Please post a fresh RSIT log (see post #2)
Only one log will be produced this time.
Please post a fresh RSIT log (see post #2)
Only one log will be produced this time.
Microsoft MVP Consumer Security 2009 -2010
If we have helped, please consider a donation
THESE INSTRUCTIONS ARE FOR THIS USER ONLY
RSIT Log
Hello, Mr.Katana,
I pasted RSIT log here.
Thank you for your help again.
In fact, I usually use iPhone to check web sites.
When I used browser safari to see a website at home,
pop-up advertisements appear on the iphone screen by using only my home's Internet line. If I connect another Internet line where is an another place,
Pop-ups do not appear on the screen.
There seems to be a problem on a router or the Internet line?
I do not have a chance to hear that other computers have problems or not.
Thank you very much.
Azzurro
Logfile of random's system information tool 1.04 (written by random/random)
Run by azzurro at 2008-11-03 17:50:04
MicrosoftR Windows Vista? Home Premium
System drive C: has 87 GB (65%) free of 134 GB
Total RAM: 2037 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:50:21, on 2008/11/03
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16757)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPCMNT.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Users\azzurro\Desktop\RSIT.exe
C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPCMNT.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Trend Micro\HijackThis\azzurro.exe
C:\Windows\system32\SearchFilterHost.exe
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: "アンチバナーへ追加" - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: ウェブアンチウイルス - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://www.f-secure.co.jp/ols/ols33/fscax.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: McAfee Application Installer Cleanup (0154591224999483) (0154591224999483mcinstcleanup) - Unknown owner - C:\Users\azzurro\AppData\Local\Temp\015459~1.EXE (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: PIXUS 使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 7913 bytes
======Scheduled tasks folder======
C:\Windows\tasks\User_Feed_Synchronization-{EA35EBB3-0381-4A67-BA1E-60C4F94FD654}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-07-29 62728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-03-11 501384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-10-28 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll [2008-10-28 651760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-10-28 193136]
{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - Veoh Web Player Video Finder - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll [2008-10-09 463872]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-09-26 352256]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2006-12-19 411768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-08-14 1348904]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-02-06 4374528]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-06 55416]
"IME JPN 2007 Migration"=C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE [2007-08-23 66936]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-02-11 141848]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-02-11 133656]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2008-10-09 333120]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-03 1603152]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-10-28 39408]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-02 201728]
""= []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2008-07-29 218376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\PANDORA.TV\Video Streamer\VideoStreamer.exe"="C:\Program Files\pandora.tv\Video Streamer\VideoStreamer.exe:*:Enabled:VideoStreamer.exe"
"C:\Program Files\PANDORA.TV\Video Streamer\VSStream.exe"="C:\Program Files\pandora.tv\Video Streamer\VSStream.exe:*:Enabled:VSStream.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0f4d5bf-a246-11dd-9a80-00a0d1796497}]
shell\AutoRun\command - I:\LaunchU3.exe -a
======List of files/folders created in the last 1 months======
2008-11-03 01:15:19 ----D---- C:\Program Files\Shukusen
2008-11-03 01:12:02 ----D---- C:\ProgramData\trimde
2008-11-03 01:11:42 ----D---- C:\Program Files\trimde
2008-11-03 00:46:10 ----D---- C:\Users\azzurro\AppData\Roaming\Canon
2008-11-03 00:45:48 ----D---- C:\ProgramData\CanonIJPLM
2008-11-03 00:44:46 ----A---- C:\Windows\MAXLINK.INI
2008-11-03 00:44:44 ----D---- C:\ProgramData\InstallShield
2008-11-03 00:44:29 ----D---- C:\Users\azzurro\AppData\Roaming\ScanSoft
2008-11-03 00:43:56 ----D---- C:\ProgramData\ScanSoft
2008-11-03 00:43:56 ----D---- C:\Program Files\Common Files\ScanSoft Shared
2008-11-03 00:43:08 ----D---- C:\Program Files\ScanSoft
2008-11-03 00:41:11 ----D---- C:\Program Files\Common Files\CANON
2008-11-03 00:38:05 ----HD---- C:\Windows\system32\CanonIJ Uninstaller Information
2008-11-03 00:37:24 ----HD---- C:\Program Files\CanonBJ
2008-11-03 00:36:38 ----D---- C:\Program Files\Canon
2008-11-02 22:20:31 ----D---- C:\Users\azzurro\AppData\Roaming\CravingExplorer
2008-11-02 21:52:28 ----D---- C:\Program Files\CravingExplorer
2008-11-01 17:35:24 ----D---- C:\Program Files\Simplify Media
2008-11-01 16:38:54 ----D---- C:\Program Files\Yahoo!
2008-11-01 16:38:43 ----D---- C:\Program Files\CCleaner
2008-11-01 16:25:48 ----D---- C:\Windows\Downloaded Installations
2008-11-01 16:12:47 ----D---- C:\Program Files\GRETECH
2008-11-01 10:11:00 ----D---- C:\Users\azzurro\AppData\Roaming\IBM
2008-10-31 21:21:32 ----D---- C:\Users\azzurro\AppData\Roaming\toshiba
2008-10-31 21:08:05 ----A---- C:\Windows\system32\msonpmon.dll
2008-10-31 21:00:33 ----D---- C:\Program Files\Microsoft Visual Studio 8
2008-10-31 19:09:43 ----A---- C:\Windows\system32\d3dx9_27.dll
2008-10-31 19:02:55 ----A---- C:\Windows\system32\mfc71u.dll
2008-10-31 19:02:55 ----A---- C:\Windows\system32\Mfc42loc.dll
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71KOR.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71JPN.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71ITA.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71FRA.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71ESP.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71ENU.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71DEU.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71CHT.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71CHS.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\mfc71.dll
2008-10-31 19:02:39 ----D---- C:\Program Files\IBM Homepage Builder V12
2008-10-31 18:39:17 ----D---- C:\Program Files\DAEMON Tools Lite
2008-10-31 18:04:55 ----D---- C:\Users\azzurro\AppData\Roaming\DAEMON Tools
2008-10-31 17:50:15 ----D---- C:\ProgramData\TEMP
2008-10-31 17:50:03 ----D---- C:\Program Files\SpywareBlaster
2008-10-31 17:48:37 ----D---- C:\Users\azzurro\AppData\Roaming\WinPatrol
2008-10-31 17:48:29 ----D---- C:\Program Files\BillP Studios
2008-10-31 17:39:59 ----D---- C:\Windows\temp
2008-10-31 17:39:58 ----A---- C:\ComboFix.txt
2008-10-31 17:28:18 ----D---- C:\ComboFix
2008-10-31 16:32:38 ----D---- C:\Program Files\Microsoft Silverlight
2008-10-31 16:05:28 ----A---- C:\Windows\system32\winipsec.dll
2008-10-31 16:05:28 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-10-31 16:05:28 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-10-31 16:05:27 ----A---- C:\Windows\system32\polstore.dll
2008-10-31 16:04:24 ----A---- C:\Windows\system32\riched32.dll
2008-10-31 16:04:24 ----A---- C:\Windows\system32\riched20.dll
2008-10-31 16:04:22 ----A---- C:\Windows\system32\rasser.dll
2008-10-31 16:04:22 ----A---- C:\Windows\system32\rasdiag.dll
2008-10-31 16:04:22 ----A---- C:\Windows\system32\rascfg.dll
2008-10-31 16:04:21 ----A---- C:\Windows\system32\rasmxs.dll
2008-10-31 16:04:21 ----A---- C:\Windows\system32\netcfgx.dll
2008-10-31 16:04:21 ----A---- C:\Windows\system32\msftedit.dll
2008-10-31 16:04:20 ----A---- C:\Windows\system32\ipnathlp.dll
2008-10-31 16:04:20 ----A---- C:\Windows\system32\icsunattend.exe
2008-10-31 16:04:19 ----A---- C:\Windows\system32\wshqos.dll
2008-10-31 16:04:19 ----A---- C:\Windows\system32\traffic.dll
2008-10-31 16:04:19 ----A---- C:\Windows\system32\pacerprf.dll
2008-10-31 16:04:19 ----A---- C:\Windows\system32\localspl.dll
2008-10-31 16:04:18 ----A---- C:\Windows\system32\dps.dll
2008-10-31 16:04:18 ----A---- C:\Windows\system32\cdd.dll
2008-10-31 16:03:22 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-10-31 16:03:19 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-10-31 16:03:18 ----A---- C:\Windows\system32\gameux.dll
2008-10-31 16:02:09 ----A---- C:\Windows\system32\msoert2.dll
2008-10-31 16:02:09 ----A---- C:\Windows\system32\msoeacct.dll
2008-10-31 16:02:09 ----A---- C:\Windows\system32\ACCTRES.dll
2008-10-31 16:01:04 ----A---- C:\Windows\system32\wtsapi32.dll
2008-10-31 16:01:01 ----A---- C:\Windows\system32\sysmain.dll
2008-10-31 16:01:01 ----A---- C:\Windows\explorer.exe
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlansvc.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlansec.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlanmsm.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlanhlp.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlanapi.dll
2008-10-31 16:00:05 ----A---- C:\Windows\system32\WebClnt.dll
2008-10-31 15:59:14 ----A---- C:\Windows\system32\newdev.exe
2008-10-31 15:59:14 ----A---- C:\Windows\system32\newdev.dll
2008-10-31 15:56:20 ----A---- C:\Windows\system32\mcmde.dll
2008-10-31 15:56:20 ----A---- C:\Windows\system32\EncDec.dll
2008-10-31 15:56:19 ----A---- C:\Windows\system32\psisdecd.dll
2008-10-31 15:55:20 ----A---- C:\Windows\system32\winsrv.dll
2008-10-31 15:55:20 ----A---- C:\Windows\system32\csrsrv.dll
2008-10-31 15:54:33 ----A---- C:\Windows\system32\RacEngn.dll
2008-10-31 15:51:15 ----A---- C:\Windows\system32\shell32.dll
2008-10-31 15:47:17 ----A---- C:\Windows\system32\tzres.dll
2008-10-31 15:45:59 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-10-31 15:44:47 ----A---- C:\Windows\system32\wmpeffects.dll
2008-10-31 15:43:13 ----A---- C:\Windows\system32\msscp.dll
2008-10-31 15:42:22 ----A---- C:\Windows\system32\wmploc.DLL
2008-10-31 15:42:21 ----A---- C:\Windows\system32\wmp.dll
2008-10-31 15:42:20 ----A---- C:\Windows\system32\spwmp.dll
2008-10-31 15:42:20 ----A---- C:\Windows\system32\dxmasf.dll
2008-10-31 15:42:19 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-10-31 15:41:10 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\wfapigp.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\MPSSVC.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\icfupgd.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\cmifw.dll
2008-10-31 15:41:08 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-10-31 15:40:21 ----A---- C:\Windows\system32\netapi32.dll
2008-10-31 15:36:46 ----A---- C:\Windows\system32\DWWIN.EXE
2008-10-31 15:36:08 ----A---- C:\Windows\system32\msxml3r.dll
2008-10-31 15:36:08 ----A---- C:\Windows\system32\msxml3.dll
2008-10-31 15:32:52 ----A---- C:\Windows\system32\hccoin.dll
2008-10-31 15:32:51 ----A---- C:\Windows\system32\hcrstco.dll
2008-10-31 15:31:28 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-10-31 15:31:28 ----A---- C:\Windows\system32\netiougc.exe
2008-10-31 15:31:28 ----A---- C:\Windows\system32\netcfg.exe
