 Guide
EPSON Printer Software
EPSON Scan
Ethereal 0.10.14
EvilLyrics
ffdshow [rev 1763] [2008-01-08]
FirstClass® Client
GameSpy Arcade
Get High Speed Internet!
Google Desktop
Google Talk (remove only)
Google Toolbar for Internet Explorer
HijackThis 2.0.2
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
IBM AS/400 Client Access Express for Windows
Ink Monitor
Intel(R) Extreme Graphics 2 Driver
Intel(R) PRO Network Adapters and Drivers
Intel(R) PROSet for Wired Connections
Internet Explorer Default Page
ItsDeductible Express
iTunes
Jasc Paint Shop Photo Album
Jasc Paint Shop Photo Album 5
Jasc Paint Shop Pro 8 Dell Edition
Jasc Paint Shop Pro Studio, Dell Editon
Java 2 Runtime Environment, SE v1.4.2_03
Kaspersky Online Scanner
Learn2 Player (Uninstall Only)
Macromedia Flash Player 8
Macromedia Flash Player 8 Plugin
McAfee AntiSpyware
McAfee Personal Firewall Plus
McAfee SecurityCenter
McAfee VirusScan
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft Halo Custom Edition
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 Professional
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Streets and Trips 2001
mIRC
Modem Helper
Mozilla Firefox (2.0.0.12)
MP3 Remix Player
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
Musicmatch for Windows Media Player
Musicmatch® Jukebox
My Way Search Assistant
MyAttorney Home And Business
Nero Suite
NetWaiting
NetZeroInstallers
Pdf995
PdfEdit995
PowerDVD 5.3
Pure Networks Port Magic
Quicken 2003 Basic
QuickTime
Ragnarok Online
RealPlayer
Sametime Client v6.5.1
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB883939)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899588)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB903235)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911280)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928090)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB943055)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944653)
Security Update for Windows XP (KB946026)
Simple Sudoku 4.1
Skype™ 3.5
SoundMAX
SpeechRedist
Spybot - Search & Destroy 1.4
SpywareBlaster v3.5.1
TaxCut Deluxe 2005
TaxCut Premium 2006
The Print Shop Premier Edition 5.0
TomTom HOME
TurboTax Deluxe 2004
TurboTax Deluxe 2005
TurboTax ItsDeductible 2005
Unreal Tournament 2004
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB910437)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
Viewpoint Media Player
WexTech AnswerWorks
Winamp (remove only)
Windows Installer 3.1 (KB893803)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format Runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 10
Windows Media Player 10
Windows XP Hotfix - KB834707
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890047
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB890923
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893066
Windows XP Hotfix - KB893086
WinPcap 3.1
WinRAR archiver
WordPerfect Office 12
x264 Revision 437 x264.nl (remove only)
XAMPP 1.6.5
Yahoo! Messenger
Yahoo! Toolbar

little eagle
2008-03-09, 04:50
If you don't use these then remove them
AOL Coach Version 1.0(Build:20040229.1 en)
AOL Coach Version 2.0(Build:20041026.5 en)
AOL Deskbar
AOL Instant Messenger
AOL Toolbar 5.0
AOL Uninstaller (Choose which Products to Remove)
AOL You've Got Pictures Screensaver

Remove these
Spybot - Search & Destroy 1.4 (update to new version)
SpywareBlaster v3.5.1 (update)
Viewpoint Media Player
My Way Search Assistant
Java 2 Runtime Environment, SE v1.4.2_03
EarthLink setup files
AVIMPG Screensaver Trial

Looks like this installed twice remove and install again if you want it
Coupon Printer for Windows
Coupon Printer for Windows

Be sure to keep SunJava, updated
It is important to remove older versions as these are the ones with the holes in them.
Download Newest >>>> http://www.java.com/en/download/index.jsp
Once installed you can test to see that it is in fact installed >>>>
Sun Java Test (http://www.java.com/en/download/installed.jsp)

flyingpopat
2008-03-09, 18:41
My Windows Installer has a problem, so I could not uninstall everything. It gives error message "Windows Installer Service could not be accessed." I also tried re-installing the installer (KB893803). That installs successfully, but the installer still does not work.

I also got an error while installing latest version of Spybot. Gave error message "Error creating registry key HKEY_CLASSES_ROOT\.disabled RegCreateKeyEx failed, Code 5; Access is denied.

I ignored it, but it kept on giving similar errors. So finally I had to abort it.

BUT, after pressing the Abort Key, I got message from Spybot whether to allow registry key change.

I don't know what is going on...

flyingpopat
2008-03-09, 18:50
I tried to reinstall the spybot and got the same errors. I kept on ignoring the errors and after some time, it finished the installation.

I ran the Scan, and it came up with bunch of entries. What should I do next?

little eagle
2008-03-09, 19:02
Reboot and rescan with HiJackThis and post a new log here.

flyingpopat
2008-03-10, 01:10
As I said, I could not uninstall some applications like Java.

But here is the log..

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:05:19 PM, on 3/9/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\progra~1\mcafee\mcafee antispyware\massrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
c:\PROGRA~1\mcafee.com\vso\OasClnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell4me.com/myway
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://bfc.myway.com/search/de_srchlft.html
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll (file missing)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (file missing)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {A7EA8AD2-287F-11D3-B120-006008C39542} (CBSTIEPrint Class) - http://offers.e-centives.com/cif/download/bin/actxcab.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee AntiSpyware Service - McAfee, Inc. - c:\progra~1\mcafee\mcafee antispyware\massrv.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://www.cindisplace.com/images/Gallery/wallpaper/horsePair.jpg

--
End of file - 12081 bytes

little eagle
2008-03-10, 01:15
Download ComboFix from Here (http://download.bleepingcomputer.com/sUBs/ComboFix.exe) or Here (http://subs.geekstogo.com/ComboFix.exe) to your Desktop.

In the event you already have Combofix, this is a new version that I need you to download.
It must be saved directly to your desktop.


1. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.


Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan.
Click on this link (http://www.bleepingcomputer.com/forums/topic114351.html) to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
Remember to re enable the protection again afterwards before connecting to the net



2. Close any open browsers and make sure you are disconnected from the net. Unplug the cable if need be before running combofix.

IF you have not already done so Combofix will disconnect your machine from the Internet when it starts.
If there is no internet connection when Combofix has completely finished then restart your computer to restore back the connections.


3. Now double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.
Please post the "C:\ComboFix.txt" along with a new HijackThis log for further review


Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze.

flyingpopat
2008-03-10, 02:21
I really appreciate this...

New log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:13:51 PM, on 3/9/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\progra~1\mcafee\mcafee antispyware\massrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
c:\PROGRA~1\mcafee.com\vso\OasClnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Microsoft Office\Office\WINWORD.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\TASKMAN.EXE

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll (file missing)
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (file missing)
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (file missing)
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {A7EA8AD2-287F-11D3-B120-006008C39542} (CBSTIEPrint Class) - http://offers.e-centives.com/cif/download/bin/actxcab.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee AntiSpyware Service - McAfee, Inc. - c:\progra~1\mcafee\mcafee antispyware\massrv.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://www.cindisplace.com/images/Gallery/wallpaper/horsePair.jpg

--
End of file - 11388 bytes

little eagle
2008-03-10, 04:50
Close all programs leaving only HijackThis running. Place a check against each of the following,
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R3 - URLSearchHook: (no name) - {4D25F926-B9FE-4682-BF72-8AB8210D6D75} - C:\Program Files\MyWaySA\SrchAsDe\1.bin\deSrcAs.dll (file missing)
O2 - BHO: AOL Toolbar Launcher - {7C554162-8CB7-45A4-B8F4-8EA1C75885F9} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (file missing)
O3 - Toolbar: AOL Toolbar - {DE9C389F-3316-41A7-809B-AA305ED9D922} - C:\Program Files\AOL\AOL Toolbar 5.0\aoltb.dll (file missing)
O16 - DPF: {A7EA8AD2-287F-11D3-B120-006008C39542} (CBSTIEPrint Class) - http://offers.e-centives.com/cif/dow...in/actxcab.cab
Click on Fix Checked when finished and exit HijackThis.


-----------------------------------------

Run - ATF Cleaner instructions here. (http://forums.security-central.us/showthread.php?t=1925)

----------------


Then download Malwarebytes' Anti-Malware (http://www.besttechie.net/tools/mbam-setup.exe) to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* Be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform FULL SCAN, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad. Please save it to a convenient location. The log can also be opened by going to Start > All Programs > Malwarebytes' Anti-Malware > Logs > log-date.txt

flyingpopat
2008-03-11, 02:30
Question: Do i need to run the ATF Cleaner by signing on to all accounts on my PC or any one account is enough? I just did from one account and then did the rest.

Still same problem.

mbam log:

Malwarebytes' Anti-Malware 1.08
Database version: 475

Scan type: Full Scan (C:\|)
Objects scanned: 171048
Time elapsed: 49 minute(s), 6 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 1
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
HKEY_CLASSES_ROOT\CLSID\{4d25f926-b9fe-4682-bf72-8ab8210d6d75} (Adware.MyWay) -> Quarantined and deleted successfully.

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
C:\WINDOWS\explorer.old (Heuristic.Reserved.Word.Exploit) -> Quarantined and deleted successfully.



Here is the new HijackThis log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:21:00 PM, on 3/10/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\progra~1\mcafee\mcafee antispyware\massrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
c:\PROGRA~1\mcafee.com\vso\OasClnt.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SunJavaUpdateSched] C:\Program Files\Java\j2re1.4.2_03\bin\jusched.exe
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1009\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\j2re1.4.2_03\bin\npjpi142_03.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee AntiSpyware Service - McAfee, Inc. - c:\progra~1\mcafee\mcafee antispyware\massrv.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe
O24 - Desktop Component 0: (no name) - http://www.cindisplace.com/images/Gallery/wallpaper/horsePair.jpg

--
End of file - 10102 bytes

little eagle
2008-03-11, 02:45
Are you not able to remove
C:\Program Files\Java\j2re1.4.2_03\

flyingpopat
2008-03-11, 03:02
No. Since my windows installer gives me an error "Windows Installer Service could not be accessed" and this removal uses this.

little eagle
2008-03-11, 03:11
Are you on dial-up to access the internet?

flyingpopat
2008-03-11, 03:14
No. Boradband (Cablevision)

flyingpopat
2008-03-11, 03:22
Is there any explanation for the entries in Security audit for account Guest, every 10 seconds or so?

little eagle
2008-03-11, 12:54
Then lets try this.

Click \start\run\then type in or copy and paste in

sfc /scannow note the space between c and /


You must be logged on as a member of the Administrators group to run sfc.

If sfc discovers that a protected file has been overwritten, it retrieves the correct version of the file from the
%systemroot%\system32\dllcache folder, and then replaces the incorrect file.

Try this link if you have any trouble.

http://www.updatexp.com/scannow-sfc.html

flyingpopat
2008-03-11, 13:24
Clicking Start and then anything else takes a long time, whereas from Task Manager if I run a new task, it is quick.

Can I type in the command on the New Task of Task Manager, or do I have to do it via Start/Run?

little eagle
2008-03-11, 13:41
I think you may be able to, never thought of doing it that way.

flyingpopat
2008-03-11, 13:52
I tried it both ways. Nothing seemed to happen. It took the command, but Task Manager did not show any new process or application. Do all other users need to be logged off and all other windows closed?

little eagle
2008-03-11, 13:57
It would seamed that way.

Now check for windows updates.

http://www.update.microsoft.com/windowsupdate

flyingpopat
2008-03-12, 03:20
Now this is going to sound crazy, but my IE gets stuck, going to the site. If try using Firefox, it tells me to use their Download Center.

Using IE I can go to microsoft.com and then navigate from there without any problem to any place. But as soon as I click on the link to take me to update.microsoft.com it becomes super slow. Every click takes over 10 minutes to get to the next screen. I went thru a few screens, but it seems to be in a loop. After a couple of screens, it tells me that the files required for update are no longer on my computer and need to be downloaded and registered. I click yes to that, it quickly downloads and registers something (or so it tells me) and after 10 minutes it takes me back to the screen I started with (where I click Start Now).

Assuming I can do this with Firefox, which update you want me to download and install?

little eagle
2008-03-12, 03:34
Try this

Open IE click tools select windows update,

You will be missing a lot of updates.

flyingpopat
2008-03-12, 03:47
I am trying that. It is trying to take me to windowsupdate.microsoft.com but is again super slow. Before this happened, my computer was set for Automatic updates, so I don't know why I should be missing a lot of updates.

little eagle
2008-03-12, 03:54
Can you try to remove the older version of java.

Let me know if you were able to remove the programs now.

flyingpopat
2008-03-12, 04:13
I will try, but my Control Panel has also not come up in last 10 minutes. Is there any other way (other than going thru control panel/add remove programs) to uninstall it?

But with my Windows Installer problem (as I said in post#5) and I am not sure it is going to work.

little eagle
2008-03-12, 04:30
Try booting in safe mode with networking.

Log on to the admin account.

flyingpopat
2008-03-12, 21:27
I will try that in the evening, but I don't think Windows Installer works in the safe mode, since the error I get says "Windows Installer services could not be accessed. You are running either in Safe mode or the Installer is not properly installed". Not the exact words, but that is the gist.

I will try it anyway, and let u know.

flyingpopat
2008-03-12, 21:39
Can I try to uninstall it using the Windows Installer Cleanup Utility provided by MS?

flyingpopat
2008-03-13, 01:24
OK. I tried in Safe mode. The computer works fine at normal speed. But cannot uninstall as Windows Installer does not work in Safe Mode.

I tried to go to the MS update site, but it does not go beyond the screen that says "Now checking if your computer has....". No Active X warning comes up for me to say allow.

In normal mode, when I click on Start and then Control Panel (the bottom bar kind of freezes (the clock does not advance, or I can not click on Start again), but my other open windows are fine (using ALT TAB to navigate).

Is there a command I can enter via Task Manager which will give me access to Add/Remove Programs function?

Otherwise, can I try using the Windows Installer Cleanup to try to uninstall?

flyingpopat
2008-03-13, 03:40
Well, the WIndows Installer Cleanup failed to install. I get error message "Can't find Script Engine VBScript" error. Looking that up I tried to install the DLL using regsvr32 vbscript, and I get error message "DllRegisterserver in vbscript failed."

So I really haven't gotten any further.

flyingpopat
2008-03-13, 03:42
Oh, and I was able to run sfc \scannow. It ran for about 25-30 minutes and completed. DOn't know what it did.

little eagle
2008-03-13, 14:17
Can you uninstall any programs?

flyingpopat
2008-03-13, 15:38
From the list you gave me, I was able to uninstall the ones which had their own Unistaller like the different AOL programs, Spybot, Spwareblaster etc.

flyingpopat
2008-03-14, 01:26
ALL RIGHT!!!

I uninstalled the old java and installed the latest version and then verified it too.

I accessed the Add/Remove Programs thru cleanmgr.exe on Task Manager. Then I manually started the Windows Installer service thru services.msc on Task Manager. THAT allowed me to uninstall and install successfully.

Coupon Printer was installed twice. But once I uninstalled one, I think it deleted the uninstall file from the Coupon directory, so now it cannot uninstall the second. I don't think that should matter.

But the system is still behaving the same way. Need to see any new logs?

little eagle
2008-03-14, 03:52
Reboot and rescan with HiJackThis and post a new log here.

flyingpopat
2008-03-15, 02:12
Here is the new log:

By the way I am sure I had removed the R0 entry for IE with start page= about blank

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 8:03:58 PM, on 3/14/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\progra~1\mcafee\mcafee antispyware\massrv.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\D-Tools\daemon.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205281950437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee AntiSpyware Service - McAfee, Inc. - c:\progra~1\mcafee\mcafee antispyware\massrv.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: McAfee Personal Firewall Service (MpfService) - McAfee Corporation - C:\PROGRA~1\McAfee.com\PERSON~1\MPFSERVICE.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 12024 bytes

flyingpopat
2008-03-15, 02:14
And here is the installed list

Abacast Client
ActivePerl 5.8.7 Build 815
Adobe Flash Player 9 ActiveX
Adobe Flash Player Plugin
Adobe Photoshop 7.0.1
Adobe Reader 7.0.9
Adobe Shockwave Player
AOL Uninstaller (Choose which Products to Remove)
ArcSoft PhotoImpression 5
Audacity 1.2.3
AVG Anti-Spyware 7.5
Azureus
Banctec Service Agreement
Conexant D850 56K V.9x DFVc Modem
Coupon Printer for Windows
Cover Art Downloader v1.2
DAEMON Tools
dBpowerAMP Music Converter
Dell Driver Reset Tool
Dell Media Experience
Dell Picture Studio v3.0
DellSupport
Demonic Defence 4 4
DFX for Windows Media Player
Digital Line Detect
Direct Show Ogg Vorbis Filter (remove only)
Disney's Magic Artist
DivX
DVD Decrypter (Remove Only)
DVD Shrink 3.1.4
EPSON CX 3800 Guide
EPSON Printer Software
EPSON Scan
Ethereal 0.10.14
EvilLyrics
ffdshow [rev 1763] [2008-01-08]
FirstClass® Client
GameSpy Arcade
Get High Speed Internet!
Google Desktop
Google Talk (remove only)
Google Toolbar for Internet Explorer
HijackThis 2.0.2
Hotfix for Windows XP (KB914440)
Hotfix for Windows XP (KB915865)
IBM AS/400 Client Access Express for Windows
Ink Monitor
Intel(R) Extreme Graphics 2 Driver
Intel(R) PRO Network Adapters and Drivers
Intel(R) PROSet for Wired Connections
Internet Explorer Default Page
ItsDeductible Express
iTunes
Jasc Paint Shop Photo Album
Jasc Paint Shop Photo Album 5
Jasc Paint Shop Pro 8 Dell Edition
Jasc Paint Shop Pro Studio, Dell Editon
Java(TM) 6 Update 5
Kaspersky Online Scanner
Learn2 Player (Uninstall Only)
Macromedia Flash Player 8
Macromedia Flash Player 8 Plugin
Malwarebytes' Anti-Malware
McAfee AntiSpyware
McAfee Personal Firewall Plus
McAfee SecurityCenter
McAfee VirusScan
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB928366)
Microsoft Halo Custom Edition
Microsoft Internationalized Domain Names Mitigation APIs
Microsoft National Language Support Downlevel APIs
Microsoft Office 2000 Professional
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Streets and Trips 2001
Microsoft Windows Script 5.7
mIRC
Modem Helper
Mozilla Firefox (2.0.0.12)
MP3 Remix Player
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
Musicmatch for Windows Media Player
Musicmatch® Jukebox
My Way Search Assistant
MyAttorney Home And Business
Nero Suite
NetWaiting
NetZeroInstallers
Pdf995
PdfEdit995
PowerDVD 5.3
Pure Networks Port Magic
Quicken 2003 Basic
QuickTime
Ragnarok Online
RealPlayer
Sametime Client v6.5.1
Security Update for Step By Step Interactive Training (KB898458)
Security Update for Step By Step Interactive Training (KB923723)
Security Update for Windows Internet Explorer 7 (KB928090)
Security Update for Windows Internet Explorer 7 (KB931768)
Security Update for Windows Internet Explorer 7 (KB933566)
Security Update for Windows Internet Explorer 7 (KB937143)
Security Update for Windows Internet Explorer 7 (KB938127)
Security Update for Windows Internet Explorer 7 (KB939653)
Security Update for Windows Internet Explorer 7 (KB942615)
Security Update for Windows Internet Explorer 7 (KB944533)
Security Update for Windows Media Player (KB911564)
Security Update for Windows Media Player 10 (KB911565)
Security Update for Windows Media Player 10 (KB917734)
Security Update for Windows Media Player 10 (KB936782)
Security Update for Windows Media Player 6.4 (KB925398)
Security Update for Windows XP (KB883939)
Security Update for Windows XP (KB890046)
Security Update for Windows XP (KB893756)
Security Update for Windows XP (KB896358)
Security Update for Windows XP (KB896422)
Security Update for Windows XP (KB896423)
Security Update for Windows XP (KB896424)
Security Update for Windows XP (KB896428)
Security Update for Windows XP (KB896688)
Security Update for Windows XP (KB899587)
Security Update for Windows XP (KB899588)
Security Update for Windows XP (KB899591)
Security Update for Windows XP (KB900725)
Security Update for Windows XP (KB901017)
Security Update for Windows XP (KB901214)
Security Update for Windows XP (KB902400)
Security Update for Windows XP (KB903235)
Security Update for Windows XP (KB904706)
Security Update for Windows XP (KB905414)
Security Update for Windows XP (KB905749)
Security Update for Windows XP (KB905915)
Security Update for Windows XP (KB908519)
Security Update for Windows XP (KB908531)
Security Update for Windows XP (KB911280)
Security Update for Windows XP (KB911562)
Security Update for Windows XP (KB911567)
Security Update for Windows XP (KB911927)
Security Update for Windows XP (KB912812)
Security Update for Windows XP (KB912919)
Security Update for Windows XP (KB913446)
Security Update for Windows XP (KB913580)
Security Update for Windows XP (KB914388)
Security Update for Windows XP (KB914389)
Security Update for Windows XP (KB916281)
Security Update for Windows XP (KB917159)
Security Update for Windows XP (KB917344)
Security Update for Windows XP (KB917422)
Security Update for Windows XP (KB917953)
Security Update for Windows XP (KB918118)
Security Update for Windows XP (KB918439)
Security Update for Windows XP (KB918899)
Security Update for Windows XP (KB919007)
Security Update for Windows XP (KB920213)
Security Update for Windows XP (KB920214)
Security Update for Windows XP (KB920670)
Security Update for Windows XP (KB920683)
Security Update for Windows XP (KB920685)
Security Update for Windows XP (KB921398)
Security Update for Windows XP (KB921503)
Security Update for Windows XP (KB921883)
Security Update for Windows XP (KB922616)
Security Update for Windows XP (KB922760)
Security Update for Windows XP (KB922819)
Security Update for Windows XP (KB923191)
Security Update for Windows XP (KB923414)
Security Update for Windows XP (KB923689)
Security Update for Windows XP (KB923694)
Security Update for Windows XP (KB923980)
Security Update for Windows XP (KB924191)
Security Update for Windows XP (KB924270)
Security Update for Windows XP (KB924496)
Security Update for Windows XP (KB924667)
Security Update for Windows XP (KB925454)
Security Update for Windows XP (KB925486)
Security Update for Windows XP (KB925902)
Security Update for Windows XP (KB926255)
Security Update for Windows XP (KB926436)
Security Update for Windows XP (KB927779)
Security Update for Windows XP (KB927802)
Security Update for Windows XP (KB928090)
Security Update for Windows XP (KB928255)
Security Update for Windows XP (KB928843)
Security Update for Windows XP (KB929123)
Security Update for Windows XP (KB930178)
Security Update for Windows XP (KB931261)
Security Update for Windows XP (KB931784)
Security Update for Windows XP (KB932168)
Security Update for Windows XP (KB933729)
Security Update for Windows XP (KB935839)
Security Update for Windows XP (KB935840)
Security Update for Windows XP (KB936021)
Security Update for Windows XP (KB938829)
Security Update for Windows XP (KB941202)
Security Update for Windows XP (KB941568)
Security Update for Windows XP (KB941569)
Security Update for Windows XP (KB941644)
Security Update for Windows XP (KB943055)
Security Update for Windows XP (KB943460)
Security Update for Windows XP (KB943485)
Security Update for Windows XP (KB944653)
Security Update for Windows XP (KB946026)
Simple Sudoku 4.1
Skype™ 3.5
SoundMAX
SpeechRedist
Spybot - Search & Destroy
TaxCut Deluxe 2005
TaxCut Premium 2006
The Print Shop Premier Edition 5.0
TomTom HOME
TurboTax Deluxe 2004
TurboTax Deluxe 2005
TurboTax ItsDeductible 2005
Unreal Tournament 2004
Update for Windows XP (KB894391)
Update for Windows XP (KB896727)
Update for Windows XP (KB898461)
Update for Windows XP (KB900485)
Update for Windows XP (KB904942)
Update for Windows XP (KB910437)
Update for Windows XP (KB916595)
Update for Windows XP (KB920872)
Update for Windows XP (KB922582)
Update for Windows XP (KB927891)
Update for Windows XP (KB929338)
Update for Windows XP (KB930916)
Update for Windows XP (KB931836)
Update for Windows XP (KB933360)
Update for Windows XP (KB936357)
Update for Windows XP (KB938828)
Update for Windows XP (KB942763)
WexTech AnswerWorks
Winamp (remove only)
Windows Installer 3.1 (KB893803)
Windows Installer 3.1 (KB893803)
Windows Internet Explorer 7
Windows Media Format Runtime
Windows Media Format SDK Hotfix - KB891122
Windows Media Player 10
Windows Media Player 10
Windows XP Hotfix - KB834707
Windows XP Hotfix - KB867282
Windows XP Hotfix - KB873333
Windows XP Hotfix - KB873339
Windows XP Hotfix - KB885250
Windows XP Hotfix - KB885835
Windows XP Hotfix - KB885836
Windows XP Hotfix - KB886185
Windows XP Hotfix - KB887472
Windows XP Hotfix - KB887742
Windows XP Hotfix - KB888113
Windows XP Hotfix - KB888302
Windows XP Hotfix - KB890047
Windows XP Hotfix - KB890175
Windows XP Hotfix - KB890859
Windows XP Hotfix - KB890923
Windows XP Hotfix - KB891781
Windows XP Hotfix - KB893066
Windows XP Hotfix - KB893086
WinPcap 3.1
WinRAR archiver
WordPerfect Office 12
x264 Revision 437 x264.nl (remove only)
XAMPP 1.6.5
Yahoo! Messenger
Yahoo! Toolbar

little eagle
2008-03-15, 03:08
Lets see if there is anything from Panda

Click HERE (http://www.pandasoftware.com/products/activescan.htm) to run Panda's ActiveScan

