something's wrong

S

spikenla

New member
i've run regcure and spybot, but cant find anything.

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 7:38:35 PM, on 10/28/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskeng.exe
C:\Windows\System32\mobsync.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\sttray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Aaron\Program Files\DNA\btdna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\distnoted.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\bin\SyncServer.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5061101
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Aaron\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: QuickSet.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
O16 - DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} (InstantAction Game Launcher) - http://www.instantaction.com/download/iaplayer.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.auctiva.com/hostedimages/activex/xupload/XUpload.ocx
O16 - DPF: {FD9CE1AA-8F5B-4207-9858-D1A6D8F03DBE} (xc_loader_activex.cntMain) - http://autoconnect.lsu.edu/tools/xc_loader_activex.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 10016 bytes
 
Hi spikenla

To access the Uninstall Manager you would do the following:

1. Start HijackThis
2. Click on the Config button
3. Click on the Misc Tools button
4. Click on the Open Uninstall Manager button.

You will now be presented with a screen similar to the one below:

uninstall-man.jpg


5. Click on the Save list... button and specify where you would like to save this file. When you press Save button a notepad will open with the contents of that file. Simply copy and paste the contents of that notepad here on your next reply.
 
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
2007 Microsoft Office Suite Service Pack 1 (SP1)
32 Bit HP CIO Components Installer
Acrobat.com
Acrobat.com
Adobe AIR
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player Plugin
Adobe Reader 7.1.0
Adobe Shockwave Player 11
American History Lux Demo 1.09
AnswerWorks 5.0 English Runtime
AOLIcon
Apple Mobile Device Support
Apple Software Update
ATI - Software Uninstall Utility
ATI Display Driver
AVI MPEG Converter 3
Aye SplitTiff version 3.0
Bonjour
Broadcom Management Programs
Cabela's Big Game Hunter - Alaskan Adventures
Conexant HDA D110 MDC V.92 Modem
Corel Snapfire Plus
Dell Game Console
Dell Resource CD
Dell Support 3.2
DHTML Editing Component
Digital Content Portal
Digital Line Detect
DivX Codec
DivX Content Uploader
DivX Converter
DivX Player
DivX Web Player
Documentation & Support Launcher
DVD Shrink 3.2
DVDFab Platinum 3.0.8.6
DVDFab Platinum 4.0.6.2
EducateU
ESPNMotion
Games, Music, & Photos Launcher
GemMaster Mystic
HijackThis 2.0.2
HP Customer Participation Program 9.0
HP Imaging Device Functions 9.0
HP OCR Software 9.0
HP Photosmart All-In-One Software 9.0
HP Photosmart Essential 2.01
HP Smart Web Printing
HP Solution Center 9.0
HP Update
HPSSupply
ImgBurn
iTunes
Java(TM) 6 Update 6
Java(TM) 6 Update 7
Kaspersky Online Scanner
Learn2 Player (Uninstall Only)
LiveUpdate 3.2 (Symantec Corporation)
Magic ISO Maker v5.4 (build 0256)
Malwarebytes' Anti-Malware
Masque Slots Dual Pack
MCU
MediaDirect
MemoriesOnTV 3.1.3
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1
Microsoft .NET Framework 1.1 Hotfix (KB929729)
Microsoft Document Explorer 2005
Microsoft Document Explorer 2005
Microsoft Money 2007 Home & Business
Microsoft Money Shared Libraries
Microsoft Office Access MUI (English) 2007
Microsoft Office Access Setup Metadata MUI (English) 2007
Microsoft Office Enterprise 2007
Microsoft Office Enterprise 2007
Microsoft Office Excel MUI (English) 2007
Microsoft Office Groove MUI (English) 2007
Microsoft Office Groove Setup Metadata MUI (English) 2007
Microsoft Office InfoPath MUI (English) 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office Outlook 2003 with Business Contact Manager Update
Microsoft Office Outlook MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Publisher MUI (English) 2007
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Word MUI (English) 2007
Microsoft Plus! Digital Media Edition Installer
Microsoft Plus! Photo Story 2 LE
Microsoft Silverlight
Microsoft Visual C++ 2005 Redistributable
Microsoft Works
MobileMe Control Panel
Modem Helper
Monopoly Tycoon
Mozilla Firefox (2.0.0.2)
MpcStar 1.7
MSN Money Investment Toolbox
MSXML 4.0 SP2 (KB925672)
MSXML 4.0 SP2 (KB927978)
MSXML 4.0 SP2 (KB936181)
MSXML 4.0 SP2 (KB941833)
Nero 7 Premium
NetWaiting
Next Generation Visualisations
Otto
OutlookAddinSetup
Photo Collage Maker 1.55
Picasa 2
Quicken 2008
QuickSet
QuickTime
RealPlayer Basic
RegCure 1.5.0.0
Safari
Scientific-Atlanta WebSTAR 2000 series Cable Modem
Security Update for 2007 Microsoft Office System (KB951944)
Security Update for 2007 Microsoft Office System (KB955936)
Security Update for CAPICOM (KB931906)
Security Update for CAPICOM (KB931906)
Security Update for Microsoft Office Excel 2007 (KB955470)
Security Update for Microsoft Office OneNote 2007 (KB950130)
Security Update for Microsoft Office PowerPoint 2007 (KB951338)
Security Update for Microsoft Office Publisher 2007 (KB950114)
Security Update for Microsoft Office system 2007 (KB951808)
Security Update for Microsoft Office system 2007 (KB954326)
Security Update for Microsoft Office Word 2007 (KB950113)
Security Update for Visio 2007 (KB947590)
SigmaTel Audio
Sonic Encoders
Spybot - Search & Destroy
Spybot - Search & Destroy 1.5.2.20
Starcraft
Stock NeuroMaster version 1.31
SUPERAntiSpyware Professional
Symantec AntiVirus
Synaptics Pointing Device Driver
ToneThis 3.0
Update for Microsoft Office Outlook 2007 (KB952142)
Update for Office 2007 (KB946691)
Update for Outlook 2007 Junk Email Filter (kb957258)
URL Assistant
User's Guides
WD Diagnostics
Windows Installer Clean Up
Windows Media Format 11 runtime
Windows Media Player 10
Windows Media Player 11
WinPcap 4.0.2
WinRAR archiver
WinZip 11.1
 
IMPORTANT I notice there are signs of one or more P2P (Peer to Peer) File Sharing Programs on your computer.

BitTorrent DNA

I'd like you to read the this thread.

Please go to Control Panel > Add/Remove Programs and uninstall the programs listed above (in red).

Delete this folder afterwards:

C:\Users\Aaron\Program Files\DNA

Please run a new HJT scan when finished and post the log back here.
 
it won't allow me to delete the folder


Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 12:14:36 PM, on 10/29/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\sttray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Users\Aaron\Program Files\DNA\btdna.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5061101
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Aaron\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: QuickSet.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
O16 - DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} (InstantAction Game Launcher) - http://www.instantaction.com/download/iaplayer.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.auctiva.com/hostedimages/activex/xupload/XUpload.ocx
O16 - DPF: {FD9CE1AA-8F5B-4207-9858-D1A6D8F03DBE} (xc_loader_activex.cntMain) - http://autoconnect.lsu.edu/tools/xc_loader_activex.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 10037 bytes
 
Then we use this:

Please download the OTMoveIt3 by OldTimer.
  • Save it to your desktop.
  • Please double-click OTMoveIt3.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • Copy the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    Code: 
    :processes
btdna.exe

:files
C:\Users\Aaron\Program Files\DNA

:commands
[EmptyTemp]
  • Return to OTMoveIt3, right click in the "Paste List of Files/Folders to Move" window (under the yellow bar) and choose Paste.
  • Click the red Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTMoveIt3
Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTMoveIt\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.

Post:

- a fresh HijackThis log
- otmoveit3 log
 
Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:23:02 PM, on 10/29/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Windows\notepad.exe
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\sttray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Program Files\Trend Micro\HijackThis\HijackThis.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5061101
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Aaron\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: QuickSet.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
O16 - DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} (InstantAction Game Launcher) - http://www.instantaction.com/download/iaplayer.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.auctiva.com/hostedimages/activex/xupload/XUpload.ocx
O16 - DPF: {FD9CE1AA-8F5B-4207-9858-D1A6D8F03DBE} (xc_loader_activex.cntMain) - http://autoconnect.lsu.edu/tools/xc_loader_activex.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 10184 bytes



========== PROCESSES ==========
Process btdna.exe killed successfully.
========== FILES ==========
C:\Users\Aaron\Program Files\DNA\plugins moved successfully.
C:\Users\Aaron\Program Files\DNA moved successfully.
========== COMMANDS ==========
File delete failed. C:\Users\Aaron\AppData\Local\Temp\Low\~DF32C.tmp scheduled to be deleted on reboot.
File delete failed. C:\Users\Aaron\AppData\Local\Temp\Low\~DF340.tmp scheduled to be deleted on reboot.
User's Temp folder emptied.
User's Temporary Internet Files folder emptied.
User's Internet Explorer cache folder emptied.
Local Service Temp folder emptied.
Local Service Temporary Internet Files folder emptied.
Windows Temp folder emptied.
Java cache emptied.
Temp folders emptied.

OTMoveIt3 by OldTimer - Version 1.0.5.0 log created on 10292008_125646

Files moved on Reboot...
File C:\Users\Aaron\AppData\Local\Temp\Low\~DF32C.tmp not found!
File C:\Users\Aaron\AppData\Local\Temp\Low\~DF340.tmp not found!
 
  • Download random's system information tool (RSIT) by random/random from here and save it to your desktop.
  • Double click on RSIT.exe to run RSIT.
  • Click Continue at the disclaimer screen.
  • Once it has finished, two logs will open. Please post the contents of both log.txt (<<will be maximized) and info.txt (<<will be minimized)
 
Logfile of random's system information tool 1.04 (written by random/random)
Run by Aaron at 2008-10-29 13:49:47
Microsoft® Windows Vista™ Home Premium Service Pack 1
System drive C: has 11 GB (10%) free of 108 GB
Total RAM: 2046 MB (49% free)

Logfile of Trend Micro HijackThis v2.0.2
Scan saved at 1:49:52 PM, on 10/29/2008
Platform: Windows Vista SP1 (WinNT 6.00.1905)
MSIE: Internet Explorer v7.00 (7.00.6001.18000)
Boot mode: Normal

Running processes:
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\Common Files\Symantec Shared\ccApp.exe
C:\Program Files\Symantec AntiVirus\VPTray.exe
C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe
C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
C:\Windows\sttray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Windows\ehome\ehtray.exe
C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Digital Line Detect\DLG.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\ehome\ehmsas.exe
C:\Program Files\Windows Media Player\wmpnscfg.exe
C:\Program Files\Windows Sidebar\sidebar.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.EXE
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
C:\Program Files\Internet Explorer\ieuser.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\HP\Smart Web Printing\hpswp_clipbook.exe
C:\Windows\system32\Macromed\Flash\FlashUtil10a.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Aaron\Desktop\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Aaron.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.com/ig/dell?hl=en&client=dell-usuk&channel=us&ibd=5061101
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
O1 - Hosts: ::1 localhost
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll
O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: SSVHelper Class - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll
O2 - BHO: Browser Address Error Redirector - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Program Files\BAE\BAE.dll
O4 - HKLM\..\Run: [NeroFilterCheck] "C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe"
O4 - HKLM\..\Run: [PCMService] "C:\Program Files\Dell\MediaDirect\PCMService.exe"
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"
O4 - HKLM\..\Run: [vptray] C:\PROGRA~1\SYMANT~1\VPTray.exe
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe"
O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [AppleSyncNotifier] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [SigmatelSysTrayApp] sttray.exe
O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe"
O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun
O4 - HKCU\..\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe
O4 - HKCU\..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe
O4 - HKCU\..\Run: [BitTorrent DNA] "C:\Users\Aaron\Program Files\DNA\btdna.exe"
O4 - HKCU\..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-19\..\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter (User 'LOCAL SERVICE')
O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem (User 'NETWORK SERVICE')
O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
O4 - Global Startup: Adobe Reader Speed Launch.lnk = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
O4 - Global Startup: Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: QuickSet.lnk = ?
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MICROS~4\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\PROGRA~1\Java\JRE16~2.0_0\bin\ssv.dll
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~4\Office12\ONBttnIE.dll
O9 - Extra button: HP Clipbook - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: HP Smart Select - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~4\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra 'Tools' menuitem: Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\Windows\Network Diagnostic\xpnetdiag.exe
O13 - Gopher Prefix:
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5) - http://upload.facebook.com/controls/FacebookPhotoUploader5.cab
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.com/kos/english/kavwebscan_unicode.cab
O16 - DPF: {362C56AA-6E4F-40C7-A0B5-85501DBDAD77} (Scanner.SysScanner) - http://i.dell.com/images/global/js/scanner/SysProExe.cab
O16 - DPF: {48DD0448-9209-4F81-9F6D-D83562940134} (MySpace Uploader Control) - http://lads.myspace.com/upload/MySpaceUploader1006.cab
O16 - DPF: {49312E18-AA92-4CC2-BB97-55DEA7BCADD6} (WMI Class) - http://support.dell.com/systemprofiler/SysProExe.CAB
O16 - DPF: {4ED9DDF0-7479-4BBE-9335-5A1EDB1D8A21} -
O16 - DPF: {5C6698D9-7BE4-4122-8EC5-291D84DBD4A0} (Facebook Photo Uploader 4 Control) - http://upload.facebook.com/controls/FacebookPhotoUploader3.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {D6E7CFB5-C074-4D1C-B647-663D1A8D96BF} (Facebook Photo Uploader 4) - http://upload.facebook.com/controls/FacebookPhotoUploader4_5.cab
O16 - DPF: {DB7BF79A-FC51-4B5A-92BC-A65731174380} (InstantAction Game Launcher) - http://www.instantaction.com/download/iaplayer.cab
O16 - DPF: {E87F6C8E-16C0-11D3-BEF7-009027438003} (Persits Software XUpload) - http://www.auctiva.com/hostedimages/activex/xupload/XUpload.ocx
O16 - DPF: {FD9CE1AA-8F5B-4207-9858-D1A6D8F03DBE} (xc_loader_activex.cntMain) - http://autoconnect.lsu.edu/tools/xc_loader_activex.ocx
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Program Files\SUPERAntiSpyware\SASWINLO.dll
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe
O23 - Service: Ati External Event Utility - ATI Technologies Inc. - C:\Windows\system32\Ati2evxx.exe
O23 - Service: Bonjour Service - Apple Inc. - C:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
O23 - Service: Symantec AntiVirus Definition Watcher (DefWatch) - Symantec Corporation - C:\Program Files\Symantec AntiVirus\DefWatch.exe
O23 - Service: Google Updater Service (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe
O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies - C:\Program Files\WinPcap\rpcapd.exe
O23 - Service: SAVRoam (SavRoam) - symantec - C:\Program Files\Symantec AntiVirus\SavRoam.exe
O23 - Service: Symantec AntiVirus - Symantec Corporation - C:\Program Files\Symantec AntiVirus\Rtvscan.exe
O23 - Service: XAudioService - Conexant Systems, Inc. - C:\Windows\system32\DRIVERS\xaudio.exe

--
End of file - 10241 bytes
 
======Scheduled tasks folder======

C:\Windows\tasks\RegCure Program Check.job
C:\Windows\tasks\RegCure.job
C:\Windows\tasks\User_Feed_Synchronization-{5371693C-21D3-410B-BEA3-B307ECA5F902}.job
C:\Windows\tasks\User_Feed_Synchronization-{7A7E3197-2C68-43E5-B830-D01A604CF1EE}.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}]
Adobe PDF Reader Link Helper - C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [2006-12-18 59032]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{53707962-6F74-2D53-2644-206D7942484F}]
Spybot-S&D IE Protection - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [2008-09-15 1562960]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}]
SSVHelper Class - C:\Program Files\Java\jre1.6.0_07\bin\ssv.dll [2008-06-10 509328]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{CA6319C0-31B7-401E-A518-A07C3DB8F777}]
CBrowserHelperObject Object - C:\Program Files\BAE\BAE.dll [2006-08-30 94208]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"PCMService"=C:\Program Files\Dell\MediaDirect\PCMService.exe [2006-08-22 184320]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2007-08-24 33648]
"ccApp"=C:\Program Files\Common Files\Symantec Shared\ccApp.exe [2006-11-22 107112]
"vptray"=C:\PROGRA~1\SYMANT~1\VPTray.exe [2006-11-28 134808]
"SunJavaUpdateSched"=C:\Program Files\Java\jre1.6.0_07\bin\jusched.exe [2008-06-10 144784]
"QuickTime Task"=C:\Program Files\QuickTime\QTTask.exe [2008-09-06 413696]
"AppleSyncNotifier"=C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleSyncNotifier.exe [2008-09-03 111936]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"SigmatelSysTrayApp"=C:\Windows\sttray.exe [2007-01-12 303104]
"iTunesHelper"=C:\Program Files\iTunes\iTunesHelper.exe [2008-10-01 289576]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"=C:\Program Files\Windows Sidebar\sidebar.exe [2008-01-19 1233920]
"ehTray.exe"=C:\Windows\ehome\ehTray.exe [2008-01-19 125952]
""= []
"StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2006-11-10 90112]
"BitTorrent DNA"=C:\Users\Aaron\Program Files\DNA\btdna.exe []
"SpybotSD TeaTimer"=C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [2008-09-16 1833296]

C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup
Adobe Reader Speed Launch.lnk - C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe
Digital Line Detect.lnk - C:\Program Files\Digital Line Detect\DLG.exe
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
QuickSet.lnk - C:\Windows\Installer\{53A01CC6-14B0-4512-A2E7-10D39BF83DC4}\NewShortcut2_53A01CC614B04512A2E710D39BF83DC4.exe

C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
OneNote 2007 Screen Clipper and Launcher.lnk - C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\!SASWinLogon]
C:\Program Files\SUPERAntiSpyware\SASWINLO.dll [2007-02-27 282624]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon]
C:\Windows\system32\WgaLogon.dll [2007-02-15 236928]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\Windows\system32\wpdshserviceobj.dll [2008-01-19 131584]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= []
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll [2007-08-24 2212224]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1
"legalnoticecaption"=
"legalnoticetext"=
"EnableUIADesktopToggle"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\America Online 9.0\waol.exe"="C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL"
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe"="C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL"
"C:\Program Files\Dell\MediaDirect\PCMService.exe"="C:\Program Files\Dell\MediaDirect\PCMService.exe:*:Enabled:CyberLink PowerCinema Resident Program"
"C:\Program Files\Grisoft\AVG7\avgamsvr.exe"="C:\Program Files\Grisoft\AVG7\avgamsvr.exe:*:Enabled:avgamsvr.exe"
"C:\Program Files\Grisoft\AVG7\avgcc.exe"="C:\Program Files\Grisoft\AVG7\avgcc.exe:*:Enabled:avgcc.exe"
"C:\Program Files\Grisoft\AVG7\avginet.exe"="C:\Program Files\Grisoft\AVG7\avginet.exe:*:Enabled:avginet.exe"
"C:\Program Files\LimeWire\LimeWire.exe"="C:\Program Files\LimeWire\LimeWire.exe:*:Enabled:LimeWire"
"C:\Program Files\McAfee\MSC\mcuimgr.exe"="C:\Program Files\McAfee\MSC\mcuimgr.exe:*:Disabled:McAfee User Interface Manager"
"C:\Program Files\Messenger\msmsgs.exe"="C:\Program Files\Messenger\msmsgs.exe:*:Enabled:Windows Messenger"
"C:\WINDOWS\ehome\ehshell.exe"="C:\WINDOWS\ehome\ehshell.exe:LocalSubNet:Enabled:Media Center"
"C:\Program Files\BitTorrent\bittorrent.exe"="C:\Program Files\BitTorrent\bittorrent.exe:*:Enabled:BitTorrent"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\America Online 9.0\waol.exe"="C:\Program Files\America Online 9.0\waol.exe:*:Enabled:AOL"
"C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe"="C:\Program Files\Common Files\AOL\ACS\AOLacsd.exe:*:Enabled:AOL"
"C:\Program Files\Common Files\AOL\ACS\AOLDial.exe"="C:\Program Files\Common Files\AOL\ACS\AOLDial.exe:*:Enabled:AOL"