2008-10-31 15:30:42 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2008-10-31 15:30:42 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2008-10-31 15:30:42 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2008-10-31 15:30:40 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2008-10-31 15:30:40 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2008-10-31 15:30:39 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2008-10-31 15:30:39 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2008-10-31 15:30:38 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2008-10-31 15:30:37 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2008-10-31 15:30:36 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2008-10-31 15:30:35 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2008-10-31 15:30:35 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2008-10-31 15:30:34 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2008-10-31 15:30:34 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2008-10-31 15:30:33 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2008-10-31 15:30:32 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-10-31 15:30:32 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-10-31 15:30:31 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2008-10-31 15:30:31 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2008-10-31 15:30:30 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2008-10-31 15:30:30 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2008-10-31 15:30:29 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2008-10-31 15:30:29 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2008-10-31 15:30:29 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2008-10-31 15:30:28 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2008-10-31 15:30:27 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2008-10-31 15:30:27 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2008-10-31 15:30:26 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2008-10-31 15:30:26 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2008-10-31 15:30:26 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2008-10-31 15:30:25 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2008-10-31 15:30:25 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2008-10-31 15:30:24 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2008-10-31 15:30:23 ----A---- C:\Windows\system32\NlsModels0011.dll
2008-10-31 15:30:23 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2008-10-31 15:30:23 ----A---- C:\Windows\system32\NlsData0045.dll
2008-10-31 15:30:22 ----A---- C:\Windows\system32\NlsData0049.dll
2008-10-31 15:30:22 ----A---- C:\Windows\system32\NlsData0047.dll
2008-10-31 15:30:22 ----A---- C:\Windows\system32\NlsData0046.dll
2008-10-31 15:30:21 ----A---- C:\Windows\system32\NlsData0039.dll
2008-10-31 15:30:21 ----A---- C:\Windows\system32\NlsData0021.dll
2008-10-31 15:30:21 ----A---- C:\Windows\system32\NlsData0020.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0027.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0026.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0024.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0022.dll
2008-10-31 15:30:19 ----A---- C:\Windows\system32\NlsData0011.dll
2008-10-31 15:30:19 ----A---- C:\Windows\system32\NlsData0010.dll
2008-10-31 15:30:18 ----A---- C:\Windows\system32\NlsData0018.dll
2008-10-31 15:30:18 ----A---- C:\Windows\system32\NlsData0013.dll
2008-10-31 15:30:18 ----A---- C:\Windows\system32\NlsData0000.dll
2008-10-31 15:30:17 ----A---- C:\Windows\system32\NlsData0019.dll
2008-10-31 15:30:17 ----A---- C:\Windows\system32\NlsData0002.dll
2008-10-31 15:30:17 ----A---- C:\Windows\system32\NlsData0001.dll
2008-10-31 15:30:16 ----A---- C:\Windows\system32\NlsData0007.dll
2008-10-31 15:30:16 ----A---- C:\Windows\system32\NlsData0003.dll
2008-10-31 15:30:15 ----A---- C:\Windows\system32\NlsData004b.dll
2008-10-31 15:30:15 ----A---- C:\Windows\system32\NlsData004a.dll
2008-10-31 15:30:15 ----A---- C:\Windows\system32\NlsData0009.dll
2008-10-31 15:30:14 ----A---- C:\Windows\system32\NlsData004e.dll
2008-10-31 15:30:14 ----A---- C:\Windows\system32\NlsData004c.dll
2008-10-31 15:30:14 ----A---- C:\Windows\system32\NlsData003e.dll
2008-10-31 15:30:13 ----A---- C:\Windows\system32\NlsData002a.dll
2008-10-31 15:30:13 ----A---- C:\Windows\system32\NlsData001b.dll
2008-10-31 15:30:13 ----A---- C:\Windows\system32\NlsData001a.dll
2008-10-31 15:30:12 ----A---- C:\Windows\system32\NlsData001d.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000f.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000d.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000c.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000a.dll
2008-10-31 15:30:10 ----A---- C:\Windows\system32\NlsData0416.dll
2008-10-31 15:30:10 ----A---- C:\Windows\system32\NlsData0414.dll
2008-10-31 15:30:09 ----A---- C:\Windows\system32\NlsData081a.dll
2008-10-31 15:30:09 ----A---- C:\Windows\system32\NlsData0816.dll
2008-10-31 15:30:09 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-10-31 15:30:08 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2008-10-31 15:30:08 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-10-31 15:24:48 ----A---- C:\Windows\system32\setupapi.dll
2008-10-31 15:24:14 ----A---- C:\Windows\system32\srdelayed.exe
2008-10-31 15:24:14 ----A---- C:\Windows\system32\srcore.dll
2008-10-31 15:24:14 ----A---- C:\Windows\system32\srclient.dll
2008-10-31 15:24:14 ----A---- C:\Windows\system32\rstrui.exe
2008-10-31 15:24:13 ----A---- C:\Windows\system32\wpd_ci.dll
2008-10-31 15:24:13 ----A---- C:\Windows\system32\winresume.exe
2008-10-31 15:24:13 ----A---- C:\Windows\system32\winload.exe
2008-10-31 15:24:13 ----A---- C:\Windows\system32\kd1394.dll
2008-10-31 15:24:13 ----A---- C:\Windows\system32\ci.dll
2008-10-31 15:24:12 ----A---- C:\Windows\system32\drvinst.exe
2008-10-31 15:24:12 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\oleaut32.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\nshhttp.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\kbd106n.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\dpx.dll
2008-10-31 15:24:10 ----A---- C:\Windows\system32\unlodctr.exe
2008-10-31 15:24:10 ----A---- C:\Windows\system32\prflbmsg.dll
2008-10-31 15:24:10 ----A---- C:\Windows\system32\lodctr.exe
2008-10-31 15:24:10 ----A---- C:\Windows\system32\loadperf.dll
2008-10-31 15:24:09 ----A---- C:\Windows\system32\schedsvc.dll
2008-10-31 15:24:09 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-10-31 15:24:08 ----A---- C:\Windows\system32\dispci.dll
2008-10-31 15:24:08 ----A---- C:\Windows\system32\batt.dll
2008-10-31 15:21:12 ----A---- C:\Windows\system32\WMASF.DLL
2008-10-31 15:21:12 ----A---- C:\Windows\system32\LAPRXY.DLL
2008-10-31 15:21:12 ----A---- C:\Windows\system32\asferror.dll
2008-10-31 15:18:35 ----A---- C:\Windows\system32\gdi32.dll
2008-10-31 15:17:55 ----A---- C:\Windows\system32\slwmi.dll
2008-10-31 15:17:55 ----A---- C:\Windows\system32\SLC.dll
2008-10-31 15:17:55 ----A---- C:\Windows\system32\mcbuilder.exe
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLUINotify.dll
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLUI.exe
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLLUA.exe
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-10-31 15:17:53 ----A---- C:\Windows\system32\SLsvc.exe
2008-10-31 15:17:53 ----A---- C:\Windows\system32\slcinst.dll
2008-10-31 15:17:12 ----A---- C:\Windows\system32\msxml6r.dll
2008-10-31 15:17:12 ----A---- C:\Windows\system32\msxml6.dll
2008-10-31 15:16:06 ----A---- C:\Windows\system32\schannel.dll
2008-10-31 15:16:06 ----A---- C:\Windows\system32\ntprint.exe
2008-10-31 15:16:06 ----A---- C:\Windows\system32\ntprint.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\dhcpcmonitor.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\authui.dll
2008-10-31 15:16:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-10-31 15:16:02 ----A---- C:\Windows\system32\msvfw32.dll
2008-10-31 15:16:02 ----A---- C:\Windows\system32\mciavi32.dll
2008-10-31 15:16:02 ----A---- C:\Windows\system32\avicap32.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\sendmail.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\msvidc32.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\msrle32.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\avifil32.dll
2008-10-31 15:15:22 ----A---- C:\Windows\system32\win32spl.dll
2008-10-31 15:15:22 ----A---- C:\Windows\system32\printcom.dll
2008-10-31 15:14:54 ----A---- C:\Windows\system32\wshrm.dll
2008-10-31 15:14:24 ----A---- C:\Windows\system32\sbunattend.exe
2008-10-31 15:13:37 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-10-31 15:13:37 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-10-31 15:13:37 ----A---- C:\Windows\system32\dnsapi.dll
2008-10-31 15:04:10 ----A---- C:\Windows\system32\rpcrt4.dll
2008-10-31 15:03:26 ----A---- C:\Windows\system32\INETRES.dll
2008-10-31 15:03:26 ----A---- C:\Windows\system32\inetcomm.dll
2008-10-31 15:02:58 ----A---- C:\Windows\system32\wmi.dll
2008-10-31 15:02:57 ----A---- C:\Windows\system32\imagehlp.dll
2008-10-31 15:02:32 ----A---- C:\Windows\system32\quartz.dll
2008-10-31 15:02:06 ----A---- C:\Windows\system32\msshsq.dll
2008-10-31 15:01:28 ----D---- C:\Program Files\MSXML 4.0
2008-10-31 15:01:08 ----A---- C:\Windows\system32\poqexec.exe
2008-10-31 15:00:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-10-31 15:00:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-10-31 14:59:57 ----A---- C:\Windows\system32\user32.dll
2008-10-31 14:57:45 ----A---- C:\Windows\system32\advpack.dll
2008-10-31 14:57:44 ----A---- C:\Windows\system32\wininet.dll
2008-10-31 14:57:44 ----A---- C:\Windows\system32\jsproxy.dll
2008-10-31 14:57:44 ----A---- C:\Windows\system32\ieapfltr.dll
2008-10-31 14:57:43 ----A---- C:\Windows\system32\dxtrans.dll
2008-10-31 14:57:43 ----A---- C:\Windows\system32\dxtmsft.dll
2008-10-31 14:57:42 ----A---- C:\Windows\system32\ieui.dll
2008-10-31 14:57:42 ----A---- C:\Windows\system32\ieframe.dll
2008-10-31 14:57:40 ----A---- C:\Windows\system32\mshtmled.dll
2008-10-31 14:57:39 ----A---- C:\Windows\system32\mshtml.dll
2008-10-31 14:57:37 ----A---- C:\Windows\system32\mstime.dll
2008-10-31 14:57:37 ----A---- C:\Windows\system32\icardie.dll
2008-10-31 14:57:35 ----A---- C:\Windows\system32\ieUnatt.exe
2008-10-31 14:57:34 ----A---- C:\Windows\system32\urlmon.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\pngfilt.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\iesetup.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\iertutil.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\iernonce.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\ie4uinit.exe
2008-10-31 14:56:12 ----A---- C:\Windows\system32\qmgr.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wups2.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wucltux.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wuaueng.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wuauclt.exe
2008-10-30 08:52:57 ----A---- C:\Windows\system32\wups.dll
2008-10-30 08:52:57 ----A---- C:\Windows\system32\wudriver.dll
2008-10-30 08:52:56 ----A---- C:\Windows\system32\wuapi.dll
2008-10-30 08:52:13 ----A---- C:\Windows\system32\wuwebv.dll
2008-10-30 08:52:13 ----A---- C:\Windows\system32\wuapp.exe
2008-10-30 00:14:45 ----D---- C:\Program Files\Veoh Networks
2008-10-28 12:59:52 ----A---- C:\Windows\zip.exe
2008-10-28 12:59:52 ----A---- C:\Windows\VFIND.exe
2008-10-28 12:59:52 ----A---- C:\Windows\SWXCACLS.exe
2008-10-28 12:59:52 ----A---- C:\Windows\SWSC.exe
2008-10-28 12:59:52 ----A---- C:\Windows\SWREG.exe
2008-10-28 12:59:52 ----A---- C:\Windows\sed.exe
2008-10-28 12:59:52 ----A---- C:\Windows\NIRCMD.exe
2008-10-28 12:59:52 ----A---- C:\Windows\grep.exe
2008-10-28 12:59:52 ----A---- C:\Windows\fdsv.exe
2008-10-28 12:46:09 ----D---- C:\Windows\ERDNT
2008-10-28 12:46:09 ----D---- C:\Qoobox
2008-10-27 20:50:18 ----D---- C:\Program Files\Common Files\Adobe