* You need to use IE to run this scan
* Once you are on the Panda site click the Scan your PC button
* A new window will open...click the Check Now button
* Enter your Country
* Enter your State/Province
* Enter your e-mail address and click send
* Select either Home User or Company
* Click the big Scan Now button
* If it wants to install an ActiveX component allow it
* It will start downloading the files it requires for the scan (Note: It may take a couple of minutes)
* When download is complete, click on My Computer to start the scan
* When the scan completes, if anything malicious is detected, click the See Report button, then Save Report and save it to a convenient location. Post the contents of the ActiveScan report

flyingpopat
2008-03-16, 19:44
Nothing happens when I click on Scan Your PC Now button. I am using IE. My popup blocker is off (just in case).

little eagle
2008-03-17, 00:02
Well in that case lets try this

Run this online scan from ESET (http://www.eset.eu/online-scanner)

You will need to use Internet explorer for this scan!
First, accept the Terms of Use
Click: Start
When asked, allow the ActiveX control to install
Click: Start
Make sure the options:
Remove found threats, and Scan unwanted applications
are both checked!
Click: Scan


When the scan finishes, use Notepad to open the ESET report.
It will be located here C:\Program Files\EsetOnlineScanner\log.txt

flyingpopat
2008-03-18, 02:35
Here is the log

# version=4
# OnlineScanner.ocx=1.0.0.635
# OnlineScannerDLLA.dll=1, 0, 0, 79
# OnlineScannerDLLW.dll=1, 0, 0, 78
# OnlineScannerUninstaller.exe=1, 0, 0, 49
# vers_standard_module=2953 (20080317)
# vers_arch_module=1.064 (20080214)
# vers_adv_heur_module=1.064 (20070717)
# EOSSerial=01ab50c0c5a37744832c17345f0303f0
# end=finished
# remove_checked=true
# unwanted_checked=true
# utc_time=2008-03-17 11:29:29
# local_time=2008-03-17 07:29:29 (-0500, Eastern Daylight Time)
# country="United States"
# osver=5.1.2600 NT Service Pack 2
# scanned=311951
# found=3
# scan_time=5062
C:\AOL Instant Messenger\AIM.exe Win32/Adware.WBug.A application (deleted) 00000000000000000000000000000000
C:\AOL Instant Messenger\AIM.exe »WISE »MiniBugTransporter.EXE Win32/Adware.WBug.A application (error while deleting - operation unavailable for this type of object - was a part of the deleted object) 00000000000000000000000000000000
C:\AOL Instant Messenger\AIM.exe »WISE »MiniBugTransporter.EXE »WISE »MiniBugTransporter.dll Win32/Adware.WBug.A application (error while cleaning - operation unavailable for this type of object - error while deleting - operation unavailable for this type of object - was a part of the deleted object) 00000000000000000000000000000000

little eagle
2008-03-18, 03:24
Download SDFix (http://downloads.andymanchesta.com/RemovalTools/SDFix.exe) and save it to your Desktop.

Double click SDFix.exe and it will extract the files to %systemdrive%
(Drive that contains the Windows Directory, typically C:\SDFix)

Please then reboot your computer in Safe Mode by doing the following :
Restart your computer
After hearing your computer beep once during startup, but before the Windows icon appears, tap the F8 key continually;
Instead of Windows loading as normal, the Advanced Options Menu should appear;
Select the first option, to run Windows in Safe Mode, then press Enter.
Choose your usual account.

Open the extracted SDFix folder and double click RunThis.bat to start the script.
Type Y to begin the cleanup process.
It will remove any Trojan Services and Registry Entries that it finds then prompt you to press any key to Reboot.
Press any Key and it will restart the PC.
When the PC restarts the Fixtool will run again and complete the removal process then display Finished, press any key to end the script and load your desktop icons.
Once the desktop icons load the SDFix report will open on screen and also save into the SDFix folder as Report.txt
(Report.txt will also be copied to Clipboard ready for posting back on the forum).
Finally paste the contents of the Report.txt back on the forum with a new HijackThis log

flyingpopat
2008-03-18, 04:31
SDFix log


SDFix: Version 1.158

Run by Administrator on Mon 03/17/2008 at 10:07 PM

Microsoft Windows XP [Version 5.1.2600]
Running From: C:\SDFix

Checking Services :


Restoring Windows Registry Values
Restoring Windows Default Hosts File

Rebooting


Checking Files :

No Trojan Files Found






Removing Temp Files

ADS Check :



Final Check :

catchme 0.3.1344.2 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-17 22:16:16
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden services & system hive ...

scanning hidden registry entries ...

scanning hidden files ...

scan completed successfully
hidden processes: 0
hidden services: 0
hidden files: 0


Remaining Services :



Authorized Application Key Export:

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\\Program Files\\America Online 9.0a\\waol.exe"="C:\\Program Files\\America Online 9.0a\\waol.exe:*:Enabled:America Online 9.0a"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe:*:Enabled:AOL Connectivity Service Dialer"
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"="C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe:*:Enabled:AOL Connectivity Service"
"C:\\Program Files\\Common Files\\AOL\\1112543894\\EE\\aolsoftware.exe"="C:\\Program Files\\Common Files\\AOL\\1112543894\\EE\\aolsoftware.exe:*:Enabled:AOL Shared Components"
"C:\\Program Files\\AOL 9.1\\waol.exe"="C:\\Program Files\\AOL 9.1\\waol.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"="C:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe:*:Enabled:AOL TopSpeed"
"C:\\Program Files\\Common Files\\AOL\\1112543894\\EE\\AOLServiceHost.exe"="C:\\Program Files\\Common Files\\AOL\\1112543894\\EE\\AOLServiceHost.exe:*:Enabled:AOL"
"C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"="C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe:*:Enabled:AOL Loader"
"C:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"="C:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe:*:Enabled:AOL System Information"
"C:\\Program Files\\Skype\\Phone\\Skype.exe"="C:\\Program Files\\Skype\\Phone\\Skype.exe:*:Enabled:Skype"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]

Remaining Files :


File Backups: - C:\SDFix\backups\backups.zip

Files with Hidden Attributes :

Wed 1 Sep 2004 54,384 A..H. --- "C:\Program Files\America Online 9.0\aolphx.exe"
Wed 1 Sep 2004 156,784 A..H. --- "C:\Program Files\America Online 9.0\aoltray.exe"
Wed 1 Sep 2004 31,344 A..H. --- "C:\Program Files\America Online 9.0\RBM.exe"
Fri 19 Nov 2004 54,872 A..H. --- "C:\Program Files\America Online 9.0a\AOLphx.exe"
Fri 19 Nov 2004 31,832 A..H. --- "C:\Program Files\America Online 9.0a\rbm.exe"
Sat 27 Oct 2007 46,432 A..H. --- "C:\Program Files\AOL 9.1\AOLphx.exe"
Sat 27 Oct 2007 54,624 A..H. --- "C:\Program Files\AOL 9.1\AOLphxex.exe"
Sat 27 Oct 2007 33,120 A..H. --- "C:\Program Files\AOL 9.1\rbm.exe"
Mon 28 Jan 2008 1,404,240 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SDUpdate.exe"
Mon 28 Jan 2008 5,146,448 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\SpybotSD.exe"
Mon 28 Jan 2008 2,097,488 A.SHR --- "C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe"
Sun 16 Oct 2005 4,348 A.SH. --- "C:\Documents and Settings\All Users\DRM\DRMv1.bak"
Wed 11 Apr 2007 28,672 ...H. --- "C:\Documents and Settings\Medha\My Documents\~WRL0961.tmp"
Wed 11 Apr 2007 24,064 ...H. --- "C:\Documents and Settings\Medha\My Documents\~WRL1515.tmp"
Wed 11 Apr 2007 24,576 ...H. --- "C:\Documents and Settings\Medha\My Documents\~WRL2144.tmp"
Wed 11 Apr 2007 133,632 ...H. --- "C:\Documents and Settings\Medha\My Documents\~WRL2780.tmp"
Wed 11 Apr 2007 133,632 ...H. --- "C:\Documents and Settings\Medha\My Documents\~WRL2978.tmp"
Sun 8 Apr 2007 20,480 ...H. --- "C:\Documents and Settings\Trusha\My Documents\~WRL0099.tmp"
Sun 8 Apr 2007 19,456 ...H. --- "C:\Documents and Settings\Trusha\My Documents\~WRL0638.tmp"
Wed 11 Apr 2007 19,968 ...H. --- "C:\Documents and Settings\Trusha\My Documents\~WRL1102.tmp"
Wed 11 Apr 2007 19,456 ...H. --- "C:\Documents and Settings\Trusha\My Documents\~WRL2103.tmp"
Wed 11 Apr 2007 19,968 ...H. --- "C:\Documents and Settings\Trusha\My Documents\~WRL2825.tmp"
Thu 26 Dec 2002 20,480 A..H. --- "C:\Documents and Settings\Vinay\My Documents\Collezione\~WRL2481.tmp"
Sun 5 Nov 2006 19,456 ...H. --- "C:\Documents and Settings\Trusha\Application Data\Microsoft\Word\~WRL0003.tmp"
Sun 5 Nov 2006 19,456 ...H. --- "C:\Documents and Settings\Trusha\Application Data\Microsoft\Word\~WRL0005.tmp"
Sun 5 Nov 2006 19,456 ...H. --- "C:\Documents and Settings\Trusha\Application Data\Microsoft\Word\~WRL1123.tmp"
Sun 5 Nov 2006 208,384 ...H. --- "C:\Documents and Settings\Trusha\Application Data\Microsoft\Word\~WRL1400.tmp"
Sun 8 Apr 2007 19,456 ...H. --- "C:\Documents and Settings\Trusha\Application Data\Microsoft\Word\~WRL1956.tmp"
Wed 4 Oct 2006 3,072,000 A..H. --- "C:\Documents and Settings\Vinay\Application Data\U3\temp\Launchpad Removal.exe"
Tue 11 Dec 2007 96,072 ...H. --- "C:\Program Files\Common Files\AOL\TopSpeed\3.0\WBUnins.exe"
Mon 29 Oct 2007 8 A..H. --- "C:\Documents and Settings\Medha\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u1\lock.tmp"
Mon 29 Oct 2007 8 A..H. --- "C:\Documents and Settings\Medha\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u2\lock.tmp"
Mon 29 Oct 2007 8 A..H. --- "C:\Documents and Settings\Medha\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u3\lock.tmp"
Mon 29 Oct 2007 8 A..H. --- "C:\Documents and Settings\Medha\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u4\lock.tmp"
Fri 18 May 2007 8 A..H. --- "C:\Documents and Settings\Tanay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u1\lock.tmp"
Fri 18 May 2007 8 A..H. --- "C:\Documents and Settings\Tanay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u2\lock.tmp"
Fri 18 May 2007 8 A..H. --- "C:\Documents and Settings\Tanay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u3\lock.tmp"
Fri 18 May 2007 8 A..H. --- "C:\Documents and Settings\Tanay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u4\lock.tmp"
Tue 10 Apr 2007 8 A..H. --- "C:\Documents and Settings\Vinay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u1\lock.tmp"
Tue 10 Apr 2007 8 A..H. --- "C:\Documents and Settings\Vinay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u2\lock.tmp"
Tue 10 Apr 2007 8 A..H. --- "C:\Documents and Settings\Vinay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u3\lock.tmp"
Tue 10 Apr 2007 8 A..H. --- "C:\Documents and Settings\Vinay\Application Data\Gtek\GTUpdate\AUpdate\Channels\ch_u4\lock.tmp"

Finished!

Will post HJT log momentarily

little eagle
2008-03-18, 04:37
Download ComboFix from Here (http://download.bleepingcomputer.com/sUBs/ComboFix.exe) or Here (http://subs.geekstogo.com/ComboFix.exe) to your Desktop.

This is a new version that I need you to download.
It must be saved directly to your desktop.


1. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.


Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan.
Click on this link (http://www.bleepingcomputer.com/forums/topic114351.html) to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
Remember to re enable the protection again afterwards before connecting to the net



2. Close any open browsers and make sure you are disconnected from the net. Unplug the cable if need be before running combofix.

IF you have not already done so Combofix will disconnect your machine from the Internet when it starts.
If there is no internet connection when Combofix has completely finished then restart your computer to restore back the connections.


3. Now double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.
Please post the "C:\ComboFix.txt" along with a new HijackThis log for further review.
Make to post please do not attach the file.


Note: Do not mouseclick combofix's window while it's running. That may cause it to stall or freeze.

flyingpopat
2008-03-18, 04:43
HJT kind of gets stuck for about 5-7 mins. after doing about 80% in few seconds. Then it wakes up and finishes in a few more seconds. Maybe this is normal....

Here is the log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 10:37:02 PM, on 3/17/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\WINDOWS\system32\NOTEPAD.EXE
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\D-Tools\daemon.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\McAfee.com\VSO\oasclnt.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
C:\Program Files\Digital Line Detect\DLG.exe
c:\program files\mcafee.com\agent\mcupdate.exe
C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205281950437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 12104 bytes

little eagle
2008-03-18, 04:45
Combo fix log please. :red:

flyingpopat
2008-03-19, 03:21
I ran COmbo Fix log just now. The log is too big. Since you don't want an attached file, I have to break it up.

ComboFix 08-03-17.1 - Vinay 2008-03-18 21:00:59.2 - NTFSx86
Running from: C:\Documents and Settings\Vinay\Desktop\ComboFix.exe

WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
TimeOut - progfile.dat

((((((((((((((((((((((((( Files Created from 2008-02-19 to 2008-03-19 )))))))))))))))))))))))))))))))
.

2008-03-17 22:03 . 2008-03-17 22:03 <DIR> d-------- C:\WINDOWS\ERUNT
2008-03-17 21:57 . 2008-03-17 22:25 <DIR> d-------- C:\SDFix
2008-03-17 18:04 . 2008-03-17 19:29 <DIR> d-------- C:\Program Files\EsetOnlineScanner
2008-03-16 18:01 . 2008-03-16 18:01 <DIR> d-------- C:\Process Explorer
2008-03-13 19:38 . 2004-05-13 17:45 479,261 --a------ C:\VBSCRIPT.DLL
2008-03-13 19:14 . 2008-02-22 02:33 69,632 --a------ C:\WINDOWS\SYSTEM32\javacpl.cpl
2008-03-13 19:13 . 2008-03-13 19:14 <DIR> d-------- C:\Program Files\Java
2008-03-13 19:13 . 2008-03-13 19:13 <DIR> d-------- C:\Program Files\Common Files\Java
2008-03-12 21:28 . 2001-08-17 13:28 771,581 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\winacisa.sys
2008-03-12 21:27 . 2001-08-17 13:28 794,654 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\usr1801.sys
2008-03-12 21:26 . 2001-08-17 22:36 525,568 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\tridxp.dll
2008-03-12 21:25 . 2004-08-04 07:00 571,392 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\tintlgnt.ime
2008-03-12 21:24 . 2001-08-17 12:18 285,760 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\stlnata.sys
2008-03-12 21:23 . 2004-08-04 07:00 456,704 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\smtpsvc.dll
2008-03-12 21:22 . 2004-08-03 22:41 404,990 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\slntamr.sys
2008-03-12 21:21 . 2001-08-17 22:36 495,616 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\sblfx.dll
2008-03-12 21:20 . 2004-08-04 00:56 397,056 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\s3gnb.dll
2008-03-12 21:19 . 2001-08-17 13:28 899,146 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\r2mdkxga.sys
2008-03-12 21:18 . 2004-08-04 07:00 482,304 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\pintlgnt.ime
2008-03-12 21:17 . 2001-08-17 14:05 351,616 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\ovcodek2.sys
2008-03-12 21:16 . 2004-08-03 22:31 132,695 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\netwlan5.sys
2008-03-12 21:15 . 2004-08-04 07:00 1,875,968 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\msir3jp.lex
2008-03-12 21:14 . 2001-08-17 13:28 802,683 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\ltsm.sys
2008-03-12 21:13 . 2004-08-04 07:00 1,158,818 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\korwbrkr.lex
2008-03-12 21:12 . 2004-08-04 07:00 811,064 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\imjp81k.dll
2008-03-12 21:11 . 2004-08-04 07:00 13,463,552 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\hwxjpn.dll
2008-03-12 21:10 . 2001-08-17 14:56 1,733,120 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\g400d.dll
2008-03-12 21:09 . 2001-08-17 13:28 595,647 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\es56cvmp.sys
2008-03-12 21:08 . 2001-08-17 13:28 634,134 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\el656ct5.sys
2008-03-12 21:07 . 2001-08-17 12:14 952,007 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\diwan.sys
2008-03-12 21:06 . 2004-08-04 07:00 1,677,824 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\chsbrkr.dll
2008-03-12 21:05 . 2001-08-17 13:28 871,388 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\bcmdm.sys
2008-03-12 21:04 . 2004-08-04 00:56 1,888,992 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\ati3duag.dll
2008-03-12 21:03 . 2004-05-13 00:39 876,653 --a------ C:\WINDOWS\SYSTEM32\DLLCACHE\fp4awel.dll
2008-03-10 18:37 . 2008-03-10 18:37 <DIR> d-------- C:\Program Files\Malwarebytes' Anti-Malware
2008-03-10 18:37 . 2008-03-10 18:37 <DIR> d-------- C:\Documents and Settings\Trusha\Application Data\Malwarebytes
2008-03-10 18:37 . 2008-03-10 18:37 <DIR> d-------- C:\Documents and Settings\All Users\Application Data\Malwarebytes
2008-03-02 19:28 . 2008-03-02 19:28 <DIR> d-------- C:\Program Files\Trend Micro
2008-03-02 12:44 . 2008-03-02 12:44 <DIR> d-------- C:\Documents and Settings\Trusha\Application Data\Viewpoint
2008-03-01 11:58 . 2008-03-01 11:58 <DIR> d-------- C:\Program Files\Citrix
2008-02-26 17:25 . 2008-02-26 17:25 <DIR> d-------- C:\Documents and Settings\Trusha\Application Data\CyberLink

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2008-03-18 02:36 --------- d-----w C:\Documents and Settings\Vinay\Application Data\Skype
2008-03-09 22:56 --------- d-----w C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy
2008-03-09 16:43 --------- d-----w C:\Program Files\Spybot - Search & Destroy
2008-03-09 16:05 --------- d-----w C:\Documents and Settings\All Users\Application Data\Viewpoint
2008-03-09 15:54 --------- d-----w C:\Program Files\Coupons
2008-03-09 15:51 --------- d-----w C:\Program Files\Common Files\AOL
2008-03-09 15:49 --------- d-----w C:\Documents and Settings\All Users\Application Data\AOL
2008-03-09 15:48 --------- d-----w C:\Program Files\Common Files\aolshare
2008-03-02 16:44 --------- d-----w C:\Documents and Settings\Trusha\Application Data\AOL
2008-02-27 01:09 --------- d-----w C:\Documents and Settings\All Users\Application Data\DVD Shrink
2008-02-11 13:39 253,952 ----a-w C:\WINDOWS\SYSTEM32\OnlineScannerDLLA.dll
2008-02-11 13:39 237,568 ----a-w C:\WINDOWS\SYSTEM32\OnlineScannerDLLW.dll
2008-02-08 17:53 110,592 ----a-w C:\WINDOWS\SYSTEM32\OnlineScannerLang.dll
2008-02-05 12:48 77,824 ----a-w C:\WINDOWS\SYSTEM32\OnlineScannerUninstaller.exe
2008-01-24 02:55 --------- d-----w C:\Documents and Settings\All Users\Application Data\Dell
2008-01-11 05:53 44,544 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pngfilt.dll
2008-01-09 02:33 7,680 ----a-w C:\WINDOWS\SYSTEM32\ff_vfw.dll
2008-01-09 02:33 60,273 ----a-w C:\WINDOWS\SYSTEM32\pthreadGC2.dll
2007-12-19 23:01 347,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dxtmsft.dll
2007-09-12 15:19 8,784 ----a-w C:\Program Files\mozilla firefox\plugins\ractrlkeyhook.dll
2007-09-12 15:22 245,408 ----a-w C:\Program Files\mozilla firefox\plugins\unicows.dll
.