======File associations======

.reg - open - regedit.exe "%1" %*
.scr - open - "%1" %*
 
======List of files/folders created in the last 3 months======

2008-10-29 13:49:47 ----D---- C:\rsit
2008-10-29 12:56:46 ----D---- C:\_OTMoveIt
2008-10-28 23:12:36 ----A---- C:\Windows\system32\Faultrep.dll
2008-10-28 23:12:35 ----A---- C:\Windows\system32\wersvc.dll
2008-10-28 23:12:34 ----A---- C:\Windows\system32\win32spl.dll
2008-10-23 16:20:28 ----A---- C:\Windows\system32\netapi32.dll
2008-10-19 02:19:27 ----A---- C:\Windows\StockNeuroMaster.INI
2008-10-19 02:17:54 ----D---- C:\Program Files\TryMedia
2008-10-19 02:08:18 ----D---- C:\Users\Aaron\AppData\Roaming\Stock NeuroMaster
2008-10-19 02:08:17 ----D---- C:\Program Files\Stock NeuroMaster 131
2008-10-19 01:30:55 ----D---- C:\Program Files\American History Lux Demo
2008-10-19 00:51:49 ----D---- C:\Program Files\MSN Money Investment Toolbox
2008-10-18 17:31:59 ----A---- C:\Windows\system32\EncDec.dll
2008-10-18 17:31:57 ----A---- C:\Windows\system32\psisdecd.dll
2008-10-14 16:36:08 ----A---- C:\Windows\system32\ntkrnlpa.exe
2008-10-14 16:36:07 ----A---- C:\Windows\system32\ntoskrnl.exe
2008-10-14 16:35:00 ----A---- C:\Windows\system32\mshtml.dll
2008-10-14 16:35:00 ----A---- C:\Windows\system32\ieframe.dll
2008-10-14 16:34:59 ----A---- C:\Windows\system32\wininet.dll
2008-10-14 16:34:59 ----A---- C:\Windows\system32\urlmon.dll
2008-10-14 16:34:59 ----A---- C:\Windows\system32\iertutil.dll
2008-10-14 16:34:58 ----A---- C:\Windows\system32\mstime.dll
2008-10-14 16:34:58 ----A---- C:\Windows\system32\jsproxy.dll
2008-10-10 09:12:44 ----D---- C:\Program Files\BitTorrent
2008-10-04 10:49:55 ----D---- C:\ProgramData\{3276BE95_AF08_429F_A64F_CA64CB79BCF6}
2008-10-04 10:49:55 ----D---- C:\Program Files\iTunes
2008-10-04 10:49:55 ----D---- C:\Program Files\iPod
2008-09-23 23:09:57 ----D---- C:\Windows\system32\Adobe
2008-09-22 06:54:33 ----D---- C:\Program Files\Common Files\Adobe AIR
2008-09-21 15:59:35 ----D---- C:\ProgramData\NOS
2008-09-21 15:59:34 ----D---- C:\Program Files\NOS
2008-09-17 20:53:12 ----A---- C:\Windows\system32\msshooks.dll
2008-09-17 20:53:11 ----A---- C:\Windows\system32\msscb.dll
2008-09-17 20:53:04 ----A---- C:\Windows\system32\SearchFilterHost.exe
2008-09-17 20:53:04 ----A---- C:\Windows\system32\propsys.dll
2008-09-17 20:53:04 ----A---- C:\Windows\system32\propdefs.dll
2008-09-17 20:53:04 ----A---- C:\Windows\system32\msstrc.dll
2008-09-17 20:53:04 ----A---- C:\Windows\system32\mssprxy.dll
2008-09-17 20:53:04 ----A---- C:\Windows\system32\mssitlb.dll
2008-09-17 20:53:04 ----A---- C:\Windows\system32\msshsq.dll
2008-09-17 20:53:03 ----A---- C:\Windows\system32\thawbrkr.dll
2008-09-17 20:53:03 ----A---- C:\Windows\system32\srchadmin.dll
2008-09-17 20:53:03 ----A---- C:\Windows\system32\korwbrkr.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\xmlfilter.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\wsepno.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\rtffilt.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\offfilt.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\nlhtml.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\msscntrs.dll
2008-09-17 20:53:02 ----A---- C:\Windows\system32\mimefilt.dll
2008-09-17 20:53:01 ----A---- C:\Windows\system32\SearchProtocolHost.exe
2008-09-17 20:53:01 ----A---- C:\Windows\system32\SearchIndexer.exe
2008-09-17 20:53:01 ----A---- C:\Windows\system32\chtbrkr.dll
2008-09-17 20:53:01 ----A---- C:\Windows\system32\chsbrkr.dll
2008-09-17 20:53:00 ----A---- C:\Windows\system32\tquery.dll
2008-09-17 20:53:00 ----A---- C:\Windows\system32\mssvp.dll
2008-09-17 20:53:00 ----A---- C:\Windows\system32\mssrch.dll
2008-09-17 20:53:00 ----A---- C:\Windows\system32\mssphtb.dll
2008-09-17 20:53:00 ----A---- C:\Windows\system32\mssph.dll
2008-09-17 20:51:26 ----A---- C:\Windows\system32\rpcrt4.dll
2008-09-17 20:51:25 ----A---- C:\Windows\system32\pacerprf.dll
2008-09-17 20:51:23 ----A---- C:\Windows\system32\emdmgmt.dll
2008-09-17 20:51:23 ----A---- C:\Windows\system32\dataclen.dll
2008-09-17 20:51:23 ----A---- C:\Windows\system32\cdd.dll
2008-09-17 20:51:21 ----A---- C:\Windows\system32\wshext.dll
2008-09-17 20:51:21 ----A---- C:\Windows\system32\wscript.exe
2008-09-17 20:51:21 ----A---- C:\Windows\system32\vbscript.dll
2008-09-17 20:51:21 ----A---- C:\Windows\system32\scrrun.dll
2008-09-17 20:51:21 ----A---- C:\Windows\system32\scrobj.dll
2008-09-17 20:51:21 ----A---- C:\Windows\system32\jscript.dll
2008-09-17 20:51:21 ----A---- C:\Windows\system32\cscript.exe
2008-09-17 14:38:52 ----A---- C:\Windows\system32\wups2.dll
2008-09-17 14:38:52 ----A---- C:\Windows\system32\wucltux.dll
2008-09-17 14:38:52 ----A---- C:\Windows\system32\wuaueng.dll
2008-09-17 14:38:52 ----A---- C:\Windows\system32\wuauclt.exe
2008-09-17 14:38:27 ----A---- C:\Windows\system32\wups.dll
2008-09-17 14:38:27 ----A---- C:\Windows\system32\wudriver.dll
2008-09-17 14:38:27 ----A---- C:\Windows\system32\wuapi.dll
2008-09-17 14:38:20 ----A---- C:\Windows\system32\wuwebv.dll
2008-09-17 14:38:20 ----A---- C:\Windows\system32\wuapp.exe
2008-09-17 13:59:51 ----D---- C:\PerfLogs
2008-09-17 12:29:50 ----A---- C:\Windows\system32\onex.dll
2008-09-17 12:29:49 ----A---- C:\Windows\system32\SLsvc.exe
2008-09-17 12:29:36 ----A---- C:\Windows\system32\PSHED.DLL
2008-09-17 12:29:35 ----A---- C:\Windows\system32\imagesp1.dll
2008-09-17 12:29:30 ----A---- C:\Windows\system32\dfsr.exe
2008-09-17 12:29:29 ----A---- C:\Windows\system32\pidgenx.dll
2008-09-17 12:29:27 ----A---- C:\Windows\system32\sstpsvc.dll
2008-09-17 12:29:27 ----A---- C:\Windows\system32\mstscax.dll
2008-09-17 12:29:24 ----A---- C:\Windows\system32\WsmSvc.dll
2008-09-17 12:29:24 ----A---- C:\Windows\system32\winrscmd.dll
2008-09-17 12:29:24 ----A---- C:\Windows\system32\sysmain.dll
2008-09-17 12:29:23 ----A---- C:\Windows\system32\vssapi.dll
2008-09-17 12:29:23 ----A---- C:\Windows\system32\RMActivate.exe
2008-09-17 12:29:22 ----A---- C:\Windows\system32\VSSVC.exe
2008-09-17 12:29:22 ----A---- C:\Windows\system32\PresentationNative_v0300.dll
2008-09-17 12:29:21 ----A---- C:\Windows\system32\secproc.dll
2008-09-17 12:29:20 ----A---- C:\Windows\system32\RMActivate_isv.exe
2008-09-17 12:29:20 ----A---- C:\Windows\system32\iesetup.dll
2008-09-17 12:29:15 ----A---- C:\Windows\system32\secproc_isv.dll
2008-09-17 12:29:13 ----A---- C:\Windows\system32\drmv2clt.dll
2008-09-17 12:29:12 ----A---- C:\Windows\system32\icardres.dll
2008-09-17 12:29:12 ----A---- C:\Windows\system32\icardagt.exe
2008-09-17 12:29:11 ----A---- C:\Windows\system32\xpssvcs.dll
2008-09-17 12:29:11 ----A---- C:\Windows\system32\blackbox.dll
2008-09-17 12:29:09 ----A---- C:\Windows\system32\RacEngn.dll
2008-09-17 12:29:08 ----A---- C:\Windows\system32\RMActivate_ssp_isv.exe
2008-09-17 12:29:08 ----A---- C:\Windows\system32\RMActivate_ssp.exe
2008-09-17 12:29:08 ----A---- C:\Windows\system32\MSMPEG2VDEC.DLL
2008-09-17 12:29:05 ----A---- C:\Windows\system32\spwizimg.dll
2008-09-17 12:29:05 ----A---- C:\Windows\system32\rdpencom.dll
2008-09-17 12:29:05 ----A---- C:\Windows\bfsvc.exe
2008-09-17 12:29:04 ----A---- C:\Windows\system32\msxml6.dll
2008-09-17 12:29:04 ----A---- C:\Windows\system32\msxml3.dll
2008-09-17 12:29:04 ----A---- C:\Windows\system32\lpremove.exe
2008-09-17 12:29:03 ----A---- C:\Windows\system32\msjet40.dll
2008-09-17 12:29:02 ----A---- C:\Windows\system32\qmgr.dll
2008-09-17 12:29:02 ----A---- C:\Windows\system32\ntdll.dll
2008-09-17 12:29:02 ----A---- C:\Windows\system32\lsasrv.dll
2008-09-17 12:29:01 ----A---- C:\Windows\system32\localspl.dll
2008-09-17 12:29:00 ----A---- C:\Windows\system32\wevtsvc.dll
2008-09-17 12:29:00 ----A---- C:\Windows\system32\wcncsvc.dll
2008-09-17 12:29:00 ----A---- C:\Windows\system32\mscoree.dll
2008-09-17 12:29:00 ----A---- C:\Windows\system32\kernel32.dll
2008-09-17 12:29:00 ----A---- C:\Windows\system32\IKEEXT.DLL
2008-09-17 12:28:59 ----A---- C:\Windows\system32\TsWpfWrp.exe
2008-09-17 12:28:59 ----A---- C:\Windows\system32\recdisc.exe
2008-09-17 12:28:56 ----A---- C:\Windows\system32\vds.exe
2008-09-17 12:28:56 ----A---- C:\Windows\system32\CompMgmtLauncher.exe
2008-09-17 12:28:53 ----A---- C:\Windows\system32\wmp.dll
2008-09-17 12:28:51 ----A---- C:\Windows\system32\wcnwiz.dll
2008-09-17 12:28:51 ----A---- C:\Windows\system32\SMBHelperClass.dll
2008-09-17 12:28:51 ----A---- C:\Windows\system32\msvbvm60.dll
2008-09-17 12:28:51 ----A---- C:\Windows\system32\mstsc.exe
2008-09-17 12:28:50 ----A---- C:\Windows\system32\mf.dll
2008-09-17 12:28:49 ----A---- C:\Windows\system32\msdtctm.dll
2008-09-17 12:28:48 ----A---- C:\Windows\system32\termsrv.dll
2008-09-17 12:28:47 ----A---- C:\Windows\system32\kerberos.dll
2008-09-17 12:28:47 ----A---- C:\Windows\system32\IMJP10K.DLL
2008-09-17 12:28:47 ----A---- C:\Windows\system32\advapi32.dll
2008-09-17 12:28:45 ----A---- C:\Windows\system32\mmcndmgr.dll
2008-09-17 12:28:44 ----A---- C:\Windows\system32\MSMPEG2ADEC.DLL
2008-09-17 12:28:44 ----A---- C:\Windows\system32\CertEnroll.dll
2008-09-17 12:28:43 ----A---- C:\Windows\system32\xolehlp.dll
2008-09-17 12:28:43 ----A---- C:\Windows\system32\Query.dll
2008-09-17 12:28:43 ----A---- C:\Windows\system32\MPSSVC.dll
2008-09-17 12:28:42 ----A---- C:\Windows\system32\ole32.dll
2008-09-17 12:28:42 ----A---- C:\Windows\system32\msdtcprx.dll
2008-09-17 12:28:41 ----A---- C:\Windows\system32\WindowsAnytimeUpgradeCPL.dll
2008-09-17 12:28:40 ----A---- C:\Windows\system32\netlogon.dll
2008-09-17 12:28:39 ----A---- C:\Windows\system32\SSShim.dll
2008-09-17 12:28:39 ----A---- C:\Windows\system32\msvcrt.dll
2008-09-17 12:28:39 ----A---- C:\Windows\system32\mcupdate_GenuineIntel.dll
2008-09-17 12:28:38 ----A---- C:\Windows\system32\nlmgp.dll
2008-09-17 12:28:38 ----A---- C:\Windows\system32\DfsShlEx.dll
2008-09-17 12:28:37 ----A---- C:\Windows\system32\shlwapi.dll
2008-09-17 12:28:37 ----A---- C:\Windows\system32\schedsvc.dll
2008-09-17 12:28:37 ----A---- C:\Windows\system32\printfilterpipelinesvc.exe
2008-09-17 12:28:37 ----A---- C:\Windows\system32\IasMigPlugin.dll
2008-09-17 12:28:36 ----A---- C:\Windows\system32\sdclt.exe
2008-09-17 12:28:36 ----A---- C:\Windows\system32\milcore.dll
2008-09-17 12:28:35 ----A---- C:\Windows\system32\wer.dll
2008-09-17 12:28:35 ----A---- C:\Windows\system32\user32.dll
2008-09-17 12:28:34 ----A---- C:\Windows\system32\vdsdyn.dll
2008-09-17 12:28:34 ----A---- C:\Windows\system32\d3d9.dll
2008-09-17 12:28:34 ----A---- C:\Windows\system32\clusapi.dll
2008-09-17 12:28:33 ----A---- C:\Windows\system32\WSDApi.dll
2008-09-17 12:28:33 ----A---- C:\Windows\system32\QAGENTRT.DLL
2008-09-17 12:28:33 ----A---- C:\Windows\system32\diagperf.dll
2008-09-17 12:28:32 ----A---- C:\Windows\system32\winrsmgr.dll
2008-09-17 12:28:32 ----A---- C:\Windows\system32\mmc.exe
2008-09-17 12:28:31 ----A---- C:\Windows\system32\mtxclu.dll
2008-09-17 12:28:30 ----A---- C:\Windows\system32\vdsbas.dll
2008-09-17 12:28:30 ----A---- C:\Windows\system32\SLC.dll
2008-09-17 12:28:29 ----A---- C:\Windows\system32\swprv.dll
2008-09-17 12:28:29 ----A---- C:\Windows\system32\msi.dll
2008-09-17 12:28:28 ----A---- C:\Windows\system32\comctl32.dll
2008-09-17 12:28:27 ----A---- C:\Windows\system32\MSVidCtl.dll
2008-09-17 12:28:26 ----A---- C:\Windows\system32\msdtckrm.dll
2008-09-17 12:28:26 ----A---- C:\Windows\system32\gpsvc.dll
2008-09-17 12:28:25 ----A---- C:\Windows\system32\XPSSHHDR.dll
2008-09-17 12:28:25 ----A---- C:\Windows\system32\samsrv.dll
2008-09-17 12:28:25 ----A---- C:\Windows\system32\FWPUCLNT.DLL
2008-09-17 12:28:24 ----A---- C:\Windows\system32\sbe.dll
2008-09-17 12:28:24 ----A---- C:\Windows\system32\mfc42u.dll
2008-09-17 12:28:24 ----A---- C:\Windows\system32\esent.dll
2008-09-17 12:28:23 ----A---- C:\Windows\system32\wecutil.exe
2008-09-17 12:28:23 ----A---- C:\Windows\system32\usp10.dll
2008-09-17 12:28:23 ----A---- C:\Windows\system32\sdengin2.dll
2008-09-17 12:28:22 ----A---- C:\Windows\system32\mfc42.dll
2008-09-17 12:28:22 ----A---- C:\Windows\system32\gacinstall.dll
2008-09-17 12:28:22 ----A---- C:\Windows\system32\cmipnpinstall.dll
2008-09-17 12:28:22 ----A---- C:\Windows\system32\cmicryptinstall.dll
2008-09-17 12:28:21 ----A---- C:\Windows\system32\comsvcs.dll
2008-09-17 12:28:20 ----A---- C:\Windows\system32\crypt32.dll
2008-09-17 12:28:19 ----A---- C:\Windows\system32\WSManMigrationPlugin.dll
2008-09-17 12:28:19 ----A---- C:\Windows\system32\certutil.exe
2008-09-17 12:28:18 ----A---- C:\Windows\system32\mswsock.dll
2008-09-17 12:28:17 ----A---- C:\Windows\explorer.exe
2008-09-17 12:28:16 ----A---- C:\Windows\system32\wmdrmsdk.dll
2008-09-17 12:28:16 ----A---- C:\Windows\system32\oleaut32.dll
2008-09-17 12:28:16 ----A---- C:\Windows\system32\FirewallAPI.dll
2008-09-17 12:28:15 ----A---- C:\Windows\system32\sqlceqp30.dll
2008-09-17 12:28:15 ----A---- C:\Windows\system32\setupapi.dll
2008-09-17 12:28:15 ----A---- C:\Windows\system32\lsm.exe
2008-09-17 12:28:14 ----A---- C:\Windows\system32\wecsvc.dll
2008-09-17 12:28:14 ----A---- C:\Windows\system32\sdohlp.dll
2008-09-17 12:28:14 ----A---- C:\Windows\system32\bcrypt.dll
2008-09-17 12:28:14 ----A---- C:\Windows\system32\AuxiliaryDisplayDriverLib.dll
2008-09-17 12:28:13 ----A---- C:\Windows\system32\schannel.dll
2008-09-17 12:28:13 ----A---- C:\Windows\system32\msv1_0.dll
2008-09-17 12:28:13 ----A---- C:\Windows\system32\iphlpsvc.dll
2008-09-17 12:28:12 ----A---- C:\Windows\system32\p2psvc.dll
2008-09-17 12:28:12 ----A---- C:\Windows\system32\eapp3hst.dll
2008-09-17 12:28:11 ----A---- C:\Windows\system32\wmpmde.dll
2008-09-17 12:28:11 ----A---- C:\Windows\system32\thumbcache.dll
2008-09-17 12:28:11 ----A---- C:\Windows\system32\mcmde.dll
2008-09-17 12:28:10 ----A---- C:\Windows\system32\riched20.dll
2008-09-17 12:28:10 ----A---- C:\Windows\system32\autofmt.exe
2008-09-17 12:28:10 ----A---- C:\Windows\system32\autoconv.exe
2008-09-17 12:28:09 ----A---- C:\Windows\system32\WinSAT.exe
2008-09-17 12:28:09 ----A---- C:\Windows\system32\vdsutil.dll
2008-09-17 12:28:09 ----A---- C:\Windows\system32\imapi2fs.dll
2008-09-17 12:28:09 ----A---- C:\Windows\system32\d3d10_1.dll
2008-09-17 12:28:09 ----A---- C:\Windows\system32\autochk.exe
2008-09-17 12:28:08 ----A---- C:\Windows\system32\authui.dll
2008-09-17 12:28:08 ----A---- C:\Windows\system32\authfwcfg.dll
2008-09-17 12:28:06 ----A---- C:\Windows\system32\wevtapi.dll
2008-09-17 12:28:06 ----A---- C:\Windows\system32\dmvdsitf.dll
2008-09-17 12:28:06 ----A---- C:\Windows\system32\d3d10_1core.dll
2008-09-17 12:28:06 ----A---- C:\Windows\system32\comuid.dll
2008-09-17 12:28:06 ----A---- C:\Windows\system32\comdlg32.dll
2008-09-17 12:28:06 ----A---- C:\Windows\system32\browseui.dll
2008-09-17 12:28:05 ----A---- C:\Windows\system32\WSDMon.dll
2008-09-17 12:28:05 ----A---- C:\Windows\system32\mscories.dll
2008-09-17 12:28:05 ----A---- C:\Windows\system32\eapphost.dll
2008-09-17 12:28:04 ----A---- C:\Windows\system32\wevtfwd.dll
2008-09-17 12:28:04 ----A---- C:\Windows\system32\uexfat.dll
2008-09-17 12:28:04 ----A---- C:\Windows\system32\rasmans.dll
2008-09-17 12:28:03 ----A---- C:\Windows\system32\untfs.dll
2008-09-17 12:28:03 ----A---- C:\Windows\system32\eappcfg.dll
2008-09-17 12:28:02 ----A---- C:\Windows\system32\sqlcese30.dll
2008-09-17 12:28:02 ----A---- C:\Windows\system32\pcaui.dll
2008-09-17 12:28:02 ----A---- C:\Windows\system32\iassam.dll
2008-09-17 12:28:02 ----A---- C:\Windows\system32\DfrgNtfs.exe
2008-09-17 12:28:01 ----A---- C:\Windows\system32\wlansvc.dll
2008-09-17 12:28:01 ----A---- C:\Windows\system32\whealogr.dll
2008-09-17 12:27:57 ----A---- C:\Windows\system32\dot3svc.dll
2008-09-17 12:27:53 ----A---- C:\Windows\system32\rdpwsx.dll
2008-09-17 12:27:52 ----A---- C:\Windows\system32\winhttp.dll
2008-09-17 12:27:52 ----A---- C:\Windows\system32\mssha.dll
2008-09-17 12:27:52 ----A---- C:\Windows\system32\msdrm.dll
2008-09-17 12:27:51 ----A---- C:\Windows\system32\zipfldr.dll
2008-09-17 12:27:51 ----A---- C:\Windows\system32\WsmAuto.dll
2008-09-17 12:27:51 ----A---- C:\Windows\system32\evr.dll
2008-09-17 12:27:51 ----A---- C:\Windows\system32\dfrgui.exe
2008-09-17 12:27:50 ----A---- C:\Windows\system32\rpcss.dll
2008-09-17 12:27:50 ----A---- C:\Windows\system32\rasppp.dll
2008-09-17 12:27:50 ----A---- C:\Windows\system32\nlasvc.dll
2008-09-17 12:27:50 ----A---- C:\Windows\system32\BFE.DLL
2008-09-17 12:27:49 ----A---- C:\Windows\system32\ncrypt.dll
2008-09-17 12:27:48 ----A---- C:\Windows\system32\WMVCORE.DLL
2008-09-17 12:27:48 ----A---- C:\Windows\system32\wmdrmdev.dll
2008-09-17 12:27:48 ----A---- C:\Windows\system32\msrepl40.dll
2008-09-17 12:27:48 ----A---- C:\Windows\system32\audiosrv.dll
2008-09-17 12:27:46 ----A---- C:\Windows\system32\printui.dll
2008-09-17 12:27:46 ----A---- C:\Windows\system32\ddraw.dll
2008-09-17 12:27:45 ----A---- C:\Windows\system32\WsmWmiPl.dll
2008-09-17 12:27:45 ----A---- C:\Windows\system32\rastls.dll
2008-09-17 12:27:45 ----A---- C:\Windows\system32\dhcpcsvc6.dll
2008-09-17 12:27:44 ----A---- C:\Windows\system32\WebClnt.dll
2008-09-17 12:27:44 ----A---- C:\Windows\system32\themecpl.dll
2008-09-17 12:27:44 ----A---- C:\Windows\system32\objsel.dll
2008-09-17 12:27:43 ----A---- C:\Windows\system32\dbghelp.dll
2008-09-17 12:27:42 ----A---- C:\Windows\system32\sqlsrv32.dll
2008-09-17 12:27:42 ----A---- C:\Windows\system32\QAGENT.DLL
2008-09-17 12:27:42 ----A---- C:\Windows\system32\iasnap.dll
2008-09-17 12:27:41 ----A---- C:\Windows\system32\w32time.dll
2008-09-17 12:27:40 ----A---- C:\Windows\system32\PresentationHost.exe
2008-09-17 12:27:40 ----A---- C:\Windows\system32\ncryptui.dll
2008-09-17 12:27:40 ----A---- C:\Windows\system32\icm32.dll
2008-09-17 12:27:40 ----A---- C:\Windows\system32\azroles.dll
2008-09-17 12:27:39 ----A---- C:\Windows\system32\wmdrmnet.dll
2008-09-17 12:27:39 ----A---- C:\Windows\system32\WerFaultSecure.exe
2008-09-17 12:27:39 ----A---- C:\Windows\system32\iprtrmgr.dll
2008-09-17 12:27:38 ----A---- C:\Windows\system32\spoolss.dll
2008-09-17 12:27:38 ----A---- C:\Windows\system32\infocardapi.dll
2008-09-17 12:27:37 ----A---- C:\Windows\system32\msctf.dll
2008-09-17 12:27:36 ----A---- C:\Windows\system32\winsrv.dll
2008-09-17 12:27:36 ----A---- C:\Windows\system32\taskschd.dll
2008-09-17 12:27:36 ----A---- C:\Windows\system32\bcdedit.exe
2008-09-17 12:27:36 ----A---- C:\Windows\system32\basecsp.dll
2008-09-17 12:27:35 ----A---- C:\Windows\system32\wlangpui.dll
2008-09-17 12:27:34 ----A---- C:\Windows\system32\scksp.dll
2008-09-17 12:27:34 ----A---- C:\Windows\system32\mstlsapi.dll
2008-09-17 12:27:34 ----A---- C:\Windows\system32\AudioEng.dll
2008-09-17 12:27:33 ----A---- C:\Windows\system32\winsta.dll
2008-09-17 12:27:33 ----A---- C:\Windows\system32\netprofm.dll
2008-09-17 12:27:33 ----A---- C:\Windows\system32\dbgeng.dll
2008-09-17 12:27:32 ----A---- C:\Windows\system32\netcfgx.dll
2008-09-17 12:27:31 ----A---- C:\Windows\system32\rsaenh.dll
2008-09-17 12:27:30 ----A---- C:\Windows\system32\taskcomp.dll
2008-09-17 12:27:30 ----A---- C:\Windows\system32\cdosys.dll
2008-09-17 12:27:29 ----A---- C:\Windows\system32\winlogon.exe
2008-09-17 12:27:29 ----A---- C:\Windows\system32\wercon.exe
2008-09-17 12:27:29 ----A---- C:\Windows\system32\lpksetup.exe
2008-09-17 12:27:28 ----A---- C:\Windows\system32\sqmapi.dll
2008-09-17 12:27:28 ----A---- C:\Windows\system32\dfshim.dll
2008-09-17 12:27:27 ----A---- C:\Windows\system32\wlansec.dll
2008-09-17 12:27:27 ----A---- C:\Windows\system32\msdtcuiu.dll
2008-09-17 12:27:26 ----A---- C:\Windows\system32\certcli.dll
2008-09-17 12:27:26 ----A---- C:\Windows\system32\apds.dll
2008-09-17 12:27:25 ----A---- C:\Windows\system32\mprddm.dll
2008-09-17 12:27:25 ----A---- C:\Windows\system32\iasrad.dll
2008-09-17 12:27:24 ----A---- C:\Windows\system32\tsgqec.dll
2008-09-17 12:27:24 ----A---- C:\Windows\system32\eapsvc.dll
2008-09-17 12:27:24 ----A---- C:\Windows\system32\AUDIOKSE.dll
2008-09-17 12:27:24 ----A---- C:\Windows\system32\aaclient.dll
2008-09-17 12:27:23 ----A---- C:\Windows\system32\shdocvw.dll
2008-09-17 12:27:23 ----A---- C:\Windows\system32\bcdsrv.dll
2008-09-17 12:27:22 ----A---- C:\Windows\system32\uDWM.dll
2008-09-17 12:27:22 ----A---- C:\Windows\system32\certmgr.dll
2008-09-17 12:27:21 ----A---- C:\Windows\system32\Wldap32.dll
2008-09-17 12:27:21 ----A---- C:\Windows\system32\dnsapi.dll
2008-09-17 12:27:20 ----A---- C:\Windows\system32\msidcrl30.dll
2008-09-17 12:27:19 ----A---- C:\Windows\system32\umpnpmgr.dll
2008-09-17 12:27:18 ----A---- C:\Windows\system32\WMVDECOD.DLL
2008-09-17 12:27:17 ----A---- C:\Windows\system32\pla.dll
2008-09-17 12:27:16 ----A---- C:\Windows\system32\netshell.dll
2008-09-17 12:27:16 ----A---- C:\Windows\system32\dxgi.dll
2008-09-17 12:27:16 ----A---- C:\Windows\system32\dot3gpui.dll
2008-09-17 12:27:15 ----A---- C:\Windows\system32\wmicmiplugin.dll
2008-09-17 12:27:13 ----A---- C:\Windows\system32\shsvcs.dll
2008-09-17 12:27:13 ----A---- C:\Windows\system32\ntprint.dll
2008-09-17 12:27:13 ----A---- C:\Windows\system32\cryptnet.dll
2008-09-17 12:27:13 ----A---- C:\Windows\system32\comsnap.dll
2008-09-17 12:27:12 ----A---- C:\Windows\system32\MMDevAPI.dll
2008-09-17 12:27:11 ----A---- C:\Windows\system32\winmm.dll
2008-09-17 12:27:11 ----A---- C:\Windows\system32\services.exe
2008-09-17 12:27:10 ----A---- C:\Windows\system32\wscsvc.dll
2008-09-17 12:27:10 ----A---- C:\Windows\system32\synceng.dll
2008-09-17 12:27:09 ----A---- C:\Windows\system32\wscisvif.dll
2008-09-17 12:27:09 ----A---- C:\Windows\system32\pnidui.dll
2008-09-17 12:27:09 ----A---- C:\Windows\system32\cmifw.dll
2008-09-17 12:27:07 ----A---- C:\Windows\system32\taskeng.exe
2008-09-17 12:27:07 ----A---- C:\Windows\system32\msjtes40.dll
2008-09-17 12:27:07 ----A---- C:\Windows\system32\msconfig.exe
2008-09-17 12:27:07 ----A---- C:\Windows\system32\iassdo.dll
2008-09-17 12:27:07 ----A---- C:\Windows\system32\cipher.exe
2008-09-17 12:27:06 ----A---- C:\Windows\system32\WMVSDECD.DLL
2008-09-17 12:27:04 ----A---- C:\Windows\system32\tdh.dll
2008-09-17 12:27:04 ----A---- C:\Windows\system32\rasapi32.dll
2008-09-17 12:27:04 ----A---- C:\Windows\system32\imapi2.dll
2008-09-17 12:27:03 ----A---- C:\Windows\system32\uxtheme.dll
2008-09-17 12:27:03 ----A---- C:\Windows\system32\SessEnv.dll
2008-09-17 12:27:03 ----A---- C:\Windows\system32\dot3api.dll
2008-09-17 12:27:03 ----A---- C:\Windows\system32\dmdskmgr.dll
2008-09-17 12:27:01 ----A---- C:\Windows\system32\cmd.exe
2008-09-17 12:27:01 ----A---- C:\Windows\system32\cbsra.exe
 