2008-10-27 19:30:48 ----D---- C:\rsit
2008-10-27 19:23:31 ----D---- C:\Users\azzurro\AppData\Roaming\U3
2008-10-26 23:56:40 ----D---- C:\Windows\Minidump
2008-10-26 23:24:48 ----D---- C:\Users\azzurro\AppData\Roaming\skypePM
2008-10-26 23:24:17 ----D---- C:\Users\azzurro\AppData\Roaming\Skype
2008-10-26 23:22:20 ----D---- C:\Program Files\Skype
2008-10-26 23:22:20 ----D---- C:\Program Files\Common Files\Skype
2008-10-26 21:22:21 ----A---- C:\Users\azzurro\AppData\Roaming\SetValue.bat
2008-10-26 21:22:20 ----A---- C:\Users\azzurro\AppData\Roaming\GetValue.vbs
2008-10-26 21:20:09 ----A---- C:\Windows\system32\tmp.txt
2008-10-26 21:20:06 ----A---- C:\rapport.txt
2008-10-26 17:26:51 ----D---- C:\Users\azzurro\AppData\Roaming\Apple Computer
2008-10-26 17:26:39 ----DC---- C:\Windows\system32\DRVSTORE
2008-10-26 17:26:39 ----A---- C:\Windows\system32\GEARAspi.dll
2008-10-26 17:26:14 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-26 17:26:14 ----D---- C:\Program Files\iPod
2008-10-26 17:26:13 ----D---- C:\Program Files\iTunes
2008-10-26 17:25:34 ----D---- C:\Program Files\Bonjour
2008-10-26 17:24:55 ----D---- C:\Program Files\QuickTime
2008-10-26 17:24:53 ----D---- C:\ProgramData\Apple Computer
2008-10-26 17:24:15 ----D---- C:\Program Files\Apple Software Update
2008-10-26 17:23:00 ----D---- C:\Program Files\Common Files\Apple
2008-10-26 17:22:59 ----D---- C:\ProgramData\Apple
2008-10-26 10:41:41 ----D---- C:\Users\azzurro\AppData\Roaming\WinRAR
2008-10-26 09:56:41 ----D---- C:\Program Files\Microsoft Works
2008-10-26 09:56:14 ----D---- C:\Program Files\Microsoft Visual Studio
2008-10-26 09:56:14 ----D---- C:\Program Files\Common Files\DESIGNER
2008-10-26 09:56:00 ----D---- C:\Windows\PCHEALTH
2008-10-26 09:56:00 ----D---- C:\Program Files\Microsoft.NET
2008-10-26 09:52:56 ----D---- C:\Program Files\Microsoft Office
2008-10-26 09:52:54 ----D---- C:\ProgramData\Microsoft Help
2008-10-26 09:52:11 ----RHD---- C:\MSOCache
2008-10-26 00:31:11 ----D---- C:\Windows\SoftwareDistribution
2008-10-25 22:11:44 ----D---- C:\ProgramData\Kaspersky Lab
2008-10-25 22:11:44 ----D---- C:\Program Files\Kaspersky Lab
2008-10-25 21:42:28 ----D---- C:\Users\azzurro\AppData\Roaming\GlarySoft
2008-10-25 20:07:45 ----D---- C:\Users\azzurro\AppData\Roaming\Malwarebytes
2008-10-25 20:07:41 ----D---- C:\ProgramData\Malwarebytes
2008-10-25 00:56:16 ----HD---- C:\ProgramData\CanonBJ
2008-10-25 00:54:58 ----A---- C:\Windows\system32\CNMLM8U.DLL
2008-10-25 00:24:18 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-10-25 00:24:18 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-24 21:06:07 ----D---- C:\Users\azzurro\AppData\Roaming\Macromedia
2008-10-24 21:04:27 ----A---- C:\Windows\system32\PanInstaller.dll
2008-10-24 21:04:25 ----A---- C:\Windows\system32\FirstLoad.dll
2008-10-24 21:04:20 ----D---- C:\Program Files\PANDORA.TV
2008-10-24 21:04:09 ----D---- C:\Temp
2008-10-24 21:02:04 ----D---- C:\Users\azzurro\AppData\Roaming\Adobe
2008-10-24 20:44:23 ----D---- C:\Users\azzurro\AppData\Roaming\Mozilla
2008-10-24 20:44:14 ----D---- C:\Program Files\Mozilla Firefox
2008-10-24 20:43:22 ----N---- C:\Windows\system32\vxblock.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxwave.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxsfs.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxmas.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxinsa64.exe
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxhpinst.exe
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxdrv.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxcpya64.exe
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxafs.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\px.dll
2008-10-24 20:43:19 ----D---- C:\Users\azzurro\AppData\Roaming\Winamp
2008-10-24 20:43:19 ----D---- C:\Program Files\Winamp
2008-10-24 20:41:23 ----A---- C:\Windows\system32\rmoc3260.dll
2008-10-24 20:41:23 ----A---- C:\Windows\system32\pndx5032.dll
2008-10-24 20:41:23 ----A---- C:\Windows\system32\pndx5016.dll
2008-10-24 20:41:23 ----A---- C:\Windows\system32\pncrt.dll
2008-10-24 20:41:22 ----A---- C:\Windows\system32\unrar.dll
2008-10-24 20:41:22 ----A---- C:\Windows\avisplitter.ini
2008-10-24 20:41:19 ----A---- C:\Windows\system32\yv12vfw.dll
2008-10-24 20:41:19 ----A---- C:\Windows\system32\xvidvfw.dll
2008-10-24 20:41:19 ----A---- C:\Windows\system32\xvidcore.dll
2008-10-24 20:41:18 ----A---- C:\Windows\system32\qt-dx331.dll
2008-10-24 20:41:18 ----A---- C:\Windows\system32\dpl100.dll
2008-10-24 20:41:18 ----A---- C:\Windows\system32\divx.dll
2008-10-24 20:41:17 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2008-10-24 20:41:17 ----A---- C:\Windows\system32\ff_vfw.dll
2008-10-24 20:41:16 ----A---- C:\Windows\system32\msvcr71.dll
2008-10-24 20:41:16 ----A---- C:\Windows\system32\msvcp71.dll
2008-10-24 20:41:15 ----D---- C:\Users\azzurro\AppData\Roaming\Real
2008-10-24 20:41:15 ----D---- C:\ProgramData\Real
2008-10-24 20:41:15 ----D---- C:\Program Files\K-Lite Codec Pack
2008-10-24 20:39:29 ----D---- C:\Users\azzurro\AppData\Roaming\Google
2008-10-24 20:39:14 ----D---- C:\ProgramData\Google
2008-10-24 20:39:11 ----D---- C:\Program Files\Google
2008-10-24 20:37:55 ----D---- C:\ProgramData\Skype
2008-10-24 20:37:06 ----D---- C:\Program Files\KeyHoleTV
2008-10-24 20:36:44 ----D---- C:\Program Files\WinRAR
2008-10-24 20:36:08 ----D---- C:\Users\azzurro\AppData\Roaming\Media Player Classic
2008-10-24 20:22:57 ----D---- C:\Program Files\TeraPad
2008-10-24 19:47:51 ----D---- C:\Users\azzurro\AppData\Roaming\goo
2008-10-24 19:46:29 ----D---- C:\Program Files\Trend Micro
2008-10-24 19:40:15 ----A---- C:\Windows\NDSTray.INI
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeW7.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizePX.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeP6.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeM6.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeA6.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresize.dll
2008-10-24 19:39:17 ----D---- C:\Windows\RegisteredPackages
2008-10-24 19:39:09 ----D---- C:\Program Files\Windows Media Components
2008-10-24 19:35:11 ----D---- C:\Program Files\Ulead Systems
2008-10-24 19:35:11 ----D---- C:\Program Files\Common Files\Ulead Systems
2008-10-24 19:35:10 ----D---- C:\ProgramData\Ulead Systems
2008-10-24 19:31:42 ----D---- C:\Program Files\McAfee.com
2008-10-24 19:31:40 ----D---- C:\Program Files\Common Files\McAfee
2008-10-24 19:31:08 ----D---- C:\Program Files\McAfee
2008-10-24 19:30:53 ----D---- C:\ProgramData\Toshiba
2008-10-24 19:30:50 ----D---- C:\ProgramData\McAfee
2008-10-24 19:30:20 ----D---- C:\Users\azzurro\AppData\Roaming\Identities
2008-10-24 19:30:10 ----SD---- C:\Users\azzurro\AppData\Roaming\Microsoft
2008-10-24 19:30:10 ----D---- C:\Users\azzurro\AppData\Roaming\Media Center Programs
2008-10-24 19:25:40 ----D---- C:\Windows\SoftwareDistributionOLD
2008-10-24 19:24:22 ----D---- C:\Program Files\goo
2008-10-24 19:24:16 ----HD---- C:\Windows\msdownld.tmp
2008-10-24 19:23:30 ----D---- C:\Windows\Options
2008-10-24 19:23:30 ----D---- C:\Program Files\Atheros
2008-10-24 19:23:13 ----D---- C:\ProgramData\Atheros
2008-10-24 19:17:43 ----SHD---- C:\System Volume Information
======List of files/folders modified in the last 1 months======
2008-11-03 17:45:18 ----D---- C:\Windows\System32
2008-11-03 17:45:18 ----D---- C:\Windows\inf
2008-11-03 17:45:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-11-03 17:43:54 ----HD---- C:\ProgramData
2008-11-03 01:15:19 ----RD---- C:\Program Files
2008-11-03 01:15:08 ----D---- C:\Windows\system32\Tasks
2008-11-03 00:44:47 ----SHD---- C:\Windows\Installer
2008-11-03 00:44:46 ----D---- C:\Windows
2008-11-03 00:44:40 ----D---- C:\Windows\winsxs
2008-11-03 00:43:56 ----D---- C:\Program Files\Common Files
2008-11-03 00:43:54 ----SD---- C:\Windows\Downloaded Program Files
2008-11-03 00:43:54 ----D---- C:\Program Files\Common Files\InstallShield
2008-11-02 03:04:14 ----D---- C:\Windows\system32\catroot2
2008-11-01 16:44:46 ----D---- C:\Windows\Debug
2008-11-01 16:38:57 ----D---- C:\Windows\Prefetch
2008-11-01 16:30:40 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-31 21:08:15 ----RSD---- C:\Windows\assembly
2008-10-31 21:05:59 ----D---- C:\Program Files\Common Files\microsoft shared
2008-10-31 21:05:53 ----D---- C:\Program Files\MSBuild
2008-10-31 21:05:21 ----D---- C:\Windows\ShellNew
2008-10-31 21:04:30 ----RSD---- C:\Windows\Fonts
2008-10-31 21:04:09 ----SD---- C:\ProgramData\Microsoft
2008-10-31 20:59:51 ----A---- C:\Windows\win.ini
2008-10-31 18:05:17 ----D---- C:\Windows\system32\drivers
2008-10-31 17:57:47 ----D---- C:\Windows\Logs
2008-10-31 17:37:55 ----A---- C:\Windows\system.ini
2008-10-31 17:32:00 ----D---- C:\Windows\AppPatch
2008-10-31 17:28:18 ----D---- C:\Windows\system32\en-US
2008-10-31 16:37:40 ----D---- C:\Windows\system32\catroot
2008-10-31 16:19:41 ----D---- C:\Windows\Microsoft.NET
2008-10-31 16:16:58 ----ASH---- C:\Program Files\desktop.ini
2008-10-31 16:16:40 ----D---- C:\Windows\rescache
2008-10-31 16:10:32 ----D---- C:\Windows\system32\ras
2008-10-31 16:10:32 ----D---- C:\Program Files\Windows Calendar
2008-10-31 16:10:31 ----D---- C:\Windows\system32\icsxml
2008-10-31 16:10:28 ----D---- C:\Program Files\Windows Mail
2008-10-31 16:10:28 ----D---- C:\Program Files\Common Files\System
2008-10-31 16:10:27 ----D---- C:\Windows\system32\wbem
2008-10-31 16:10:26 ----D---- C:\Windows\system32\XPSViewer
2008-10-31 16:10:26 ----D---- C:\Windows\ehome
2008-10-31 16:10:25 ----D---- C:\Program Files\Windows Defender
2008-10-31 16:10:23 ----D---- C:\Windows\system32\ja-JP
2008-10-31 16:10:23 ----D---- C:\Windows\servicing
2008-10-31 16:10:23 ----D---- C:\Program Files\Windows Media Player
2008-10-31 16:10:21 ----D---- C:\Windows\system32\migration
2008-10-31 16:10:17 ----D---- C:\Windows\system32\SLUI
2008-10-31 16:10:14 ----D---- C:\Program Files\Windows Sidebar
2008-10-31 16:10:11 ----D---- C:\Program Files\Internet Explorer
2008-10-31 15:06:29 ----D---- C:\Windows\system32\WDI
2008-10-28 12:39:36 ----D---- C:\Windows\system32\LogFiles
2008-10-27 20:51:14 ----D---- C:\Program Files\Adobe
2008-10-27 20:50:29 ----D---- C:\ProgramData\Adobe
2008-10-25 23:27:57 ----D---- C:\Windows\Tasks
2008-10-25 22:00:10 ----D---- C:\Windows\system32\NDF
2008-10-25 00:54:12 ----RSD---- C:\Windows\Media
2008-10-25 00:53:54 ----D---- C:\Windows\twain_32
2008-10-24 19:39:39 ----D---- C:\Program Files\InterVideo
2008-10-24 19:30:36 ----SHD---- C:\$Recycle.Bin
2008-10-24 19:30:10 ----RD---- C:\Users
2008-10-24 19:26:01 ----D---- C:\Program Files\Windows NT
2008-10-24 19:24:28 ----D---- C:\TOSAPINS
2008-10-24 19:23:16 ----D---- C:\Windows\system32\restore
2008-10-24 19:21:02 ----D---- C:\Windows\Panther
2008-10-07 11:19:42 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-07-21 121872]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2008-10-25 216080]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2008-07-09 20496]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-07-29 919552]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-10-31 14208]
R3 FwLnk;FwLnk Driver; C:\Windows\system32\DRIVERS\FwLnk.sys [2006-11-19 7168]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-02-06 1739816]
R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\Windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-10-31 82432]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-08-14 203312]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-17 16128]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-01-23 290304]
R3 usbscan;USB スキャナ ドライバ; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-01-08 221696]
