Virus Troubles

Hey. Also i was looking online about AVG 9.0 And Combofix. Someone Said That they Can Use Older Versions Of ComboFix With AVG. Is Using an Older Version An Option? Or Do I Need To Un-Install AVG?
 
You should be able to uninstall AVG and reinstall it using the same product key, when you enter the product key there server should see its the same PC.

Hold off on Combofix for a bit, lets do this first.

Open OTL.exe
  • Copy/paste the following text written inside of the code box into the Custom Scans/Fixes box located at the bottom of OTL

    Code: 
    :OTL
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe (CA, Inc.)
MOD - C:\Program Files\CA\PPRT\bin\CAServer.dll (CA, Inc.)
SRV - (ITMRTSVC) -- C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe (CA, Inc.)
DRV - (jnv4_mib) -- C:\DOCUME~1\Michael\LOCALS~1\Temp\jnv4_mib.sys File not found
O2 - BHO: (Zynga Toolbar) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyn0.dll File not found
O2 - BHO: (DCA BHO) - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - C:\Program Files\Common Files\FreeCause\DCA\dca-bho.dll (Compete, Inc.)
O2 - BHO: (Freecause Toolbar BHO) - {6955FB38-7614-4A87-95C5-626CCEA88DF7} - C:\Program Files\Webs Credits\Toolbar.dll File not found
O2 - BHO: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKLM\..\Toolbar: (Zynga Toolbar) - {7b13ec3e-999a-4b70-b9cb-2617b8323822} - C:\Program Files\Zynga\tbZyn0.dll File not found
O3 - HKLM\..\Toolbar: (Webs Credits) - {D09588AA-5560-4240-B2F2-774D78D7E917} - C:\Program Files\Webs Credits\Toolbar.dll File not found
O3 - HKLM\..\Toolbar: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (Zynga Toolbar) - {7B13EC3E-999A-4B70-B9CB-2617B8323822} - C:\Program Files\Zynga\tbZyn0.dll File not found
O3 - HKCU\..\Toolbar\WebBrowser: (Webs Credits) - {D09588AA-5560-4240-B2F2-774D78D7E917} - C:\Program Files\Webs Credits\Toolbar.dll File not found
O4 - HKLM..\Run: [Ncine] C:\WINDOWS\akinotudokawas.DLL ()
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_02)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_03)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_05)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jin...ndows-i586.cab (Java Plug-in 1.6.0_07)
[2011/01/01 18:13:57 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW.2.tmp
[2011/01/01 18:13:01 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW.1.tmp
[2011/01/01 18:10:01 | 000,000,000 | ---D | C] -- C:\32788R22FWJFW.0.tmp
[2010/12/26 23:24:37 | 000,428,286 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20110101-215402.backup
[2010/12/26 23:24:22 | 000,428,286 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20101226-232437.backup
[2010/12/26 23:24:19 | 000,428,286 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20101226-232422.backup
[2010/12/26 23:24:15 | 000,428,286 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20101226-232419.backup
[2010/12/26 23:24:01 | 000,428,286 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20101226-232415.backup
[2010/12/26 22:25:01 | 000,428,286 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20101226-232401.backup
[2010/12/26 18:45:06 | 000,419,134 | R--- | M] () -- C:\WINDOWS\System32\drivers\ETC\hosts.20101226-222501.backup

:Services

:Reg

:Files
C:\Program Files\CA


:Commands
[purity]
[emptytemp]
[RESETHOSTS]
[start explorer]
[Reboot]
  • Then click the Run Fix button at the top. <--Not run Scan
  • Let the program run unhindered, reboot when it is done
  • Then post the results of the log it produces.
 
I Think this is the right log. I Used Your Code Then It Rebooted And The First Thing that loaded On My Profile was a txt file. Here it is:


All processes killed
========== OTL ==========
No active process named explorer.exe was found!
No active process named ITMRTSVC.exe was found!
Error: No service named ITMRTSVC was found to stop!
Service\Driver key ITMRTSVC not found.
File C:\Program Files\CA\PPRT\bin\ITMRTSVC.exe not found.
Service jnv4_mib stopped successfully!
Service jnv4_mib deleted successfully!
File C:\DOCUME~1\Michael\LOCALS~1\Temp\jnv4_mib.sys File not found not found.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{B49699FC-1665-4414-A1CB-C4A2A4A13EEC}\ deleted successfully.
C:\Program Files\Common Files\FreeCause\DCA\dca-bho.dll moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6955FB38-7614-4A87-95C5-626CCEA88DF7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{6955FB38-7614-4A87-95C5-626CCEA88DF7}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{D4027C7F-154A-4066-A1AD-4243D8127440}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{7b13ec3e-999a-4b70-b9cb-2617b8323822} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D09588AA-5560-4240-B2F2-774D78D7E917} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D09588AA-5560-4240-B2F2-774D78D7E917}\ deleted successfully.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{7B13EC3E-999A-4B70-B9CB-2617B8323822} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7B13EC3E-999A-4B70-B9CB-2617B8323822}\ not found.
Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D09588AA-5560-4240-B2F2-774D78D7E917} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D09588AA-5560-4240-B2F2-774D78D7E917}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\Ncine deleted successfully.
C:\WINDOWS\AKINOTUDOKAWAS.DLL moved successfully.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
C:\32788R22FWJFW.2.tmp\N_ folder moved successfully.
C:\32788R22FWJFW.2.tmp\License folder moved successfully.
C:\32788R22FWJFW.2.tmp\EN-US folder moved successfully.
C:\32788R22FWJFW.2.tmp folder moved successfully.
C:\32788R22FWJFW.1.tmp\N_ folder moved successfully.
C:\32788R22FWJFW.1.tmp\License folder moved successfully.
C:\32788R22FWJFW.1.tmp\EN-US folder moved successfully.
C:\32788R22FWJFW.1.tmp folder moved successfully.
C:\32788R22FWJFW.0.tmp folder moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20110101-215402.backup moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20101226-232437.backup moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20101226-232422.backup moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20101226-232419.backup moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20101226-232415.backup moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20101226-232401.backup moved successfully.
C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts.20101226-222501.backup moved successfully.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
File\Folder C:\Program Files\CA not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32969 bytes
->Flash cache emptied: 41661 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 7248995 bytes
->Flash cache emptied: 1835 bytes

User: Marianne
->Temp folder emptied: 304407858 bytes
->Temporary Internet Files folder emptied: 139692866 bytes
->Java cache emptied: 50359789 bytes
->Flash cache emptied: 37789 bytes

User: MarianneG
->Temp folder emptied: 954112951 bytes
->Temporary Internet Files folder emptied: 12281935 bytes
->Java cache emptied: 1222098 bytes
->Google Chrome cache emptied: 856432 bytes
->Flash cache emptied: 21754 bytes

User: Michael
->Temp folder emptied: 3061112 bytes
->Temporary Internet Files folder emptied: 121290827 bytes
->Java cache emptied: 165528 bytes
->Google Chrome cache emptied: 358663431 bytes
->Flash cache emptied: 14506 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 12320730 bytes
->Java cache emptied: 39 bytes
->Flash cache emptied: 5325 bytes

User: Owner

User: Paul
->Temp folder emptied: 5868366489 bytes
->Temporary Internet Files folder emptied: 378081188 bytes
->Java cache emptied: 42840598 bytes
->Apple Safari cache emptied: 0 bytes
->Flash cache emptied: 512593 bytes

User: Paul G
->Temp folder emptied: 5616139 bytes
->Temporary Internet Files folder emptied: 1109271739 bytes
->Java cache emptied: 2603027 bytes
->Flash cache emptied: 128903 bytes

User: TEMP
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 157848 bytes

User: Valerie
->Temp folder emptied: 732442571 bytes
->Temporary Internet Files folder emptied: 211928378 bytes
->Java cache emptied: 575099 bytes
->Google Chrome cache emptied: 107625505 bytes
->Flash cache emptied: 7407 bytes

%systemdrive% .tmp files removed: 35399 bytes
%systemroot% .tmp files removed: 19569 bytes
%systemroot%\System32 .tmp files removed: 7443121 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 6366233 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 13728706 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 1433880 bytes
RecycleBin emptied: 2131541017 bytes

Total Files Cleaned = 12,004.00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.20.1 log created on 01022011_183229