2008-09-17 12:27:01 ----A---- C:\Windows\system32\AuthFWSnapin.dll
2008-09-17 12:27:00 ----A---- C:\Windows\system32\qdvd.dll
2008-09-17 12:27:00 ----A---- C:\Windows\system32\msscp.dll
2008-09-17 12:26:59 ----A---- C:\Windows\system32\wlanmsm.dll
2008-09-17 12:26:59 ----A---- C:\Windows\system32\wlancfg.dll
2008-09-17 12:26:59 ----A---- C:\Windows\system32\wkssvc.dll
2008-09-17 12:26:59 ----A---- C:\Windows\system32\wevtutil.exe
2008-09-17 12:26:59 ----A---- C:\Windows\system32\srvsvc.dll
2008-09-17 12:26:59 ----A---- C:\Windows\system32\loadperf.dll
2008-09-17 12:26:58 ----A---- C:\Windows\system32\WUDFx.dll
2008-09-17 12:26:58 ----A---- C:\Windows\system32\msdtcVSp1res.dll
2008-09-17 12:26:58 ----A---- C:\Windows\system32\diskpart.exe
2008-09-17 12:26:58 ----A---- C:\Windows\system32\comres.dll
2008-09-17 12:26:57 ----A---- C:\Windows\system32\rpchttp.dll
2008-09-17 12:26:57 ----A---- C:\Windows\system32\rdpdd.dll
2008-09-17 12:26:57 ----A---- C:\Windows\system32\mshtmled.dll
2008-09-17 12:26:57 ----A---- C:\Windows\system32\localsec.dll
2008-09-17 12:26:57 ----A---- C:\Windows\system32\fontext.dll
2008-09-17 12:26:56 ----A---- C:\Windows\system32\wlanapi.dll
2008-09-17 12:26:56 ----A---- C:\Windows\system32\hnetcfg.dll
2008-09-17 12:26:55 ----A---- C:\Windows\system32\WinSATAPI.dll
2008-09-17 12:26:55 ----A---- C:\Windows\system32\dsound.dll
2008-09-17 12:26:54 ----A---- C:\Windows\system32\wsqmcons.exe
2008-09-17 12:26:54 ----A---- C:\Windows\system32\WMADMOD.DLL
2008-09-17 12:26:54 ----A---- C:\Windows\system32\NAPMONTR.DLL
2008-09-17 12:26:53 ----A---- C:\Windows\system32\wlanpref.dll
2008-09-17 12:26:53 ----A---- C:\Windows\system32\profprov.dll
2008-09-17 12:26:53 ----A---- C:\Windows\system32\avifil32.dll
2008-09-17 12:26:52 ----A---- C:\Windows\system32\WindowsCodecs.dll
2008-09-17 12:26:52 ----A---- C:\Windows\system32\RDPENCDD.dll
2008-09-17 12:26:52 ----A---- C:\Windows\system32\filemgmt.dll
2008-09-17 12:26:52 ----A---- C:\Windows\system32\dnsrslvr.dll
2008-09-17 12:26:51 ----A---- C:\Windows\system32\wsecedit.dll
2008-09-17 12:26:51 ----A---- C:\Windows\system32\tracerpt.exe
2008-09-17 12:26:51 ----A---- C:\Windows\system32\SLCommDlg.dll
2008-09-17 12:26:51 ----A---- C:\Windows\system32\PresentationHostProxy.dll
2008-09-17 12:26:51 ----A---- C:\Windows\system32\MuiUnattend.exe
2008-09-17 12:26:51 ----A---- C:\Windows\system32\dhcpcsvc.dll
2008-09-17 12:26:50 ----A---- C:\Windows\system32\WMSPDMOD.DLL
2008-09-17 12:26:50 ----A---- C:\Windows\system32\telnet.exe
2008-09-17 12:26:50 ----A---- C:\Windows\system32\SmartcardCredentialProvider.dll
2008-09-17 12:26:50 ----A---- C:\Windows\system32\P2PGraph.dll
2008-09-17 12:26:50 ----A---- C:\Windows\system32\dwmredir.dll
2008-09-17 12:26:50 ----A---- C:\Windows\system32\AuxiliaryDisplayCpl.dll
2008-09-17 12:26:50 ----A---- C:\Windows\system32\apphelp.dll
2008-09-17 12:26:49 ----A---- C:\Windows\system32\wininit.exe
2008-09-17 12:26:49 ----A---- C:\Windows\system32\gpresult.exe
2008-09-17 12:26:49 ----A---- C:\Windows\system32\dwm.exe
2008-09-17 12:26:48 ----A---- C:\Windows\system32\spp.dll
2008-09-17 12:26:48 ----A---- C:\Windows\system32\rasdlg.dll
2008-09-17 12:26:48 ----A---- C:\Windows\system32\QSHVHOST.DLL
2008-09-17 12:26:48 ----A---- C:\Windows\system32\iassvcs.dll
2008-09-17 12:26:48 ----A---- C:\Windows\system32\azroleui.dll
2008-09-17 12:26:47 ----A---- C:\Windows\system32\mscorier.dll
2008-09-17 12:26:47 ----A---- C:\Windows\system32\iashost.exe
2008-09-17 12:26:47 ----A---- C:\Windows\HelpPane.exe
2008-09-17 12:26:46 ----A---- C:\Windows\system32\PortableDeviceApi.dll
2008-09-17 12:26:46 ----A---- C:\Windows\system32\mcbuilder.exe
2008-09-17 12:26:45 ----A---- C:\Windows\system32\srrstr.dll
2008-09-17 12:26:45 ----A---- C:\Windows\system32\spwizeng.dll
2008-09-17 12:26:45 ----A---- C:\Windows\system32\SLUI.exe
2008-09-17 12:26:44 ----A---- C:\Windows\system32\wecapi.dll
2008-09-17 12:26:44 ----A---- C:\Windows\system32\unbcl.dll
2008-09-17 12:26:44 ----A---- C:\Windows\system32\rasmontr.dll
2008-09-17 12:26:44 ----A---- C:\Windows\system32\msra.exe
2008-09-17 12:26:44 ----A---- C:\Windows\system32\lltdsvc.dll
2008-09-17 12:26:43 ----A---- C:\Windows\system32\tcpmon.dll
2008-09-17 12:26:43 ----A---- C:\Windows\system32\shrink.dll
2008-09-17 12:26:42 ----A---- C:\Windows\system32\IPHLPAPI.DLL
2008-09-17 12:26:42 ----A---- C:\Windows\system32\gpedit.dll
2008-09-17 12:26:42 ----A---- C:\Windows\system32\brcpl.dll
2008-09-17 12:26:41 ----A---- C:\Windows\system32\WMPEncEn.dll
2008-09-17 12:26:41 ----A---- C:\Windows\system32\oleacc.dll
2008-09-17 12:26:41 ----A---- C:\Windows\system32\iashlpr.dll
2008-09-17 12:26:40 ----A---- C:\Windows\system32\msdri.dll
2008-09-17 12:26:39 ----A---- C:\Windows\system32\raschap.dll
2008-09-17 12:26:38 ----A---- C:\Windows\system32\regsvc.dll
2008-09-17 12:26:38 ----A---- C:\Windows\system32\framedynos.dll
2008-09-17 12:26:38 ----A---- C:\Windows\system32\advpack.dll
2008-09-17 12:26:37 ----A---- C:\Windows\system32\ntvdm.exe
2008-09-17 12:26:37 ----A---- C:\Windows\system32\fdWSD.dll
2008-09-17 12:26:36 ----A---- C:\Windows\system32\vsstrace.dll
2008-09-17 12:26:36 ----A---- C:\Windows\system32\PerfCenterCPL.dll
2008-09-17 12:26:36 ----A---- C:\Windows\system32\ipsmsnap.dll
2008-09-17 12:26:35 ----A---- C:\Windows\system32\wpdshext.dll
2008-09-17 12:26:35 ----A---- C:\Windows\system32\wdc.dll
2008-09-17 12:26:35 ----A---- C:\Windows\system32\ntlanman.dll
2008-09-17 12:26:34 ----A---- C:\Windows\system32\NetProjW.dll
2008-09-17 12:26:34 ----A---- C:\Windows\system32\l2nacp.dll
2008-09-17 12:26:34 ----A---- C:\Windows\system32\iedkcs32.dll
2008-09-17 12:26:33 ----A---- C:\Windows\system32\Storprop.dll
2008-09-17 12:26:33 ----A---- C:\Windows\system32\netman.dll
2008-09-17 12:26:33 ----A---- C:\Windows\system32\ieapfltr.dll
2008-09-17 12:26:33 ----A---- C:\Windows\system32\framedyn.dll
2008-09-17 12:26:33 ----A---- C:\Windows\system32\dssenh.dll
2008-09-17 12:26:32 ----A---- C:\Windows\system32\WlanMM.dll
2008-09-17 12:26:32 ----A---- C:\Windows\system32\certreq.exe
2008-09-17 12:26:32 ----A---- C:\Windows\system32\adsnt.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\WsmProv.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\WLanConn.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\tcpipcfg.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\sxs.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\profsvc.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\PhotoMetadataHandler.dll
2008-09-17 12:26:31 ----A---- C:\Windows\system32\KMSVC.DLL
2008-09-17 12:26:30 ----A---- C:\Windows\system32\WUDFHost.exe
2008-09-17 12:26:30 ----A---- C:\Windows\system32\wlanhlp.dll
2008-09-17 12:26:30 ----A---- C:\Windows\system32\ncsi.dll
2008-09-17 12:26:30 ----A---- C:\Windows\system32\IPBusEnum.dll
2008-09-17 12:26:29 ----A---- C:\Windows\system32\wusa.exe
2008-09-17 12:26:29 ----A---- C:\Windows\system32\WerFault.exe
2008-09-17 12:26:29 ----A---- C:\Windows\system32\VAN.dll
2008-09-17 12:26:29 ----A---- C:\Windows\system32\userenv.dll
2008-09-17 12:26:29 ----A---- C:\Windows\system32\umb.dll
2008-09-17 12:26:29 ----A---- C:\Windows\system32\ie4uinit.exe
2008-09-17 12:26:29 ----A---- C:\Windows\system32\fundisc.dll
2008-09-17 12:26:28 ----A---- C:\Windows\system32\catsrvut.dll
2008-09-17 12:26:26 ----A---- C:\Windows\system32\puiobj.dll
2008-09-17 12:26:26 ----A---- C:\Windows\system32\cryptui.dll
2008-09-17 12:26:25 ----A---- C:\Windows\system32\photowiz.dll
2008-09-17 12:26:25 ----A---- C:\Windows\system32\netid.dll
2008-09-17 12:26:25 ----A---- C:\Windows\system32\MdSched.exe
2008-09-17 12:26:25 ----A---- C:\Windows\system32\InkEd.dll
2008-09-17 12:26:25 ----A---- C:\Windows\system32\dps.dll
2008-09-17 12:26:24 ----A---- C:\Windows\system32\netcenter.dll
2008-09-17 12:26:23 ----A---- C:\Windows\system32\ipsecsnp.dll
2008-09-17 12:26:22 ----A---- C:\Windows\system32\ws2_32.dll
2008-09-17 12:26:22 ----A---- C:\Windows\system32\WinSCard.dll
2008-09-17 12:26:22 ----A---- C:\Windows\system32\spbcd.dll
2008-09-17 12:26:22 ----A---- C:\Windows\system32\msinfo32.exe
2008-09-17 12:26:21 ----A---- C:\Windows\system32\winrs.exe
2008-09-17 12:26:21 ----A---- C:\Windows\system32\secur32.dll
2008-09-17 12:26:21 ----A---- C:\Windows\system32\odbcjt32.dll
2008-09-17 12:26:21 ----A---- C:\Windows\system32\ntdsapi.dll
2008-09-17 12:26:21 ----A---- C:\Windows\system32\NAPSTAT.EXE
2008-09-17 12:26:19 ----A---- C:\Windows\system32\prnntfy.dll
2008-09-17 12:26:19 ----A---- C:\Windows\system32\mblctr.exe
2008-09-17 12:26:18 ----A---- C:\Windows\system32\cryptsvc.dll
2008-09-17 12:26:17 ----A---- C:\Windows\system32\schtasks.exe
2008-09-17 12:26:17 ----A---- C:\Windows\system32\RelMon.dll
2008-09-17 12:26:17 ----A---- C:\Windows\system32\msfeeds.dll
2008-09-17 12:26:17 ----A---- C:\Windows\system32\iasacct.dll
2008-09-17 12:26:16 ----A---- C:\Windows\system32\pdh.dll
2008-09-17 12:26:16 ----A---- C:\Windows\system32\dmdlgs.dll
2008-09-17 12:26:16 ----A---- C:\Windows\system32\dhcpsapi.dll
2008-09-17 12:26:16 ----A---- C:\Windows\system32\activeds.dll
2008-09-17 12:26:15 ----A---- C:\Windows\system32\netdiagfx.dll
2008-09-17 12:26:15 ----A---- C:\Windows\system32\catsrv.dll
2008-09-17 12:26:14 ----A---- C:\Windows\system32\TSpkg.dll
2008-09-17 12:26:14 ----A---- C:\Windows\system32\FirewallControlPanel.exe
2008-09-17 12:26:14 ----A---- C:\Windows\system32\dfrgfat.exe
2008-09-17 12:26:13 ----A---- C:\Windows\system32\wvc.dll
2008-09-17 12:26:13 ----A---- C:\Windows\system32\qwave.dll
2008-09-17 12:26:13 ----A---- C:\Windows\system32\fdWCN.dll
2008-09-17 12:26:12 ----A---- C:\Windows\system32\winrm.vbs
2008-09-17 12:26:12 ----A---- C:\Windows\system32\dot3msm.dll
2008-09-17 12:26:12 ----A---- C:\Windows\system32\AudioSes.dll
2008-09-17 12:26:11 ----A---- C:\Windows\system32\netcorehc.dll
2008-09-17 12:26:11 ----A---- C:\Windows\system32\dot3cfg.dll
2008-09-17 12:26:10 ----A---- C:\Windows\system32\rastapi.dll
2008-09-17 12:26:10 ----A---- C:\Windows\system32\NAPHLPR.DLL
2008-09-17 12:26:10 ----A---- C:\Windows\system32\MSMPEG2ENC.DLL
2008-09-17 12:26:10 ----A---- C:\Windows\system32\msacm32.dll
2008-09-17 12:26:10 ----A---- C:\Windows\system32\ifmon.dll
2008-09-17 12:26:09 ----A---- C:\Windows\system32\wow32.dll
2008-09-17 12:26:09 ----A---- C:\Windows\system32\adsldp.dll
2008-09-17 12:26:08 ----A---- C:\Windows\system32\shsetup.dll
2008-09-17 12:26:07 ----A---- C:\Windows\system32\ntshrui.dll
2008-09-17 12:26:07 ----A---- C:\Windows\system32\msdt.dll
2008-09-17 12:26:07 ----A---- C:\Windows\system32\els.dll
2008-09-17 12:26:07 ----A---- C:\Windows\system32\clbcatq.dll
2008-09-17 12:26:06 ----A---- C:\Windows\system32\wscntfy.dll
2008-09-17 12:26:06 ----A---- C:\Windows\system32\WMNetMgr.dll
2008-09-17 12:26:06 ----A---- C:\Windows\system32\QUTIL.DLL
2008-09-17 12:26:06 ----A---- C:\Windows\system32\iasdatastore.dll
2008-09-17 12:26:05 ----A---- C:\Windows\system32\stobject.dll
2008-09-17 12:26:05 ----A---- C:\Windows\system32\sdrsvc.dll
2008-09-17 12:26:05 ----A---- C:\Windows\system32\ipnathlp.dll
2008-09-17 12:26:05 ----A---- C:\Windows\system32\iasrecst.dll
2008-09-17 12:26:05 ----A---- C:\Windows\system32\fdSSDP.dll
2008-09-17 12:26:04 ----A---- C:\Windows\system32\net1.exe
2008-09-17 12:26:03 ----A---- C:\Windows\system32\wlanui.dll
2008-09-17 12:26:03 ----A---- C:\Windows\system32\dsprop.dll
2008-09-17 12:26:03 ----A---- C:\Windows\system32\Defrag.exe
2008-09-17 12:26:02 ----A---- C:\Windows\system32\wlgpclnt.dll
2008-09-17 12:26:02 ----A---- C:\Windows\system32\upnphost.dll
2008-09-17 12:26:02 ----A---- C:\Windows\system32\smss.exe
2008-09-17 12:26:02 ----A---- C:\Windows\system32\nci.dll
2008-09-17 12:26:02 ----A---- C:\Windows\system32\mprmsg.dll
2008-09-17 12:26:02 ----A---- C:\Windows\system32\adsldpc.dll
2008-09-17 12:26:01 ----A---- C:\Windows\system32\systemcpl.dll
2008-09-17 12:26:01 ----A---- C:\Windows\system32\rasman.dll
2008-09-17 12:26:01 ----A---- C:\Windows\system32\ActiveContentWizard.dll
2008-09-17 12:26:00 ----A---- C:\Windows\system32\P2P.dll
2008-09-17 12:26:00 ----A---- C:\Windows\system32\msftedit.dll
2008-09-17 12:26:00 ----A---- C:\Windows\system32\CompatUI.dll
2008-09-17 12:25:59 ----A---- C:\Windows\system32\rascfg.dll
2008-09-17 12:25:59 ----A---- C:\Windows\system32\PresentationSettings.exe
2008-09-17 12:25:59 ----A---- C:\Windows\system32\MSAC3ENC.DLL
2008-09-17 12:25:59 ----A---- C:\Windows\system32\loghours.dll
2008-09-17 12:25:59 ----A---- C:\Windows\system32\fde.dll
2008-09-17 12:25:58 ----A---- C:\Windows\system32\t2embed.dll
2008-09-17 12:25:58 ----A---- C:\Windows\system32\oleprn.dll
2008-09-17 12:25:58 ----A---- C:\Windows\system32\L2SecHC.dll
2008-09-17 12:25:57 ----A---- C:\Windows\system32\MigAutoPlay.exe
2008-09-17 12:25:57 ----A---- C:\Windows\system32\dxdiag.exe
2008-09-17 12:25:56 ----A---- C:\Windows\system32\Wpc.dll
2008-09-17 12:25:56 ----A---- C:\Windows\system32\wdigest.dll
2008-09-17 12:25:56 ----A---- C:\Windows\system32\DFDWiz.exe
2008-09-17 12:25:56 ----A---- C:\Windows\system32\AuxiliaryDisplayServices.dll
2008-09-17 12:25:55 ----A---- C:\Windows\system32\setupcl.exe
2008-09-17 12:25:55 ----A---- C:\Windows\system32\rtm.dll
2008-09-17 12:25:55 ----A---- C:\Windows\system32\msutb.dll
2008-09-17 12:25:55 ----A---- C:\Windows\system32\mprdim.dll
2008-09-17 12:25:55 ----A---- C:\Windows\system32\gpapi.dll
2008-09-17 12:25:54 ----A---- C:\Windows\system32\scansetting.dll
2008-09-17 12:25:54 ----A---- C:\Windows\system32\devmgr.dll
2008-09-17 12:25:53 ----A---- C:\Windows\system32\wiaservc.dll
2008-09-17 12:25:53 ----A---- C:\Windows\system32\NAPCRYPT.DLL
2008-09-17 12:25:52 ----A---- C:\Windows\system32\msihnd.dll
2008-09-17 12:25:52 ----A---- C:\Windows\system32\ifsutil.dll
2008-09-17 12:25:52 ----A---- C:\Windows\system32\CertEnrollUI.dll
2008-09-17 12:25:51 ----A---- C:\Windows\system32\wdi.dll
2008-09-17 12:25:51 ----A---- C:\Windows\system32\kdusb.dll
2008-09-17 12:25:51 ----A---- C:\Windows\system32\dimsroam.dll
2008-09-17 12:25:51 ----A---- C:\Windows\system32\actxprxy.dll
2008-09-17 12:25:50 ----A---- C:\Windows\system32\wscapi.dll
2008-09-17 12:25:50 ----A---- C:\Windows\system32\WinFXDocObj.exe
2008-09-17 12:25:50 ----A---- C:\Windows\system32\mswmdm.dll
2008-09-17 12:25:49 ----A---- C:\Windows\system32\usbmon.dll
2008-09-17 12:25:49 ----A---- C:\Windows\system32\SyncCenter.dll
2008-09-17 12:25:49 ----A---- C:\Windows\system32\spoolsv.exe
2008-09-17 12:25:49 ----A---- C:\Windows\system32\imagehlp.dll
2008-09-17 12:25:49 ----A---- C:\Windows\system32\BOOTVID.DLL
2008-09-17 12:25:49 ----A---- C:\Windows\system32\audiodg.exe
2008-09-17 12:25:48 ----A---- C:\Windows\system32\wlandlg.dll
2008-09-17 12:25:48 ----A---- C:\Windows\system32\vssadmin.exe
2008-09-17 12:25:48 ----A---- C:\Windows\system32\uudf.dll
2008-09-17 12:25:48 ----A---- C:\Windows\system32\regapi.dll
2008-09-17 12:25:48 ----A---- C:\Windows\system32\PresentationCFFRasterizerNative_v0300.dll
2008-09-17 12:25:48 ----A---- C:\Windows\system32\PortableDeviceWMDRM.dll
2008-09-17 12:25:48 ----A---- C:\Windows\system32\mycomput.dll
2008-09-17 12:25:48 ----A---- C:\Windows\system32\msls31.dll
2008-09-17 12:25:47 ----A---- C:\Windows\system32\scecli.dll
2008-09-17 12:25:46 ----A---- C:\Windows\system32\sud.dll
2008-09-17 12:25:46 ----A---- C:\Windows\system32\SCardSvr.dll
2008-09-17 12:25:46 ----A---- C:\Windows\system32\newdev.dll
2008-09-17 12:25:46 ----A---- C:\Windows\system32\mstask.dll
2008-09-17 12:25:46 ----A---- C:\Windows\system32\mspaint.exe
2008-09-17 12:25:46 ----A---- C:\Windows\system32\kdcom.dll
2008-09-17 12:25:45 ----A---- C:\Windows\system32\termmgr.dll
2008-09-17 12:25:45 ----A---- C:\Windows\system32\ssdpsrv.dll
2008-09-17 12:25:45 ----A---- C:\Windows\system32\samlib.dll
2008-09-17 12:25:45 ----A---- C:\Windows\system32\puiapi.dll
2008-09-17 12:25:45 ----A---- C:\Windows\system32\duser.dll
2008-09-17 12:25:44 ----A---- C:\Windows\system32\tapisrv.dll
2008-09-17 12:25:44 ----A---- C:\Windows\system32\mtxoci.dll
2008-09-17 12:25:44 ----A---- C:\Windows\system32\inetpp.dll
2008-09-17 12:25:44 ----A---- C:\Windows\system32\cic.dll
2008-09-17 12:25:44 ----A---- C:\Windows\system32\adtschema.dll
2008-09-17 12:25:43 ----A---- C:\Windows\system32\wisptis.exe
2008-09-17 12:25:43 ----A---- C:\Windows\system32\SLUINotify.dll
2008-09-17 12:25:43 ----A---- C:\Windows\system32\Robocopy.exe
2008-09-17 12:25:43 ----A---- C:\Windows\system32\input.dll
2008-09-17 12:25:43 ----A---- C:\Windows\system32\iasads.dll
2008-09-17 12:25:43 ----A---- C:\Windows\system32\AzSqlExt.dll
2008-09-17 12:25:42 ----A---- C:\Windows\system32\PortableDeviceTypes.dll
2008-09-17 12:25:42 ----A---- C:\Windows\system32\cscapi.dll
2008-09-17 12:25:42 ----A---- C:\Windows\system32\authz.dll
2008-09-17 12:25:41 ----A---- C:\Windows\system32\WUDFPlatform.dll
2008-09-17 12:25:41 ----A---- C:\Windows\system32\sdshext.dll
2008-09-17 12:25:41 ----A---- C:\Windows\system32\netiohlp.dll
2008-09-17 12:25:40 ----A---- C:\Windows\system32\webcheck.dll
2008-09-17 12:25:40 ----A---- C:\Windows\system32\verifier.exe
2008-09-17 12:25:40 ----A---- C:\Windows\system32\msdtclog.dll
2008-09-17 12:25:40 ----A---- C:\Windows\system32\msdt.exe
2008-09-17 12:25:40 ----A---- C:\Windows\system32\cmdial32.dll
2008-09-17 12:25:39 ----A---- C:\Windows\system32\wpcsvc.dll
2008-09-17 12:25:39 ----A---- C:\Windows\system32\themeui.dll
2008-09-17 12:25:39 ----A---- C:\Windows\system32\slcinst.dll
2008-09-17 12:25:39 ----A---- C:\Windows\system32\PortableDeviceClassExtension.dll
2008-09-17 12:25:39 ----A---- C:\Windows\system32\d3d8.dll
2008-09-17 12:25:38 ----A---- C:\Windows\system32\wintrust.dll
2008-09-17 12:25:38 ----A---- C:\Windows\system32\dxtmsft.dll
2008-09-17 12:25:37 ----A---- C:\Windows\system32\vdsldr.exe
2008-09-17 12:25:37 ----A---- C:\Windows\system32\oledlg.dll
2008-09-17 12:25:37 ----A---- C:\Windows\system32\clfsw32.dll
2008-09-17 12:25:36 ----A---- C:\Windows\system32\wpccpl.dll
2008-09-17 12:25:36 ----A---- C:\Windows\system32\SndVol.exe
2008-09-17 12:25:36 ----A---- C:\Windows\system32\rasgcw.dll
2008-09-17 12:25:36 ----A---- C:\Windows\system32\ntmarta.dll
2008-09-17 12:25:36 ----A---- C:\Windows\system32\mmcbase.dll
2008-09-17 12:25:36 ----A---- C:\Windows\system32\icardie.dll
2008-09-17 12:25:35 ----A---- C:\Windows\system32\WMPhoto.dll
2008-09-17 12:25:35 ----A---- C:\Windows\system32\SnippingTool.exe
2008-09-17 12:25:35 ----A---- C:\Windows\system32\pnpsetup.dll
2008-09-17 12:25:35 ----A---- C:\Windows\system32\mlang.dll
2008-09-17 12:25:35 ----A---- C:\Windows\system32\icfupgd.dll
2008-09-17 12:25:34 ----A---- C:\Windows\system32\rasqec.dll
2008-09-17 12:25:34 ----A---- C:\Windows\system32\ncobjapi.dll
2008-09-17 12:25:34 ----A---- C:\Windows\system32\msrd3x40.dll
2008-09-17 12:25:34 ----A---- C:\Windows\system32\msaatext.dll
2008-09-17 12:25:34 ----A---- C:\Windows\system32\mpr.dll
2008-09-17 12:25:34 ----A---- C:\Windows\system32\diskraid.exe
2008-09-17 12:25:33 ----A---- C:\Windows\system32\wpd_ci.dll
2008-09-17 12:25:33 ----A---- C:\Windows\system32\syssetup.dll
2008-09-17 12:25:33 ----A---- C:\Windows\system32\slmgr.vbs
2008-09-17 12:25:33 ----A---- C:\Windows\system32\nslookup.exe
2008-09-17 12:25:33 ----A---- C:\Windows\system32\accessibilitycpl.dll
2008-09-17 12:25:32 ----A---- C:\Windows\system32\wtsapi32.dll
2008-09-17 12:25:32 ----A---- C:\Windows\system32\unlodctr.exe
2008-09-17 12:25:32 ----A---- C:\Windows\system32\mscms.dll
2008-09-17 12:25:32 ----A---- C:\Windows\system32\lodctr.exe
2008-09-17 12:25:32 ----A---- C:\Windows\system32\extmgr.dll
2008-09-17 12:25:31 ----A---- C:\Windows\system32\ulib.dll
2008-09-17 12:25:31 ----A---- C:\Windows\system32\sethc.exe
2008-09-17 12:25:31 ----A---- C:\Windows\system32\pnpui.dll
2008-09-17 12:25:31 ----A---- C:\Windows\system32\iaspolcy.dll
2008-09-17 12:25:31 ----A---- C:\Windows\system32\fontsub.dll
2008-09-17 12:25:31 ----A---- C:\Windows\system32\dxdiagn.dll
2008-09-17 12:25:31 ----A---- C:\Windows\system32\cabinet.dll
2008-09-17 12:25:30 ----A---- C:\Windows\system32\Utilman.exe
2008-09-17 12:25:30 ----A---- C:\Windows\system32\trkwks.dll
2008-09-17 12:25:30 ----A---- C:\Windows\system32\oobefldr.dll
2008-09-17 12:25:30 ----A---- C:\Windows\system32\Mcx2Svc.dll
2008-09-17 12:25:29 ----A---- C:\Windows\system32\WSManHTTPConfig.exe
2008-09-17 12:25:29 ----A---- C:\Windows\system32\unattend.dll
2008-09-17 12:25:29 ----A---- C:\Windows\system32\scesrv.dll
2008-09-17 12:25:29 ----A---- C:\Windows\system32\occache.dll
2008-09-17 12:25:29 ----A---- C:\Windows\system32\lnkstub.exe
2008-09-17 12:25:28 ----A---- C:\Windows\system32\ogldrv.dll
2008-09-17 12:25:28 ----A---- C:\Windows\system32\cabview.dll
2008-09-17 12:25:27 ----A---- C:\Windows\system32\wermgr.exe
2008-09-17 12:25:27 ----A---- C:\Windows\system32\dfdts.dll
2008-09-17 12:25:26 ----A---- C:\Windows\system32\wpcao.dll
2008-09-17 12:25:26 ----A---- C:\Windows\system32\bthci.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\tlntsvr.exe
2008-09-17 12:25:25 ----A---- C:\Windows\system32\printfilterpipelineprxy.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\p2pcollab.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\msnetobj.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\iepeers.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\ieaksie.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\eappgnui.dll
2008-09-17 12:25:25 ----A---- C:\Windows\system32\basesrv.dll
2008-09-17 12:25:24 ----A---- C:\Windows\system32\drvinst.exe
2008-09-17 12:25:24 ----A---- C:\Windows\system32\dispdiag.exe
2008-09-17 12:25:24 ----A---- C:\Windows\system32\DHCPQEC.DLL
2008-09-17 12:25:22 ----A---- C:\Windows\system32\dsquery.dll
2008-09-17 12:25:21 ----A---- C:\Windows\system32\mmcss.dll
2008-09-17 12:25:20 ----A---- C:\Windows\system32\verifier.dll
2008-09-17 12:25:20 ----A---- C:\Windows\system32\RstrtMgr.dll
2008-09-17 12:25:20 ----A---- C:\Windows\system32\efsadu.dll
2008-09-17 12:25:19 ----A---- C:\Windows\system32\secproc_ssp_isv.dll
2008-09-17 12:25:19 ----A---- C:\Windows\system32\secproc_ssp.dll
2008-09-17 12:25:19 ----A---- C:\Windows\system32\mprapi.dll
2008-09-17 12:25:18 ----A---- C:\Windows\system32\wercplsupport.dll
2008-09-17 12:25:18 ----A---- C:\Windows\system32\qedit.dll
2008-09-17 12:25:17 ----A---- C:\Windows\system32\WPDSp.dll
2008-09-17 12:25:17 ----A---- C:\Windows\system32\WMVENCOD.DLL
2008-09-17 12:25:16 ----A---- C:\Windows\system32\WPDShServiceObj.dll
2008-09-17 12:25:16 ----A---- C:\Windows\system32\setupugc.exe
2008-09-17 12:25:16 ----A---- C:\Windows\system32\msoeacct.dll
2008-09-17 12:25:16 ----A---- C:\Windows\system32\icacls.exe
2008-09-17 12:25:16 ----A---- C:\Windows\system32\d3d10core.dll
2008-09-17 12:25:15 ----A---- C:\Windows\system32\networkmap.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\wiascanprofiles.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\wiaaut.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\QSVRMGMT.DLL
2008-09-17 12:25:14 ----A---- C:\Windows\system32\pnrpnsp.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\pngfilt.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\p2pnetsh.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\msdmo.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\iscsiexe.dll
2008-09-17 12:25:14 ----A---- C:\Windows\system32\consent.exe
2008-09-17 12:25:13 ----A---- C:\Windows\system32\xactsrv.dll
2008-09-17 12:25:13 ----A---- C:\Windows\system32\usercpl.dll
2008-09-17 12:25:13 ----A---- C:\Windows\system32\PNPXAssocPrx.dll
2008-09-17 12:25:13 ----A---- C:\Windows\system32\PNPXAssoc.dll
2008-09-17 12:25:13 ----A---- C:\Windows\system32\msrdc.dll
2008-09-17 12:25:13 ----A---- C:\Windows\system32\lsass.exe
2008-09-17 12:25:13 ----A---- C:\Windows\system32\conime.exe
2008-09-17 12:25:13 ----A---- C:\Windows\system32\autoplay.dll
2008-09-17 12:25:12 ----A---- C:\Windows\system32\pcadm.dll
2008-09-17 12:25:12 ----A---- C:\Windows\system32\lpk.dll
2008-09-17 12:25:12 ----A---- C:\Windows\system32\eappprxy.dll
2008-09-17 12:25:12 ----A---- C:\Windows\system32\drmmgrtn.dll
2008-09-17 12:25:12 ----A---- C:\Windows\system32\dpapimig.exe
2008-09-17 12:25:11 ----A---- C:\Windows\system32\systeminfo.exe
2008-09-17 12:25:11 ----A---- C:\Windows\system32\netcfg.exe
2008-09-17 12:25:11 ----A---- C:\Windows\system32\msrating.dll
2008-09-17 12:25:11 ----A---- C:\Windows\system32\findstr.exe
2008-09-17 12:25:10 ----A---- C:\Windows\system32\xwizards.dll
2008-09-17 12:25:10 ----A---- C:\Windows\system32\resutils.dll
2008-09-17 12:25:10 ----A---- C:\Windows\system32\mfplat.dll
2008-09-17 12:25:10 ----A---- C:\Windows\system32\DWWIN.EXE
2008-09-17 12:25:10 ----A---- C:\Windows\system32\cmdl32.exe
2008-09-17 12:25:10 ----A---- C:\Windows\system32\alg.exe
2008-09-17 12:25:09 ----A---- C:\Windows\system32\netprof.dll
2008-09-17 12:25:09 ----A---- C:\Windows\system32\MFWMAAEC.DLL
2008-09-17 12:25:09 ----A---- C:\Windows\system32\dssec.dll
2008-09-17 12:25:09 ----A---- C:\Windows\system32\dot3ui.dll
2008-09-17 12:25:09 ----A---- C:\Windows\system32\dfrgifc.exe
2008-09-17 12:25:09 ----A---- C:\Windows\system32\dbnetlib.dll
2008-09-17 12:25:08 ----A---- C:\Windows\system32\powercpl.dll
2008-09-17 12:25:08 ----A---- C:\Windows\system32\odbc32.dll
2008-09-17 12:25:08 ----A---- C:\Windows\regedit.exe
2008-09-17 12:25:07 ----A---- C:\Windows\system32\nshhttp.dll
2008-09-17 12:25:07 ----A---- C:\Windows\system32\imm32.dll
2008-09-17 12:25:07 ----A---- C:\Windows\system32\btpanui.dll
2008-09-17 12:25:07 ----A---- C:\Windows\system32\apircl.dll
2008-09-17 12:25:06 ----A---- C:\Windows\system32\txflog.dll
2008-09-17 12:25:06 ----A---- C:\Windows\system32\taskkill.exe
2008-09-17 12:25:06 ----A---- C:\Windows\system32\iexpress.exe
2008-09-17 12:25:06 ----A---- C:\Windows\system32\feclient.dll
2008-09-17 12:25:05 ----A---- C:\Windows\system32\tbssvc.dll
2008-09-17 12:25:05 ----A---- C:\Windows\system32\msieftp.dll
2008-09-17 12:25:05 ----A---- C:\Windows\system32\dxva2.dll
2008-09-17 12:25:05 ----A---- C:\Windows\system32\dwmapi.dll
2008-09-17 12:25:05 ----A---- C:\Windows\system32\bcdprov.dll
2008-09-17 12:25:04 ----A---- C:\Windows\system32\RASMM.dll
2008-09-17 12:25:04 ----A---- C:\Windows\system32\MediaMetadataHandler.dll
2008-09-17 12:25:04 ----A---- C:\Windows\system32\d3d10.dll
2008-09-17 12:25:04 ----A---- C:\Windows\system32\ActionQueue.dll
2008-09-17 12:25:03 ----A---- C:\Windows\system32\syncui.dll
2008-09-17 12:25:03 ----A---- C:\Windows\system32\svchost.exe
2008-09-17 12:25:03 ----A---- C:\Windows\system32\slwmi.dll
2008-09-17 12:25:03 ----A---- C:\Windows\system32\shwebsvc.dll
2008-09-17 12:25:03 ----A---- C:\Windows\system32\provthrd.dll
2008-09-17 12:25:03 ----A---- C:\Windows\system32\EAPQEC.DLL
2008-09-17 12:25:03 ----A---- C:\Windows\system32\dmocx.dll
2008-09-17 12:25:02 ----A---- C:\Windows\system32\SLCExt.dll
2008-09-17 12:25:02 ----A---- C:\Windows\system32\slcc.dll
2008-09-17 12:25:02 ----A---- C:\Windows\system32\networkexplorer.dll
2008-09-17 12:25:02 ----A---- C:\Windows\system32\aclui.dll
2008-09-17 12:25:01 ----A---- C:\Windows\system32\WMASF.DLL
2008-09-17 12:25:01 ----A---- C:\Windows\system32\raserver.exe
2008-09-17 12:25:01 ----A---- C:\Windows\system32\PnPUnattend.exe
2008-09-17 12:25:01 ----A---- C:\Windows\system32\olepro32.dll
2008-09-17 12:25:01 ----A---- C:\Windows\system32\connect.dll
2008-09-17 12:25:00 ----A---- C:\Windows\system32\uxsms.dll
2008-09-17 12:25:00 ----A---- C:\Windows\system32\ias.dll
2008-09-17 12:25:00 ----A---- C:\Windows\system32\dnscacheugc.exe
2008-09-17 12:25:00 ----A---- C:\Windows\system32\brcplsdw.dll
2008-09-17 12:25:00 ----A---- C:\Windows\system32\audiodev.dll
2008-09-17 12:24:59 ----A---- C:\Windows\system32\xcopy.exe
2008-09-17 12:24:59 ----A---- C:\Windows\system32\upnp.dll
2008-09-17 12:24:59 ----A---- C:\Windows\system32\UIHub.dll
2008-09-17 12:24:59 ----A---- C:\Windows\system32\taskmgr.exe
2008-09-17 12:24:59 ----A---- C:\Windows\system32\reg.exe
2008-09-17 12:24:59 ----A---- C:\Windows\system32\QCLIPROV.DLL
2008-09-17 12:24:59 ----A---- C:\Windows\system32\icsfiltr.dll
2008-09-17 12:24:59 ----A---- C:\Windows\system32\atl.dll
2008-09-17 12:24:59 ----A---- C:\Windows\system32\appinfo.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\wlanext.exe
2008-09-17 12:24:58 ----A---- C:\Windows\system32\perfts.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\NapiNSP.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\msoert2.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\msjetoledb40.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\mountvol.exe
2008-09-17 12:24:58 ----A---- C:\Windows\system32\mmcshext.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\cmstp.exe
2008-09-17 12:24:58 ----A---- C:\Windows\system32\browser.dll
2008-09-17 12:24:58 ----A---- C:\Windows\system32\AuxiliaryDisplayApi.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\wmpdxm.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\PING.EXE
2008-09-17 12:24:57 ----A---- C:\Windows\system32\netplwiz.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\inetmib1.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\dskquoui.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\cewmdm.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\certprop.dll
2008-09-17 12:24:57 ----A---- C:\Windows\system32\bitsadmin.exe
2008-09-17 12:24:56 ----A---- C:\Windows\system32\WUDFCoinstaller.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\WpdMtpUS.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\WMVXENCD.DLL
2008-09-17 12:24:56 ----A---- C:\Windows\system32\SoundRecorder.exe
2008-09-17 12:24:56 ----A---- C:\Windows\system32\qcap.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\qasf.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\ieakeng.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\httpapi.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\dsuiext.dll
2008-09-17 12:24:56 ----A---- C:\Windows\system32\dmusic.dll
2008-09-17 12:24:55 ----A---- C:\Windows\system32\WUDFSvc.dll
2008-09-17 12:24:55 ----A---- C:\Windows\system32\wmpsrcwp.dll
2008-09-17 12:24:55 ----A---- C:\Windows\system32\SysFxUI.dll
2008-09-17 12:24:55 ----A---- C:\Windows\system32\rekeywiz.exe
2008-09-17 12:24:55 ----A---- C:\Windows\system32\mscandui.dll
2008-09-17 12:24:55 ----A---- C:\Windows\system32\auditpol.exe
2008-09-17 12:24:55 ----A---- C:\Windows\system32\adsmsext.dll
2008-09-17 12:24:54 ----A---- C:\Windows\system32\Sens.dll
2008-09-17 12:24:54 ----A---- C:\Windows\system32\SecEdit.exe
2008-09-17 12:24:54 ----A---- C:\Windows\system32\mtstocom.exe
2008-09-17 12:24:54 ----A---- C:\Windows\system32\makecab.exe
2008-09-17 12:24:54 ----A---- C:\Windows\system32\lsmproxy.dll
2008-09-17 12:24:53 ----A---- C:\Windows\system32\xwtpw32.dll
2008-09-17 12:24:53 ----A---- C:\Windows\system32\WMVSENCD.DLL
2008-09-17 12:24:53 ----A---- C:\Windows\system32\tlntsess.exe
2008-09-17 12:24:53 ----A---- C:\Windows\system32\shimgvw.dll
2008-09-17 12:24:53 ----A---- C:\Windows\system32\sbeio.dll
2008-09-17 12:24:53 ----A---- C:\Windows\system32\dot3gpclnt.dll
2008-09-17 12:24:53 ----A---- C:\Windows\system32\batt.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\wzcdlg.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\wscmisetup.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\wiashext.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\wiadefui.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\sppnp.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\shacct.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\seclogon.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\printcom.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\ndfapi.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\msorcl32.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\msdadiag.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\dxtrans.dll
2008-09-17 12:24:52 ----A---- C:\Windows\system32\apss.dll
2008-09-17 12:24:51 ----A---- C:\Windows\system32\wpdwcn.dll
2008-09-17 12:24:51 ----A---- C:\Windows\system32\WMSPDMOE.DLL
2008-09-17 12:24:51 ----A---- C:\Windows\system32\userinit.exe
2008-09-17 12:24:51 ----A---- C:\Windows\system32\sxstrace.exe
2008-09-17 12:24:51 ----A---- C:\Windows\system32\perfmon.exe
2008-09-17 12:24:51 ----A---- C:\Windows\system32\p2phost.exe
2008-09-17 12:24:51 ----A---- C:\Windows\system32\napipsec.dll
2008-09-17 12:24:50 ----A---- C:\Windows\system32\winrshost.exe
2008-09-17 12:24:50 ----A---- C:\Windows\system32\tasklist.exe
2008-09-17 12:24:50 ----A---- C:\Windows\system32\TapiMigPlugin.dll
2008-09-17 12:24:50 ----A---- C:\Windows\system32\rrinstaller.exe
2008-09-17 12:24:50 ----A---- C:\Windows\system32\ktmutil.exe
2008-09-17 12:24:50 ----A---- C:\Windows\system32\keymgr.dll
2008-09-17 12:24:50 ----A---- C:\Windows\system32\HelpPaneProxy.dll
2008-09-17 12:24:50 ----A---- C:\Windows\system32\csrsrv.dll
2008-09-17 12:24:49 ----A---- C:\Windows\system32\prntvpt.dll
2008-09-17 12:24:49 ----A---- C:\Windows\system32\notepad.exe
2008-09-17 12:24:49 ----A---- C:\Windows\system32\MP4SDECD.DLL
2008-09-17 12:24:49 ----A---- C:\Windows\system32\ftp.exe
2008-09-17 12:24:49 ----A---- C:\Windows\system32\fmifs.dll
2008-09-17 12:24:49 ----A---- C:\Windows\system32\colorui.dll
2008-09-17 12:24:49 ----A---- C:\Windows\notepad.exe
2008-09-17 12:24:48 ----A---- C:\Windows\system32\UIAutomationCore.dll
2008-09-17 12:24:48 ----A---- C:\Windows\system32\msiexec.exe
2008-09-17 12:24:48 ----A---- C:\Windows\system32\d3dim700.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\wscproxystub.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\winethc.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\pcasvc.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\nshipsec.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\netiougc.exe
2008-09-17 12:24:47 ----A---- C:\Windows\system32\msimtf.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\mfps.dll
2008-09-17 12:24:47 ----A---- C:\Windows\system32\driverquery.exe
2008-09-17 12:24:47 ----A---- C:\Windows\system32\cryptdll.dll
2008-09-17 12:24:46 ----A---- C:\Windows\system32\wmiprop.dll
2008-09-17 12:24:46 ----A---- C:\Windows\system32\txfw32.dll
2008-09-17 12:24:46 ----A---- C:\Windows\system32\takeown.exe
2008-09-17 12:24:46 ----A---- C:\Windows\system32\pots.dll
2008-09-17 12:24:46 ----A---- C:\Windows\system32\PnPutil.exe
2008-09-17 12:24:46 ----A---- C:\Windows\system32\logagent.exe
2008-09-17 12:24:46 ----A---- C:\Windows\system32\inseng.dll
2008-09-17 12:24:46 ----A---- C:\Windows\system32\findnetprinters.dll
2008-09-17 12:24:45 ----A---- C:\Windows\system32\wpdbusenum.dll
2008-09-17 12:24:45 ----A---- C:\Windows\system32\WindowsCodecsExt.dll
2008-09-17 12:24:45 ----A---- C:\Windows\system32\rasplap.dll
2008-09-17 12:24:45 ----A---- C:\Windows\system32\powrprof.dll
2008-09-17 12:24:45 ----A---- C:\Windows\system32\mfpmp.exe
2008-09-17 12:24:45 ----A---- C:\Windows\system32\capisp.dll
2008-09-17 12:24:44 ----A---- C:\Windows\system32\shrpubw.exe
2008-09-17 12:24:44 ----A---- C:\Windows\system32\RESAMPLEDMO.DLL
2008-09-17 12:24:44 ----A---- C:\Windows\system32\nsisvc.dll
2008-09-17 12:24:44 ----A---- C:\Windows\system32\fsutil.exe
2008-09-17 12:24:44 ----A---- C:\Windows\system32\dnshc.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\WLanHC.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\wextract.exe
2008-09-17 12:24:43 ----A---- C:\Windows\system32\shgina.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\sfc_os.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\sendmail.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\perfnet.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\olecli32.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\luainstall.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\imapi.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\fdPHost.dll
2008-09-17 12:24:43 ----A---- C:\Windows\system32\cmmon32.exe
2008-09-17 12:24:42 ----A---- C:\Windows\system32\TMM.dll
2008-09-17 12:24:42 ----A---- C:\Windows\system32\rshx32.dll
2008-09-17 12:24:42 ----A---- C:\Windows\system32\RpcPing.exe
2008-09-17 12:24:42 ----A---- C:\Windows\system32\ktmw32.dll
2008-09-17 12:24:42 ----A---- C:\Windows\system32\d3dim.dll
2008-09-17 12:24:42 ----A---- C:\Windows\system32\compstui.dll
2008-09-17 12:24:41 ----A---- C:\Windows\system32\runonce.exe
2008-09-17 12:24:40 ----A---- C:\Windows\system32\WMADMOE.DLL
2008-09-17 12:24:40 ----A---- C:\Windows\system32\wiaacmgr.exe
2008-09-17 12:24:40 ----A---- C:\Windows\system32\version.dll
2008-09-17 12:24:40 ----A---- C:\Windows\system32\dimsjob.dll
2008-09-17 12:24:39 ----A---- C:\Windows\system32\unregmp2.exe
2008-09-17 12:24:39 ----A---- C:\Windows\system32\UI0Detect.exe
2008-09-17 12:24:39 ----A---- C:\Windows\system32\getmac.exe
2008-09-17 12:24:39 ----A---- C:\Windows\system32\cmlua.dll
2008-09-17 12:24:38 ----A---- C:\Windows\system32\mdminst.dll
2008-09-17 12:24:38 ----A---- C:\Windows\system32\dsauth.dll
2008-09-17 12:24:37 ----A---- C:\Windows\system32\w32tm.exe
2008-09-17 12:24:37 ----A---- C:\Windows\system32\net.exe
2008-09-17 12:24:37 ----A---- C:\Windows\system32\msvfw32.dll
2008-09-17 12:24:37 ----A---- C:\Windows\system32\MPG4DECD.DLL
2008-09-17 12:24:37 ----A---- C:\Windows\system32\MP43DECD.DLL
2008-09-17 12:24:36 ----A---- C:\Windows\system32\imgutil.dll
2008-09-17 12:24:35 ----A---- C:\Windows\system32\wmpshell.dll
2008-09-17 12:24:35 ----A---- C:\Windows\system32\tscupgrd.exe
2008-09-17 12:24:34 ----A---- C:\Windows\system32\sdchange.exe
2008-09-17 12:24:34 ----A---- C:\Windows\system32\PortableDeviceWiaCompat.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\pnpts.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\migisol.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\ipconfig.exe
2008-09-17 12:24:34 ----A---- C:\Windows\system32\fdeploy.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\dispci.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\credui.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\cmutil.dll
2008-09-17 12:24:34 ----A---- C:\Windows\system32\ACW.exe
2008-09-17 12:24:33 ----A---- C:\Windows\system32\sfc.exe
2008-09-17 12:24:33 ----A---- C:\Windows\system32\dinput8.dll
2008-09-17 12:24:33 ----A---- C:\Windows\system32\diantz.exe
2008-09-17 12:24:33 ----A---- C:\Windows\system32\comrepl.dll
2008-09-17 12:24:32 ----A---- C:\Windows\system32\TSTheme.exe
2008-09-17 12:24:31 ----A---- C:\Windows\system32\wmidx.dll
2008-09-17 12:24:31 ----A---- C:\Windows\system32\remotepg.dll
2008-09-17 12:24:31 ----A---- C:\Windows\system32\pdhui.dll
2008-09-17 12:24:31 ----A---- C:\Windows\system32\nlaapi.dll
2008-09-17 12:24:31 ----A---- C:\Windows\system32\ExplorerFrame.dll
2008-09-17 12:24:31 ----A---- C:\Windows\system32\EncDump.dll
2008-09-17 12:24:31 ----A---- C:\Windows\system32\cfgbkend.dll
2008-09-17 12:24:30 ----A---- C:\Windows\system32\WPDShextAutoplay.exe
2008-09-17 12:24:30 ----A---- C:\Windows\system32\vdmredir.dll
2008-09-17 12:24:30 ----A---- C:\Windows\system32\utildll.dll
2008-09-17 12:24:30 ----A---- C:\Windows\system32\softkbd.dll
2008-09-17 12:24:30 ----A---- C:\Windows\system32\hlink.dll
2008-09-17 12:24:30 ----A---- C:\Windows\system32\fwcfg.dll
2008-09-17 12:24:30 ----A---- C:\Windows\system32\expand.exe
2008-09-17 12:24:30 ----A---- C:\Windows\system32\colbact.dll
2008-09-17 12:24:29 ----A---- C:\Windows\system32\TpmInit.exe
2008-09-17 12:24:29 ----A---- C:\Windows\system32\modemui.dll
2008-09-17 12:24:29 ----A---- C:\Windows\system32\McxDriv.dll
2008-09-17 12:24:29 ----A---- C:\Windows\system32\iernonce.dll
2008-09-17 12:24:29 ----A---- C:\Windows\system32\bridgeunattend.exe
2008-09-17 12:24:29 ----A---- C:\Windows\system32\amstream.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\wsnmp32.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\wmvdspa.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\vds_ps.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\sti_ci.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\rdrleakdiag.exe
2008-09-17 12:24:28 ----A---- C:\Windows\system32\msfeedsbs.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\esentutl.exe
2008-09-17 12:24:28 ----A---- C:\Windows\system32\cmcfg32.dll
2008-09-17 12:24:28 ----A---- C:\Windows\system32\bootcfg.exe
2008-09-17 12:24:28 ----A---- C:\Windows\system32\admparse.dll
2008-09-17 12:24:27 ----A---- C:\Windows\system32\waitfor.exe
2008-09-17 12:24:27 ----A---- C:\Windows\system32\tabcal.exe
2008-09-17 12:24:27 ----A---- C:\Windows\system32\qdv.dll
2008-09-17 12:24:27 ----A---- C:\Windows\system32\odbccp32.dll
2008-09-17 12:24:27 ----A---- C:\Windows\system32\logman.exe
2008-09-17 12:24:27 ----A---- C:\Windows\system32\iscsium.dll
2008-09-17 12:24:27 ----A---- C:\Windows\system32\dpnet.dll
2008-09-17 12:24:26 ----A---- C:\Windows\system32\WsmCl.dll
2008-09-17 12:24:26 ----A---- C:\Windows\system32\wfapigp.dll
2008-09-17 12:24:26 ----A---- C:\Windows\system32\shutdown.exe
2008-09-17 12:24:26 ----A---- C:\Windows\system32\osblprov.dll
2008-09-17 12:24:26 ----A---- C:\Windows\system32\cacls.exe
2008-09-17 12:24:24 ----A---- C:\Windows\system32\wmpcm.dll
2008-09-17 12:24:24 ----A---- C:\Windows\system32\rasauto.dll
2008-09-17 12:24:24 ----A---- C:\Windows\system32\olethk32.dll
2008-09-17 12:24:24 ----A---- C:\Windows\system32\olesvr32.dll
2008-09-17 12:24:24 ----A---- C:\Windows\system32\msdtc.exe
2008-09-17 12:24:24 ----A---- C:\Windows\system32\mfvdsp.dll
2008-09-17 12:24:24 ----A---- C:\Windows\system32\DpiScaling.exe
2008-09-17 12:24:24 ----A---- C:\Windows\system32\dmsynth.dll
2008-09-17 12:24:24 ----A---- C:\Windows\system32\COLORCNV.DLL
2008-09-17 12:24:23 ----A---- C:\Windows\system32\wpnpinst.exe
2008-09-17 12:24:23 ----A---- C:\Windows\system32\werdiagcontroller.dll
2008-09-17 12:24:23 ----A---- C:\Windows\system32\mstext40.dll
2008-09-17 12:24:23 ----A---- C:\Windows\system32\iscsiwmi.dll
2008-09-17 12:24:22 ----A---- C:\Windows\system32\wavemsp.dll
2008-09-17 12:24:22 ----A---- C:\Windows\system32\ufat.dll
2008-09-17 12:24:22 ----A---- C:\Windows\system32\sxproxy.dll
2008-09-17 12:24:22 ----A---- C:\Windows\system32\SLLUA.exe
2008-09-17 12:24:22 ----A---- C:\Windows\system32\msctfui.dll
2008-09-17 12:24:22 ----A---- C:\Windows\system32\at.exe
2008-09-17 12:24:21 ----A---- C:\Windows\system32\xmlprovi.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\WpdConns.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\ucsvc.exe
2008-09-17 12:24:21 ----A---- C:\Windows\system32\rgb9rast.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\RegCtrl.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\odbctrac.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\networkitemfactory.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\mshta.exe
2008-09-17 12:24:21 ----A---- C:\Windows\system32\itss.dll
2008-09-17 12:24:21 ----A---- C:\Windows\system32\convert.exe
2008-09-17 12:24:20 ----A---- C:\Windows\system32\TimeDateMUICallback.dll
2008-09-17 12:24:20 ----A---- C:\Windows\system32\prevhost.exe
2008-09-17 12:24:20 ----A---- C:\Windows\system32\netbtugc.exe
2008-09-17 12:24:20 ----A---- C:\Windows\system32\mobsync.exe
2008-09-17 12:24:20 ----A---- C:\Windows\system32\licmgr10.dll
2008-09-17 12:24:20 ----A---- C:\Windows\system32\iscsied.dll
2008-09-17 12:24:20 ----A---- C:\Windows\system32\dskquota.dll
2008-09-17 12:24:20 ----A---- C:\Windows\system32\csrstub.exe
2008-09-17 12:24:20 ----A---- C:\Windows\system32\bitsigd.dll
2008-09-17 12:24:20 ----A---- C:\Windows\system32\AuthFWGP.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\unattendedjoin.exe
2008-09-17 12:24:19 ----A---- C:\Windows\system32\tbs.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\setupcln.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\rasdiag.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\ocsetup.exe
2008-09-17 12:24:19 ----A---- C:\Windows\system32\GuidedHelp.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\fphc.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\dmime.dll
 