S3 a7b2f273;a7b2f273; C:\Windows\system32\drivers\a7b2f273.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 F-Secure Standalone Minifilter;F-Secure Standalone Minifilter; \??\C:\Users\azzurro\AppData\Local\Temp\Low\OnlineScanner\Anti-Virus\fsgk.sys []
S3 HdAudAddService;Microsoft 1.1 UAA ファンクション ドライバ (High Definition Audio 用) サービス; C:\Windows\system32\drivers\HdAudio.sys [2006-11-01 235520]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 TSP;TSP; \??\C:\Windows\system32\drivers\klif.sys [2008-10-25 216080]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-10-01 32000]
S3 usbvideo;USB ビデオ デバイス (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
R2 Bonjour Service;Bonjour サービス; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 IJPLMSVC;PIXUS 使用状況調査プログラム; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 97432]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe [2006-12-19 428152]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-22 49152]
S2 0154591224999483mcinstcleanup;McAfee Application Installer Cleanup (0154591224999483); C:\Users\azzurro\AppData\Local\Temp\015459~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service []
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-28 156656]
S3 iPod Service;iPod サービス; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
RSIT Log
Hello, Mr.Katana,
I pasted RSIT log here.
Thank you for your help again.
In fact, I usually use iPhone to check web sites.
When I used browser safari to see a website at home,
pop-up advertisements appear on the iphone screen
by using only my home's Internet line. If I connect another Internet line where is an another place, Pop-ups do not appear on the screen.
Besides, I cannot see several web sites frequently and the web sites
which I cannot see are changing. I could see yahoo yesterday, but, a few days later, I couldn't see yahoo. I cannot connect to windows update by using my home's Internet line, but If I used another place's Internet line,
I can connect to widows update and see any web sites.
There seems to be a problem on a router or the Internet line?
I do not have a chance to hear that other computers have problems or not.
Thank you very much.
Azzurro
Logfile of random's system information tool 1.04 (written by random/random)
Run by azzurro at 2008-11-03 17:50:04
MicrosoftR Windows Vista? Home Premium
System drive C: has 87 GB (65%) free of 134 GB
Total RAM: 2037 MB (60% free)
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 17:50:21, on 2008/11/03
Platform: Windows Vista (WinNT 6.00.1904)
MSIE: Internet Explorer v7.00 (7.00.6000.16757)
Boot mode: Normal
Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPCMNT.EXE
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\RtHDVCpl.exe
C:\Program Files\Synaptics\SynTP\SynToshiba.exe
C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\BillP Studios\WinPatrol\WinPatrol.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\ScanSoft\OmniPageSE4\OpWareSE4.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Users\azzurro\Desktop\RSIT.exe
C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPCMNT.EXE
C:\Windows\system32\taskeng.exe
C:\Program Files\Trend Micro\HijackThis\azzurro.exe
C:\Windows\system32\SearchFilterHost.exe
R3 - URLSearchHook: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - (no file)
O1 - Hosts: ::1 localhost
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O2 - BHO: IEVkbdBHO Class - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll
O3 - Toolbar: &Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll
O3 - Toolbar: Veoh Web Player Video Finder - {0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll
O3 - Toolbar: Veoh Browser Plug-in - {D0943516-5076-4020-A3B5-AEFAF26AB263} - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll
O4 - HKLM\..\Run: [TPwrMain] %ProgramFiles%\TOSHIBA\Power Saver\TPwrMain.EXE
O4 - HKLM\..\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [RtHDVCpl] RtHDVCpl.exe
O4 - HKLM\..\Run: [HSON] %ProgramFiles%\TOSHIBA\TBS\HSON.exe
O4 - HKLM\..\Run: [IME JPN 2007 Migration] C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE /Preload
O4 - HKLM\..\Run: [AVP] "C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
O4 - HKLM\..\Run: [WinPatrol] C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe -expressboot
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [CanonSolutionMenu] C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe /logon
O4 - HKLM\..\Run: [CanonMyPrinter] C:\Program Files\Canon\MyPrinter\BJMyPrt.exe /logon
O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot
O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe"
O4 - HKCU\..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
O4 - HKCU\..\Run: [WMPNSCFG] C:\Program Files\Windows Media Player\WMPNSCFG.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O8 - Extra context menu item: "アンチバナーへ追加" - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ie_banner_deny.htm
O8 - Extra context menu item: Microsoft Excel にエクスポート(&X) - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra 'Tools' menuitem: Sun の Java コンソール - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.6.0\bin\npjpi160.dll
O9 - Extra button: ウェブアンチウイルス - {1F460357-8A94-4D71-9CA3-AA4ACF32ED8E} - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\SCIEPlgn.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll
O13 - Gopher Prefix:
O16 - DPF: {BDBDE413-7B1C-4C68-A8FF-C5B2B4090876} (F-Secure Online Scanner 3.3) - http://www.f-secure.co.jp/ols/ols33/fscax.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/ge...sh/swflash.cab
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~2\Office12\GR99D3~1.DLL
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: McAfee Application Installer Cleanup (0154591224999483) (0154591224999483mcinstcleanup) - Unknown owner - C:\Users\azzurro\AppData\Local\Temp\015459~1.EXE (file missing)
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Kaspersky Internet Security (AVP) - Kaspersky Lab - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe
O23 - Service: Bonjour サービス (Bonjour Service) - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: ConfigFree Service (CFSvcs) - TOSHIBA CORPORATION - C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: PIXUS 使用状況調査プログラム (IJPLMSVC) - Unknown owner - C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE
O23 - Service: iPod サービス (iPod Service) - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: SBSD Security Center Service (SBSDWSCService) - Safer Networking Ltd. - C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
O23 - Service: TOSHIBA Optical Disc Drive Service (TODDSrv) - TOSHIBA Corporation - C:\Windows\system32\TODDSrv.exe
O23 - Service: TOSHIBA Power Saver (TosCoSrv) - TOSHIBA Corporation - C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
--
End of file - 7913 bytes
======Scheduled tasks folder======
C:\Windows\tasks\User_Feed_Synchronization-{EA35EBB3-0381-4A67-BA1E-60C4F94FD654}.job
======Registry dump======
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2006-10-22 62080]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\PROGRA~1\SPYBOT~1\SDHelper.dll [2008-09-15 1562960]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C}]
IEVkbdBHO Class - C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\ievkbd.dll [2008-07-29 62728]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0\bin\ssv.dll [2007-03-11 501384]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}]
Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-10-28 193136]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}]
Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\4.1.509.5470\swg.dll [2008-10-28 651760]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
{2318C2B1-4965-11d4-9B18-009027A5CD4F} - &Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar.dll [2008-10-28 193136]
{0FBB9689-D3D7-4f7a-A2E2-585B10099BFC} - Veoh Web Player Video Finder - C:\Program Files\Veoh Networks\VeohWebPlayer\VeohIEToolbar.dll [2008-10-09 463872]
{D0943516-5076-4020-A3B5-AEFAF26AB263} - Veoh Browser Plug-in - C:\Program Files\Veoh Networks\Veoh\Plugins\reg\VeohToolbar.dll [2008-09-26 352256]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"TPwrMain"=C:\Program Files\TOSHIBA\Power Saver\TPwrMain.EXE [2006-12-19 411768]
"SynTPEnh"=C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2008-08-14 1348904]
"RtHDVCpl"=C:\Windows\RtHDVCpl.exe [2007-02-06 4374528]
"HSON"=C:\Program Files\TOSHIBA\TBS\HSON.exe [2006-12-06 55416]
"IME JPN 2007 Migration"=C:\PROGRA~1\COMMON~1\MICROS~1\IME12\IMEJP\IMJPKLMG.EXE [2007-08-23 66936]
"AVP"=C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 8.0\Reader\Reader_sl.exe [2008-01-11 39792]
"IgfxTray"=C:\Windows\system32\igfxtray.exe [2008-02-11 141848]
"Persistence"=C:\Windows\system32\igfxpers.exe [2008-02-11 133656]
"WinPatrol"=C:\Program Files\BillP Studios\WinPatrol\winpatrol.exe [2008-10-09 333120]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-26 31016]
"CanonSolutionMenu"=C:\Program Files\Canon\SolutionMenu\CNSLMAIN.exe [2007-05-14 644696]
"CanonMyPrinter"=C:\Program Files\Canon\MyPrinter\BJMyPrt.exe [2007-04-03 1603152]
"SSBkgdUpdate"=C:\Program Files\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe [2006-10-25 210472]
"OpwareSE4"=C:\Program Files\ScanSoft\OmniPageSE4\OpwareSE4.exe [2007-02-04 79400]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2008-10-28 39408]
"WMPNSCFG"=C:\Program Files\Windows Media Player\WMPNSCFG.exe [2006-11-02 201728]
""= []
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui]
C:\Windows\system32\igfxdev.dll [2008-02-11 204800]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\klogon]
C:\Windows\system32\klogon.dll [2008-07-29 218376]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~2\Office12\GRA8E1~1.DLL [2006-10-26 2210608]
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDrives"=0
[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=
"NoDrives"=
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"C:\Program Files\PANDORA.TV\Video Streamer\VideoStreamer.exe"="C:\Program Files\pandora.tv\Video Streamer\VideoStreamer.exe:*:Enabled:VideoStreamer.exe"
"C:\Program Files\PANDORA.TV\Video Streamer\VSStream.exe"="C:\Program Files\pandora.tv\Video Streamer\VSStream.exe:*:Enabled:VSStream.exe"
[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\H]
shell\AutoRun\command - H:\LaunchU3.exe -a
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{c0f4d5bf-a246-11dd-9a80-00a0d1796497}]
shell\AutoRun\command - I:\LaunchU3.exe -a
======List of files/folders created in the last 1 months======
2008-11-03 01:15:19 ----D---- C:\Program Files\Shukusen
2008-11-03 01:12:02 ----D---- C:\ProgramData\trimde
2008-11-03 01:11:42 ----D---- C:\Program Files\trimde
2008-11-03 00:46:10 ----D---- C:\Users\azzurro\AppData\Roaming\Canon
2008-11-03 00:45:48 ----D---- C:\ProgramData\CanonIJPLM
2008-11-03 00:44:46 ----A---- C:\Windows\MAXLINK.INI
2008-11-03 00:44:44 ----D---- C:\ProgramData\InstallShield
2008-11-03 00:44:29 ----D---- C:\Users\azzurro\AppData\Roaming\ScanSoft
2008-11-03 00:43:56 ----D---- C:\ProgramData\ScanSoft
2008-11-03 00:43:56 ----D---- C:\Program Files\Common Files\ScanSoft Shared
2008-11-03 00:43:08 ----D---- C:\Program Files\ScanSoft
2008-11-03 00:41:11 ----D---- C:\Program Files\Common Files\CANON
2008-11-03 00:38:05 ----HD---- C:\Windows\system32\CanonIJ Uninstaller Information
2008-11-03 00:37:24 ----HD---- C:\Program Files\CanonBJ
2008-11-03 00:36:38 ----D---- C:\Program Files\Canon
2008-11-02 22:20:31 ----D---- C:\Users\azzurro\AppData\Roaming\CravingExplorer
2008-11-02 21:52:28 ----D---- C:\Program Files\CravingExplorer
2008-11-01 17:35:24 ----D---- C:\Program Files\Simplify Media
2008-11-01 16:38:54 ----D---- C:\Program Files\Yahoo!