Files\Folders moved on Reboot...
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\0BMZ0MCAUIFR6BCAV2G723CA34M9ANCAQJ9R2UCAUUEJWHCA1B9Y3OCAMGIQ4OCA1I8FQOCAJQI7WDCAIZCD3CCAYNT8LQCAZD6WYKCAOJ9MZMCAJTPB0ECAN51GUECASM9Q9VCA5OHWVLCA32BETRCA0Y3L2OCAP4GZWBCAP8HE3D not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\254FIICA5V889UCAV3MIWGCATF3BEGCAGC2SDVCA7NHTOQCA3K26QTCA0PVXRVCABC34GKCAEP51VYCAUJKLF3CA661LWZCAUS402XCAV3NQCKCA0IF853CA1X8S1NCAHG905QCANMAPNTCAB2X0APCAWCXC6CCAPLCOSVCAGWU639 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\289R8CCAF6HRQRCAOYQMDTCAJGTNDRCAJLM4OZCA3HL78MCA7PZD4SCAG0T2B3CA1PBRLDCAJP26MKCA3XN11UCA2FD0BGCAI6HUQACAESHP6CCA3F3DM4CA5A92DWCA0HGIL7CA09CH15CAWY21TCCAF9DEHCCAN5CV07CA4KJGK1 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\3A4ZQ6CAJGAPZNCA942TSSCAVVJ5B2CAZ59848CASVPEQPCAS0A3THCAB2FT9ACAK2KUBQCAHI358ICAR3P0QFCAXZ73S2CADLNGSQCA5C0J6ICAQ6ZDRFCAXCVBW7CABYEU8GCA0GPRKZCACEICWFCA4UZ5SMCAOCADH5CAUY4B2H not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\3HQ6HCCA9F2IHVCA4SHYU2CAY2YV0QCAZOZ5DNCASM9LYNCARJMX5RCA10ZUVCCAA2WY02CA3TJOG0CAXAC0B3CAITTC2XCAD6SQESCAGE35H7CAHYAEQ2CA3H07BYCA4Q3K0VCA050YUJCA10VL9CCA5W2DS0CA7ROD0PCA42SPB6 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\4H9LYQCAZ1LXVTCAFE7T1HCAVUB1KYCA2TB0NCCAIM6FR4CA9VHRBMCA76KT6CCAF5ZH1ICAD0PELLCA82GJMMCAJ2CDZ2CAKU5OXKCA9165LOCAAZDA3ICAFMIPRCCAGEDMC2CA3Y2FT3CA1VYTWLCAN4O7VRCA9RRTY0CAJVLBRH not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\52K0PICAONBDUECA0ZWA5ICAG4NRDYCAX9YMLUCAGPAQMPCAX1HKXXCAQVF3W7CA6ZA7T2CA66TIWGCA0TUIVDCA08YCKECA7SXSM9CALSZ49ZCA4J91LHCAMVG645CAT10ZFDCA33SMY2CAUAF0GQCA5AN664CAKCLMSVCAS7CVJU not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\5K06O0CAXW23OQCACZC69XCA8W1DP2CA9T5HJBCAWC7B87CAIZ6LH8CAQIB51ICA7TD2F6CARKW6MXCATF5O3LCANNTIVKCAAKO421CAFBXFS8CABZ4K7PCANIKD2ZCAAX6WOKCAEO0SE0CAIMYKQWCABA96NBCAL6Y3L6CAQ6M2LA not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\6K8TDQCAKKR0C1CAOELGPFCAI769SACA91VYDDCAAHTKKHCALS8AC1CAB73BN3CACGMVDSCAH2VHCOCAVSQN0MCAL4W6LSCAZDXPGXCA2O2I56CAR3GEJ4CALF9ABRCASP7VJBCAZMFN0ECABQ0LS6CATVY8HFCALGF95JCACWO06S not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\833EKCCAFMAW6VCAVWTW58CAHZX4SHCACJ31HACAHMQCZUCA44H8U5CA4ES9AYCAKEP76WCAKWDKH0CALVK0FHCAFDBFCZCA14SAHECAA3SB4ACAPA7T4TCAHTHQKECAAU2PICCAB9N8XLCA4SSE50CAHB9ZN1CAL69491CAAEG0CX not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\ALDIY9CA9JVY0YCABHA2JMCAVIN1IPCA558AB3CAZFTCAKCAS2ITFKCAHRXZ8GCA501AERCA132611CARI2RCBCAP9303CCANVH6T5CA3AAJ24CANA0W2XCAY0ESI8CAJU91ULCA7V4UY0CAN334G5CARFF9YZCACJ5HB2CA9VEY7B not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\C7KIG1CAS08E4ZCAFN9OXGCA14W503CA1QJDEXCAYY63V2CAB8KAS2CAO1VLD3CADYIJRBCA2DB5WHCAOH1IU3CAEA2B8HCA405GK0CAL8XRGRCAKNUDQ6CA5IXDX7CANTXZDOCAWDY5VOCAJQA30QCAD8B07MCACX5AIRCANKOZQ8 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\D4HND8CAEIFTTGCAONZMZGCA43GQZJCATPQO11CAUD9JINCA9LWPAWCA42LRC2CAVQYY7QCAO8X2SLCAIHB6CJCA1RRFUTCAZUM3O3CA6HYXTMCA6O3V6CCAGU712ACA9DI3GUCA85JO2RCALRJF5UCAQQI1PNCAQ23UIWCAY5123X not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\EAI3OFCARXI7NPCAEGKZLJCA6BAHMFCAYZV38RCAFOEZUCCA1L70YLCA3ZVU16CAA9RPRDCAOA0MPRCAE7R2KHCAJB8XQBCA3NHF2VCAR8ZKKPCACPKBUCCAG6NKR8CAFLMV4TCA5LMJ4OCA7ZEI9SCAF79F4VCAAVZZAECAO23ZV6 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\ERD8PKCA0R81TOCAK6GNIWCAY8XHRFCA729AHHCA000B6TCA8ID3HVCA51E89DCA9SRN2JCAJMWPIRCA7QTZB2CAZASD0HCAX1KO48CAZUPHRCCAO0I2K3CA2ZF02NCA1O5MHJCAW3TUAMCADCNVBSCA49IR3RCAEAD550CAQVF3XZ not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\ETQZOZCAY9B944CAPZ3DK4CACAAY3PCADUB4RNCA4EHTDZCA34AL41CAY29WKZCA7TUDB9CASOPKH0CA1AUFCVCAKDWNLMCAPB7DBQCAMIN5D4CAS349O3CAM1DBJDCAJK2WFDCAXER859CAG3DMYTCAW008NUCAXYXW3CCA26E5G9 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\FELET7CATL63N0CABCNH5MCAP2GUT2CANO8UIQCAG0A8V7CAST5GYGCAC1WMSQCAGT0IL6CAQGY5I7CACOCLRXCA2AQ7SACAKC0M91CAOX9BIVCA4M9N3ECAXFGNR7CAI0QYWBCAHWMSIXCA1UZM0MCAWXBKF0CAJHECIJCAETB19Z not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\JJKZ5ICA5XVVMTCAVM5XWPCAT59K97CA9QIGPACAIV26EDCALLQ24OCATA0U4MCABKX86HCAHFYAB5CAUDYQ0LCAS8IY5MCA02C211CA33CCIYCAQ6ZFN4CA0685CMCAED0B1ACACY5D4SCAG1TQMSCAD5M5TECADZ8EEXCA7DEBUK not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\JJXTPXCAGW2COPCAEIIY1ECAYEWZH6CAUBXVICCABAV118CAVJ5U7FCAXHTE16CAWFIYIWCAYF29TYCAHUKLE0CA5XGPL3CA2K5450CAEH31MPCA5Y89HMCAL3ZJACCAC4P01QCAAQEDS3CAYCKRZSCAW3BGT0CA5WR5VFCANC8JJI not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\KD3JM4CAUORF6HCAKC7ECTCAKGJ6U3CAFEKYVMCA7ATDM8CAEVP3UPCAANV2HPCAV2IHNMCAU86MP4CA2HC6W3CA1SJRGOCAWRX3EJCA9H991GCAKUNK8GCARWMA63CAAPS196CADYU8I1CA9MCG7HCAGBWQMJCA6K6E92CAVNHGLV not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\N8WFZLCAWAR98ICAGQU245CANCG6HBCAE600UVCAGJE943CAJWAGZUCA81S2BGCA6CQ8MTCAJ3O3HZCAQNDM1FCA406IWVCA2WZLRHCAQ2RE3RCAPQZ03RCAAE4RGXCAQ7V75ECA9T1ACDCAKS2HZXCAX4FJVYCAWC1NNBCAEFZ15I not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\OY192OCAU86S3FCA6HGELCCAD27I5HCA2Z2R3PCAKEP6HJCAVXU2V4CAJU6E66CAO1BG3NCAM1TH10CAIUT9JMCA2V4ID5CAA983NOCA6PATL8CADM3EV9CATMJVQVCA4FTAHICAYVFBOGCAU2D6F3CA1QLX3KCAU00OHBCA6GAO39 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\PU3MLOCANF1KBYCAQOI8A4CAF40NDSCA4Y51XWCAG2KOBJCA7CZASOCAF4PTXBCACNBI2PCAWIQEVRCAV3BU30CAWYO5DACA1D17A4CA33EIICCAJ8UB0QCATNT83XCAQI7F3VCAYS5DWACAJVS1UTCA4AXI29CAC6OJJMCACQJERE not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\S4QLO7CALTHZGHCAYXZH15CA37JD8KCAS8C2FBCABA2IVICAKVWVGACAH0BOKWCAGCGTZECAF2UI5ICA4VGXWCCAK89N0UCA980M1BCAF007WMCARWT7U2CA7W6KH2CAAVQKB0CAU5ZJZ3CAG5CL7GCA4NXPO7CAGAQSZECA6MXFD1 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\TAPEX8CA0APEYDCAJG8V4QCA3CRAZ6CAWDG7I6CAMF1N8VCAAO7GSGCAY7P7ANCAEDKG3BCAFLRRK5CAEO2MIKCAKVKLFUCA9ZZYU1CA1PPPC1CAX9OPQXCAOXUD3WCARWE0G2CAX9MFM7CA1VSFKSCARA1RCNCA27EZEZCAGY3893 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\U7YNN8CA2TH6BQCA4T6D2XCAGV5WXYCAI9MNSGCAQ1O45GCAZM5KI6CAEO3OM3CA0FXHOMCAMWZKATCAA9CK6SCA7S9CRACA6AA70PCA1TYU0JCA3J3D4SCAS4MINCCATPHZ90CADID8D7CA3VFN2RCAYUYR24CASUYUDOCAS1PODR not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\UH7I99CA1XLD84CA4Y3K80CANBVZKZCALHDWITCAXOCGGTCA1BAHUNCA0FU6ROCAXR5QI1CARWDSDSCA36FJA5CA172TU4CA2968BMCA82238ICAIVRI7ACAOITCLHCAIS3OX5CAG2S2EACA3P4EVECAK5SLFVCAHSC73UCAF0LZLH not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\WWGJGFCA1OQ7J2CA7PG0VTCAR6IK81CA3587RSCALD5X28CA12DS23CAE7RZXPCAVKU22DCATM0C0LCASXQIZZCA4AHYG8CAPVRTKACANOJR26CACODOIJCA2E7PTWCAO8G97UCA6TSTARCABVGWOBCA4QQ7SOCAF6IMFECAA1RBSE not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\WZIAZ3CA899FNCCAL7VV3VCAZA5IHLCAVCR2ALCAGN5IB8CA15QQQ2CAEEB3C3CAICM2FSCA02N6SUCA3D4WK7CA4NHF1RCAFYG3U0CARTB5PGCAJGXPPPCAV2XBB0CA1OZAO9CAKWHE9LCA047IPUCANPNDL6CAZ0SQ4LCAWVQY37 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\ML9DNHIC\ZKKMF2CAS8096CCADPMBO7CA329A4ICAU1Y916CAA6PEAPCAJZOEV3CAIQAS74CAHYJVZVCA9X1GQ7CAAG0F2GCA7Z9JN1CAZEJOXMCA8493PDCA0JO5QECAV8BTEDCATR8NK9CA80O6WSCAZC7ENHCA494GVGCAYRY1DHCAZ4O2BC not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\0915U2CAE2OPX5CAHJN49MCAFX2JY9CALZQ0U1CAWYIS2VCA3A5U43CADL74I1CAOB0PINCAQOF0UOCANCLQRDCAJ9S6EECA0VGC4GCAA1N0ZJCADDMX9KCAAN1Z9ACA8VYVWGCAUVNLWUCA6VBOOJCAJU156OCA33BGALCA6WFDD0 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\14BTAQCA1XKDD0CA7JUFDQCAGQ0TLLCAT4KOOACAXWG1K0CAA1TAWCCAHMBCB6CATBD7QRCAFKHY8ICAFGDC3VCAAHLUD5CALMRNC8CA7COL0QCAAR8D2DCAAF55G5CA4JDVIPCAPJDED3CA4Z397DCAE4B0HBCAPSEP2BCAPJ6U2B not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\1GE1BQCAWI6I8JCA4C9BIECALPZOKQCA2SN3LPCAU4KIFNCALGY1ROCA6F4DT9CAA7QRIHCA39OPOECA1ML8N5CAGOUFBSCAN510C0CAII9HZBCAPU6CF5CAGHBOLGCA4EIJKKCADAH043CAWMEQ2OCAWMZY7JCATDIQ6ECA1B6YON not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\32HH1ECASNCND3CAX75VXPCAZDCONWCAJF54OWCASVLS1LCAXRTYTNCAXXMGEZCA4RULO0CAIDRNC8CAIC816LCAE0Q8W5CA9K8GR0CAQH27XDCAQ0HJH2CAUWTR3UCA6S0MG2CA7IGL7MCA245ZVSCA9KGJIICAJZ7D45CAAA4D2A not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\349VU7CABFJE4FCAZ6DGMWCA9G1VR1CAZL3PLLCAT01HI1CAD75UVECAY3EVQUCAVJVEJOCALILSTFCA8F3NW6CAONFECTCAVFGZ9MCAAH6XLQCATNULLNCAO073PGCAW54BCKCAULFI2XCAYV6B8RCAJ1ZPH9CAD9DK66CAYVS9LK not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\39F0KPCACZPRSCCAQFQ774CA780TVHCAK5T2M0CAQ6KE90CAZG2LZ2CAO96AR1CAXUWCI7CA49A8SYCAC6XH00CA9KZXAWCAS1LUORCAJNYD1OCA5M55J8CA1E5P7UCA3C2409CA2J6K0HCAMLHV0BCA0C8WJNCAND3WUYCAEGTRAA not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\3FGNGBCATQRDG1CATQISUOCATYWTYCCAKA75L3CA04DI90CAUU0OJQCAGG0B03CAII0041CAGQDOSQCAID2IBFCAGN7YHXCAUHS24GCAV27HDMCALH1QVBCA96LGSMCABACFZOCAKHSPL3CA170V90CAH9Y8EXCAENQ817CAGUZ7AM not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\3JJS9UCAK5UZFVCAGWYSLFCAVAZRYACAZJW3U6CA8WGP4HCAXMJ8IACAF7B2MHCASW3EQ8CAI0T79FCAPIK78QCAEEQUDLCA5WC4MICA3MZHSECA5AYNMKCA3MBAB8CAWTJW1OCA878AS2CABXCRZICABBEKRTCAHV7GSICA6JJ1T3 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\3MSZCICA2RN4TQCAIY5W66CAVOLG58CAWHP3J6CA2HRJ00CAQZQ7ROCA7S63FDCAQPNRP3CA5NDV0FCA84LM00CAUF01A9CAV82BOUCAGMVDWNCASBRHVWCA95D45TCACDKCJTCAPCFA8KCA68QDSOCACZH43CCABQAH8NCA5BEYR2 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\4B8PPUCA58MQ2UCA533ZHQCAVZ3V35CA0WFTGOCAN5IIOLCA151TUICA476LUNCAV4OLUSCABT0O4QCAT1UOT2CAJ39T5FCACLZY7YCAOD7R4BCA48MD90CAVIJOE8CA0DPKEUCAU3B988CALYBLGRCA7ABD26CAJYRIM2CAWZNIFA not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\9WK6JYCAS6DE3ECA7WPYHOCAVZMCMACAICF9R2CAYE98NXCAK3H00HCAH7ZUQPCAY9XJWXCARTYNO7CAF8QRLPCAE1ZSBUCA9DEMUNCAKU5SXICAMRIA1ECAXY8C30CAGYUQ9MCAYLA5ZWCATCO446CA3MDXCQCANKQLCRCA3850KG not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\A6T7CCCA45GSWFCAJLAL5HCAT36ROZCANS81U7CAQAVO6OCAAFP4MVCAEXXPSWCAV8CMH2CAH4G9RQCAO0OTCNCAI9HHABCA2D3I20CAXP0AHRCAOSEUFTCAA3BKMTCANE5YKJCAE6U9TMCAY5DF39CACGYDQPCABSY4NECACPB8N8 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\AQV10YCAE20GFZCAIQWV7LCAI9A4WWCAU0J3N2CAG1AU34CAQW7O70CAM3CY9ECAEUPX4MCAWPNH2VCASPU4Y3CA3Z6XUECA2TDMTMCA97VB9ACA1619IACA12FQYLCAURI6U5CAJ20X5ICA8FNW4ZCAB246MHCAJTD9HICAC116UU not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\CPMYTLCAXGSNDQCATS6JF0CA08TTQ1CAEOMK1DCAGCWSR7CA7LRH0MCAUZH7XLCAUWSLNRCAJ0KBD6CA6HSWJVCAYH2X7JCAMBPR53CAHB7CL5CAY9CMMRCAEWCA77CA1R7HP2CAC8YB6PCAVAFEL4CAVODBG7CA734PQJCAVSLFNU not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\DF62LICA4UWWM5CAVHP578CAFGIU51CAJKFJUVCADYZ69YCASX504ZCAQEYZ3BCAO384YQCAPPM3STCAOPK4IKCALPE7FGCAJT2MVGCAPM0RU9CAU340ANCA5I5YK0CAD13NLQCACVK05QCAL09G13CA2DK6X5CAMU4OZFCAR3KLDK not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\DXCZVECA05DG8VCAYDF3RBCAKENOBVCABTFWEUCAD71N8VCAA7VPIZCA666S16CAVP796OCA8EUNIDCA5984ZRCAU0Q69JCAW6DD09CAOCU9Q1CAQ5F7ODCA6NNJGCCA1G3EN3CA5TFOVYCAB1XBNYCAXIEHJ0CAK1N6NTCASRE09Z not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\EZ71FUCA66F1ALCAL2R921CASXJSZECA0JI8QCCA7XEJUGCAD0N4SHCAD5P8G8CAD1R1PZCAYWGY5PCAN9YG8ICARAYA1NCAPGOYYRCAQGF3A1CA4405T7CABDC566CA5JY7S1CA5WYBO8CADRMTCOCAL3EOAFCABPHJLXCAD7HVN0 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\FG3K7UCAH9YCYNCAIFU9CJCAVGTT11CAP9RUE4CA1DZMGSCA1FPR2HCAJB15MUCAUKGWK2CA3U16XTCA62U9UVCARVPJBWCAUX01APCAMW3Y6LCAU5AM5ECAVZNSJCCAJTTWHCCAKQ11R7CA52PEUJCAOX4A8XCA64E3KVCAHJYSDD not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\FMF5CPCA3JXVNXCAMHZ6M6CAPM0976CAUPV7ZZCA1Y4UR3CANMT9KGCAEHQQ37CASH33SRCAS7IWWXCAFDJU9CCAKXO9S0CAF5SKCVCAK8W9DMCA0IJE4HCAJCUF3RCAA610GGCA0962L1CA5EZ7NBCA8BK1IZCA50AEVJCAC1STJD not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\HFKEL3CAEGG1P9CAFBNZYGCA34BYITCA9Z5V34CAOTFNXQCADZG4WXCAZY9JLECAOAQ3RMCAXZ8L2GCA40L19QCA7JBI7ICA1V27PZCAE4P0D1CAXVEA2HCA6ZGPA7CADIP92RCA74VJ53CANCMMBNCA52O2OGCA9GYU0TCATG9U1H not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\NJHS4WCAH8Q42YCAPZXV6ECA2DQ8PXCAV6MMB7CAWJ6OAXCA19A02CCAO1WNX5CAKYR1U3CA1OUJ62CAG07MC0CAQMG7I9CA31FA1NCALHRHN8CA1QG9SOCAJT1T70CASQF9ABCAZBAMSPCA8NF4XQCAZMXYLACA5EWL3VCALHDCCP not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\NU86AACA93G88ECAZRW4IYCAPZV3KZCAEPFHZMCA8L235PCASXLV96CATMC668CA5JD1ANCAOXLCQ1CAKB1P0DCA6IJBMACA256B4ZCACP1OOOCA3F9MG3CAEZSZXCCAMFA98FCA9BE5JMCAFDSCOZCA58UP38CA8WKBIZCASK8EOI not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\OHWFO7CAWP2XYMCA7B98IRCAHG5BH5CA7AYVFHCA0BOONHCARCZ2NZCA41ZX4QCAZ4QDFMCAV5JS4TCA7GLYZFCAAAF652CAVRIFLACAABZUHFCA7QY4VPCABUFA3TCA3A7PHWCAEFSML8CA1N7BP3CAHJHOGLCAO4DG3SCA9011WZ not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\P9IT1BCAG1OZVTCA1ASAM9CAQDFKFCCARI7IFGCAN01XZVCAEI2O91CA2YDOU1CACI6TPRCAOZCWMPCA9W9T1XCAQIS5NGCADMG38MCAACL6FTCALD2P4ECAMQ2SRCCA1HQ8CZCAL17C1XCA6TBT34CAHJV4O2CAO1H9RLCA9N3S45 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\PWHN4ECAXE9XY4CA496GW5CAI9FQDXCAMOYE9BCA9PTDKYCABR8XTICAZEJ4J5CAUSOF1OCA0TVBD3CAZ68RBHCACC7YMYCAS6T19WCAE2SWP6CAG1AF6WCAJSCF0VCAOR48BBCAV5DLOLCA9U464VCASFS3BACAJ2I3QZCA83K035 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\SY2XU4CANQ45RFCA0YL02YCAO983VUCAS6HRKYCAGMI03JCA8ET9UJCA5VCWE2CA1S5546CAWC5XWSCAM4P1O2CAQIN4CMCAP921D2CATVGNOMCAMNUMYMCA2A3P56CA7B3KC5CAJGPPE1CAWLY3VHCACG50J1CAH47I96CA95MV76 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\T347CXCA0UPSF2CAYYCDXOCAWUY11FCA8ABA36CA5P3I3GCA04OPO9CA7Y2G23CAWC3PFQCARLO79OCAL7QYUUCA2CHMUZCAGU7ZW8CANYZFIGCAAK2398CA81BVUXCAXIN77BCADS7C66CAUSYHOZCA9SGM5JCAAKG02DCABKQ691 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\TTXNNFCAQF4SGUCANBKFXGCA37MI6NCAWL7788CA8ION5VCAZGB6OCCA1U2LPMCASHP2MOCA3GQV15CAV9WFD0CA2SH2M8CAPMQ3GXCA653UKHCAB3P5O3CAGS09RCCA3FR4DACAK6253TCAUSFGTHCAB3Y2S2CAKJ0C0UCA1GKR5V not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\XM16XBCA28F2Q1CA36UOC8CAM0THWDCAX4M082CA96R2URCA48B942CAYUCC5ZCAZDHHG7CAUPKTLMCAZ82E1YCABCDUQRCAH4ZBXTCA33UWPLCAC8C5BHCA0AF5MDCAKSQEBBCAAM3GO6CAHE218JCATDDTMLCA6PJE32CAM5CX34 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\Y0TOD2CA7JUBGMCAK01JTMCAEQS2FSCATPYEK7CAZO6KFACAHEJXSMCABA5T0JCAIKWMJFCA90FX6TCAMF6NCQCA3ZB8Q1CAFNRGEECAADWI4BCAU0X316CAY1W179CA7P4YVMCARGMS40CAKPJCCYCANFHY8DCA330Q6UCA0SX7W8 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\Y47N7QCAA3MJ2GCAZC79CVCA2ZXAXECAJP5WUACAI0N746CAC2GEGVCA09XQANCAIU7W44CABP71IWCA5B52VJCA0ANL2RCAG19KSLCA8XD5X6CAQW6AYYCARHDPRFCAI0QMBLCA15OB7SCA8P683LCA6B0MH3CA5VDI44CA48OL5I not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\LV9PBVV7\YIYTAGCAJ88B4RCATS0AH3CAPEIZRKCAOWAR24CAO23Z2YCA7A00DRCAN9920TCAUF3UQXCAR4M6K8CA740YE7CADEH9DUCATU6Q8CCAEHWBNFCAICVBIXCA30AFZUCAD87H21CA4X2I7JCAR1TRADCA2HHAG6CA0DMQ7OCAAHR3AA not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\03UXFUCAYVCWXGCAEYATPKCAAYTEE7CAK4KEOOCA35WEA5CA07ZYBDCA350X8XCAWMAGZ5CAKSSWL0CA7VH3TZCAK8IJQVCAW3Q992CAIBUXPZCAR1YIYWCABG0MBFCA3RVE9HCAZ2M2NJCAI1UVGSCA93XE8RCASEC4RNCA02BH26 