flyingpopat
2008-03-19, 03:24
((((((((((((((((((((((((((((( snapshot@2008-03-09_20.03.26.07 )))))))))))))))))))))))))))))))))))))))))
.
+ 2008-03-16 10:18:30 163,328 ----a-w C:\WINDOWS\ERUNT\SDFIX\ERDNT.EXE
+ 2008-03-18 02:03:37 2,076,672 ----a-w C:\WINDOWS\ERUNT\SDFIX\Users\00000001\NTUSER.DAT
+ 2008-03-18 02:03:37 8,192 ----a-w C:\WINDOWS\ERUNT\SDFIX\Users\00000002\UsrClass.dat
+ 2008-03-16 10:18:30 163,328 ----a-w C:\WINDOWS\ERUNT\SDFIX_First_Run\ERDNT.EXE
+ 2008-03-18 02:03:25 2,076,672 ----a-w C:\WINDOWS\ERUNT\SDFIX_First_Run\Users\00000001\NTUSER.DAT
+ 2008-03-18 02:03:25 8,192 ----a-w C:\WINDOWS\ERUNT\SDFIX_First_Run\Users\00000002\UsrClass.dat
- 2004-08-04 11:00:00 98,304 ----a-w C:\WINDOWS\SYSTEM32\CSCRIPT.EXE
+ 2007-08-01 00:45:06 114,688 ----a-w C:\WINDOWS\SYSTEM32\cscript.exe
- 2004-08-04 11:00:00 45,083 ----a-w C:\WINDOWS\SYSTEM32\DISPEX.DLL
+ 2007-08-01 00:45:24 32,768 ----a-w C:\WINDOWS\SYSTEM32\dispex.dll
+ 2004-08-04 03:10:08 53,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\1394bus.sys
+ 2001-08-17 18:06:48 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\1394vdbg.sys
+ 2001-08-17 17:28:00 762,780 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\3cwmcru.sys
+ 2001-08-17 18:55:58 689,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\3dfxvs.dll
+ 2001-08-17 16:48:32 148,352 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\3dfxvsm.sys
+ 2004-08-04 03:00:04 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\4mmdat.sys
+ 2004-08-04 03:10:12 48,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\61883.sys
+ 2001-08-17 18:55:58 38,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\8514a.dll
+ 2001-08-18 02:36:10 98,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\a3d.dll
+ 2001-08-18 02:36:10 462,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\a3dapi.dll
+ 2004-08-04 02:32:22 231,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ac97ali.sys
+ 2001-08-17 16:20:04 96,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ac97intc.sys
+ 2001-08-17 16:20:16 297,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ac97sis.sys
+ 2004-08-04 02:32:32 84,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ac97via.sys
+ 2001-08-18 02:36:10 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\acerscad.dll
+ 2004-08-04 11:00:00 450,048 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\aclayers.dll
+ 2004-08-04 11:00:00 129,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\acledit.dll
+ 2004-08-04 11:00:00 137,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\aclua.dll
+ 2004-08-04 11:00:00 11,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\acpiec.sys
+ 2004-08-04 11:00:00 244,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\acspecfc.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\actmovie.exe
+ 2004-08-04 11:00:00 116,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\acxtrnal.dll
+ 2001-08-17 17:53:02 7,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adicvls.sys
+ 2001-08-17 16:11:18 20,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adm8511.sys
+ 2001-08-17 16:19:10 584,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adm8810.sys
+ 2001-08-17 16:19:14 553,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adm8820.sys
+ 2001-08-17 16:19:14 747,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adm8830.sys
+ 2003-03-24 20:52:04 20,540 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\admin.dll
+ 2003-03-24 20:52:04 16,439 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\admin.exe
+ 2004-08-04 02:32:24 10,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\admjoy.sys
+ 2004-08-04 11:00:00 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adptif.dll
+ 2001-08-17 16:11:16 46,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adptsf50.sys
+ 2004-08-04 11:00:00 175,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adsldp.dll
+ 2004-08-04 11:00:00 68,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adsmsext.dll
+ 2004-08-04 11:00:00 263,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adsnt.dll
+ 2004-08-04 04:56:42 4,255 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv01nt5.dll
+ 2004-08-04 04:56:42 3,967 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv02nt5.dll
+ 2004-08-04 04:56:42 3,615 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv05nt5.dll
+ 2004-08-04 04:56:42 3,647 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv07nt5.dll
+ 2004-08-04 04:56:42 3,135 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv08nt5.dll
+ 2004-08-04 04:56:42 3,711 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv09nt5.dll
+ 2004-08-04 04:56:42 3,775 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\adv11nt5.dll
+ 2004-08-04 11:00:00 138,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\afd.sys
+ 2004-08-04 11:00:00 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agentanm.dll
+ 2004-08-04 11:00:00 214,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agentctl.dll
+ 2004-08-04 11:00:00 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agentpsh.dll
+ 2004-08-04 11:00:00 44,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agentsr.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0401.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0404.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0405.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0406.dll
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0407.dll
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0408.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt040b.dll
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt040c.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt040d.dll
+ 2004-08-04 11:00:00 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt040e.dll
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0410.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0411.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0412.dll
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0413.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0414.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0415.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0416.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0419.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt041d.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt041f.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0804.dll
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0816.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agt0c0a.dll
+ 2004-08-04 11:00:00 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\agtintl.dll
+ 2004-08-04 11:00:00 98,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ahui.exe
+ 2001-08-17 16:11:18 27,678 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ali5261.sys
+ 2001-08-17 17:49:02 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\alifir.sys
+ 2004-08-04 11:00:00 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\alrsvc.dll
+ 2001-08-17 16:11:20 16,969 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\amb8002.sys
+ 2004-08-04 11:00:00 36,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\amdk6.sys
+ 2004-08-04 11:00:00 37,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\amdk7.sys
+ 2004-08-04 11:00:00 70,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\amstream.dll
+ 2004-08-04 02:31:20 36,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\an983.sys
+ 2004-08-04 11:00:00 9,029 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ansi.sys
+ 2004-08-04 11:00:00 102,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\apcups.dll
+ 2001-08-17 17:47:22 6,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\apmbatt.sys
+ 2004-08-04 11:00:00 12,498 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\append.exe
+ 2004-08-04 11:00:00 331,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\aqueue.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\arp.exe
+ 2004-08-04 11:00:00 60,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\arp1394.sys
+ 2001-08-17 16:12:34 97,354 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\aspndis3.sys
+ 2004-08-04 11:00:00 65,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\asycfilt.dll
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\asyncmac.sys
+ 2004-08-04 11:00:00 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\at.exe
+ 2001-08-17 18:55:58 96,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati.dll
+ 2001-08-17 17:57:12 77,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati.sys
+ 2004-08-04 02:29:30 56,623 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1btxx.sys
+ 2004-08-04 02:29:30 11,615 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1mdxx.sys
+ 2004-08-04 02:29:30 12,047 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1pdxx.sys
+ 2004-08-04 02:29:32 30,671 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1raxx.sys
+ 2004-08-04 02:29:32 63,663 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1rvxx.sys
+ 2004-08-04 02:29:32 26,367 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1snxx.sys
+ 2004-08-04 02:29:32 21,343 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1ttxx.sys
+ 2004-08-04 02:29:32 36,463 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1tuxx.sys
+ 2004-08-04 02:29:32 29,455 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1xbxx.sys
+ 2004-08-04 02:29:32 34,735 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati1xsxx.sys
+ 2004-08-04 04:56:42 229,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati2cqag.dll
+ 2004-08-04 04:56:42 377,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati2dvaa.dll
+ 2004-08-04 04:56:42 201,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati2dvag.dll
+ 2004-08-04 02:29:28 327,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati2mtaa.sys
+ 2004-08-04 02:29:28 701,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati2mtag.sys
+ 2004-08-04 04:56:42 870,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ati3d1ag.dll
+ 2001-08-17 16:49:04 46,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atibt829.sys
+ 2001-08-17 18:55:58 382,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atidrab.dll
+ 2001-08-17 18:56:00 137,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atidrae.dll
+ 2001-08-17 18:56:00 268,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atidvai.dll
+ 2001-08-18 02:36:38 37,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atievxx.exe
+ 2001-08-17 16:48:56 289,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atimpab.sys
+ 2001-08-17 16:49:00 75,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atimpae.sys
+ 2001-08-17 16:48:40 281,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atimtai.sys
+ 2004-08-04 02:29:28 57,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinbtxx.sys
+ 2004-08-04 02:29:30 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinmdxx.sys
+ 2004-08-04 02:29:30 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinpdxx.sys
+ 2004-08-04 02:29:30 52,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinraxx.sys
+ 2004-08-04 02:29:32 104,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinrvxx.sys
+ 2004-08-04 02:29:32 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinsnxx.sys
+ 2004-08-04 02:29:32 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinttxx.sys
+ 2004-08-04 02:29:32 73,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atintuxx.sys
+ 2004-08-04 02:29:32 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinxbxx.sys
+ 2004-08-04 02:29:32 63,488 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atinxsxx.sys
+ 2001-08-17 16:49:36 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atipcxxx.sys
+ 2001-08-17 18:56:00 104,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atiraged.dll
+ 2001-08-17 16:48:48 70,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atiragem.sys
+ 2001-08-17 16:49:12 49,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atirtcap.sys
+ 2001-08-17 16:49:18 26,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atirtsnd.sys
+ 2001-08-17 16:49:22 17,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atitunep.sys
+ 2001-08-17 16:49:28 17,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atitvsnd.sys
+ 2001-08-17 16:49:38 9,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ativmdcd.sys

flyingpopat
2008-03-19, 03:25
+ 2004-08-04 04:56:42 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ativtmxx.dll
+ 2001-08-17 16:49:44 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ativttxx.sys
+ 2004-08-04 04:56:42 516,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ativvaxx.dll
+ 2001-08-17 16:49:48 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ativxbar.sys
+ 2001-08-17 16:49:34 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atixbar.sys
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atkctrs.dll
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmadm.exe
+ 2004-08-04 11:00:00 59,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmarpc.sys
+ 2004-08-04 11:00:00 31,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmepvc.sys
+ 2004-08-04 11:00:00 55,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmlane.sys
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmlib.dll
+ 2004-08-04 11:00:00 34,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmpvcno.dll
+ 2004-08-04 11:00:00 352,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atmuni.sys
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atrace.dll
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\attrib.exe
+ 2004-08-04 04:56:42 21,183 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atv01nt5.dll
+ 2004-08-04 04:56:42 11,359 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atv02nt5.dll
+ 2004-08-04 04:56:42 25,471 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atv04nt5.dll
+ 2004-08-04 04:56:42 14,143 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atv06nt5.dll
+ 2004-08-04 04:56:42 17,279 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\atv10nt5.dll
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\auditusr.exe
+ 2001-08-17 19:59:44 3,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\audstub.sys
+ 2003-03-24 20:52:04 20,540 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\author.dll
+ 2003-03-24 20:52:04 16,439 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\author.exe
+ 2004-08-04 11:00:00 588,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\autochk.exe
+ 2004-08-04 11:00:00 602,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\autoconv.exe
+ 2004-08-04 11:00:00 80,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\autodisc.dll
+ 2004-08-04 11:00:00 580,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\autofmt.exe
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\autolfn.exe
+ 2004-08-04 03:10:12 38,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avc.sys
+ 2001-08-17 18:01:12 36,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avcaudio.sys
+ 2004-08-04 03:10:00 13,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avcstrm.sys
+ 2004-08-04 11:00:00 69,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avicap.dll
+ 2004-08-04 11:00:00 109,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avifile.dll
+ 2001-08-18 02:36:10 87,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avmcoxp.dll
+ 2001-08-18 02:36:10 144,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avmenum.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avmeter.dll
+ 2001-08-17 16:13:48 37,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avmwan.sys
+ 2004-08-04 11:00:00 227,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avtapi.dll
+ 2004-08-04 11:00:00 73,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\avwav.dll
+ 2001-08-17 16:19:16 36,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\aztw2320.sys
+ 2001-08-17 16:13:56 89,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\b1cbase.sys
+ 2001-08-17 16:11:30 96,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\b57xp32.sys
+ 2001-08-17 18:56:00 342,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\banshee.dll
+ 2001-08-17 16:48:28 36,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\banshee.sys
+ 2004-08-04 11:00:00 8,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\batt.dll
+ 2001-08-17 17:57:54 14,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\battc.sys
+ 2004-08-04 11:00:00 1,817,687 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bckgres.dll
+ 2004-08-04 11:00:00 42,577 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bckgzm.exe
+ 2001-08-17 16:11:28 66,557 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bcm42u.sys
+ 2001-08-17 16:11:26 54,271 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bcm42xx5.sys
+ 2001-08-17 16:11:30 26,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bcm4e5.sys
+ 2004-08-04 03:10:14 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bdasup.sys
+ 2004-08-04 11:00:00 4,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\beep.sys
+ 2004-08-04 11:00:00 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bidispl.dll
+ 2001-08-18 02:36:10 102,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\binlsvc.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bitsprx2.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bitsprx3.dll
+ 2004-08-04 11:00:00 71,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\blastcln.exe
+ 2004-08-04 11:00:00 152,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bnts.dll
+ 2004-08-04 11:00:00 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bootok.exe
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bootvrfy.exe
+ 2001-08-18 02:36:10 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brbidiif.dll
+ 2001-08-18 02:36:10 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brcoinst.dll
+ 2001-08-18 02:36:10 12,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brevif.dll
+ 2001-08-17 17:12:22 12,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brfiltlo.sys
+ 2001-08-17 17:12:24 3,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brfiltup.sys
+ 2004-08-04 11:00:00 71,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bridge.sys
+ 2001-08-18 02:36:10 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brmfbidi.dll
+ 2001-08-18 02:36:10 81,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brmfcwia.dll
+ 2001-08-18 02:36:10 29,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brmflpt.dll
+ 2001-08-18 02:36:38 32,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brmfrsmg.exe
+ 2001-08-18 02:36:10 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brmfusb.dll
+ 2004-08-04 11:00:00 78,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\browsewm.dll
+ 2001-08-17 17:12:24 3,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brparimg.sys
+ 2001-08-17 17:12:18 39,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brparwdm.sys
+ 2001-08-18 02:36:10 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brscnrsm.dll
+ 2001-08-18 02:36:10 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brserif.dll
+ 2001-08-17 17:12:20 60,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brserwdm.sys
+ 2001-08-17 17:12:20 11,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brusbmdm.sys
+ 2001-08-17 17:12:22 10,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brusbscn.sys
+ 2001-08-17 16:11:24 31,529 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\brzwlan.sys
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthci.dll
+ 2004-08-04 03:10:40 17,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthenum.sys
+ 2004-08-04 03:10:40 38,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthmodem.sys
+ 2004-08-04 02:58:40 100,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthpan.sys
+ 2004-08-04 03:10:38 274,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthport.sys
+ 2004-08-04 03:10:38 35,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthprint.sys
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthserv.dll
+ 2004-08-04 03:10:36 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bthusb.sys
+ 2004-08-04 11:00:00 50,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\btpanui.dll
+ 2001-08-17 17:51:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\bulltlp3.sys
+ 2004-08-04 11:00:00 218,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\c_g18030.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\c_is2022.dll
+ 2004-08-04 11:00:00 10,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\c_iscii.dll
+ 2004-08-04 11:00:00 84,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cabview.dll
+ 2004-08-04 11:00:00 18,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cacls.exe
+ 2004-08-04 11:00:00 385,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\callcont.dll
+ 2001-08-17 18:05:48 314,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camdro21.sys
+ 2001-08-17 18:04:46 223,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camdrv21.sys
+ 2001-08-17 18:04:48 171,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camdrv30.sys
+ 2001-08-18 02:36:10 74,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camexo20.dll
+ 2001-08-18 02:36:10 236,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camext20.dll
+ 2001-08-18 02:36:10 119,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camext30.dll
+ 2004-08-04 11:00:00 50,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\camocx.dll
+ 2004-08-04 11:00:00 54,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cap7146.sys
+ 2004-08-04 11:00:00 142,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\capesnpn.dll
+ 2004-08-04 11:00:00 359,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cards.dll
+ 2004-08-04 11:00:00 85,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\catsrvps.dll
+ 2001-08-17 16:12:16 37,916 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cb102.sys
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cb32.exe
+ 2001-08-17 16:12:42 39,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cb325.sys
+ 2001-08-17 16:13:14 46,108 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cben5.sys
+ 2001-08-17 17:28:16 714,698 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cbmdmkxx.sys
+ 2004-08-04 11:00:00 27,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ccfgnt.dll
+ 2004-08-04 11:00:00 18,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cdaudio.sys
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cdmodem.dll
+ 2005-09-10 01:53:41 2,067,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cdosys.dll
+ 2004-08-04 11:00:00 49,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cdrom.sys
+ 2001-08-17 16:13:12 21,530 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ce2n5.sys
+ 2001-08-17 16:13:20 27,164 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ce3n5.sys
+ 2001-08-17 16:13:18 22,044 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cem28n5.sys
+ 2001-08-17 16:13:18 22,044 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cem33n5.sys
+ 2001-08-17 16:13:20 49,182 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cem56n5.sys
+ 2004-08-04 11:00:00 457,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\certmgr.dll
+ 2004-08-04 11:00:00 38,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cfgbkend.dll
+ 2003-03-24 20:52:04 188,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cfgwiz.exe
+ 2004-08-04 04:56:42 15,423 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ch7xxnt5.dll
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\change.exe
+ 2004-08-04 03:00:14 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\changer.sys
+ 2004-08-04 11:00:00 80,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\charmap.exe
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chglogon.exe
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chgport.exe
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chgusr.exe
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chkdsk.exe
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chkntfs.exe
+ 2004-08-04 11:00:00 780,885 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chkrres.dll
+ 2004-08-04 11:00:00 42,575 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chkrzm.exe
+ 2004-08-04 11:00:00 838,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chtbrkr.dll
+ 2004-08-04 11:00:00 97,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chtmbx.dll
+ 2004-08-04 11:00:00 56,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chtskdic.dll
+ 2004-08-04 11:00:00 173,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\chtskf.dll
+ 2004-08-04 11:00:00 163,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ciadmin.dll
+ 2004-08-04 11:00:00 109,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cic.dll
+ 2001-08-17 16:13:38 980,034 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cicap.sys
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cidaemon.exe
+ 2001-08-17 18:02:48 272,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cinemclc.sys
+ 2004-08-04 11:00:00 262,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cinemst2.sys
+ 2004-08-04 11:00:00 198,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cintime.dll
+ 2004-08-04 11:00:00 480,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cintsetp.exe
+ 2001-08-17 18:56:00 91,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cirrus.dll
+ 2001-08-17 17:57:16 45,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cirrus.sys
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ckcnv.exe
+ 2001-08-17 18:56:00 111,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cl5465.dll
+ 2001-08-17 18:56:00 170,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cl546x.dll
+ 2001-08-17 17:57:36 248,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cl546xm.sys
+ 2004-08-04 11:00:00 435,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\class_ss.dll
+ 2005-07-26 04:39:43 110,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\clbcatex.dll
+ 2004-08-04 11:00:00 64,000 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cleanmgr.exe
+ 2004-08-04 11:00:00 102,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\clipbrd.exe
+ 2004-08-04 03:07:40 14,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmbatt.sys
+ 2001-08-17 17:51:04 20,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmbp0wdm.sys
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmcfg32.dll
+ 2004-08-04 11:00:00 388,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmd.exe
+ 2004-08-04 11:00:00 343,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmdial32.dll
+ 2004-08-04 11:00:00 47,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmdl32.exe
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmmon32.exe
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmpbk32.dll
+ 2004-08-04 11:00:00 185,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmprops.dll
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmsetacl.dll
+ 2004-08-04 11:00:00 63,488 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmstp.exe
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cmutil.dll
+ 2004-08-04 11:00:00 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cnetcfg.dll
+ 2001-08-18 02:36:10 44,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cnusd.dll
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cnvfat.dll
+ 2001-08-17 16:11:42 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cnxt1803.sys
+ 2004-08-04 11:00:00 25,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comaddin.dll
+ 2005-07-26 04:39:44 195,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comadmin.dll
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comcat.dll
+ 2004-08-04 11:00:00 32,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\commdlg.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comp.exe
+ 2004-08-04 11:00:00 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\compact.exe
+ 2004-08-04 11:00:00 252,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\compatui.dll
+ 2001-08-17 17:58:00 9,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\compbatt.sys
+ 2004-08-04 11:00:00 30,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\compobj.dll
+ 2004-08-04 11:00:00 229,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\compstui.dll
+ 2005-07-26 04:39:44 97,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comrepl.dll
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comrepl.exe
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comrereg.exe
+ 2004-08-04 11:00:00 259,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comsetup.dll
+ 2004-08-04 11:00:00 147,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comsnap.dll
+ 2005-07-26 04:39:45 540,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\comuid.dll

flyingpopat
2008-03-19, 03:25
+ 2004-08-04 11:00:00 1,032,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\conf.exe
+ 2004-08-04 11:00:00 45,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\confmrsl.dll
+ 2004-08-04 11:00:00 345,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\confmsp.dll
+ 2004-08-04 11:00:00 27,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\conime.exe
+ 2004-08-04 11:00:00 66,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\console.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\control.exe
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\convert.exe
+ 2004-08-04 11:00:00 27,097 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\country.sys
+ 2004-08-04 11:00:00 57,399 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cplexe.exe
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cpqdap01.sys
+ 2001-08-17 16:13:14 21,533 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cpqndis5.sys
+ 2001-08-17 16:11:32 60,970 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cpqtrnd5.sys
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cprofile.exe
+ 2001-08-18 02:36:10 216,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cpscan.dll
+ 2001-08-17 16:19:18 42,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\crtaud.sys
+ 2004-08-04 11:00:00 149,019 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\crtdll.dll
+ 2004-08-04 11:00:00 36,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\crusoe.sys
+ 2004-08-04 11:00:00 74,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cryptdlg.dll
+ 2001-08-18 02:36:12 175,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\csamsp.dll
+ 2007-08-01 00:45:06 114,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cscript.exe
+ 2004-08-04 11:00:00 27,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ctl3d32.dll
+ 2001-08-17 16:19:28 6,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ctlfacem.sys
+ 2001-08-17 16:19:20 3,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ctljystk.sys
+ 2001-08-17 16:19:20 96,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ctlsb16.sys
+ 2004-08-04 04:56:42 249,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ctmasetp.dll
+ 2001-08-18 02:36:12 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ctwdm32.dll
- 2006-11-08 01:03:36 33,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\custsat.dll
+ 2005-01-28 18:44:28 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\custsat.dll
+ 2001-08-17 16:19:24 3,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwbase.sys
+ 2001-08-17 16:19:26 3,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwbmidi.sys
+ 2001-08-17 16:19:28 72,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwbwdm.sys
+ 2001-08-17 16:19:30 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwcosnt5.sys
+ 2001-08-17 16:19:36 111,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwcspud.sys
+ 2001-08-17 16:19:48 93,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwcwdm.sys
+ 2004-08-04 02:32:26 48,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cwrwdm.sys
+ 2001-08-17 17:50:36 17,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyclad-z.sys
+ 2001-08-17 17:50:30 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyclom-y.sys
+ 2001-08-18 02:36:12 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyycoins.dll
+ 2001-08-17 17:50:38 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyyport.sys
+ 2001-08-18 02:36:12 27,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyyports.dll
+ 2001-08-18 02:36:12 27,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyzcoins.dll
+ 2001-08-17 17:50:40 49,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyzport.sys
+ 2001-08-18 02:36:12 27,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\cyzports.dll
+ 2001-08-17 16:12:02 117,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d100ib5.sys
+ 2004-08-04 11:00:00 1,179,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3d8.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3d8thk.dll
+ 2004-08-04 11:00:00 1,689,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3d9.dll
+ 2004-08-04 11:00:00 436,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3dim.dll
+ 2004-08-04 11:00:00 34,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3dpmesh.dll
+ 2004-08-04 11:00:00 590,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3dramp.dll
+ 2004-08-04 11:00:00 350,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3drm.dll
+ 2004-08-04 11:00:00 47,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\d3dxof.dll
+ 2004-08-04 11:00:00 561,179 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dao360.dll
+ 2004-08-04 11:00:00 54,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dataclen.dll
+ 2004-08-04 11:00:00 152,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\datime.dll
+ 2004-08-04 11:00:00 847,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dbgeng.dll
+ 2004-08-04 11:00:00 110,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dbnetlib.dll
+ 2001-08-18 02:36:12 25,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dc210_32.dll
+ 2001-08-18 02:36:12 80,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dc210usd.dll
+ 2001-08-17 16:12:02 63,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dc21x4.sys
+ 2001-08-18 02:36:12 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dc240usd.dll
+ 2001-08-18 02:36:12 110,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dc260usd.dll
+ 2004-08-04 11:00:00 40,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dcap32.dll
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dcomcnfg.exe
+ 2004-08-04 11:00:00 39,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ddeml.dll
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ddeshare.exe
+ 2001-08-17 17:52:58 7,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ddsmc.sys
+ 2004-08-04 11:00:00 20,634 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\debug.exe
+ 2001-08-17 16:11:44 20,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\defpa.sys
+ 2004-08-04 11:00:00 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\defrag.exe
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\deskadp.dll
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\deskmon.dll
+ 2004-08-04 11:00:00 18,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\deskperf.dll
+ 2001-08-18 02:36:14 256,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\devcon32.dll
+ 2001-08-18 02:36:42 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\devldr32.exe
+ 2004-08-04 11:00:00 282,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\devmgr.dll
+ 2001-08-17 16:11:48 24,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfe650.sys
+ 2001-08-17 16:11:48 24,649 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfe650d.sys
+ 2004-08-04 11:00:00 82,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfrgfat.exe
+ 2004-08-04 11:00:00 104,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfrgntfs.exe
+ 2004-08-04 11:00:00 51,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfrgres.dll
+ 2004-08-04 11:00:00 38,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfrgsnap.dll
+ 2004-08-04 11:00:00 123,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfrgui.dll
+ 2004-08-04 11:00:00 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dfsshlex.dll
+ 2001-08-17 16:17:20 29,531 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dgapci.sys
+ 2001-08-18 02:36:14 419,357 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dgconfig.dll
+ 2004-08-04 11:00:00 111,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dgnet.dll
+ 2004-08-04 11:00:00 176,157 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dgrpsetu.dll
+ 2004-08-04 11:00:00 85,020 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dgsetup.dll
+ 2004-08-04 11:00:00 370,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dhcpmon.dll
+ 2004-08-04 11:00:00 74,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dhcpsapi.dll
+ 2004-08-04 11:00:00 394,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diactfrm.dll
+ 2004-08-04 11:00:00 85,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diantz.exe
+ 2001-08-17 16:13:48 164,923 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diapi2.sys
+ 2001-08-18 02:36:14 32,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diapi2NT.dll
+ 2004-08-04 11:00:00 68,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digest.dll
+ 2001-08-18 02:36:14 65,622 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digiasyn.dll
+ 2001-08-17 16:13:36 37,735 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digiasyn.sys
+ 2001-08-18 02:36:14 131,156 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digidbp.dll
+ 2001-08-17 16:13:52 103,044 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digidxb.sys
+ 2001-08-17 16:17:40 90,525 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digifep5.sys
+ 2001-08-18 02:36:14 229,462 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digifwrk.dll
+ 2001-08-18 02:36:14 159,828 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digihlc.dll
+ 2001-08-18 02:36:14 102,484 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digiinf.dll
+ 2001-08-18 02:36:14 41,046 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digiisdn.dll
+ 2001-08-17 16:14:44 21,606 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digiisdn.sys
+ 2001-08-18 02:36:14 110,621 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digirlpt.dll
+ 2001-08-17 16:17:44 42,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digirlpt.sys
+ 2001-08-18 02:36:42 614,429 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\digiview.exe
+ 2001-08-17 16:13:52 91,305 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dimaint.sys
+ 2004-08-04 11:00:00 44,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dimap.dll
+ 2004-08-04 11:00:00 181,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dinput8.dll
+ 2004-08-04 11:00:00 1,501,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diskcopy.dll
+ 2004-08-04 11:00:00 14,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diskdump.sys
+ 2004-08-04 11:00:00 163,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diskpart.exe
+ 2004-08-04 11:00:00 17,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\diskperf.exe
+ 2007-08-01 00:45:24 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dispex.dll
+ 2001-08-18 02:36:14 6,729 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\disrvci.dll
+ 2001-08-18 02:36:14 31,305 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\disrvpp.dll
+ 2001-08-18 02:36:14 38,985 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\disrvsu.dll
+ 2001-08-18 02:36:42 236,060 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ditrace.exe
+ 2001-08-18 02:36:14 6,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\divaci.dll
+ 2001-08-18 02:36:14 37,962 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\divaprop.dll
+ 2001-08-18 02:36:14 29,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\divasu.dll
+ 2001-08-17 16:11:44 26,698 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dlh5xnd5.sys
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dllhost.exe
+ 2004-08-04 11:00:00 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dllhst3g.exe
+ 2004-08-04 03:00:06 8,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dlttape.sys
+ 2001-08-17 16:11:42 29,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dm9pci5.sys
+ 2004-08-04 11:00:00 224,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmadmin.exe
+ 2004-08-04 11:00:00 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmband.dll
+ 2004-08-04 11:00:00 799,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmboot.sys
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmcompos.dll
+ 2004-08-04 11:00:00 330,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmconfig.dll
+ 2004-08-04 11:00:00 273,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmdlgs.dll
+ 2004-08-04 11:00:00 200,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmdskmgr.dll
+ 2004-08-04 11:00:00 118,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmdskres.dll
+ 2004-08-04 11:00:00 181,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmime.dll
+ 2004-08-04 11:00:00 18,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmintf.dll
+ 2004-08-04 11:00:00 153,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmio.sys
+ 2004-08-04 11:00:00 5,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmload.sys
+ 2004-08-04 11:00:00 35,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmloader.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmocx.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmremote.exe
+ 2004-08-04 11:00:00 82,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmscript.dll
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmserver.dll
+ 2004-08-04 11:00:00 105,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmstyle.dll
+ 2004-08-04 11:00:00 103,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmsynth.dll
+ 2004-08-04 11:00:00 104,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmusic.dll
+ 2004-08-04 11:00:00 52,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dmutil.dll
+ 2004-08-04 11:00:00 10,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\doskey.exe
+ 2004-08-04 11:00:00 53,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dosx.exe
+ 2001-08-17 17:47:32 8,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dot4scan.sys
+ 2001-08-17 16:12:32 28,062 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dp83820.sys
+ 2004-08-04 11:00:00 33,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dplay.dll
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dplaysvr.exe
+ 2004-08-04 11:00:00 229,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dplayx.dll
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpmodemx.dll
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnaddr.dll
+ 2004-08-04 11:00:00 375,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnet.dll
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnhpast.dll
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnlobby.dll
+ 2004-08-04 11:00:00 62,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnmodem.dll
+ 2004-08-04 11:00:00 18,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnsvr.exe
+ 2004-08-04 11:00:00 61,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpnwsock.dll
+ 2004-08-04 11:00:00 53,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpserial.dll
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpvacm.dll
+ 2004-08-04 11:00:00 212,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpvoice.dll
+ 2004-08-04 11:00:00 83,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpvsetup.exe
+ 2004-08-04 11:00:00 116,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpvvox.dll
+ 2004-08-04 11:00:00 42,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpwsock.dll
+ 2004-08-04 11:00:00 57,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dpwsockx.dll
+ 2004-08-04 11:00:00 28,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\drwatson.exe
+ 2004-08-04 11:00:00 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\drwtsn32.exe
+ 2004-08-04 11:00:00 4,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ds16gt.dll
+ 2001-08-17 16:20:18 334,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ds1wdm.sys
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ds32gt.dll
+ 2004-08-04 11:00:00 62,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsauth.dll
+ 2004-08-04 11:00:00 181,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsdmo.dll
+ 2004-08-04 11:00:00 71,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsdmoprp.dll
+ 2004-08-04 11:00:00 144,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dskquoui.dll