2008-11-01 16:38:43 ----D---- C:\Program Files\CCleaner
2008-11-01 16:25:48 ----D---- C:\Windows\Downloaded Installations
2008-11-01 16:12:47 ----D---- C:\Program Files\GRETECH
2008-11-01 10:11:00 ----D---- C:\Users\azzurro\AppData\Roaming\IBM
2008-10-31 21:21:32 ----D---- C:\Users\azzurro\AppData\Roaming\toshiba
2008-10-31 21:08:05 ----A---- C:\Windows\system32\msonpmon.dll
2008-10-31 21:00:33 ----D---- C:\Program Files\Microsoft Visual Studio 8
2008-10-31 19:09:43 ----A---- C:\Windows\system32\d3dx9_27.dll
2008-10-31 19:02:55 ----A---- C:\Windows\system32\mfc71u.dll
2008-10-31 19:02:55 ----A---- C:\Windows\system32\Mfc42loc.dll
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71KOR.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71JPN.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71ITA.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71FRA.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71ESP.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71ENU.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71DEU.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71CHT.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\MFC71CHS.DLL
2008-10-31 19:02:54 ----A---- C:\Windows\system32\mfc71.dll
2008-10-31 19:02:39 ----D---- C:\Program Files\IBM Homepage Builder V12
2008-10-31 18:39:17 ----D---- C:\Program Files\DAEMON Tools Lite
2008-10-31 18:04:55 ----D---- C:\Users\azzurro\AppData\Roaming\DAEMON Tools
2008-10-31 17:50:15 ----D---- C:\ProgramData\TEMP
2008-10-31 17:50:03 ----D---- C:\Program Files\SpywareBlaster
2008-10-31 17:48:37 ----D---- C:\Users\azzurro\AppData\Roaming\WinPatrol
2008-10-31 17:48:29 ----D---- C:\Program Files\BillP Studios
2008-10-31 17:39:59 ----D---- C:\Windows\temp
2008-10-31 17:39:58 ----A---- C:\ComboFix.txt
2008-10-31 17:28:18 ----D---- C:\ComboFix
2008-10-31 16:32:38 ----D---- C:\Program Files\Microsoft Silverlight
2008-10-31 16:05:28 ----A---- C:\Windows\system32\winipsec.dll
2008-10-31 16:05:28 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-10-31 16:05:28 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-10-31 16:05:27 ----A---- C:\Windows\system32\polstore.dll
2008-10-31 16:04:24 ----A---- C:\Windows\system32\riched32.dll
2008-10-31 16:04:24 ----A---- C:\Windows\system32\riched20.dll
2008-10-31 16:04:22 ----A---- C:\Windows\system32\rasser.dll
2008-10-31 16:04:22 ----A---- C:\Windows\system32\rasdiag.dll
2008-10-31 16:04:22 ----A---- C:\Windows\system32\rascfg.dll
2008-10-31 16:04:21 ----A---- C:\Windows\system32\rasmxs.dll
2008-10-31 16:04:21 ----A---- C:\Windows\system32\netcfgx.dll
2008-10-31 16:04:21 ----A---- C:\Windows\system32\msftedit.dll
2008-10-31 16:04:20 ----A---- C:\Windows\system32\ipnathlp.dll
2008-10-31 16:04:20 ----A---- C:\Windows\system32\icsunattend.exe
2008-10-31 16:04:19 ----A---- C:\Windows\system32\wshqos.dll
2008-10-31 16:04:19 ----A---- C:\Windows\system32\traffic.dll
2008-10-31 16:04:19 ----A---- C:\Windows\system32\pacerprf.dll
2008-10-31 16:04:19 ----A---- C:\Windows\system32\localspl.dll
2008-10-31 16:04:18 ----A---- C:\Windows\system32\dps.dll
2008-10-31 16:04:18 ----A---- C:\Windows\system32\cdd.dll
2008-10-31 16:03:22 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-10-31 16:03:19 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-10-31 16:03:18 ----A---- C:\Windows\system32\gameux.dll
2008-10-31 16:02:09 ----A---- C:\Windows\system32\msoert2.dll
2008-10-31 16:02:09 ----A---- C:\Windows\system32\msoeacct.dll
2008-10-31 16:02:09 ----A---- C:\Windows\system32\ACCTRES.dll
2008-10-31 16:01:04 ----A---- C:\Windows\system32\wtsapi32.dll
2008-10-31 16:01:01 ----A---- C:\Windows\system32\sysmain.dll
2008-10-31 16:01:01 ----A---- C:\Windows\explorer.exe
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlansvc.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlansec.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlanmsm.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlanhlp.dll
2008-10-31 16:00:58 ----A---- C:\Windows\system32\wlanapi.dll
2008-10-31 16:00:05 ----A---- C:\Windows\system32\WebClnt.dll
2008-10-31 15:59:14 ----A---- C:\Windows\system32\newdev.exe
2008-10-31 15:59:14 ----A---- C:\Windows\system32\newdev.dll
2008-10-31 15:56:20 ----A---- C:\Windows\system32\mcmde.dll
2008-10-31 15:56:20 ----A---- C:\Windows\system32\EncDec.dll
2008-10-31 15:56:19 ----A---- C:\Windows\system32\psisdecd.dll
2008-10-31 15:55:20 ----A---- C:\Windows\system32\winsrv.dll
2008-10-31 15:55:20 ----A---- C:\Windows\system32\csrsrv.dll
2008-10-31 15:54:33 ----A---- C:\Windows\system32\RacEngn.dll
2008-10-31 15:51:15 ----A---- C:\Windows\system32\shell32.dll
2008-10-31 15:47:17 ----A---- C:\Windows\system32\tzres.dll
2008-10-31 15:45:59 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-10-31 15:44:47 ----A---- C:\Windows\system32\wmpeffects.dll
2008-10-31 15:43:13 ----A---- C:\Windows\system32\msscp.dll
2008-10-31 15:42:22 ----A---- C:\Windows\system32\wmploc.DLL
2008-10-31 15:42:21 ----A---- C:\Windows\system32\wmp.dll
2008-10-31 15:42:20 ----A---- C:\Windows\system32\spwmp.dll
2008-10-31 15:42:20 ----A---- C:\Windows\system32\dxmasf.dll
2008-10-31 15:42:19 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-10-31 15:41:10 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\wfapigp.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\MPSSVC.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\icfupgd.dll
2008-10-31 15:41:09 ----A---- C:\Windows\system32\cmifw.dll
2008-10-31 15:41:08 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-10-31 15:40:21 ----A---- C:\Windows\system32\netapi32.dll
2008-10-31 15:36:46 ----A---- C:\Windows\system32\DWWIN.EXE
2008-10-31 15:36:08 ----A---- C:\Windows\system32\msxml3r.dll
2008-10-31 15:36:08 ----A---- C:\Windows\system32\msxml3.dll
2008-10-31 15:32:52 ----A---- C:\Windows\system32\hccoin.dll
2008-10-31 15:32:51 ----A---- C:\Windows\system32\hcrstco.dll
2008-10-31 15:31:28 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-10-31 15:31:28 ----A---- C:\Windows\system32\netiougc.exe
2008-10-31 15:31:28 ----A---- C:\Windows\system32\netcfg.exe
2008-10-31 15:30:42 ----A---- C:\Windows\system32\NlsLexicons0047.dll
2008-10-31 15:30:42 ----A---- C:\Windows\system32\NlsLexicons0046.dll
2008-10-31 15:30:42 ----A---- C:\Windows\system32\NlsLexicons0045.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0049.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0039.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0021.dll
2008-10-31 15:30:41 ----A---- C:\Windows\system32\NlsLexicons0020.dll
2008-10-31 15:30:40 ----A---- C:\Windows\system32\NlsLexicons0024.dll
2008-10-31 15:30:40 ----A---- C:\Windows\system32\NlsLexicons0022.dll
2008-10-31 15:30:39 ----A---- C:\Windows\system32\NlsLexicons0027.dll
2008-10-31 15:30:39 ----A---- C:\Windows\system32\NlsLexicons0026.dll
2008-10-31 15:30:38 ----A---- C:\Windows\system32\NlsLexicons0010.dll
2008-10-31 15:30:37 ----A---- C:\Windows\system32\NlsLexicons0011.dll
2008-10-31 15:30:36 ----A---- C:\Windows\system32\NlsLexicons0013.dll
2008-10-31 15:30:35 ----A---- C:\Windows\system32\NlsLexicons0019.dll
2008-10-31 15:30:35 ----A---- C:\Windows\system32\NlsLexicons0018.dll
2008-10-31 15:30:34 ----A---- C:\Windows\system32\NlsLexicons0002.dll
2008-10-31 15:30:34 ----A---- C:\Windows\system32\NlsLexicons0001.dll
2008-10-31 15:30:33 ----A---- C:\Windows\system32\NlsLexicons0003.dll
2008-10-31 15:30:32 ----A---- C:\Windows\system32\NlsLexicons0009.dll
2008-10-31 15:30:32 ----A---- C:\Windows\system32\NlsLexicons0007.dll
2008-10-31 15:30:31 ----A---- C:\Windows\system32\NlsLexicons004b.dll
2008-10-31 15:30:31 ----A---- C:\Windows\system32\NlsLexicons004a.dll
2008-10-31 15:30:30 ----A---- C:\Windows\system32\NlsLexicons004e.dll
2008-10-31 15:30:30 ----A---- C:\Windows\system32\NlsLexicons004c.dll
2008-10-31 15:30:29 ----A---- C:\Windows\system32\NlsLexicons003e.dll
2008-10-31 15:30:29 ----A---- C:\Windows\system32\NlsLexicons002a.dll
2008-10-31 15:30:29 ----A---- C:\Windows\system32\NlsLexicons001a.dll
2008-10-31 15:30:28 ----A---- C:\Windows\system32\NlsLexicons001b.dll
2008-10-31 15:30:27 ----A---- C:\Windows\system32\NlsLexicons001d.dll
2008-10-31 15:30:27 ----A---- C:\Windows\system32\NlsLexicons000a.dll
2008-10-31 15:30:26 ----A---- C:\Windows\system32\NlsLexicons000f.dll
2008-10-31 15:30:26 ----A---- C:\Windows\system32\NlsLexicons000d.dll
2008-10-31 15:30:26 ----A---- C:\Windows\system32\NlsLexicons000c.dll
2008-10-31 15:30:25 ----A---- C:\Windows\system32\NlsLexicons0416.dll
2008-10-31 15:30:25 ----A---- C:\Windows\system32\NlsLexicons0414.dll
2008-10-31 15:30:24 ----A---- C:\Windows\system32\NlsLexicons0816.dll
2008-10-31 15:30:23 ----A---- C:\Windows\system32\NlsModels0011.dll