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\1RU9XXCAFLXN1XCAUE14ENCAWIX3B3CA8SSX19CA3I7NJACA7VJATLCAQQMLDQCAPJM620CAUG1GWDCA10FC2ACAYX7ZSVCASEU9WSCACB2A5QCAWT4UPTCANU61HHCAEXRG68CA6Y3H8TCALHDV5LCA7FNCYNCAD3Y3I0CA65ND48 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\1XGI8VCAQJH197CALVICO2CA3TLZAICA97LF4TCA8GEXTECA2FXS00CANKGCZ8CAIU6KFACA5CZBU2CATD9YX0CA4LPNRZCAK9BSM6CABE6BTWCAR1S1FWCAL0T1IMCAIFQGKXCAWYLHOQCAGI7NHTCA0V98VOCA9CDS1TCA33WCP8 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\3LJCU3CATTRSA7CAFUS2FHCA10S22LCA5EYGGTCAZI1FKVCACJ3EKICASKXP8QCAS0PGGPCA630RMECAFZVZJECAMOCXOWCA2V2FGMCALTTAMOCAZ1YCIJCA616J83CAU0PVXQCAX6K6K7CABTIYYMCA0D2YJACAFINIZOCAPWDS1T not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\3MHEW5CA1AN9WJCAEE3I5DCA0U7VPPCAZ3C9S4CAOC1W2WCAIF64U4CAIPR6X3CA4WWIF9CAU53VXGCA3QOOE1CATS5W3HCANDM674CAO8C0SGCA0A06CZCAJ4RF07CAKUOGH4CA3NOAVFCAZLRRE7CAG56W4QCA9VI4D1CA80TCD0 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\44R2DVCAFEYRQSCA0W7OI9CAIZYIX9CAPW5K3RCAHKILTDCAQZ9LIBCA2ZU2F3CA1GNMN9CANOPP1RCA7AF66BCAKNXYYPCA3W81TWCAB20KZBCAA2K7OGCA0E1EU0CAAAZKWLCA58YSVQCAQSL26FCA56BWCSCA6PMKCKCA9ZKWAU not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\5P0N6ECAUTSYXVCAYWYJVCCASE26WVCAKVMD2CCA7X6O3ZCAUWL8DACA9TLVLLCA136D0YCAPADTOGCAIVZFV1CAQTXKQYCAU3P3LWCA2DOHKHCAFG63EJCANC611NCACP6KHZCAJMQY5HCARNTEWKCASCZ40OCA24YQAJCA2KA3GJ not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\63F4URCAM5W29OCAHKFYY5CAA510O0CA4846WPCAQKMUBICA5MQ4JLCAQWCEMECAMACFVDCALTNBNICA9567HFCAWV5I25CAK757LKCA4AMCZ6CAPKBUHUCAX93TROCAE8G96ICA6589YFCAQ3Z1W5CAVRU45KCAINIY3PCAQS6BUM not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\7NP2NPCAFQ0F8YCAMVUQSHCAVPT1N9CA4L6SZACAZWQ8C4CATJNSBYCACPXT8ACAIKUQRHCAFHV6QOCAB6CFA3CA17MX5PCAPNQ1HRCA000SVHCADJY7L2CA1ETKQWCAIJEBYOCA60HP92CAFIWNIHCA6UMJSJCAH2VV0XCA535WLE not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\86UA4NCA2KJP7ZCAKKKASVCAQ3NNLOCAUCP5IYCAPSBC2HCA6OL681CA6P8GGECATQ1I4OCAMJXGW3CAUMTUKTCAJ714TCCAFCJ0Z1CAOD12N0CA8OP26WCAOCIMXOCAYWZZHDCACV2JWVCAL8JEOGCA2MT745CAXFFB6XCAL8PTMO not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\AMQI77CAI80ZN4CASZOO1WCAYV68TKCAVNDIV9CAT1T1GDCAI1G382CAOB0EKXCAWZQOQ2CAU0V9AVCA50FIDWCAA1EETQCAZ4HT4ECAI1A7I9CAK2VSX8CAAGO37LCAGR8OBJCACDQW0BCANA55R5CAHGWGP0CAIL73QBCAV8FZQ6 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\BISOFACACE1GVVCA4244Y7CANW5EGCCA1DKZU2CA76SVWNCARVCUV2CABT0A1NCA7FCDE3CAP9RZU8CABTBFRRCAZ7VQPQCAJL6GCRCALHHJUPCAZQG33UCAT3E9XJCAEMH70VCAXYWP77CAO0GGN1CALUXHQFCABIY7L4CA634W72 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\BX4V80CAGO9C0KCA0RF9NDCAK3RJU3CA5OSXNFCAA7JBUDCAKNWEQ0CA5XCCCICA0S5XGWCAV6V9SDCA2YDZCSCANQL13PCAFX0Z8OCASEQ5LVCAHCBB8XCAYCF942CA29DOEUCA0GCXNDCA9LQCAKCA85N7ZACA2ZAJIUCA1TQUD5 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\CEO6WXCA9QOUFTCA9TDCKMCA008HNVCAKBVCTLCAXUGZNCCA3U2LG9CAXYUMN5CASQQNJCCAX6B3XCCAPPW9ODCAWLL7ZGCAUX78S3CA5A93B3CA218UXECA31T1R8CA9BL0OYCARCTSHPCAI5EIV2CADWSTC4CAZ42HRVCA0Y91O2 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\DZRI40CASQNNX8CA7WI925CAUTVY80CAHFT7EFCAOUO8OCCA7I42YMCADCUDMZCAW70YZ5CAOAJQH6CAS5C9YXCAXK1UYKCA8LNMZMCAML9YJUCADCAK25CAYXAX2JCAHG4UGGCACXJ0LBCAI2JRO3CA25VUZ4CAN4XCSACAK9CIY0 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\EPK348CAB7JC8WCAK649I7CADZ05EJCA2YCWAPCA2AT0KWCAGBN9H9CA4KVUOLCAWADW6ECAG0O4ZXCA59B5ZDCAHKJ3ELCANKTUJHCAR7KF7QCALQGWVHCAXAYMIPCAP6VNINCA8Y7GK2CAWIB8UFCA142HJGCALX212LCAV29CRW not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\FZ4L7CCAWVOQ91CAVRY7FWCAJ1NA2FCAYGYAATCADCI2QCCADG2UAKCAVRBXTGCAY89ZB9CASOU2I2CA4NUHZMCA8YNX91CAX3C69HCA1BJDHFCAOO9J84CACXINI6CAQE63JOCA03INJLCA8UVD8YCA5X2Q03CAV2GRRYCAY3P01A not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\G1GNDOCAQYAQQDCA9NLSDWCA84ARB1CADK1089CAD9DN7DCAM7FOI0CAZDCTGKCA4J4O19CARI1Z6GCARL79D7CA5BO5QCCAA7Z8MGCAZPBIL5CAYP8Y0PCAQT5V12CA93AKQ8CAKR4M06CA38HRONCADRI81CCA2NBTWWCA71RD51 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\GRKET4CAKQ2EOQCAG2SOE6CA1CMBIKCAB82O32CAOXWCWVCAE01JZYCA4ET0E5CAMW9WB7CAT65HIWCAIFKE64CA7KKZU6CAND42YICANJB06OCA6605ADCAZARZRYCAVH52VZCACKX1TVCAR74IENCAWW47YOCAG6TSOYCA3X90DD not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\H0SW32CAV0GD77CA7XZZQFCA1Z5FO7CA6SR9WJCA631V59CA2O5F3NCAORYIX9CABZGJ20CA2UMWF4CAG3VJW3CADYUIYWCAAE08XUCAQ9H856CAOC2GCBCA5NZ8I2CAMTUFSTCAOZUV37CABX1YZQCAC1LYHLCABP2E21CANKSNMX not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\IUUVC1CA4YX4SVCAYUDRXKCAL1COXACAGPFCWCCA8ASONJCA5RJGORCALUDJMJCALRFKBGCACZM26ECAV8Q1WYCAZDQTLXCAW71AOVCARJ54P2CAZEP97KCAP012PXCA966X1BCA083PO6CAZIPV45CAWKZFHICA267XB1CAQVSK4H not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\K84W0ICAH6RI5ICA3ZHH7UCA6D5NNMCA3BM67FCAHWHF4LCA0HVUZCCADS5TRPCAKMLA6NCAPFA6DUCAI0C4LQCA5GNBS3CAOSMKU6CABUODVACAUT9F00CAW8OFJDCAAP8OBNCACSXMXPCASGR7G7CAP14L4HCA57XF9DCATEIBNI not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\KPGJNJCAIT4PK5CACINTQICAMDKR02CA95CRKDCAPKE4JDCAXVJV93CAEVKA78CAHNAUEGCA3SQVFPCAGDI5LGCANTKQQFCAO1ME71CAXEYA8SCAFZUUCJCAIHRT1ACA00BRD2CA5GSBZKCAJC8NUTCAI4I7KYCA9QW1JSCAZB1GRR not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\SANH05CAWMURL3CAS1MZ48CAX0U541CAI6IXTSCAYS266WCAE1P0Q9CAJXUSFBCANO04R0CA4ACE1ICAPF4TP7CA1PD8YJCAKPZ1WSCA3S35MZCA9DVEH3CAA3Q2FKCATL692RCAW3CHFJCAFG5Q5ACAJ7HCB2CAUC4W6BCAENBLYO not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\SD86OSCA2MN04ZCATCIA16CAR11DFBCABMY4XACACBPEXJCAYAILRXCATT5N27CATUVG28CAHNQOTNCAKALZJ2CANJOE5JCAV2GXKACAQ2RQTYCALG1LAACAYOKPH8CATWG9QDCAWDWG07CAZ80JPNCAOSSKISCAZZIXZ8CA93UR12 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\SDP6LECADU69AGCAJ869XACAUF6SG9CAYLNNKUCAJ77PGVCA4G1F5LCACAUD6NCA1NHKXQCAEO4W5BCAF14XU4CAOLDF0RCAY2OAJ0CACHO703CAVBUBUZCA7FB7P6CAT4EJBICA6ATQ71CANKB11TCA244D33CA3QRIM3CAP6E3S4 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\TAHJRICA6J5U1ZCA8EMMCDCAUYYNJ7CAR2P0W1CA69HHQRCAUQ6ZHRCAVM3HHYCASXNPP7CAS7ILBPCAA5UMFWCAELDI3UCAS9607ECA3R34USCAZULKNZCAKYL7CMCAJ9SB0CCAH3GD9WCAJTU4N0CAXZXV72CAIK9Q3KCAF9ZU9U not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\UM0RGBCAFDYGIHCA5V3E3DCAAOD7GHCABHKRR3CA2Z3Z7ACA72IE6YCA5U48ADCAKH4VFBCAF6CED4CAX2X2VTCATU68N4CAH2V7DOCAPJ5MDJCAGUGOJICA5SOOEYCAQ8SOWXCA8ZQ6WPCAK3PJB9CA0MUPZ9CAA95313CA33SFZ2 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\UN6YCUCADNQLZQCAJ3RT5TCAMY0QOSCAVUKGNFCABCUBTLCAAV6TKWCAX2QPLCCAHLQND2CAW3FMAGCA9X1XFICAJX2HD4CACZL05UCABQ7VS0CARCXG1WCAAFP0UFCAEE9GR2CAW09USKCA7T5W43CAJW09SKCAV8KYA5CA8E460T not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\V1UD1BCA6Q72WUCAGP080LCAS7GQUTCAU0WYM7CAAD4Y5VCA3OTF9PCAA3UDPDCAS1RUBOCA6UVFNYCA5HVRGZCAT8QR21CA64R1ZMCAPIH013CA1SMG70CAU4SDXZCAX6NY2LCAOHJWGJCALXUIGHCAY3DMRCCASVLFFGCANO4ONP not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\VA5QZECAA05RM1CAJKH2X7CAU861C7CA6YFLS4CAMAGU40CA8G7XZXCAW684V8CAN5TKD8CARHFU0GCA5JOMLWCANEYIZZCAMXLMQVCAEVXF9OCAU8Q7ZNCA46SC72CAP5PB27CA1GH2ZWCA590WNZCA5IDHDQCAL14G3VCAD8VCGW not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\WYY6HYCA0LW3YCCA9XLQTNCAV9ZQ14CAE1B7Z9CA0W2G4JCABW3VCZCAA63W2LCA5T4JW6CAJJPA1ICACENKW9CA42MGAICA1PNEIXCACM1A7RCAE8092ICALEUYYTCAXBU39RCA77AQW9CA3AP37DCAN4QA7SCAJYPQYDCA24FPSQ not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\IRH40HF6\YVPGMGCAIJLI0YCANGF26ICAZP2W6MCACL7EDGCAJQ2DDNCAWDW02WCA9AGVG4CA4V1GC5CA293ACCCAFY8144CAAB46QICA1R861PCAP4PU0UCA2BPWXYCA1VBQBSCA2Z8I5DCAVA7WQACA6SJRZ6CABTJU1KCANWVH4KCA6DDBGX not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\2F1VIMCA1B7O3WCA1SLK1GCATCWMC9CAJ740U2CAZ51JSMCATHDRFYCALVKDHDCAD8HCC1CARGCLZACAPDTJANCAT73CQ1CAHQJZFPCAIOUNGUCA93EPLGCACRJDDVCAD7OXWYCAG3TQ22CAA4HX38CAUM99OTCAVU8D2ECA2YEC1A not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\2HGUP2CANF3ORGCAX3EB83CAW42A03CA541LUTCA4PADF3CA2L98W4CAO4MGESCARY8SZTCAUBMOH5CAIS2OTXCAVTRD60CAPS5LG3CAWDM392CA2E1OG7CAJ787TYCAULQ744CA85GDIYCAO19B96CADNHYKPCA8A1V9NCAP1COET not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\2V6HO0CAVJXA44CA4NNSNXCAEVLLJ5CAOMSH4JCAGL2YJ4CA49UBTCCAFRYGF7CAFDUHN2CASQ153SCA1CMZQ1CACPC1XFCA2FKJFCCA5MH6EYCAWX6N68CAQK28TRCA6ZA1UBCATUY5TDCAVH8ZHXCAL8MMCRCA3DMPA0CAAE6TC6 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\3HJRNYCAASIN1SCAGG2V6HCALWFH2UCA0Y0W8TCATPDZCUCAQBSC6CCAWSFOSZCARUOAYKCATMSQOICAYM7WV3CAAFJNQ0CAIPY7HCCAOJQS46CA00M47YCAEH4ALHCA1M1ES7CA7SLRNSCAF3D1GDCA5E69YKCA2ZP3I3CA9XW314 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\3PH6B7CAFIFRUZCANDYV50CAKMFLYECA1K0IAGCAVEY9ZVCAAAGRFMCAKORKFQCA3SXGPDCARBLDD2CAMND8ZVCADUFX26CAF5KTTACANZI7ZDCAXX83DDCAGACGESCAZCZY21CADYSS6NCAUL1QLKCA37RJLFCA9YNH3PCAVH8DEW not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\6SDHHVCA7L1P1PCAZJ0OSRCAFJ30D5CAQA8TXTCAV24HUUCA2YWEAPCAWJPU8OCATAHE3CCA4P7XHNCAF76DZQCAGLBTJ6CA1RLUQ5CA9WPL5WCA408VZ5CAS7BHF1CA8K6FHGCAW3NIFUCA7ZNEMICATA6ZBECA5G5A6FCAG1MYOU not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\89YJGBCACQ5WZICASY7NXTCA37XEZ5CA9SYXZLCANYFADICAU9P2QACAO9LDWSCA4SYN7ACAU0UJ1SCAWW249YCAPQIGJ0CAPKTMEHCAP160XVCAO81G0HCALXXZ02CAYXOPBGCA06F617CAOZWOLSCA2ZMG81CAUATRK0CAMJVA9S not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\8L93WTCA8SKI3DCACNFQSZCAR4GGFGCAFSCDQOCADPK1PRCAW70JX8CAJ2QJLQCAU4Z8B5CA3UARMLCABVNWEYCALZ5HB0CAX9S454CADQ8FYWCAMHUZ4ZCA61C3XLCAJ81URNCA235Q6ICAI8OEOUCAB7VUSECA1CS48YCA0DOZPB not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\9XVLPICAEVZ8LOCAR2NIZFCABQMZXNCADPTWMMCA3SVGX8CAHSJYCGCA9EUMEUCAC33WVICAMIDO0WCAKF38QWCAWHQ6Y1CARKW4RECAA0OM2QCAUYDFZFCA4WR069CA2ZDLPKCAK5WO8ICA5VOEI2CA1E7330CA0FJ8L2CAYW3H2E not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\B7A2FVCAZTALZHCARCNHWRCAX1TO36CAYVMHPZCARGO48VCAHEMF39CABZN4KTCARTHY0KCAGMU6U5CA9CDXIMCA5HCI3ICA0LAGIICAA297VMCAU9NVTICA9BJLV5CAN71JUMCAKBRRYWCATZN3BACA5QH0S2CAQBUZ8ICAVLVKAR not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\D8IP1KCAW9VKWZCA4LAPEICA06KJ97CAOSF84TCAPCTXF7CAGDGW2QCA4EGSQDCAL9YZMVCAD39RP1CA7OXCXCCAYU4AZ9CAB55AF9CAC1MGOOCA8NWQH0CATOUINMCAMVMJOOCABI8TW8CA9VCG59CAXGXN35CAXQ6F15CAQJ1H3Y not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\DHPMTUCABRDTKGCA6W9JSKCAEQX26ICACBHD0KCAQ9SZDECAWIAA2PCAQQVKBYCAHC3TAACA1O9JJ6CAS4RUSYCAGA549MCAX1OK2ZCAEISHVMCAN9NC64CA8UQW99CAJAFK8FCA67M3DWCAO2DMPRCAASU86TCA3O9CXZCAH95TDU not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\E4HX2NCA52MHEHCA4LAHB8CASZK073CAFIO0CLCANHHRDYCAE3SIIRCAXOTU5RCAEDG9T0CA8LDDAJCAOXDH9SCAJBHS0ACA1B2P1WCA1OXZOLCA9QLWKMCA5N4N22CAFAH6FMCAJVKI9PCABQ0XL2CAW4018NCAUKWSLPCASXAIW0 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\EF2VE2CAKP6XRPCA18ZD5YCAYZAGWGCA2GBJFTCAWRY4I0CA0J7RPBCADELSO5CANV6N87CA0XEH23CAUOY8KTCAW6HOMOCAZGW8RJCAZ30741CATNR3HUCA0ULWKECAX20O7XCAZZ0KY1CANHZQ4OCALBOX15CA4CCOYUCA5SL52W not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\EZ7344CA7XC2NCCAFEWAB1CAEME1MKCAT1VXJMCATXVG44CA4G6DO6CATPUPE9CANGGD7ECABU9711CAPU24UPCABKSC1WCAIF5AL9CAD5N895CA4P8INQCAITOLYOCAIKURIUCANFI3HZCANNVXYGCA55DL7ECABDQDW0CA2CY9PV not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\I8J3RECADTGCRRCA291AM8CAKXTWNWCA6IR5X0CAZ4VQEGCAVUTEDICAIBRVVYCAYWO5GJCAISJK1VCA8T1Z4YCA6FID4UCAHKE3E6CA7LPT7VCAI543D4CAI1KN5ACA0PTICECA8DO3R2CAWFIPFXCA0RDAU9CASCPXCFCAFPC4LT not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\K1HZ3UCAGTS8BGCAQOVTRUCA76GSK1CAU3IA2MCAGZWV1ACA1NOQBDCALIDN2WCA9D6C7ZCAH5Y1I3CAJCHL2KCAEF7MTUCASDWYRUCA68ZQGBCA4UKDSNCAGTUYSYCA7U8KA1CAV7XA7UCAJJTMLVCASJWHUPCACWDUNHCAJ4DTVE not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\PIPAJRCA6T79VHCACAIC8BCA74JJTMCAUP80FGCAQL4N9ICAYQLBNVCAVXNE1GCA3TLNPTCA6DC5FACATHH3EXCANOFBKZCAZ9X8HUCAY8RZ00CALTXGELCAMQT9AZCAOEVE0DCAP2FPMWCA4E2RK9CA0FWFR5CAHG74H2CA2ZG9LK not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\PMDKVKCAJRDCU2CAKKB2YLCAGHY5GMCAE45VXQCAUDTI44CAJVKJLWCABNFK65CA9KRPB6CAESC535CAJFRJ05CAM3ZFOWCAV71CCYCAHHHI08CATNLVV7CAGRKOL2CATN90RHCAJKNPQFCAHTZIEOCAP9ITRZCAM5SCNVCAIYRKYQ not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\RDCTWLCABBJPR7CAYJYK53CA28QB68CAR4DUOOCAM7ZJYCCASCAYPNCA0P1EBWCA9HC5YKCA9934BZCADK6X82CA5ZETJCCAK6WQC9CA32KA99CAIM5XGVCAM7Y4UICALF6NDWCAO89KN5CAVSIPUTCAZ1KPEJCAZ07FSTCAENWMQB not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\SDHAN3CANU3IDICA4A7QP5CAWJ91WRCA1273WICAW054H2CAZGOLCHCADHPSMCCANSB9JUCAHJ3CPWCAO33TWMCA8ZCYEICAA4BOZ0CADV1UYTCA4HCQ4WCADPRX5CCAB9Z28CCAHL4F29CASD04EVCAIMYBD1CADU1IUACAVXOJA5 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\SFPJRLCAE21FYOCA2LJUJUCA9FOAZ1CAL4CU34CAUY3THFCAJLK787CA7C48JJCAV9HI62CAFWITYECARDC3LYCAR4YN98CA5TUPGZCAT2NYQQCATEYGCWCALO7G4LCAPIUWDPCAZE58DXCALD0W4ICAB2FY0QCA9JUM4JCA7V757C not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\TG2SV2CAHIHZLOCAQ0PSGBCAFAZRT5CA0IQFFFCAHN28GACAOQX4BVCAAKD3VKCAG1V6B4CAN44753CA6U0TQUCAD5KCRJCAK3UFOXCAWN6032CAJ5L2GOCAVDUP6NCAARJ8B4CATX7E66CABFWRECCAK1K537CA94I6J4CAPWSQX5 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\TW9OIYCAP3HQPNCAWUBMDVCA62HZMCCAB09MXECAOETFNXCAC2KG7JCAQXBHKICAEY36EPCA8EGR6ECAHGESXCCAUUG0FVCAUEZ9XQCADS2ANFCACTCZMKCANMLF7ECA04S10MCAGMRU6SCA3AA6EKCAX127BYCAYQ9YLZCAW4RDRK not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\U6MN28CAF7A5KPCAF7PXISCAJY1S2KCA73C7AGCA35PJQUCAV9YA7MCA10RWSSCAU6WOR5CAEYO7S1CA04RXIFCA2QP9DQCAZIK3CNCAP5BAGQCAUR2PXVCAHKPS1TCA81UEN7CAAQGKUGCAA0JIJ3CAD4VCMRCAAE2E00CAALJQTR not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\V1ES2CCAN8A2IRCAW03G8MCADZ9O1HCA53D76DCAASYSCPCA0ICJ96CA5SAF3VCA92B5DCCAFN8W12CAME787OCAZDLED1CAV23DE3CA2AFHC7CAJFGNDGCATW5BQGCAVRZRDECAK7TUBCCAL6FFR5CAN32G42CAPHLXJBCAAT5W49 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\W5ZATFCABPB0LXCAMKI5NECAUU2GX9CAVBODVOCAUN008FCANECKUBCAQS66EACAQITXXPCAVDUYH4CA3EKWWOCAVNLLOYCA6Y48Y9CAX6MRR3CAX63MDACAZ17MEDCABWCMG3CA4GOQNGCAE2HEANCAD3U56GCAXQ83W2CAGQNRBR not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\WIJW0GCA20M9BHCA3J5O04CASAQX03CAVDS2O4CA55IA7XCAQ54CW9CA4OID5WCA29J1EXCAU60J01CAB2B2JYCAVCD0D2CAA5GMZYCAMR5Z8WCAXB1HARCALEMYNNCABCE3RJCAUKBIQ8CAH8UT5CCA2BA3ZLCAAG7UZSCAXQPSYL not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\XECOMYCA9HCSVICARQ9IIVCA2F0ZXWCAJ4CNM9CA0CARRSCA9YH8EGCAMP16TKCAOG53QXCA6PGVUPCADHMPL7CA03FLNRCA9H3GF2CA95HZP4CA4PWJDQCAWFRHPQCAHQRZ87CAF2RHBJCACF4C8LCAJ8CZB6CA3T2X7CCAPHC713 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\XPL2SFCAL9UZGWCAEDLXB0CAFPH06TCAHC0Q24CAQCN8CLCA3JRVURCAEA0PIACATEOO4ICA0O6QG0CA2VUPJKCAQZMWX5CAGI5ZSCCA6OPYOKCAR2G257CA063BWFCAJI4AM9CAY0TBJFCA69TI2SCAO8L20PCAYG2R0SCATX6HH3 not found!
File\Folder C:\Documents and Settings\Paul G\Local Settings\Temp\Temporary Internet Files\Content.IE5\EHDCHYBE\ZZFSONCANKQ2OJCAJC8LFUCA8U5YD0CA3X07JYCAPZNYM9CAV0UCGXCAKNIWJQCALW85T1CAO9MZ4ZCAHX66QDCAZEHMYACA9RD80BCA1AM8RACA9VABKRCAQHGRJBCAYT6QG2CA5WT3NYCAM8BFM1CAFFMABUCAVS06XICA28799G not found!