flyingpopat
2008-03-19, 03:27
+ 2004-08-04 11:00:00 1,294,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsound3d.dll
+ 2004-08-04 11:00:00 142,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsprop.dll
+ 2004-08-04 11:00:00 120,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsprov.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsprpres.dll
+ 2004-08-04 11:00:00 239,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsquery.dll
+ 2004-08-04 11:00:00 51,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dssec.dll
+ 2004-08-04 11:00:00 113,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dsuiext.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dswave.dll
+ 2004-08-04 11:00:00 10,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dumprep.exe
+ 2004-08-04 11:00:00 55,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dvdplay.exe
+ 2004-08-04 11:00:00 17,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dvdupgrd.exe
+ 2004-08-04 11:00:00 55,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dwil1033.dll
+ 2004-08-04 11:00:00 180,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dwwin.exe
+ 2004-08-04 11:00:00 619,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dx7vb.dll
+ 2004-08-04 11:00:00 1,227,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dx8vb.dll
+ 2004-08-04 11:00:00 10,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dxapi.sys
+ 2004-08-04 11:00:00 1,298,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dxdiag.exe
+ 2004-08-04 11:00:00 2,113,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dxdiagn.dll
+ 2004-08-04 11:00:00 3,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\dxgthk.sys
+ 2001-08-17 16:12:08 50,719 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\e1000nt5.sys
+ 2001-08-17 16:12:12 19,594 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\e100isa4.sys
+ 2004-08-04 11:00:00 514,587 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\edb500.dll
+ 2004-08-04 11:00:00 12,642 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\edlin.exe
+ 2001-08-17 16:10:50 44,103 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el515.sys
+ 2001-08-17 16:10:56 55,999 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el556nd5.sys
+ 2001-08-17 16:10:56 24,653 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el574nd4.sys
+ 2001-08-17 16:10:58 69,692 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el575nd5.sys
+ 2001-08-17 16:10:52 26,141 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el589nd5.sys
+ 2001-08-17 16:11:00 69,194 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el656cd5.sys
+ 2001-08-17 16:11:00 77,386 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el656nd5.sys
+ 2001-08-17 17:28:00 241,206 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el656se5.sys
+ 2001-08-17 16:11:06 66,591 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el90xbc5.sys
+ 2001-08-17 16:11:02 153,631 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el90xnd5.sys
+ 2001-08-17 16:11:12 455,199 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el985n51.sys
+ 2001-08-17 16:11:04 70,174 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el98xn5.sys
+ 2001-08-17 16:11:08 171,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\el99xn51.sys
+ 2001-08-17 17:53:02 7,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\elmsmc.sys
+ 2001-08-17 16:10:52 25,159 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\elnk3.sys
+ 2004-08-04 11:00:00 183,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\els.dll
+ 2001-08-17 16:10:54 19,996 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\em556n4.sys
+ 2001-08-17 16:19:26 283,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\emu10k1m.sys
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\encapi.dll
+ 2004-08-04 11:00:00 186,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\encdec.dll
+ 2001-08-17 17:46:40 6,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\enum1394.sys
+ 2001-08-17 17:50:20 144,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\epcfw2k.sys
+ 2001-08-17 16:12:08 18,503 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\epro4.sys
+ 2001-08-17 17:50:20 114,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\epstw2k.sys
+ 2001-08-17 16:17:40 629,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eqn.sys
+ 2004-08-04 11:00:00 103,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eqnclass.dll
+ 2001-08-18 02:36:44 53,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eqndiag.exe
+ 2001-08-18 02:36:44 51,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eqnlogr.exe
+ 2001-08-18 02:36:44 61,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eqnloop.exe
+ 2001-08-17 16:19:38 37,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\es1370mp.sys
+ 2001-08-17 16:19:34 40,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\es1371mp.sys
+ 2001-08-17 16:19:58 72,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\es1969.sys
+ 2001-08-17 16:19:48 174,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\es198x.sys
+ 2001-08-17 17:28:04 594,238 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\es56hpi.sys
+ 2001-08-17 17:28:04 347,550 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\es56tpi.sys
+ 2004-08-04 11:00:00 1,114,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esent97.dll
+ 2004-08-04 11:00:00 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esentprf.dll
+ 2004-08-04 11:00:00 39,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esentutl.exe
+ 2001-08-17 16:19:56 63,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ess.sys
+ 2004-08-04 02:32:28 137,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\essm2e.sys
+ 2001-08-18 02:36:16 43,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esucm.dll
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esucmd.dll
+ 2001-08-18 02:36:16 34,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esuimg.dll
+ 2004-08-04 11:00:00 57,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esuimgd.dll
+ 2001-08-18 02:36:16 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esuni.dll
+ 2001-08-18 02:36:16 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esunib.dll
+ 2004-08-04 11:00:00 45,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\esunid.dll
+ 2004-08-04 11:00:00 25,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\et4000.sys
+ 2004-08-04 11:00:00 193,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eudcedit.exe
+ 2004-08-04 11:00:00 33,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eventcls.dll
+ 2004-08-04 11:00:00 8,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\eventvwr.exe
+ 2004-08-04 11:00:00 101,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\evntagnt.dll
+ 2004-08-04 11:00:00 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\evntcmd.exe
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\evntrprv.dll
+ 2004-08-04 11:00:00 92,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\evntwin.exe
+ 2001-08-17 16:12:08 16,998 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ex10.sys
+ 2001-08-17 17:52:48 7,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\exabyte2.sys
+ 2001-08-18 02:36:10 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_adsiisex.dll
+ 2001-08-18 02:36:10 45,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_aqadmin.dll
+ 2001-08-18 02:36:16 43,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_fcachdll.dll
+ 2001-08-18 02:36:18 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_mailmsg.dll
+ 2001-08-18 02:36:28 38,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_ntfsdrv.dll
+ 2001-08-18 02:36:54 23,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_regtrace.exe
+ 2001-08-18 02:36:30 57,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_scripto.dll
+ 2001-08-18 02:36:30 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_seos.dll
+ 2001-08-18 02:36:32 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_smtpctrs.dll
+ 2001-08-18 02:36:32 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\EXCH_snprfdll.dll
+ 2004-08-04 11:00:00 8,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\exe2bin.exe
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\expand.exe
+ 2004-08-04 11:00:00 380,957 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\expsrv.dll
+ 2004-08-04 11:00:00 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\extrac32.exe
+ 2004-08-04 11:00:00 121,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\exts.dll
+ 2001-08-17 16:11:54 12,362 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\f3ab18xi.sys
+ 2001-08-17 16:11:56 11,850 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\f3ab18xj.sys
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\f3ahvoas.dll
+ 2001-08-17 16:12:32 16,074 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fa312nd5.sys
+ 2001-08-17 16:12:32 24,618 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fa410nd5.sys
+ 2004-08-04 11:00:00 143,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fastfat.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fc.exe
+ 2004-08-04 11:00:00 27,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fdc.sys
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\feclient.dll
+ 2001-08-17 16:10:54 22,090 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fem556n5.sys
+ 2001-08-17 16:13:08 27,165 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fetnd5.sys
+ 2004-08-04 11:00:00 337,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\filemgmt.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\find.exe
+ 2004-08-04 11:00:00 27,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\findstr.exe
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\finger.exe
+ 2004-08-04 11:00:00 34,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fips.sys
+ 2004-08-04 11:00:00 3,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fixmapi.exe
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\flattemp.exe
+ 2004-08-04 11:00:00 87,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fldrclnr.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\flpydisk.sys
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fmifs.dll
+ 2001-08-18 02:36:16 71,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fnfilter.dll
+ 2004-08-04 11:00:00 382,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fontext.dll
+ 2005-10-17 21:14:45 80,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fontsub.dll
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fontview.exe
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\forcedos.exe
+ 2004-08-04 02:31:24 34,173 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\forehe.sys
+ 2004-08-04 11:00:00 32,828 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp40ext.dll
+ 2004-05-13 04:39:48 184,435 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4amsft.dll
+ 2003-03-24 20:52:04 82,035 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4anscp.dll
+ 2003-03-24 20:52:04 147,513 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4apws.dll
+ 2003-03-24 20:52:04 49,210 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4areg.dll
+ 2003-03-24 20:52:04 102,509 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4atxt.dll
+ 2003-03-24 22:52:04 618,605 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4autl.dll
+ 2003-03-24 20:52:04 41,020 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4avnb.dll
+ 2003-03-24 20:52:04 32,826 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4avss.dll
+ 2003-03-24 20:52:04 49,212 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp4awebs.dll
+ 2003-03-24 20:52:04 14,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp98sadm.exe
+ 2003-03-24 20:52:04 109,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fp98swin.exe
+ 2003-03-24 20:52:04 24,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpadmcgi.exe
+ 2003-03-24 20:52:04 20,541 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpadmdll.dll
+ 2001-08-17 16:14:24 444,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpcibase.sys
+ 2001-08-17 16:14:44 441,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpcmbase.sys
+ 2003-03-24 20:52:04 188,494 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpcount.exe
+ 2003-03-24 20:52:04 20,541 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpexedll.dll
+ 2004-05-13 04:39:48 598,071 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpmmc.dll
+ 2003-03-24 20:52:06 208,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpmmcsat.dll
+ 2001-08-17 16:15:02 442,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpnpbase.sys
+ 2003-03-24 20:52:04 20,538 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fpremadm.exe
+ 2004-08-04 11:00:00 9,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\framebuf.dll
+ 2004-08-04 11:00:00 55,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\freecell.exe
+ 2004-08-04 11:00:00 7,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fs_rec.sys
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fsconins.dll
+ 2004-08-04 11:00:00 193,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fsquirt.exe
+ 2004-08-04 11:00:00 81,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fsusd.dll
+ 2004-08-04 11:00:00 56,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fsutil.exe
+ 2004-08-04 11:00:00 12,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fsvga.sys
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ftlx041e.dll
+ 2004-08-04 11:00:00 42,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ftp.exe
+ 2004-08-04 11:00:00 176,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ftsrch.dll
+ 2001-08-17 16:15:22 455,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fus2base.sys
+ 2001-08-17 16:15:38 455,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fusbbase.sys
+ 2001-08-18 02:36:16 92,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fuusd.dll
+ 2004-08-04 11:00:00 60,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fwcfg.dll
+ 2004-08-04 11:00:00 53,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fwdprov.dll
+ 2004-08-04 11:00:00 111,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxscfgwz.dll
+ 2004-08-04 11:00:00 143,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsclnt.exe
+ 2004-08-04 11:00:00 132,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsclntr.dll
+ 2004-08-04 11:00:00 72,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxscom.dll
+ 2004-08-04 11:00:00 285,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxscomex.dll
+ 2004-08-04 11:00:00 229,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxscover.exe
+ 2004-08-04 11:00:00 27,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsdrv.dll
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsext32.dll
+ 2004-08-04 11:00:00 132,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsocm.dll
+ 2004-08-04 11:00:00 8,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsperf.dll

flyingpopat
2008-03-19, 03:28
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsres.dll
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsroute.dll
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxssend.exe
+ 2004-08-04 11:00:00 246,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxst30.dll
+ 2004-08-04 11:00:00 397,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxstiff.dll
+ 2004-08-04 11:00:00 154,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsui.dll
+ 2004-08-04 11:00:00 192,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxswzrd.dll
+ 2004-08-04 11:00:00 400,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxsxp32.dll
+ 2001-08-17 16:15:56 454,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\fxusbase.sys
+ 2001-08-17 18:56:00 470,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\g200d.dll
+ 2001-08-17 16:49:34 320,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\g200m.sys
+ 2001-08-17 16:49:42 322,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\g400m.sys
+ 2004-08-04 03:07:44 46,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gagp30kx.sys
+ 2004-08-04 03:08:22 10,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gameenum.sys
+ 2004-08-04 11:00:00 76,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gcdef.dll
+ 2004-08-04 03:08:30 59,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gckernel.sys
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gdi.exe
+ 2004-08-04 11:00:00 605,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\getuname.dll
+ 2004-08-04 11:00:00 285,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\glmf32.dll
+ 2004-08-04 11:00:00 122,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\glu32.dll
+ 2004-08-04 11:00:00 101,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gpkcsp.dll
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gpkrsrc.dll
+ 2001-08-17 17:51:06 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\gpr400.sys
+ 2001-08-17 17:51:20 82,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\grclass.sys
+ 2004-08-04 11:00:00 39,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\grpconv.exe
+ 2004-08-04 02:59:20 28,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\grserial.sys
+ 2004-08-04 11:00:00 123,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\guitrn.dll
+ 2004-08-04 11:00:00 108,544 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\guitrn_a.dll
+ 2004-08-04 11:00:00 57,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\h323cc.dll
+ 2004-08-04 11:00:00 614,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\h323msp.dll
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hanjadic.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hccoin.dll
+ 2001-08-17 17:28:02 907,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hcf_msft.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\help.exe
+ 2004-08-04 11:00:00 768,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\helpctr.exe
+ 2004-08-04 11:00:00 99,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\helphost.exe
+ 2005-05-26 23:22:01 10,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hh.exe
+ 2004-08-04 11:00:00 87,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hhctrlui.dll
+ 2005-05-27 02:04:27 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hhsetup.dll
+ 2001-08-17 17:58:00 19,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidbatt.sys
+ 2004-08-04 03:10:38 25,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidbth.sys
+ 2004-08-04 11:00:00 36,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidclass.sys
+ 2001-08-17 18:02:32 8,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidgame.sys
+ 2004-08-04 03:08:20 15,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidir.sys
+ 2004-08-04 11:00:00 24,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidparse.sys
+ 2004-08-04 04:56:44 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidserv.dll
+ 2001-08-17 20:02:20 9,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hidusb.sys
+ 2004-08-04 11:00:00 4,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\himem.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hnetmon.dll
+ 2004-08-04 11:00:00 330,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hnetwiz.dll
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hostmib.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hostname.exe
+ 2004-08-04 11:00:00 144,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hotplug.dll
+ 2001-08-18 02:36:16 119,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpdigwia.dll
+ 2001-08-18 02:36:16 83,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt21.dll
+ 2001-08-18 02:36:16 123,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt21tk.dll
+ 2001-08-18 02:36:16 89,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt33.dll
+ 2001-08-18 02:36:16 48,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt33tk.dll
+ 2001-08-18 02:36:16 101,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt34.dll
+ 2001-08-18 02:36:16 126,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt34tk.dll
+ 2001-08-18 02:36:16 93,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt42.dll
+ 2001-08-18 02:36:16 31,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt42tk.dll
+ 2001-08-18 02:36:16 165,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt53.dll
+ 2001-08-18 02:36:16 68,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgt53tk.dll
+ 2001-08-18 02:36:16 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpgtmcro.dll
+ 2001-08-18 02:36:16 324,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpojwia.dll
+ 2001-08-18 02:36:16 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpsjmcro.dll
+ 2001-08-17 17:52:50 5,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hpt4qic.sys
+ 2001-08-18 02:36:16 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hr1w.dll
+ 2004-08-04 11:00:00 1,175,635 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hrtzres.dll
+ 2004-08-04 11:00:00 42,573 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hrtzzm.exe
+ 2001-08-17 17:28:04 150,239 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_amos.sys
+ 2001-08-17 17:28:04 67,167 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_bsc2.sys
+ 2001-08-17 17:28:06 289,887 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_fall.sys
+ 2001-08-17 17:28:06 199,711 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_faxx.sys
+ 2001-08-17 17:28:06 115,807 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_fsks.sys
+ 2001-08-18 02:36:16 9,759 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_inst.dll
+ 2001-08-17 17:28:08 391,199 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_k56k.sys
+ 2001-08-17 17:28:10 542,879 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_msft.sys
+ 2001-08-17 17:28:10 57,471 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_samp.sys
+ 2001-08-17 17:28:10 44,863 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_soar.sys
+ 2001-08-17 17:28:10 73,279 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_spkp.sys
+ 2001-08-17 17:28:12 50,751 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_tone.sys
+ 2001-08-17 17:28:12 488,383 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsf_v124.sys
+ 2004-08-04 02:41:48 220,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsfbs2s2.sys
+ 2004-08-04 04:56:44 32,285 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsfcisp2.dll
+ 2004-08-04 02:41:50 685,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsfcxts2.sys
+ 2004-08-04 02:41:56 1,041,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hsfdpsp2.sys
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\httpapi.dll
+ 2004-08-04 11:00:00 41,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\htui.dll
+ 2004-08-04 11:00:00 10,096,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hwxcht.dll
+ 2004-08-04 11:00:00 10,129,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\hwxkor.dll
+ 2004-08-04 05:00:52 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\i2omgmt.sys
+ 2001-08-17 18:56:00 353,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\i740dnt5.dll
+ 2001-08-17 16:49:06 58,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\i740nt5.sys
+ 2004-08-04 11:00:00 52,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\i8042prt.sys
+ 2004-08-04 04:56:44 702,845 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\i81xdnt5.dll
+ 2004-08-04 02:29:38 161,020 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\i81xnt5.sys
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iasacct.dll
+ 2004-08-04 11:00:00 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iasads.dll
+ 2004-08-04 11:00:00 32,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iashlpr.dll
+ 2004-08-04 11:00:00 62,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iasnap.dll
+ 2004-08-04 11:00:00 17,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iaspolcy.dll
+ 2004-08-04 11:00:00 119,808 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iasrad.dll
+ 2004-08-04 11:00:00 141,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iasrecst.dll
+ 2004-08-04 11:00:00 86,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iassam.dll
+ 2004-08-04 11:00:00 247,808 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iassdo.dll
+ 2004-08-04 11:00:00 59,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iassvcs.dll
+ 2001-08-17 16:11:58 28,700 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ibmexmp.sys
+ 2001-08-18 02:34:30 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ibmsgnet.dll
+ 2001-08-17 16:12:00 100,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ibmtok.sys
+ 2001-08-17 16:12:02 109,085 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ibmtrp.sys
+ 2001-08-17 18:06:46 38,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ibmvcap.sys
+ 2001-08-17 18:05:44 141,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam3.sys
+ 2001-08-18 02:36:16 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam3ext.dll
+ 2001-08-18 02:36:16 91,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam4com.dll
+ 2001-08-18 02:36:16 61,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam4ext.dll
+ 2001-08-17 18:06:02 154,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam4usb.sys
+ 2001-08-18 02:36:16 45,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam5com.dll
+ 2001-08-18 02:36:16 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam5ext.dll
+ 2001-08-17 18:06:20 100,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icam5usb.sys
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icfgnt5.dll
+ 2005-06-29 01:46:00 254,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icm32.dll
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icmp.dll
+ 2004-08-04 11:00:00 54,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icmui.dll
+ 2001-08-18 02:36:16 372,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iconf32.dll
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwconn.dll
+ 2004-08-04 11:00:00 214,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwconn1.exe
+ 2004-08-04 11:00:00 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwconn2.exe
+ 2004-08-04 11:00:00 73,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwdial.dll
+ 2004-08-04 11:00:00 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwdl.dll
+ 2004-08-04 11:00:00 172,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwhelp.dll
+ 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwphbk.dll
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwres.dll
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwrmind.exe
+ 2004-08-04 11:00:00 73,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwtutor.exe
+ 2004-08-04 11:00:00 49,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\icwutil.dll
+ 2004-08-04 11:00:00 120,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\idq.dll
+ 2004-08-04 11:00:00 114,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iexpress.exe
+ 2004-08-04 11:00:00 135,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ifmon.dll
+ 2004-08-04 11:00:00 70,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ifsutil.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\igmpagnt.dll
+ 2004-08-04 11:00:00 505,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iis.dll
+ 2004-08-04 11:00:00 81,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ils.dll
+ 2004-08-04 11:00:00 41,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imapi.sys
+ 2004-08-04 11:00:00 106,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imekrcic.dll
+ 2004-08-04 11:00:00 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imekrmbx.dll
+ 2004-08-04 11:00:00 44,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imekrmig.exe
+ 2004-08-04 11:00:00 102,463 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imepadsm.dll
+ 2004-08-04 11:00:00 311,359 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imepadsv.exe
+ 2004-08-04 11:00:00 36,921 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imeshare.dll
+ 2004-08-04 11:00:00 368,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpcic.dll
+ 2004-08-04 11:00:00 716,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpcus.dll
+ 2004-08-04 11:00:00 57,398 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpdadm.exe
+ 2004-08-04 11:00:00 81,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpdct.dll
+ 2004-08-04 11:00:00 307,257 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpdct.exe
+ 2004-08-04 11:00:00 155,705 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpdsvr.exe
+ 2004-08-04 11:00:00 196,665 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpinst.exe
+ 2004-08-04 11:00:00 208,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpmig.exe
+ 2004-08-04 11:00:00 233,527 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjprw.exe
+ 2004-08-04 11:00:00 45,109 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjpuex.exe
+ 2004-08-04 11:00:00 262,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjputy.exe
+ 2004-08-04 11:00:00 274,489 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imjputyc.dll
+ 2004-08-04 11:00:00 59,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imkrinst.exe
+ 2004-08-04 11:00:00 102,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imlang.dll
+ 2004-08-04 11:00:00 59,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imscinst.exe
+ 2004-08-04 11:00:00 115,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imsinsnt.dll
+ 2004-08-04 11:00:00 471,102 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imskdic.dll
+ 2004-08-04 11:00:00 315,452 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\imskf.dll
+ 2004-08-04 11:00:00 274,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inetcfg.dll
+ 2004-08-04 11:00:00 110,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inetcplc.dll
+ 2004-08-04 11:00:00 33,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inetmib1.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inetppui.dll
+ 2004-08-04 11:00:00 48,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inetres.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inetwiz.exe
+ 2004-08-04 11:00:00 450,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\infosoft.dll
+ 2004-08-04 11:00:00 147,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\initpki.dll
+ 2001-08-17 17:47:50 13,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\inport.sys
+ 2004-08-04 11:00:00 123,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\input.dll
+ 2004-08-04 11:00:00 36,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\intelppm.sys
+ 2001-08-17 17:50:56 38,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\io8.sys
+ 2001-08-18 02:36:18 90,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\io8ports.dll
+ 2004-08-04 11:00:00 30,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iologmsg.dll
+ 2001-08-17 16:12:12 45,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ip5515.sys
+ 2004-08-04 11:00:00 29,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ip6fw.sys
+ 2004-08-04 11:00:00 55,808 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipconfig.exe
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipinip.sys
+ 2004-08-04 11:00:00 154,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipmontr.dll
+ 2004-08-04 11:00:00 330,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ippromon.dll
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iprip.dll
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iprop.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iprtprio.dll
+ 2004-08-04 11:00:00 169,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\iprtrmgr.dll
+ 2004-08-04 11:00:00 74,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipsec.sys
+ 2004-08-04 11:00:00 44,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipsec6.exe
+ 2004-08-04 11:00:00 349,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipsecsnp.dll
+ 2004-08-04 11:00:00 384,000 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipsmsnap.dll
+ 2004-08-04 11:00:00 53,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipv6.exe
+ 2004-08-04 11:00:00 59,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipv6mon.dll
+ 2004-08-04 11:00:00 83,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxmontr.dll
+ 2004-08-04 11:00:00 69,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxpromn.dll
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxrip.dll
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxroute.exe
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxrtmgr.dll
+ 2004-08-04 11:00:00 66,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxsap.dll
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ipxwan.dll
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irclass.dll
+ 2004-08-04 03:00:54 87,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irda.sys
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irenum.sys
+ 2004-08-04 04:56:52 152,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irftp.exe
+ 2001-08-17 17:49:04 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irmk7.sys
+ 2004-08-04 04:56:44 27,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irmon.dll
+ 2001-08-17 17:51:32 18,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irsir.sys
+ 2001-08-17 17:49:10 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\irstusb.sys
+ 2004-08-04 11:00:00 81,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\isign32.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\isignup.exe
+ 2004-08-04 11:00:00 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\isrdbg32.dll
+ 2005-05-27 02:04:27 155,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\itircl.dll
+ 2005-05-27 02:04:27 137,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\itss.dll
+ 2004-08-04 11:00:00 54,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ixsso.dll
+ 2004-08-04 11:00:00 362,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\jet500.dll
+ 2004-08-04 11:00:00 47,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\jobexec.dll
- 2006-10-17 16:00:00 491,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\jscript.dll
+ 2007-08-01 00:45:24 491,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\jscript.dll
+ 2004-08-04 11:00:00 18,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\jupiw.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd101.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd101a.dll
+ 2001-08-17 18:55:56 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd101b.dll
+ 2001-08-17 18:55:56 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd101c.dll
+ 2001-08-17 18:55:56 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd103.dll
+ 2001-08-17 18:55:56 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd106.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbd106n.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbda1.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbda2.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbda3.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdal.dll
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdarme.dll
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdarmw.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdax2.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdaze.dll