2008-10-31 15:30:23 ----A---- C:\Windows\system32\NlsLexicons081a.dll
2008-10-31 15:30:23 ----A---- C:\Windows\system32\NlsData0045.dll
2008-10-31 15:30:22 ----A---- C:\Windows\system32\NlsData0049.dll
2008-10-31 15:30:22 ----A---- C:\Windows\system32\NlsData0047.dll
2008-10-31 15:30:22 ----A---- C:\Windows\system32\NlsData0046.dll
2008-10-31 15:30:21 ----A---- C:\Windows\system32\NlsData0039.dll
2008-10-31 15:30:21 ----A---- C:\Windows\system32\NlsData0021.dll
2008-10-31 15:30:21 ----A---- C:\Windows\system32\NlsData0020.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0027.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0026.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0024.dll
2008-10-31 15:30:20 ----A---- C:\Windows\system32\NlsData0022.dll
2008-10-31 15:30:19 ----A---- C:\Windows\system32\NlsData0011.dll
2008-10-31 15:30:19 ----A---- C:\Windows\system32\NlsData0010.dll
2008-10-31 15:30:18 ----A---- C:\Windows\system32\NlsData0018.dll
2008-10-31 15:30:18 ----A---- C:\Windows\system32\NlsData0013.dll
2008-10-31 15:30:18 ----A---- C:\Windows\system32\NlsData0000.dll
2008-10-31 15:30:17 ----A---- C:\Windows\system32\NlsData0019.dll
2008-10-31 15:30:17 ----A---- C:\Windows\system32\NlsData0002.dll
2008-10-31 15:30:17 ----A---- C:\Windows\system32\NlsData0001.dll
2008-10-31 15:30:16 ----A---- C:\Windows\system32\NlsData0007.dll
2008-10-31 15:30:16 ----A---- C:\Windows\system32\NlsData0003.dll
2008-10-31 15:30:15 ----A---- C:\Windows\system32\NlsData004b.dll
2008-10-31 15:30:15 ----A---- C:\Windows\system32\NlsData004a.dll
2008-10-31 15:30:15 ----A---- C:\Windows\system32\NlsData0009.dll
2008-10-31 15:30:14 ----A---- C:\Windows\system32\NlsData004e.dll
2008-10-31 15:30:14 ----A---- C:\Windows\system32\NlsData004c.dll
2008-10-31 15:30:14 ----A---- C:\Windows\system32\NlsData003e.dll
2008-10-31 15:30:13 ----A---- C:\Windows\system32\NlsData002a.dll
2008-10-31 15:30:13 ----A---- C:\Windows\system32\NlsData001b.dll
2008-10-31 15:30:13 ----A---- C:\Windows\system32\NlsData001a.dll
2008-10-31 15:30:12 ----A---- C:\Windows\system32\NlsData001d.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000f.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000d.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000c.dll
2008-10-31 15:30:11 ----A---- C:\Windows\system32\NlsData000a.dll
2008-10-31 15:30:10 ----A---- C:\Windows\system32\NlsData0416.dll
2008-10-31 15:30:10 ----A---- C:\Windows\system32\NlsData0414.dll
2008-10-31 15:30:09 ----A---- C:\Windows\system32\NlsData081a.dll
2008-10-31 15:30:09 ----A---- C:\Windows\system32\NlsData0816.dll
2008-10-31 15:30:09 ----A---- C:\Windows\system32\NaturalLanguage6.dll
2008-10-31 15:30:08 ----A---- C:\Windows\system32\NlsLexicons0c1a.dll
2008-10-31 15:30:08 ----A---- C:\Windows\system32\NlsData0c1a.dll
2008-10-31 15:24:48 ----A---- C:\Windows\system32\setupapi.dll
2008-10-31 15:24:14 ----A---- C:\Windows\system32\srdelayed.exe
2008-10-31 15:24:14 ----A---- C:\Windows\system32\srcore.dll
2008-10-31 15:24:14 ----A---- C:\Windows\system32\srclient.dll
2008-10-31 15:24:14 ----A---- C:\Windows\system32\rstrui.exe
2008-10-31 15:24:13 ----A---- C:\Windows\system32\wpd_ci.dll
2008-10-31 15:24:13 ----A---- C:\Windows\system32\winresume.exe
2008-10-31 15:24:13 ----A---- C:\Windows\system32\winload.exe
2008-10-31 15:24:13 ----A---- C:\Windows\system32\kd1394.dll
2008-10-31 15:24:13 ----A---- C:\Windows\system32\ci.dll
2008-10-31 15:24:12 ----A---- C:\Windows\system32\drvinst.exe
2008-10-31 15:24:12 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\oleaut32.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\nshhttp.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\kbd106n.dll
2008-10-31 15:24:11 ----A---- C:\Windows\system32\dpx.dll
2008-10-31 15:24:10 ----A---- C:\Windows\system32\unlodctr.exe
2008-10-31 15:24:10 ----A---- C:\Windows\system32\prflbmsg.dll
2008-10-31 15:24:10 ----A---- C:\Windows\system32\lodctr.exe
2008-10-31 15:24:10 ----A---- C:\Windows\system32\loadperf.dll
2008-10-31 15:24:09 ----A---- C:\Windows\system32\schedsvc.dll
2008-10-31 15:24:09 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-10-31 15:24:08 ----A---- C:\Windows\system32\dispci.dll
2008-10-31 15:24:08 ----A---- C:\Windows\system32\batt.dll
2008-10-31 15:21:12 ----A---- C:\Windows\system32\WMASF.DLL
2008-10-31 15:21:12 ----A---- C:\Windows\system32\LAPRXY.DLL
2008-10-31 15:21:12 ----A---- C:\Windows\system32\asferror.dll
2008-10-31 15:18:35 ----A---- C:\Windows\system32\gdi32.dll
2008-10-31 15:17:55 ----A---- C:\Windows\system32\slwmi.dll
2008-10-31 15:17:55 ----A---- C:\Windows\system32\SLC.dll
2008-10-31 15:17:55 ----A---- C:\Windows\system32\mcbuilder.exe
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLUINotify.dll
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLUI.exe
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLLUA.exe
2008-10-31 15:17:54 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-10-31 15:17:53 ----A---- C:\Windows\system32\SLsvc.exe
2008-10-31 15:17:53 ----A---- C:\Windows\system32\slcinst.dll
2008-10-31 15:17:12 ----A---- C:\Windows\system32\msxml6r.dll
2008-10-31 15:17:12 ----A---- C:\Windows\system32\msxml6.dll
2008-10-31 15:16:06 ----A---- C:\Windows\system32\schannel.dll
2008-10-31 15:16:06 ----A---- C:\Windows\system32\ntprint.exe
2008-10-31 15:16:06 ----A---- C:\Windows\system32\ntprint.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\dhcpcmonitor.dll
2008-10-31 15:16:04 ----A---- C:\Windows\system32\authui.dll
2008-10-31 15:16:03 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-10-31 15:16:02 ----A---- C:\Windows\system32\msvfw32.dll
2008-10-31 15:16:02 ----A---- C:\Windows\system32\mciavi32.dll
2008-10-31 15:16:02 ----A---- C:\Windows\system32\avicap32.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\sendmail.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\msvidc32.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\msrle32.dll
2008-10-31 15:16:01 ----A---- C:\Windows\system32\avifil32.dll
2008-10-31 15:15:22 ----A---- C:\Windows\system32\win32spl.dll
2008-10-31 15:15:22 ----A---- C:\Windows\system32\printcom.dll
2008-10-31 15:14:54 ----A---- C:\Windows\system32\wshrm.dll
2008-10-31 15:14:24 ----A---- C:\Windows\system32\sbunattend.exe
2008-10-31 15:13:37 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-10-31 15:13:37 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-10-31 15:13:37 ----A---- C:\Windows\system32\dnsapi.dll
2008-10-31 15:04:10 ----A---- C:\Windows\system32\rpcrt4.dll
2008-10-31 15:03:26 ----A---- C:\Windows\system32\INETRES.dll
2008-10-31 15:03:26 ----A---- C:\Windows\system32\inetcomm.dll
2008-10-31 15:02:58 ----A---- C:\Windows\system32\wmi.dll
2008-10-31 15:02:57 ----A---- C:\Windows\system32\imagehlp.dll
2008-10-31 15:02:32 ----A---- C:\Windows\system32\quartz.dll
2008-10-31 15:02:06 ----A---- C:\Windows\system32\msshsq.dll
2008-10-31 15:01:28 ----D---- C:\Program Files\MSXML 4.0
2008-10-31 15:01:08 ----A---- C:\Windows\system32\poqexec.exe
2008-10-31 15:00:25 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-10-31 15:00:24 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-10-31 14:59:57 ----A---- C:\Windows\system32\user32.dll
2008-10-31 14:57:45 ----A---- C:\Windows\system32\advpack.dll
2008-10-31 14:57:44 ----A---- C:\Windows\system32\wininet.dll
2008-10-31 14:57:44 ----A---- C:\Windows\system32\jsproxy.dll
2008-10-31 14:57:44 ----A---- C:\Windows\system32\ieapfltr.dll
2008-10-31 14:57:43 ----A---- C:\Windows\system32\dxtrans.dll
2008-10-31 14:57:43 ----A---- C:\Windows\system32\dxtmsft.dll
2008-10-31 14:57:42 ----A---- C:\Windows\system32\ieui.dll
2008-10-31 14:57:42 ----A---- C:\Windows\system32\ieframe.dll
2008-10-31 14:57:40 ----A---- C:\Windows\system32\mshtmled.dll
2008-10-31 14:57:39 ----A---- C:\Windows\system32\mshtml.dll
2008-10-31 14:57:37 ----A---- C:\Windows\system32\mstime.dll
2008-10-31 14:57:37 ----A---- C:\Windows\system32\icardie.dll
2008-10-31 14:57:35 ----A---- C:\Windows\system32\ieUnatt.exe
2008-10-31 14:57:34 ----A---- C:\Windows\system32\urlmon.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\pngfilt.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\iesetup.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\iertutil.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\iernonce.dll
2008-10-31 14:57:33 ----A---- C:\Windows\system32\ie4uinit.exe
2008-10-31 14:56:12 ----A---- C:\Windows\system32\qmgr.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wups2.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wucltux.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wuaueng.dll
2008-10-30 08:53:51 ----A---- C:\Windows\system32\wuauclt.exe