2008-09-17 12:24:19 ----A---- C:\Windows\system32\cscdll.dll
2008-09-17 12:24:19 ----A---- C:\Windows\system32\AtBroker.exe
2008-09-17 12:24:18 ----A---- C:\Windows\system32\winnsi.dll
2008-09-17 12:24:18 ----A---- C:\Windows\system32\mydocs.dll
2008-09-17 12:24:18 ----A---- C:\Windows\system32\l2gpstore.dll
2008-09-17 12:24:18 ----A---- C:\Windows\system32\cmpbk32.dll
2008-09-17 12:24:16 ----A---- C:\Windows\system32\regini.exe
2008-09-17 12:24:16 ----A---- C:\Windows\system32\dsdmo.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\usbui.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\odbccu32.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\odbccr32.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\napdsnap.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\msident.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\msdart.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\dot3dlg.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\devenum.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\cmstplua.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\apilogen.dll
2008-09-17 12:24:15 ----A---- C:\Windows\system32\amxread.dll
2008-09-17 12:24:14 ----A---- C:\Windows\system32\wpclsp.dll
2008-09-17 12:24:14 ----A---- C:\Windows\system32\WINSRPC.DLL
2008-09-17 12:24:14 ----A---- C:\Windows\system32\VIDRESZR.DLL
2008-09-17 12:24:14 ----A---- C:\Windows\system32\upnpcont.exe
2008-09-17 12:24:14 ----A---- C:\Windows\system32\RacAgent.exe
2008-09-17 12:24:14 ----A---- C:\Windows\system32\mtxlegih.dll
2008-09-17 12:24:14 ----A---- C:\Windows\system32\mtxdm.dll
2008-09-17 12:24:14 ----A---- C:\Windows\system32\MsCtfMonitor.dll
2008-09-17 12:24:14 ----A---- C:\Windows\system32\gpupdate.exe
2008-09-17 12:24:14 ----A---- C:\Windows\system32\avrt.dll
2008-09-17 12:24:13 ----A---- C:\Windows\system32\vss_ps.dll
2008-09-17 12:24:13 ----A---- C:\Windows\system32\srwmi.dll
2008-09-17 12:24:13 ----A---- C:\Windows\system32\nsi.dll
2008-09-17 12:24:13 ----A---- C:\Windows\system32\nbtstat.exe
2008-09-17 12:24:13 ----A---- C:\Windows\system32\mfcsubs.dll
2008-09-17 12:24:13 ----A---- C:\Windows\system32\graftabl.com
2008-09-17 12:24:11 ----A---- C:\Windows\system32\wsock32.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\wiarpc.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\WavDest.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\vfwwdm32.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\syskey.exe
2008-09-17 12:24:11 ----A---- C:\Windows\system32\ROUTE.EXE
2008-09-17 12:24:11 ----A---- C:\Windows\system32\rasphone.exe
2008-09-17 12:24:11 ----A---- C:\Windows\system32\odbcbcp.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\netevent.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\ndfetw.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\msexcl40.dll
2008-09-17 12:24:11 ----A---- C:\Windows\system32\extrac32.exe
2008-09-17 12:24:10 ----A---- C:\Windows\system32\procinst.dll
2008-09-17 12:24:10 ----A---- C:\Windows\system32\MP3DMOD.DLL
2008-09-17 12:24:10 ----A---- C:\Windows\system32\eventcls.dll
2008-09-17 12:24:10 ----A---- C:\Windows\system32\csrss.exe
2008-09-17 12:24:09 ----A---- C:\Windows\system32\WindowsAnytimeUpgrade.exe
2008-09-17 12:24:09 ----A---- C:\Windows\system32\d3dxof.dll
2008-09-17 12:24:09 ----A---- C:\Windows\system32\atmfd.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\WlanMmHC.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\wiadss.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\TabbtnEx.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\Tabbtn.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\psbase.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\inetppui.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\dmscript.dll
2008-09-17 12:24:08 ----A---- C:\Windows\system32\CertEnrollCtrl.exe
2008-09-17 12:24:08 ----A---- C:\Windows\fveupdate.exe
2008-09-17 12:24:07 ----A---- C:\Windows\system32\msxbde40.dll
2008-09-17 12:24:07 ----A---- C:\Windows\system32\dmloader.dll
2008-09-17 12:24:07 ----A---- C:\Windows\system32\credssp.dll
2008-09-17 12:24:06 ----A---- C:\Windows\system32\wshcon.dll
2008-09-17 12:24:06 ----A---- C:\Windows\system32\Netplwiz.exe
2008-09-17 12:24:06 ----A---- C:\Windows\system32\mspbde40.dll
2008-09-17 12:24:06 ----A---- C:\Windows\system32\msltus40.dll
2008-09-17 12:24:06 ----A---- C:\Windows\system32\icsunattend.exe
2008-09-17 12:24:05 ----A---- C:\Windows\system32\WsmRes.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\WSHTCPIP.DLL
2008-09-17 12:24:05 ----A---- C:\Windows\system32\wship6.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\sxsstore.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\PlaySndSrv.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\msvidc32.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\lltdapi.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\HotStartUserAgent.dll
2008-09-17 12:24:05 ----A---- C:\Windows\system32\ComputerDefaults.exe
2008-09-17 12:24:04 ----A---- C:\Windows\system32\tcpmon.ini
2008-09-17 12:24:04 ----A---- C:\Windows\system32\slwga.dll
2008-09-17 12:24:04 ----A---- C:\Windows\system32\setupSNK.exe
2008-09-17 12:24:04 ----A---- C:\Windows\system32\OptionalFeatures.exe
2008-09-17 12:24:04 ----A---- C:\Windows\system32\localui.dll
2008-09-17 12:24:04 ----A---- C:\Windows\system32\LangCleanupSysprepAction.dll
2008-09-17 12:24:04 ----A---- C:\Windows\system32\icaapi.dll
2008-09-17 12:24:03 ----A---- C:\Windows\system32\sbunattend.exe
2008-09-17 12:24:03 ----A---- C:\Windows\system32\dmutil.dll
2008-09-17 12:24:02 ----A---- C:\Windows\system32\usbperf.dll
2008-09-17 12:24:02 ----A---- C:\Windows\system32\spopk.dll
2008-09-17 12:24:02 ----A---- C:\Windows\system32\serialui.dll
2008-09-17 12:24:02 ----A---- C:\Windows\system32\NcdProp.dll
2008-09-17 12:24:01 ----A---- C:\Windows\system32\odbcconf.dll
2008-09-17 12:24:01 ----A---- C:\Windows\system32\cofiredm.dll
2008-09-17 12:24:00 ----A---- C:\Windows\system32\msfeedssync.exe
2008-09-17 12:24:00 ----A---- C:\Windows\system32\hbaapi.dll
2008-09-17 12:23:59 ----A---- C:\Windows\system32\rasctrs.dll
2008-09-17 12:23:59 ----A---- C:\Windows\system32\msobjs.dll
2008-09-17 12:23:59 ----A---- C:\Windows\system32\ieencode.dll
2008-09-17 12:23:59 ----A---- C:\Windows\system32\hnetmon.dll
2008-09-17 12:23:59 ----A---- C:\Windows\system32\corpol.dll
2008-09-17 12:23:58 ----A---- C:\Windows\system32\midimap.dll
2008-09-17 12:23:58 ----A---- C:\Windows\system32\InfDefaultInstall.exe
2008-09-17 12:23:57 ----A---- C:\Windows\system32\vdmdbg.dll
2008-09-17 12:23:57 ----A---- C:\Windows\system32\url.dll
2008-09-17 12:23:57 ----A---- C:\Windows\system32\nlsbres.dll
2008-09-17 12:23:57 ----A---- C:\Windows\system32\LogonUI.exe
2008-09-17 12:23:57 ----A---- C:\Windows\system32\iprtprio.dll
2008-09-17 12:23:57 ----A---- C:\Windows\system32\esentprf.dll
2008-09-17 12:23:54 ----A---- C:\Windows\system32\sdspres.dll
2008-09-17 12:23:53 ----A---- C:\Windows\system32\HPBPRO.DLL
2008-09-17 12:23:52 ----A---- C:\Windows\system32\osbaseln.dll
2008-09-17 12:23:52 ----A---- C:\Windows\system32\cfgmgr32.dll
2008-09-17 12:23:50 ----A---- C:\Windows\system32\msisip.dll
2008-09-17 12:23:49 ----A---- C:\Windows\system32\msmmsp.dll
2008-09-17 12:23:47 ----A---- C:\Windows\system32\dispex.dll
2008-09-17 12:23:46 ----A---- C:\Windows\system32\winusb.dll
2008-09-17 12:23:46 ----A---- C:\Windows\system32\rdpcfgex.dll
2008-09-17 12:23:41 ----A---- C:\Windows\system32\Nlsdl.dll
2008-09-17 12:23:41 ----A---- C:\Windows\system32\HPBMIAPI.DLL
2008-09-17 12:23:40 ----A---- C:\Windows\system32\riched32.dll
2008-09-17 12:23:40 ----A---- C:\Windows\system32\msidle.dll
2008-09-17 12:23:40 ----A---- C:\Windows\system32\idndl.dll
2008-09-17 12:23:40 ----A---- C:\Windows\system32\HPBOID.DLL
2008-09-17 12:23:39 ----A---- C:\Windows\system32\spwmp.dll
2008-09-17 12:23:36 ----A---- C:\Windows\system32\KBDKOR.DLL
2008-09-17 12:23:35 ----A---- C:\Windows\system32\KBDJPN.DLL
2008-09-17 12:23:35 ----A---- C:\Windows\system32\iscsilog.dll
2008-09-17 12:23:35 ----A---- C:\Windows\system32\HPBPROPS.DLL
2008-09-17 12:23:35 ----A---- C:\Windows\system32\HPBOIDPS.DLL
2008-09-17 12:23:33 ----A---- C:\Windows\system32\wmploc.DLL
2008-09-17 12:23:33 ----A---- C:\Windows\system32\vga256.dll
2008-09-17 12:23:33 ----A---- C:\Windows\system32\tsddd.dll
2008-09-17 12:23:33 ----A---- C:\Windows\system32\framebuf.dll
2008-09-17 12:23:33 ----A---- C:\Windows\system32\dxmasf.dll
2008-09-17 12:23:31 ----A---- C:\Windows\system32\vga64k.dll
2008-09-17 12:23:30 ----A---- C:\Windows\system32\vga.dll
2008-09-17 12:23:30 ----A---- C:\Windows\system32\bootstr.dll
2008-09-17 12:23:29 ----A---- C:\Windows\system32\spwizres.dll
2008-09-17 12:23:29 ----A---- C:\Windows\system32\HPBMINI.DLL
2008-09-17 12:23:29 ----A---- C:\Windows\system32\f3ahvoas.dll
2008-09-17 12:23:29 ----A---- C:\Windows\system32\dmdskres2.dll
2008-09-17 12:23:26 ----A---- C:\Windows\system32\gatherWiredInfo.vbs
2008-09-17 12:23:24 ----A---- C:\Windows\system32\gatherWirelessInfo.vbs
2008-09-17 12:23:24 ----A---- C:\Windows\system32\fsmgmt.msc
2008-09-17 12:23:17 ----A---- C:\Windows\system32\perfmon.msc
2008-09-17 12:23:15 ----A---- C:\Windows\system32\vsp1cln.exe
2008-09-17 12:22:27 ----A---- C:\Windows\system32\xmllite.dll
2008-09-17 12:22:26 ----A---- C:\Windows\system32\wbemcomn.dll
2008-09-17 12:22:19 ----A---- C:\Windows\system32\SmiInstaller.dll
2008-09-17 12:22:18 ----A---- C:\Windows\system32\SmiEngine.dll
2008-09-17 12:22:12 ----A---- C:\Windows\system32\wdscore.dll
2008-09-17 12:22:12 ----A---- C:\Windows\system32\PkgMgr.exe
2008-09-17 12:21:55 ----A---- C:\Windows\system32\drvstore.dll
2008-09-17 12:21:55 ----A---- C:\Windows\system32\dpx.dll
2008-09-17 12:21:54 ----A---- C:\Windows\system32\mspatcha.dll
2008-09-17 12:21:54 ----A---- C:\Windows\system32\msdelta.dll
2008-09-16 22:06:42 ----D---- C:\Users\Aaron\AppData\Roaming\HP
2008-09-15 23:13:16 ----D---- C:\ProgramData\WEBREG
2008-09-14 18:35:31 ----D---- C:\ProgramData\Hewlett-Packard
2008-09-14 18:27:49 ----D---- C:\ProgramData\HPSSUPPLY
2008-09-14 18:27:37 ----D---- C:\Users\Aaron\AppData\Roaming\HPAppData
2008-09-14 18:25:08 ----D---- C:\ProgramData\HP Product Assistant
2008-09-14 18:24:38 ----D---- C:\Program Files\Common Files\HP
2008-09-14 18:23:42 ----D---- C:\Program Files\Hewlett-Packard
2008-09-14 18:23:14 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2008-09-14 18:18:41 ----A---- C:\Windows\system32\hpzids01.dll
2008-09-14 18:18:41 ----A---- C:\hpzids01.dll
2008-09-14 18:18:19 ----A---- C:\Windows\system32\hpz3l5ha.dll
2008-09-14 18:16:28 ----A---- C:\Windows\system32\hppldcoi.dll
2008-09-14 18:16:28 ----A---- C:\Windows\system32\hpotiop5.dll
2008-09-14 18:16:27 ----A---- C:\Windows\system32\hpowiax5.dll
2008-09-14 18:16:27 ----A---- C:\Windows\system32\hpovst12.dll
2008-09-14 18:16:27 ----A---- C:\Windows\system32\difxapi.dll
2008-09-14 18:15:54 ----D---- C:\Program Files\HP
2008-09-14 18:13:36 ----D---- C:\ProgramData\HP
2008-09-12 22:47:01 ----D---- C:\Netgear
2008-09-12 18:48:17 ----A---- C:\Windows\system32\GEARAspi.dll
2008-09-12 18:48:11 ----DC---- C:\Windows\system32\DRVSTORE
2008-09-12 18:45:52 ----D---- C:\Program Files\Bonjour
2008-09-12 18:42:22 ----D---- C:\Program Files\QuickTime
2008-09-09 21:25:08 ----A---- C:\Windows\system32\GameUXLegacyGDFs.dll
2008-09-09 21:25:08 ----A---- C:\Windows\system32\Apphlpdm.dll
2008-09-09 21:24:59 ----A---- C:\Windows\system32\wmpeffects.dll
2008-09-04 20:39:02 ----A---- C:\Windows\UNDPX2A.exe
2008-08-29 10:18:58 ----A---- C:\Windows\system32\dns-sd.exe
2008-08-29 09:53:50 ----A---- C:\Windows\system32\dnssd.dll
2008-08-12 22:13:21 ----A---- C:\Windows\system32\tzres.dll
2008-08-12 22:05:10 ----A---- C:\Windows\system32\winipsec.dll
2008-08-12 22:05:10 ----A---- C:\Windows\system32\polstore.dll
2008-08-12 22:05:10 ----A---- C:\Windows\system32\IPSECSVC.DLL
2008-08-12 22:05:10 ----A---- C:\Windows\system32\FwRemoteSvr.dll
2008-08-12 22:05:07 ----A---- C:\Windows\system32\es.dll
2008-08-12 22:04:56 ----A---- C:\Windows\system32\ieui.dll
2008-08-12 22:04:43 ----A---- C:\Windows\system32\inetcomm.dll
2008-08-07 20:14:40 ----D---- C:\Program Files\Apple Software Update
 