flyingpopat
2008-03-19, 03:29
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdazel.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdbe.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdbene.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdblr.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdbr.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdbu.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdca.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdcan.dll
+ 2004-08-04 04:58:34 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdclass.sys
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdcr.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdcz.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdcz1.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdcz2.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdda.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbddiv1.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbddiv2.dll
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbddv.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdes.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdest.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdfa.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdfc.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdfi.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdfi1.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdfo.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdfr.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdgae.dll
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdgeo.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdgkl.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdgr.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdgr1.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhe.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhe220.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhe319.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdheb.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhela2.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhela3.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhept.dll
+ 2004-08-04 02:58:36 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhid.sys
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhu.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdhu1.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdibm02.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdic.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinbe1.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinben.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdindev.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinguj.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinhin.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinkan.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinmal.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinmar.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdinpun.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdintam.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdintel.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdir.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdit.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdit142.dll
+ 2001-08-18 02:36:18 8,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdjpn.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdkaz.dll
+ 2001-08-18 02:36:18 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdkor.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdkyr.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdla.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdlk41a.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdlk41j.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdlt.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdlt1.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdlv.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdlv1.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdmac.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdmaori.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdmlt47.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdmlt48.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdmon.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdne.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdnec.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdnec95.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdnecat.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdnecnt.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdno.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdno1.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdpl.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdpl1.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdpo.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdro.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdru.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdru1.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsf.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsg.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsl.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsl1.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsmsfi.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsmsno.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsp.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsw.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsyr1.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdsyr2.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdtat.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdth0.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdth1.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdth2.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdth3.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdtuf.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdtuq.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbduk.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdukx.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdur.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdurdu.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdusa.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdusl.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdusr.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdusx.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbduzb.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdvntc.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdycc.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kbdycl.dll
+ 2004-08-04 11:00:00 7,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kd1394.dll
+ 2001-08-18 02:36:18 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kdsui.dll
+ 2001-08-18 02:36:18 242,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kdsusd.dll
+ 2004-08-04 11:00:00 42,809 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\key01.sys
+ 2004-08-04 11:00:00 42,537 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\keyboard.sys
+ 2004-08-04 11:00:00 150,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\keymgr.dll
+ 2004-08-04 11:00:00 70,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\korwbrkr.dll
+ 2001-08-18 02:36:18 37,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\kousd.dll
+ 2004-08-04 11:00:00 92,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\krnl386.exe
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\krnlprov.dll
+ 2001-08-17 16:12:14 19,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ktc111.sys
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\label.exe
+ 2001-08-17 16:12:50 26,442 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lanepic5.sys
+ 2004-08-04 11:00:00 89,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\langwrbk.dll
+ 2004-08-04 02:59:34 34,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lbrtfdc.sys
+ 2004-08-04 11:00:00 58,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\licwmi.dll
+ 2004-08-04 11:00:00 29,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lights.exe
+ 2001-08-17 17:51:10 15,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lit220p.sys
+ 2004-08-04 11:00:00 33,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lmmib2.dll
+ 2001-08-17 16:11:52 25,065 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lmndis3.sys
+ 2004-08-04 11:00:00 399,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lmrt.dll
+ 2001-08-17 16:12:20 20,573 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lne100.sys
+ 2001-08-17 16:12:24 70,730 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lne100tx.sys
+ 2004-08-04 11:00:00 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lnkstub.exe
+ 2004-08-04 11:00:00 97,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\loadperf.dll
+ 2004-08-04 11:00:00 221,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\localsec.dll
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\localui.dll
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lodctr.exe
+ 2004-08-04 11:00:00 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\log.dll
+ 2004-08-04 11:00:00 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\loghours.dll
+ 2004-08-04 11:00:00 59,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\logman.exe
+ 2004-08-04 11:00:00 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\logoff.exe
+ 2001-08-17 17:53:42 4,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\loop.sys
+ 2004-08-04 11:00:00 22,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lpdsvc.dll
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lpk.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lpq.exe
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lpr.exe
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lprhelp.dll
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lprmon.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lprmonui.dll
+ 2001-08-17 17:28:18 727,786 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ltck000c.sys
+ 2004-08-04 02:41:36 606,684 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ltmdmnt.sys
+ 2001-08-17 17:28:08 576,746 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ltmdmntl.sys
+ 2004-08-04 02:41:38 420,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ltmdmntt.sys
+ 2004-08-04 03:00:08 7,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ltotape.sys
+ 2001-08-17 17:28:12 797,500 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ltsmt.sys
+ 2004-08-04 02:39:32 20,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lwadihid.sys
+ 2001-08-17 16:49:20 22,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lwusbhid.sys
+ 2004-08-04 11:00:00 9,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\lzexpand.dll
+ 2001-08-18 02:36:18 58,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\m3091dc.dll
+ 2001-08-18 02:36:18 58,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\m3092dc.dll
+ 2001-08-17 16:19:58 48,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\maestro.sys
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mag_hook.dll
+ 2004-08-04 11:00:00 72,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\magnify.exe
+ 2004-08-04 11:00:00 85,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\makecab.exe
+ 2001-08-17 17:52:50 7,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mammoth.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mcastmib.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mcd.sys
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mcd32.dll
+ 2004-08-04 11:00:00 10,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mcdsrv32.dll
+ 2004-08-04 11:00:00 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mchgrcoi.dll
+ 2004-08-04 11:00:00 73,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciavi.drv
+ 2004-08-04 11:00:00 84,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciavi32.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciole16.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciole32.dll
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciqtz32.dll
+ 2004-08-04 11:00:00 23,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciseq.dll
+ 2004-08-04 11:00:00 25,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciseq.drv
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciwave.dll
+ 2004-08-04 11:00:00 28,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mciwave.drv
+ 2001-08-17 16:12:26 164,586 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mdgndis5.sys
+ 2004-08-04 11:00:00 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mdhcp.dll
+ 2004-08-04 11:00:00 118,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mdminst.dll
+ 2004-08-04 11:00:00 147,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mdwmdmsp.dll
+ 2004-08-04 11:00:00 39,274 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mem.exe
+ 2001-08-17 17:58:04 8,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\memcard.sys
+ 2001-08-18 02:36:20 47,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\memgrp.dll
+ 2004-08-04 03:00:50 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\memstpci.sys
+ 2004-08-04 11:00:00 63,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mf.sys
+ 2004-08-04 11:00:00 924,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mfc40.dll
+ 2004-08-04 11:00:00 92,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mga.dll
+ 2004-08-04 11:00:00 92,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mga.sys
+ 2001-08-17 18:56:02 235,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mgaud.dll
+ 2001-08-17 16:50:00 320,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mgaum.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mgmtapi.dll
+ 2004-08-04 11:00:00 201,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migism.dll
+ 2004-08-04 11:00:00 192,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migism_a.dll
+ 2004-08-04 11:00:00 34,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migisol.exe
+ 2004-08-04 11:00:00 60,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\miglibnt.dll
+ 2004-08-04 11:00:00 103,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migload.exe
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migregdb.exe
+ 2004-08-04 11:00:00 240,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migwiz.exe
+ 2004-08-04 11:00:00 236,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\migwiz_a.exe
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mimefilt.dll
+ 2001-08-17 17:52:50 6,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\miniqic.sys
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mll_hp.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mll_mtf.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mll_qic.dll
+ 2004-08-04 11:00:00 815,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmc.exe
+ 2004-08-04 11:00:00 70,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmcbase.dll
+ 2004-08-04 11:00:00 1,192,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmcndmgr.dll
+ 2004-08-04 11:00:00 50,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmcshext.dll
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmdrv.dll
+ 2004-08-04 11:00:00 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmfutil.dll
+ 2004-08-04 11:00:00 68,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmsystem.dll
+ 2004-08-04 11:00:00 119,808 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mmutilse.dll
+ 2004-08-04 11:00:00 4,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mnmdd.sys
+ 2004-08-04 11:00:00 207,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mobsync.dll
+ 2004-08-04 11:00:00 143,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mobsync.exe
+ 2004-08-04 11:00:00 10,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\modex.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mofcomp.exe
+ 2004-08-04 11:00:00 123,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mofd.dll
+ 2004-08-04 04:58:34 23,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mouclass.sys
+ 2001-08-17 19:48:00 12,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mouhid.sys
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mountvol.exe
+ 2004-08-04 11:00:00 310,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mp43dmod.dll
+ 2004-08-04 11:00:00 384,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mp4sdmod.dll
+ 2004-08-04 03:10:14 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mpe.sys
+ 2004-08-04 11:00:00 240,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mpg4dmod.dll
+ 2004-08-04 11:00:00 123,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mplay32.exe
+ 2004-08-04 11:00:00 4,639 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mplayer2.exe
+ 2004-08-04 11:00:00 69,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mprddm.dll
+ 2004-08-04 11:00:00 49,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mprdim.dll
+ 2004-08-04 11:00:00 99,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mprmsg.dll
+ 2004-08-04 11:00:00 47,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mprui.dll
- 2004-09-15 18:27:52 344,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mpvis.dll
+ 2005-01-28 18:44:28 352,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mpvis.dll
+ 2004-08-04 11:00:00 12,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mrinfo.exe

flyingpopat
2008-03-19, 03:30
+ 2004-08-04 11:00:00 102,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msaatext.dll
+ 2004-08-04 11:00:00 61,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msacm.dll
+ 2004-08-04 11:00:00 331,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadce.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadcer.dll
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadcf.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadcfr.dll
+ 2006-03-23 05:44:21 143,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadco.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadcor.dll
+ 2004-08-04 11:00:00 53,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadcs.dll
+ 2004-08-04 11:00:00 155,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadds.dll
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msaddsr.dll
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msader15.dll
+ 2004-08-04 11:00:00 57,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msador15.dll
+ 2004-08-04 11:00:00 57,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msadrh15.dll
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msafd.dll
+ 2004-08-04 11:00:00 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msapsspc.dll
+ 2004-08-04 11:00:00 65,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msaudite.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mscat32.dll
+ 2004-08-04 11:00:00 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msconf.dll
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mscpx32r.dll
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mscpxl32.dll
+ 2004-08-04 11:00:00 69,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msctfp.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdadc.dll
+ 2004-08-04 11:00:00 118,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdadiag.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaenum.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaer.dll
+ 2004-08-04 11:00:00 233,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaora.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaorar.dll
+ 2004-08-04 11:00:00 77,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaosp.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaprsr.dll
+ 2004-08-04 11:00:00 200,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaprst.dll
+ 2004-08-04 11:00:00 204,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaps.dll
+ 2004-08-04 11:00:00 118,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdarem.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaremr.dll
+ 2004-08-04 11:00:00 151,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdart.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdasc.dll
+ 2004-08-04 11:00:00 315,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdasql.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdasqlr.dll
+ 2004-08-04 11:00:00 94,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdatl3.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdatt.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdaurl.dll
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdfmap.dll
+ 2004-08-04 11:00:00 58,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdtclog.dll
+ 2006-03-01 19:42:42 426,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdtcprx.dll
+ 2004-08-04 11:00:00 82,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdtcstp.dll
+ 2006-03-01 19:42:42 956,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdtctm.dll
+ 2006-03-01 19:42:42 161,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdtcuiu.dll
+ 2004-08-04 03:10:00 51,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdv.sys
+ 2004-08-04 11:00:00 4,126 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msdxmlc.dll
+ 2004-08-04 11:00:00 512,029 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msexch40.dll
+ 2004-08-04 11:00:00 319,517 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msexcl40.dll
+ 2001-08-17 17:48:36 6,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msfsio.sys
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msg.exe
+ 2001-08-17 18:02:40 35,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msgame.sys
+ 2004-08-04 11:00:00 35,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msgpc.sys
+ 2004-08-04 11:00:00 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msgrocm.dll
+ 2004-08-04 11:00:00 33,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msgsvc.dll
+ 2004-08-04 11:00:00 51,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msident.dll
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msidntld.dll
+ 2004-08-04 11:00:00 248,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msieftp.dll
+ 2004-08-04 11:00:00 376,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msinfo.dll
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msinfo32.exe
+ 2004-08-04 11:00:00 273,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msiprov.dll
+ 2004-08-04 11:00:00 98,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msir3jp.dll
+ 2004-08-04 03:00:48 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msircomm.sys
+ 2004-08-04 11:00:00 40,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msiregmv.exe
+ 2004-08-04 11:00:00 1,507,356 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msjet40.dll
+ 2004-08-04 11:00:00 358,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msjetol1.dll
+ 2004-08-04 11:00:00 151,583 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msjint40.dll
+ 2004-08-04 11:00:00 53,279 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msjter40.dll
+ 2004-08-04 11:00:00 241,693 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msjtes40.dll
+ 2004-08-04 11:00:00 213,023 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msltus40.dll
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mslwvtts.dll
+ 2004-08-04 11:00:00 290,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msnsspc.dll
+ 2004-08-04 11:00:00 122,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msobcomm.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msobdl.dll
+ 2004-08-04 11:00:00 33,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msobjs.dll
+ 2004-08-04 11:00:00 561,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msobmain.dll
+ 2004-08-04 11:00:00 30,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msobshel.dll
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msobweb.dll
+ 2004-08-04 11:00:00 252,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msoeacct.dll
+ 2004-08-04 11:00:00 2,479,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msoeres.dll
+ 2004-08-04 11:00:00 105,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msoert2.dll
+ 2004-08-04 11:00:00 28,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msoobe.exe
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msorc32r.dll
+ 2004-08-04 11:00:00 143,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msorcl32.dll
+ 2004-08-04 11:00:00 348,189 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mspbde40.dll
+ 2004-08-04 11:00:00 41,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msports.dll
+ 2004-08-04 11:00:00 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msr2c.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msr2cenu.dll
+ 2004-08-04 11:00:00 60,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msratelc.dll
+ 2004-08-04 11:00:00 421,919 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msrd2x40.dll
+ 2004-08-04 11:00:00 315,423 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msrd3x40.dll
+ 2004-08-04 11:00:00 552,989 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msrepl40.dll
+ 2001-08-17 17:48:50 12,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msriffwv.sys
+ 2004-08-04 11:00:00 134,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mssap.dll
+ 2004-08-04 11:00:00 35,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mssign32.dll
+ 2004-08-04 11:00:00 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mssip32.dll
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msswch.dll
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msswchx.exe
+ 2004-08-04 11:00:00 274,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mst120.dll
+ 2004-08-04 11:00:00 57,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mst123.dll
+ 2004-08-04 03:10:00 49,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mstape.sys
+ 2004-08-04 11:00:00 258,077 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mstext40.dll
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mstinit.exe
+ 2004-08-04 11:00:00 407,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mstsc.exe
+ 2004-08-04 11:00:00 655,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mstscax.dll
+ 2004-08-04 11:00:00 565,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msvcp50.dll
+ 2004-08-04 11:00:00 253,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msvcrt20.dll
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msvcrt40.dll
+ 2004-08-04 11:00:00 1,428,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msvidctl.dll
+ 2004-08-04 11:00:00 126,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msvideo.dll
+ 2004-08-04 11:00:00 72,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msw3prt.dll
+ 2004-08-04 11:00:00 831,519 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mswdat10.dll
+ 2004-08-04 11:00:00 204,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mswebdvd.dll
+ 2004-08-04 11:00:00 614,429 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mswstr10.dll
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msxactps.dll
+ 2004-08-04 11:00:00 348,189 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msxbde40.dll
+ 2004-08-04 11:00:00 506,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msxml.dll
+ 2004-08-04 11:00:00 701,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msxml2.dll
+ 2004-08-04 11:00:00 37,916 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msxml2r.dll
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\msxmlr.dll
+ 2004-08-04 02:41:40 126,686 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtlmnt5.sys
+ 2004-08-04 02:41:38 1,309,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtlstrm.sys
+ 2004-08-04 11:00:00 111,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtstocom.exe
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtxdm.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtxex.dll
+ 2006-03-01 19:42:42 91,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtxoci.dll
+ 2004-08-04 04:56:46 1,737,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtxparhd.dll
+ 2004-08-04 02:29:38 452,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtxparhm.sys
+ 2001-08-17 16:50:04 103,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mtxvideo.sys
+ 2004-08-04 11:00:00 229,439 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\multibox.dll
+ 2004-08-04 03:04:52 12,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mutohpen.sys
+ 2001-08-17 17:50:48 21,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mxcard.sys
+ 2001-08-18 02:36:26 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mxicfg.dll
+ 2001-08-17 17:49:32 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mxnic.sys
+ 2001-08-18 02:36:26 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mxport.dll
+ 2001-08-17 17:50:54 75,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mxport.sys
+ 2004-08-04 11:00:00 90,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\mycomput.dll
+ 2001-08-17 16:11:36 52,255 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n1000nt5.sys
+ 2001-08-17 16:11:38 128,000 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n100325.sys
+ 2001-08-17 18:56:02 35,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n9i128.dll
+ 2001-08-17 16:50:06 13,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n9i128.sys
+ 2001-08-18 02:36:02 59,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n9i128v2.dll
+ 2001-08-17 16:50:08 33,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n9i128v2.sys
+ 2001-08-17 16:50:10 27,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n9i3d.sys
+ 2001-08-17 18:56:02 91,488 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\n9i3disp.dll
+ 2004-08-04 11:00:00 221,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nac.dll
+ 2004-08-04 11:00:00 53,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\narrator.exe
+ 2004-08-04 11:00:00 35,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\narrhook.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nbtstat.exe
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ncxpnt.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nddeapir.exe
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nddenb32.dll
+ 2004-08-04 11:00:00 57,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ndisnpp.dll
+ 2004-08-04 11:00:00 9,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ndistapi.sys
+ 2004-08-04 11:00:00 12,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ndisuio.sys
+ 2004-08-04 11:00:00 91,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ndiswan.sys
+ 2004-08-04 11:00:00 38,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ndproxy.sys
+ 2001-08-17 17:49:14 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ne2000.sys
+ 2001-08-18 02:36:02 60,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\neo20xx.dll
+ 2001-08-17 16:50:04 39,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\neo20xx.sys
+ 2004-08-04 11:00:00 42,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\net.exe
+ 2004-08-04 11:00:00 124,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\net1.exe
+ 2004-08-04 11:00:00 108,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netapi.dll
+ 2004-08-04 11:00:00 162,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netbt.sys
+ 2004-08-04 11:00:00 214,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netevent.dll
+ 2001-08-17 16:11:36 65,278 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netflx3.sys
+ 2004-08-04 11:00:00 253,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\neth.dll
+ 2004-08-04 11:00:00 139,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netid.dll
+ 2004-08-04 11:00:00 171,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netmsg.dll
+ 2004-08-04 11:00:00 77,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netoc.dll
+ 2004-08-04 11:00:00 875,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netplwiz.dll
+ 2004-08-04 11:00:00 329,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netsetup.exe
+ 2004-08-04 11:00:00 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netsh.exe
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netstat.exe
+ 2004-08-04 11:00:00 308,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\netui2.dll
+ 2001-08-17 16:12:20 32,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ngrpci.sys
+ 2004-08-04 11:00:00 61,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nic1394.sys
+ 2004-08-04 11:00:00 12,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nikedrv.sys
+ 2004-08-04 11:00:00 103,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nlhtml.dll
+ 2004-08-04 11:00:00 7,052 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nlsfunc.exe
+ 2001-08-17 16:20:08 126,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nm5a2wdm.sys
+ 2001-08-17 16:20:08 87,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nm6wdm.sys
+ 2004-08-04 11:00:00 229,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmas.dll
+ 2004-08-04 11:00:00 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmasnt.dll
+ 2004-08-04 11:00:00 81,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmchat.dll
+ 2004-08-04 11:00:00 77,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmcom.dll