2008-10-30 08:52:57 ----A---- C:\Windows\system32\wups.dll
2008-10-30 08:52:57 ----A---- C:\Windows\system32\wudriver.dll
2008-10-30 08:52:56 ----A---- C:\Windows\system32\wuapi.dll
2008-10-30 08:52:13 ----A---- C:\Windows\system32\wuwebv.dll
2008-10-30 08:52:13 ----A---- C:\Windows\system32\wuapp.exe
2008-10-30 00:14:45 ----D---- C:\Program Files\Veoh Networks
2008-10-28 12:59:52 ----A---- C:\Windows\zip.exe
2008-10-28 12:59:52 ----A---- C:\Windows\VFIND.exe
2008-10-28 12:59:52 ----A---- C:\Windows\SWXCACLS.exe
2008-10-28 12:59:52 ----A---- C:\Windows\SWSC.exe
2008-10-28 12:59:52 ----A---- C:\Windows\SWREG.exe
2008-10-28 12:59:52 ----A---- C:\Windows\sed.exe
2008-10-28 12:59:52 ----A---- C:\Windows\NIRCMD.exe
2008-10-28 12:59:52 ----A---- C:\Windows\grep.exe
2008-10-28 12:59:52 ----A---- C:\Windows\fdsv.exe
2008-10-28 12:46:09 ----D---- C:\Windows\ERDNT
2008-10-28 12:46:09 ----D---- C:\Qoobox
2008-10-27 20:50:18 ----D---- C:\Program Files\Common Files\Adobe
2008-10-27 19:30:48 ----D---- C:\rsit
2008-10-27 19:23:31 ----D---- C:\Users\azzurro\AppData\Roaming\U3
2008-10-26 23:56:40 ----D---- C:\Windows\Minidump
2008-10-26 23:24:48 ----D---- C:\Users\azzurro\AppData\Roaming\skypePM
2008-10-26 23:24:17 ----D---- C:\Users\azzurro\AppData\Roaming\Skype
2008-10-26 23:22:20 ----D---- C:\Program Files\Skype
2008-10-26 23:22:20 ----D---- C:\Program Files\Common Files\Skype
2008-10-26 21:22:21 ----A---- C:\Users\azzurro\AppData\Roaming\SetValue.bat
2008-10-26 21:22:20 ----A---- C:\Users\azzurro\AppData\Roaming\GetValue.vbs
2008-10-26 21:20:09 ----A---- C:\Windows\system32\tmp.txt
2008-10-26 21:20:06 ----A---- C:\rapport.txt
2008-10-26 17:26:51 ----D---- C:\Users\azzurro\AppData\Roaming\Apple Computer
2008-10-26 17:26:39 ----DC---- C:\Windows\system32\DRVSTORE
2008-10-26 17:26:39 ----A---- C:\Windows\system32\GEARAspi.dll
2008-10-26 17:26:14 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-26 17:26:14 ----D---- C:\Program Files\iPod
2008-10-26 17:26:13 ----D---- C:\Program Files\iTunes
2008-10-26 17:25:34 ----D---- C:\Program Files\Bonjour
2008-10-26 17:24:55 ----D---- C:\Program Files\QuickTime
2008-10-26 17:24:53 ----D---- C:\ProgramData\Apple Computer
2008-10-26 17:24:15 ----D---- C:\Program Files\Apple Software Update
2008-10-26 17:23:00 ----D---- C:\Program Files\Common Files\Apple
2008-10-26 17:22:59 ----D---- C:\ProgramData\Apple
2008-10-26 10:41:41 ----D---- C:\Users\azzurro\AppData\Roaming\WinRAR
2008-10-26 09:56:41 ----D---- C:\Program Files\Microsoft Works
2008-10-26 09:56:14 ----D---- C:\Program Files\Microsoft Visual Studio
2008-10-26 09:56:14 ----D---- C:\Program Files\Common Files\DESIGNER
2008-10-26 09:56:00 ----D---- C:\Windows\PCHEALTH
2008-10-26 09:56:00 ----D---- C:\Program Files\Microsoft.NET
2008-10-26 09:52:56 ----D---- C:\Program Files\Microsoft Office
2008-10-26 09:52:54 ----D---- C:\ProgramData\Microsoft Help
2008-10-26 09:52:11 ----RHD---- C:\MSOCache
2008-10-26 00:31:11 ----D---- C:\Windows\SoftwareDistribution
2008-10-25 22:11:44 ----D---- C:\ProgramData\Kaspersky Lab
2008-10-25 22:11:44 ----D---- C:\Program Files\Kaspersky Lab
2008-10-25 21:42:28 ----D---- C:\Users\azzurro\AppData\Roaming\GlarySoft
2008-10-25 20:07:45 ----D---- C:\Users\azzurro\AppData\Roaming\Malwarebytes
2008-10-25 20:07:41 ----D---- C:\ProgramData\Malwarebytes
2008-10-25 00:56:16 ----HD---- C:\ProgramData\CanonBJ
2008-10-25 00:54:58 ----A---- C:\Windows\system32\CNMLM8U.DLL
2008-10-25 00:24:18 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-10-25 00:24:18 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-24 21:06:07 ----D---- C:\Users\azzurro\AppData\Roaming\Macromedia
2008-10-24 21:04:27 ----A---- C:\Windows\system32\PanInstaller.dll
2008-10-24 21:04:25 ----A---- C:\Windows\system32\FirstLoad.dll
2008-10-24 21:04:20 ----D---- C:\Program Files\PANDORA.TV
2008-10-24 21:04:09 ----D---- C:\Temp
2008-10-24 21:02:04 ----D---- C:\Users\azzurro\AppData\Roaming\Adobe
2008-10-24 20:44:23 ----D---- C:\Users\azzurro\AppData\Roaming\Mozilla
2008-10-24 20:44:14 ----D---- C:\Program Files\Mozilla Firefox
2008-10-24 20:43:22 ----N---- C:\Windows\system32\vxblock.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxwave.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxsfs.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxmas.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxinsa64.exe
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxhpinst.exe
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxdrv.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxcpya64.exe
2008-10-24 20:43:22 ----N---- C:\Windows\system32\pxafs.dll
2008-10-24 20:43:22 ----N---- C:\Windows\system32\px.dll
2008-10-24 20:43:19 ----D---- C:\Users\azzurro\AppData\Roaming\Winamp
2008-10-24 20:43:19 ----D---- C:\Program Files\Winamp
2008-10-24 20:41:23 ----A---- C:\Windows\system32\rmoc3260.dll
2008-10-24 20:41:23 ----A---- C:\Windows\system32\pndx5032.dll
2008-10-24 20:41:23 ----A---- C:\Windows\system32\pndx5016.dll
2008-10-24 20:41:23 ----A---- C:\Windows\system32\pncrt.dll
2008-10-24 20:41:22 ----A---- C:\Windows\system32\unrar.dll
2008-10-24 20:41:22 ----A---- C:\Windows\avisplitter.ini
2008-10-24 20:41:19 ----A---- C:\Windows\system32\yv12vfw.dll
2008-10-24 20:41:19 ----A---- C:\Windows\system32\xvidvfw.dll
2008-10-24 20:41:19 ----A---- C:\Windows\system32\xvidcore.dll
2008-10-24 20:41:18 ----A---- C:\Windows\system32\qt-dx331.dll
2008-10-24 20:41:18 ----A---- C:\Windows\system32\dpl100.dll
2008-10-24 20:41:18 ----A---- C:\Windows\system32\divx.dll
2008-10-24 20:41:17 ----A---- C:\Windows\system32\ff_vfw.dll.manifest
2008-10-24 20:41:17 ----A---- C:\Windows\system32\ff_vfw.dll
2008-10-24 20:41:16 ----A---- C:\Windows\system32\msvcr71.dll
2008-10-24 20:41:16 ----A---- C:\Windows\system32\msvcp71.dll
2008-10-24 20:41:15 ----D---- C:\Users\azzurro\AppData\Roaming\Real
2008-10-24 20:41:15 ----D---- C:\ProgramData\Real
2008-10-24 20:41:15 ----D---- C:\Program Files\K-Lite Codec Pack
2008-10-24 20:39:29 ----D---- C:\Users\azzurro\AppData\Roaming\Google
2008-10-24 20:39:14 ----D---- C:\ProgramData\Google
2008-10-24 20:39:11 ----D---- C:\Program Files\Google
2008-10-24 20:37:55 ----D---- C:\ProgramData\Skype
2008-10-24 20:37:06 ----D---- C:\Program Files\KeyHoleTV
2008-10-24 20:36:44 ----D---- C:\Program Files\WinRAR
2008-10-24 20:36:08 ----D---- C:\Users\azzurro\AppData\Roaming\Media Player Classic
2008-10-24 20:22:57 ----D---- C:\Program Files\TeraPad
2008-10-24 19:47:51 ----D---- C:\Users\azzurro\AppData\Roaming\goo
2008-10-24 19:46:29 ----D---- C:\Program Files\Trend Micro
2008-10-24 19:40:15 ----A---- C:\Windows\NDSTray.INI
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeW7.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizePX.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeP6.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeM6.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresizeA6.dll
2008-10-24 19:39:42 ----A---- C:\Windows\system32\IVIresize.dll
2008-10-24 19:39:17 ----D---- C:\Windows\RegisteredPackages
2008-10-24 19:39:09 ----D---- C:\Program Files\Windows Media Components
2008-10-24 19:35:11 ----D---- C:\Program Files\Ulead Systems
2008-10-24 19:35:11 ----D---- C:\Program Files\Common Files\Ulead Systems
2008-10-24 19:35:10 ----D---- C:\ProgramData\Ulead Systems
2008-10-24 19:31:42 ----D---- C:\Program Files\McAfee.com
2008-10-24 19:31:40 ----D---- C:\Program Files\Common Files\McAfee
2008-10-24 19:31:08 ----D---- C:\Program Files\McAfee
2008-10-24 19:30:53 ----D---- C:\ProgramData\Toshiba
2008-10-24 19:30:50 ----D---- C:\ProgramData\McAfee
2008-10-24 19:30:20 ----D---- C:\Users\azzurro\AppData\Roaming\Identities
2008-10-24 19:30:10 ----SD---- C:\Users\azzurro\AppData\Roaming\Microsoft
2008-10-24 19:30:10 ----D---- C:\Users\azzurro\AppData\Roaming\Media Center Programs
2008-10-24 19:25:40 ----D---- C:\Windows\SoftwareDistributionOLD
2008-10-24 19:24:22 ----D---- C:\Program Files\goo
2008-10-24 19:24:16 ----HD---- C:\Windows\msdownld.tmp
2008-10-24 19:23:30 ----D---- C:\Windows\Options
2008-10-24 19:23:30 ----D---- C:\Program Files\Atheros
2008-10-24 19:23:13 ----D---- C:\ProgramData\Atheros
2008-10-24 19:17:43 ----SHD---- C:\System Volume Information
======List of files/folders modified in the last 1 months======
2008-11-03 17:45:18 ----D---- C:\Windows\System32
2008-11-03 17:45:18 ----D---- C:\Windows\inf
2008-11-03 17:45:18 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-11-03 17:43:54 ----HD---- C:\ProgramData
2008-11-03 01:15:19 ----RD---- C:\Program Files
2008-11-03 01:15:08 ----D---- C:\Windows\system32\Tasks
2008-11-03 00:44:47 ----SHD---- C:\Windows\Installer
2008-11-03 00:44:46 ----D---- C:\Windows