======List of files/folders modified in the last 3 months======

2008-10-29 13:49:52 ----D---- C:\Windows\Prefetch
2008-10-29 13:49:27 ----D---- C:\Windows\Temp
2008-10-29 13:02:25 ----D---- C:\MDT
2008-10-29 12:58:25 ----A---- C:\Windows\SchedLgU.Txt
2008-10-29 08:50:40 ----D---- C:\Windows\rescache
2008-10-29 08:31:49 ----D---- C:\Windows\System32
2008-10-28 23:36:31 ----D---- C:\Windows\winsxs
2008-10-28 23:34:35 ----SHD---- C:\System Volume Information
2008-10-28 23:33:37 ----D---- C:\Windows\system32\catroot2
2008-10-28 23:33:37 ----D---- C:\Windows\system32\catroot
2008-10-28 09:30:46 ----D---- C:\Program Files\Spybot - Search & Destroy
2008-10-28 09:24:19 ----D---- C:\ProgramData\Spybot - Search & Destroy
2008-10-27 23:56:28 ----RD---- C:\Program Files
2008-10-27 23:27:52 ----D---- C:\Users\Aaron\AppData\Roaming\Vso
2008-10-27 21:29:42 ----D---- C:\Windows
2008-10-27 10:39:04 ----SHD---- C:\Windows\Installer
2008-10-23 06:24:29 ----D---- C:\Users\Aaron\AppData\Roaming\BitTorrent
2008-10-22 23:24:25 ----RD---- C:\Downloads
2008-10-21 16:16:02 ----D---- C:\Program Files\Microsoft Silverlight
2008-10-19 00:52:06 ----D---- C:\Program Files\Common Files
2008-10-19 00:51:35 ----SD---- C:\Windows\Downloaded Program Files
2008-10-19 00:32:01 ----D---- C:\Windows\Microsoft.NET
2008-10-19 00:31:43 ----RSD---- C:\Windows\assembly
2008-10-19 00:21:01 ----D---- C:\Windows\ehome
2008-10-19 00:21:00 ----D---- C:\Program Files\Windows Mail
2008-10-19 00:20:59 ----D---- C:\Windows\system32\drivers
2008-10-19 00:20:58 ----D---- C:\Windows\system32\migration
2008-10-18 17:38:44 ----D---- C:\ProgramData\Microsoft Help
2008-10-08 16:17:11 ----D---- C:\Users\Aaron\AppData\Roaming\DNA
2008-10-07 14:19:40 ----A---- C:\Windows\system32\mrt.exe
2008-10-04 17:22:42 ----D---- C:\Windows\inf
2008-10-04 17:22:42 ----A---- C:\Windows\system32\PerfStringBackup.INI
2008-10-04 17:21:17 ----A---- C:\Windows\win.ini
2008-10-04 17:20:08 ----D---- C:\Windows\twain_32
2008-10-04 10:49:55 ----HD---- C:\ProgramData
2008-09-29 22:17:47 ----RD---- C:\Users
2008-09-22 06:55:18 ----D---- C:\Program Files\Adobe
2008-09-17 21:58:18 ----D---- C:\Windows\system32\en-US
2008-09-17 21:58:14 ----D---- C:\Windows\PolicyDefinitions
2008-09-17 15:20:09 ----D---- C:\Windows\Logs
2008-09-17 14:18:55 ----SHD---- C:\Boot
2008-09-17 14:18:37 ----ASH---- C:\Program Files\desktop.ini
2008-09-17 14:04:08 ----D---- C:\Program Files\Windows Calendar
2008-09-17 14:04:07 ----D---- C:\Program Files\Windows Sidebar
2008-09-17 14:04:07 ----D---- C:\Program Files\Movie Maker
2008-09-17 14:04:04 ----D---- C:\Program Files\Internet Explorer
2008-09-17 14:04:03 ----D---- C:\Program Files\Windows Media Player
2008-09-17 14:04:02 ----D---- C:\Program Files\Windows Collaboration
2008-09-17 14:04:00 ----D---- C:\Program Files\Windows Journal
2008-09-17 14:03:59 ----D---- C:\Program Files\Windows Photo Gallery
2008-09-17 14:03:49 ----D---- C:\Program Files\Windows Defender
2008-09-17 14:03:49 ----D---- C:\Program Files\Common Files\System
2008-09-17 14:03:47 ----D---- C:\Windows\servicing
2008-09-17 14:03:25 ----D---- C:\Windows\MSAgent
2008-09-17 14:03:21 ----D---- C:\Windows\L2Schemas
2008-09-17 14:03:21 ----D---- C:\Windows\IME
2008-09-17 14:03:21 ----D---- C:\Windows\DigitalLocker
2008-09-17 14:03:18 ----D---- C:\Windows\system32\XPSViewer
2008-09-17 14:03:18 ----D---- C:\Windows\system32\ko-KR
2008-09-17 14:03:18 ----D---- C:\Windows\system32\da-DK
2008-09-17 14:03:18 ----D---- C:\Windows\system32\com
2008-09-17 14:03:02 ----D---- C:\Windows\system32\it-IT
2008-09-17 14:03:02 ----D---- C:\Windows\system32\el-GR
2008-09-17 14:03:02 ----D---- C:\Windows\system32\de-DE
2008-09-17 14:03:01 ----D---- C:\Windows\system32\oobe
2008-09-17 14:03:00 ----D---- C:\Windows\system32\sysprep
2008-09-17 14:02:51 ----D---- C:\Windows\system32\ru-RU
2008-09-17 14:02:51 ----D---- C:\Windows\system32\AdvancedInstallers
2008-09-17 14:02:50 ----D---- C:\Windows\system32\sv-SE
2008-09-17 14:02:50 ----D---- C:\Windows\system32\setup
2008-09-17 14:02:50 ----D---- C:\Windows\system32\ias
2008-09-17 14:02:50 ----D---- C:\Windows\system32\he-IL
2008-09-17 14:02:50 ----D---- C:\Windows\system32\fr-FR
2008-09-17 14:02:50 ----D---- C:\Windows\system32\fi-FI
2008-09-17 14:02:50 ----D---- C:\Windows\system32\cs-CZ
2008-09-17 14:02:49 ----D---- C:\Windows\system32\SLUI
2008-09-17 14:02:49 ----D---- C:\Windows\system32\pt-PT
2008-09-17 14:02:49 ----D---- C:\Windows\system32\hu-HU
2008-09-17 14:02:43 ----D---- C:\Windows\system32\zh-CN
2008-09-17 14:02:43 ----D---- C:\Windows\system32\manifeststore
2008-09-17 14:02:43 ----D---- C:\Windows\system32\es-ES
2008-09-17 14:02:43 ----D---- C:\Windows\system32\en
2008-09-17 14:02:42 ----D---- C:\Windows\system32\zh-TW
2008-09-17 14:02:42 ----D---- C:\Windows\system32\pl-PL
2008-09-17 14:02:42 ----D---- C:\Windows\system32\ja-JP
2008-09-17 14:02:41 ----D---- C:\Windows\system32\ro-RO
2008-09-17 14:02:35 ----D---- C:\Windows\system32\tr-TR
2008-09-17 14:02:34 ----D---- C:\Windows\system32\wbem
2008-09-17 14:02:29 ----D---- C:\Windows\system32\nl-NL
2008-09-17 14:02:29 ----D---- C:\Windows\system32\nb-NO
2008-09-17 14:02:29 ----D---- C:\Windows\system32\ar-SA
2008-09-17 14:02:23 ----D---- C:\Windows\system32\migwiz
2008-09-17 14:02:21 ----D---- C:\Windows\system32\pt-BR
2008-09-17 14:00:19 ----RSD---- C:\Windows\Fonts
2008-09-17 14:00:19 ----D---- C:\Windows\AppPatch
2008-09-17 14:00:01 ----D---- C:\Windows\Boot
2008-09-17 13:59:55 ----D---- C:\Windows\system32\Boot
2008-09-17 13:24:08 ----A---- C:\Windows\system32\ifxcardm.dll
2008-09-17 13:24:05 ----A---- C:\Windows\system32\axaltocm.dll
2008-09-16 17:01:31 ----D---- C:\Windows\system32\WDI
2008-09-12 18:42:53 ----D---- C:\Program Files\Common Files\Apple
2008-09-09 21:27:48 ----D---- C:\Program Files\Microsoft Works
2008-08-07 20:14:43 ----D---- C:\Windows\system32\Tasks
2008-08-03 20:37:45 ----D---- C:\Users\Aaron\AppData\Roaming\Corel