flyingpopat
2008-03-19, 03:32
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmevtmsg.dll
+ 2004-08-04 11:00:00 151,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmft.dll
+ 2004-08-04 11:00:00 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmmkcert.dll
+ 2004-08-04 11:00:00 40,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmnt.sys
+ 2004-08-04 11:00:00 172,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmoldwb.dll
+ 2004-08-04 11:00:00 188,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nmwb.dll
+ 2004-08-04 11:00:00 226,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\npdrmv2.dll
+ 2004-08-04 11:00:00 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nppagent.exe
+ 2004-08-04 11:00:00 54,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\npptools.dll
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\npwmsdrm.dll
+ 2004-08-04 03:00:52 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nscirda.sys
+ 2004-08-04 11:00:00 76,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nslookup.exe
+ 2001-08-17 17:53:02 7,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nsmmc.sys
+ 2001-08-17 17:47:22 9,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntapm.sys
+ 2004-08-04 11:00:00 27,866 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntdos.sys
+ 2004-08-04 11:00:00 29,146 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntdos404.sys
+ 2004-08-04 11:00:00 29,370 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntdos411.sys
+ 2004-08-04 11:00:00 29,274 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntdos412.sys
+ 2004-08-04 11:00:00 29,146 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntdos804.sys
+ 2004-08-04 11:00:00 212,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntevt.dll
+ 2001-08-17 16:49:04 51,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntgrip.sys
+ 2004-08-04 11:00:00 33,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntio.sys
+ 2004-08-04 11:00:00 34,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntio404.sys
+ 2004-08-04 11:00:00 35,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntio411.sys
+ 2004-08-04 11:00:00 35,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntio412.sys
+ 2004-08-04 11:00:00 34,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntio804.sys
+ 2004-08-04 11:00:00 57,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntlanui.dll
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntlanui2.dll
+ 2004-08-04 11:00:00 40,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntmsapi.dll
+ 2004-08-04 11:00:00 179,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntmsdba.dll
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntmsevt.dll
+ 2004-08-04 11:00:00 488,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntmsmgr.dll
+ 2004-08-04 11:00:00 435,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntmssvc.dll
+ 2004-08-04 02:41:40 180,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntmtlfax.sys
+ 2004-08-04 11:00:00 62,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntoc.dll
+ 2004-08-04 11:00:00 91,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntprint.dll
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntsd.exe
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntsdexts.dll
+ 2004-08-04 11:00:00 419,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntvdm.exe
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ntvdmd.dll
+ 2001-08-18 02:36:02 123,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nv3.dll
+ 2001-08-17 16:50:18 198,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nv3.sys
+ 2004-08-04 06:56:46 4,274,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nv4_disp.dll
+ 2004-08-04 04:29:56 1,897,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nv4_mini.sys
+ 2004-08-04 11:00:00 12,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nwlnkflt.sys
+ 2004-08-04 11:00:00 32,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nwlnkfwd.sys
+ 2004-08-04 11:00:00 88,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nwlnkipx.sys
+ 2004-08-04 11:00:00 63,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nwlnknb.sys
+ 2004-08-04 11:00:00 55,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\nwlnkspx.sys
+ 2004-08-04 11:00:00 285,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\objsel.dll
+ 2004-08-04 11:00:00 405,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\obrb041b.dll
+ 2004-08-04 11:00:00 408,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\obrb0424.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ocgen.dll
+ 2004-08-04 11:00:00 60,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ocmanage.dll
+ 2004-08-04 11:00:00 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ocmsn.dll
+ 2004-08-04 11:00:00 26,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbc16gt.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbc32gt.dll
+ 2004-08-04 11:00:00 135,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbcconf.dll
+ 2004-08-04 11:00:00 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbcconf.exe
+ 2004-08-04 11:00:00 106,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbccp32.dll
+ 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbccr32.dll
+ 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbccu32.dll
+ 2004-08-04 11:00:00 53,279 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbcji32.dll
+ 2004-08-04 11:00:00 278,559 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbcjt32.dll
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbcp32r.dll
+ 2004-08-04 11:00:00 147,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odbctrac.dll
+ 2004-08-04 11:00:00 20,511 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oddbse32.dll
+ 2004-08-04 11:00:00 20,510 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odexl32.dll
+ 2004-08-04 11:00:00 20,510 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odfox32.dll
+ 2004-08-04 11:00:00 20,510 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odpdx32.dll
+ 2004-08-04 11:00:00 20,511 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\odtext32.dll
+ 2004-08-04 11:00:00 104,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oeimport.dll
+ 2004-08-04 11:00:00 60,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oemig50.exe
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oemiglib.dll
+ 2004-08-04 03:10:10 61,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ohci1394.sys
+ 2004-08-04 11:00:00 39,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ole2.dll
+ 2004-08-04 11:00:00 169,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ole2disp.dll
+ 2004-08-04 11:00:00 153,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ole2nls.dll
+ 2004-08-04 11:00:00 82,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\olecli.dll
+ 2004-08-04 11:00:00 487,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oledb32.dll
+ 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oledb32r.dll
+ 2004-08-04 11:00:00 107,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oleprn.dll
+ 2004-08-04 11:00:00 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\olesvr.dll
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\olesvr32.dll
+ 2004-08-04 11:00:00 69,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\olethk32.dll
+ 2004-08-04 11:00:00 51,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oobebaln.exe
+ 2004-08-04 11:00:00 713,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\opengl32.dll
+ 2001-08-17 16:20:16 54,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\opl3sax.sys
+ 2004-08-04 11:00:00 3,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\oprghdlr.sys
+ 2004-08-04 11:00:00 215,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\osk.exe
+ 2004-08-04 11:00:00 67,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\osuninst.dll
+ 2004-08-04 11:00:00 40,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\osuninst.exe
+ 2001-08-17 16:12:36 27,209 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\otc06x5.sys
+ 2001-08-17 16:12:36 43,689 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\otceth5.sys
+ 2001-08-17 17:28:12 54,186 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\otcsercb.sys
+ 2001-08-17 18:05:04 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovca.sys
+ 2001-08-17 18:05:12 48,000 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovcam2.sys
+ 2001-08-17 18:05:16 28,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovcd.sys
+ 2001-08-17 18:05:20 31,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovce.sys
+ 2001-08-18 02:36:28 116,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovcodec2.dll
+ 2001-08-18 02:36:28 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovcomc.dll
+ 2001-08-18 02:36:54 39,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovcoms.exe
+ 2001-08-17 18:05:06 25,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovsound2.sys
+ 2001-08-18 02:36:28 44,544 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovui2.dll
+ 2001-08-18 02:36:28 41,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ovui2rc.dll
+ 2004-08-04 11:00:00 116,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\p2p.dll
+ 2004-08-04 11:00:00 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\p2pgasvc.dll
+ 2004-08-04 11:00:00 312,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\p2pgraph.dll
+ 2004-08-04 11:00:00 88,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\p2pnetsh.dll
+ 2004-08-04 11:00:00 526,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\p2psvc.dll
+ 2004-08-04 11:00:00 42,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\p3.sys
+ 2004-08-04 11:00:00 58,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\packager.exe
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\padrs404.dll
+ 2004-08-04 11:00:00 36,927 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\padrs411.dll
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\padrs412.dll
+ 2004-08-04 11:00:00 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\padrs804.dll
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\panmap.dll
+ 2004-08-04 11:00:00 157,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\paqsp.dll
+ 2004-08-04 11:00:00 80,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\parport.sys
+ 2004-08-04 11:00:00 6,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\parvdm.sys
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pathping.exe
+ 2004-08-04 11:00:00 62,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pautoenr.dll
+ 2001-08-17 16:12:18 30,495 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pc100nds.sys
+ 2004-08-04 02:31:24 29,502 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pca200e.sys
+ 2004-08-04 11:00:00 102,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pchshell.dll
+ 2004-08-04 11:00:00 119,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pcmcia.sys
+ 2001-08-17 16:12:18 26,153 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pcmlm56.sys
+ 2001-08-17 16:11:22 30,282 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pcntn5hl.sys
+ 2001-08-17 16:11:20 29,769 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pcntn5m.sys
+ 2001-08-17 16:11:22 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pcntpci5.sys
+ 2001-08-18 02:36:54 86,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pctspk.exe
+ 2004-08-04 02:06:18 169,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pcx500.sys
+ 2004-08-04 11:00:00 283,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pdh.dll
+ 2004-08-04 11:00:00 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pentnt.exe
+ 2004-08-04 11:00:00 39,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfctrs.dll
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfdisk.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfmon.exe
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfnet.dll
+ 2004-08-04 11:00:00 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfos.dll
+ 2004-08-04 11:00:00 34,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfproc.dll
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perfts.dll
+ 2004-08-04 03:06:56 27,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perm2.sys
+ 2004-08-04 04:56:24 211,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perm2dll.dll
+ 2004-08-04 03:06:58 28,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perm3.sys
+ 2004-08-04 04:56:24 259,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\perm3dd.dll
+ 2001-08-18 02:36:28 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\philcam1.dll
+ 2001-08-17 18:04:50 75,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\philcam1.sys
+ 2001-08-17 18:04:08 173,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\philcam2.sys
+ 2001-08-17 18:04:04 92,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\phildec.sys
+ 2001-08-17 18:07:20 19,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\philtune.sys
+ 2004-08-04 11:00:00 176,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\photowiz.dll
+ 2001-08-18 02:36:28 121,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\phvfwext.dll
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pid.dll
+ 2004-08-04 11:00:00 24,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pidgen.dll
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pifmgr.dll
+ 2004-08-04 11:00:00 281,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pinball.exe
+ 2004-08-04 11:00:00 17,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ping.exe
+ 2004-08-04 11:00:00 33,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ping6.exe
+ 2004-08-04 11:00:00 175,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pintlcsa.dll
+ 2004-08-04 11:00:00 53,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pintlcsd.dll
+ 2004-08-04 11:00:00 70,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pintlphr.exe
+ 2004-08-04 11:00:00 30,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\plustab.dll
+ 2004-08-04 11:00:00 67,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pmigrate.dll
+ 2004-08-04 11:00:00 46,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pmspl.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pmxgl.dll
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pmxmcro.dll
+ 2004-08-04 11:00:00 131,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pmxviceo.dll
+ 2001-08-17 17:53:04 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pnrmc.sys
+ 2004-08-04 11:00:00 48,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pnrpnsp.dll
+ 2004-08-04 11:00:00 105,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\polstore.dll
+ 2001-08-17 17:53:14 7,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\powerfil.sys
+ 2001-08-17 17:53:22 17,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ppa.sys
+ 2004-08-04 03:00:18 17,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ppa3.sys
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\prflbmsg.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\print.exe
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\processr.sys
+ 2004-08-04 11:00:00 109,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\progman.exe
+ 2004-08-04 11:00:00 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\proquota.exe
+ 2004-08-04 11:00:00 237,056 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\provthrd.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\proxycfg.exe
+ 2004-08-04 11:00:00 10,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pschdprf.dll
+ 2004-08-04 11:00:00 69,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\psched.sys
+ 2001-08-17 17:51:08 16,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pscr.sys
+ 2004-08-04 04:56:46 363,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\psisdecd.dll
+ 2001-08-18 02:36:28 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\psisload.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\psnppagn.dll
+ 2004-08-04 11:00:00 43,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pstorec.dll
+ 2004-08-04 11:00:00 17,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ptilink.sys
+ 2001-08-18 02:36:30 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ptpusb.dll
+ 2004-08-04 04:56:46 159,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ptpusd.dll
+ 2001-08-17 17:28:12 128,286 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ptserli.sys
+ 2001-08-17 17:28:14 112,574 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ptserlp.sys
+ 2001-08-17 17:28:14 130,942 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ptserlv.sys
+ 2004-08-04 11:00:00 3,708 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\pubprn.vbs
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qappsrv.exe
+ 2004-08-04 11:00:00 192,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qcap.dll
+ 2004-08-04 11:00:00 279,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qdv.dll
+ 2004-08-04 11:00:00 385,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qdvd.dll
+ 2004-08-04 11:00:00 562,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qedit.dll
+ 2004-08-04 11:00:00 733,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qedwipes.dll
+ 2004-08-04 03:00:06 6,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qic157.sys
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qmgrprxy.dll
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qosname.dll
+ 2004-08-04 11:00:00 20,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qprocess.exe
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\query.exe
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\quser.exe
+ 2001-08-17 17:53:32 3,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qv2kux.sys
+ 2001-08-18 02:36:30 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qvusd.dll
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\qwinsta.exe
+ 2001-08-17 17:28:20 714,762 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\r2mdmkxx.sys
+ 2004-08-04 11:00:00 43,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\racpldlg.dll
+ 2004-08-04 11:00:00 20,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ramdisk.sys
+ 2004-08-04 11:00:00 8,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasacd.sys
+ 2004-08-04 11:00:00 89,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasauto.dll
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasautou.exe
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasctrs.dll
+ 2004-08-04 11:00:00 11,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasdial.exe
+ 2001-08-17 17:51:32 19,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasirda.sys
+ 2004-08-04 11:00:00 51,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasl2tp.sys
+ 2004-08-04 11:00:00 143,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasmontr.dll
+ 2004-08-04 11:00:00 22,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasmxs.dll
+ 2004-08-04 11:00:00 56,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasphone.exe
+ 2004-08-04 11:00:00 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\raspppoe.sys
+ 2004-08-04 11:00:00 48,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\raspptp.sys
+ 2004-08-04 11:00:00 16,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\raspti.sys
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasrad.dll
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rassapi.dll
+ 2004-08-04 11:00:00 12,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rasser.dll
+ 2004-08-04 11:00:00 34,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rawwan.sys
+ 2004-08-04 11:00:00 102,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rcbdyctl.dll
+ 2004-08-04 11:00:00 35,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rcimlby.exe
+ 2004-08-04 11:00:00 21,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rcp.exe
+ 2004-08-04 11:00:00 147,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdchost.dll
+ 2004-08-04 11:00:00 4,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpcdd.sys
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpcfgex.dll
+ 2004-08-04 11:00:00 62,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpclip.exe
+ 2004-08-04 05:01:16 196,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpdr.sys
+ 2004-08-04 11:00:00 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpsnd.dll
+ 2005-06-10 04:09:46 139,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpwd.sys
+ 2004-08-04 11:00:00 87,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdpwsx.dll
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdsaddin.exe
+ 2004-08-04 11:00:00 67,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rdshost.exe
+ 2004-08-04 02:41:40 13,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\recagent.sys
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\recover.exe
+ 2004-08-04 04:59:38 57,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\redbook.sys
+ 2004-08-04 11:00:00 3,338 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\redir.exe
+ 2004-08-04 11:00:00 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\reg.exe
+ 2004-08-04 11:00:00 3,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\regedt32.exe
+ 2004-08-04 11:00:00 33,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\regini.exe
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\register.exe
+ 2004-08-04 11:00:00 59,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\regsvc.dll
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\regsvr32.exe

flyingpopat
2008-03-19, 03:33
+ 2004-08-04 11:00:00 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\regwiz.exe
+ 2004-08-04 11:00:00 397,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\regwizc.dll
+ 2004-08-04 11:00:00 60,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\remotepg.dll
+ 2004-08-04 11:00:00 107,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rend.dll
+ 2004-08-04 11:00:00 12,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\replace.exe
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\reset.exe
+ 2001-08-18 02:36:30 86,097 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\reslog32.dll
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rexec.exe
+ 2004-08-04 03:10:40 59,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rfcomm.sys
+ 2004-08-04 11:00:00 12,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rio8drv.sys
+ 2004-08-04 11:00:00 12,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\riodrv.sys
+ 2001-08-17 16:12:36 37,563 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rlnet5.sys
+ 2004-08-04 11:00:00 30,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rndismp.sys
+ 2004-08-04 03:04:32 30,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rndismpx.sys
+ 2004-08-04 11:00:00 3,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rnr20.dll
+ 2004-08-04 02:59:12 79,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rocket.sys
+ 2004-08-04 11:00:00 5,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rootmdm.sys
+ 2004-08-04 11:00:00 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\route.exe
+ 2004-08-04 11:00:00 25,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\routemon.exe
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\routetab.dll
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rpcns4.dll
+ 2001-08-17 16:19:20 3,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rpfun.sys
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rrcm.dll
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsh.exe
+ 2004-08-04 11:00:00 49,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsm.exe
+ 2001-08-18 02:36:30 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsmgrstr.dll
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsmps.dll
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsmsink.exe
+ 2004-08-04 11:00:00 49,152 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsmui.exe
+ 2004-08-04 11:00:00 380,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rstrui.exe
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsvpmsg.dll
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsvpperf.dll
+ 2004-08-04 11:00:00 90,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rsvpsp.dll
+ 2004-08-04 11:00:00 77,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rtcshare.exe
+ 2001-08-17 16:19:22 30,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rthwcls.sys
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rtipxmib.dll
+ 2001-08-17 16:12:40 19,017 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rtl8029.sys
+ 2004-08-04 02:31:34 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rtl8139.sys
+ 2004-08-04 11:00:00 98,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rtm.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\runas.exe
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\runonce.exe
+ 2004-08-04 11:00:00 753,236 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rvseres.dll
+ 2004-08-04 11:00:00 42,574 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rvsezm.exe
+ 2004-08-04 11:00:00 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rw001ext.dll
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rw330ext.dll
+ 2001-08-18 02:36:30 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rw430ext.dll
+ 2001-08-18 02:36:30 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rw450ext.dll
+ 2004-08-04 11:00:00 79,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rwia001.dll
+ 2004-08-04 11:00:00 79,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rwia330.dll
+ 2001-08-18 02:36:30 79,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rwia430.dll
+ 2001-08-18 02:36:30 82,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rwia450.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\rwinsta.exe
+ 2004-08-04 02:29:52 166,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3gnbm.sys
+ 2001-08-17 18:56:04 66,048 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3legacy.dll
+ 2001-08-17 17:57:46 65,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3legacy.sys
+ 2001-08-17 16:50:34 166,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3m.sys
+ 2001-08-17 18:56:04 182,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3mt3d.dll
+ 2001-08-17 16:50:40 41,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3mt3d.sys
+ 2001-08-18 02:36:02 62,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3mtrio.dll
+ 2001-08-17 18:56:04 210,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3mvirge.dll
+ 2001-08-17 18:56:04 179,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3sav3d.dll
+ 2001-08-17 16:50:22 61,504 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3sav3dm.sys
+ 2001-08-17 18:56:04 198,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3sav4.dll
+ 2001-08-17 16:50:28 77,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3sav4m.sys
+ 2001-08-17 18:56:04 245,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3savmx.dll
+ 2001-08-17 16:50:34 75,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\s3savmxm.sys
+ 2004-08-04 11:00:00 43,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\safrcdlg.dll
+ 2004-08-04 11:00:00 29,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\safrdm.dll
+ 2004-08-04 11:00:00 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\safrslv.dll
+ 2004-08-04 11:00:00 741,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sapi.dll
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sapisvr.exe
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\savedump.exe
+ 2004-08-04 11:00:00 270,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sbe.dll
+ 2004-08-04 11:00:00 159,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sbeio.dll
+ 2004-08-04 02:59:58 43,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sbp2port.sys
+ 2004-08-04 11:00:00 31,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sc.exe
+ 2004-08-04 11:00:00 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scarddlg.dll
+ 2004-08-04 11:00:00 118,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scardssp.dll
+ 2004-08-04 11:00:00 169,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sccbase.dll
+ 2001-08-17 17:51:10 23,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sccmn50m.sys
+ 2001-08-17 17:51:14 23,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sccmusbm.sys
+ 2004-08-04 11:00:00 171,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sccsccp.dll
+ 2001-08-17 17:51:14 16,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scmstcs.sys
+ 2001-08-17 17:51:16 17,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scr111.sys
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scrcons.exe
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scredir.dll
+ 2004-08-04 11:00:00 202,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\script.dll
+ 2004-08-04 11:00:00 188,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\script_a.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scrnsave.scr
+ 2007-08-01 00:45:28 163,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scrobj.dll
- 2004-08-04 11:00:00 151,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scrrun.dll
+ 2007-08-01 00:45:28 155,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scrrun.dll
+ 2001-08-17 17:52:34 11,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scsiprnt.sys
+ 2001-08-17 17:53:26 10,880 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\scsiscan.sys
+ 2004-08-04 11:00:00 77,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sdbinst.exe
+ 2004-08-04 11:00:00 67,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sdbus.sys
+ 2004-08-04 11:00:00 29,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sdhcinst.dll
+ 2004-08-04 11:00:00 130,048 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sdpblb.dll
+ 2001-08-17 17:53:10 6,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\seaddsmc.sys
+ 2004-08-04 11:00:00 4,569 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\secupd.dat
+ 2004-08-04 11:00:00 29,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sendcmsg.dll
+ 2004-08-04 11:00:00 55,296 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sendmail.dll
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\senscfg.dll
+ 2004-08-04 11:00:00 15,488 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\serenum.sys
+ 2004-08-04 11:00:00 64,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\serial.sys
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\serialui.dll
+ 2001-08-17 17:48:00 17,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sermouse.sys
+ 2001-08-17 17:53:32 6,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\serscan.sys
+ 2004-08-04 11:00:00 56,320 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\servdeps.dll
+ 2004-08-04 11:00:00 31,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sethc.exe
+ 2004-08-04 11:00:00 23,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\setup.exe
+ 2004-08-04 11:00:00 73,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\setup50.exe
+ 2004-08-04 11:00:00 414,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\setupdll.dll
+ 2004-08-04 11:00:00 101,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\setupqry.dll
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sfc.exe
+ 2004-08-04 11:00:00 1,580,544 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sfcfiles.dll
+ 2004-08-04 11:00:00 11,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sffdisk.sys
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sffp_sd.sys
+ 2004-08-04 11:00:00 11,392 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sfloppy.sys
+ 2001-08-17 16:19:34 36,480 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sfmanm.sys
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sfmapi.dll
+ 2001-08-18 02:36:02 386,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sgiul50.dll
+ 2001-08-17 16:51:04 98,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sgiulnt5.sys
+ 2001-07-21 18:29:20 18,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sgsmld.sys
+ 2001-07-21 18:29:20 161,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sgsmusb.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shadow.exe
+ 2004-08-04 11:00:00 42,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shmgrate.exe
+ 2004-08-04 11:00:00 77,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shrpubw.exe
+ 2004-08-04 11:00:00 27,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shscrap.dll
+ 2003-03-24 20:52:04 20,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shtml.dll
+ 2003-03-24 20:52:04 16,437 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shtml.exe
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shutdown.exe
+ 2004-08-04 11:00:00 2,178,131 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shvlres.dll
+ 2004-08-04 11:00:00 42,573 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\shvlzm.exe
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sigtab.dll
+ 2004-08-04 11:00:00 70,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sigverif.exe
+ 2004-08-04 04:56:46 3,901 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\siint5.dll
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\simptcp.dll
+ 2001-08-17 16:50:46 101,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sis300ip.sys
+ 2001-08-17 18:56:04 252,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sis300iv.dll
+ 2001-08-17 16:50:56 68,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sis6306p.sys
+ 2001-08-17 18:56:04 150,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sis6306v.dll
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sisbkup.dll
+ 2001-08-17 16:50:48 104,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sisgrp.sys
+ 2001-08-18 02:36:32 238,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sisgrv.dll
+ 2004-08-04 02:31:36 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sisnic.sys
+ 2001-08-17 16:50:56 50,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sisv.sys
+ 2001-08-17 18:56:04 157,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sisv256.dll
+ 2001-08-17 16:12:52 94,698 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sk98xwin.sys
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\skdll.dll
+ 2004-08-04 11:00:00 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\skeys.exe
+ 2001-08-17 16:12:52 91,294 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\skfpwin.sys
+ 2004-08-04 02:31:42 63,547 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sla30nd5.sys
+ 2004-08-04 11:00:00 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slayerxp.dll
+ 2004-08-04 11:00:00 306,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slbcsp.dll
+ 2004-08-04 11:00:00 98,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slbiop.dll
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slbrccsp.dll
+ 2004-08-04 04:56:46 73,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slcoinst.dll
+ 2004-08-04 04:56:46 286,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slextspk.dll
+ 2004-08-04 04:56:46 188,508 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slgen.dll
+ 2004-08-04 02:41:42 129,535 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slnt7554.sys
+ 2004-08-04 02:41:46 95,424 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slnthal.sys
+ 2004-08-04 04:56:58 32,866 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slrundll.exe
+ 2004-08-04 04:56:58 73,796 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slserv.exe
+ 2004-08-04 02:41:46 13,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\slwdmsup.sys