Registry entries deleted on Reboot...

Thanks For the help so far :thanks:
 
Good,

Now uninstall AVG. Drag your copy of Combofix to the trash and download a fresh copy and run it.

( there is no way to get older versions of CF )

Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop
 
Done. Should I Just Follow Your Previous instructions?

ken545 said:
It looks like the rootkit is gone but you still have some serious infection left to remove. We need to run Combofix , what your going to have to do is uninstall AVG and then run Combofix.


Download ComboFix from one of these locations:

Link 1
Link 2


* IMPORTANT !!! Save ComboFix.exe to your Desktop


  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools
  • See this Link for programs that need to be disabled and instruction on how to disable them.
  • Remember to re-enable them when we're done.

  • Double click on ComboFix.exe & follow the prompts.

  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.

  • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

**Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.


RC1.png


Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:
RC2-1.png

Click on Yes, to continue scanning for malware.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.

*If there is no internet connection when Combofix has completely finished then restart your computer to restore back the connections.
Click to expand...
 
Run CF in Safemode

To Enter Safemode
  • Go to Start> Shut off your Computer> Restart
  • As the computer starts to boot-up, Tap the F8 KEY somewhat rapidly,
    this will bring up a menu.
  • Use the Up and Down Arrow Keys to scroll up to Safemode with Networking
  • Then press the Enter Key on your Keyboard
Tutorial if you need it How to boot into Safemode





If it still wont run then run this program first

  • Please download rkill (Courtesy of Bleepingcomputer.com).
  • There are 5 different versions of this tool. If one of them will not run, please try the next one in the list.
  • Note: Vista and Windows 7 Users must right click and select "Run as Administrator" to run the tool.
  • Note: You only need to get one of the tools to run, not all of them.



  • Note: You will likely see a message from this rogue telling you the file is infected. Ignore the message. Leave the message OPEN, do not close the message.

    Run rkill repeatedly until it's able to do it's job. This may take a few tries.

    You'll be able to tell rkill has done it's job when your desktop (explorer.exe) cycles off and then on again.
 
Ugh.....I've Had alot of frusteration today. First, When i try to turn on my computer it makes some beeping noise and wont turn on. Then After 7 Tries It Turns on. Then I Hear You Say I Have to restart and run in safe mode. I Restart, It Takes another 4 Tries and FINALY turns on and i go into safemode. Then To Make it more frusterating, ComboFix Doesnt Work. It does the same Thing it does in Normal Mode. Now, Can My Problemes Turning On The Computer Have To Do With Viruses? Also, This is the worst Time For This Because I Had to Un-install AVG! Should I Just Re-Download ComboFix and Try One more time or use rkill? Sorry For All The trouble, And Thankyou SOOOO Much For Helping me. Your Help Is Greatly Appreciated. :thanks::thanks::thanks::thanks::thanks::thanks:
 
Paul, with all the problems your having if this was my computer I would format the drive and reinstall windows clean and fresh and be done with all the problems. Do you have your windows CD ?
 
I do have my windows Cd......somewhere. This computer has ALOT of information that i need and I wouldn't be aloud because my family members have alot of files. I am really sorry but format is not an option. The only thing that we need is the virus gone. I understand if the virus is too serious for you to help me remove. Im just really hoping you can continue helping me.
 
Run this program

Please download exeHelper to your desktop.

Double-click on exeHelper.com to run the fix.
A black window should pop up, press any key to close once the fix is completed.
Post the contents of log.txt (Will be created in the directory where you ran exeHelper.com)
Note: If the window shows a message that says "Error deleting file", please re-run the program before posting a log - and post the two logs together (they will both be in the one file).





  • Now physically disconnect from the internet and STOP all your monitoring programs (Antivirus/Antispyware, Guards and Shields)
  • Click on your START button and choose Run. Then copy/paste the entire content of the following quotebox (Including the "" marks and the Symbols) into the run box.

    Go to
    StartBtn.gif
    -> Run -> copy/paste in the following single line command & click OK

    "%userprofile%\desktop\combofix.exe" /killall

    killall.JPG

  • Click OK and this will start ComboFix in a special way.
  • When finished, it will produce a log. Please save that log to a Notepad File to post in your next reply..

Note:
Do not mouse-click combofix's window while it is running. That may cause it to stall.

* After you have saved the logs, restart your system to re-enable all the programs that were disabled during the running of ComboFix.

* Reconnect to the internet

* Post the following logs/Reports:
  • ComboFix.txt
 
Heres The exehelper log:
exeHelper by Raktor
Build 20100414
Run at 21:13:20 on 01/03/11
Now searching...
Checking for numerical processes...
Checking for sysguard processes...
Checking for bad processes...
Checking for bad files...
Checking for bad registry entries...
Resetting filetype association for .exe
Resetting filetype association for .com
Resetting userinit and shell values...
Resetting policies...
--Finished--



Im Starting the next part of your instructions now
 
COMBOFIX WORKED! Yes!!!! Oh and before i post the log i gotta tell you this. So i disabled my antivirus programs and used combofix, combofix rebooted computer and everything started normal. I have spybot set on paranoid Mode so i know when There are registry changes. So spybot opened and said a couple Registry Changes that i didnt really know to much about (Because im just starting in this kinda stuff) So i Clicked allow for the first couple that popped up (I was thinking combofix was doing this). Then, I saw a registry Change named something Like "Disabletskmngr" or something similar. Then i knew i was in trouble. One thing i do know about viruses is that some try to diable task manager to make it harder to remove the viruses or something. So i denied this, then combo fix finished so im going to post the log here:

ComboFix 11-01-03.01 - Paul G 03/01/2011 21:31:02.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1443 [GMT -5:00]
Running from: c:\documents and settings\Paul G\Desktop\ComboFix.exe
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
AV: AVG Internet Security *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
.

((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\documents and settings\All Users\Application Data\shs_setup_4059-354328.exe
c:\documents and settings\MarianneG\Application Data\49EC5EC5525B0F59F70E4DEB0B824331
c:\documents and settings\MarianneG\Application Data\49EC5EC5525B0F59F70E4DEB0B824331\enemies-names.txt
c:\documents and settings\MarianneG\Application Data\49EC5EC5525B0F59F70E4DEB0B824331\local.ini
c:\documents and settings\MarianneG\Application Data\download2
c:\documents and settings\MarianneG\Cookies\acovoguniw.bin
c:\documents and settings\MarianneG\Cookies\wuzamaqo._sy
c:\documents and settings\MarianneG\Cookies\ybanim.dll
c:\documents and settings\MarianneG\Cookies\zohu.dll
c:\documents and settings\MarianneG\Local Settings\Application Data\{DEF17D9C-A0B2-4A77-8B42-7E646278DB87}
c:\documents and settings\MarianneG\Local Settings\Application Data\{DEF17D9C-A0B2-4A77-8B42-7E646278DB87}\chrome.manifest
c:\documents and settings\MarianneG\Local Settings\Application Data\{DEF17D9C-A0B2-4A77-8B42-7E646278DB87}\chrome\content\_cfg.js
c:\documents and settings\MarianneG\Local Settings\Application Data\{DEF17D9C-A0B2-4A77-8B42-7E646278DB87}\chrome\content\overlay.xul
c:\documents and settings\MarianneG\Local Settings\Application Data\{DEF17D9C-A0B2-4A77-8B42-7E646278DB87}\install.rdf
c:\documents and settings\Michael\My Documents\DPE.DUS
c:\documents and settings\Paul G\Application Data\download2
C:\Install.exe
c:\windows\Downloaded Program Files\popcaploader.inf
c:\windows\Fonts\TIMC20C8.TTF
c:\windows\system32\muzapp.exe
c:\windows\system32\ndisapi.dll
c:\windows\Tasks\At1.job
c:\windows\Tasks\At10.job
c:\windows\Tasks\At100.job
c:\windows\Tasks\At101.job
c:\windows\Tasks\At102.job
c:\windows\Tasks\At103.job
c:\windows\Tasks\At104.job
c:\windows\Tasks\At105.job
c:\windows\Tasks\At106.job
c:\windows\Tasks\At107.job
c:\windows\Tasks\At108.job
c:\windows\Tasks\At109.job
c:\windows\Tasks\At11.job
c:\windows\Tasks\At110.job
c:\windows\Tasks\At111.job
c:\windows\Tasks\At12.job
c:\windows\Tasks\At13.job
c:\windows\Tasks\At14.job
c:\windows\Tasks\At15.job
c:\windows\Tasks\At16.job
c:\windows\Tasks\At17.job
c:\windows\Tasks\At18.job
c:\windows\Tasks\At19.job
c:\windows\Tasks\At2.job
c:\windows\Tasks\At20.job
c:\windows\Tasks\At21.job
c:\windows\Tasks\At22.job
c:\windows\Tasks\At23.job
c:\windows\Tasks\At24.job
c:\windows\Tasks\At25.job
c:\windows\Tasks\At26.job
c:\windows\Tasks\At27.job
c:\windows\Tasks\At28.job
c:\windows\Tasks\At29.job
c:\windows\Tasks\At3.job
c:\windows\Tasks\At30.job
c:\windows\Tasks\At31.job
c:\windows\Tasks\At32.job
c:\windows\Tasks\At33.job
c:\windows\Tasks\At34.job
c:\windows\Tasks\At35.job
c:\windows\Tasks\At36.job
c:\windows\Tasks\At37.job
c:\windows\Tasks\At38.job
c:\windows\Tasks\At39.job
c:\windows\Tasks\At4.job
c:\windows\Tasks\At5.job
c:\windows\Tasks\At6.job
c:\windows\Tasks\At64.job
c:\windows\Tasks\At65.job
c:\windows\Tasks\At66.job
c:\windows\Tasks\At67.job
c:\windows\Tasks\At68.job
c:\windows\Tasks\At69.job
c:\windows\Tasks\At7.job
c:\windows\Tasks\At70.job
c:\windows\Tasks\At71.job
c:\windows\Tasks\At72.job
c:\windows\Tasks\At73.job
c:\windows\Tasks\At74.job
c:\windows\Tasks\At75.job
c:\windows\Tasks\At76.job
c:\windows\Tasks\At77.job
c:\windows\Tasks\At78.job
c:\windows\Tasks\At79.job
c:\windows\Tasks\At8.job
c:\windows\Tasks\At80.job
c:\windows\Tasks\At81.job
c:\windows\Tasks\At82.job
c:\windows\Tasks\At83.job
c:\windows\Tasks\At84.job
c:\windows\Tasks\At85.job
c:\windows\Tasks\At86.job
c:\windows\Tasks\At87.job
c:\windows\Tasks\At88.job
c:\windows\Tasks\At89.job
c:\windows\Tasks\At9.job
c:\windows\Tasks\At90.job
c:\windows\Tasks\At91.job
c:\windows\Tasks\At92.job
c:\windows\Tasks\At93.job
c:\windows\Tasks\At94.job
c:\windows\Tasks\At95.job
c:\windows\Tasks\At96.job
c:\windows\Tasks\At97.job
c:\windows\Tasks\At98.job
c:\windows\Tasks\At99.job
c:\windows\ypoluxi.scr

.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.

-------\Legacy_6TO4
-------\Legacy_SSHNAS
-------\Service_6to4


((((((((((((((((((((((((( Files Created from 2010-12-04 to 2011-01-04 )))))))))))))))))))))))))))))))
.