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [2008-09-12 371248]
R1 SASDIFSV;SASDIFSV; \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS [2006-10-10 5632]
R1 SASKUTIL;SASKUTIL; \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.sys [2007-02-27 32256]
R1 SPBBCDrv;SPBBCDrv; \??\C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys [2006-10-06 406672]
R1 SRTSP;SRTSP; C:\Windows\System32\Drivers\SRTSP.SYS [2006-11-22 247144]
R1 SRTSPX;SRTSPX; C:\Windows\System32\Drivers\SRTSPX.SYS [2006-11-22 25448]
R1 SYMTDI;SYMTDI; C:\Windows\System32\Drivers\SYMTDI.SYS [2006-10-26 185744]
R2 MaVctrl;MaVctrl; C:\Windows\system32\DRIVERS\MaVc2K.sys [2007-01-16 11986]
R2 MCSTRM;MCSTRM; C:\Windows\system32\drivers\MCSTRM.sys [2008-01-01 8413]
R2 mdmxsdk;mdmxsdk; C:\Windows\system32\DRIVERS\mdmxsdk.sys [2006-06-19 12672]
R2 XAudio;XAudio; C:\Windows\system32\DRIVERS\xaudio.sys [2006-08-04 8192]
R3 atikmdag;atikmdag; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-14 2427392]
R3 BCM43XV;Broadcom Extensible 802.11 Network Adapter Driver; C:\Windows\system32\DRIVERS\bcmwl6.sys [2006-11-02 464384]
R3 bcm4sbxp;Broadcom 440x 10/100 Integrated Controller XP Driver; C:\Windows\system32\DRIVERS\bcm4sbxp.sys [2006-11-02 45056]
R3 CmBatt;Microsoft ACPI Control Method Battery Driver; C:\Windows\system32\DRIVERS\CmBatt.sys [2008-01-19 14208]
R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-09-12 99376]
R3 GEARAspiWDM;GEAR ASPI Filter Driver; C:\Windows\System32\Drivers\GEARAspiWDM.sys [2008-04-17 15464]
R3 HSF_DPV;HSF_DPV; C:\Windows\system32\DRIVERS\HSX_DPV.sys [2006-10-18 986624]
R3 HSXHWAZL;HSXHWAZL; C:\Windows\system32\DRIVERS\HSXHWAZL.sys [2006-10-18 206848]
R3 NAVENG;NAVENG; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081024.006\NAVENG.SYS [2008-08-25 89104]
R3 NAVEX15;NAVEX15; \??\C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20081024.006\NAVEX15.SYS [2008-08-25 873552]
R3 pcouffin;VSO Software pcouffin; C:\Windows\System32\Drivers\pcouffin.sys [2007-01-18 47360]
R3 pfc;Padus ASPI Shell; C:\Windows\system32\drivers\pfc.sys [2006-10-02 10368]
R3 rimmptsk;rimmptsk; C:\Windows\system32\DRIVERS\rimmptsk.sys [2005-10-14 28544]
R3 rimsptsk;rimsptsk; C:\Windows\system32\DRIVERS\rimsptsk.sys [2005-10-14 51328]
R3 rismxdp;Ricoh xD-Picture Card Driver; C:\Windows\system32\DRIVERS\rixdptsk.sys [2005-10-14 307968]
R3 sdbus;sdbus; C:\Windows\system32\DRIVERS\sdbus.sys [2008-01-19 88576]
R3 STHDA;SigmaTel High Definition Audio CODEC; C:\Windows\system32\drivers\stwrt.sys [2007-01-12 647680]
R3 StillCam;Still Serial Digital Camera Driver; C:\Windows\system32\DRIVERS\serscan.sys [2008-01-19 9216]
R3 SymEvent;SymEvent; \??\C:\Windows\system32\Drivers\SYMEVENT.SYS [2008-04-09 109744]
R3 SYMREDRV;SYMREDRV; C:\Windows\System32\Drivers\SYMREDRV.SYS [2006-10-26 26384]
R3 winachsf;winachsf; C:\Windows\system32\DRIVERS\HSX_CNXT.sys [2006-10-18 659968]
R3 WmiAcpi;Microsoft Windows Management Interface for ACPI; C:\Windows\system32\DRIVERS\wmiacpi.sys [2008-01-19 11264]
S3 a0dxdpvo;a0dxdpvo; C:\Windows\system32\drivers\a0dxdpvo.sys []
S3 BVRPMPR5;BVRPMPR5 NDIS Protocol Driver; \??\C:\Windows\system32\drivers\BVRPMPR5.SYS [2007-06-20 49904]
S3 Dot4;MS IEEE-1284.4 Driver; C:\Windows\system32\DRIVERS\Dot4.sys [2008-01-19 131584]
S3 Dot4Print;Print Class Driver for IEEE-1284.4; C:\Windows\system32\DRIVERS\Dot4Prt.sys [2008-01-19 16384]
S3 dot4usb;MS Dot4USB Filter Dot4USB Filter; C:\Windows\system32\DRIVERS\dot4usb.sys [2008-01-19 36864]
S3 drmkaud;Microsoft Kernel DRM Audio Descrambler; C:\Windows\system32\drivers\drmkaud.sys [2008-01-19 5632]
S3 DSproct;DSproct; \??\C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys [2006-01-10 4864]
S3 HdAudAddService;Microsoft 1.1 UAA Function Driver for High Definition Audio Service; C:\Windows\system32\drivers\HdAudio.sys [2006-11-02 235520]
S3 HSFHWAZL;HSFHWAZL; C:\Windows\system32\DRIVERS\VSTAZL3.SYS [2006-11-02 200704]
S3 mamotou;mamotou; C:\Windows\system32\DRIVERS\mamotou.sys [2007-02-02 49377]
S3 MHNDRV;MHN driver; C:\Windows\system32\DRIVERS\mhndrv.sys [2004-08-10 11008]
S3 MSKSSRV;Microsoft Streaming Service Proxy; C:\Windows\system32\drivers\MSKSSRV.sys [2008-01-19 8192]
S3 MSPCLOCK;Microsoft Streaming Clock Proxy; C:\Windows\system32\drivers\MSPCLOCK.sys [2008-01-19 5888]
S3 MSPQM;Microsoft Streaming Quality Manager Proxy; C:\Windows\system32\drivers\MSPQM.sys [2008-01-19 5504]
S3 MSTEE;Microsoft Streaming Tee/Sink-to-Sink Converter; C:\Windows\system32\drivers\MSTEE.sys [2008-01-19 6016]
S3 NPF;NetGroup Packet Filter Driver; C:\Windows\system32\drivers\npf.sys [2007-11-06 34064]
S3 R300;R300; C:\Windows\system32\DRIVERS\atikmdag.sys [2007-03-14 2427392]
S3 SASENUM;SASENUM; \??\C:\Program Files\SUPERAntiSpyware\SASENUM.SYS [2006-02-16 4096]
S3 SRTSPL;SRTSPL; C:\Windows\System32\Drivers\SRTSPL.SYS [2006-11-22 274328]
S3 UMPass;Microsoft UMPass Driver; C:\Windows\system32\DRIVERS\umpass.sys [2008-01-19 7680]
S3 USBAAPL;Apple Mobile USB Driver; C:\Windows\System32\Drivers\usbaapl.sys [2008-10-01 32000]
S3 USBCM;Scientific-Atlanta USB Cable Modem Driver; C:\Windows\system32\DRIVERS\Sacm2A.sys [2004-06-09 15429]
S3 usbscan;USB Scanner Driver; C:\Windows\system32\DRIVERS\usbscan.sys [2008-01-19 35328]
S3 WpdUsb;WpdUsb; C:\Windows\system32\DRIVERS\wpdusb.sys [2008-01-19 39936]
S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\Windows\system32\DRIVERS\WudfPf.sys [2008-01-19 51200]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\Windows\system32\DRIVERS\wudfrd.sys [2008-01-19 83328]
S4 abp480n5;abp480n5; C:\Windows\system32\DRIVERS\ABP480N5.SYS [2001-08-17 23552]
S4 Aha154x;Aha154x; C:\Windows\system32\DRIVERS\aha154x.sys [2001-08-17 12800]
S4 aic78u2;aic78u2; C:\Windows\system32\DRIVERS\aic78u2.sys [2001-08-17 55168]
S4 amsint;amsint; C:\Windows\system32\DRIVERS\amsint.sys [2001-08-17 12032]
S4 asc;asc; C:\Windows\system32\DRIVERS\asc.sys [2001-08-17 26496]
S4 asc3350p;asc3350p; C:\Windows\system32\DRIVERS\asc3350p.sys [2001-08-17 22400]
S4 asc3550;asc3550; C:\Windows\system32\DRIVERS\asc3550.sys [2001-08-17 14848]
S4 cd20xrnt;cd20xrnt; C:\Windows\system32\DRIVERS\cd20xrnt.sys [2001-08-17 7680]
S4 Cpqarray;Cpqarray; C:\Windows\system32\DRIVERS\cpqarray.sys [2001-08-17 14976]
S4 dac2w2k;dac2w2k; C:\Windows\system32\DRIVERS\dac2w2k.sys [2001-08-17 179584]
S4 dac960nt;dac960nt; C:\Windows\system32\DRIVERS\dac960nt.sys [2001-08-17 14720]
S4 dpti2o;dpti2o; C:\Windows\system32\DRIVERS\dpti2o.sys [2001-08-17 20192]
S4 hpn;hpn; C:\Windows\system32\DRIVERS\hpn.sys [2001-08-17 25952]
S4 ini910u;ini910u; C:\Windows\system32\DRIVERS\ini910u.sys [2001-08-17 16000]
S4 ql1080;ql1080; C:\Windows\system32\DRIVERS\ql1080.sys [2001-08-17 40320]
S4 Ql10wnt;Ql10wnt; C:\Windows\system32\DRIVERS\ql10wnt.sys [2001-08-17 33152]
S4 ql12160;ql12160; C:\Windows\system32\DRIVERS\ql12160.sys [2001-08-17 45312]
S4 ql1240;ql1240; C:\Windows\system32\DRIVERS\ql1240.sys [2001-08-17 40448]
S4 ql1280;ql1280; C:\Windows\system32\DRIVERS\ql1280.sys [2001-08-17 49024]
S4 Sparrow;Sparrow; C:\Windows\system32\DRIVERS\sparrow.sys [2001-08-17 19072]
S4 symc810;symc810; C:\Windows\system32\DRIVERS\symc810.sys [2001-08-17 16256]
S4 TosIde;TosIde; C:\Windows\system32\DRIVERS\toside.sys [2001-08-17 4992]
S4 ultra;ultra; C:\Windows\system32\DRIVERS\ultra.sys [2001-08-17 36736]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Apple Mobile Device;Apple Mobile Device; C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe [2008-10-01 116040]
R2 Ati External Event Utility;Ati External Event Utility; C:\Windows\system32\Ati2evxx.exe [2007-03-14 569344]
R2 Bonjour Service;Bonjour Service; C:\Program Files\Bonjour\mDNSResponder.exe [2008-08-29 238888]
R2 ccEvtMgr;Symantec Event Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 ccSetMgr;Symantec Settings Manager; C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe [2006-11-22 107624]
R2 DefWatch;Symantec AntiVirus Definition Watcher; C:\Program Files\Symantec AntiVirus\DefWatch.exe [2006-11-28 30872]
R2 hpqddsvc;HP CUE DeviceDiscovery Service; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 HPSLPSVC;HP Network Devices Support; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R2 MSSQL$MICROSOFTSMLBIZ;MSSQL$MICROSOFTSMLBIZ; C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlservr.exe [2005-05-04 9150464]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\Windows\System32\svchost.exe [2008-01-19 21504]
R2 Symantec AntiVirus;Symantec AntiVirus; C:\Program Files\Symantec AntiVirus\Rtvscan.exe [2006-11-28 1962136]
R2 XAudioService;XAudioService; C:\Windows\system32\DRIVERS\xaudio.exe [2006-08-04 386560]
R3 hpqcxs08;hpqcxs08; C:\Windows\system32\svchost.exe [2008-01-19 21504]
R3 iPod Service;iPod Service; C:\Program Files\iPod\bin\iPodService.exe [2008-10-01 536872]
S2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2007-03-01 89136]
S3 gusvc;Google Updater Service; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2007-01-03 136120]
S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [2004-10-22 73728]
S3 LiveUpdate;LiveUpdate; C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE [2006-10-31 2541248]
S3 MHN;MHN; C:\WINDOWS\System32\svchost.exe [2008-01-19 21504]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2007-08-24 68464]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2005-05-03 73728]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2006-08-08 208896]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2007-08-24 443776]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 rpcapd;Remote Packet Capture Protocol v.0 (experimental); C:\Program Files\WinPcap\rpcapd.exe [2007-11-06 92792]
S3 SavRoam;SAVRoam; C:\Program Files\Symantec AntiVirus\SavRoam.exe [2006-11-28 122008]
S3 SQLAgent$MICROSOFTSMLBIZ;SQLAgent$MICROSOFTSMLBIZ; C:\Program Files\Microsoft SQL Server\MSSQL$MICROSOFTSMLBIZ\Binn\sqlagent.EXE [2005-05-03 323584]
S3 TlntSvr;@%SystemRoot%\system32\tlntsvr.exe,-119; C:\Windows\System32\tlntsvr.exe [2008-01-19 75776]
S4 McVUSvc;McVUSvc; C:\Program Files\McAfee\DellVU\McVUSvc.exe []

-----------------EOF-----------------
 
info.txt logfile of random's system information tool 1.04 2008-10-29 13:49:55

======Uninstall list======

-->"C:\Program Files\Your Uninstaller 2008\unins000.exe"
-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
-->C:\Program Files\Nero\Nero 7\nero\uninstall\UNNERO.exe /UNINSTALL
-->C:\WINDOWS\UNNeroBackItUp.exe /UNINSTALL
-->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL
-->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL
-->C:\WINDOWS\UNNeroVision.exe /UNINSTALL
-->C:\WINDOWS\UNRecode.exe /UNINSTALL
-->MsiExec.exe /X{E09B48B5-E141-427A-AB0C-D3605127224A}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0015-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0016-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0018-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0019-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001A-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001B-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0409-0000-0000000FF1CE} /uninstall {3EC77D26-799B-4CD8-914F-C1565E796173}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-040C-0000-0000000FF1CE} /uninstall {430971B1-C31E-45DA-81E0-72C095BAB72C}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-001F-0C0A-0000-0000000FF1CE} /uninstall {F7A31780-33C4-4E39-951A-5EC9B91D7BF1}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {BEE75E01-DD3F-4D5F-B96C-609E6538D419}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0044-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-006E-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00A1-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-00BA-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0114-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0115-0409-0000-0000000FF1CE} /uninstall {FAD8A83E-9BAC-4179-9268-A35948034D85}
2007 Microsoft Office Suite Service Pack 1 (SP1)-->msiexec /package {90120000-0117-0409-0000-0000000FF1CE} /uninstall {4CA4ECC1-DBD4-4591-8F4C-AA12AD2D3E59}
32 Bit HP CIO Components Installer-->MsiExec.exe /I{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}
Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1
Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07}
Adobe AIR-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Updater.exe -arp:uninstall
Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F}
Adobe Flash Player 10 ActiveX-->C:\Windows\system32\Macromed\Flash\uninstall_activeX.exe
Adobe Flash Player Plugin-->C:\Windows\system32\Macromed\Flash\uninstall_plugin.exe
Adobe Reader 7.1.0-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A71000000002}
Adobe Shockwave Player 11-->C:\Windows\system32\adobe\SHOCKW~1\UNWISE.EXE C:\Windows\system32\Adobe\SHOCKW~1\Install.log
American History Lux Demo 1.09-->"C:\Program Files\American History Lux Demo\unins000.exe"
AnswerWorks 5.0 English Runtime-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{DBCC73BA-C69A-4BF5-B4BF-F07501EE7039}\setup.exe" -l0x9 -uninst -removeonly
AOLIcon-->MsiExec.exe /I{62BD0AE0-4EB1-4BBB-8F43-B6400C8FEB2C}
Apple Mobile Device Support-->MsiExec.exe /I{976C2B2A-CE59-4AB3-83FB-BF895E28F2E6}
Apple Software Update-->MsiExec.exe /I{6956856F-B6B3-4BE0-BA0B-8F495BE32033}
ATI - Software Uninstall Utility-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe
ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean
AVI MPEG Converter 3-->C:\Program Files\ImTOO\AVI MPEG Converter 3\Uninstall.exe
Aye SplitTiff version 3.0-->"C:\Program Files\ZkeSoft\AyeSplitTiff\unins000.exe"
Bonjour-->MsiExec.exe /I{8A25392D-C5D2-4E79-A2BD-C15DDC5B0959}
Broadcom Management Programs-->MsiExec.exe /I{26E1BFB0-E87E-4696-9F89-B467F01F81E5}
Cabela's Big Game Hunter - Alaskan Adventures-->MsiExec.exe /I{17D2AF72-1448-4C43-A1C4-842757E4DEB6}
Conexant HDA D110 MDC V.92 Modem-->C:\Program Files\CONEXANT\CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F100C3\HXFSETUP.EXE -U -IDellHDAz.inf
Corel Snapfire Plus-->MsiExec.exe /I{7ADE3A47-B425-45E9-8FF6-11BE2B775645}
Dell Game Console-->"C:\Program Files\WildTangent\Apps\Dell Game Console\Uninstall.exe"
Dell Resource CD-->MsiExec.exe /X{FCD9CD52-7222-4672-94A0-A722BA702FD0}
Dell Support 3.2-->MsiExec.exe /X{3846E811-639D-4DE1-844B-30491C0A6C0C}
DHTML Editing Component-->MsiExec.exe /X{2EA870FA-585F-4187-903D-CB9FFD21E2E0}
Digital Content Portal-->MsiExec.exe /I{6D5FCA42-1486-4E32-AFE8-1B7E2AA59D33}
Digital Line Detect-->C:\Program Files\InstallShield Installation Information\{E646DCF0-5A68-11D5-B229-002078017FBF}\Setup.exe -runfromtemp -l0x0009 -removeonly
DivX Codec-->C:\Program Files\DivX\DivXCodecUninstall.exe /CODEC
DivX Content Uploader-->C:\Program Files\DivX\DivXContentUploaderUninstall.exe /CUPLOADER
DivX Converter-->C:\Program Files\DivX\DivXConverterUninstall.exe /CONVERTER
DivX Player-->C:\Program Files\DivX\DivXPlayerUninstall.exe /PLAYER
DivX Web Player-->C:\Program Files\DivX\DivXWebPlayerUninstall.exe /PLUGIN
Documentation & Support Launcher-->MsiExec.exe /X{B0DF58A2-40DF-4465-AA56-38623EC9938C}
DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe"
DVDFab Platinum 3.0.8.6-->"C:\Program Files\DVDFab Platinum 3\unins000.exe"
DVDFab Platinum 4.0.6.2-->"C:\Program Files\DVDFab Platinum 4\unins000.exe"
EducateU-->MsiExec.exe /I{A683A2C0-821C-486F-858C-FA634DB5E864}
ESPNMotion-->C:\PROGRA~1\ESPNMO~1\UNWISE.EXE /u C:\PROGRA~1\ESPNMO~1\INSTALL.LOG
Games, Music, & Photos Launcher-->MsiExec.exe /X{B6884A07-0305-47AE-9969-8F26FADC17DE}
GemMaster Mystic-->"C:\Program Files\GemMaster\uninstallgemmaster.exe"
HijackThis 2.0.2-->"C:\Program Files\Trend Micro\HijackThis\HijackThis.exe" /uninstall
HP Customer Participation Program 9.0-->C:\Program Files\HP\Digital Imaging\ExtCapUninstall\hpzscr01.exe -datfile hpqhsc01.dat
HP Imaging Device Functions 9.0-->C:\Program Files\HP\Digital Imaging\DeviceManagement\hpzscr01.exe -datfile hpqbud01.dat
HP OCR Software 9.0-->C:\Program Files\HP\Digital Imaging\OCR\hpzscr01.exe -datfile hpqbud11.dat
HP Photosmart All-In-One Software 9.0-->C:\Program Files\HP\Digital Imaging\{D64BC2CF-0F12-47d7-B412-B4F3FD684253}\setup\hpzscr01.exe -datfile hposcr21.dat
HP Photosmart Essential 2.01-->C:\Program Files\HP\Digital Imaging\PhotoSmartEssential\hpzscr01.exe -datfile hpqbud13.dat
HP Smart Web Printing-->MsiExec.exe /X{415CDA53-9100-476F-A7B2-476691E117C7}
HP Solution Center 9.0-->C:\Program Files\HP\Digital Imaging\eSupport\hpzscr01.exe -datfile hpqbud05.dat
HP Update-->MsiExec.exe /X{FE57DE70-95DE-4B64-9266-84DA811053DB}
HPSSupply-->MsiExec.exe /X{487B0B9B-DCD4-440D-89A0-A6EDE1A545A3}
ImgBurn-->"C:\Program Files\ImgBurn\uninstall.exe"
iTunes-->MsiExec.exe /I{DDDE0BE3-0CBE-4BF6-B75A-E3F69C947843}
Java(TM) 6 Update 6-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160060}
Java(TM) 6 Update 7-->MsiExec.exe /I{3248F0A8-6813-11D6-A77B-00B0D0160070}
Kaspersky Online Scanner-->C:\Windows\system32\Kaspersky Lab\Kaspersky Online Scanner\kavuninstall.exe
Learn2 Player (Uninstall Only)-->C:\Program Files\Learn2.com\StRunner\stuninst.exe
LiveUpdate 3.2 (Symantec Corporation)-->"C:\Program Files\Symantec\LiveUpdate\LSETUP.EXE" /U
Magic ISO Maker v5.4 (build 0256)-->C:\PROGRA~1\MagicISO\UNWISE.EXE C:\PROGRA~1\MagicISO\INSTALL.LOG
Malwarebytes' Anti-Malware-->"C:\Program Files\Malwarebytes' Anti-Malware\unins000.exe"
Masque Slots Dual Pack-->MsiExec.exe /I{42A28621-B822-4B7B-8D91-6D14CB4E6292}
MCU-->MsiExec.exe /I{D2988E9B-C73F-422C-AD4B-A66EBE257120}
MediaDirect-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\11\00\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{9C6978E8-B6D0-4AB7-A7A0-D81A74FBF745}\Setup.exe" -l0x9 -cluninstall
MemoriesOnTV 3.1.3-->"C:\Program Files\MemoriesOnTV3\unins000.exe"
Microsoft .NET Framework 1.1 Hotfix (KB929729)-->"C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\hotfix.exe" "C:\Windows\Microsoft.NET\Framework\v1.1.4322\Updates\M929729\M929729Uninstall.msp"
Microsoft .NET Framework 1.1-->msiexec.exe /X {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft .NET Framework 1.1-->MsiExec.exe /X{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}
Microsoft Document Explorer 2005-->C:\Program Files\Common Files\Microsoft Shared\Help 8\Microsoft Document Explorer 2005\install.exe
Microsoft Document Explorer 2005-->MsiExec.exe /X{44D4AF75-6870-41F5-9181-662EA05507E1}
Microsoft Money 2007 Home & Business-->"C:\Program Files\Microsoft Money 2007\MNYCoreFiles\Setup\uninst.exe" /s:120
Microsoft Money Shared Libraries-->MsiExec.exe /X{5F00DF7E-418B-4CD9-8EC5-781156BCC49E}
Microsoft Office Access MUI (English) 2007-->MsiExec.exe /X{90120000-0015-0409-0000-0000000FF1CE}
Microsoft Office Access Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0117-0409-0000-0000000FF1CE}
Microsoft Office Enterprise 2007-->"C:\Program Files\Common Files\Microsoft Shared\OFFICE12\Office Setup Controller\setup.exe" /uninstall ENTERPRISE /dll OSETUP.DLL
Microsoft Office Enterprise 2007-->MsiExec.exe /X{90120000-0030-0000-0000-0000000FF1CE}
Microsoft Office Excel MUI (English) 2007-->MsiExec.exe /X{90120000-0016-0409-0000-0000000FF1CE}
Microsoft Office Groove MUI (English) 2007-->MsiExec.exe /X{90120000-00BA-0409-0000-0000000FF1CE}
Microsoft Office Groove Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0114-0409-0000-0000000FF1CE}
Microsoft Office InfoPath MUI (English) 2007-->MsiExec.exe /X{90120000-0044-0409-0000-0000000FF1CE}
Microsoft Office OneNote MUI (English) 2007-->MsiExec.exe /X{90120000-00A1-0409-0000-0000000FF1CE}
Microsoft Office Outlook 2003 with Business Contact Manager Update-->MsiExec.exe /I{BA68600E-96D9-4E92-80F2-26B9681B5A63}
Microsoft Office Outlook MUI (English) 2007-->MsiExec.exe /X{90120000-001A-0409-0000-0000000FF1CE}
Microsoft Office PowerPoint MUI (English) 2007-->MsiExec.exe /X{90120000-0018-0409-0000-0000000FF1CE}
Microsoft Office Proof (English) 2007-->MsiExec.exe /X{90120000-001F-0409-0000-0000000FF1CE}
Microsoft Office Proof (French) 2007-->MsiExec.exe /X{90120000-001F-040C-0000-0000000FF1CE}
Microsoft Office Proof (Spanish) 2007-->MsiExec.exe /X{90120000-001F-0C0A-0000-0000000FF1CE}
Microsoft Office Proofing (English) 2007-->MsiExec.exe /X{90120000-002C-0409-0000-0000000FF1CE}
Microsoft Office Publisher MUI (English) 2007-->MsiExec.exe /X{90120000-0019-0409-0000-0000000FF1CE}
Microsoft Office Shared MUI (English) 2007-->MsiExec.exe /X{90120000-006E-0409-0000-0000000FF1CE}
Microsoft Office Shared Setup Metadata MUI (English) 2007-->MsiExec.exe /X{90120000-0115-0409-0000-0000000FF1CE}
Microsoft Office Word MUI (English) 2007-->MsiExec.exe /X{90120000-001B-0409-0000-0000000FF1CE}
Microsoft Plus! Digital Media Edition Installer-->MsiExec.exe /X{6E45BA47-383C-4C1E-8ED0-0D4845C293D7}
Microsoft Plus! Photo Story 2 LE-->MsiExec.exe /X{0EB5D9B7-8E6C-4A9E-B74F-16B7EE89A67B}
Microsoft Silverlight-->MsiExec.exe /I{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}
Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d}
Microsoft Works-->MsiExec.exe /I{6D52C408-B09A-4520-9B18-475B81D393F1}
MobileMe Control Panel-->MsiExec.exe /I{6DA9102E-199F-43A0-A36B-6EF48081A658}
Modem Helper-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{7F142D56-3326-11D5-B229-002078017FBF}\setup.exe" -l0x9 ControlPanel
Monopoly Tycoon-->C:\PROGRA~1\ATARI-~1\MONOPO~1\UNWISE.EXE C:\PROGRA~1\ATARI-~1\MONOPO~1\INSTALL.LOG
Mozilla Firefox (2.0.0.2)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe
MpcStar 1.7-->C:\Program Files\MpcStar\uninst.exe
MSN Money Investment Toolbox-->"C:\Program Files\MSN Money Investment Toolbox\MNYCoreFiles\Setup\uninst.exe" /s:5
MSXML 4.0 SP2 (KB925672)-->MsiExec.exe /I{A9CF9052-F4A0-475D-A00F-A8388C62DD63}
MSXML 4.0 SP2 (KB927978)-->MsiExec.exe /I{37477865-A3F1-4772-AD43-AAFC6BCFF99F}
MSXML 4.0 SP2 (KB936181)-->MsiExec.exe /I{C04E32E0-0416-434D-AFB9-6969D703A9EF}
MSXML 4.0 SP2 (KB941833)-->MsiExec.exe /I{C523D256-313D-4866-B36A-F3DE528246EF}
Nero 7 Premium-->MsiExec.exe /I{38E0C491-5230-4373-B62E-F1A6E94B1033}
NetWaiting-->C:\Program Files\InstallShield Installation Information\{3F92ABBB-6BBF-11D5-B229-002078017FBF}\Setup.exe -runfromtemp -l0x0009 -removeonly
Next Generation Visualisations-->MsiExec.exe /I{2E376AD9-5C49-4F7D-A0BA-6A44E8FA5A3B}
Otto-->"C:\Program Files\EnglishOtto\uninstallotto.exe"
OutlookAddinSetup-->MsiExec.exe /I{9BDEF074-020E-458D-ADC5-8FF68E0C9B56}
Photo Collage Maker 1.55-->"C:\Program Files\Photo Collage Maker\unins000.exe"
Picasa 2-->"C:\Program Files\Picasa2\Uninstall.exe"
Quicken 2008-->MsiExec.exe /X{3B0F52AC-EF5C-4831-B221-06C782E41280}
QuickSet-->MsiExec.exe /I{53A01CC6-14B0-4512-A2E7-10D39BF83DC4}
QuickTime-->MsiExec.exe /I{8DC42D05-680B-41B0-8878-6C14D24602DB}
RealPlayer Basic-->C:\Program Files\Common Files\Real\Update\\rnuninst.exe RealNetworks|RealPlayer|6.0
RegCure 1.5.0.0-->C:\Program Files\RegCure\uninst.exe
Safari-->MsiExec.exe /I{C9D96682-5A4D-45FA-BA3E-DDCB2B0CB868}
Scientific-Atlanta WebSTAR 2000 series Cable Modem-->UNDPX2A.EXE
Security Update for 2007 Microsoft Office System (KB951944)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {797AE457-BA17-4BBC-B501-25FB3A0103C7}
Security Update for 2007 Microsoft Office System (KB955936)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {1D94099C-2BBA-440E-BD5E-093BBDF8F028}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /I{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for CAPICOM (KB931906)-->MsiExec.exe /X{0EFDF2F9-836D-4EB7-A32D-038BD3F1FB2A}
Security Update for Microsoft Office Excel 2007 (KB955470)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6E8637D8-10D6-4568-AA06-E2706F31685E}
Security Update for Microsoft Office OneNote 2007 (KB950130)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F1B2401C-B610-4BF2-AA1C-52C55827A8F4}
Security Update for Microsoft Office PowerPoint 2007 (KB951338)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {558B709B-821B-4FC5-90FC-9A8890641E77}
Security Update for Microsoft Office Publisher 2007 (KB950114)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {F9C3CDBA-1F00-4D4D-959D-75C9D3ACDD85}
Security Update for Microsoft Office system 2007 (KB951808)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {8F375E11-4FD6-4B89-9E2B-A76D48B51E00}
Security Update for Microsoft Office system 2007 (KB954326)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {5F7F6FFF-395D-480E-8450-64F385D82C5F}
Security Update for Microsoft Office Word 2007 (KB950113)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {AD72BABE-C733-4FCF-9674-4314466191B9}
Security Update for Visio 2007 (KB947590)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {6BAD036C-261F-4BEF-96CF-C20678D07A41}
SigmaTel Audio-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\10\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{A462213D-EED4-42C2-9A60-7BDD4D4B0B17}\SETUP.exe" -l0x9 -remove -removeonly
Sonic Encoders-->MsiExec.exe /I{9941F0AA-B903-4AF4-A055-83A9815CC011}
Spybot - Search & Destroy 1.5.2.20-->"C:\Windows\unins000.exe"
Spybot - Search & Destroy-->"C:\Program Files\Spybot - Search & Destroy\unins001.exe"
Starcraft-->C:\Windows\SCunin.exe C:\Windows\SCunin.dat
Stock NeuroMaster version 1.31-->"C:\Program Files\Stock NeuroMaster 131\unins000.exe"
SUPERAntiSpyware Professional-->MsiExec.exe /X{CDDCBBF1-2703-46BC-938B-BCC81A1EEAAA}
Symantec AntiVirus-->MsiExec.exe /I{7C9E6E52-EB11-44DB-A761-82D5D873A8D9}
Synaptics Pointing Device Driver-->rundll32.exe "C:\Program Files\Synaptics\SynTP\SynISDLL.dll",standAloneUninstall
ToneThis 3.0-->C:\Program Files\ToneThis 3.0\Uninstall.exe
Update for Microsoft Office Outlook 2007 (KB952142)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {4AD3A076-427C-491F-A5B7-7D1DE788A756}
Update for Office 2007 (KB946691)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {A420F522-7395-4872-9882-C591B4B92278}
Update for Outlook 2007 Junk Email Filter (kb957258)-->msiexec /package {90120000-0030-0000-0000-0000000FF1CE} /uninstall {E070CDA4-A8DD-47FA-89A0-F5DA5D5DDFF9}
URL Assistant-->regsvr32 /u /s "C:\Program Files\BAE\BAE.dll"
User's Guides-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\engine\6\INTEL3~1\ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{5CD29180-A95E-11D3-A4EB-00C04F7BDB2C}\setup.exe"
WD Diagnostics-->MsiExec.exe /X{0AB76F69-E761-4CFA-B9B0-A1906B4E9E4B}
Windows Installer Clean Up-->MsiExec.exe /X{121634B0-2F4B-11D3-ADA3-00C04F52DD52}
Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll
Windows Media Player 10-->MsiExec.exe /I{33BB4982-DC52-4886-A03B-F4C5C80BEE89}
Windows Media Player 11-->"C:\Program Files\Windows Media Player\Setup_wm.exe" /Uninstall
WinPcap 4.0.2-->C:\Program Files\WinPcap\uninstall.exe
WinRAR archiver-->C:\Program Files\WinRAR\uninstall.exe
WinZip 11.1-->MsiExec.exe /X{CD95F661-A5C4-44F5-A6AA-ECDD91C240B5}