2008-11-03 00:44:40 ----D---- C:\Windows\winsxs
2008-11-03 00:43:56 ----D---- C:\Program Files\Common Files
2008-11-03 00:43:54 ----SD---- C:\Windows\Downloaded Program Files
2008-11-03 00:43:54 ----D---- C:\Program Files\Common Files\InstallShield
2008-11-02 03:04:14 ----D---- C:\Windows\system32\catroot2
2008-11-01 16:44:46 ----D---- C:\Windows\Debug
2008-11-01 16:38:57 ----D---- C:\Windows\Prefetch
2008-11-01 16:30:40 ----HD---- C:\Program Files\InstallShield Installation Information
2008-10-31 21:08:15 ----RSD---- C:\Windows\assembly
2008-10-31 21:05:59 ----D---- C:\Program Files\Common Files\microsoft shared
2008-10-31 21:05:53 ----D---- C:\Program Files\MSBuild
2008-10-31 21:05:21 ----D---- C:\Windows\ShellNew
2008-10-31 21:04:30 ----RSD---- C:\Windows\Fonts
2008-10-31 21:04:09 ----SD---- C:\ProgramData\Microsoft
2008-10-31 20:59:51 ----A---- C:\Windows\win.ini
2008-10-31 18:05:17 ----D---- C:\Windows\system32\drivers
2008-10-31 17:57:47 ----D---- C:\Windows\Logs
2008-10-31 17:37:55 ----A---- C:\Windows\system.ini
2008-10-31 17:32:00 ----D---- C:\Windows\AppPatch
2008-10-31 17:28:18 ----D---- C:\Windows\system32\en-US
2008-10-31 16:37:40 ----D---- C:\Windows\system32\catroot
2008-10-31 16:19:41 ----D---- C:\Windows\Microsoft.NET
2008-10-31 16:16:58 ----ASH---- C:\Program Files\desktop.ini
2008-10-31 16:16:40 ----D---- C:\Windows\rescache
2008-10-31 16:10:32 ----D---- C:\Windows\system32\ras
2008-10-31 16:10:32 ----D---- C:\Program Files\Windows Calendar
2008-10-31 16:10:31 ----D---- C:\Windows\system32\icsxml
2008-10-31 16:10:28 ----D---- C:\Program Files\Windows Mail
2008-10-31 16:10:28 ----D---- C:\Program Files\Common Files\System
2008-10-31 16:10:27 ----D---- C:\Windows\system32\wbem
2008-10-31 16:10:26 ----D---- C:\Windows\system32\XPSViewer
2008-10-31 16:10:26 ----D---- C:\Windows\ehome
2008-10-31 16:10:25 ----D---- C:\Program Files\Windows Defender
2008-10-31 16:10:23 ----D---- C:\Windows\system32\ja-JP
2008-10-31 16:10:23 ----D---- C:\Windows\servicing
2008-10-31 16:10:23 ----D---- C:\Program Files\Windows Media Player
2008-10-31 16:10:21 ----D---- C:\Windows\system32\migration
2008-10-31 16:10:17 ----D---- C:\Windows\system32\SLUI
2008-10-31 16:10:14 ----D---- C:\Program Files\Windows Sidebar
2008-10-31 16:10:11 ----D---- C:\Program Files\Internet Explorer
2008-10-31 15:06:29 ----D---- C:\Windows\system32\WDI
2008-10-28 12:39:36 ----D---- C:\Windows\system32\LogFiles
2008-10-27 20:51:14 ----D---- C:\Program Files\Adobe
2008-10-27 20:50:29 ----D---- C:\ProgramData\Adobe
2008-10-25 23:27:57 ----D---- C:\Windows\Tasks
2008-10-25 22:00:10 ----D---- C:\Windows\system32\NDF
2008-10-25 00:54:12 ----RSD---- C:\Windows\Media
2008-10-25 00:53:54 ----D---- C:\Windows\twain_32
2008-10-24 19:39:39 ----D---- C:\Program Files\InterVideo
2008-10-24 19:30:36 ----SHD---- C:\$Recycle.Bin
2008-10-24 19:30:10 ----RD---- C:\Users
2008-10-24 19:26:01 ----D---- C:\Program Files\Windows NT
2008-10-24 19:24:28 ----D---- C:\TOSAPINS
2008-10-24 19:23:16 ----D---- C:\Windows\system32\restore
2008-10-24 19:21:02 ----D---- C:\Windows\Panther
2008-10-07 11:19:42 ----A---- C:\Windows\system32\mrt.exe
======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R1 kl1;kl1; C:\Windows\system32\DRIVERS\kl1.sys [2008-07-21 121872]
R1 KLIF;Kaspersky Lab Driver; C:\Windows\system32\DRIVERS\klif.sys [2008-10-25 216080]
R1 KLIM6;Kaspersky Anti-Virus NDIS 6 Filter; C:\Windows\system32\DRIVERS\klim6.sys [2008-07-09 20496]
R3 athr;Atheros Extensible Wireless LAN device driver; C:\Windows\system32\DRIVERS\athr.sys [2008-07-29 919552]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-10-31 14208]
R3 FwLnk;FwLnk Driver; C:\Windows\system32\DRIVERS\FwLnk.sys [2006-11-19 7168]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\system32\DRIVERS\GEARAspiWDM.sys [2008-04-17 15464]
R3 igfx;igfx; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\Windows\system32\drivers\RTKVHDA.sys [2007-02-06 1739816]
R3 KLFLTDEV;Kaspersky Lab KLFltDev; C:\Windows\system32\DRIVERS\klfltdev.sys [2008-03-13 26640]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-10-31 82432]
R3 SynTP;Synaptics TouchPad Driver; C:\Windows\system32\DRIVERS\SynTP.sys [2008-08-14 203312]
R3 tdcmdpst;TOSHIBA Writing Engine Filter Driver; C:\Windows\system32\DRIVERS\tdcmdpst.sys [2006-10-17 16128]
R3 tifm21;tifm21; C:\Windows\system32\drivers\tifm21.sys [2007-01-23 290304]
R3 usbscan;USB スキャナ ドライバ; C:\Windows\system32\DRIVERS\usbscan.sys [2006-11-02 35328]
R3 WUDFRd;WUDFRd; C:\Windows\system32\DRIVERS\WUDFRd.sys [2006-11-02 82560]
R3 yukonwlh;NDIS6.0 Miniport Driver for Marvell Yukon Ethernet Controller; C:\Windows\system32\DRIVERS\yk60x86.sys [2007-01-08 221696]
S3 a7b2f273;a7b2f273; C:\Windows\system32\drivers\a7b2f273.sys []
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2006-11-02 5632]
S3 F-Secure Standalone Minifilter;F-Secure Standalone Minifilter; \??\C:\Users\azzurro\AppData\Local\Temp\Low\OnlineScanner\Anti-Virus\fsgk.sys []
S3 HdAudAddService;Microsoft 1.1 UAA ファンクション ドライバ (High Definition Audio 用) サービス; C:\Windows\system32\drivers\HdAudio.sys [2006-11-01 235520]
S3 ialm;ialm; C:\Windows\system32\DRIVERS\igdkmd32.sys [2008-02-11 2302976]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2006-11-02 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2006-11-02 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2006-11-02 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2006-11-02 6016]
S3 TSP;TSP; \??\C:\Windows\system32\drivers\klif.sys [2008-10-25 216080]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-10-01 32000]
S3 usbvideo;USB ビデオ デバイス (WDM); C:\Windows\System32\Drivers\usbvideo.sys [2006-11-02 132352]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2006-11-02 39936]
S4 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\drivers\wmiacpi.sys [2006-11-02 11264]
======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======
R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 AVP;Kaspersky Internet Security; C:\Program Files\Kaspersky Lab\Kaspersky Internet Security 2009\avp.exe [2008-07-29 206088]
R2 Bonjour Service;Bonjour サービス; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 CFSvcs;ConfigFree Service; C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe [2006-11-14 40960]
R2 IJPLMSVC;PIXUS 使用状況調査プログラム; C:\Program Files\Canon\IJPLM\IJPLMSVC.EXE [2007-04-13 97432]
R2 SBSDWSCService;SBSD Security Center Service; C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe [2008-07-07 809296]
R2 TODDSrv;TOSHIBA Optical Disc Drive Service; C:\Windows\system32\TODDSrv.exe [2006-05-25 114688]
R2 TosCoSrv;TOSHIBA Power Saver; C:\Program Files\Toshiba\Power Saver\TosCoSrv.exe [2006-12-19 428152]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2006-08-22 49152]
S2 0154591224999483mcinstcleanup;McAfee Application Installer Cleanup (0154591224999483); C:\Users\azzurro\AppData\Local\Temp\015459~1.EXE C:\PROGRA~1\COMMON~1\McAfee\INSTAL~1\cleanup.ini -cleanup -nolog -service []
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-10-28 156656]
S3 iPod Service;iPod サービス; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-26 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
-----------------EOF-----------------
The DNS settings have been altered on your router.
Make sure you have any information needed for re-connecting before you continue
You need to reset your Router to factory settings, and then connect it to the internet.
Make sure you password protect it to help prevent this happening again.
Microsoft MVP Consumer Security 2009 -2010
If we have helped, please consider a donation
THESE INSTRUCTIONS ARE FOR THIS USER ONLY
Thank you very much for your help.
Mr. Katana,
I pushed a reset button, then, pop-ups never appear on my screen.
Thank you very much for your help.
I really appreciate you.
Azzurro
Microsoft MVP Consumer Security 2009 -2010
If we have helped, please consider a donation
THESE INSTRUCTIONS ARE FOR THIS USER ONLY
Since this issue appears to be resolved ... this Topic has been closed. Glad I could help.
Note:If it has been five days or more since your last post, and the helper assisting you posted a response to that post to which you did not reply, your topic will not be reopened. At that point, if you still require help, please start a new topic and include a fresh HijackThis log and a link to your previous thread.
If it has been less than five days since your last response and you need the thread re-opened, please send me or MOD a private message (pm).
A valid, working link to the closed topic is required.
Microsoft MVP Consumer Security 2009 -2010
If we have helped, please consider a donation
THESE INSTRUCTIONS ARE FOR THIS USER ONLY