2072-07-31 21:44 . 2004-08-24 18:27 375808 ----a-w- c:\program files\Microsoft Games\Halo\binkw32.dll
2011-01-04 00:39 . 2010-12-13 13:40 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-01-04 00:39 . 2010-12-13 13:40 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-01-04 00:39 . 2010-06-17 19:27 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2011-01-04 00:39 . 2010-06-17 19:27 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2011-01-04 00:39 . 2011-01-04 00:39 -------- d-----w- c:\program files\Avira
2011-01-02 23:32 . 2011-01-02 23:32 -------- d-----w- C:\_OTL
2011-01-02 22:42 . 2011-01-02 22:42 -------- d-----w- c:\documents and settings\Paul G\Application Data\U3
2011-01-02 20:13 . 2011-01-02 20:13 -------- d-----w- c:\program files\7-Zip
2011-01-02 20:10 . 2011-01-02 20:15 -------- d-----w- c:\documents and settings\Paul G\Application Data\BitZipper
2011-01-02 03:12 . 2011-01-02 03:12 -------- d-----w- c:\documents and settings\Paul G\Application Data\Creative
2011-01-02 01:43 . 2011-01-02 01:43 -------- d-----w- c:\documents and settings\Paul G\Application Data\ArcSoft
2011-01-02 00:46 . 2011-01-02 00:46 -------- d-----w- c:\documents and settings\Paul G\Application Data\Malwarebytes
2011-01-02 00:45 . 2010-12-20 23:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-02 00:45 . 2011-01-02 00:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-01-02 00:45 . 2010-12-20 23:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-01 02:40 . 2011-01-01 02:40 138056 ----a-w- c:\documents and settings\Paul G\Application Data\PnkBstrK.sys
2010-12-31 22:26 . 2011-01-04 01:43 -------- d-----w- c:\windows\system32\NtmsData
2010-12-31 22:21 . 2010-12-31 22:21 -------- d-----w- c:\documents and settings\Paul G\Application Data\Avira
2010-12-31 22:17 . 2011-01-04 00:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2010-12-31 19:35 . 2010-12-31 19:36 -------- d-----w- c:\documents and settings\TEMP\Local Settings\Application Data\Google
2010-12-31 19:35 . 2010-12-31 19:36 -------- d-----w- c:\documents and settings\TEMP\Local Settings\Application Data\AskToolbar
2010-12-29 03:16 . 2010-12-29 03:17 -------- d-----w- c:\program files\ERUNT
2010-12-27 16:27 . 2010-12-27 16:27 -------- d-----w- c:\documents and settings\Paul G\Application Data\AVG9
2010-12-26 21:39 . 2010-12-26 21:39 -------- d-----w- c:\documents and settings\Michael\Application Data\AVG9
2010-12-26 18:22 . 2010-12-26 18:23 -------- d-----w- c:\documents and settings\Michael\Local Settings\Application Data\AskToolbar
2010-12-26 18:22 . 2010-12-26 18:22 -------- d-----w- c:\documents and settings\Michael\Application Data\Yahoo!
2010-12-25 20:00 . 2010-12-25 20:00 -------- d-----w- c:\program files\Aiseesoft Studio
2010-12-24 18:57 . 2010-12-26 18:07 -------- d-----w- c:\documents and settings\MarianneG\Local Settings\Application Data\AskToolbar
2010-12-23 19:26 . 2008-04-14 01:12 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-12-23 19:26 . 2001-08-18 03:36 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-12-23 19:26 . 2008-04-14 01:12 18944 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-12-23 19:26 . 2001-08-18 03:37 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-12-23 19:26 . 2001-08-18 03:37 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-12-23 19:26 . 2001-08-18 03:37 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe
2010-12-23 19:25 . 2001-08-17 17:11 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys
2010-12-23 19:25 . 2004-08-04 03:29 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys
2010-12-23 19:25 . 2004-08-04 03:29 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys
2010-12-23 19:25 . 2008-04-14 01:12 8192 ----a-w- c:\windows\system32\dllcache\wshirda.dll
2010-12-23 19:25 . 2008-04-13 19:36 8832 ----a-w- c:\windows\system32\dllcache\wmiacpi.sys
2010-12-23 19:25 . 2004-08-04 03:31 154624 ----a-w- c:\windows\system32\dllcache\wlluc48.sys
2010-12-23 19:25 . 2001-08-17 17:12 34890 ----a-w- c:\windows\system32\dllcache\wlandrv2.sys
2010-12-23 19:23 . 2001-08-17 17:13 19016 ----a-w- c:\windows\system32\dllcache\w926nd.sys
2010-12-23 19:23 . 2001-08-17 17:13 19528 ----a-w- c:\windows\system32\dllcache\w840nd.sys
2010-12-23 19:23 . 2004-08-04 11:00 48256 ----a-w- c:\windows\system32\dllcache\w32.dll
2010-12-23 19:23 . 2001-08-17 18:28 64605 ----a-w- c:\windows\system32\dllcache\vvoice.sys
2010-12-23 19:23 . 2001-08-17 18:28 397502 ----a-w- c:\windows\system32\dllcache\vpctcom.sys
2010-12-23 19:23 . 2001-08-17 18:28 604253 ----a-w- c:\windows\system32\dllcache\vmodem.sys
2010-12-23 19:23 . 2001-08-17 17:14 249402 ----a-w- c:\windows\system32\dllcache\vinwm.sys
2010-12-23 19:23 . 2001-08-17 18:49 24576 ----a-w- c:\windows\system32\dllcache\viairda.sys
2010-12-23 19:23 . 2001-08-17 18:28 687999 ----a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2010-12-23 19:23 . 2001-08-17 18:28 765884 ----a-w- c:\windows\system32\dllcache\usrti.sys
2010-12-23 19:23 . 2001-08-17 18:28 113762 ----a-w- c:\windows\system32\dllcache\usrpda.sys
2010-12-23 19:21 . 2001-08-17 18:58 22912 ----a-w- c:\windows\system32\dllcache\umaxpcls.sys
2010-12-23 19:21 . 2001-08-18 03:36 50176 ----a-w- c:\windows\system32\dllcache\umaxp60.dll
2010-12-23 19:21 . 2001-08-18 03:36 47616 ----a-w- c:\windows\system32\dllcache\umaxcam.dll
2010-12-23 19:21 . 2001-08-18 03:36 211968 ----a-w- c:\windows\system32\dllcache\um54scan.dll
2010-12-23 19:21 . 2001-08-18 03:36 216064 ----a-w- c:\windows\system32\dllcache\um34scan.dll
2010-12-23 19:21 . 2001-08-17 18:48 11520 ----a-w- c:\windows\system32\dllcache\twotrack.sys
2010-12-23 19:21 . 2004-08-04 11:00 14336 ----a-w- c:\windows\system32\dllcache\tsprof.exe
2010-12-23 19:21 . 2001-08-17 17:51 166784 ----a-w- c:\windows\system32\dllcache\tridxpm.sys
2010-12-23 19:21 . 2001-08-18 03:36 525568 ----a-w- c:\windows\system32\dllcache\tridxp.dll
2010-12-23 19:21 . 2001-08-17 17:51 159232 ----a-w- c:\windows\system32\dllcache\tridkbm.sys
2010-12-23 19:19 . 2001-08-17 19:56 81408 ----a-w- c:\windows\system32\dllcache\tgiul50.dll
2010-12-23 19:18 . 2001-08-18 03:36 10240 ----a-w- c:\windows\system32\dllcache\swpidflt.dll
2010-12-23 19:18 . 2001-08-18 03:36 10240 ----a-w- c:\windows\system32\dllcache\swpdflt2.dll
2010-12-23 19:18 . 2001-08-18 03:36 53760 ----a-w- c:\windows\system32\dllcache\sw_wheel.dll
2010-12-23 19:18 . 2001-08-18 03:36 41472 ----a-w- c:\windows\system32\dllcache\sw_effct.dll
2010-12-23 19:18 . 2001-08-18 03:36 155648 ----a-w- c:\windows\system32\dllcache\stlnprop.dll
2010-12-23 19:18 . 2001-08-18 03:36 53248 ----a-w- c:\windows\system32\dllcache\stlncoin.dll
2010-12-23 19:18 . 2001-08-17 17:18 285760 ----a-w- c:\windows\system32\dllcache\stlnata.sys
2010-12-23 19:18 . 2001-08-17 18:51 16896 ----a-w- c:\windows\system32\dllcache\stcusb.sys
2010-12-23 19:18 . 2001-08-17 17:11 48736 ----a-w- c:\windows\system32\dllcache\srwlnd5.sys
2010-12-23 19:18 . 2001-08-18 03:36 99328 ----a-w- c:\windows\system32\dllcache\srusd.dll
2010-12-23 19:18 . 2004-08-04 11:00 101376 ----a-w- c:\windows\system32\dllcache\srusbusd.dll
2010-12-23 19:18 . 2001-08-18 03:36 24660 ----a-w- c:\windows\system32\dllcache\spxupchk.dll
2010-12-23 19:16 . 2001-08-17 17:12 25034 ----a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2010-12-23 19:15 . 2001-08-17 17:50 50432 ----a-w- c:\windows\system32\dllcache\sisv.sys
2010-12-23 19:14 . 2001-08-17 18:53 6784 ----a-w- c:\windows\system32\dllcache\serscan.sys
2010-12-23 19:13 . 2001-08-17 17:50 77824 ----a-w- c:\windows\system32\dllcache\s3sav4m.sys
2010-12-23 19:12 . 2001-08-17 17:12 19017 ----a-w- c:\windows\system32\dllcache\rtl8029.sys
2010-12-23 19:12 . 2001-08-17 17:19 30720 ----a-w- c:\windows\system32\dllcache\rthwcls.sys
2010-12-23 19:12 . 2001-08-18 03:36 9216 ----a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2010-12-23 19:12 . 2001-08-17 17:19 3840 ----a-w- c:\windows\system32\dllcache\rpfun.sys
2010-12-23 19:12 . 2008-04-13 19:40 79104 ----a-w- c:\windows\system32\dllcache\rocket.sys
2010-12-23 19:12 . 2001-08-17 17:12 37563 ----a-w- c:\windows\system32\dllcache\rlnet5.sys
2010-12-23 19:12 . 2001-08-18 03:36 86097 ----a-w- c:\windows\system32\dllcache\reslog32.dll
2010-12-23 19:12 . 2001-08-18 03:36 23040 ----a-w- c:\windows\system32\dllcache\EXCH_regtrace.exe
2010-12-23 19:12 . 2004-08-04 11:00 14848 ----a-w- c:\windows\system32\dllcache\register.exe
2010-12-23 19:12 . 2001-08-17 18:51 19584 ----a-w- c:\windows\system32\dllcache\rasirda.sys
2010-12-23 19:12 . 2001-08-17 18:28 714762 ----a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2010-12-23 19:12 . 2001-08-17 18:28 899146 ----a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2010-12-23 19:10 . 2004-08-04 11:00 131584 ----a-w- c:\windows\system32\dllcache\pmxviceo.dll
2010-12-23 19:09 . 2001-08-17 17:11 30282 ----a-w- c:\windows\system32\dllcache\pcntn5hl.sys
2010-12-23 19:08 . 2001-08-17 18:28 54186 ----a-w- c:\windows\system32\dllcache\otcsercb.sys
2010-12-23 19:07 . 2001-08-17 17:12 32840 ----a-w- c:\windows\system32\dllcache\ngrpci.sys
2010-12-23 19:06 . 2001-08-17 18:50 75520 ----a-w- c:\windows\system32\dllcache\mxport.sys
2010-12-23 19:06 . 2001-08-18 03:36 7168 ----a-w- c:\windows\system32\dllcache\mxport.dll
2010-12-23 19:06 . 2001-08-17 18:49 19968 ----a-w- c:\windows\system32\dllcache\mxnic.sys
2010-12-23 19:06 . 2001-08-18 03:36 19968 ----a-w- c:\windows\system32\dllcache\mxicfg.dll
2010-12-23 19:06 . 2001-08-17 18:50 21888 ----a-w- c:\windows\system32\dllcache\mxcard.sys
2010-12-23 19:06 . 2001-08-17 17:50 103296 ----a-w- c:\windows\system32\dllcache\mtxvideo.sys
2010-12-23 19:06 . 2008-04-13 19:46 49024 ----a-w- c:\windows\system32\dllcache\mstape.sys
2010-12-23 19:06 . 2001-08-17 18:48 12416 ----a-w- c:\windows\system32\dllcache\msriffwv.sys
2010-12-23 19:06 . 2001-08-17 19:00 2944 ----a-w- c:\windows\system32\dllcache\msmpu401.sys
2010-12-23 19:06 . 2008-04-13 19:54 22016 ----a-w- c:\windows\system32\dllcache\msircomm.sys
2010-12-23 19:06 . 2001-08-17 19:02 35200 ----a-w- c:\windows\system32\dllcache\msgame.sys
2010-12-23 19:04 . 2001-08-17 17:19 48768 ----a-w- c:\windows\system32\dllcache\maestro.sys
2010-12-23 19:03 . 2001-08-17 17:12 19016 ----a-w- c:\windows\system32\dllcache\ktc111.sys
2010-12-23 19:02 . 2001-08-17 18:47 13056 ----a-w- c:\windows\system32\dllcache\inport.sys
2010-12-23 19:01 . 2001-08-17 17:11 28700 ----a-w- c:\windows\system32\dllcache\ibmexmp.sys
2010-12-23 19:00 . 2001-08-18 03:36 19456 ----a-w- c:\windows\system32\dllcache\hr1w.dll
2010-12-23 18:59 . 2001-08-17 19:02 8576 ----a-w- c:\windows\system32\dllcache\hidgame.sys
2010-12-23 18:58 . 2001-08-17 17:13 27165 ----a-w- c:\windows\system32\dllcache\fetnd5.sys
2010-12-23 18:57 . 2001-08-18 03:36 51200 ----a-w- c:\windows\system32\dllcache\eqnlogr.exe
2010-12-23 18:57 . 2001-08-18 03:36 53248 ----a-w- c:\windows\system32\dllcache\eqndiag.exe
2010-12-23 18:57 . 2001-08-17 17:17 629952 ----a-w- c:\windows\system32\dllcache\eqn.sys
2010-12-23 18:57 . 2001-08-17 18:50 114944 ----a-w- c:\windows\system32\dllcache\epstw2k.sys
2010-12-23 18:57 . 2001-08-17 17:12 18503 ----a-w- c:\windows\system32\dllcache\epro4.sys
2010-12-23 18:57 . 2001-08-17 18:50 144896 ----a-w- c:\windows\system32\dllcache\epcfw2k.sys
2010-12-23 18:57 . 2001-08-17 18:46 6400 ----a-w- c:\windows\system32\dllcache\enum1394.sys
2010-12-23 18:57 . 2001-08-17 17:19 283904 ----a-w- c:\windows\system32\dllcache\emu10k1m.sys
2010-12-23 18:57 . 2001-08-17 17:10 19996 ----a-w- c:\windows\system32\dllcache\em556n4.sys
2010-12-23 18:57 . 2001-08-17 17:10 25159 ----a-w- c:\windows\system32\dllcache\elnk3.sys
2010-12-23 18:57 . 2001-08-17 18:53 7296 ----a-w- c:\windows\system32\dllcache\elmsmc.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-02 01:26 . 2001-08-17 19:52 45312 ----a-w- c:\windows\system32\drivers\QL12160.SYS
2011-01-01 02:40 . 2009-03-16 21:06 138056 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-01-01 02:40 . 2009-03-16 21:06 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-01-01 02:39 . 2009-03-16 21:06 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-12-15 23:04 . 2007-08-12 15:03 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-18 18:12 . 2004-08-04 11:00 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-02 15:17 . 2004-08-04 11:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:13 . 2004-08-04 11:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25 . 2004-08-04 11:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-10-24 22:34 . 2010-10-25 14:50 447752 ----a-w- c:\windows\system32\vp6vfw.dll
2009-07-31 19:01 . 2009-07-31 19:01 10331 ----a-w- c:\program files\Common Files\wuwi.com
.
Code: 
<pre>
c:\program files\Adobe\Reader 9.0\Reader\Reader_sl .exe
c:\program files\ATI Technologies\ATI Control Panel\atiptaxx .exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart .exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier .exe
c:\program files\Common Files\Logitech\QCDriver2\LVCOMS .exe
c:\program files\Common Files\Real\Update_OB\realsched .exe
c:\program files\Common Files\Sonic\Update Manager\sgtray .exe
c:\program files\Creative\Creative ZEN\ZEN Media Explorer\CTCheck .exe
c:\program files\CyberLink\PowerDVD\DVDLauncher .exe
c:\program files\Dell Support Center\bin\sprtcmd .exe
c:\program files\Dell Support Center\gs_agent\custom\dsca .exe
c:\program files\DellSupport\DSAgnt .exe
c:\program files\Google\Google Updater\GoogleUpdater .exe
c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier .exe
c:\program files\HP\HP Software Update\HPWuSchd2 .exe
c:\program files\HP\hpcoretech\hpcmpmgr .exe
c:\program files\iTunes\iTunesHelper .exe
c:\program files\Java\jre1.6.0_07\bin\jusched .exe
c:\program files\MarkAny\ContentSafer\MAAgent .exe
c:\program files\OLYMPUS\OLYMPUS Master 2\FirstStart .exe
c:\program files\OLYMPUS\OLYMPUS Master 2\MMonitor .exe
c:\program files\QuickTime\qttask   .exe
c:\program files\Rogers\SelfHealing\shs .exe
c:\program files\Samsung\Samsung Media Studio 5\SMSTray .exe
c:\program files\Windows Defender\MSASCui .exe
c:\program files\Windows Live\Messenger\msnmsgr .exe
c:\windows\tsnp2std .exe
c:\windows\vsnp2std .exe
c:\windows\SYSTEM32\rundll32 .exe
</pre>

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VirtualExpanderFile.1]
@="{E4000AC4-5E5F-4956-807A-C5854405D64F}"
[HKEY_CLASSES_ROOT\CLSID\{E4000AC4-5E5F-4956-807A-C5854405D64F}]
2010-05-18 00:48 87552 ----a-w- c:\windows\SYSTEM32\VirtualExpander\VEShellExt.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OM2_Monitor"="c:\program files\OLYMPUS\OLYMPUS Master 2\MMonitor .exe -NoStart" [X]
"DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [N/A]
"msnmsgr"="c:\program files\Windows Live\Messenger\msnmsgr .exe" [2009-07-26 3883856]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2010-12-12 39408]
"Steam"="c:\program files\Steam\Steam.exe" [2010-12-14 1242448]
"SpybotSD TeaTimer"="c:\program files\Spybot - Search & Destroy\TeaTimer.exe" [2009-03-05 2260480]
"Google Update"="c:\documents and settings\Paul G\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-10-21 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2004-11-16 127035]
"MAAgent"="c:\program files\MarkAny\ContentSafer\MAAgent.exe" [N/A]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [N/A]
"MioNet"="c:\program files\MioNet\MioNetLauncher.exe" [2009-12-31 32768]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [N/A]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-04-28 142120]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [N/A]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-12-13 281768]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2004-12-11 24576]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"AVG9_TRAY"=c:\progra~1\AVG\AVG9\avgtray.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\SYSTEM32\\MSHTA.EXE"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Kodak\\KODAK Software Updater\\7288971\\Program\\Kodak Software Updater.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\SYSTEM32\\DPVSETUP.EXE"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\SYSTEM32\\dpnsvr.exe"=
"c:\\WINDOWS\\SYSTEM32\\PnkBstrA.exe"=
"c:\\WINDOWS\\SYSTEM32\\PnkBstrB.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\MioNet\\jvm\\bin\\MioNet.exe"=
"c:\\Program Files\\MioNet\\MioNetManager.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\EA Games\\Battlefield 2\\BF2.exe"=
"c:\\Documents and Settings\\Paul\\My Documents\\Paulz New Downloads\\downloads\\Xfire\\Xfire.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\Valerie\\My Documents\\Downloads\\utorrent.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\msnmsgr .exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Microsoft Games\\Halo\\halo.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"14285:TCP"= 14285:TCP:BitComet 14285 TCP
"14285:UDP"= 14285:UDP:BitComet 14285 UDP
"1700:TCP"= 1700:TCP:MioNet Remote Drive Access 0
"1701:TCP"= 1701:TCP:MioNet Remote Drive Access 1
"1702:TCP"= 1702:TCP:MioNet Remote Drive Access 2
"1703:TCP"= 1703:TCP:MioNet Remote Drive Access 3
"1704:TCP"= 1704:TCP:MioNet Remote Drive Access 4
"1705:TCP"= 1705:TCP:MioNet Remote Drive Access 5
"1706:TCP"= 1706:TCP:MioNet Remote Drive Access 6
"1707:TCP"= 1707:TCP:MioNet Remote Drive Access 7
"1708:TCP"= 1708:TCP:MioNet Remote Drive Access 8
"1709:TCP"= 1709:TCP:MioNet Remote Drive Access 9
"1641:TCP"= 1641:TCP:MioNet Remote Drive Verification
"1647:TCP"= 1647:TCP:MioNet Storage Device Configuration
"5432:UDP"= 5432:UDP:MioNet Storage Device Discovery

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [03/01/2011 7:39 PM 135336]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [18/12/2009 8:00 PM 135664]
S3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\SYSTEM32\DRIVERS\LV532AV.SYS [14/02/2007 5:18 PM 152576]
S4 MioNet;MioNet;c:\program files\MioNet\MioNetManager.exe [10/06/2008 3:05 PM 139264]
S4 RogersSelfHelpService;Rogers SHS Service;c:\program files\Rogers\SelfHealing\RogersSelfHelpService.exe [03/06/2010 2:46 PM 139264]
S4 RogersUpdateManager;Rogers Update Manager;c:\program files\Rogers\Update Manager\RogersUpdateManager.exe [03/06/2010 2:46 PM 163840]
S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [03/11/2006 6:19 PM 13592]

--- Other Services/Drivers In Memory ---

*NewlyCreated* - SSMDRV
*Deregistered* - NDISRD
.
Contents of the 'Scheduled Tasks' folder

2010-08-12 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]

2011-01-04 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-28 20:58]

2011-01-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-19 01:00]

2011-01-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-19 01:00]

2011-01-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-355009979-1306471619-2281885113-1011Core.job
- c:\documents and settings\Paul G\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-01-01 20:21]

2011-01-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-355009979-1306471619-2281885113-1011UA.job
- c:\documents and settings\Paul G\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-01-01 20:21]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1006.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1009.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1010.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1011.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-31 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1006.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-31 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-09-23 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-02 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1009.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-31 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1010.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1011.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-27 c:\windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job
- c:\program files\Spybot - Search & Destroy\SpybotSD.exe [2010-09-11 19:31]

2010-12-19 c:\windows\Tasks\switchShakeIcon.job
- c:\program files\NCH Swift Sound\Switch\switch.exe [2010-12-19 22:46]
.
.
------- Supplementary Scan -------
.
uLocal Page = hxxp://www.google.com/
uStart Page = hxxp://www.google.ca/
mStart Page = hxxp://www.google.com
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} -
DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.71.0.cab
DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} - hxxps://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.26.2.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab
.
- - - - ORPHANS REMOVED - - - -

BHO-{6955FB38-7614-4A87-95C5-626CCEA88DF7} - (no file)
BHO-{7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)
BHO-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
Notify-avgrsstarter - (no file)
SafeBoot-AVG Anti-Spyware Driver
SafeBoot-klmdb.sys
SafeBoot-AVG Anti-Spyware Guard
AddRemove-Google Updater - c:\program files\Google\Google Updater\GoogleUpdater.exe
AddRemove-Webs Credits - c:\program files\Webs Credits\Uninst.exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-03 21:40
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-355009979-1306471619-2281885113-1011\Software\SecuROM\License information*]
"datasecu"=hex:b7,aa,a1,33,27,d1,78,c3,fd,e2,16,f0,cc,a7,cf,8c,b0,ab,54,c3,cc,
e9,03,61,bb,62,ef,5a,1b,38,0e,e9,e7,2a,79,13,1d,8b,bb,c1,fd,cb,10,43,22,0d,\
"rkeysecu"=hex:a1,9c,7c,99,7b,d8,a6,bc,66,57,a8,76,35,2e,95,9e
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(648)
c:\windows\system32\Ati2evxx.dll
c:\windows\system32\l3codeca.acm
c:\windows\system32\sirenacm.dll
c:\windows\system32\LameACM.acm
c:\windows\system32\WININET.dll

- - - - - - - > 'explorer.exe'(828)
c:\windows\system32\WININET.dll
c:\windows\system32\VirtualExpander\VEShellExt.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.4053_x-ww_e6967989\MSVCR80.dll
c:\progra~1\MarkAny\CONTEN~1\MACSMA~1.DLL
c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\rundll32.exe
c:\windows\system32\rundll32.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SYSTEM32\bgsvcgen.exe
c:\windows\system32\CTsvcCDA.exe
c:\windows\system32\crypserv.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\HPZipm12.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Dell Support Center\bin\sprtsvc.exe
c:\windows\system32\SearchIndexer.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\windows\system32\wscntfy.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\MioNet\jvm\bin\MioNet.exe
c:\program files\Internet Explorer\iexplore.exe
c:\program files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe
.
**************************************************************************
.
Completion time: 2011-01-03 21:46:12 - machine was rebooted
ComboFix-quarantined-files.txt 2011-01-04 02:46

Pre-Run: 360,114,499,584 bytes free
Post-Run: 364,206,546,944 bytes free

WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(2)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(2)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
[spybotsd]
timeout.old=30

- - End Of File - - C13F67478055BF9CB91D1B1BB5A779FA
 
You need to disable all virus and spyware programs prior to running CF, this includes the Teatimer in spybot. What I want you to do is disable the teatimer and leave it disabled and I will link you to a program to install that wont get in your face like the teatimer will.


Do this first...Important

Disable the TeaTimer, leave it disabled, do not turn it back on until we're done or it will prevent fixes from taking
  • Run Spybot-S&D in Advanced Mode.
  • If it is not already set to do this Go to the Mode menu select "Advanced Mode"
  • On the left hand side, Click on Tools
  • Then click on the Resident Icon in the List
  • Uncheck "Resident TeaTimer" and OK any prompts.
  • Restart your computer.<--You need to do this for it to take effect
Please do not proceed until the TeaTimer is disabled





Besides being infected with the rootkit ( which looks like its gone ) your also infected with the Vundo file infector. If you look through your combofix log, all the files and programs in the blue code box under (((((( Find3M Report ))))))))) are infected and need to be replaced. Combofix will attempt to fix them, the ones that cannot be fixed will need to be uninstalled and you will have to reinstall them.



Open Notepad Go to Start> All Programs> Assessories> Notepad ( this will only work with Notepad )and copy all the text inside the Codebox by highlighting it all and pressing CTRL C on your keyboard, then paste it into Notepad, make sure there is no space before and above RenV::


Code: 
RenV::
c:\program files\Adobe\Reader 9.0\Reader\Reader_sl .exe
c:\program files\ATI Technologies\ATI Control Panel\atiptaxx .exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart .exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier .exe
c:\program files\Common Files\Logitech\QCDriver2\LVCOMS .exe
c:\program files\Common Files\Real\Update_OB\realsched .exe
c:\program files\Common Files\Sonic\Update Manager\sgtray .exe
c:\program files\Creative\Creative ZEN\ZEN Media Explorer\CTCheck .exe
c:\program files\CyberLink\PowerDVD\DVDLauncher .exe
c:\program files\Dell Support Center\bin\sprtcmd .exe
c:\program files\Dell Support Center\gs_agent\custom\dsca .exe
c:\program files\DellSupport\DSAgnt .exe
c:\program files\Google\Google Updater\GoogleUpdater .exe
c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier .exe
c:\program files\HP\HP Software Update\HPWuSchd2 .exe
c:\program files\HP\hpcoretech\hpcmpmgr .exe
c:\program files\iTunes\iTunesHelper .exe
c:\program files\Java\jre1.6.0_07\bin\jusched .exe
c:\program files\MarkAny\ContentSafer\MAAgent .exe
c:\program files\OLYMPUS\OLYMPUS Master 2\FirstStart .exe
c:\program files\OLYMPUS\OLYMPUS Master 2\MMonitor .exe
c:\program files\QuickTime\qttask   .exe
c:\program files\Rogers\SelfHealing\shs .exe
c:\program files\Samsung\Samsung Media Studio 5\SMSTray .exe
c:\program files\Windows Defender\MSASCui .exe
c:\program files\Windows Live\Messenger\msnmsgr .exe
c:\windows\tsnp2std .exe
c:\windows\vsnp2std .exe
c:\windows\SYSTEM32\rundll32 .exe

Save this as CFScript to your desktop.

Then drag the CFScript into ComboFix.exe as you see in the screenshot below.

CFScriptB-4.gif



This will start ComboFix again. After reboot, (in case it asks to reboot), post the contents of Combofix.txt in your next reply.
 
Here it is :D: :


ComboFix 11-01-04.01 - Paul G 04/01/2011 12:58:02.2.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.2046.1481 [GMT -5:00]
Running from: c:\documents and settings\Paul G\Desktop\ComboFix.exe
Command switches used :: c:\documents and settings\Paul G\Desktop\CFScript.txt
AV: AntiVir Desktop *Disabled/Updated* {AD166499-45F9-482A-A743-FDD3350758C7}
AV: AVG Internet Security *Disabled/Outdated* {17DDD097-36FF-435F-9E1B-52D74245D6BF}
FW: AVG Firewall *Disabled* {8decf618-9569-4340-b34a-d78d28969b66}
.

((((((((((((((((((((((((( Files Created from 2010-12-04 to 2011-01-04 )))))))))))))))))))))))))))))))
.