=====HijackThis Backups=====

O4 - HKCU\..\Run: [soap bib] "C:\ProgramData\DogEqEq.pk1nzag"
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page =

======Hosts File======

127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com

======Environment variables======

"ComSpec"=%SystemRoot%\system32\cmd.exe
"FP_NO_HOST_CHECK"=NO
"OS"=Windows_NT
"PROCESSOR_ARCHITECTURE"=x86
"TEMP"=%SystemRoot%\TEMP
"TMP"=%SystemRoot%\TEMP
"USERNAME"=SYSTEM
"windir"=%SystemRoot%
"PROCESSOR_LEVEL"=6
"PROCESSOR_IDENTIFIER"=x86 Family 6 Model 15 Stepping 6, GenuineIntel
"PROCESSOR_REVISION"=0f06
"NUMBER_OF_PROCESSORS"=2
"Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\System32\Wbem;C:\Program Files\Microsoft SQL Server\80\Tools\Binn\;C:\Program Files\ATI Technologies\ATI.ACE\Core-Static;C:\Program Files\Common Files\Roxio Shared\DLLShared\;C:\Program Files\Common Files\Roxio Shared\9.0\DLLShared\;C:\Program Files\QuickTime\QTSystem\
"PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH
"CLASSPATH"=.;C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip
"QTJAVA"=C:\Program Files\Java\jre1.6.0_07\lib\ext\QTJava.zip

-----------------EOF-----------------
 
There are traces of certain infection so let's check this next:

Disable resident protections (Antivirus...); you'll re-enable them after the scan

DownloadLop S&D here

Right-click Lop S&D.exe and choose run as administrator.
Choose the language, then choose Option 1 (Search)
Wait till the end of the scan
Post the log which is created: (C:\lopR.txt)
 
--------------------\\ Lop S&D 4.2.4-9 XP/Vista

Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A12
USER : Aaron ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:105 Go (Free:11 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
Option : [1] ( Thu 10/30/2008|23:53 )

[ UAC => 1 ]

--------------------\\ Listing folders in Local

[03/11/2007|07:09] C:\Users\Aaron\AppData\Local\<DIR> {3248F0A6-6813-11D6-A77B-00B0D0150060}
[06/26/2008|10:56] C:\Users\Aaron\AppData\Local\<DIR> Adobe
[07/01/2008|10:47] C:\Users\Aaron\AppData\Local\<DIR> Apple
[08/14/2008|11:28] C:\Users\Aaron\AppData\Local\<DIR> Apple Computer
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<JUNCTION> Application Data
[11/21/2007|07:35] C:\Users\Aaron\AppData\Local\<DIR> ApplicationHistory
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<DIR> ATI
[09/10/2008|11:20] C:\Users\Aaron\AppData\Local\7,592 d3d9caps.dat
[10/13/2008|03:58] C:\Users\Aaron\AppData\Local\119,808 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[02/29/2008|10:18] C:\Users\Aaron\AppData\Local\<DIR> DNA
[09/14/2007|05:24] C:\Users\Aaron\AppData\Local\<DIR> eMule
[11/21/2007|05:49] C:\Users\Aaron\AppData\Local\93 fusioncache.dat
[09/28/2008|08:44] C:\Users\Aaron\AppData\Local\109,216 GDIPFONTCACHEV1.DAT
[04/14/2008|09:14] C:\Users\Aaron\AppData\Local\<DIR> GoldenCasino
[04/25/2008|12:44] C:\Users\Aaron\AppData\Local\<DIR> Google
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<JUNCTION> History
[10/29/2008|11:32] C:\Users\Aaron\AppData\Local\3,023,627 IconCache.db
[01/18/2008|10:32] C:\Users\Aaron\AppData\Local\4,096 keyfile3.drm
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<DIR> MediaDirect
[01/28/2008|06:43] C:\Users\Aaron\AppData\Local\<DIR> Microsoft
[02/29/2008|04:34] C:\Users\Aaron\AppData\Local\<DIR> Microsoft Games
[06/16/2008|10:44] C:\Users\Aaron\AppData\Local\<DIR> Microsoft Help
[08/18/2007|09:17] C:\Users\Aaron\AppData\Local\<DIR> MigWiz
[08/22/2007|08:30] C:\Users\Aaron\AppData\Local\<DIR> Protexis
[11/18/2007|04:06] C:\Users\Aaron\AppData\Local\<DIR> Seven Zip
[04/09/2008|09:24] C:\Users\Aaron\AppData\Local\<DIR> Symantec
[10/30/2008|11:49] C:\Users\Aaron\AppData\Local\<DIR> Temp
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<JUNCTION> Temporary Internet Files
[01/11/2008|11:55] C:\Users\Aaron\AppData\Local\<DIR> VirtualStore
[04/14/2008|09:15] C:\Users\Aaron\AppData\Local\<DIR> VTShared
[03/11/2007|07:09] C:\Users\Aaron\AppData\Local\<DIR> Wildtangent
[08/06/2007|08:52] C:\Users\Aaron\AppData\Local\<DIR> Yahoo

--------------------\\ Scheduled Tasks located in C:\Windows\Tasks

[04/14/2008 04:50 PM][--a------] C:\Windows\tasks\RegCure Program Check.job
[04/14/2008 04:50 PM][--a------] C:\Windows\tasks\RegCure.job
[04/14/2008 09:12 PM][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{7A7E3197-2C68-43E5-B830-D01A604CF1EE}.job
[04/14/2008 10:09 PM][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5371693C-21D3-410B-BEA3-B307ECA5F902}.job
[10/30/2008 04:01 PM][--ah-----] C:\Windows\tasks\SA.DAT
[11/02/2006 08:09 AM][--a------] C:\Windows\tasks\SCHEDLGU.TXT
[08/10/2004 06:00 AM][-rah-----] C:\Windows\tasks\desktop.ini

--------------------\\ Listing Folders in C:\ProgramData

[10/04/2008|10:50] C:\ProgramData\<DIR> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[08/06/2007|08:19] C:\ProgramData\<DIR> {CFAB4006-0AE0-414D-866A-DCB2C46553CF}
[03/11/2007|06:59] C:\ProgramData\<DIR> Adobe
[03/28/2008|10:17] C:\ProgramData\<DIR> Apple
[07/11/2008|11:28] C:\ProgramData\<DIR> Apple Computer
[01/29/2008|12:05] C:\ProgramData\<DIR> Cabela's Big Game Hunter - Alaskan Adventure Saves
[05/26/2008|05:41] C:\ProgramData\<DIR> Corel
[03/11/2007|06:59] C:\ProgramData\<DIR> CyberLink
[03/11/2007|06:59] C:\ProgramData\<DIR> Dell
[03/11/2007|06:59] C:\ProgramData\<DIR> DIGStream
[05/08/2008|10:46] C:\ProgramData\<DIR> Documents
[10/14/2007|01:15] C:\ProgramData\114,704 DogEqEq.1231q
[10/15/2007|02:44] C:\ProgramData\225,296 DogEqEq.5bj0d4
[10/15/2007|02:00] C:\ProgramData\28,688 DogEqEq.evqrobd
[10/15/2007|02:22] C:\ProgramData\73,744 DogEqEq.h5v8szp
[10/14/2007|01:15] C:\ProgramData\282,640 DogEqEq.j4idzye
[10/15/2007|03:06] C:\ProgramData\278,544 DogEqEq.pk1nzag
[10/14/2007|02:21] C:\ProgramData\233,488 DogEqEq.xvrpcx
[03/11/2007|06:59] C:\ProgramData\<DIR> DRM
[06/29/2008|12:47] C:\ProgramData\<DIR> DVD Shrink
[09/14/2007|05:24] C:\ProgramData\<DIR> eMule
[03/11/2007|06:59] C:\ProgramData\<DIR> GTek
[09/14/2008|06:35] C:\ProgramData\<DIR> Hewlett-Packard
[09/15/2008|11:14] C:\ProgramData\<DIR> HP
[09/14/2008|06:25] C:\ProgramData\<DIR> HP Product Assistant
[09/14/2008|06:27] C:\ProgramData\<DIR> HPSSUPPLY
[10/04/2008|05:22] C:\ProgramData\1,309 hpzinstall.log
[03/11/2007|06:59] C:\ProgramData\<DIR> InstallShield
[05/31/2008|04:59] C:\ProgramData\<DIR> Intuit
[10/14/2007|01:16] C:\ProgramData\118,800 Love Trust Ball.l28y40
[06/25/2008|05:44] C:\ProgramData\<DIR> Malwarebytes
[10/14/2007|01:16] C:\ProgramData\<DIR> Mfcd upload army browse
[01/24/2008|07:30] C:\ProgramData\<DIR> Microsoft
[10/18/2008|05:38] C:\ProgramData\<DIR> Microsoft Help
[09/23/2008|11:05] C:\ProgramData\<DIR> NOS
[03/11/2007|10:24] C:\ProgramData\258 ntuser.pol
[08/12/2007|06:30] C:\ProgramData\<DIR> Office Genuine Advantage
[03/11/2007|06:59] C:\ProgramData\<DIR> ParetoLogic Anti-Spyware
[03/11/2007|06:59] C:\ProgramData\<DIR> QuickTime
[08/06/2007|08:52] C:\ProgramData\<DIR> Roxio
[03/11/2007|11:01] C:\ProgramData\<DIR> Sonic
[10/28/2008|09:24] C:\ProgramData\<DIR> Spybot - Search & Destroy
[08/06/2007|09:10] C:\ProgramData\<DIR> SUPERAntiSpyware.com
[04/09/2008|09:24] C:\ProgramData\<DIR> Symantec
[04/17/2008|10:00] C:\ProgramData\<DIR> TEMP
[04/06/2007|02:38] C:\ProgramData\<DIR> Trend Micro
[09/15/2008|11:13] C:\ProgramData\<DIR> WEBREG
[03/11/2007|06:59] C:\ProgramData\<DIR> WildTangent
[03/11/2007|06:59] C:\ProgramData\<DIR> Windows Genuine Advantage
[09/25/2007|07:18] C:\ProgramData\<DIR> WinZip

--------------------\\ Listing Folders in C:\Program Files

[03/11/2007|07:00] C:\Program Files\<DIR> 2nd Story Software
[01/28/2008|04:30] C:\Program Files\<DIR> Activision Value
[09/22/2008|06:55] C:\Program Files\<DIR> Adobe
[10/19/2008|01:31] C:\Program Files\<DIR> American History Lux Demo
[08/05/2007|01:32] C:\Program Files\<DIR> Any DVD Converter Professional
[08/07/2008|08:14] C:\Program Files\<DIR> Apple Software Update
[08/17/2007|08:30] C:\Program Files\<DIR> Astro Gemini Software
[03/11/2007|10:43] C:\Program Files\<DIR> ATI
[03/11/2007|10:45] C:\Program Files\<DIR> ATI Technologies
[03/11/2007|07:00] C:\Program Files\<DIR> BAE
[12/10/2007|04:11] C:\Program Files\<DIR> BitComet
[10/29/2008|10:43] C:\Program Files\<DIR> BitTorrent
[10/08/2007|08:34] C:\Program Files\<DIR> BitTorrent_DNA
[09/12/2008|06:45] C:\Program Files\<DIR> Bonjour
[03/11/2007|07:00] C:\Program Files\<DIR> Broadcom
[04/06/2007|01:59] C:\Program Files\<DIR> Coding Workshop Ringtone Converter
[10/19/2008|12:52] C:\Program Files\<DIR> Common Files
[03/11/2007|07:00] C:\Program Files\<DIR> CONEXANT
[03/11/2007|07:00] C:\Program Files\<DIR> Corel
[03/11/2007|07:00] C:\Program Files\<DIR> CyberLink
[03/19/2007|11:35] C:\Program Files\<DIR> DAEMON Tools
[08/06/2007|08:52] C:\Program Files\<DIR> Dell
[03/11/2007|07:00] C:\Program Files\<DIR> Dell Support
[03/11/2007|10:54] C:\Program Files\<DIR> Digital Line Detect
[03/11/2007|07:00] C:\Program Files\<DIR> DIGStream
[03/17/2008|10:56] C:\Program Files\<DIR> DivX
[02/29/2008|10:18] C:\Program Files\<DIR> DNA
[03/11/2007|07:00] C:\Program Files\<DIR> DVD Shrink
[03/25/2007|01:45] C:\Program Files\<DIR> DVDFab Decrypter 3
[03/25/2007|08:37] C:\Program Files\<DIR> DVDFab Platinum 3
[03/01/2008|01:53] C:\Program Files\<DIR> DVDFab Platinum 4
[12/19/2007|10:03] C:\Program Files\<DIR> Electronic Arts
[03/11/2007|07:00] C:\Program Files\<DIR> EnglishOtto
[03/11/2007|07:00] C:\Program Files\<DIR> ESPNMotion
[03/11/2007|07:00] C:\Program Files\<DIR> GemMaster
[04/25/2008|12:43] C:\Program Files\<DIR> Google
[03/20/2007|12:49] C:\Program Files\<DIR> Grisoft
[09/14/2008|06:23] C:\Program Files\<DIR> Hewlett-Packard
[09/14/2008|06:27] C:\Program Files\<DIR> HP
[03/02/2008|07:37] C:\Program Files\<DIR> ImgBurn
[03/19/2008|09:04] C:\Program Files\<DIR> ImTOO
[04/14/2008|11:33] C:\Program Files\<DIR> InstallShield Installation Information
[09/17/2008|02:04] C:\Program Files\<DIR> Internet Explorer
[10/04/2008|10:49] C:\Program Files\<DIR> iPod
[10/04/2008|10:50] C:\Program Files\<DIR> iTunes
[07/27/2008|06:27] C:\Program Files\<DIR> Java
[03/11/2007|07:00] C:\Program Files\<DIR> Learn2.com
[03/02/2008|08:01] C:\Program Files\<DIR> MagicISO
[06/25/2008|05:44] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[12/26/2007|01:04] C:\Program Files\<DIR> Masque Slots Dual Pack
[02/11/2008|11:07] C:\Program Files\<DIR> MemoriesOnTV3
[01/29/2008|10:14] C:\Program Files\<DIR> MemoriesOnTV4
[04/11/2008|03:07] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[03/11/2007|07:00] C:\Program Files\<DIR> microsoft frontpage
[11/02/2006|07:37] C:\Program Files\<DIR> Microsoft Games
[01/24/2008|07:36] C:\Program Files\<DIR> Microsoft Money 2007
[12/29/2007|08:10] C:\Program Files\<DIR> Microsoft Office
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Plus! Digital Media Edition
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Plus! Photo Story 2 LE
[10/21/2008|04:16] C:\Program Files\<DIR> Microsoft Silverlight
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Small Business
[02/21/2008|02:45] C:\Program Files\<DIR> Microsoft SQL Server
[08/11/2007|11:08] C:\Program Files\<DIR> Microsoft Visual Studio
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Visual Studio .NET 2003
[08/12/2007|05:06] C:\Program Files\<DIR> Microsoft Visual Studio 8
[09/09/2008|09:27] C:\Program Files\<DIR> Microsoft Works
[08/12/2007|05:09] C:\Program Files\<DIR> Microsoft.NET
[08/06/2007|08:52] C:\Program Files\<DIR> Modem Helper
[09/17/2008|02:04] C:\Program Files\<DIR> Movie Maker
[08/06/2007|08:52] C:\Program Files\<DIR> Mozilla Firefox
[03/25/2007|01:47] C:\Program Files\<DIR> MpcStar
[08/12/2007|05:11] C:\Program Files\<DIR> MSBuild
[03/11/2007|07:01] C:\Program Files\<DIR> MSN
[03/11/2007|07:01] C:\Program Files\<DIR> MSN Gaming Zone
[10/19/2008|12:52] C:\Program Files\<DIR> MSN Money Investment Toolbox
[03/11/2007|07:01] C:\Program Files\<DIR> MUSICMATCH
[03/11/2007|07:01] C:\Program Files\<DIR> Nero
[03/11/2007|10:51] C:\Program Files\<DIR> NetWaiting
[09/23/2008|11:05] C:\Program Files\<DIR> NOS
[10/09/2007|03:58] C:\Program Files\<DIR> Okoker Audio Factory
[06/07/2008|12:05] C:\Program Files\<DIR> Outlook Express
[04/25/2008|11:46] C:\Program Files\<DIR> Photo Collage Maker
[04/25/2008|12:44] C:\Program Files\<DIR> Picasa2
[05/31/2008|11:54] C:\Program Files\<DIR> Quicken
[09/12/2008|06:43] C:\Program Files\<DIR> QuickTime
[01/27/2008|12:39] C:\Program Files\<DIR> Real
[11/02/2006|07:37] C:\Program Files\<DIR> Reference Assemblies
[04/14/2008|04:55] C:\Program Files\<DIR> RegCure
[03/11/2007|07:01] C:\Program Files\<DIR> RGB
[03/01/2008|08:21] C:\Program Files\<DIR> Rhapsody
[07/03/2008|06:56] C:\Program Files\<DIR> Safari
[03/11/2007|10:47] C:\Program Files\<DIR> SigmaTel
[10/28/2008|09:30] C:\Program Files\<DIR> Spybot - Search & Destroy
[03/01/2008|08:21] C:\Program Files\<DIR> Stamps.com Internet Postage
[07/08/2008|07:03] C:\Program Files\<DIR> Starcraft
[10/19/2008|02:08] C:\Program Files\<DIR> Stock NeuroMaster 131
[03/01/2008|08:11] C:\Program Files\<DIR> SUPERAntiSpyware
[04/09/2008|09:22] C:\Program Files\<DIR> Symantec
[04/09/2008|09:18] C:\Program Files\<DIR> Symantec AntiVirus
[03/11/2007|07:01] C:\Program Files\<DIR> Synaptics
[11/21/2007|06:26] C:\Program Files\<DIR> ToneThis 3.0
[08/06/2007|08:52] C:\Program Files\<DIR> Transcode360
[06/21/2008|11:58] C:\Program Files\<DIR> Trend Micro
[10/19/2008|02:17] C:\Program Files\<DIR> TryMedia
[08/05/2007|11:04] C:\Program Files\<DIR> TVersity
[02/21/2008|03:02] C:\Program Files\<DIR> Uninstall Information
[09/11/2007|09:47] C:\Program Files\<DIR> Western Digital Technologies
[02/16/2008|10:43] C:\Program Files\<DIR> WildTangent
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Calendar
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Collaboration
[09/17/2008|02:03] C:\Program Files\<DIR> Windows Defender
[03/14/2008|12:14] C:\Program Files\<DIR> Windows Installer Clean Up
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Journal
[10/19/2008|12:21] C:\Program Files\<DIR> Windows Mail
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Media Player
[11/02/2006|07:37] C:\Program Files\<DIR> Windows NT
[09/17/2008|02:03] C:\Program Files\<DIR> Windows Photo Gallery
[03/11/2007|07:01] C:\Program Files\<DIR> Windows Plus
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Sidebar
[01/25/2008|12:14] C:\Program Files\<DIR> WinPcap
[03/11/2007|07:01] C:\Program Files\<DIR> WinRAR
[09/25/2007|06:39] C:\Program Files\<DIR> WinZip
[08/05/2007|01:34] C:\Program Files\<DIR> Xilisoft
[04/14/2008|09:58] C:\Program Files\<DIR> Your Uninstaller 2008
[07/06/2008|05:15] C:\Program Files\<DIR> ZkeSoft

--------------------\\ Listing Folders in C:\Program Files\Common Files

[05/08/2008|10:51] C:\Program Files\Common Files\<DIR> Adobe
[09/22/2008|06:54] C:\Program Files\Common Files\<DIR> Adobe AIR
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Ahead
[03/02/2008|08:25] C:\Program Files\Common Files\<DIR> AnswerWorks 5.0
[08/06/2007|08:52] C:\Program Files\Common Files\<DIR> AOL
[09/12/2008|06:42] C:\Program Files\Common Files\<DIR> Apple
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Corel
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Crystal Decisions
[08/12/2007|05:10] C:\Program Files\Common Files\<DIR> DESIGNER
[09/14/2008|06:23] C:\Program Files\Common Files\<DIR> Hewlett-Packard
[09/14/2008|06:24] C:\Program Files\Common Files\<DIR> HP
[03/11/2007|11:03] C:\Program Files\Common Files\<DIR> InstallShield
[03/02/2008|08:09] C:\Program Files\Common Files\<DIR> Intuit
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Java
[02/19/2008|04:51] C:\Program Files\Common Files\<DIR> microsoft shared
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> MSSoap
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Nullsoft
[08/12/2007|05:09] C:\Program Files\Common Files\<DIR> ODBC
[03/02/2008|08:09] C:\Program Files\Common Files\<DIR> Palo Alto Software
[03/17/2008|10:56] C:\Program Files\Common Files\<DIR> PX Storage Engine
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Real
[03/13/2007|07:16] C:\Program Files\Common Files\<DIR> Roxio Shared
[11/02/2006|06:18] C:\Program Files\Common Files\<DIR> Services
[03/13/2007|07:16] C:\Program Files\Common Files\<DIR> Sonic Shared
[11/02/2006|06:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[04/09/2008|09:23] C:\Program Files\Common Files\<DIR> Symantec Shared
[09/17/2008|02:03] C:\Program Files\Common Files\<DIR> System
[03/22/2007|09:51] C:\Program Files\Common Files\<DIR> Wise Installation Wizard

--------------------\\ Process

( 72 Processes )

iexplore.exe ~ [PID:4484]

--------------------\\ Searching with S_Lop

C:\ProgramData\DogEqEq.1231q
C:\ProgramData\DogEqEq.5bj0d4
C:\ProgramData\DogEqEq.xvrpcx
C:\ProgramData\Love Trust Ball.l28y40
C:\ProgramData\DogEqEq.evqrobd
C:\ProgramData\DogEqEq.h5v8szp
C:\ProgramData\DogEqEq.j4idzye
C:\ProgramData\DogEqEq.pk1nzag

--------------------\\ Searching for Lop Files - Folders

C:\ProgramData\Mfcd upload army browse
C:\ProgramData\Mfcd upload army browse\CHIC OPTION.exe

--------------------\\ Searching within the Registry

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-30 23:54:09
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections

--------------------\\ Cracks & Keygens ..