flyingpopat
2008-03-19, 03:34
+ 2004-08-04 11:00:00 25,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm59w.dll
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm81w.dll
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm87w.dll
+ 2004-08-04 11:00:00 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm89w.dll
+ 2004-08-04 11:00:00 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm8aw.dll
+ 2004-08-04 11:00:00 29,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm8cw.dll
+ 2004-08-04 11:00:00 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm8dw.dll
+ 2004-08-04 11:00:00 26,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm90w.dll
+ 2001-08-18 02:36:32 28,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm91w.dll
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm92w.dll
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm93w.dll
+ 2004-08-04 11:00:00 38,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sm9aw.dll
+ 2001-08-18 02:36:32 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sma0w.dll
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sma3w.dll
+ 2001-08-18 02:36:32 33,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smb0w.dll
+ 2001-08-18 02:36:32 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smb3w.dll
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smb6w.dll
+ 2004-08-04 03:07:38 6,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smbali.sys
+ 2004-08-04 03:07:36 16,128 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smbbatt.sys
+ 2004-08-04 03:07:36 6,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smbclass.sys
+ 2001-08-17 17:57:56 6,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smbhc.sys
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smbinst.exe
+ 2001-08-17 16:12:46 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smc8000n.sys
+ 2001-08-17 16:10:28 35,913 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smcirda.sys
+ 2004-08-04 11:00:00 14,592 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smclib.sys
+ 2001-08-17 16:12:48 25,034 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smcpwr2n.sys
+ 2004-08-04 11:00:00 236,544 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smi2smir.exe
+ 2001-08-17 18:56:04 147,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smidispb.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smierrsm.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smierrsy.dll
+ 2001-08-17 16:51:00 58,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smiminib.sys
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smimsgif.dll
+ 2004-08-04 11:00:00 363,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smlogcfg.dll
+ 2004-08-04 11:00:00 40,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\smtpcons.dll
+ 2004-08-04 11:00:00 34,816 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sniffpol.dll
+ 2004-08-04 11:00:00 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmp.exe
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpapi.dll
+ 2004-08-04 11:00:00 259,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpcl.dll
+ 2004-08-04 11:00:00 358,400 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpincl.dll
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpmib.dll
+ 2004-08-04 11:00:00 188,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpsmir.dll
+ 2004-08-04 11:00:00 182,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpsnap.dll
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpstup.dll
+ 2004-08-04 11:00:00 40,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmpthrd.dll
+ 2004-08-04 11:00:00 8,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snmptrap.exe
+ 2001-08-17 17:53:14 7,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\snyaitmc.sys
+ 2004-08-04 11:00:00 143,422 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\softkey.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\softpub.dll
+ 2004-08-04 11:00:00 56,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sol.exe
+ 2004-08-04 03:00:06 7,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonyait.sys
+ 2004-08-04 11:00:00 25,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonydcam.sys
+ 2001-08-17 17:53:04 9,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonymc.sys
+ 2001-08-17 16:51:20 20,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonync.sys
+ 2001-08-18 02:36:32 114,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonypi.dll
+ 2001-08-17 16:51:22 37,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonypi.sys
+ 2001-08-17 17:56:16 7,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sonypvu1.sys
+ 2004-08-04 11:00:00 23,552 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sort.exe
+ 2004-08-04 11:00:00 77,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spcommon.dll
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spcplui.dll
+ 2001-08-18 02:36:32 106,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spdports.dll
+ 2001-08-17 17:51:00 61,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\speed.sys
+ 2004-08-04 11:00:00 538,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spider.exe
+ 2004-08-04 11:00:00 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spnike.dll
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spnpinst.exe
+ 2004-08-04 11:00:00 193,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spra041b.dll
+ 2004-08-04 11:00:00 192,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spra0424.dll
+ 2004-08-04 11:00:00 757,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sprb041b.dll
+ 2004-08-04 11:00:00 732,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sprb0424.dll
+ 2004-08-04 11:00:00 9,728 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sprestrt.exe
+ 2004-08-04 11:00:00 70,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sprio600.dll
+ 2004-08-04 11:00:00 72,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sprio800.dll
+ 2004-08-04 11:00:00 774,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spttseng.dll
+ 2004-08-04 11:00:00 24,661 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spxcoins.dll
+ 2001-08-18 02:36:32 24,660 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\spxupchk.dll
+ 2004-08-04 11:00:00 180,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sqlunirl.dll
+ 2004-08-04 11:00:00 217,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sqlxmlx.dll
+ 2004-08-04 11:00:00 58,434 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srchctls.dll
+ 2004-08-04 11:00:00 725,566 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srchui.dll
+ 2004-08-04 11:00:00 67,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srclient.dll
+ 2004-08-04 11:00:00 47,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srdiag.exe
+ 2004-08-04 11:00:00 101,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srusbusd.dll
+ 2001-08-18 02:36:32 99,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srusd.dll
+ 2001-08-17 16:11:08 48,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\srwlnd5.sys
+ 2004-08-04 11:00:00 704,512 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ss3dfo.scr
+ 2004-08-04 11:00:00 19,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ssbezier.scr
+ 2004-08-04 11:00:00 393,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ssflwbox.scr
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ssmarque.scr
+ 2004-08-04 11:00:00 47,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ssmypics.scr
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ssmyst.scr
+ 2004-08-04 11:00:00 610,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sspipes.scr
+ 2004-08-04 11:00:00 679,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sstext3d.scr
+ 2004-08-04 11:00:00 33,280 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sstub.dll
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\startoc.dll
+ 2004-08-04 11:00:00 54,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\stclient.dll
+ 2001-08-17 17:51:20 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\stcusb.sys
+ 2004-08-04 11:00:00 86,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\stdprov.dll
+ 2004-08-04 11:00:00 136,704 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sti_ci.dll
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\stimon.exe
+ 2001-08-18 02:36:32 53,248 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\stlncoin.dll
+ 2001-08-18 02:36:32 155,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\stlnprop.dll
+ 2004-08-04 11:00:00 4,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\storage.dll
+ 2004-08-04 06:56:46 74,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\storprop.dll
+ 2001-08-18 04:36:32 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\streamci.dll
+ 2004-08-04 11:00:00 75,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\strmfilt.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\subst.exe
+ 2004-08-04 11:00:00 6,144 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\svcpack.dll
+ 2001-08-18 02:36:32 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sw_effct.dll
+ 2001-08-18 02:36:32 53,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sw_wheel.dll
+ 2004-08-04 04:58:42 4,352 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\swenum.sys
+ 2001-08-18 02:36:32 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\swpdflt2.dll
+ 2001-08-18 02:36:32 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\swpidflt.dll
+ 2004-08-04 11:00:00 138,752 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\swprv.dll
+ 2001-08-17 18:02:56 3,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\swusbflt.sys
+ 2001-08-17 17:50:58 103,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sx.sys
+ 2001-08-18 02:36:32 94,293 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sxports.dll
+ 2004-08-04 11:00:00 51,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\syncapp.exe
+ 2004-08-04 11:00:00 57,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\synceng.dll
+ 2004-08-04 11:00:00 191,488 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\syncui.dll
+ 2004-08-04 11:00:00 18,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sysedit.exe
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sysinv.dll
+ 2004-08-04 11:00:00 36,864 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\syskey.exe
+ 2004-08-04 11:00:00 168,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sysmod.dll
+ 2004-08-04 11:00:00 155,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sysmod_a.dll
+ 2004-08-04 11:00:00 105,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\sysocmgr.exe
+ 2004-08-04 11:00:00 984,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\syssetup.dll
+ 2004-08-04 11:00:00 3,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\system.drv
+ 2004-08-04 11:00:00 3,072 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\systray.exe
+ 2005-10-17 21:14:46 118,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\t2embed.dll
+ 2001-08-17 18:56:04 172,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\t2r4disp.dll
+ 2001-08-17 16:50:12 36,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\t2r4mini.sys
+ 2001-08-17 17:52:54 7,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tandqic.sys
+ 2004-08-04 11:00:00 14,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tape.sys
+ 2004-08-04 11:00:00 19,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tapi.dll
+ 2004-08-04 11:00:00 858,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tapi3.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tapiperf.dll
+ 2004-08-04 11:00:00 78,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tapiui.dll
+ 2001-08-17 17:49:46 30,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tbatm155.sys
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tcmsetup.exe
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tcpmib.dll
+ 2004-08-04 11:00:00 45,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tcpmonui.dll
+ 2004-08-04 11:00:00 19,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tcpsvcs.exe
+ 2003-03-24 20:52:04 32,827 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tcptest.exe
+ 2003-03-24 20:52:06 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tcptsat.dll
+ 2004-08-04 11:00:00 13,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdasync.sys
+ 2004-08-04 11:00:00 21,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdipx.sys
+ 2001-08-17 16:13:00 37,961 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdk100b.sys
+ 2001-08-17 16:13:00 17,129 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdkcd31.sys
+ 2004-08-04 11:00:00 12,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdpipe.sys
+ 2004-08-04 11:00:00 19,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdspx.sys
+ 2004-08-04 11:00:00 21,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tdtcp.sys
+ 2005-05-10 23:45:48 75,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\telnet.exe
+ 2004-08-04 07:01:08 40,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\termdd.sys
+ 2004-08-04 03:00:06 149,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tffsport.sys
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tftp.exe
+ 2001-08-17 18:56:04 81,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tgiul50.dll
+ 2001-08-17 16:51:10 138,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tgiulnt5.sys
+ 2004-08-04 11:00:00 185,344 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\thawbrkr.dll
+ 2004-08-04 11:00:00 4,048 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\timer.drv
+ 2004-08-04 11:00:00 44,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tintlphr.exe
+ 2004-08-04 11:00:00 455,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tintsetp.exe
+ 2001-08-17 16:14:26 123,995 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tjisdn.sys
+ 2004-08-04 11:00:00 10,240 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tmigrate.dll
+ 2004-08-04 11:00:00 61,952 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tmplprov.dll
+ 2004-08-04 11:00:00 13,888 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\toolhelp.dll
+ 2001-08-17 16:10:26 28,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tos4mo.sys
+ 2004-08-04 11:00:00 51,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tosdvd.sys
+ 2001-08-17 18:01:52 241,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tosdvd02.sys
+ 2001-08-17 18:02:00 230,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tosdvd03.sys
+ 2004-08-04 11:00:00 3,374,640 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tourP.exe
+ 2004-08-04 11:00:00 347,136 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tourstrt.exe
+ 2001-08-18 02:36:32 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tp4.dll
+ 2004-08-04 04:56:58 82,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tp4mon.exe
+ 2001-08-18 02:35:42 42,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tp4res.dll
+ 2001-08-17 16:12:12 34,375 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tpro4.sys
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tracert.exe
+ 2004-08-04 11:00:00 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tracert6.exe
+ 2004-08-04 11:00:00 40,960 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\trialoc.dll
+ 2001-08-17 18:56:06 315,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\trid3d.dll
+ 2001-08-17 16:51:16 222,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\trid3dm.sys
+ 2001-08-17 18:56:06 440,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tridkb.dll
+ 2001-08-17 16:51:16 159,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tridkbm.sys
+ 2001-08-17 16:51:22 166,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tridxpm.sys
+ 2004-08-04 11:00:00 153,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\triedit.dll
+ 2004-08-04 11:00:00 59,904 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\trnsprov.dll
+ 2004-08-04 11:00:00 52,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsappcmp.dll
+ 2004-08-04 11:00:00 21,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsbvcap.sys
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tscon.exe
+ 2004-08-04 11:00:00 44,544 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tscupgrd.exe
+ 2004-08-04 11:00:00 15,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsd32.dll
+ 2004-08-04 11:00:00 14,848 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsdiscon.exe
+ 2004-08-04 11:00:00 279,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tshoot.dll
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tskill.exe
+ 2004-08-04 11:00:00 121,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsoc.dll
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsprof.exe
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tsshutdn.exe
+ 2004-08-04 11:00:00 12,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\tunmp.sys
+ 2004-08-04 11:00:00 94,784 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\twain.dll

flyingpopat
2008-03-19, 03:35
+ 2004-08-04 11:00:00 50,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\twain_32.dll
+ 2001-08-17 17:48:14 11,520 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\twotrack.sys
+ 2005-07-26 04:39:49 101,376 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\txflog.dll
+ 2004-08-04 11:00:00 177,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\typelib.dll
+ 2004-08-04 03:07:44 44,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\uagp35.sys
+ 2004-08-04 11:00:00 66,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\udfs.sys
+ 2004-08-04 11:00:00 25,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\udhisapi.dll
+ 2004-08-04 11:00:00 82,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ufat.dll
+ 2001-08-18 02:36:34 216,064 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\um34scan.dll
+ 2001-08-18 02:36:34 211,968 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\um54scan.dll
+ 2004-08-04 11:00:00 35,840 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umandlg.dll
+ 2001-08-18 02:36:34 47,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxcam.dll
+ 2001-08-18 02:36:34 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxp60.dll
+ 2001-08-17 17:58:12 22,912 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxpcls.sys
+ 2001-08-18 02:36:34 50,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxscan.dll
+ 2001-08-18 02:36:34 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxu12.dll
+ 2001-08-18 02:36:34 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxu22.dll
+ 2001-08-18 02:36:34 28,160 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxu40.dll
+ 2001-08-18 02:36:34 94,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\umaxud32.dll
+ 2004-08-04 11:00:00 76,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\uniime.dll
+ 2004-08-04 11:00:00 4,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\unlodctr.exe
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\unsecapp.exe
+ 2004-08-04 11:00:00 316,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\untfs.dll
+ 2004-08-04 11:00:00 116,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\updprov.dll
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\upnpcont.exe
+ 2004-08-04 11:00:00 239,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\upnpui.dll
+ 2004-08-04 11:00:00 17,920 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ureg.dll
+ 2004-08-04 02:31:26 32,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usb101et.sys
+ 2004-08-04 11:00:00 12,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usb8023.sys
+ 2004-08-04 03:04:34 12,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usb8023x.sys
+ 2004-08-04 11:00:00 23,808 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbcamd.sys
+ 2004-08-04 11:00:00 23,936 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbcamd2.sys
+ 2004-08-04 11:00:00 4,736 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbd.sys
+ 2004-08-04 11:00:00 26,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbehci.sys
+ 2004-08-04 11:00:00 16,000 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbintel.sys
+ 2004-08-04 03:08:38 17,024 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbohci.sys
+ 2004-08-04 03:08:44 25,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbser.sys
+ 2004-08-04 03:10:12 78,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usbvideo.sys
+ 2004-08-04 11:00:00 47,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\user.exe
+ 2004-08-04 11:00:00 406,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usp10.dll
+ 2001-08-17 17:28:16 793,598 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usr1806.sys
+ 2001-08-17 17:28:18 794,399 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usr1806v.sys
+ 2001-08-17 17:28:24 224,802 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usr1807a.sys
+ 2004-08-04 11:00:00 61,500 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrcntra.dll
+ 2004-08-04 11:00:00 69,699 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrcoina.dll
+ 2004-08-04 11:00:00 77,890 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrdpa.dll
+ 2004-08-04 11:00:00 323,641 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrdtea.dll
+ 2004-08-04 11:00:00 86,073 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrfaxa.dll
+ 2004-08-04 11:00:00 53,305 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrlbva.dll
+ 2004-08-04 11:00:00 77,891 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrmlnka.exe
+ 2001-08-17 17:28:24 7,556 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usroslba.sys
+ 2001-08-17 17:28:26 113,762 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrpda.sys
+ 2004-08-04 11:00:00 61,508 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrprbda.exe
+ 2004-08-04 11:00:00 77,883 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrrtosa.dll
+ 2004-08-04 11:00:00 49,211 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrsdpia.dll
+ 2004-08-04 11:00:00 69,700 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrshuta.exe
+ 2004-08-04 11:00:00 41,019 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrsvpia.dll
+ 2001-08-17 17:28:14 765,884 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrti.sys
+ 2004-08-04 11:00:00 102,457 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrv42a.dll
+ 2004-08-04 11:00:00 49,209 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrv80a.dll
+ 2004-08-04 11:00:00 45,116 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrvoica.dll
+ 2004-08-04 11:00:00 49,211 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrvpa.dll
+ 2001-08-17 17:28:26 687,999 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\usrwdxjs.sys
+ 2004-08-04 11:00:00 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\utilman.exe
+ 2004-08-04 11:00:00 30,749 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vbajet32.dll
- 2006-11-08 01:03:36 413,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vbscript.dll
+ 2007-08-01 00:45:28 413,696 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vbscript.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vcdex.dll
+ 2004-08-04 04:56:48 11,325 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vchnt5.dll
+ 2004-08-04 11:00:00 58,112 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vdmindvd.sys
+ 2004-08-04 11:00:00 51,712 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vdmredir.dll
+ 2004-08-04 11:00:00 9,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ver.dll
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\verifier.dll
+ 2004-08-04 11:00:00 98,304 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\verifier.exe
+ 2004-08-04 11:00:00 20,992 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vga.sys
+ 2004-08-04 11:00:00 51,456 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vga256.dll
+ 2004-08-04 11:00:00 18,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vga64k.dll
+ 2001-08-17 17:49:04 24,576 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\viairda.sys
+ 2004-08-04 11:00:00 79,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\videoprt.sys
+ 2004-08-04 11:00:00 131,584 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\viewprov.dll
+ 2001-08-17 16:14:12 249,402 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vinwm.sys
+ 2004-08-04 11:00:00 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vjoy.dll
+ 2001-08-17 17:28:14 604,253 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vmodem.sys
+ 2004-08-04 11:00:00 426,041 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\voicepad.dll
+ 2004-08-04 11:00:00 86,073 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\voicesub.dll
+ 2001-08-17 17:28:16 397,502 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vpctcom.sys
+ 2004-08-04 11:00:00 16,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vss_ps.dll
+ 2004-08-04 11:00:00 33,792 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vssadmin.exe
+ 2001-08-17 17:28:16 64,605 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\vvoice.sys
+ 2004-08-04 11:00:00 48,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w32.dll
+ 2004-08-04 11:00:00 49,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w32tm.exe
+ 2004-08-04 11:00:00 22,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w32topl.dll
+ 2004-08-04 11:00:00 15,872 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w3ssl.dll
+ 2001-08-17 16:13:08 19,528 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w840nd.sys
+ 2001-08-17 16:13:08 19,016 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w926nd.sys
+ 2001-08-17 16:13:12 16,925 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\w940nd.sys
+ 2004-08-04 11:00:00 46,080 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wab.exe
+ 2004-08-04 11:00:00 249,856 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wab32res.dll
+ 2004-08-04 11:00:00 32,768 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wabfind.dll
+ 2004-08-04 11:00:00 30,208 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wabmig.exe
+ 2004-08-04 03:04:54 13,568 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wacompen.sys
+ 2004-08-04 02:29:38 12,415 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv01nt.sys
+ 2004-08-04 02:29:38 12,127 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv02nt.sys
+ 2004-08-04 02:29:38 11,775 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv05nt.sys
+ 2004-08-04 02:29:40 11,807 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv07nt.sys
+ 2004-08-04 02:29:40 11,295 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv08nt.sys
+ 2004-08-04 02:29:42 11,871 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv09nt.sys
+ 2004-08-04 02:29:42 11,935 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wadv11nt.sys
+ 2004-08-04 11:00:00 34,560 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wanarp.sys
+ 2004-08-04 11:00:00 17,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\watchdog.sys
+ 2004-08-04 02:29:42 29,311 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\watv01nt.sys
+ 2004-08-04 02:29:44 19,551 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\watv02nt.sys
+ 2004-08-04 02:29:44 33,599 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\watv04nt.sys
+ 2004-08-04 02:29:46 22,271 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\watv06nt.sys
+ 2004-08-04 02:29:46 25,471 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\watv10nt.sys
+ 2004-08-04 11:00:00 208,896 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wavemsp.dll
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wb32.exe
+ 2004-08-04 11:00:00 12,288 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbemads.dll
+ 2004-08-04 11:00:00 196,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbemcntl.dll
+ 2004-08-04 11:00:00 178,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbemdisp.dll
+ 2004-08-04 11:00:00 43,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbemperf.dll
+ 2004-08-04 11:00:00 116,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbemtest.exe
+ 2004-08-04 11:00:00 197,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbemupgd.dll
+ 2001-08-17 16:10:30 35,871 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wbfirdma.sys
+ 2004-08-04 03:08:48 31,744 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wceusbsh.sys
+ 2004-08-04 02:29:46 23,615 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wch7xxnt.sys
+ 2001-08-17 17:28:02 701,386 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wdhaalba.sys
+ 2004-08-04 11:00:00 40,448 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\webhits.dll
+ 2004-08-04 11:00:00 135,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\webvw.dll
+ 2004-08-04 11:00:00 41,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\weitekp9.dll
+ 2004-08-04 11:00:00 31,232 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\weitekp9.sys
+ 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wextract.exe
+ 2004-08-04 11:00:00 13,600 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wfwnet.drv
+ 2004-08-04 11:00:00 433,664 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiaacmgr.exe
+ 2004-08-04 11:00:00 463,360 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiadefui.dll
+ 2004-08-04 11:00:00 124,416 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiadss.dll
+ 2001-08-18 02:36:34 87,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiafbdrv.dll
+ 2001-08-18 02:36:34 53,760 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiamsmud.dll
+ 2004-08-04 11:00:00 75,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiascr.dll
+ 2004-08-04 11:00:00 589,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiashext.dll
+ 2004-08-04 11:00:00 111,104 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiavideo.dll
+ 2004-08-04 11:00:00 145,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wiavusd.dll
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wifeman.dll
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\win87em.dll
+ 2004-08-04 11:00:00 937,984 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winbrand.dll
+ 2004-08-04 11:00:00 35,328 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winchat.exe
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winfax.dll
+ 2004-08-04 11:00:00 283,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winhlp32.exe
+ 2004-08-04 11:00:00 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winhstb.exe
+ 2004-08-04 11:00:00 13,312 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winmgmt.exe
+ 2004-08-04 11:00:00 16,384 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winmgmtr.dll
+ 2004-08-04 11:00:00 119,808 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winmine.exe
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winmsd.exe
+ 2004-08-04 11:00:00 5,120 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winnls.dll
+ 2004-08-04 11:00:00 764,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winntbbu.dll
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winstrm.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\winver.exe
+ 2001-08-17 16:12:38 34,890 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wlandrv2.sys
+ 2004-08-04 02:31:28 154,624 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wlluc48.sys
+ 2004-08-04 11:00:00 51,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmerrenu.dll
+ 2004-08-04 03:07:42 8,832 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmiacpi.sys
+ 2004-08-04 11:00:00 196,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmiadap.exe
+ 2004-08-04 11:00:00 6,656 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmiapres.dll
+ 2004-08-04 11:00:00 89,088 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmiaprpl.dll
+ 2004-08-04 11:00:00 60,928 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmicookr.dll
+ 2004-08-04 11:00:00 140,800 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmidcprv.dll
+ 2004-08-04 11:00:00 61,440 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmimsg.dll