2072-07-31 21:44 . 2004-08-24 18:27 375808 ----a-w- c:\program files\Microsoft Games\Halo\binkw32.dll
2011-01-04 17:30 . 2011-01-04 17:30 -------- d-----w- c:\program files\Microsoft SQL Server
2011-01-04 17:30 . 2011-01-04 17:30 -------- d-----w- c:\program files\Microsoft Synchronization Services
2011-01-04 17:29 . 2011-01-04 17:29 193824 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\VBExpress\9.0\1033\ResourceCache.dll
2011-01-04 17:28 . 2011-01-04 17:28 416 ----a-w- c:\documents and settings\All Users\Application Data\Microsoft\MSDN\9.0\1033\ResourceCache.dll
2011-01-04 17:28 . 2011-01-04 17:28 -------- d-----w- c:\documents and settings\Paul G\Local Settings\Application Data\Microsoft Help
2011-01-04 17:26 . 2011-01-04 17:30 -------- d-----w- c:\program files\Microsoft Visual Studio 9.0
2011-01-04 17:26 . 2011-01-04 17:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Microsoft Help
2011-01-04 17:25 . 2011-01-04 17:25 -------- d-----w- c:\program files\Microsoft SDKs
2011-01-04 00:39 . 2010-12-13 13:40 61960 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-01-04 00:39 . 2010-12-13 13:40 135096 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-01-04 00:39 . 2010-06-17 19:27 45416 ----a-w- c:\windows\system32\drivers\avgntdd.sys
2011-01-04 00:39 . 2010-06-17 19:27 22360 ----a-w- c:\windows\system32\drivers\avgntmgr.sys
2011-01-04 00:39 . 2011-01-04 00:39 -------- d-----w- c:\program files\Avira
2011-01-02 23:32 . 2011-01-02 23:32 -------- d-----w- C:\_OTL
2011-01-02 22:42 . 2011-01-02 22:42 -------- d-----w- c:\documents and settings\Paul G\Application Data\U3
2011-01-02 20:13 . 2011-01-02 20:13 -------- d-----w- c:\program files\7-Zip
2011-01-02 20:10 . 2011-01-02 20:15 -------- d-----w- c:\documents and settings\Paul G\Application Data\BitZipper
2011-01-02 03:12 . 2011-01-02 03:12 -------- d-----w- c:\documents and settings\Paul G\Application Data\Creative
2011-01-02 01:43 . 2011-01-02 01:43 -------- d-----w- c:\documents and settings\Paul G\Application Data\ArcSoft
2011-01-02 00:46 . 2011-01-02 00:46 -------- d-----w- c:\documents and settings\Paul G\Application Data\Malwarebytes
2011-01-02 00:45 . 2010-12-20 23:09 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2011-01-02 00:45 . 2011-01-02 00:45 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-01-02 00:45 . 2010-12-20 23:08 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-01-01 02:40 . 2011-01-01 02:40 138056 ----a-w- c:\documents and settings\Paul G\Application Data\PnkBstrK.sys
2010-12-31 22:26 . 2011-01-04 01:43 -------- d-----w- c:\windows\system32\NtmsData
2010-12-31 22:21 . 2010-12-31 22:21 -------- d-----w- c:\documents and settings\Paul G\Application Data\Avira
2010-12-31 22:17 . 2011-01-04 00:39 -------- d-----w- c:\documents and settings\All Users\Application Data\Avira
2010-12-31 19:35 . 2010-12-31 19:36 -------- d-----w- c:\documents and settings\TEMP\Local Settings\Application Data\Google
2010-12-31 19:35 . 2010-12-31 19:36 -------- d-----w- c:\documents and settings\TEMP\Local Settings\Application Data\AskToolbar
2010-12-29 03:16 . 2010-12-29 03:17 -------- d-----w- c:\program files\ERUNT
2010-12-27 16:27 . 2010-12-27 16:27 -------- d-----w- c:\documents and settings\Paul G\Application Data\AVG9
2010-12-26 21:39 . 2010-12-26 21:39 -------- d-----w- c:\documents and settings\Michael\Application Data\AVG9
2010-12-26 18:22 . 2010-12-26 18:23 -------- d-----w- c:\documents and settings\Michael\Local Settings\Application Data\AskToolbar
2010-12-26 18:22 . 2010-12-26 18:22 -------- d-----w- c:\documents and settings\Michael\Application Data\Yahoo!
2010-12-25 20:00 . 2010-12-25 20:00 -------- d-----w- c:\program files\Aiseesoft Studio
2010-12-24 18:57 . 2010-12-26 18:07 -------- d-----w- c:\documents and settings\MarianneG\Local Settings\Application Data\AskToolbar
2010-12-23 19:26 . 2008-04-14 01:12 116224 ----a-w- c:\windows\system32\dllcache\xrxwiadr.dll
2010-12-23 19:26 . 2001-08-18 03:36 23040 ----a-w- c:\windows\system32\dllcache\xrxwbtmp.dll
2010-12-23 19:26 . 2008-04-14 01:12 18944 ----a-w- c:\windows\system32\dllcache\xrxscnui.dll
2010-12-23 19:26 . 2001-08-18 03:37 27648 ----a-w- c:\windows\system32\dllcache\xrxftplt.exe
2010-12-23 19:26 . 2001-08-18 03:37 4608 ----a-w- c:\windows\system32\dllcache\xrxflnch.exe
2010-12-23 19:26 . 2001-08-18 03:37 99865 ----a-w- c:\windows\system32\dllcache\xlog.exe
2010-12-23 19:25 . 2001-08-17 17:11 16970 ----a-w- c:\windows\system32\dllcache\xem336n5.sys
2010-12-23 19:25 . 2004-08-04 03:29 19455 ----a-w- c:\windows\system32\dllcache\wvchntxx.sys
2010-12-23 19:25 . 2004-08-04 03:29 12063 ----a-w- c:\windows\system32\dllcache\wsiintxx.sys
2010-12-23 19:25 . 2008-04-14 01:12 8192 ----a-w- c:\windows\system32\dllcache\wshirda.dll
2010-12-23 19:25 . 2008-04-13 19:36 8832 ----a-w- c:\windows\system32\dllcache\wmiacpi.sys
2010-12-23 19:25 . 2004-08-04 03:31 154624 ----a-w- c:\windows\system32\dllcache\wlluc48.sys
2010-12-23 19:25 . 2001-08-17 17:12 34890 ----a-w- c:\windows\system32\dllcache\wlandrv2.sys
2010-12-23 19:23 . 2001-08-17 17:13 19016 ----a-w- c:\windows\system32\dllcache\w926nd.sys
2010-12-23 19:23 . 2001-08-17 17:13 19528 ----a-w- c:\windows\system32\dllcache\w840nd.sys
2010-12-23 19:23 . 2004-08-04 11:00 48256 ----a-w- c:\windows\system32\dllcache\w32.dll
2010-12-23 19:23 . 2001-08-17 18:28 64605 ----a-w- c:\windows\system32\dllcache\vvoice.sys
2010-12-23 19:23 . 2001-08-17 18:28 397502 ----a-w- c:\windows\system32\dllcache\vpctcom.sys
2010-12-23 19:23 . 2001-08-17 18:28 604253 ----a-w- c:\windows\system32\dllcache\vmodem.sys
2010-12-23 19:23 . 2001-08-17 17:14 249402 ----a-w- c:\windows\system32\dllcache\vinwm.sys
2010-12-23 19:23 . 2001-08-17 18:49 24576 ----a-w- c:\windows\system32\dllcache\viairda.sys
2010-12-23 19:23 . 2001-08-17 18:28 687999 ----a-w- c:\windows\system32\dllcache\usrwdxjs.sys
2010-12-23 19:23 . 2001-08-17 18:28 765884 ----a-w- c:\windows\system32\dllcache\usrti.sys
2010-12-23 19:23 . 2001-08-17 18:28 113762 ----a-w- c:\windows\system32\dllcache\usrpda.sys
2010-12-23 19:21 . 2001-08-17 18:58 22912 ----a-w- c:\windows\system32\dllcache\umaxpcls.sys
2010-12-23 19:21 . 2001-08-18 03:36 50176 ----a-w- c:\windows\system32\dllcache\umaxp60.dll
2010-12-23 19:21 . 2001-08-18 03:36 47616 ----a-w- c:\windows\system32\dllcache\umaxcam.dll
2010-12-23 19:21 . 2001-08-18 03:36 211968 ----a-w- c:\windows\system32\dllcache\um54scan.dll
2010-12-23 19:21 . 2001-08-18 03:36 216064 ----a-w- c:\windows\system32\dllcache\um34scan.dll
2010-12-23 19:21 . 2001-08-17 18:48 11520 ----a-w- c:\windows\system32\dllcache\twotrack.sys
2010-12-23 19:21 . 2004-08-04 11:00 14336 ----a-w- c:\windows\system32\dllcache\tsprof.exe
2010-12-23 19:21 . 2001-08-17 17:51 166784 ----a-w- c:\windows\system32\dllcache\tridxpm.sys
2010-12-23 19:21 . 2001-08-18 03:36 525568 ----a-w- c:\windows\system32\dllcache\tridxp.dll
2010-12-23 19:21 . 2001-08-17 17:51 159232 ----a-w- c:\windows\system32\dllcache\tridkbm.sys
2010-12-23 19:19 . 2001-08-17 19:56 81408 ----a-w- c:\windows\system32\dllcache\tgiul50.dll
2010-12-23 19:18 . 2001-08-18 03:36 10240 ----a-w- c:\windows\system32\dllcache\swpidflt.dll
2010-12-23 19:18 . 2001-08-18 03:36 10240 ----a-w- c:\windows\system32\dllcache\swpdflt2.dll
2010-12-23 19:18 . 2001-08-18 03:36 53760 ----a-w- c:\windows\system32\dllcache\sw_wheel.dll
2010-12-23 19:18 . 2001-08-18 03:36 41472 ----a-w- c:\windows\system32\dllcache\sw_effct.dll
2010-12-23 19:18 . 2001-08-18 03:36 155648 ----a-w- c:\windows\system32\dllcache\stlnprop.dll
2010-12-23 19:18 . 2001-08-18 03:36 53248 ----a-w- c:\windows\system32\dllcache\stlncoin.dll
2010-12-23 19:18 . 2001-08-17 17:18 285760 ----a-w- c:\windows\system32\dllcache\stlnata.sys
2010-12-23 19:18 . 2001-08-17 18:51 16896 ----a-w- c:\windows\system32\dllcache\stcusb.sys
2010-12-23 19:18 . 2001-08-17 17:11 48736 ----a-w- c:\windows\system32\dllcache\srwlnd5.sys
2010-12-23 19:18 . 2001-08-18 03:36 99328 ----a-w- c:\windows\system32\dllcache\srusd.dll
2010-12-23 19:18 . 2004-08-04 11:00 101376 ----a-w- c:\windows\system32\dllcache\srusbusd.dll
2010-12-23 19:18 . 2001-08-18 03:36 24660 ----a-w- c:\windows\system32\dllcache\spxupchk.dll
2010-12-23 19:16 . 2001-08-17 17:12 25034 ----a-w- c:\windows\system32\dllcache\smcpwr2n.sys
2010-12-23 19:15 . 2001-08-17 17:50 50432 ----a-w- c:\windows\system32\dllcache\sisv.sys
2010-12-23 19:14 . 2001-08-17 18:53 6784 ----a-w- c:\windows\system32\dllcache\serscan.sys
2010-12-23 19:13 . 2001-08-17 17:50 77824 ----a-w- c:\windows\system32\dllcache\s3sav4m.sys
2010-12-23 19:12 . 2001-08-17 17:12 19017 ----a-w- c:\windows\system32\dllcache\rtl8029.sys
2010-12-23 19:12 . 2001-08-17 17:19 30720 ----a-w- c:\windows\system32\dllcache\rthwcls.sys
2010-12-23 19:12 . 2001-08-18 03:36 9216 ----a-w- c:\windows\system32\dllcache\rsmgrstr.dll
2010-12-23 19:12 . 2001-08-17 17:19 3840 ----a-w- c:\windows\system32\dllcache\rpfun.sys
2010-12-23 19:12 . 2008-04-13 19:40 79104 ----a-w- c:\windows\system32\dllcache\rocket.sys
2010-12-23 19:12 . 2001-08-17 17:12 37563 ----a-w- c:\windows\system32\dllcache\rlnet5.sys
2010-12-23 19:12 . 2001-08-18 03:36 86097 ----a-w- c:\windows\system32\dllcache\reslog32.dll
2010-12-23 19:12 . 2001-08-18 03:36 23040 ----a-w- c:\windows\system32\dllcache\EXCH_regtrace.exe
2010-12-23 19:12 . 2004-08-04 11:00 14848 ----a-w- c:\windows\system32\dllcache\register.exe
2010-12-23 19:12 . 2001-08-17 18:51 19584 ----a-w- c:\windows\system32\dllcache\rasirda.sys
2010-12-23 19:12 . 2001-08-17 18:28 714762 ----a-w- c:\windows\system32\dllcache\r2mdmkxx.sys
2010-12-23 19:12 . 2001-08-17 18:28 899146 ----a-w- c:\windows\system32\dllcache\r2mdkxga.sys
2010-12-23 19:10 . 2004-08-04 11:00 131584 ----a-w- c:\windows\system32\dllcache\pmxviceo.dll
2010-12-23 19:09 . 2001-08-17 17:11 30282 ----a-w- c:\windows\system32\dllcache\pcntn5hl.sys
2010-12-23 19:08 . 2001-08-17 18:28 54186 ----a-w- c:\windows\system32\dllcache\otcsercb.sys
2010-12-23 19:07 . 2001-08-17 17:12 32840 ----a-w- c:\windows\system32\dllcache\ngrpci.sys
2010-12-23 19:06 . 2001-08-17 18:50 75520 ----a-w- c:\windows\system32\dllcache\mxport.sys
2010-12-23 19:06 . 2001-08-18 03:36 7168 ----a-w- c:\windows\system32\dllcache\mxport.dll
2010-12-23 19:06 . 2001-08-17 18:49 19968 ----a-w- c:\windows\system32\dllcache\mxnic.sys
2010-12-23 19:06 . 2001-08-18 03:36 19968 ----a-w- c:\windows\system32\dllcache\mxicfg.dll
2010-12-23 19:06 . 2001-08-17 18:50 21888 ----a-w- c:\windows\system32\dllcache\mxcard.sys
2010-12-23 19:06 . 2001-08-17 17:50 103296 ----a-w- c:\windows\system32\dllcache\mtxvideo.sys
2010-12-23 19:06 . 2008-04-13 19:46 49024 ----a-w- c:\windows\system32\dllcache\mstape.sys
2010-12-23 19:06 . 2001-08-17 18:48 12416 ----a-w- c:\windows\system32\dllcache\msriffwv.sys
2010-12-23 19:06 . 2001-08-17 19:00 2944 ----a-w- c:\windows\system32\dllcache\msmpu401.sys
2010-12-23 19:06 . 2008-04-13 19:54 22016 ----a-w- c:\windows\system32\dllcache\msircomm.sys
2010-12-23 19:06 . 2001-08-17 19:02 35200 ----a-w- c:\windows\system32\dllcache\msgame.sys
2010-12-23 19:04 . 2001-08-17 17:19 48768 ----a-w- c:\windows\system32\dllcache\maestro.sys
2010-12-23 19:03 . 2001-08-17 17:12 19016 ----a-w- c:\windows\system32\dllcache\ktc111.sys
2010-12-23 19:02 . 2001-08-17 18:47 13056 ----a-w- c:\windows\system32\dllcache\inport.sys
2010-12-23 19:01 . 2001-08-17 17:11 28700 ----a-w- c:\windows\system32\dllcache\ibmexmp.sys
2010-12-23 19:00 . 2001-08-18 03:36 19456 ----a-w- c:\windows\system32\dllcache\hr1w.dll
2010-12-23 18:59 . 2001-08-17 19:02 8576 ----a-w- c:\windows\system32\dllcache\hidgame.sys
2010-12-23 18:58 . 2001-08-17 17:13 27165 ----a-w- c:\windows\system32\dllcache\fetnd5.sys
2010-12-23 18:57 . 2001-08-18 03:36 51200 ----a-w- c:\windows\system32\dllcache\eqnlogr.exe
2010-12-23 18:57 . 2001-08-18 03:36 53248 ----a-w- c:\windows\system32\dllcache\eqndiag.exe
2010-12-23 18:57 . 2001-08-17 17:17 629952 ----a-w- c:\windows\system32\dllcache\eqn.sys

.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-01-02 01:26 . 2001-08-17 19:52 45312 ----a-w- c:\windows\system32\drivers\QL12160.SYS
2011-01-01 02:40 . 2009-03-16 21:06 138056 ----a-w- c:\windows\system32\drivers\PnkBstrK.sys
2011-01-01 02:40 . 2009-03-16 21:06 189248 ----a-w- c:\windows\system32\PnkBstrB.exe
2011-01-01 02:39 . 2009-03-16 21:06 75136 ----a-w- c:\windows\system32\PnkBstrA.exe
2010-12-15 23:04 . 2007-08-12 15:03 73728 ----a-w- c:\windows\system32\javacpl.cpl
2010-11-18 18:12 . 2004-08-04 11:00 81920 ----a-w- c:\windows\system32\isign32.dll
2010-11-02 15:17 . 2004-08-04 11:00 40960 ----a-w- c:\windows\system32\drivers\ndproxy.sys
2010-10-28 13:13 . 2004-08-04 11:00 290048 ----a-w- c:\windows\system32\atmfd.dll
2010-10-26 13:25 . 2004-08-04 11:00 1853312 ----a-w- c:\windows\system32\win32k.sys
2010-10-24 22:34 . 2010-10-25 14:50 447752 ----a-w- c:\windows\system32\vp6vfw.dll
2009-07-31 19:01 . 2009-07-31 19:01 10331 ----a-w- c:\program files\Common Files\wuwi.com
.

((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\VirtualExpanderFile.1]
@="{E4000AC4-5E5F-4956-807A-C5854405D64F}"
[HKEY_CLASSES_ROOT\CLSID\{E4000AC4-5E5F-4956-807A-C5854405D64F}]
2010-05-18 00:48 87552 ----a-w- c:\windows\SYSTEM32\VirtualExpander\VEShellExt.dll

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OM2_Monitor"="c:\program files\OLYMPUS\OLYMPUS Master 2\MMonitor .exe -NoStart" [X]
"DellSupport"="c:\program files\DellSupport\DSAgnt.exe" [2007-03-15 460784]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-08-28 39408]
"Steam"="c:\program files\Steam\Steam.exe" [2010-12-14 1242448]
"Google Update"="c:\documents and settings\Paul G\Local Settings\Application Data\Google\Update\GoogleUpdate.exe" [2010-10-21 136176]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"dla"="c:\windows\system32\dla\tfswctrl.exe" [2004-11-16 127035]
"MAAgent"="c:\program files\MarkAny\ContentSafer\MAAgent.exe" [2007-01-31 57344]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"MioNet"="c:\program files\MioNet\MioNetLauncher.exe" [2009-12-31 32768]
"StartCCC"="c:\program files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" [2010-02-11 61440]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2010-04-28 142120]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-03-14 202256]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2010-12-13 281768]

c:\documents and settings\All Users\Start Menu\Programs\Startup\
Digital Line Detect.lnk - c:\program files\Digital Line Detect\DLG.exe [2004-12-11 24576]

[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{56F9679E-7826-4C84-81F3-532071A8BCC5}"= "c:\program files\Windows Desktop Search\MSNLNamespaceMgr.dll" [2009-05-25 304128]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\avgrsstarter]
[BU]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Driver]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\AVG Anti-Spyware Guard]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\klmdb.sys]
@=""

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend]
@="Service"

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"AVG9_TRAY"=c:\progra~1\AVG\AVG9\avgtray.exe

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\WINDOWS\\SYSTEM32\\MSHTA.EXE"=
"c:\\Program Files\\HP\\HP Software Update\\HPWUCli.exe"=
"c:\\Program Files\\Real\\RealPlayer\\realplay.exe"=
"c:\\Program Files\\Kodak\\KODAK Software Updater\\7288971\\Program\\Kodak Software Updater.exe"=
"c:\\Program Files\\Kodak\\Kodak EasyShare software\\bin\\EasyShare.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\WINDOWS\\SYSTEM32\\DPVSETUP.EXE"=
"c:\\Program Files\\uTorrent\\uTorrent.exe"=
"c:\\WINDOWS\\SYSTEM32\\dpnsvr.exe"=
"c:\\WINDOWS\\SYSTEM32\\PnkBstrA.exe"=
"c:\\WINDOWS\\SYSTEM32\\PnkBstrB.exe"=
"c:\\Program Files\\Windows Live\\Messenger\\wlcsdk.exe"=
"c:\\Program Files\\Windows Live\\Sync\\WindowsLiveSync.exe"=
"c:\\Program Files\\MioNet\\jvm\\bin\\MioNet.exe"=
"c:\\Program Files\\MioNet\\MioNetManager.exe"=
"c:\\Program Files\\Skype\\Plugin Manager\\skypePM.exe"=
"c:\\Program Files\\EA Games\\Battlefield 2\\BF2.exe"=
"c:\\Documents and Settings\\Paul\\My Documents\\Paulz New Downloads\\downloads\\Xfire\\Xfire.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\Valerie\\My Documents\\Downloads\\utorrent.exe"=
"c:\\Program Files\\iTunes\\iTunes.exe"=
"c:\\Program Files\\Microsoft Games\\Halo\\halo.exe"=

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"14285:TCP"= 14285:TCP:BitComet 14285 TCP
"14285:UDP"= 14285:UDP:BitComet 14285 UDP
"1700:TCP"= 1700:TCP:MioNet Remote Drive Access 0
"1701:TCP"= 1701:TCP:MioNet Remote Drive Access 1
"1702:TCP"= 1702:TCP:MioNet Remote Drive Access 2
"1703:TCP"= 1703:TCP:MioNet Remote Drive Access 3
"1704:TCP"= 1704:TCP:MioNet Remote Drive Access 4
"1705:TCP"= 1705:TCP:MioNet Remote Drive Access 5
"1706:TCP"= 1706:TCP:MioNet Remote Drive Access 6
"1707:TCP"= 1707:TCP:MioNet Remote Drive Access 7
"1708:TCP"= 1708:TCP:MioNet Remote Drive Access 8
"1709:TCP"= 1709:TCP:MioNet Remote Drive Access 9
"1641:TCP"= 1641:TCP:MioNet Remote Drive Verification
"1647:TCP"= 1647:TCP:MioNet Storage Device Configuration
"5432:UDP"= 5432:UDP:MioNet Storage Device Discovery

R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [03/01/2011 7:39 PM 135336]
S2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [18/12/2009 8:00 PM 135664]
S3 PID_0920;Logitech QuickCam Express(PID_0920);c:\windows\SYSTEM32\DRIVERS\LV532AV.SYS [14/02/2007 5:18 PM 152576]
S4 MioNet;MioNet;c:\program files\MioNet\MioNetManager.exe [10/06/2008 3:05 PM 139264]
S4 RogersSelfHelpService;Rogers SHS Service;c:\program files\Rogers\SelfHealing\RogersSelfHelpService.exe [03/06/2010 2:46 PM 139264]
S4 RogersUpdateManager;Rogers Update Manager;c:\program files\Rogers\Update Manager\RogersUpdateManager.exe [03/06/2010 2:46 PM 163840]
S4 WinDefend;Windows Defender;c:\program files\Windows Defender\MsMpEng.exe [03/11/2006 6:19 PM 13592]

--- Other Services/Drivers In Memory ---

*Deregistered* - NDISRD
.
Contents of the 'Scheduled Tasks' folder

2010-08-12 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2008-07-30 17:34]

2011-01-04 c:\windows\Tasks\Google Software Updater.job
- c:\program files\Google\Common\Google Updater\GoogleUpdaterService.exe [2008-08-28 20:58]

2011-01-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-19 01:00]

2011-01-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-12-19 01:00]

2011-01-02 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-355009979-1306471619-2281885113-1011Core.job
- c:\documents and settings\Paul G\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-01-01 20:21]

2011-01-04 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-355009979-1306471619-2281885113-1011UA.job
- c:\documents and settings\Paul G\Local Settings\Application Data\Google\Update\GoogleUpdate.exe [2011-01-01 20:21]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1006.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1009.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1010.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-355009979-1306471619-2281885113-1011.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-31 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1006.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-31 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1007.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-09-23 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1008.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-02 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1009.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-31 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1010.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2011-01-04 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-355009979-1306471619-2281885113-1011.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]

2010-12-27 c:\windows\Tasks\Spybot - Search & Destroy - Scheduled Task.job
- c:\program files\Spybot - Search & Destroy\SpybotSD.exe [2010-09-11 19:31]

2010-12-19 c:\windows\Tasks\switchShakeIcon.job
- c:\program files\NCH Swift Sound\Switch\switch.exe [2010-12-19 22:46]
.
.
------- Supplementary Scan -------
.
uLocal Page = hxxp://www.google.com/
uStart Page = hxxp://www.google.ca/
mStart Page = hxxp://www.google.com
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\OFFICE11\EXCEL.EXE/3000
IE: Google Sidewiki... - c:\program files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} -
DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.71.0.cab
DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} - hxxps://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.26.2.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} - hxxp://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab
.
- - - - ORPHANS REMOVED - - - -

BHO-{6955FB38-7614-4A87-95C5-626CCEA88DF7} - (no file)
BHO-{7b13ec3e-999a-4b70-b9cb-2617b8323822} - (no file)
BHO-{A3BC75A2-1F87-4686-AA43-5347D756017C} - (no file)
BHO-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
WebBrowser-{D4027C7F-154A-4066-A1AD-4243D8127440} - (no file)
HKCU-Run-msnmsgr - c:\program files\Windows Live\Messenger\msnmsgr .exe



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-01-04 13:06
Windows 5.1.2600 Service Pack 3 NTFS

scanning hidden processes ...

scanning hidden autostart entries ...

scanning hidden files ...

scan completed successfully
hidden files: 0

**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------

[HKEY_USERS\S-1-5-21-355009979-1306471619-2281885113-1011\Software\SecuROM\License information*]
"datasecu"=hex:b7,aa,a1,33,27,d1,78,c3,fd,e2,16,f0,cc,a7,cf,8c,b0,ab,54,c3,cc,
e9,03,61,bb,62,ef,5a,1b,38,0e,e9,e7,2a,79,13,1d,8b,bb,c1,fd,cb,10,43,22,0d,\
"rkeysecu"=hex:a1,9c,7c,99,7b,d8,a6,bc,66,57,a8,76,35,2e,95,9e
.
--------------------- DLLs Loaded Under Running Processes ---------------------

- - - - - - - > 'winlogon.exe'(648)
c:\windows\system32\Ati2evxx.dll

- - - - - - - > 'explorer.exe'(2964)
c:\windows\system32\WININET.dll
c:\windows\system32\VirtualExpander\VEShellExt.dll
c:\program files\MarkAny\ContentSafer\MaCSProHook.DLL
c:\windows\system32\msi.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\Ati2evxx.exe
c:\windows\system32\Ati2evxx.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\windows\SYSTEM32\bgsvcgen.exe
c:\windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\windows\system32\CTsvcCDA.exe
c:\windows\system32\crypserv.exe
c:\program files\Java\jre6\bin\jqs.exe
c:\windows\system32\HPZipm12.exe
c:\windows\system32\PnkBstrA.exe
c:\windows\system32\PnkBstrB.exe
c:\program files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
c:\program files\Dell Support Center\bin\sprtsvc.exe
c:\program files\Yahoo!\SoftwareUpdate\YahooAUService.exe
c:\windows\system32\SearchIndexer.exe
c:\windows\system32\wscntfy.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\MioNet\jvm\bin\MioNet.exe
c:\program files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
.
**************************************************************************
.
Completion time: 2011-01-04 13:13:10 - machine was rebooted
ComboFix-quarantined-files.txt 2011-01-04 18:13
ComboFix2.txt 2011-01-04 02:46

Pre-Run: 363,537,858,560 bytes free
Post-Run: 363,701,211,136 bytes free

- - End Of File - - FA6A362909094563C5412B361A3812F0
 
Your very lucky, you squeeked by by a hair.

I am really sorry but format is not an option.
Click to expand...
Paul, this is your quote. What you need to do is sit down with the people that use this computer and teach them some safe surfing habits. You where infected with some serious stuff. There are other threats going around that are uncleanable , the damage they do is so severe that your only option would be to format and reinstall, there would be no way around it.


How are things running now ?
 
Things are Running Pretty Fine actualy. No Browser Redirects. Alot Faster Startup. Thank you so much for your help! :thanks: I do have a couple of questions about formating. I do own a external hard drive. Is it possible to put all Important Files on it, Format, re-install windows ,then Put the files back on? Also, Should i re-install AVG now?

Thank you so much for your help. You don't know how much your help is appreciated. :thanks::thanks::thanks::thanks::thanks:
 
Yes you can do that. You should be backing up all your important files anyway to a CD, USB Thumb drive or an External Drive, then when the day comes that you decide to reinstall windows you can just copy and paste them from the external back to your hard drive.

Exactly what antivirus program do you have running now, we have uninstall, installed I kind of lost track.

Run OTL again and post a new log and lets see whats going on in that area
 
TL logfile created on: 04/01/2011 2:07:35 PM - Run 2
OTL by OldTimer - Version 3.2.20.1 Folder = C:\Documents and Settings\Paul G\My Documents\Downloads
Windows XP Home Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 7.0.5730.11)
Locale: 00001009 | Country: Canada | Language: ENC | Date Format: dd/MM/yyyy

2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 65.00% Memory free
3.00 Gb Paging File | 2.00 Gb Available in Paging File | 73.00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 462.95 Gb Total Space | 338.73 Gb Free Space | 73.17% Space Free | Partition Type: NTFS

Computer Name: DESKTOP1 | User Name: Paul G | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Paul G\My Documents\Downloads\OTL.exe (OldTimer Tools)
PRC - C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
PRC - C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SCServer\SCServer.exe (Microsoft Corporation)
PRC - C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
PRC - C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Program Files\Avira\AntiVir Desktop\avshadow.exe (Avira GmbH)
PRC - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
PRC - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
PRC - C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\WINDOWS\SYSTEM32\hpzipm12.exe (HP)
PRC - C:\Program Files\MioNet\jvm\bin\MioNet.exe (Sun Microsystems, Inc.)
PRC - C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
PRC - C:\Program Files\MarkAny\ContentSafer\MAAgent.exe ((주)마크애니)
PRC - C:\WINDOWS\SYSTEM32\bgsvcgen.exe (B.H.A Corporation)
PRC - C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
PRC - C:\WINDOWS\SYSTEM32\Crypserv.exe (Kenonic Controls Ltd.)


========== Modules (SafeList) ==========

MOD - C:\Documents and Settings\Paul G\My Documents\Downloads\OTL.exe (OldTimer Tools)
MOD - C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll (Microsoft Corporation)
MOD - C:\Program Files\MarkAny\ContentSafer\MaCSProHook.dll (MarkAny Co., Ltd.)


========== Win32 Services (SafeList) ==========

SRV - (AppMgmt) -- C:\WINDOWS\System32\appmgmts.dll File not found
SRV - (AntiVirSchedulerService) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe (Avira GmbH)
SRV - (AntiVirService) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe (Avira GmbH)
SRV - (RogersUpdateManager) -- C:\Program Files\Rogers\Update Manager\RogersUpdateManager.exe (Rogers Cable Communications)
SRV - (RogersSelfHelpService) -- C:\Program Files\Rogers\SelfHealing\RogersSelfHelpService.exe (Rogers Cable Communications)
SRV - (SeaPort) -- C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe (Microsoft Corporation)
SRV - (Apple Mobile Device) -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (YahooAUService) -- C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe (Yahoo! Inc.)
SRV - (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter) -- C:\Program Files\Dell Support Center\bin\sprtsvc.exe (SupportSoft, Inc.)
SRV - (MioNet) -- C:\Program Files\MioNet\MioNetManager.exe ()
SRV - (Pml Driver HPZ12) -- C:\WINDOWS\SYSTEM32\hpzipm12.exe (HP)
SRV - (DSBrokerService) -- C:\Program Files\DellSupport\brkrsvc.exe ()
SRV - (WinDefend) -- C:\Program Files\Windows Defender\MsMpEng.exe (Microsoft Corporation)
SRV - (bgsvcgen) -- C:\WINDOWS\System32\bgsvcgen.exe (B.H.A Corporation)
SRV - (IDriverT) -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (Crypkey License) -- C:\WINDOWS\System32\Crypserv.exe (Kenonic Controls Ltd.)


========== Driver Services (SafeList) ==========

DRV - (wanatw) WAN Miniport (ATW) -- C:\WINDOWS\System32\DRIVERS\wanatw4.sys File not found
DRV - (cpuz132) -- C:\DOCUME~1\Paul\LOCALS~1\Temp\cpuz132\cpuz132_x32.sys File not found
DRV - (catchme) -- C:\ComboFix\catchme.sys File not found
DRV - (ql12160) -- C:\WINDOWS\system32\DRIVERS\ql12160.sys (QLogic Corporation)
DRV - (avipbb) -- C:\WINDOWS\SYSTEM32\DRIVERS\avipbb.sys (Avira GmbH)
DRV - (avgntflt) -- C:\WINDOWS\SYSTEM32\DRIVERS\avgntflt.sys (Avira GmbH)
DRV - (ssmdrv) -- C:\WINDOWS\SYSTEM32\DRIVERS\ssmdrv.sys (Avira GmbH)
DRV - (avgio) -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys (Avira GmbH)
DRV - (usbaudio) USB Audio Driver (WDM) -- C:\WINDOWS\SYSTEM32\DRIVERS\usbaudio.sys (Microsoft Corporation)
DRV - (amdagp) -- C:\WINDOWS\system32\DRIVERS\amdagp.sys (Advanced Micro Devices, Inc.)
DRV - (sisagp) -- C:\WINDOWS\system32\DRIVERS\sisagp.sys (Silicon Integrated Systems Corporation)
DRV - (dsunidrv) -- C:\WINDOWS\SYSTEM32\DRIVERS\dsunidrv.sys (Gteko Ltd.)
DRV - (SNP2STD) USB2.0 PC Camera (SNP2STD) -- C:\WINDOWS\SYSTEM32\DRIVERS\snp2sxp.sys ()
DRV - (DSproct) -- C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys (Gteko Ltd.)
DRV - (cdrbsdrv) -- C:\WINDOWS\System32\drivers\cdrbsdrv.sys (B.H.A Corporation)
DRV - (Afc) -- C:\WINDOWS\SYSTEM32\DRIVERS\afc.sys (Arcsoft, Inc.)
DRV - (drvmcdb) -- C:\WINDOWS\system32\drivers\drvmcdb.sys (Sonic Solutions)
DRV - (drvnddm) -- C:\WINDOWS\SYSTEM32\DRIVERS\drvnddm.sys (Sonic Solutions)
DRV - (tfsnudfa) -- C:\WINDOWS\SYSTEM32\dla\tfsnudfa.sys (Sonic Solutions)
DRV - (tfsnudf) -- C:\WINDOWS\SYSTEM32\dla\tfsnudf.sys (Sonic Solutions)
DRV - (tfsnifs) -- C:\WINDOWS\SYSTEM32\dla\tfsnifs.sys (Sonic Solutions)
DRV - (tfsncofs) -- C:\WINDOWS\SYSTEM32\dla\tfsncofs.sys (Sonic Solutions)
DRV - (tfsnboio) -- C:\WINDOWS\SYSTEM32\dla\tfsnboio.sys (Sonic Solutions)
DRV - (tfsnopio) -- C:\WINDOWS\SYSTEM32\dla\tfsnopio.sys (Sonic Solutions)
DRV - (tfsnpool) -- C:\WINDOWS\SYSTEM32\dla\tfsnpool.sys (Sonic Solutions)
DRV - (tfsndrct) -- C:\WINDOWS\SYSTEM32\dla\tfsndrct.sys (Sonic Solutions)
DRV - (tfsndres) -- C:\WINDOWS\SYSTEM32\dla\tfsndres.sys (Sonic Solutions)
DRV - (ati2mtag) -- C:\WINDOWS\SYSTEM32\DRIVERS\ati2mtag.sys (ATI Technologies Inc.)
DRV - (nv) -- C:\WINDOWS\SYSTEM32\DRIVERS\NV4_MINI.SYS (NVIDIA Corporation)
DRV - (sscdbhk5) -- C:\WINDOWS\SYSTEM32\DRIVERS\sscdbhk5.sys (Sonic Solutions)
DRV - (ssrtln) -- C:\WINDOWS\SYSTEM32\DRIVERS\ssrtln.sys (Sonic Solutions)
DRV - (HSFHWBS2) -- C:\WINDOWS\SYSTEM32\DRIVERS\HSFHWBS2.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSF_DP) -- C:\WINDOWS\SYSTEM32\DRIVERS\HSF_DP.sys (Conexant Systems, Inc.)
DRV - (PID_0920) Logitech QuickCam Express(PID_0920) -- C:\WINDOWS\SYSTEM32\DRIVERS\LV532AV.SYS (Logitech Inc.)
DRV - (omci) -- C:\WINDOWS\SYSTEM32\DRIVERS\omci.sys (Dell Computer Corporation)
DRV - (Sparrow) -- C:\WINDOWS\system32\DRIVERS\sparrow.sys (Adaptec, Inc.)
DRV - (sym_u3) -- C:\WINDOWS\system32\DRIVERS\sym_u3.sys (LSI Logic)
DRV - (sym_hi) -- C:\WINDOWS\system32\DRIVERS\sym_hi.sys (LSI Logic)
DRV - (symc8xx) -- C:\WINDOWS\system32\DRIVERS\symc8xx.sys (LSI Logic)
DRV - (symc810) -- C:\WINDOWS\system32\DRIVERS\symc810.sys (Symbios Logic Inc.)
DRV - (ultra) -- C:\WINDOWS\system32\DRIVERS\ultra.sys (Promise Technology, Inc.)
DRV - (ql1080) -- C:\WINDOWS\system32\DRIVERS\ql1080.sys (QLogic Corporation)
DRV - (ql1280) -- C:\WINDOWS\system32\DRIVERS\ql1280.sys (QLogic Corporation)
DRV - (dac2w2k) -- C:\WINDOWS\system32\DRIVERS\dac2w2k.sys (Mylex Corporation)
DRV - (mraid35x) -- C:\WINDOWS\system32\DRIVERS\mraid35x.sys (American Megatrends Inc.)
DRV - (asc) -- C:\WINDOWS\system32\DRIVERS\asc.sys (Advanced System Products, Inc.)
DRV - (asc3550) -- C:\WINDOWS\system32\DRIVERS\asc3550.sys (Advanced System Products, Inc.)
DRV - (AliIde) -- C:\WINDOWS\system32\DRIVERS\aliide.sys (Acer Laboratories Inc.)
DRV - (CmdIde) -- C:\WINDOWS\system32\DRIVERS\cmdide.sys (CMD Technology, Inc.)
DRV - (USBIO) USBIO Driver (usbio.sys) -- C:\WINDOWS\SYSTEM32\DRIVERS\usbio.sys (Thesycon GmbH, Germany)
DRV - (NetworkX) -- C:\WINDOWS\system32\ckldrv.sys ()


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = http://www.google.com/
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.ca/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010/03/14 06:31:44 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2011/01/04 13:06:04 | 000,000,027 | ---- | M]) - C:\WINDOWS\SYSTEM32\DRIVERS\ETC\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (&Yahoo! Toolbar Helper) - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\Documents and Settings\All Users\Application Data\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O2 - BHO: (no name) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - No CLSID value found.
O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O2 - BHO: (Search Helper) - {6EBF7485-159F-4bff-A14F-B9E3AAC4465B} - C:\Program Files\Microsoft\Search Enhancement Pack\Search Helper\SEPsearchhelperie.dll (Microsoft Corporation)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.)
O2 - BHO: (no name) - {B49699FC-1665-4414-A1CB-C4A2A4A13EEC} - No CLSID value found.
O2 - BHO: (SingleInstance Class) - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\Program Files\Yahoo!\Companion\Installs\cpn\YTSingleInstance.dll (Yahoo! Inc)
O3 - HKLM\..\Toolbar: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O3 - HKLM\..\Toolbar: (Yahoo! Toolbar) - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\Program Files\Yahoo!\Companion\Installs\cpn\yt.dll (Yahoo! Inc.)
O3 - HKLM\..\Toolbar: (TextAloud) - {F053C368-5458-45B2-9B4D-D8914BDDDBFF} - C:\Program Files\TextAloud\TAForIE.dll ()
O3 - HKCU\..\Toolbar\WebBrowser: (&Windows Live Toolbar) - {21FA44EF-376D-4D53-9B0F-8A89D3229068} - C:\Program Files\Windows Live\Toolbar\wltcore.dll (Microsoft Corporation)
O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [MAAgent] C:\Program Files\MarkAny\ContentSafer\MAAgent.exe ((주)마크애니)
O4 - HKLM..\Run: [MioNet] C:\Program Files\MioNet\MioNetLauncher.exe ()
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [TkBellExe] C:\Program Files\Common Files\Real\Update_OB\realsched.exe (RealNetworks, Inc.)
O4 - HKCU..\Run: [DellSupport] C:\Program Files\DellSupport\DSAgnt.exe (Gteko Ltd.)
O4 - HKCU..\Run: [OM2_Monitor] C:\Program Files\OLYMPUS\OLYMPUS Master 2\MMonitor .exe File not found
O4 - HKCU..\Run: [Steam] C:\Program Files\Steam\Steam.exe (Valve Corporation)
O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.)
O4 - Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Digital Line Detect.lnk = C:\Program Files\Digital Line Detect\DLG.exe (BVRP Software)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Google Sidewiki... - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.)
O9 - Extra Button: Blog This - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : &Blog This in Windows Live Writer - {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - C:\Program Files\Windows Live\Writer\WriterBrowserExtension.dll (Microsoft Corporation)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {140E4DF8-9E14-4A34-9577-C77561ED7883} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.1.71.0.cab (SysInfo Class)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/downl...-4eef-8da4-f99c7e0c9b92/LegitCheckControl.cab (Windows Genuine Advantage Validation Tool)
O16 - DPF: {1F2F4C9E-6F09-47BC-970D-3C54734667FE} https://www-secure.symantec.com/techsupp/asa/LSSupCtl.cab (LSSupCtl Class)
O16 - DPF: {30528230-99f7-4bb4-88d8-fa1d4f56a2ab} C:\Program Files\Yahoo!\Common\Yinsthelper200711281.dll (Installation Support)
O16 - DPF: {3DCEC959-378A-4922-AD7E-FD5C925D927F} http://disney.go.com/pirates/online/testActiveX/built/signed/DisneyOnlineGames.cab (Disney Online Games ActiveX Control)
O16 - DPF: {406B5949-7190-4245-91A9-30A17DE16AD0} http://www.costcophotocenter.com/CostcoActivia.cab (Snapfish Activia)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {C8BC46C7-921C-4102-B67D-F1F7E65FB0BE} https://battlefield.play4free.com/static/updater/BP4FUpdater_1.0.26.2.cab (Battlefield Play4Free Updater)
O16 - DPF: {CAFEEFAC-0016-0000-0002-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0003-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} Reg Error: Value error. (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CE28D5D2-60CF-4C7D-9FE8-0F47A3308078} https://www-secure.symantec.com/techsupp/asa/ctrl/SymAData.cab (ActiveDataInfo Class)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {D54160C3-DB7B-4534-9B65-190EE4A9C7F7} http://download.games.yahoo.com/games/web_games/gamehouse/frenzy/SproutLauncher.cab (SproutLauncherCtrl Class)
O16 - DPF: {D77EF652-9A6B-40C8-A4B9-1C0697C6CF41} http://download.games.yahoo.com/games/web_games/tikgames/cinematycoon/cinematycoon.cab (TikGames Online Control)
O16 - DPF: {DF780F87-FF2B-4DF8-92D0-73DB16A1543A} http://download.games.yahoo.com/games/web_games/popcap/insaniquarium/popcaploader_v6.cab (Reg Error: Key error.)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O16 - DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.3.1.0.cab (SysInfo Class)
O16 - DPF: {E77F23EB-E7AB-4502-8F37-247DBAF1A147} http://gfx2.hotmail.com/mail/w4/pr01/photouploadcontrol/MSNPUpld.cab (Windows Live Hotmail Photo Upload Tool)
O16 - DPF: {F127B9BA-89EA-4B04-9C67-2074A9DF61FD} http://costco.pnimedia.com/upload/activex/v2_0_0_9/PCAXSetupv2.0.0.9.cab? (Photo Upload Plugin Class)
O16 - DPF: {F137B9BA-89EA-4B04-9C67-2074A9DF61FD} http://costco.pnimedia.com/upload/activex/v2_0_0_10/PCAXSetupv2.0.0.10.cab? (Photo Upload Plugin Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 64.71.255.198
O18 - Protocol\Handler\avgsecuritytoolbar {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG9\Toolbar\IEToolbar.dll File not found
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files\Windows Live\Mail\mailcomm.dll (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O20 - Winlogon\Notify\avgrsstarter: DllName - Reg Error: Value error. - Reg Error: Value error. File not found
O24 - Desktop WallPaper: C:\Documents and Settings\Paul G\My Documents\My Pictures\Battlefield_Bad_Company_2_HD_wallpaper2.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Paul G\My Documents\My Pictures\Battlefield_Bad_Company_2_HD_wallpaper2.bmp
O28 - HKLM ShellExecuteHooks: {091EB208-39DD-417D-A5DD-7E2C2D8FB9CB} - C:\Program Files\Windows Defender\MpShHook.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation)
O28 - HKLM ShellExecuteHooks: {88485281-8b4b-4f8d-9ede-82e29a064277} - C:\Program Files\MarkAny\ContentSafer\MACSMANAGER.dll (MarkAny Cooperation.)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/08/10 14:04:08 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011/01/04 13:23:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Local Settings\Application Data\Temporary Projects
[2011/01/04 12:30:21 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2011/01/04 12:30:12 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2011/01/04 12:28:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\Visual Studio 2008
[2011/01/04 12:28:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Local Settings\Application Data\Microsoft Help
[2011/01/04 12:26:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 9.0
[2011/01/04 12:26:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Microsoft Help
[2011/01/04 12:25:48 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SDKs
[2011/01/03 21:36:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2011/01/03 21:29:40 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011/01/03 19:39:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Avira
[2011/01/03 19:39:09 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2011/01/03 19:39:06 | 000,135,096 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011/01/03 19:39:06 | 000,061,960 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2011/01/03 19:39:06 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2011/01/03 19:39:06 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2011/01/03 19:39:05 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2011/01/02 21:22:16 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011/01/02 21:22:16 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011/01/02 21:22:16 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011/01/02 21:22:16 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011/01/02 18:32:29 | 000,000,000 | ---D | C] -- C:\_OTL
[2011/01/02 17:42:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\U3
[2011/01/02 15:18:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Rootkit Unhooker LE
[2011/01/02 15:13:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\7-Zip
[2011/01/02 15:13:18 | 000,000,000 | ---D | C] -- C:\Program Files\7-Zip
[2011/01/02 15:10:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\BitZipper
[2011/01/01 22:12:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\Creative
[2011/01/01 20:43:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\ArcSoft
[2011/01/01 20:43:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\My Albums
[2011/01/01 19:46:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\Malwarebytes
[2011/01/01 19:45:52 | 000,038,224 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbamswissarmy.sys
[2011/01/01 19:45:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\Malwarebytes' Anti-Malware
[2011/01/01 19:45:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Malwarebytes
[2011/01/01 19:45:45 | 000,020,952 | ---- | C] (Malwarebytes Corporation) -- C:\WINDOWS\System32\drivers\mbam.sys
[2011/01/01 18:51:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\HijackThis
[2011/01/01 18:10:34 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011/01/01 14:58:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\Battlefield Play4Free
[2011/01/01 14:22:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\Mozilla
[2010/12/31 21:39:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Start Menu\Programs\EA Games
[2010/12/31 17:26:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\NtmsData
[2010/12/31 17:21:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\Avira
[2010/12/31 17:17:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Avira
[2010/12/28 22:18:44 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010/12/28 22:16:48 | 000,000,000 | ---D | C] -- C:\Program Files\ERUNT
[2010/12/28 22:16:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Start Menu\Programs\ERUNT
[2010/12/27 11:27:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\AVG9
[2010/12/26 23:42:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\Downloads
[2010/12/25 15:00:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\Aiseesoft Studio
[2010/12/25 15:00:16 | 000,000,000 | ---D | C] -- C:\Program Files\Aiseesoft Studio
[2010/12/23 14:26:38 | 000,116,224 | ---- | C] (Xerox) -- C:\WINDOWS\System32\dllcache\xrxwiadr.dll
[2010/12/23 14:26:32 | 000,023,040 | ---- | C] (Xerox Corporation) -- C:\WINDOWS\System32\dllcache\xrxwbtmp.dll
[2010/12/23 14:26:19 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xrxflnch.exe
[2010/12/23 14:26:06 | 000,099,865 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\xlog.exe
[2010/12/23 14:25:50 | 000,016,970 | ---- | C] (US Robotics MCD (Megahertz)) -- C:\WINDOWS\System32\dllcache\xem336n5.sys
[2010/12/23 14:25:48 | 000,019,455 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wvchntxx.sys
[2010/12/23 14:25:40 | 000,012,063 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wsiintxx.sys
[2010/12/23 14:25:38 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2010/12/23 14:25:14 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiacpi.sys
[2010/12/23 14:25:10 | 000,154,624 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\wlluc48.sys
[2010/12/23 14:25:04 | 000,034,890 | ---- | C] (Raytheon Corp.) -- C:\WINDOWS\System32\dllcache\wlandrv2.sys
[2010/12/23 14:24:55 | 000,771,581 | ---- | C] (Rockwell) -- C:\WINDOWS\System32\dllcache\winacisa.sys
[2010/12/23 14:24:48 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiamsmud.dll
[2010/12/23 14:24:43 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wiafbdrv.dll
[2010/12/23 14:24:42 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010/12/23 14:24:41 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010/12/23 14:24:35 | 000,701,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\wdhaalba.sys
[2010/12/23 14:24:34 | 000,023,615 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wch7xxnt.sys
[2010/12/23 14:24:32 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wceusbsh.sys
[2010/12/23 14:24:27 | 000,035,871 | ---- | C] (Winbond Electronics Corp.) -- C:\WINDOWS\System32\dllcache\wbfirdma.sys
[2010/12/23 14:24:17 | 000,033,599 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv04nt.sys
[2010/12/23 14:24:16 | 000,019,551 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv02nt.sys
[2010/12/23 14:24:14 | 000,029,311 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\watv01nt.sys
[2010/12/23 14:24:12 | 000,011,775 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv05nt.sys
[2010/12/23 14:24:11 | 000,012,127 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv02nt.sys
[2010/12/23 14:24:09 | 000,012,415 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\wadv01nt.sys
[2010/12/23 14:24:03 | 000,016,925 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w940nd.sys
[2010/12/23 14:23:58 | 000,019,016 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w926nd.sys
[2010/12/23 14:23:53 | 000,019,528 | ---- | C] (Winbond Electronics Corporation) -- C:\WINDOWS\System32\dllcache\w840nd.sys
[2010/12/23 14:23:52 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010/12/23 14:23:47 | 000,064,605 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vvoice.sys
[2010/12/23 14:23:41 | 000,397,502 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\vpctcom.sys
[2010/12/23 14:23:34 | 000,604,253 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\vmodem.sys
[2010/12/23 14:23:28 | 000,249,402 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\vinwm.sys
[2010/12/23 14:23:23 | 000,024,576 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\viairda.sys
[2010/12/23 14:23:15 | 000,687,999 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrwdxjs.sys
[2010/12/23 14:23:09 | 000,765,884 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usrti.sys
[2010/12/23 14:23:04 | 000,113,762 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usrpda.sys
[2010/12/23 14:22:58 | 000,007,556 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usroslba.sys
[2010/12/23 14:22:53 | 000,224,802 | ---- | C] (U.S. Robotics Corporation) -- C:\WINDOWS\System32\dllcache\usr1807a.sys
[2010/12/23 14:22:47 | 000,794,399 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806v.sys
[2010/12/23 14:22:42 | 000,793,598 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1806.sys
[2010/12/23 14:22:37 | 000,794,654 | ---- | C] (U.S. Robotics, Inc.) -- C:\WINDOWS\System32\dllcache\usr1801.sys
[2010/12/23 14:22:34 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbser.sys
[2010/12/23 14:22:32 | 000,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbohci.sys
[2010/12/23 14:22:30 | 000,032,384 | ---- | C] (KLSI USA, Inc.) -- C:\WINDOWS\System32\dllcache\usb101et.sys
[2010/12/23 14:22:23 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxud32.dll
[2010/12/23 14:22:17 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu40.dll
[2010/12/23 14:22:12 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu22.dll
[2010/12/23 14:22:07 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxu12.dll
[2010/12/23 14:22:02 | 000,050,688 | ---- | C] (UMAX DATA SYSTEMS INC.) -- C:\WINDOWS\System32\dllcache\umaxscan.dll
[2010/12/23 14:21:57 | 000,022,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxpcls.sys
[2010/12/23 14:21:51 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxp60.dll
[2010/12/23 14:21:46 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\umaxcam.dll
[2010/12/23 14:21:41 | 000,211,968 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um54scan.dll
[2010/12/23 14:21:36 | 000,216,064 | ---- | C] (UMAX Data Systems Inc.) -- C:\WINDOWS\System32\dllcache\um34scan.dll
[2010/12/23 14:21:30 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys
[2010/12/23 14:21:29 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010/12/23 14:21:21 | 000,166,784 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxpm.sys
[2010/12/23 14:21:16 | 000,525,568 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridxp.dll
[2010/12/23 14:21:11 | 000,159,232 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkbm.sys
[2010/12/23 14:20:58 | 000,440,576 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tridkb.dll
[2010/12/23 14:20:53 | 000,222,336 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3dm.sys
[2010/12/23 14:20:47 | 000,315,520 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\trid3d.dll
[2010/12/23 14:20:42 | 000,034,375 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\tpro4.sys
[2010/12/23 14:20:36 | 000,042,496 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll
[2010/12/23 14:20:35 | 000,082,944 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe
[2010/12/23 14:20:30 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll
[2010/12/23 14:20:24 | 000,230,912 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd03.sys
[2010/12/23 14:20:19 | 000,241,664 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tosdvd02.sys
[2010/12/23 14:20:13 | 000,028,232 | ---- | C] (TOSHIBA Corporation) -- C:\WINDOWS\System32\dllcache\tos4mo.sys
[2010/12/23 14:20:08 | 000,123,995 | ---- | C] (Tiger Jet Network) -- C:\WINDOWS\System32\dllcache\tjisdn.sys
[2010/12/23 14:20:06 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010/12/23 14:20:01 | 000,138,528 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiulnt5.sys
[2010/12/23 14:19:56 | 000,081,408 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\tgiul50.dll
[2010/12/23 14:19:54 | 000,149,376 | ---- | C] (M-Systems) -- C:\WINDOWS\System32\dllcache\tffsport.sys
[2010/12/23 14:19:53 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010/12/23 14:19:48 | 000,017,129 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdkcd31.sys
[2010/12/23 14:19:44 | 000,037,961 | ---- | C] (TDK Corporation) -- C:\WINDOWS\System32\dllcache\tdk100b.sys
[2010/12/23 14:19:43 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010/12/23 14:19:42 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010/12/23 14:19:36 | 000,030,464 | ---- | C] (Toshiba Corporation) -- C:\WINDOWS\System32\dllcache\tbatm155.sys
[2010/12/23 14:19:30 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tandqic.sys
[2010/12/23 14:19:25 | 000,036,640 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\t2r4mini.sys
[2010/12/23 14:19:20 | 000,172,768 | ---- | C] (Number Nine Visual Technology) -- C:\WINDOWS\System32\dllcache\t2r4disp.dll
[2010/12/23 14:19:12 | 000,094,293 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sxports.dll
[2010/12/23 14:19:07 | 000,103,936 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\sx.sys
[2010/12/23 14:19:03 | 000,003,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swusbflt.sys
[2010/12/23 14:18:58 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpidflt.dll
[2010/12/23 14:18:53 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swpdflt2.dll
[2010/12/23 14:18:48 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_wheel.dll
[2010/12/23 14:18:43 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sw_effct.dll
[2010/12/23 14:18:37 | 000,155,648 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnprop.dll
[2010/12/23 14:18:32 | 000,053,248 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlncoin.dll
[2010/12/23 14:18:27 | 000,285,760 | ---- | C] (Stallion Technologies) -- C:\WINDOWS\System32\dllcache\stlnata.sys
[2010/12/23 14:18:22 | 000,016,896 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\stcusb.sys
[2010/12/23 14:18:15 | 000,048,736 | ---- | C] (3Com) -- C:\WINDOWS\System32\dllcache\srwlnd5.sys
[2010/12/23 14:18:10 | 000,099,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusd.dll
[2010/12/23 14:18:09 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010/12/23 14:18:02 | 000,024,660 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxupchk.dll
[2010/12/23 14:17:56 | 000,061,824 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\speed.sys
[2010/12/23 14:17:51 | 000,106,584 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spdports.dll
[2010/12/23 14:17:46 | 000,007,552 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypvu1.sys
[2010/12/23 14:17:41 | 000,037,040 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.sys
[2010/12/23 14:17:37 | 000,114,688 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonypi.dll
[2010/12/23 14:17:32 | 000,020,752 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\sonync.sys
[2010/12/23 14:17:27 | 000,009,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonymc.sys
[2010/12/23 14:17:26 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sonyait.sys
[2010/12/23 14:17:20 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010/12/23 14:17:20 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snyaitmc.sys
[2010/12/23 14:17:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010/12/23 14:17:16 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010/12/23 14:17:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010/12/23 14:17:10 | 000,058,368 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smiminib.sys
[2010/12/23 14:17:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010/12/23 14:17:09 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010/12/23 14:17:05 | 000,147,200 | ---- | C] (Silicon Motion Inc.) -- C:\WINDOWS\System32\dllcache\smidispb.dll
[2010/12/23 14:16:59 | 000,025,034 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smcpwr2n.sys
[2010/12/23 14:16:55 | 000,035,913 | ---- | C] (SMC) -- C:\WINDOWS\System32\dllcache\smcirda.sys
[2010/12/23 14:16:50 | 000,024,576 | ---- | C] (SMC Networks, Inc.) -- C:\WINDOWS\System32\dllcache\smc8000n.sys
[2010/12/23 14:16:45 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbhc.sys
[2010/12/23 14:16:44 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbclass.sys
[2010/12/23 14:16:42 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010/12/23 14:16:42 | 000,016,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smbbatt.sys
[2010/12/23 14:16:37 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb3w.dll
[2010/12/23 14:16:33 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb0w.dll
[2010/12/23 14:16:32 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010/12/23 14:16:28 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma0w.dll
[2010/12/23 14:16:27 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010/12/23 14:16:27 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010/12/23 14:16:26 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010/12/23 14:16:22 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm91w.dll
[2010/12/23 14:16:21 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010/12/23 14:16:21 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010/12/23 14:16:20 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010/12/23 14:16:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010/12/23 14:16:20 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010/12/23 14:16:19 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010/12/23 14:16:19 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010/12/23 14:16:18 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010/12/23 14:16:16 | 000,063,547 | ---- | C] (Symbol Technologies) -- C:\WINDOWS\System32\dllcache\sla30nd5.sys
[2010/12/23 14:16:11 | 000,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) -- C:\WINDOWS\System32\dllcache\skfpwin.sys
[2010/12/23 14:16:07 | 000,094,698 | ---- | C] (SysKonnect GmbH.) -- C:\WINDOWS\System32\dllcache\sk98xwin.sys
[2010/12/23 14:16:02 | 000,157,696 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv256.dll
[2010/12/23 14:15:57 | 000,050,432 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisv.sys
[2010/12/23 14:15:56 | 000,032,768 | ---- | C] (SiS Corporation) -- C:\WINDOWS\System32\dllcache\sisnic.sys
[2010/12/23 14:15:51 | 000,238,592 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrv.dll
[2010/12/23 14:15:47 | 000,104,064 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sisgrp.sys
[2010/12/23 14:15:42 | 000,150,144 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306v.dll
[2010/12/23 14:15:37 | 000,068,608 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis6306p.sys
[2010/12/23 14:15:33 | 000,252,032 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300iv.dll
[2010/12/23 14:15:28 | 000,101,760 | ---- | C] (Silicon Integrated Systems Corporation) -- C:\WINDOWS\System32\dllcache\sis300ip.sys
[2010/12/23 14:15:28 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010/12/23 14:15:19 | 000,161,568 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmusb.sys
[2010/12/23 14:15:15 | 000,018,400 | ---- | C] (Micro Systemation) -- C:\WINDOWS\System32\dllcache\sgsmld.sys
[2010/12/23 14:15:10 | 000,098,080 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiulnt5.sys
[2010/12/23 14:15:06 | 000,386,560 | ---- | C] (Trident Microsystems Inc.) -- C:\WINDOWS\System32\dllcache\sgiul50.dll
[2010/12/23 14:15:01 | 000,036,480 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sfmanm.sys
[2010/12/23 14:14:55 | 000,006,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2010/12/23 14:14:51 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sermouse.sys
[2010/12/23 14:14:50 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010/12/23 14:14:45 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seaddsmc.sys
[2010/12/23 14:14:43 | 000,011,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiscan.sys
[2010/12/23 14:14:39 | 000,011,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scsiprnt.sys
[2010/12/23 14:14:38 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010/12/23 14:14:33 | 000,017,280 | ---- | C] (SCM Microsystems) -- C:\WINDOWS\System32\dllcache\scr111.sys
[2010/12/23 14:14:29 | 000,016,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scmstcs.sys
[2010/12/23 14:14:24 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmusbm.sys
[2010/12/23 14:14:19 | 000,023,936 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\sccmn50m.sys
[2010/12/23 14:14:17 | 000,043,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sbp2port.sys
[2010/12/23 14:14:13 | 000,495,616 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\sblfx.dll
[2010/12/23 14:14:07 | 000,075,392 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmxm.sys
[2010/12/23 14:14:03 | 000,245,632 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\dllcache\s3savmx.dll
[2010/12/23 14:13:58 | 000,077,824 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4m.sys
[2010/12/23 14:13:54 | 000,198,400 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav4.dll
[2010/12/23 14:13:49 | 000,061,504 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3dm.sys
[2010/12/23 14:13:44 | 000,179,264 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3sav3d.dll
[2010/12/23 14:13:40 | 000,210,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mvirge.dll
[2010/12/23 14:13:35 | 000,062,496 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mtrio.dll
[2010/12/23 14:13:31 | 000,041,216 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.sys
[2010/12/23 14:13:26 | 000,182,272 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3mt3d.dll
[2010/12/23 14:13:22 | 000,166,720 | ---- | C] (S3 Incorporated) -- C:\WINDOWS\System32\dllcache\s3m.sys
[2010/12/23 14:13:17 | 000,065,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.sys
[2010/12/23 14:13:13 | 000,082,432 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia450.dll
[2010/12/23 14:13:08 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia430.dll
[2010/12/23 14:13:08 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010/12/23 14:13:07 | 000,079,872 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010/12/23 14:13:06 | 000,029,696 | ---- | C] (Ricoh Co., Ltd.) --
 
C:\WINDOWS\System32\dllcache\rw450ext.dll
[2010/12/23 14:13:04 | 000,027,648 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw430ext.dll
[2010/12/23 14:13:02 | 000,020,992 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8139.sys
[2010/12/23 14:12:57 | 000,019,017 | ---- | C] (Realtek Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\rtl8029.sys
[2010/12/23 14:12:52 | 000,030,720 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rthwcls.sys
[2010/12/23 14:12:47 | 000,009,216 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\rsmgrstr.dll
[2010/12/23 14:12:41 | 000,003,840 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\rpfun.sys
[2010/12/23 14:12:38 | 000,079,104 | ---- | C] (Comtrol Corporation) -- C:\WINDOWS\System32\dllcache\rocket.sys
[2010/12/23 14:12:31 | 000,037,563 | ---- | C] (RadioLAN) -- C:\WINDOWS\System32\dllcache\rlnet5.sys
[2010/12/23 14:12:26 | 000,086,097 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\reslog32.dll
[2010/12/23 14:12:24 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010/12/23 14:12:23 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010/12/23 14:12:10 | 000,019,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rasirda.sys
[2010/12/23 14:12:04 | 000,714,762 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdmkxx.sys
[2010/12/23 14:12:00 | 000,899,146 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\r2mdkxga.sys
[2010/12/23 14:11:55 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qvusd.dll
[2010/12/23 14:11:51 | 000,003,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qv2kux.sys
[2010/12/23 14:11:50 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010/12/23 14:11:49 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010/12/23 14:11:45 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qic157.sys
[2010/12/23 14:11:40 | 000,130,942 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlv.sys
[2010/12/23 14:11:35 | 000,112,574 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserlp.sys
[2010/12/23 14:11:31 | 000,128,286 | ---- | C] (PCTEL, INC.) -- C:\WINDOWS\System32\dllcache\ptserli.sys
[2010/12/23 14:11:29 | 000,159,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusd.dll
[2010/12/23 14:11:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ptpusb.dll
[2010/12/23 14:11:19 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\psisload.dll
[2010/12/23 14:11:13 | 000,016,128 | ---- | C] (SCM Microsystems, Inc.) -- C:\WINDOWS\System32\dllcache\pscr.sys
[2010/12/23 14:11:10 | 000,017,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa3.sys
[2010/12/23 14:11:05 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ppa.sys
[2010/12/23 14:11:04 | 000,008,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\powerfil.sys
[2010/12/23 14:10:59 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010/12/23 14:10:59 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pnrmc.sys
[2010/12/23 14:10:58 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010/12/23 14:10:58 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010/12/23 14:10:51 | 000,121,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phvfwext.dll
[2010/12/23 14:10:46 | 000,019,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philtune.sys
[2010/12/23 14:10:41 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phildec.sys
[2010/12/23 14:10:37 | 000,173,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam2.sys
[2010/12/23 14:10:33 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.sys
[2010/12/23 14:10:28 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\philcam1.dll
[2010/12/23 14:10:24 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phdsext.ax
[2010/12/23 14:10:22 | 000,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3dd.dll
[2010/12/23 14:10:21 | 000,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm3.sys
[2010/12/23 14:10:20 | 000,211,584 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2dll.dll
[2010/12/23 14:10:18 | 000,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) -- C:\WINDOWS\System32\dllcache\perm2.sys
[2010/12/23 14:10:16 | 000,169,984 | ---- | C] (Cisco Systems) -- C:\WINDOWS\System32\dllcache\pcx500.sys
[2010/12/23 14:10:11 | 000,086,016 | ---- | C] (PCtel, Inc.) -- C:\WINDOWS\System32\dllcache\pctspk.exe
[2010/12/23 14:10:07 | 000,035,328 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntpci5.sys
[2010/12/23 14:10:02 | 000,029,769 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5m.sys
[2010/12/23 14:09:58 | 000,030,282 | ---- | C] (AMD Inc.) -- C:\WINDOWS\System32\dllcache\pcntn5hl.sys
[2010/12/23 14:09:54 | 000,026,153 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pcmlm56.sys
[2010/12/23 14:09:52 | 000,029,502 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\pca200e.sys
[2010/12/23 14:09:48 | 000,030,495 | ---- | C] (Linksys) -- C:\WINDOWS\System32\dllcache\pc100nds.sys
[2010/12/23 14:09:42 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2rc.dll
[2010/12/23 14:09:39 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovui2.dll
[2010/12/23 14:09:35 | 000,025,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovsound2.sys
[2010/12/23 14:09:32 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcoms.exe
[2010/12/23 14:09:28 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcomc.dll
[2010/12/23 14:09:24 | 000,351,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodek2.sys
[2010/12/23 14:09:19 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcodec2.dll
[2010/12/23 14:09:15 | 000,031,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovce.sys
[2010/12/23 14:09:11 | 000,028,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcd.sys
[2010/12/23 14:09:06 | 000,048,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovcam2.sys
[2010/12/23 14:09:02 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ovca.sys
[2010/12/23 14:08:58 | 000,054,186 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otcsercb.sys
[2010/12/23 14:08:53 | 000,043,689 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otceth5.sys
[2010/12/23 14:08:49 | 000,027,209 | ---- | C] (Ositech Communications, Inc.) -- C:\WINDOWS\System32\dllcache\otc06x5.sys
[2010/12/23 14:08:44 | 000,054,528 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\opl3sax.sys
[2010/12/23 14:08:42 | 000,061,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ohci1394.sys
[2010/12/23 14:08:35 | 000,198,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.sys
[2010/12/23 14:08:30 | 000,123,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\dllcache\nv3.dll
[2010/12/23 14:08:22 | 000,051,552 | ---- | C] (Kensington Technology Group) -- C:\WINDOWS\System32\dllcache\ntgrip.sys
[2010/12/23 14:08:22 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010/12/23 14:08:17 | 000,009,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntapm.sys
[2010/12/23 14:08:12 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsmmc.sys
[2010/12/23 14:08:11 | 000,028,672 | ---- | C] (National Semiconductor Corporation) -- C:\WINDOWS\System32\dllcache\nscirda.sys
[2010/12/23 14:08:05 | 000,087,040 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm6wdm.sys
[2010/12/23 14:08:01 | 000,126,080 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\nm5a2wdm.sys
[2010/12/23 14:07:56 | 000,032,840 | ---- | C] (NETGEAR Corporation.) -- C:\WINDOWS\System32\dllcache\ngrpci.sys
[2010/12/23 14:07:55 | 000,132,695 | ---- | C] (802.11b) -- C:\WINDOWS\System32\dllcache\netwlan5.sys
[2010/12/23 14:07:49 | 000,065,278 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\netflx3.sys
[2010/12/23 14:07:44 | 000,039,264 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.sys
[2010/12/23 14:07:40 | 000,060,480 | ---- | C] (NeoMagic Corporation) -- C:\WINDOWS\System32\dllcache\neo20xx.dll
[2010/12/23 14:07:35 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ne2000.sys
[2010/12/23 14:07:29 | 000,091,488 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3disp.dll
[2010/12/23 14:07:25 | 000,027,936 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i3d.sys
[2010/12/23 14:07:21 | 000,033,088 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.sys
[2010/12/23 14:07:17 | 000,059,104 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128v2.dll
[2010/12/23 14:07:13 | 000,013,664 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.sys
[2010/12/23 14:07:08 | 000,035,392 | ---- | C] (Number Nine Visual Technology Corp.) -- C:\WINDOWS\System32\dllcache\n9i128.dll
[2010/12/23 14:07:04 | 000,128,000 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n100325.sys
[2010/12/23 14:07:00 | 000,052,255 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\n1000nt5.sys
[2010/12/23 14:06:56 | 000,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxport.sys
[2010/12/23 14:06:52 | 000,007,168 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxport.dll
[2010/12/23 14:06:48 | 000,019,968 | ---- | C] (Macronix International Co., Ltd. ) -- C:\WINDOWS\System32\dllcache\mxnic.sys
[2010/12/23 14:06:44 | 000,019,968 | ---- | C] (Moxa Technologies Co., Ltd) -- C:\WINDOWS\System32\dllcache\mxicfg.dll
[2010/12/23 14:06:40 | 000,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) -- C:\WINDOWS\System32\dllcache\mxcard.sys
[2010/12/23 14:06:35 | 000,103,296 | ---- | C] (Matrox Graphics Inc) -- C:\WINDOWS\System32\dllcache\mtxvideo.sys
[2010/12/23 14:06:26 | 000,049,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstape.sys
[2010/12/23 14:06:20 | 000,012,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msriffwv.sys
[2010/12/23 14:06:13 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msmpu401.sys
[2010/12/23 14:06:11 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msircomm.sys
[2010/12/23 14:06:02 | 000,035,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgame.sys
[2010/12/23 14:05:58 | 000,006,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfsio.sys
[2010/12/23 14:05:56 | 000,051,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdv.sys
[2010/12/23 14:05:49 | 000,015,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpe.sys
[2010/12/23 14:05:35 | 000,006,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\miniqic.sys
[2010/12/23 14:05:33 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migisol.exe
[2010/12/23 14:05:28 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaum.sys
[2010/12/23 14:05:24 | 000,235,648 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\mgaud.dll
[2010/12/23 14:05:24 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010/12/23 14:05:23 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010/12/23 14:05:22 | 000,026,112 | ---- | C] (Sony Corporation) -- C:\WINDOWS\System32\dllcache\memstpci.sys
[2010/12/23 14:05:18 | 000,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memgrp.dll
[2010/12/23 14:05:14 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\memcard.sys
[2010/12/23 14:05:10 | 000,164,586 | ---- | C] (Madge Networks Ltd) -- C:\WINDOWS\System32\dllcache\mdgndis5.sys
[2010/12/23 14:05:04 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mammoth.sys
[2010/12/23 14:05:03 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010/12/23 14:04:59 | 000,048,768 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\maestro.sys
[2010/12/23 14:04:55 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3092dc.dll
[2010/12/23 14:04:51 | 000,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\m3091dc.dll
[2010/12/23 14:04:47 | 000,022,848 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwusbhid.sys
[2010/12/23 14:04:46 | 000,020,864 | ---- | C] (Logitech Inc.) -- C:\WINDOWS\System32\dllcache\lwadihid.sys
[2010/12/23 14:04:42 | 000,797,500 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltsmt.sys
[2010/12/23 14:04:38 | 000,802,683 | ---- | C] (Lucent Technologies) -- C:\WINDOWS\System32\dllcache\ltsm.sys
[2010/12/23 14:04:37 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ltotape.sys
[2010/12/23 14:04:36 | 000,420,992 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntt.sys
[2010/12/23 14:04:32 | 000,606,684 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmnt.sys
[2010/12/23 14:04:32 | 000,576,746 | ---- | C] (LT) -- C:\WINDOWS\System32\dllcache\ltmdmntl.sys
[2010/12/23 14:04:28 | 000,727,786 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ltck000c.sys
[2010/12/23 14:04:23 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\loop.sys
[2010/12/23 14:04:17 | 000,070,730 | ---- | C] (Linksys Group, Inc.) -- C:\WINDOWS\System32\dllcache\lne100tx.sys
[2010/12/23 14:04:14 | 000,020,573 | ---- | C] (The Linksts Group ) -- C:\WINDOWS\System32\dllcache\lne100.sys
[2010/12/23 14:04:10 | 000,025,065 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\lmndis3.sys
[2010/12/23 14:04:06 | 000,015,744 | ---- | C] (Litronic Industries) -- C:\WINDOWS\System32\dllcache\lit220p.sys
[2010/12/23 14:04:04 | 000,034,688 | ---- | C] (Toshiba Corp.) -- C:\WINDOWS\System32\dllcache\lbrtfdc.sys
[2010/12/23 14:04:00 | 000,026,442 | ---- | C] (SMSC) -- C:\WINDOWS\System32\dllcache\lanepic5.sys
[2010/12/23 14:03:56 | 000,019,016 | ---- | C] (Kingston Technology Company ) -- C:\WINDOWS\System32\dllcache\ktc111.sys
[2010/12/23 14:03:51 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kousd.dll
[2010/12/23 14:03:49 | 000,253,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsusd.dll
[2010/12/23 14:03:49 | 000,048,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kdsui.dll
[2010/12/23 14:03:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010/12/23 14:03:36 | 000,014,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys
[2010/12/23 14:03:28 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010/12/23 14:03:23 | 000,026,624 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\dllcache\irstusb.sys
[2010/12/23 14:03:19 | 000,018,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irsir.sys
[2010/12/23 14:03:18 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2010/12/23 14:03:15 | 000,023,552 | ---- | C] (MKNet Corporation) -- C:\WINDOWS\System32\dllcache\irmk7.sys
[2010/12/23 14:03:14 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2010/12/23 14:03:13 | 000,088,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irda.sys
[2010/12/23 14:03:07 | 000,045,632 | ---- | C] (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) -- C:\WINDOWS\System32\dllcache\ip5515.sys
[2010/12/23 14:03:04 | 000,090,200 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8ports.dll
[2010/12/23 14:03:00 | 000,038,784 | ---- | C] (Perle Systems Ltd. ) -- C:\WINDOWS\System32\dllcache\io8.sys
[2010/12/23 14:02:56 | 000,013,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inport.sys
[2010/12/23 14:02:41 | 000,372,824 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\iconf32.dll
[2010/12/23 14:02:38 | 000,100,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5usb.sys
[2010/12/23 14:02:35 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5ext.dll
[2010/12/23 14:02:32 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam5com.dll
[2010/12/23 14:02:29 | 000,154,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4usb.sys
[2010/12/23 14:02:26 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4ext.dll
[2010/12/23 14:02:23 | 000,091,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam4com.dll
[2010/12/23 14:02:20 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3ext.dll
[2010/12/23 14:02:17 | 000,141,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icam3.sys
[2010/12/23 14:02:14 | 000,038,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ibmvcap.sys
[2010/12/23 14:02:11 | 000,109,085 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtrp.sys
[2010/12/23 14:02:07 | 000,100,936 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmtok.sys
[2010/12/23 14:02:03 | 000,009,216 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\ibmsgnet.dll
[2010/12/23 14:01:59 | 000,028,700 | ---- | C] (IBM Corp.) -- C:\WINDOWS\System32\dllcache\ibmexmp.sys
[2010/12/23 14:01:58 | 000,161,020 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\i81xnt5.sys
[2010/12/23 14:01:57 | 000,702,845 | ---- | C] (Intel(R) Corporation) -- C:\WINDOWS\System32\dllcache\i81xdnt5.dll
[2010/12/23 14:01:53 | 000,058,592 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740nt5.sys
[2010/12/23 14:01:50 | 000,353,184 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\i740dnt5.dll
[2010/12/23 14:01:41 | 000,488,383 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_v124.sys
[2010/12/23 14:01:38 | 000,050,751 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_tone.sys
[2010/12/23 14:01:35 | 000,073,279 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_spkp.sys
[2010/12/23 14:01:32 | 000,044,863 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_soar.sys
[2010/12/23 14:01:29 | 000,057,471 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_samp.sys
[2010/12/23 14:01:26 | 000,542,879 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_msft.sys
[2010/12/23 14:01:23 | 000,391,199 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_k56k.sys
[2010/12/23 14:01:20 | 000,009,759 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_inst.dll
[2010/12/23 14:01:17 | 000,115,807 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fsks.sys
[2010/12/23 14:01:14 | 000,199,711 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_faxx.sys
[2010/12/23 14:01:10 | 000,289,887 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_fall.sys
[2010/12/23 14:01:06 | 000,067,167 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_bsc2.sys
[2010/12/23 14:01:03 | 000,150,239 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hsf_amos.sys
[2010/12/23 14:00:58 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hr1w.dll
[2010/12/23 14:00:54 | 000,005,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpt4qic.sys
[2010/12/23 14:00:51 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpsjmcro.dll
[2010/12/23 14:00:47 | 000,324,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpojwia.dll
[2010/12/23 14:00:44 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgtmcro.dll
[2010/12/23 14:00:41 | 000,068,608 | ---- | C] (Avisioin) -- C:\WINDOWS\System32\dllcache\hpgt53tk.dll
[2010/12/23 14:00:34 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt42tk.dll
[2010/12/23 14:00:27 | 000,126,976 | ---- | C] (Hewlett Packard) -- C:\WINDOWS\System32\dllcache\hpgt34tk.dll
[2010/12/23 14:00:20 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt33tk.dll
[2010/12/23 14:00:14 | 000,123,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpgt21tk.dll
[2010/12/23 14:00:07 | 000,119,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hpdigwia.dll
[2010/12/23 14:00:02 | 000,002,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidswvd.sys
[2010/12/23 13:59:59 | 000,008,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidgame.sys
[2010/12/23 13:59:58 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidbatt.sys
[2010/12/23 13:59:54 | 000,907,456 | ---- | C] (Conexant) -- C:\WINDOWS\System32\dllcache\hcf_msft.sys
[2010/12/23 13:59:52 | 000,028,288 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grserial.sys
[2010/12/23 13:59:49 | 000,082,304 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\grclass.sys
[2010/12/23 13:59:46 | 000,017,408 | ---- | C] (Gemplus) -- C:\WINDOWS\System32\dllcache\gpr400.sys
[2010/12/23 13:59:44 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gckernel.sys
[2010/12/23 13:59:43 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys
[2010/12/23 13:59:40 | 000,322,432 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400m.sys
[2010/12/23 13:59:37 | 001,733,120 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g400d.dll
[2010/12/23 13:59:34 | 000,320,384 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200m.sys
[2010/12/23 13:59:31 | 000,470,144 | ---- | C] (Matrox Graphics Inc.) -- C:\WINDOWS\System32\dllcache\g200d.dll
[2010/12/23 13:59:28 | 000,454,912 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fxusbase.sys
[2010/12/23 13:59:22 | 000,092,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fuusd.dll
[2010/12/23 13:59:19 | 000,455,296 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fusbbase.sys
[2010/12/23 13:59:16 | 000,455,680 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fus2base.sys
[2010/12/23 13:59:16 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010/12/23 13:59:12 | 000,442,240 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpnpbase.sys
[2010/12/23 13:59:09 | 000,441,728 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcmbase.sys
[2010/12/23 13:59:06 | 000,444,416 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\fpcibase.sys
[2010/12/23 13:59:05 | 000,034,173 | ---- | C] (Marconi Communications, Inc.) -- C:\WINDOWS\System32\dllcache\forehe.sys
[2010/12/23 13:59:01 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fnfilter.dll
[2010/12/23 13:59:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010/12/23 13:58:58 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\dllcache\fetnd5.sys
[2010/12/23 13:58:50 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010/12/23 13:58:50 | 000,022,090 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\fem556n5.sys
[2010/12/23 13:58:47 | 000,024,618 | ---- | C] (NETGEAR) -- C:\WINDOWS\System32\dllcache\fa410nd5.sys
[2010/12/23 13:58:45 | 000,016,074 | ---- | C] (NETGEAR Corp.) -- C:\WINDOWS\System32\dllcache\fa312nd5.sys
[2010/12/23 13:58:42 | 000,011,850 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xj.sys
[2010/12/23 13:58:40 | 000,012,362 | ---- | C] (FUJITSU LIMITED) -- C:\WINDOWS\System32\dllcache\f3ab18xi.sys
[2010/12/23 13:58:37 | 000,007,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exabyte2.sys
[2010/12/23 13:58:34 | 000,016,998 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ex10.sys
[2010/12/23 13:58:32 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010/12/23 13:58:32 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010/12/23 13:58:30 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunib.dll
[2010/12/23 13:58:28 | 000,045,568 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuni.dll
[2010/12/23 13:58:27 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010/12/23 13:58:25 | 000,034,816 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimg.dll
[2010/12/23 13:58:25 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010/12/23 13:58:22 | 000,137,088 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\essm2e.sys
[2010/12/23 13:58:22 | 000,043,008 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucm.dll
[2010/12/23 13:58:19 | 000,063,360 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\ess.sys
[2010/12/23 13:58:16 | 000,347,550 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56tpi.sys
[2010/12/23 13:58:14 | 000,594,238 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56hpi.sys
[2010/12/23 13:58:12 | 000,595,647 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es56cvmp.sys
[2010/12/23 13:58:10 | 000,174,464 | ---- | C] (ESS Technology, Inc.) -- C:\WINDOWS\System32\dllcache\es198x.sys
[2010/12/23 13:58:08 | 000,072,192 | ---- | C] (ESS Technology Inc.) -- C:\WINDOWS\System32\dllcache\es1969.sys
[2010/12/23 13:58:06 | 000,040,704 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1371mp.sys
[2010/12/23 13:58:04 | 000,037,120 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\es1370mp.sys
[2010/12/23 13:58:01 | 000,061,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnloop.exe
[2010/12/23 13:57:59 | 000,051,200 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnlogr.exe
[2010/12/23 13:57:57 | 000,053,248 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqndiag.exe
[2010/12/23 13:57:55 | 000,629,952 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqn.sys
[2010/12/23 13:57:53 | 000,114,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epstw2k.sys
[2010/12/23 13:57:51 | 000,018,503 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\epro4.sys
[2010/12/23 13:57:49 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\epcfw2k.sys
[2010/12/23 13:57:47 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\enum1394.sys
[2010/12/23 13:57:46 | 000,283,904 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\emu10k1m.sys
[2010/12/23 13:57:40 | 000,019,996 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\em556n4.sys
[2010/12/23 13:57:39 | 000,025,159 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\elnk3.sys
[2010/12/23 13:57:37 | 000,007,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\elmsmc.sys
[2010/12/23 13:57:36 | 000,171,520 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el99xn51.sys
[2010/12/23 13:57:34 | 000,070,174 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el98xn5.sys
[2010/12/22 21:12:44 | 000,455,199 | ---- | C] (3Com Corporation.) -- C:\WINDOWS\System32\dllcache\el985n51.sys
[2010/12/22 21:12:42 | 000,153,631 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xnd5.sys
[2010/12/22 21:12:40 | 000,066,591 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el90xbc5.sys
[2010/12/22 21:12:38 | 000,241,206 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656se5.sys
[2010/12/22 21:12:36 | 000,077,386 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656nd5.sys
[2010/12/22 21:12:34 | 000,634,134 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656ct5.sys
[2010/12/22 21:12:32 | 000,069,194 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el656cd5.sys
[2010/12/22 21:12:30 | 000,026,141 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el589nd5.sys
[2010/12/22 21:12:28 | 000,069,692 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el575nd5.sys
[2010/12/22 21:12:26 | 000,024,653 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el574nd4.sys
[2010/12/22 21:12:24 | 000,055,999 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el556nd5.sys
[2010/12/22 21:12:22 | 000,044,103 | ---- | C] (3Com Corporation) -- C:\WINDOWS\System32\dllcache\el515.sys
[2010/12/22 21:12:21 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll
[2010/12/22 21:12:19 | 000,019,594 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e100isa4.sys
[2010/12/22 21:12:17 | 000,050,719 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\e1000nt5.sys
[2010/12/22 21:12:12 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dshowext.ax
[2010/12/22 21:12:10 | 000,334,208 | ---- | C] (Yamaha Corp.) -- C:\WINDOWS\System32\dllcache\ds1wdm.sys
[2010/12/22 21:12:03 | 000,028,062 | ---- | C] (National Semiconductor Coproration) -- C:\WINDOWS\System32\dllcache\dp83820.sys
[2010/12/22 21:12:01 | 000,023,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4usb.sys
[2010/12/22 21:12:00 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4scan.sys
[2010/12/22 21:11:58 | 000,012,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4prt.sys
[2010/12/22 21:11:57 | 000,206,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dot4.sys
[2010/12/22 21:11:51 | 000,029,696 | ---- | C] (CNet Technology, Inc. ) -- C:\WINDOWS\System32\dllcache\dm9pci5.sys
[2010/12/22 21:11:50 | 000,008,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dlttape.sys
[2010/12/22 21:11:48 | 000,026,698 | ---- | C] (D-Link Corporation) -- C:\WINDOWS\System32\dllcache\dlh5xnd5.sys
[2010/12/22 21:11:46 | 000,952,007 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diwan.sys
[2010/12/22 21:11:39 | 000,236,060 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\ditrace.exe
[2010/12/22 21:11:37 | 000,038,985 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvsu.dll
[2010/12/22 21:11:36 | 000,031,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvpp.dll
[2010/12/22 21:11:34 | 000,006,729 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\disrvci.dll
[2010/12/22 21:11:31 | 000,091,305 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\dimaint.sys
[2010/12/22 21:11:30 | 000,614,429 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiview.exe
[2010/12/22 21:11:28 | 000,042,432 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.sys
[2010/12/22 21:11:26 | 000,110,621 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\digirlpt.dll
[2010/12/22 21:11:25 | 000,021,606 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.sys
[2010/12/22 21:11:23 | 000,041,046 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiisdn.dll
[2010/12/22 21:11:22 | 000,102,484 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiinf.dll
[2010/12/22 21:11:20 | 000,159,828 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digihlc.dll
[2010/12/22 21:11:18 | 000,229,462 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifwrk.dll
[2010/12/22 21:11:16 | 000,090,525 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digifep5.sys
[2010/12/22 21:11:15 | 000,103,044 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidxb.sys
[2010/12/22 21:11:13 | 000,131,156 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digidbp.dll
[2010/12/22 21:11:11 | 000,037,735 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.sys
[2010/12/22 21:11:09 | 000,065,622 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\digiasyn.dll
[2010/12/22 21:11:06 | 000,419,357 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgconfig.dll
[2010/12/22 21:11:04 | 000,029,531 | ---- | C] (Digi International Inc.) -- C:\WINDOWS\System32\dllcache\dgapci.sys
[2010/12/22 21:11:02 | 000,024,649 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650d.sys
[2010/12/22 21:11:00 | 000,024,648 | ---- | C] (D-Link) -- C:\WINDOWS\System32\dllcache\dfe650.sys
[2010/12/22 21:10:58 | 000,024,064 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devldr32.exe
[2010/12/22 21:10:56 | 000,256,512 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\devcon32.dll
[2010/12/22 21:10:54 | 000,020,928 | ---- | C] (Digital Networks, LLC) -- C:\WINDOWS\System32\dllcache\defpa.sys
[2010/12/22 21:10:52 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddsmc.sys
[2010/12/22 21:10:50 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc260usd.dll
[2010/12/22 21:10:48 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc240usd.dll
[2010/12/22 21:10:47 | 000,063,208 | ---- | C] (Intel Corporation.) -- C:\WINDOWS\System32\dllcache\dc21x4.sys
[2010/12/22 21:10:45 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210usd.dll
[2010/12/22 21:10:43 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dc210_32.dll
[2010/12/22 21:10:39 | 000,117,760 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\d100ib5.sys
[2010/12/22 21:10:38 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzports.dll
[2010/12/22 21:10:36 | 000,049,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzport.sys
[2010/12/22 21:10:34 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyzcoins.dll
[2010/12/22 21:10:33 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyports.dll
[2010/12/22 21:10:31 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyyport.sys
[2010/12/22 21:10:29 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyycoins.dll
[2010/12/22 21:10:28 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclom-y.sys
[2010/12/22 21:10:26 | 000,017,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cyclad-z.sys
[2010/12/22 21:10:25 | 000,048,640 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwrwdm.sys
[2010/12/22 21:10:24 | 000,093,952 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcwdm.sys
[2010/12/22 21:10:22 | 000,111,872 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcspud.sys
[2010/12/22 21:10:20 | 000,003,584 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwcosnt5.sys
[2010/12/22 21:10:19 | 000,072,832 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbwdm.sys
[2010/12/22 21:10:17 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbmidi.sys
[2010/12/22 21:10:15 | 000,003,072 | ---- | C] (Crystal Semiconductor Corp.) -- C:\WINDOWS\System32\dllcache\cwbase.sys
[2010/12/22 21:10:13 | 000,249,856 | ---- | C] (Comtrol® Corporation) -- C:\WINDOWS\System32\dllcache\ctmasetp.dll
[2010/12/22 21:10:13 | 000,004,096 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctwdm32.dll
[2010/12/22 21:10:11 | 000,096,256 | ---- | C] (Copyright (C) Creative Technology Ltd. 1994-2001) -- C:\WINDOWS\System32\dllcache\ctlsb16.sys
[2010/12/22 21:10:09 | 000,003,712 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctljystk.sys
[2010/12/22 21:10:08 | 000,006,912 | ---- | C] (Creative Technology Ltd.) -- C:\WINDOWS\System32\dllcache\ctlfacem.sys
[2010/12/22 21:10:05 | 000,175,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\csamsp.dll
[2010/12/22 21:10:02 | 000,042,112 | ---- | C] (Conexant Systems Inc.) -- C:\WINDOWS\System32\dllcache\crtaud.sys
[2010/12/22 21:10:01 | 000,216,064 | ---- | C] (COMPAQ Inc.) -- C:\WINDOWS\System32\dllcache\cpscan.dll
[2010/12/22 21:10:00 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010/12/22 21:09:59 | 000,060,970 | ---- | C] (Compaq Computer Corp.) -- C:\WINDOWS\System32\dllcache\cpqtrnd5.sys
[2010/12/22 21:09:57 | 000,021,533 | ---- | C] (Compaq Computer Corporation) -- C:\WINDOWS\System32\dllcache\cpqndis5.sys
[2010/12/22 21:09:54 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compbatt.sys
[2010/12/22 21:09:51 | 000,039,936 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\dllcache\cnxt1803.sys
[2010/12/22 21:09:50 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnusd.dll
[2010/12/22 21:09:47 | 000,020,736 | ---- | C] (OMNIKEY AG) -- C:\WINDOWS\System32\dllcache\cmbp0wdm.sys
[2010/12/22 21:09:47 | 000,013,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmbatt.sys
[2010/12/22 21:09:45 | 000,248,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546xm.sys
[2010/12/22 21:09:44 | 000,170,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl546x.dll
[2010/12/22 21:09:42 | 000,111,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cl5465.dll
[2010/12/22 21:09:41 | 000,045,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.sys
[2010/12/22 21:09:39 | 000,091,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cirrus.dll
[2010/12/22 21:09:37 | 000,272,640 | ---- | C] (RAVISENT Technologies Inc.) -- C:\WINDOWS\System32\dllcache\cinemclc.sys
[2010/12/22 21:09:36 | 000,980,034 | ---- | C] (Xircom) -- C:\WINDOWS\System32\dllcache\cicap.sys
[2010/12/22 21:09:32 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010/12/22 21:09:32 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010/12/22 21:09:31 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010/12/22 21:09:31 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\changer.sys
[2010/12/22 21:09:30 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010/12/22 21:09:27 | 000,049,182 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem56n5.sys
[2010/12/22 21:09:26 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem33n5.sys
[2010/12/22 21:09:25 | 000,022,044 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cem28n5.sys
[2010/12/22 21:09:24 | 000,027,164 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce3n5.sys
[2010/12/22 21:09:23 | 000,021,530 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\ce2n5.sys
[2010/12/22 21:09:21 | 000,714,698 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cbmdmkxx.sys
[2010/12/22 21:09:20 | 000,046,108 | ---- | C] (Xircom, Inc.) -- C:\WINDOWS\System32\dllcache\cben5.sys
[2010/12/22 21:09:19 | 000,039,680 | ---- | C] (Silicom Ltd.) -- C:\WINDOWS\System32\dllcache\cb325.sys
[2010/12/22 21:09:17 | 000,037,916 | ---- | C] (Fast Ethernet Controller Provider) -- C:\WINDOWS\System32\dllcache\cb102.sys
[2010/12/22 21:09:15 | 000,032,256 | ---- | C] (Eicon Technology Corporation) -- C:\WINDOWS\System32\dllcache\diapi2NT.dll
[2010/12/22 21:09:14 | 000,164,923 | ---- | C] (Eicon Technology) -- C:\WINDOWS\System32\dllcache\diapi2.sys
[2010/12/22 21:09:13 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010/12/22 21:09:12 | 000,121,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.dll
[2010/12/22 21:09:11 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext30.ax
[2010/12/22 21:09:10 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.ax
[2010/12/22 21:09:10 | 000,236,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camext20.dll
[2010/12/22 21:09:09 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.dll
[2010/12/22 21:09:08 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camexo20.ax
[2010/12/22 21:09:07 | 000,171,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv30.sys
[2010/12/22 21:09:06 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdrv21.sys
[2010/12/22 21:09:05 | 000,314,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\camdro21.sys
[2010/12/22 21:09:04 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010/12/22 21:08:43 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bulltlp3.sys
[2010/12/22 21:08:41 | 000,031,529 | ---- | C] (BreezeCOM) -- C:\WINDOWS\System32\dllcache\brzwlan.sys
[2010/12/22 21:08:40 | 000,010,368 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbscn.sys
[2010/12/22 21:08:39 | 000,011,008 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brusbmdm.sys
[2010/12/22 21:08:38 | 000,060,416 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brserwdm.sys
[2010/12/22 21:08:37 | 000,009,728 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brserif.dll
[2010/12/22 21:08:36 | 000,005,120 | ---- | C] (Brother Industries,Ltd.) -- C:\WINDOWS\System32\dllcache\brscnrsm.dll
[2010/12/22 21:08:35 | 000,039,552 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparwdm.sys
[2010/12/22 21:08:33 | 000,003,168 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brparimg.sys
[2010/12/22 21:08:32 | 000,041,472 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfusb.dll
[2010/12/22 21:08:31 | 000,032,256 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfrsmg.exe
[2010/12/22 21:08:30 | 000,029,696 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmflpt.dll
[2010/12/22 21:08:29 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brmfcwia.dll
[2010/12/22 21:08:28 | 000,015,360 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brmfbidi.dll
[2010/12/22 21:08:27 | 000,003,968 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltup.sys
[2010/12/22 21:08:26 | 000,012,160 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brfiltlo.sys
[2010/12/22 21:08:25 | 000,002,944 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brfilt.sys
[2010/12/22 21:08:24 | 000,012,800 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brevif.dll
[2010/12/22 21:08:24 | 000,009,728 | ---- | C] (Brother Industries Ltd.) -- C:\WINDOWS\System32\dllcache\brcoinst.dll
[2010/12/22 21:08:23 | 000,019,456 | ---- | C] (Brother Industries, Ltd.) -- C:\WINDOWS\System32\dllcache\brbidiif.dll
[2010/12/22 21:08:20 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\binlsvc.dll
[2010/12/22 21:08:19 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdasup.sys
[2010/12/22 21:08:18 | 000,871,388 | ---- | C] (BCM) -- C:\WINDOWS\System32\dllcache\bcmdm.sys
[2010/12/22 21:08:18 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bdaplgin.ax
[2010/12/22 21:08:17 | 000,026,568 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm4e5.sys
[2010/12/22 21:08:16 | 000,054,271 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42xx5.sys
[2010/12/22 21:08:15 | 000,066,557 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\bcm42u.sys
[2010/12/22 21:08:14 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\battc.sys
[2010/12/22 21:08:12 | 000,342,336 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.dll
[2010/12/22 21:08:12 | 000,036,128 | ---- | C] (3Dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\banshee.sys
[2010/12/22 21:08:11 | 000,096,640 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\dllcache\b57xp32.sys
[2010/12/22 21:08:10 | 000,089,952 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\b1cbase.sys
[2010/12/22 21:08:09 | 000,036,992 | ---- | C] (Aztech Systems Ltd) -- C:\WINDOWS\System32\dllcache\aztw2320.sys
[2010/12/22 21:08:08 | 000,037,568 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmwan.sys
[2010/12/22 21:08:07 | 000,144,384 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmenum.dll
[2010/12/22 21:08:06 | 000,087,552 | ---- | C] (AVM GmbH) -- C:\WINDOWS\System32\dllcache\avmcoxp.dll
[2010/12/22 21:08:04 | 000,013,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcstrm.sys
[2010/12/22 21:08:03 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avc.sys
[2010/12/22 21:08:03 | 000,036,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avcaudio.sys
[2010/12/22 21:07:52 | 000,070,528 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiragem.sys
[2010/12/22 21:07:50 | 000,104,832 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atiraged.dll
[2010/12/22 21:07:48 | 000,281,600 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimtai.sys
[2010/12/22 21:07:47 | 000,075,136 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpae.sys
[2010/12/22 21:07:46 | 000,289,664 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atimpab.sys
[2010/12/22 21:07:45 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atievxx.exe
[2010/12/22 21:07:44 | 000,268,160 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidvai.dll
[2010/12/22 21:07:43 | 000,382,592 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrab.dll
[2010/12/22 21:07:43 | 000,137,216 | ---- | C] (ATI Technologies Inc.) -- C:\WINDOWS\System32\dllcache\atidrae.dll
[2010/12/22 21:07:36 | 000,096,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ati.dll
[2010/12/22 21:07:36 | 000,077,568 | ---- | C] (ATI Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ati.sys
[2010/12/22 21:07:34 | 000,097,354 | ---- | C] (Bay Networks, Inc.) -- C:\WINDOWS\System32\dllcache\aspndis3.sys
[2010/12/22 21:07:32 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010/12/22 21:07:30 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\apmbatt.sys
[2010/12/22 21:07:29 | 000,036,224 | ---- | C] (ADMtek Incorporated.) -- C:\WINDOWS\System32\dllcache\an983.sys
[2010/12/22 21:07:28 | 000,016,969 | ---- | C] (AmbiCom, Inc.) -- C:\WINDOWS\System32\dllcache\amb8002.sys
[2010/12/22 21:07:27 | 000,026,624 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\alifir.sys
[2010/12/22 21:07:26 | 000,027,678 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ali5261.sys
[2010/12/22 21:07:21 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agcgauge.ax
[2010/12/22 21:07:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010/12/22 21:07:18 | 000,046,112 | ---- | C] (Adaptec, Inc ) -- C:\WINDOWS\System32\dllcache\adptsf50.sys
[2010/12/22 21:07:17 | 000,010,880 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\admjoy.sys
[2010/12/22 21:07:16 | 000,747,392 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8830.sys
[2010/12/22 21:07:15 | 000,584,448 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8810.sys
[2010/12/22 21:07:15 | 000,553,984 | ---- | C] (Aureal, Inc.) -- C:\WINDOWS\System32\dllcache\adm8820.sys
[2010/12/22 21:07:14 | 000,020,160 | ---- | C] (ADMtek Incorporated) -- C:\WINDOWS\System32\dllcache\adm8511.sys
[2010/12/22 21:07:13 | 000,007,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adicvls.sys
[2010/12/22 21:07:11 | 000,061,440 | ---- | C] (Color Flatbed Scanner) -- C:\WINDOWS\System32\dllcache\acerscad.dll
[2010/12/22 21:07:10 | 000,297,728 | ---- | C] (Silicon Integrated Systems Corp.) -- C:\WINDOWS\System32\dllcache\ac97sis.sys
[2010/12/22 21:07:10 | 000,084,480 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\dllcache\ac97via.sys
[2010/12/22 21:07:09 | 000,231,552 | ---- | C] (Acer Laboratories Inc.) -- C:\WINDOWS\System32\dllcache\ac97ali.sys
[2010/12/22 21:07:09 | 000,096,256 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\ac97intc.sys
[2010/12/22 21:07:08 | 000,462,848 | ---- | C] (Aureal Inc.) -- C:\WINDOWS\System32\dllcache\a3dapi.dll
[2010/12/22 21:07:07 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\8514a.dll
[2010/12/22 21:07:06 | 000,148,352 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvsm.sys
[2010/12/22 21:07:06 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\61883.sys
[2010/12/22 21:07:06 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\4mmdat.sys
[2010/12/22 21:07:05 | 000,689,216 | ---- | C] (3dfx Interactive, Inc.) -- C:\WINDOWS\System32\dllcache\3dfxvs.dll
[2010/12/22 21:07:04 | 000,762,780 | ---- | C] (3Com, Inc.) -- C:\WINDOWS\System32\dllcache\3cwmcru.sys
[2010/12/22 21:07:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394vdbg.sys
[2010/12/22 21:07:03 | 000,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\1394bus.sys
[2010/12/22 21:06:40 | 000,066,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\s3legacy.dll
[2010/12/19 17:48:52 | 000,000,000 | ---D | C] -- C:\Program Files\NCH Software
[2010/12/19 17:46:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\NCH Swift Sound
[2010/12/19 16:51:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\Incomplete
[2010/12/19 16:50:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\My Documents\FrostWire
[2010/12/19 16:49:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Application Data\FrostWire
[2010/12/19 16:49:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Paul G\Start Menu\Programs\FrostWire
[2010/12/19 16:48:16 | 000,000,000 | ---D | C] -- C:\Program Files\FrostWire
[2010/12/19 16:42:41 | 008,310,726 | ---- | C] (FrostWire Team) -- C:\Documents and Settings\Paul G\My Documents\frostwire-4.21.3.windows.exe
[2010/12/15 18:04:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data\Sun
[2010/12/15 18:04:18 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) --
 
You must log in or register to reply here.
Back
Top