C:\Users\Aaron\AppData\Roaming\BitTorrent\Fast_Times_At_Deep_Crack_High_3_Threesome_XXX_Porn.torrent
C:\Users\Aaron\AppData\Roaming\BitTorrent\Monopoly Tycoon with crack FULL version by awope1 ToRrEnTs for PC Windows PLEASE SEED AFTER DOWNLOAD~Thanks =).torrent
C:\Users\Aaron\AppData\Roaming\BitTorrent\RegCure 1.5.0.0 + Crack.torrent
C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Recent\Monopoly Tycoon with crack FULL version by awope1 ToRrEnTs for PC Windows PLEASE SEED AFTER DOWNLOAD~Thanks =).lnk
C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Recent\RegCure 1.5.0.0 + Crack.lnk
C:\Users\Aaron\Favorites\mscracks.com - best cracks serial numbers keygens patches passwords activation codes appz warez.url
C:\Users\Aaron\Favorites\Welcome to KeyGen.us ! Cracks, serial numbers, keygens. Unlock Your Software..url


[F:28][D:5]-> C:\Users\Aaron\AppData\Local\Temp
[F:658][D:1]-> C:\Users\Aaron\AppData\Roaming\MICROS~1\Windows\Cookies
[F:20][D:4]-> C:\Users\Aaron\AppData\Local\MICROS~2\Windows\TEMPOR~1\content.IE5
[F:13][D:7]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - Thu 10/30/2008|23:56 - Option : [1]

--------------------\\ Scan completed at 23:56:22
[ UAC => 1 ]
 
Restart Lop S&D

This time choose Option 2 (Fix + Hosts)
Don't close the window during suppression!
Post the log which is created: (C:\lopR.txt)
 
--------------------\\ Lop S&D 4.2.4-9 XP/Vista

Microsoft® Windows Vista™ Home Premium ( v6.0.6001 ) Service Pack 1
X86-based PC ( Multiprocessor Free : Intel(R) Core(TM)2 CPU T7200 @ 2.00GHz )
BIOS : Phoenix ROM BIOS PLUS Version 1.10 A12
USER : Aaron ( Administrator )
BOOT : Normal boot
C:\ (Local Disk) - NTFS - Total:105 Go (Free:11 Go)
D:\ (CD or DVD)
E:\ (CD or DVD)

"C:\Lop SD" ( MAJ : 30-10-2008|21:58 )
Option : [2] ( Fri 10/31/2008| 7:41 )

[ UAC => 1 ]


\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\ FIX

Deleted! - C:\ProgramData\Mfcd upload army browse\CHIC OPTION.exe
Deleted! - C:\ProgramData\DogEqEq.1231q
Deleted! - C:\ProgramData\DogEqEq.5bj0d4
Deleted! - C:\ProgramData\DogEqEq.xvrpcx
Deleted! - C:\ProgramData\Love Trust Ball.l28y40
Deleted! - C:\ProgramData\DogEqEq.evqrobd
Deleted! - C:\ProgramData\DogEqEq.h5v8szp
Deleted! - C:\ProgramData\DogEqEq.j4idzye
Deleted! - C:\ProgramData\DogEqEq.pk1nzag
Deleted! - C:\ProgramData\Mfcd upload army browse
-
[ Hosts file ] .. Restored!

\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\


--------------------\\ Listing folders in Local

[03/11/2007|07:09] C:\Users\Aaron\AppData\Local\<DIR> {3248F0A6-6813-11D6-A77B-00B0D0150060}
[06/26/2008|10:56] C:\Users\Aaron\AppData\Local\<DIR> Adobe
[07/01/2008|10:47] C:\Users\Aaron\AppData\Local\<DIR> Apple
[08/14/2008|11:28] C:\Users\Aaron\AppData\Local\<DIR> Apple Computer
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<JUNCTION> Application Data
[11/21/2007|07:35] C:\Users\Aaron\AppData\Local\<DIR> ApplicationHistory
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<DIR> ATI
[09/10/2008|11:20] C:\Users\Aaron\AppData\Local\7,592 d3d9caps.dat
[10/13/2008|03:58] C:\Users\Aaron\AppData\Local\119,808 DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[02/29/2008|10:18] C:\Users\Aaron\AppData\Local\<DIR> DNA
[09/14/2007|05:24] C:\Users\Aaron\AppData\Local\<DIR> eMule
[11/21/2007|05:49] C:\Users\Aaron\AppData\Local\93 fusioncache.dat
[09/28/2008|08:44] C:\Users\Aaron\AppData\Local\109,216 GDIPFONTCACHEV1.DAT
[04/14/2008|09:14] C:\Users\Aaron\AppData\Local\<DIR> GoldenCasino
[04/25/2008|12:44] C:\Users\Aaron\AppData\Local\<DIR> Google
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<JUNCTION> History
[10/31/2008|12:14] C:\Users\Aaron\AppData\Local\3,023,993 IconCache.db
[01/18/2008|10:32] C:\Users\Aaron\AppData\Local\4,096 keyfile3.drm
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<DIR> MediaDirect
[01/28/2008|06:43] C:\Users\Aaron\AppData\Local\<DIR> Microsoft
[02/29/2008|04:34] C:\Users\Aaron\AppData\Local\<DIR> Microsoft Games
[06/16/2008|10:44] C:\Users\Aaron\AppData\Local\<DIR> Microsoft Help
[08/18/2007|09:17] C:\Users\Aaron\AppData\Local\<DIR> MigWiz
[08/22/2007|08:30] C:\Users\Aaron\AppData\Local\<DIR> Protexis
[11/18/2007|04:06] C:\Users\Aaron\AppData\Local\<DIR> Seven Zip
[04/09/2008|09:24] C:\Users\Aaron\AppData\Local\<DIR> Symantec
[10/31/2008|07:41] C:\Users\Aaron\AppData\Local\<DIR> Temp
[08/16/2007|05:02] C:\Users\Aaron\AppData\Local\<JUNCTION> Temporary Internet Files
[01/11/2008|11:55] C:\Users\Aaron\AppData\Local\<DIR> VirtualStore
[04/14/2008|09:15] C:\Users\Aaron\AppData\Local\<DIR> VTShared
[03/11/2007|07:09] C:\Users\Aaron\AppData\Local\<DIR> Wildtangent
[08/06/2007|08:52] C:\Users\Aaron\AppData\Local\<DIR> Yahoo

--------------------\\ Scheduled Tasks located in C:\Windows\Tasks

[04/14/2008 04:50 PM][--a------] C:\Windows\tasks\RegCure Program Check.job
[04/14/2008 04:50 PM][--a------] C:\Windows\tasks\RegCure.job
[04/14/2008 09:12 PM][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{7A7E3197-2C68-43E5-B830-D01A604CF1EE}.job
[04/14/2008 10:09 PM][--ah-----] C:\Windows\tasks\User_Feed_Synchronization-{5371693C-21D3-410B-BEA3-B307ECA5F902}.job
[10/31/2008 07:36 AM][--ah-----] C:\Windows\tasks\SA.DAT
[11/02/2006 08:09 AM][--a------] C:\Windows\tasks\SCHEDLGU.TXT
[08/10/2004 06:00 AM][-rah-----] C:\Windows\tasks\desktop.ini

--------------------\\ Listing Folders in C:\ProgramData

[10/04/2008|10:50] C:\ProgramData\<DIR> {3276BE95_AF08_429F_A64F_CA64CB79BCF6}
[08/06/2007|08:19] C:\ProgramData\<DIR> {CFAB4006-0AE0-414D-866A-DCB2C46553CF}
[03/11/2007|06:59] C:\ProgramData\<DIR> Adobe
[03/28/2008|10:17] C:\ProgramData\<DIR> Apple
[07/11/2008|11:28] C:\ProgramData\<DIR> Apple Computer
[01/29/2008|12:05] C:\ProgramData\<DIR> Cabela's Big Game Hunter - Alaskan Adventure Saves
[05/26/2008|05:41] C:\ProgramData\<DIR> Corel
[03/11/2007|06:59] C:\ProgramData\<DIR> CyberLink
[03/11/2007|06:59] C:\ProgramData\<DIR> Dell
[03/11/2007|06:59] C:\ProgramData\<DIR> DIGStream
[05/08/2008|10:46] C:\ProgramData\<DIR> Documents
[03/11/2007|06:59] C:\ProgramData\<DIR> DRM
[06/29/2008|12:47] C:\ProgramData\<DIR> DVD Shrink
[09/14/2007|05:24] C:\ProgramData\<DIR> eMule
[03/11/2007|06:59] C:\ProgramData\<DIR> GTek
[09/14/2008|06:35] C:\ProgramData\<DIR> Hewlett-Packard
[09/15/2008|11:14] C:\ProgramData\<DIR> HP
[09/14/2008|06:25] C:\ProgramData\<DIR> HP Product Assistant
[09/14/2008|06:27] C:\ProgramData\<DIR> HPSSUPPLY
[10/04/2008|05:22] C:\ProgramData\1,309 hpzinstall.log
[03/11/2007|06:59] C:\ProgramData\<DIR> InstallShield
[05/31/2008|04:59] C:\ProgramData\<DIR> Intuit
[06/25/2008|05:44] C:\ProgramData\<DIR> Malwarebytes
[01/24/2008|07:30] C:\ProgramData\<DIR> Microsoft
[10/18/2008|05:38] C:\ProgramData\<DIR> Microsoft Help
[09/23/2008|11:05] C:\ProgramData\<DIR> NOS
[03/11/2007|10:24] C:\ProgramData\258 ntuser.pol
[08/12/2007|06:30] C:\ProgramData\<DIR> Office Genuine Advantage
[03/11/2007|06:59] C:\ProgramData\<DIR> ParetoLogic Anti-Spyware
[03/11/2007|06:59] C:\ProgramData\<DIR> QuickTime
[08/06/2007|08:52] C:\ProgramData\<DIR> Roxio
[03/11/2007|11:01] C:\ProgramData\<DIR> Sonic
[10/28/2008|09:24] C:\ProgramData\<DIR> Spybot - Search & Destroy
[08/06/2007|09:10] C:\ProgramData\<DIR> SUPERAntiSpyware.com
[04/09/2008|09:24] C:\ProgramData\<DIR> Symantec
[04/17/2008|10:00] C:\ProgramData\<DIR> TEMP
[04/06/2007|02:38] C:\ProgramData\<DIR> Trend Micro
[09/15/2008|11:13] C:\ProgramData\<DIR> WEBREG
[03/11/2007|06:59] C:\ProgramData\<DIR> WildTangent
[03/11/2007|06:59] C:\ProgramData\<DIR> Windows Genuine Advantage
[09/25/2007|07:18] C:\ProgramData\<DIR> WinZip

--------------------\\ Listing Folders in C:\Program Files

[03/11/2007|07:00] C:\Program Files\<DIR> 2nd Story Software
[01/28/2008|04:30] C:\Program Files\<DIR> Activision Value
[09/22/2008|06:55] C:\Program Files\<DIR> Adobe
[10/19/2008|01:31] C:\Program Files\<DIR> American History Lux Demo
[08/05/2007|01:32] C:\Program Files\<DIR> Any DVD Converter Professional
[08/07/2008|08:14] C:\Program Files\<DIR> Apple Software Update
[08/17/2007|08:30] C:\Program Files\<DIR> Astro Gemini Software
[03/11/2007|10:43] C:\Program Files\<DIR> ATI
[03/11/2007|10:45] C:\Program Files\<DIR> ATI Technologies
[03/11/2007|07:00] C:\Program Files\<DIR> BAE
[12/10/2007|04:11] C:\Program Files\<DIR> BitComet
[10/29/2008|10:43] C:\Program Files\<DIR> BitTorrent
[10/08/2007|08:34] C:\Program Files\<DIR> BitTorrent_DNA
[09/12/2008|06:45] C:\Program Files\<DIR> Bonjour
[03/11/2007|07:00] C:\Program Files\<DIR> Broadcom
[04/06/2007|01:59] C:\Program Files\<DIR> Coding Workshop Ringtone Converter
[10/19/2008|12:52] C:\Program Files\<DIR> Common Files
[03/11/2007|07:00] C:\Program Files\<DIR> CONEXANT
[03/11/2007|07:00] C:\Program Files\<DIR> Corel
[03/11/2007|07:00] C:\Program Files\<DIR> CyberLink
[03/19/2007|11:35] C:\Program Files\<DIR> DAEMON Tools
[08/06/2007|08:52] C:\Program Files\<DIR> Dell
[03/11/2007|07:00] C:\Program Files\<DIR> Dell Support
[03/11/2007|10:54] C:\Program Files\<DIR> Digital Line Detect
[03/11/2007|07:00] C:\Program Files\<DIR> DIGStream
[03/17/2008|10:56] C:\Program Files\<DIR> DivX
[02/29/2008|10:18] C:\Program Files\<DIR> DNA
[03/11/2007|07:00] C:\Program Files\<DIR> DVD Shrink
[03/25/2007|01:45] C:\Program Files\<DIR> DVDFab Decrypter 3
[03/25/2007|08:37] C:\Program Files\<DIR> DVDFab Platinum 3
[03/01/2008|01:53] C:\Program Files\<DIR> DVDFab Platinum 4
[12/19/2007|10:03] C:\Program Files\<DIR> Electronic Arts
[03/11/2007|07:00] C:\Program Files\<DIR> EnglishOtto
[03/11/2007|07:00] C:\Program Files\<DIR> ESPNMotion
[03/11/2007|07:00] C:\Program Files\<DIR> GemMaster
[04/25/2008|12:43] C:\Program Files\<DIR> Google
[03/20/2007|12:49] C:\Program Files\<DIR> Grisoft
[09/14/2008|06:23] C:\Program Files\<DIR> Hewlett-Packard
[09/14/2008|06:27] C:\Program Files\<DIR> HP
[03/02/2008|07:37] C:\Program Files\<DIR> ImgBurn
[03/19/2008|09:04] C:\Program Files\<DIR> ImTOO
[04/14/2008|11:33] C:\Program Files\<DIR> InstallShield Installation Information
[09/17/2008|02:04] C:\Program Files\<DIR> Internet Explorer
[10/04/2008|10:49] C:\Program Files\<DIR> iPod
[10/04/2008|10:50] C:\Program Files\<DIR> iTunes
[07/27/2008|06:27] C:\Program Files\<DIR> Java
[03/11/2007|07:00] C:\Program Files\<DIR> Learn2.com
[03/02/2008|08:01] C:\Program Files\<DIR> MagicISO
[06/25/2008|05:44] C:\Program Files\<DIR> Malwarebytes' Anti-Malware
[12/26/2007|01:04] C:\Program Files\<DIR> Masque Slots Dual Pack
[02/11/2008|11:07] C:\Program Files\<DIR> MemoriesOnTV3
[01/29/2008|10:14] C:\Program Files\<DIR> MemoriesOnTV4
[04/11/2008|03:07] C:\Program Files\<DIR> Microsoft CAPICOM 2.1.0.2
[03/11/2007|07:00] C:\Program Files\<DIR> microsoft frontpage
[11/02/2006|07:37] C:\Program Files\<DIR> Microsoft Games
[01/24/2008|07:36] C:\Program Files\<DIR> Microsoft Money 2007
[12/29/2007|08:10] C:\Program Files\<DIR> Microsoft Office
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Plus! Digital Media Edition
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Plus! Photo Story 2 LE
[10/21/2008|04:16] C:\Program Files\<DIR> Microsoft Silverlight
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Small Business
[02/21/2008|02:45] C:\Program Files\<DIR> Microsoft SQL Server
[08/11/2007|11:08] C:\Program Files\<DIR> Microsoft Visual Studio
[03/11/2007|07:01] C:\Program Files\<DIR> Microsoft Visual Studio .NET 2003
[08/12/2007|05:06] C:\Program Files\<DIR> Microsoft Visual Studio 8
[09/09/2008|09:27] C:\Program Files\<DIR> Microsoft Works
[08/12/2007|05:09] C:\Program Files\<DIR> Microsoft.NET
[08/06/2007|08:52] C:\Program Files\<DIR> Modem Helper
[09/17/2008|02:04] C:\Program Files\<DIR> Movie Maker
[08/06/2007|08:52] C:\Program Files\<DIR> Mozilla Firefox
[03/25/2007|01:47] C:\Program Files\<DIR> MpcStar
[08/12/2007|05:11] C:\Program Files\<DIR> MSBuild
[03/11/2007|07:01] C:\Program Files\<DIR> MSN
[03/11/2007|07:01] C:\Program Files\<DIR> MSN Gaming Zone
[10/19/2008|12:52] C:\Program Files\<DIR> MSN Money Investment Toolbox
[03/11/2007|07:01] C:\Program Files\<DIR> MUSICMATCH
[03/11/2007|07:01] C:\Program Files\<DIR> Nero
[03/11/2007|10:51] C:\Program Files\<DIR> NetWaiting
[09/23/2008|11:05] C:\Program Files\<DIR> NOS
[10/09/2007|03:58] C:\Program Files\<DIR> Okoker Audio Factory
[06/07/2008|12:05] C:\Program Files\<DIR> Outlook Express
[04/25/2008|11:46] C:\Program Files\<DIR> Photo Collage Maker
[04/25/2008|12:44] C:\Program Files\<DIR> Picasa2
[05/31/2008|11:54] C:\Program Files\<DIR> Quicken
[09/12/2008|06:43] C:\Program Files\<DIR> QuickTime
[01/27/2008|12:39] C:\Program Files\<DIR> Real
[11/02/2006|07:37] C:\Program Files\<DIR> Reference Assemblies
[04/14/2008|04:55] C:\Program Files\<DIR> RegCure
[03/11/2007|07:01] C:\Program Files\<DIR> RGB
[03/01/2008|08:21] C:\Program Files\<DIR> Rhapsody
[07/03/2008|06:56] C:\Program Files\<DIR> Safari
[03/11/2007|10:47] C:\Program Files\<DIR> SigmaTel
[10/28/2008|09:30] C:\Program Files\<DIR> Spybot - Search & Destroy
[03/01/2008|08:21] C:\Program Files\<DIR> Stamps.com Internet Postage
[07/08/2008|07:03] C:\Program Files\<DIR> Starcraft
[10/19/2008|02:08] C:\Program Files\<DIR> Stock NeuroMaster 131
[03/01/2008|08:11] C:\Program Files\<DIR> SUPERAntiSpyware
[04/09/2008|09:22] C:\Program Files\<DIR> Symantec
[04/09/2008|09:18] C:\Program Files\<DIR> Symantec AntiVirus
[03/11/2007|07:01] C:\Program Files\<DIR> Synaptics
[11/21/2007|06:26] C:\Program Files\<DIR> ToneThis 3.0
[08/06/2007|08:52] C:\Program Files\<DIR> Transcode360
[06/21/2008|11:58] C:\Program Files\<DIR> Trend Micro
[10/19/2008|02:17] C:\Program Files\<DIR> TryMedia
[08/05/2007|11:04] C:\Program Files\<DIR> TVersity
[02/21/2008|03:02] C:\Program Files\<DIR> Uninstall Information
[09/11/2007|09:47] C:\Program Files\<DIR> Western Digital Technologies
[02/16/2008|10:43] C:\Program Files\<DIR> WildTangent
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Calendar
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Collaboration
[09/17/2008|02:03] C:\Program Files\<DIR> Windows Defender
[03/14/2008|12:14] C:\Program Files\<DIR> Windows Installer Clean Up
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Journal
[10/19/2008|12:21] C:\Program Files\<DIR> Windows Mail
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Media Player
[11/02/2006|07:37] C:\Program Files\<DIR> Windows NT
[09/17/2008|02:03] C:\Program Files\<DIR> Windows Photo Gallery
[03/11/2007|07:01] C:\Program Files\<DIR> Windows Plus
[09/17/2008|02:04] C:\Program Files\<DIR> Windows Sidebar
[01/25/2008|12:14] C:\Program Files\<DIR> WinPcap
[03/11/2007|07:01] C:\Program Files\<DIR> WinRAR
[09/25/2007|06:39] C:\Program Files\<DIR> WinZip
[08/05/2007|01:34] C:\Program Files\<DIR> Xilisoft
[04/14/2008|09:58] C:\Program Files\<DIR> Your Uninstaller 2008
[07/06/2008|05:15] C:\Program Files\<DIR> ZkeSoft

--------------------\\ Listing Folders in C:\Program Files\Common Files

[05/08/2008|10:51] C:\Program Files\Common Files\<DIR> Adobe
[09/22/2008|06:54] C:\Program Files\Common Files\<DIR> Adobe AIR
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Ahead
[03/02/2008|08:25] C:\Program Files\Common Files\<DIR> AnswerWorks 5.0
[08/06/2007|08:52] C:\Program Files\Common Files\<DIR> AOL
[09/12/2008|06:42] C:\Program Files\Common Files\<DIR> Apple
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Corel
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Crystal Decisions
[08/12/2007|05:10] C:\Program Files\Common Files\<DIR> DESIGNER
[09/14/2008|06:23] C:\Program Files\Common Files\<DIR> Hewlett-Packard
[09/14/2008|06:24] C:\Program Files\Common Files\<DIR> HP
[03/11/2007|11:03] C:\Program Files\Common Files\<DIR> InstallShield
[03/02/2008|08:09] C:\Program Files\Common Files\<DIR> Intuit
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Java
[02/19/2008|04:51] C:\Program Files\Common Files\<DIR> microsoft shared
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> MSSoap
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Nullsoft
[08/12/2007|05:09] C:\Program Files\Common Files\<DIR> ODBC
[03/02/2008|08:09] C:\Program Files\Common Files\<DIR> Palo Alto Software
[03/17/2008|10:56] C:\Program Files\Common Files\<DIR> PX Storage Engine
[03/11/2007|07:00] C:\Program Files\Common Files\<DIR> Real
[03/13/2007|07:16] C:\Program Files\Common Files\<DIR> Roxio Shared
[11/02/2006|06:18] C:\Program Files\Common Files\<DIR> Services
[03/13/2007|07:16] C:\Program Files\Common Files\<DIR> Sonic Shared
[11/02/2006|06:18] C:\Program Files\Common Files\<DIR> SpeechEngines
[04/09/2008|09:23] C:\Program Files\Common Files\<DIR> Symantec Shared
[09/17/2008|02:03] C:\Program Files\Common Files\<DIR> System
[03/22/2007|09:51] C:\Program Files\Common Files\<DIR> Wise Installation Wizard

--------------------\\ Process

( 71 Processes )

... OK !

--------------------\\ Searching with S_Lop

No Lop folder found !

--------------------\\ Searching for Lop Files - Folders

No Lop folder found !

--------------------\\ Searching within the Registry

..... OK !

--------------------\\ Checking the Hosts file

Hosts file CLEAN


--------------------\\ Searching for hidden files with Catchme

catchme 0.3.1353 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2008-10-31 07:41:27
Windows 6.0.6001 Service Pack 1 NTFS
scanning hidden processes ...
scanning hidden files ...
scan completed successfully
hidden processes: 0
hidden files: 0

--------------------\\ Searching for other infections

--------------------\\ Cracks & Keygens ..

C:\Users\Aaron\AppData\Roaming\BitTorrent\Fast_Times_At_Deep_Crack_High_3_Threesome_XXX_Porn.torrent
C:\Users\Aaron\AppData\Roaming\BitTorrent\Monopoly Tycoon with crack FULL version by awope1 ToRrEnTs for PC Windows PLEASE SEED AFTER DOWNLOAD~Thanks =).torrent
C:\Users\Aaron\AppData\Roaming\BitTorrent\RegCure 1.5.0.0 + Crack.torrent
C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Recent\Monopoly Tycoon with crack FULL version by awope1 ToRrEnTs for PC Windows PLEASE SEED AFTER DOWNLOAD~Thanks =).lnk
C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Recent\RegCure 1.5.0.0 + Crack.lnk
C:\Users\Aaron\Favorites\mscracks.com - best cracks serial numbers keygens patches passwords activation codes appz warez.url
C:\Users\Aaron\Favorites\Welcome to KeyGen.us ! Cracks, serial numbers, keygens. Unlock Your Software..url


[F:30][D:6]-> C:\Users\Aaron\AppData\Local\Temp
[F:658][D:1]-> C:\Users\Aaron\AppData\Roaming\MICROS~1\Windows\Cookies
[F:20][D:4]-> C:\Users\Aaron\AppData\Local\MICROS~2\Windows\TEMPOR~1\content.IE5
[F:13][D:7]-> C:\$Recycle.Bin

1 - "C:\Lop SD\LopR_1.txt" - Thu 10/30/2008|23:56 - Option : [1]
2 - "C:\Lop SD\LopR_2.txt" - Fri 10/31/2008| 7:43 - Option : [2]

--------------------\\ Scan completed at 7:43:46
[ UAC => 1 ]
 
Uninstall via add/remove programs:

Monopoly Tycoon (it appears not to be legit)

  • Please double-click OTMoveIt3.exe to run it. (Note: If you are running on Vista, right-click on the file and choose Run As Administrator).
  • Copy the lines in the codebox below to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose Copy):

    Code: 
    :files
C:\Users\Aaron\AppData\Local\DNA
C:\Users\Aaron\AppData\Local\eMule
C:\ProgramData\eMule
C:\Program Files\BitComet
C:\Program Files\BitTorrent
C:\Program Files\BitTorrent_DNA
C:\Program Files\DNA
C:\Users\Aaron\AppData\Roaming\BitTorrent
C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Recent\Monopoly Tycoon with crack FULL version by awope1 ToRrEnTs for PC Windows PLEASE SEED AFTER DOWNLOAD~Thanks =).lnk
C:\Users\Aaron\AppData\Roaming\Microsoft\Windows\Recent\RegCure 1.5.0.0 + Crack.lnk
C:\Users\Aaron\Favorites\mscracks.com - best cracks serial numbers keygens patches passwords activation codes appz warez.url
C:\Users\Aaron\Favorites\Welcome to KeyGen.us ! Cracks, serial numbers, keygens. Unlock Your Software..url
  • Return to OTMoveIt3, right click in the "Paste List of Files/Folders to Move" window (under the yellow bar) and choose Paste.
  • Click the red Moveit! button.
  • Copy everything in the Results window (under the green bar) to the clipboard by highlighting ALL of them and pressing CTRL + C (or, after highlighting, right-click and choose copy), and paste it in your next reply.
  • Close OTMoveIt3
Note: If a file or folder cannot be moved immediately you may be asked to reboot the machine to finish the move process. If you are asked to reboot the machine choose Yes. In this case, after the reboot, open Notepad (Start->All Programs->Accessories->Notepad), click File->Open, in the File Name box enter *.log and press the Enter key, navigate to the C:\_OTMoveIt\MovedFiles folder, and open the newest .log file present, and copy/paste the contents of that document back here in your next post.
 
You must log in or register to reply here.
Back
Top