flyingpopat
2008-03-19, 03:36
+ 2004-08-04 11:00:00 156,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmipcima.dll
+ 2004-08-04 11:00:00 132,096 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmipdskq.dll
+ 2004-08-04 11:00:00 75,264 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmipicmp.dll
+ 2004-08-04 11:00:00 62,464 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmipiprt.dll
+ 2004-08-04 11:00:00 62,976 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmipjobj.dll
+ 2004-08-04 11:00:00 18,944 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmiprop.dll
+ 2004-08-04 11:00:00 41,472 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmipsess.dll
+ 2004-08-04 11:00:00 52,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmitimep.dll
+ 2004-08-04 11:00:00 7,680 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmm2ext.dll
+ 2004-08-04 11:00:00 402,432 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmm2filt.dll
+ 2004-08-04 11:00:00 502,272 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmm2fxa.dll
+ 2004-08-04 11:00:00 325,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmm2fxb.dll
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmm2res2.dll
- 2004-09-15 18:28:00 3,371,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmploc.dll
+ 2005-01-28 18:44:28 3,371,008 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmploc.dll
+ 2004-08-04 11:00:00 221,184 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmpns.dll
+ 2004-08-04 11:00:00 115,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmsdmoe.dll
+ 2004-08-04 11:00:00 303,616 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wmstream.dll
+ 2004-08-04 11:00:00 264,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wow32.dll
+ 2004-08-04 11:00:00 10,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wowexec.exe
+ 2004-08-04 11:00:00 3,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wowfax.dll
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wowfaxui.dll
+ 2004-08-04 11:00:00 32,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wpabaln.exe
+ 2004-08-04 11:00:00 32,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wpnpinst.exe
+ 2004-08-04 11:00:00 5,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\write.exe
+ 2004-08-04 11:00:00 12,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\ws2ifsl.sys
+ 2004-08-04 11:00:00 13,824 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wscntfy.exe
+ 2007-08-01 00:45:22 135,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wscript.exe
+ 2004-08-04 11:00:00 9,216 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshatm.dll
+ 2004-08-04 11:00:00 108,032 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshbth.dll
+ 2004-08-04 11:00:00 28,672 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshcon.dll
- 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshext.dll
+ 2007-08-01 00:45:30 69,632 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshext.dll
+ 2004-08-04 11:00:00 14,336 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wship6.dll
+ 2004-08-04 04:56:48 8,192 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshirda.dll
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshisn.dll
+ 2004-08-04 11:00:00 7,168 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshnetbs.dll
+ 2004-08-04 11:00:00 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wshrm.dll
+ 2004-08-04 02:29:48 12,063 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wsiintxx.sys
+ 2004-08-04 11:00:00 42,496 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wsnmp32.dll
+ 2004-08-04 11:00:00 50,688 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wstdecod.dll
+ 2004-08-04 11:00:00 32,256 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wupdmgr.exe
+ 2004-08-04 02:29:50 19,455 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wvchntxx.sys
+ 2004-08-04 11:00:00 378,368 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\wzcdlg.dll
+ 2004-08-04 11:00:00 30,720 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xcopy.exe
+ 2001-08-17 16:11:14 16,970 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xem336n5.sys
+ 2004-08-04 11:00:00 174,200 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xenroll.dll
+ 2001-08-18 02:37:02 99,865 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xlog.exe
+ 2004-08-04 11:00:00 129,536 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xmlprov.dll
+ 2004-08-04 11:00:00 50,176 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xmlprovi.dll
+ 2006-03-01 19:42:42 11,776 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xolehlp.dll
+ 2001-08-18 02:37:02 4,608 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xrxflnch.exe
+ 2001-08-18 02:37:02 27,648 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xrxftplt.exe
+ 2001-08-18 02:36:36 17,408 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xrxscnui.dll
+ 2001-08-18 02:36:36 23,040 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xrxwbtmp.dll
+ 2004-08-04 04:56:48 116,224 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\xrxwiadr.dll
+ 2004-08-04 11:00:00 8,261 ----a-w C:\WINDOWS\SYSTEM32\DLLCACHE\zoneoc.dll
- 2003-11-19 22:36:26 24,681 ----a-w C:\WINDOWS\SYSTEM32\java.exe
+ 2008-02-22 05:23:35 135,168 ----a-w C:\WINDOWS\SYSTEM32\java.exe
- 2003-11-19 22:36:30 28,779 ----a-w C:\WINDOWS\SYSTEM32\javaw.exe
+ 2008-02-22 05:23:39 135,168 ----a-w C:\WINDOWS\SYSTEM32\javaw.exe
+ 2008-02-22 06:33:32 139,264 ----a-w C:\WINDOWS\SYSTEM32\javaws.exe
- 2006-10-17 16:00:00 491,520 ----a-w C:\WINDOWS\SYSTEM32\jscript.dll
+ 2007-08-01 00:45:24 491,520 ----a-w C:\WINDOWS\SYSTEM32\jscript.dll
+ 2007-07-27 18:49:02 196,683 ----a-w C:\WINDOWS\SYSTEM32\lnod32apiA.dll
+ 2007-07-27 18:49:02 225,355 ----a-w C:\WINDOWS\SYSTEM32\lnod32apiW.dll
+ 2005-12-05 23:25:22 139,264 ----a-w C:\WINDOWS\SYSTEM32\lnod32umc.dll
+ 2005-12-05 16:37:10 106,496 ----a-w C:\WINDOWS\SYSTEM32\lnod32upd.dll
- 2007-03-07 16:36:34 12,619,736 ----a-w C:\WINDOWS\SYSTEM32\MRT.exe
+ 2008-03-05 12:30:56 19,148,408 ----a-w C:\WINDOWS\SYSTEM32\MRT.exe
+ 2007-07-30 23:18:34 207,736 ----a-w C:\WINDOWS\SYSTEM32\muweb.dll
- 2008-03-09 22:47:48 53,436 ----a-w C:\WINDOWS\SYSTEM32\PERFC009.DAT
+ 2008-03-19 01:01:49 53,436 ----a-w C:\WINDOWS\SYSTEM32\PERFC009.DAT
- 2008-03-09 22:47:48 381,692 ----a-w C:\WINDOWS\SYSTEM32\PERFH009.DAT
+ 2008-03-19 01:01:49 381,692 ----a-w C:\WINDOWS\SYSTEM32\PERFH009.DAT
- 2004-08-04 11:00:00 159,744 ----a-w C:\WINDOWS\SYSTEM32\SCROBJ.DLL
+ 2007-08-01 00:45:28 163,840 ----a-w C:\WINDOWS\SYSTEM32\scrobj.dll
- 2004-08-04 11:00:00 151,552 ----a-w C:\WINDOWS\SYSTEM32\SCRRUN.DLL
+ 2007-08-01 00:45:28 155,648 ----a-w C:\WINDOWS\SYSTEM32\scrrun.dll
+ 2004-12-07 14:11:34 258,352 ----a-w C:\WINDOWS\SYSTEM32\unicows.dll
- 2006-11-08 01:03:36 413,696 ----a-w C:\WINDOWS\SYSTEM32\vbscript.dll
+ 2007-08-01 00:45:28 413,696 ----a-w C:\WINDOWS\SYSTEM32\vbscript.dll
- 2004-08-04 11:00:00 114,688 ----a-w C:\WINDOWS\SYSTEM32\WSCRIPT.EXE
+ 2007-08-01 00:45:22 135,168 ----a-w C:\WINDOWS\SYSTEM32\wscript.exe
- 2004-08-04 11:00:00 28,672 ----a-w C:\WINDOWS\SYSTEM32\WSHCON.DLL
+ 2007-08-01 00:45:30 36,864 ----a-w C:\WINDOWS\SYSTEM32\wshcon.dll
- 2004-08-04 11:00:00 65,536 ----a-w C:\WINDOWS\SYSTEM32\WSHEXT.DLL
+ 2007-08-01 00:45:30 69,632 ----a-w C:\WINDOWS\SYSTEM32\wshext.dll
.
-- Snapshot reset to current date --

flyingpopat
2008-03-19, 03:37
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="C:\Program Files\DellSupport\DSAgnt.exe" [2007-03-15 11:09 460784]
"ctfmon.exe"="C:\WINDOWS\system32\ctfmon.exe" [2004-08-04 07:00 15360]
"NBJ"="C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" [2004-09-22 17:10 1871872]
"Skype"="C:\Program Files\Skype\Phone\Skype.exe" [2007-09-13 13:31 22880040]
"MSMSGS"="C:\Program Files\Messenger\msmsgs.exe" [2004-10-13 12:24 1694208]
"swg"="C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe" [ ]
"updateMgr"="C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe" [2006-03-30 17:45 313472]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"!AVG Anti-Spyware"="C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" [2007-08-05 19:48 6731312]
"SoundMAXPnP"="C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe" [2004-06-30 15:33 1388544]
"VSOCheckTask"="C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" [2005-07-08 18:18 151552]
"MCAgentExe"="c:\PROGRA~1\mcafee.com\agent\mcagent.exe" [2005-09-22 19:29 303104]
"MCUpdateExe"="c:\PROGRA~1\mcafee.com\agent\mcupdate.exe" [2006-01-11 13:05 212992]
"VirusScan Online"="C:\Program Files\McAfee.com\VSO\mcvsshld.exe" [2005-08-10 12:49 163840]
"Ink Monitor"="C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe" [2001-12-07 05:48 258118]
"DAEMON Tools-1033"="C:\Program Files\D-Tools\daemon.exe" [2003-12-27 21:43 81920]
"TkBellExe"="C:\Program Files\Common Files\Real\Update_OB\realsched.exe" [2005-01-31 19:50 180269]
"Client Access Service"="C:\Program Files\IBM\Client Access\cwbsvstr.exe" [2000-11-28 06:10 20480]
"Client Access Help Update"="C:\Program Files\IBM\Client Access\cwbinhlp.exe" [2000-11-28 06:10 24576]
"Client Access Check Version"="C:\Program Files\IBM\Client Access\cwbckver.exe" [2000-11-28 06:10 49152]
"Client Access Express Welcome"="C:\Program Files\IBM\Client Access\cwbwlwiz.exe" [2000-11-28 06:10 20480]
"MPFExe"="C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe" [2005-04-05 14:41 950272]
"_AntiSpyware"="c:\progra~1\mcafee\MCAFEE~1\masalert.exe" [2006-01-06 16:14 327680]
"Google Desktop Search"="C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" [2006-02-28 18:00 169984]
"OASClnt"="C:\Program Files\McAfee.com\VSO\oasclnt.exe" [2005-08-11 22:02 53248]
"TomTomHOME.exe"="C:\Program Files\TomTom HOME 2\HOMERunner.exe" [2007-08-15 16:59 374688]
"Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY"="C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.exe" [2005-02-07 23:00 98304]
"SunJavaUpdateSched"="C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [2008-02-22 04:25 144784]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AOLDialer]
-ra--c--- 2006-10-23 08:50 71216 C:\Program Files\Common Files\AOL\ACS\AOLDial.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DellSupport]
--a------ 2007-03-15 11:09 460784 C:\Program Files\DellSupport\DSAgnt.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DVDLauncher]
--------- 2004-08-23 20:19 57344 C:\Program Files\CyberLink\PowerDVD\DVDLauncher.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HostManager]
--a------ 2007-05-25 13:16 42032 C:\Program Files\Common Files\AOL\1112543894\ee\AOLSoftware.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
--a------ 2004-12-18 01:20 278528 C:\Program Files\iTunes\iTunesHelper.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
--a------ 2004-09-14 10:50 53248 C:\Program Files\Musicmatch\Musicmatch Jukebox\mmtask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\MSMSGS]
--a------ 2004-10-13 12:24 1694208 C:\Program Files\Messenger\msmsgs.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\PCMService]
--------- 2004-04-11 22:15 290816 C:\Program Files\Dell\Media Experience\PCMService.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Pure Networks Port Magic]
--a------ 2004-04-05 17:33 99480 C:\PROGRA~1\PURENE~1\PORTMA~1\PortAOL.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
--a------ 2005-02-14 19:52 98304 C:\Program Files\QuickTime\qttask.exe

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent]
--a------ 2005-12-09 02:30 35328 C:\Program Files\Winamp\winampa.exe

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusDisableNotify"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeAntiVirus]
"DisableMonitoring"=dword:00000001

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\McAfeeFirewall]
"DisableMonitoring"=dword:00000001

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"C:\\Program Files\\America Online 9.0a\\waol.exe"=
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLDial.exe"=
"C:\\Program Files\\Common Files\\AOL\\ACS\\AOLacsd.exe"=
"C:\\Program Files\\Common Files\\AOL\\1112543894\\EE\\aolsoftware.exe"=
"C:\\Program Files\\AOL 9.1\\waol.exe"=
"C:\\Program Files\\Common Files\\AOL\\TopSpeed\\3.0\\aoltpsd3.exe"=
"C:\\Program Files\\Common Files\\AOL\\1112543894\\EE\\AOLServiceHost.exe"=
"C:\\Program Files\\Common Files\\AOL\\Loader\\aolload.exe"=
"C:\\Program Files\\Common Files\\AOL\\System Information\\sinf.exe"=
"C:\\Program Files\\Skype\\Phone\\Skype.exe"=

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{4ee1c6ad-4b67-11dc-b0de-00038a000015}]
\Shell\AutoRun\command - G:\LaunchU3.exe -a

.
Contents of the 'Scheduled Tasks' folder
"2008-03-15 01:00:00 C:\WINDOWS\Tasks\mcafee antispyware.job"
- c:\progra~1\mcafee\MCAFEE~1\MASCon.exe
"2008-03-07 23:30:00 C:\WINDOWS\Tasks\McAfee.com Scan for Viruses - My Computer (TANAYTRUSHA-Tanay).job"
- c:\program files\mcafee.com\vso\mcmnhdlr.exe
.
**************************************************************************

catchme 0.3.1344 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-03-18 21:06:01
Windows 5.1.2600 Service Pack 2 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
Completion time: 2008-03-18 21:06:58
ComboFix-quarantined-files.txt 2008-03-19 01:06:37
ComboFix2.txt 2008-03-10 00:03:43
ComboFix3.txt 2007-07-26 15:43:34
.
2008-02-14 11:25:07 --- E O F ---

flyingpopat
2008-03-19, 03:49
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 9:45:03 PM, on 3/18/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
c:\PROGRA~1\mcafee.com\vso\OasClnt.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\WINDOWS\system32\imapi.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\PROGRA~1\mcafee.com\agent\mcagent.exe
C:\Program Files\McAfee.com\VSO\mcvsshld.exe
C:\Program Files\D-Tools\daemon.exe
c:\progra~1\mcafee.com\vso\mcvsescn.exe
C:\Program Files\Common Files\Real\Update_OB\realsched.exe
C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
C:\progra~1\mcafee\MCAFEE~1\masalert.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
C:\Program Files\TomTom HOME 2\HOMERunner.exe
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE
C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe
C:\Program Files\Google\Google Desktop Search\GoogleDesktopIndex.exe
C:\Program Files\DellSupport\DSAgnt.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Skype\Phone\Skype.exe
C:\Program Files\Skype\Plugin Manager\skypePM.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] C:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [Skype] "C:\Program Files\Skype\Phone\Skype.exe" /nosplash /minimized (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205281950437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O20 - AppInit_DLLs: C:\PROGRA~1\Google\GOOGLE~1\GOEC62~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AOL TopSpeed Monitor (AOL TopSpeedMonitor) - America Online, Inc - C:\Program Files\Common Files\AOL\TopSpeed\2.0\aoltsmon.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 11927 bytes

little eagle
2008-03-19, 05:05
Here

Please read the instructions on how to install the Recovery Console:
http://www.bleepingcomputer.com/combofix/how-to-use-combofix

Post back here when done.
If you reboot do not chose th recover console in the boot menu.

flyingpopat
2008-03-19, 16:06
I have all the instructions printed out. I have a Dell reinstallation cd. Will that work? Or should I simply download it from MS site?

Also, I have been running combofix and HJT under normal logon. Will they work under Safe Mode, logging on as Admin?

flyingpopat
2008-03-20, 03:16
I followed the instructions to install the Recovery console, by downloading from the MS site and then dragging the icon onto the combofix icon. It started running the combofix. Since you had not said I should do that I exited out.

But I am not sure that the recovery console has been installed, as I when I re-booted and pressed F8, that option did not show up.

little eagle
2008-03-20, 03:24
It started running the combofix. Since you had not said I should do that I exited out. It was supose to run :oops: it was installing the recovery console--- it would have made a log saying that it was installed. :cool:

Why boot in safe mode?

----------------------

Can you drag the file into combofix again.

flyingpopat
2008-03-20, 03:31
Oh well! I did not realize that. But anyway, I have now installed it from my re-installation CD and it shows up during boot.

In safe mode my computer runs at normal speed and I can actually get things done by double clicking icons. Also, I would not have to worry about shutting down my anti-virus and spamguards. And if I do it just in Safe Mode (without Networking) then I do not have to worry about disconnecting the internet while running ComboFix.

Ofcourse, if ComboFix does not run properly in Safe Mode, I will boot normally and do it.

Anyway, now I have the recovery console installed....

little eagle
2008-03-20, 03:42
Now we need to remove in add and remove programs.
C:\AOL Instant Messenger

Delete the folder after that.. Reinstall the program after that

Run this online scan from ESET (http://www.eset.eu/online-scanner)

You will need to use Internet explorer for this scan!
First, accept the Terms of Use
Click: Start
When asked, allow the ActiveX control to install
Click: Start
Make sure the options:
Remove found threats, and Scan unwanted applications
are both checked!
Click: Scan


When the scan finishes, use Notepad to open the ESET report.
It will be located here C:\Program Files\EsetOnlineScanner\log.txt

flyingpopat
2008-03-20, 05:24
Here is the log:

# version=4
# OnlineScanner.ocx=1.0.0.635
# OnlineScannerDLLA.dll=1, 0, 0, 79
# OnlineScannerDLLW.dll=1, 0, 0, 78
# OnlineScannerUninstaller.exe=1, 0, 0, 49
# vers_standard_module=2960 (20080319)
# vers_arch_module=1.064 (20080214)
# vers_adv_heur_module=1.064 (20070717)
# EOSSerial=01ab50c0c5a37744832c17345f0303f0
# end=finished
# remove_checked=true
# unwanted_checked=true
# utc_time=2008-03-20 03:17:55
# local_time=2008-03-19 11:17:55 (-0500, Eastern Daylight Time)
# country="United States"
# osver=5.1.2600 NT Service Pack 2
# scanned=292580
# found=0
# scan_time=4551

little eagle
2008-03-20, 13:10
Now we need to remove in add and remove programs.
C:\AOL Instant Messenger

Delete the folder after that.. Reinstall the program after that
Well not seeing anything now how is the PC running any trouble?

Reboot and rescan with HiJackThis and post a new log here.

flyingpopat
2008-03-20, 16:22
FYI, AOL Instatnt Messenger was not in the list of Add/Remove programs, so there was nothing to uninstall. I deleted the folder. I did not really need the program, so I did not re-install it.

As for the system, it is the same as before. Runs perfectly fine in Safe Mode or Safe Mode with Networking. But under normal mode and any of the user accounts, it is extremely slow to load the desktop and respond to clicks on the desktop. Running any program from Task Manager is fine. And no unusual CPU usage.

I will post the HJT log in the evening, when I get home.

flyingpopat
2008-03-21, 01:39
HJT Log:

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:34:56 PM, on 3/20/2008
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v7.00 (7.00.6000.16608)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
c:\program files\mcafee.com\agent\mcdetect.exe
c:\PROGRA~1\mcafee.com\vso\mcshield.exe
c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\wanmpsvc.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\taskmgr.exe
C:\Program Files\Internet Explorer\IEXPLORE.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe
C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe
C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
C:\WINDOWS\system32\imapi.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Yahoo! Toolbar Helper - {02478D38-C3F9-4EFB-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O2 - BHO: IeCaptureBho Object - {7c1ce531-09e9-4fc5-9803-1c2956615786} - C:\Program Files\Google\Google Desktop Search\GoogleDesktopIE.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: McAfee VirusScan - {BA52B914-B692-46c4-B683-905236F6F655} - c:\progra~1\mcafee.com\vso\mcvsshl.dll
O3 - Toolbar: &Google - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - c:\program files\google\googletoolbar3.dll
O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized
O4 - HKLM\..\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\SoundMAX\SMax4PNP.exe
O4 - HKLM\..\Run: [VSOCheckTask] "C:\PROGRA~1\McAfee.com\VSO\mcmnhdlr.exe" /checktask
O4 - HKLM\..\Run: [MCAgentExe] c:\PROGRA~1\mcafee.com\agent\mcagent.exe
O4 - HKLM\..\Run: [MCUpdateExe] c:\PROGRA~1\mcafee.com\agent\mcupdate.exe
O4 - HKLM\..\Run: [VirusScan Online] C:\Program Files\McAfee.com\VSO\mcvsshld.exe
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [DAEMON Tools-1033] "C:\Program Files\D-Tools\daemon.exe" -lang 1033
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [MPFExe] C:\PROGRA~1\McAfee.com\PERSON~1\MpfTray.exe
O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [Google Desktop Search] "C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe" /startup
O4 - HKLM\..\Run: [OASClnt] C:\Program Files\McAfee.com\VSO\oasclnt.exe
O4 - HKLM\..\Run: [TomTomHOME.exe] "C:\Program Files\TomTom HOME 2\HOMERunner.exe" -s
O4 - HKLM\..\Run: [Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY] C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATIACA.EXE /P60 "Auto Auto EPSON Stylus CX3800 Series on TANAYTRUSHA on VINAY" /O16 "\\VINAY\AutoEPSO" /M "Stylus CX3800"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe"
O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [NBJ] "C:\Program Files\Ahead\Nero BackItUp\NBJ.exe" (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe (User '?')
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 (User '?')
O4 - Global Startup: Adobe Gamma Loader.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Digital Line Detect.lnk = ?
O4 - Global Startup: Microsoft Office.lnk = C:\Program Files\Microsoft Office\Office\OSA9.EXE
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE
O8 - Extra context menu item: &AOL Toolbar Search - c:\program files\aol\aol toolbar 5.0\resources\en-US\local\search.html
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll
O9 - Extra button: Real.com - {CD67F990-D8E9-11d2-98FE-00C0F0318AFE} - C:\WINDOWS\system32\Shdocvw.dll
O9 - Extra button: MUSICMATCH MX Web Player - {d81ca86b-ef63-42af-bee3-4502d9a03c2d} - http://wwws.musicmatch.com/mmz/openWebRadio.html (file missing)
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} (Windows Genuine Advantage Validation Tool) - http://go.microsoft.com/fwlink/?linkid=39204
O16 - DPF: {56762DEC-6B0D-4AB4-A8AD-989993B5D08B} (OnlineScanner Control) - http://www.eset.eu/buxus/docs/OnlineScanner.cab
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1205281950437
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {E008A543-CEFB-4559-912F-C27C2B89F13B} (Domino Web Access 7 Control) - http://mail.czeusa.com:3000/dwa7W.cab
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: AOL Connectivity Service (AOL ACS) - AOL LLC - C:\Program Files\Common Files\AOL\ACS\AOLAcsd.exe
O23 - Service: AVG Anti-Spyware Guard - GRISOFT s.r.o. - C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\guard.exe
O23 - Service: Client Access Express Remote Command (Cwbrxd) - IBM Corporation - C:\WINDOWS\CWBRXD.EXE
O23 - Service: DSBrokerService - Unknown owner - C:\Program Files\DellSupport\brkrsvc.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe
O23 - Service: iPod Service (iPodService) - Apple Computer, Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: McAfee WSC Integration (McDetect.exe) - McAfee, Inc - c:\program files\mcafee.com\agent\mcdetect.exe
O23 - Service: McAfee.com McShield (McShield) - McAfee Inc. - c:\PROGRA~1\mcafee.com\vso\mcshield.exe
O23 - Service: McAfee Task Scheduler (McTskshd.exe) - McAfee, Inc - c:\PROGRA~1\mcafee.com\agent\mctskshd.exe
O23 - Service: McAfee SecurityCenter Update Manager (mcupdmgr.exe) - McAfee, Inc - C:\PROGRA~1\McAfee.com\Agent\mcupdmgr.exe
O23 - Service: Intel NCS NetService (NetSvc) - Intel(R) Corporation - C:\Program Files\Intel\PROSetWired\NCS\Sync\NetSvc.exe
O23 - Service: PsExec (PSEXESVC) - Unknown owner - C:\WINDOWS\PSEXESVC.EXE (file missing)
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: WAN Miniport (ATW) Service (WANMiniportService) - America Online, Inc. - C:\WINDOWS\wanmpsvc.exe

--
End of file - 10731 bytes

little eagle
2008-03-21, 13:29
A lot of programs that are running you really don't need.
these two may be conflicting one needs to be stopped you can use msconfig or delete them with hijackthis.

O4 - HKLM\..\Run: [_AntiSpyware] c:\progra~1\mcafee\MCAFEE~1\masalert.exe
O4 - HKLM\..\Run: [!AVG Anti-Spyware] "C:\Program Files\Grisoft\AVG Anti-Spyware 7.5\avgas.exe" /minimized

You can fix these with hijackthis or msconfig also
O4 - HKLM\..\Run: [Ink Monitor] C:\Program Files\EPSON\Ink Monitor\InkMonitor.exe
O4 - HKLM\..\Run: [TkBellExe] "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot
O4 - HKLM\..\Run: [Client Access Service] "C:\Program Files\IBM\Client Access\cwbsvstr.exe"
O4 - HKLM\..\Run: [Client Access Help Update] "C:\Program Files\IBM\Client Access\cwbinhlp.exe"
O4 - HKLM\..\Run: [Client Access Check Version] "C:\Program Files\IBM\Client Access\cwbckver.exe" LOGIN
O4 - HKLM\..\Run: [Client Access Express Welcome] "C:\Program Files\IBM\Client Access\cwbwlwiz.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe"
O4 - HKCU\..\Run: [DellSupport] "C:\Program Files\DellSupport\DSAgnt.exe" /startup
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\1.2.1128.5462\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9
O4 - HKUS\S-1-5-21-2138437063-2238604988-110831785-1006\..\Run: [updateMgr] C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe AcRdB7_0_9 (User '?')
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Billminder.lnk = C:\Program Files\Quicken\billmind.exe
O4 - Global Startup: Quicken Scheduled Updates.lnk = C:\Program Files\Quicken\bagent.exe
O4 - Global Startup: Quicken Startup.lnk = C:\Program Files\Quicken\QWDLLS.EXE[

flyingpopat
2008-03-22, 04:21
I removed a few of them but saw no change in the behavior.

I would have really liked to get to the bottom of this, but, I give up....

I am re-installing XP on another hard drive, and then using this hard-drive to access my data. I hope whatever it was, won't infect this new drive and OS....

Thanks a lot for all your help.

little eagle
2008-03-22, 15:45
Sorry we could not get it working. :oops: