|
|||||||
| Malware Removal Discussion about Trojans, viruses, hoaxes, firewalls, spyware, and general Security issues. If you suspect your PC is infected with a virus, trojan or spyware app please include any supporting documentation or logs |
 |
|
|
Topic Tools |
|
#31
August 31st, 2008, 03:30 PM
|
|||
|
|||
|
========== HKLM Winlogon Settings ==========
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell] "Explorer.exe" - [06/13/2007 06:23 AM | 01,033,216 | ---- | M] (Microsoft Corporation) C:\WINDOWS\explorer.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit] "C:\WINDOWS\system32\userinit.exe" - [08/10/2004 03:00 PM | 00,024,576 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost] "logonui.exe" - [08/10/2004 03:00 PM | 00,514,560 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet] "rundll32 shell32" - [10/25/2007 11:34 PM | 08,460,288 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll "Control_RunDLL "sysdm.cpl"" - [08/10/2004 03:00 PM | 00,298,496 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl ========== User's Winlogon Settings ========== ========== Winlogon Notify Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] "DllName" = C:\WINDOWS\system32\igfxdev.dll [06/08/2005 01:58 PM | 00,131,072 | ---- | M] (Intel Corporation) ========== Policies ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\policies\Explorer] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\policies\System] "dontdisplaylastusername" = 0 "legalnoticecaption" = "legalnoticetext" = "shutdownwithoutlogon" = 1 "undockwithoutlogon" = 1 "InstallVisualStyle" = C:\WINDOWS\Resources\Themes\Royale\Royale.mss File not found "InstallTheme" = C:\WINDOWS\Resources\Themes\Royale.the File not found [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\policies\Explorer] "NoDriveTypeAutoRun" = 145 "NoBandCustomize" = 0 "NoMovingBands" = 0 "NoCloseDragDropBands" = 0 "NoSetTaskbar" = 0 "NoToolbarsOnTaskbar" = 0 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\policies\System] [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\Cur rentVersion\policies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\Cur rentVersion\policies\System] [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System] [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System] Unable to open key or key not present! [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System] Unable to open key or key not present! [HKEY_USERS\S-1-5-21-3168850613-2940384695-3104939514-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer] "NoDriveTypeAutoRun" = 145 "NoBandCustomize" = 0 "NoMovingBands" = 0 "NoCloseDragDropBands" = 0 "NoSetTaskbar" = 0 "NoToolbarsOnTaskbar" = 0 [HKEY_USERS\S-1-5-21-3168850613-2940384695-3104939514-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System] ========== Lsa Authentication Packages ========== ========== Lsa Security Packages ========== ========== Desktop Components ========== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0] "FriendlyName" = "My Current Home Page" "Source" = "About:Home" "SubscribedURL" = "About:Home" ========== Safeboot Options ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot] "AlternateShell" = cmd.exe ========== Disabled MsConfig Items ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services] "TuneUp.Defrag" = 3 "LightScribeService" = 2 "iPodService" = 3 "Fax" = 3 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] "path" = C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk File not found "backup" = C:\WINDOWS\pss\Adobe Reader Speed Launch.lnk File not found "location" = Common Startup "command" = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [09/23/2005 11:05 PM | 00,029,696 | ---- | M] (Adobe Systems Incorporated) "item" = Adobe Reader Speed Launch [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] "path" = C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk File not found "backup" = C:\WINDOWS\pss\HP Digital Imaging Monitor.lnk File not found "location" = Common Startup "command" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [05/12/2005 09:23 AM | 00,282,624 | ---- | M] (Hewlett-Packard Co.) "item" = HP Digital Imaging Monitor [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^HP_Administrator^Start Menu^Programs^Startup^Cyber-shot Viewer Media Check Tool.lnk] "path" = C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup\Cyber-shot Viewer Media Check Tool.lnk File not found "backup" = C:\WINDOWS\pss\Cyber-shot Viewer Media Check Tool.lnk File not found "location" = Startup "command" = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe [10/28/2005 03:12 PM | 00,155,648 | ---- | M] (Sony Corporation) "item" = Cyber-shot Viewer Media Check Tool [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = "hkey" = HKCU "command" = "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Aim6] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = AOLLaunch "hkey" = HKCU "command" = C:\Program Files\Common Files\AOL\Launch\aollaunch.exe [12/15/2005 09:38 PM | 00,050,792 | ---- | M] (America Online, Inc.) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\googletalk] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = googletalk "hkey" = HKCU "command" = C:\Program Files\Google\Google Talk\googletalk.exe File not found "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HostManager] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = AOLHostManager "hkey" = HKLM "command" = C:\Program Files\Common Files\AOL\1141872391\ee\AOLHostManager.exe [12/15/2005 09:38 PM | 00,013,416 | ---- | M] (America Online, Inc.) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSMSGS] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = msmsgs "hkey" = HKCU "command" = C:\Program Files\Messenger\msmsgs.exe [10/13/2004 07:24 PM | 01,694,208 | ---- | M] (Microsoft Corporation) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PCDrProfiler] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = "hkey" = HKLM "command" = "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = realsched "hkey" = HKLM "command" = C:\Program Files\Common Files\Real\Update_OB\realsched.exe [04/12/2008 10:15 PM | 00,185,896 | ---- | M] (RealNetworks, Inc.) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\updateMgr] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = AdobeUpdateManager "hkey" = HKCU "command" = C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [03/30/2006 05:45 PM | 00,313,472 | R--- | M] (Adobe Systems Incorporated) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state] "system.ini" = 0 "win.ini" = 0 "bootini" = 0 "services" = 2 "startup" = 2 ========== CDRom AutoRun Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Cdrom] "AutoRun" = 1 ========== Autorun Files on Drives ========== 
|
|
#32
August 31st, 2008, 03:31 PM
|
|||
|
|||
|
AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | ]
[09/28/2005 02:09 AM | 00,000,100 | ---- | M] () C:\AUTOEXEC.BAT [ NTFS ] AUTOEXEC.BAT [] [07/28/2001 05:07 AM | 00,000,000 | -HS- | M] () D:\AUTOEXEC.BAT [ FAT32 ] Autorun.inf [[AUTORUN] | ShellExecute=Info.exe protect.ed 480 480 | ] [04/30/2004 09:01 PM | 00,000,053 | -HS- | M] () D:\Autorun.inf [ FAT32 ] ========== MountPoints2 ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{009a82f9-d3bc-11db-8dbc-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{051d8e46-9750-11db-8db8-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{af221b6f-bd0f-11db-8dba-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{af221b75-bd0f-11db-8dba-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{c7dea048-c1c8-11db-8dbb-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{df4591b8-8279-11db-8db5-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{e619c920-81a8-11db-8db4-0013d4e9e658}\Shell] "" = None ========== DNS Name Servers ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\Adapters\{24C35E9D-43DE-47B3-8C8D-C6AC403DF807}] Servers: | Description: Realtek RTL8139 Family PCI Fast Ethernet NIC [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\Adapters\{B43D45C4-246C-4B18-8A68-6B1D4349FF5E}] Servers: | Description: 1394 Net Adapter [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\Adapters\{F2EA6E95-22A4-4FA3-AC0B-59DAE1720471}] Servers: | Description: Realtek RTL8139/810x Family Fast Ethernet NIC ========== Hosts File ========== HOSTS File = (686 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts First 25 entries... 127.0.0.1 localhost ========== Files/Folders - Created Within 30 days ========== [08/31/2008 02:01 AM | 00,066,048 | ---- | C] () - C:\mbr.exe [08/31/2008 04:17 AM | ---D | C] - C:\SDFix [08/31/2008 10:16 AM | ---D | C] - C:\_OTMoveIt [08/29/2008 05:31 PM | 00,004,639 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplayer2.exe [08/29/2008 05:31 PM | 00,009,472 | ---- | C] () - C:\WINDOWS\System32\dllcache\ativmdcd.sys [08/29/2008 05:31 PM | 00,010,240 | ---- | C] () - C:\WINDOWS\System32\dllcache\atipcxxx.sys [08/29/2008 05:31 PM | 00,010,880 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\admjoy.sys [08/29/2008 05:31 PM | 00,016,969 | ---- | C] (AmbiCom, Inc.) - C:\WINDOWS\System32\dllcache\amb8002.sys [08/29/2008 05:31 PM | 00,017,152 | ---- | C] () - C:\WINDOWS\System32\dllcache\atitunep.sys [08/29/2008 05:31 PM | 00,017,152 | ---- | C] () - C:\WINDOWS\System32\dllcache\atitvsnd.sys [08/29/2008 05:31 PM | 00,019,456 | ---- | C] () - C:\WINDOWS\System32\dllcache\ativttxx.sys [08/29/2008 05:31 PM | 00,020,160 | ---- | C] (ADMtek Incorporated) - C:\WINDOWS\System32\dllcache\adm8511.sys [08/29/2008 05:31 PM | 00,023,552 | ---- | C] () - C:\WINDOWS\System32\dllcache\atixbar.sys [08/29/2008 05:31 PM | 00,026,624 | ---- | C] () - C:\WINDOWS\System32\dllcache\ativxbar.sys [08/29/2008 05:31 PM | 00,026,880 | ---- | C] () - C:\WINDOWS\System32\dllcache\atirtsnd.sys [08/29/2008 05:31 PM | 00,036,128 | ---- | C] (3Dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\banshee.sys [08/29/2008 05:31 PM | 00,036,992 | ---- | C] (Aztech Systems Ltd) - C:\WINDOWS\System32\dllcache\aztw2320.sys [08/29/2008 05:31 PM | 00,037,568 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\avmwan.sys [08/29/2008 05:31 PM | 00,046,112 | ---- | C] (Adaptec, Inc ) - C:\WINDOWS\System32\dllcache\adptsf50.sys [08/29/2008 05:31 PM | 00,046,464 | ---- | C] () - C:\WINDOWS\System32\dllcache\atibt829.sys [08/29/2008 05:31 PM | 00,049,920 | ---- | C] () - C:\WINDOWS\System32\dllcache\atirtcap.sys [08/29/2008 05:31 PM | 00,061,440 | ---- | C] (Color Flatbed Scanner) - C:\WINDOWS\System32\dllcache\acerscad.dll [08/29/2008 05:31 PM | 00,077,568 | ---- | C] (ATI Technologies, Inc.) - C:\WINDOWS\System32\dllcache\ati.sys [08/29/2008 05:31 PM | 00,084,480 | ---- | C] (VIA Technologies, Inc.) - C:\WINDOWS\System32\dllcache\ac97via.sys [08/29/2008 05:31 PM | 00,087,552 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\avmcoxp.dll [08/29/2008 05:31 PM | 00,089,952 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\b1cbase.sys [08/29/2008 05:31 PM | 00,096,256 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\ac97intc.sys [08/29/2008 05:31 PM | 00,097,354 | ---- | C] (Bay Networks, Inc.) - C:\WINDOWS\System32\dllcache\aspndis3.sys [08/29/2008 05:31 PM | 00,098,304 | ---- | C] (Aureal Semiconductor) - C:\WINDOWS\System32\dllcache\a3d.dll [08/29/2008 05:31 PM | 00,144,384 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\avmenum.dll [08/29/2008 05:31 PM | 00,148,352 | ---- | C] (3dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\3dfxvsm.sys [08/29/2008 05:31 PM | 00,297,728 | ---- | C] (Silicon Integrated Systems Corp.) - C:\WINDOWS\System32\dllcache\ac97sis.sys [08/29/2008 05:31 PM | 00,342,336 | ---- | C] (3Dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\banshee.dll [08/29/2008 05:31 PM | 00,462,848 | ---- | C] (Aureal Inc.) - C:\WINDOWS\System32\dllcache\a3dapi.dll [08/29/2008 05:31 PM | 00,553,984 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\adm8820.sys [08/29/2008 05:31 PM | 00,584,448 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\adm8810.sys [08/29/2008 05:31 PM | 00,689,216 | ---- | C] (3dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\3dfxvs.dll [08/29/2008 05:31 PM | 00,747,392 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\adm8830.sys [08/29/2008 05:31 PM | 00,762,780 | ---- | C] (3Com, Inc.) - C:\WINDOWS\System32\dllcache\3cwmcru.sys [08/29/2008 05:32 PM | 00,002,944 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brfilt.sys [08/29/2008 05:32 PM | 00,003,168 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brparimg.sys [08/29/2008 05:32 PM | 00,003,968 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brfiltup.sys [08/29/2008 05:32 PM | 00,005,120 | ---- | C] (Brother Industries,Ltd.) - C:\WINDOWS\System32\dllcache\brscnrsm.dll [08/29/2008 05:32 PM | 00,009,728 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brcoinst.dll [08/29/2008 05:32 PM | 00,009,728 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brserif.dll [08/29/2008 05:32 PM | 00,010,368 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brusbscn.sys [08/29/2008 05:32 PM | 00,011,008 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brusbmdm.sys [08/29/2008 05:32 PM | 00,012,160 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brfiltlo.sys [08/29/2008 05:32 PM | 00,012,800 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brevif.dll [08/29/2008 05:32 PM | 00,015,360 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmfbidi.dll [08/29/2008 05:32 PM | 00,019,456 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brbidiif.dll [08/29/2008 05:32 PM | 00,020,736 | ---- | C] (OMNIKEY AG) - C:\WINDOWS\System32\dllcache\cmbp0wdm.sys [08/29/2008 05:32 PM | 00,021,530 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\ce2n5.sys [08/29/2008 05:32 PM | 00,022,044 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cem28n5.sys [08/29/2008 05:32 PM | 00,022,044 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cem33n5.sys [08/29/2008 05:32 PM | 00,027,164 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\ce3n5.sys [08/29/2008 05:32 PM | 00,029,696 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmflpt.dll [08/29/2008 05:32 PM | 00,031,529 | ---- | C] (BreezeCOM) - C:\WINDOWS\System32\dllcache\brzwlan.sys [08/29/2008 05:32 PM | 00,032,256 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmfrsmg.exe [08/29/2008 05:32 PM | 00,032,256 | ---- | C] (Eicon Technology Corporation) - C:\WINDOWS\System32\dllcache\diapi2NT.dll [08/29/2008 05:32 PM | 00,037,916 | ---- | C] (Fast Ethernet Controller Provider) - C:\WINDOWS\System32\dllcache\cb102.sys [08/29/2008 05:32 PM | 00,039,552 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brparwdm.sys [08/29/2008 05:32 PM | 00,039,680 | ---- | C] (Silicom Ltd.) - C:\WINDOWS\System32\dllcache\cb325.sys [08/29/2008 05:32 PM | 00,041,472 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmfusb.dll [08/29/2008 05:32 PM | 00,046,108 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cben5.sys [08/29/2008 05:32 PM | 00,049,182 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cem56n5.sys [08/29/2008 05:32 PM | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) - C:\WINDOWS\System32\dllcache\cap7146.sys [08/29/2008 05:32 PM | 00,060,416 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brserwdm.sys [08/29/2008 05:32 PM | 00,164,923 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\diapi2.sys [08/29/2008 05:32 PM | 00,173,568 | ---- | C] () - C:\WINDOWS\System32\dllcache\chtskf.dll [08/29/2008 05:32 PM | 00,272,640 | ---- | C] (RAVISENT Technologies Inc.) - C:\WINDOWS\System32\dllcache\cinemclc.sys [08/29/2008 05:32 PM | 00,714,698 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cbmdmkxx.sys [08/29/2008 05:32 PM | 00,871,388 | ---- | C] (BCM) - C:\WINDOWS\System32\dllcache\bcmdm.sys [08/29/2008 05:32 PM | 00,980,034 | ---- | C] (Xircom) - C:\WINDOWS\System32\dllcache\cicap.sys [08/29/2008 05:33 PM | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwbase.sys [08/29/2008 05:33 PM | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwbmidi.sys [08/29/2008 05:33 PM | 00,003,584 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwcosnt5.sys [08/29/2008 05:33 PM | 00,003,712 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\ctljystk.sys [08/29/2008 05:33 PM | 00,004,096 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\ctwdm32.dll [08/29/2008 05:33 PM | 00,006,216 | ---- | C] () - C:\WINDOWS\System32\dllcache\divaci.dll [08/29/2008 05:33 PM | 00,006,729 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\disrvci.dll [08/29/2008 05:33 PM | 00,006,912 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\ctlfacem.sys [08/29/2008 05:33 PM | 00,020,928 | ---- | C] (Digital Networks, LLC) - C:\WINDOWS\System32\dllcache\defpa.sys [08/29/2008 05:33 PM | 00,021,533 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\cpqndis5.sys [08/29/2008 05:33 PM | 00,024,064 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\devldr32.exe [08/29/2008 05:33 PM | 00,024,648 | ---- | C] (D-Link) - C:\WINDOWS\System32\dllcache\dfe650.sys [08/29/2008 05:33 PM | 00,024,649 | ---- | C] (D-Link) - C:\WINDOWS\System32\dllcache\dfe650d.sys [08/29/2008 05:33 PM | 00,029,768 | ---- | C] () - C:\WINDOWS\System32\dllcache\divasu.dll [08/29/2008 05:33 PM | 00,031,305 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\disrvpp.dll [08/29/2008 05:33 PM | 00,037,962 | ---- | C] () - C:\WINDOWS\System32\dllcache\divaprop.dll [08/29/2008 05:33 PM | 00,038,985 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\disrvsu.dll [08/29/2008 05:33 PM | 00,048,640 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwrwdm.sys [08/29/2008 05:33 PM | 00,060,970 | ---- | C] (Compaq Computer Corp.) - C:\WINDOWS\System32\dllcache\cpqtrnd5.sys [08/29/2008 05:33 PM | 00,063,208 | ---- | C] (Intel Corporation.) - C:\WINDOWS\System32\dllcache\dc21x4.sys [08/29/2008 05:33 PM | 00,072,832 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwbwdm.sys [08/29/2008 05:33 PM | 00,091,305 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\dimaint.sys [08/29/2008 05:33 PM | 00,093,952 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwcwdm.sys [08/29/2008 05:33 PM | 00,096,256 | ---- | C] (Copyright (C) Creative Technology Ltd. 1994-2001) - C:\WINDOWS\System32\dllcache\ctlsb16.sys [08/29/2008 05:33 PM | 00,111,872 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwcspud.sys [08/29/2008 05:33 PM | 00,117,760 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\d100ib5.sys [08/29/2008 05:33 PM | 00,216,064 | ---- | C] (COMPAQ Inc.) - C:\WINDOWS\System32\dllcache\cpscan.dll [08/29/2008 05:33 PM | 00,236,060 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\ditrace.exe [08/29/2008 05:33 PM | 00,249,856 | ---- | C] (ComtrolŪ Corporation) - C:\WINDOWS\System32\dllcache\ctmasetp.dll [08/29/2008 05:33 PM | 00,256,512 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\devcon32.dll [08/29/2008 05:34 PM | 00,018,503 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\epro4.sys [08/29/2008 05:34 PM | 00,019,594 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\e100isa4.sys [08/29/2008 05:34 PM | 00,026,698 | ---- | C] (D-Link Corporation) - C:\WINDOWS\System32\dllcache\dlh5xnd5.sys [08/29/2008 05:34 PM | 00,028,062 | ---- | C] (National Semiconductor Coproration) - C:\WINDOWS\System32\dllcache\dp83820.sys [08/29/2008 05:34 PM | 00,029,696 | ---- | C] (CNet Technology, Inc. ) - C:\WINDOWS\System32\dllcache\dm9pci5.sys [08/29/2008 05:34 PM | 00,037,120 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\es1370mp.sys [08/29/2008 05:34 PM | 00,040,704 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\es1371mp.sys [08/29/2008 05:34 PM | 00,050,719 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\e1000nt5.sys [08/29/2008 05:34 PM | 00,072,192 | ---- | C] (ESS Technology Inc.) - C:\WINDOWS\System32\dllcache\es1969.sys [08/29/2008 05:34 PM | 00,117,760 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\e100b325.sys [08/29/2008 05:34 PM | 00,283,904 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\emu10k1m.sys [08/29/2008 05:34 PM | 00,334,208 | ---- | C] (Yamaha Corp.) - C:\WINDOWS\System32\dllcache\ds1wdm.sys [08/29/2008 05:34 PM | 00,952,007 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\diwan.sys [08/29/2008 05:35 PM | 00,011,850 | ---- | C] (FUJITSU LIMITED) - C:\WINDOWS\System32\dllcache\f3ab18xj.sys [08/29/2008 05:35 PM | 00,012,362 | ---- | C] (FUJITSU LIMITED) - C:\WINDOWS\System32\dllcache\f3ab18xi.sys [08/29/2008 05:35 PM | 00,016,998 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\ex10.sys [08/29/2008 05:35 PM | 00,024,618 | ---- | C] (NETGEAR) - C:\WINDOWS\System32\dllcache\fa410nd5.sys [08/29/2008 05:35 PM | 00,027,165 | ---- | C] (VIA Technologies, Inc. ) - C:\WINDOWS\System32\dllcache\fetnd5.sys [08/29/2008 05:35 PM | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esucmd.dll [08/29/2008 05:35 PM | 00,034,173 | ---- | C] (Marconi Communications, Inc.) - C:\WINDOWS\System32\dllcache\forehe.sys [08/29/2008 05:35 PM | 00,034,816 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuimg.dll [08/29/2008 05:35 PM | 00,043,008 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esucm.dll [08/29/2008 05:35 PM | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esunid.dll [08/29/2008 05:35 PM | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuni.dll [08/29/2008 05:35 PM | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esunib.dll [08/29/2008 05:35 PM | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuimgd.dll [08/29/2008 05:35 PM | 00,094,208 | ---- | C] () - C:\WINDOWS\System32\dllcache\fpencode.dll [08/29/2008 05:35 PM | 00,441,728 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fpcmbase.sys [08/29/2008 05:35 PM | 00,442,240 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fpnpbase.sys [08/29/2008 05:35 PM | 00,444,416 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fpcibase.sys [08/29/2008 05:35 PM | 00,454,912 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fxusbase.sys [08/29/2008 05:35 PM | 00,455,296 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fusbbase.sys [08/29/2008 05:35 PM | 00,455,680 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fus2base.sys [08/29/2008 05:36 PM | 00,017,408 | ---- | C] (Gemplus) - C:\WINDOWS\System32\dllcache\gpr400.sys [08/29/2008 05:36 PM | 00,028,288 | ---- | C] (Gemplus) - C:\WINDOWS\System32\dllcache\grserial.sys [08/29/2008 05:36 PM | 00,068,608 | ---- | C] (Avisioin) - C:\WINDOWS\System32\dllcache\hpgt53tk.dll
|
|
#33
August 31st, 2008, 03:31 PM
|
|||
|
|||
|
[08/29/2008 05:36 PM | 00,082,304 | ---- | C] (Gemplus) - C:\WINDOWS\System32\dllcache\grclass.sys
[08/29/2008 05:36 PM | 00,083,968 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt21.dll [08/29/2008 05:36 PM | 00,089,088 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt33.dll [08/29/2008 05:36 PM | 00,093,696 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt42.dll [08/29/2008 05:36 PM | 00,101,376 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt34.dll [08/29/2008 05:36 PM | 00,108,827 | ---- | C] () - C:\WINDOWS\System32\dllcache\hanja.lex [08/29/2008 05:36 PM | 00,126,976 | ---- | C] (Hewlett Packard) - C:\WINDOWS\System32\dllcache\hpgt34tk.dll [08/29/2008 05:36 PM | 00,165,888 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt53.dll [08/29/2008 05:37 PM | 00,009,216 | ---- | C] (IBM Corporation) - C:\WINDOWS\System32\dllcache\ibmsgnet.dll [08/29/2008 05:37 PM | 00,028,700 | ---- | C] (IBM Corp.) - C:\WINDOWS\System32\dllcache\ibmexmp.sys [08/29/2008 05:37 PM | 00,058,592 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\i740nt5.sys [08/29/2008 05:37 PM | 00,100,936 | ---- | C] (IBM Corporation) - C:\WINDOWS\System32\dllcache\ibmtok.sys [08/29/2008 05:37 PM | 00,109,085 | ---- | C] (IBM Corporation) - C:\WINDOWS\System32\dllcache\ibmtrp.sys [08/29/2008 05:37 PM | 00,353,184 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\i740dnt5.dll [08/29/2008 05:37 PM | 13,463,552 | ---- | C] () - C:\WINDOWS\System32\dllcache\hwxjpn.dll [08/29/2008 05:38 PM | 00,023,552 | ---- | C] (MKNet Corporation) - C:\WINDOWS\System32\dllcache\irmk7.sys [08/29/2008 05:38 PM | 00,038,784 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\io8.sys [08/29/2008 05:38 PM | 00,045,632 | ---- | C] (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) - C:\WINDOWS\System32\dllcache\ip5515.sys [08/29/2008 05:38 PM | 00,059,392 | ---- | C] () - C:\WINDOWS\System32\dllcache\imscinst.exe [08/29/2008 05:38 PM | 00,090,200 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\io8ports.dll [08/29/2008 05:38 PM | 00,134,339 | ---- | C] () - C:\WINDOWS\System32\dllcache\imekr.lex [08/29/2008 05:38 PM | 00,196,665 | ---- | C] () - C:\WINDOWS\System32\dllcache\imjpinst.exe [08/29/2008 05:38 PM | 00,372,824 | ---- | C] (Xircom) - C:\WINDOWS\System32\dllcache\iconf32.dll [08/29/2008 05:39 PM | 00,015,744 | ---- | C] (Litronic Industries) - C:\WINDOWS\System32\dllcache\lit220p.sys [08/29/2008 05:39 PM | 00,019,016 | ---- | C] (Kingston Technology Company ) - C:\WINDOWS\System32\dllcache\ktc111.sys [08/29/2008 05:39 PM | 00,020,573 | ---- | C] (The Linksts Group ) - C:\WINDOWS\System32\dllcache\lne100.sys [08/29/2008 05:39 PM | 00,020,864 | ---- | C] (Logitech Inc.) - C:\WINDOWS\System32\dllcache\lwadihid.sys [08/29/2008 05:39 PM | 00,022,848 | ---- | C] (Logitech Inc.) - C:\WINDOWS\System32\dllcache\lwusbhid.sys [08/29/2008 05:39 PM | 00,025,065 | ---- | C] (D-Link) - C:\WINDOWS\System32\dllcache\lmndis3.sys [08/29/2008 05:39 PM | 00,026,442 | ---- | C] (SMSC) - C:\WINDOWS\System32\dllcache\lanepic5.sys [08/29/2008 05:39 PM | 00,034,688 | ---- | C] (Toshiba Corp.) - C:\WINDOWS\System32\dllcache\lbrtfdc.sys [08/29/2008 05:39 PM | 00,070,730 | ---- | C] (Linksys Group, Inc.) - C:\WINDOWS\System32\dllcache\lne100tx.sys [08/29/2008 05:39 PM | 00,164,586 | ---- | C] (Madge Networks Ltd) - C:\WINDOWS\System32\dllcache\mdgndis5.sys [08/29/2008 05:39 PM | 00,420,992 | ---- | C] (LT) - C:\WINDOWS\System32\dllcache\ltmdmntt.sys [08/29/2008 05:39 PM | 00,576,746 | ---- | C] (LT) - C:\WINDOWS\System32\dllcache\ltmdmntl.sys [08/29/2008 05:39 PM | 00,727,786 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\ltck000c.sys [08/29/2008 05:39 PM | 00,797,500 | ---- | C] (LT) - C:\WINDOWS\System32\dllcache\ltsmt.sys [08/29/2008 05:39 PM | 00,802,683 | ---- | C] (Lucent Technologies) - C:\WINDOWS\System32\dllcache\ltsm.sys [08/29/2008 05:39 PM | 01,158,818 | ---- | C] () - C:\WINDOWS\System32\dllcache\korwbrkr.lex [08/29/2008 05:40 PM | 00,007,168 | ---- | C] (Moxa Technologies Co., Ltd) - C:\WINDOWS\System32\dllcache\mxport.dll [08/29/2008 05:40 PM | 00,017,280 | ---- | C] (American Megatrends Inc.) - C:\WINDOWS\System32\dllcache\mraid35x.sys [08/29/2008 05:40 PM | 00,019,968 | ---- | C] (Macronix International Co., Ltd. ) - C:\WINDOWS\System32\dllcache\mxnic.sys [08/29/2008 05:40 PM | 00,019,968 | ---- | C] (Moxa Technologies Co., Ltd) - C:\WINDOWS\System32\dllcache\mxicfg.dll [08/29/2008 05:40 PM | 00,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) - C:\WINDOWS\System32\dllcache\mxcard.sys [08/29/2008 05:40 PM | 00,052,255 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\n1000nt5.sys [08/29/2008 05:40 PM | 00,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) - C:\WINDOWS\System32\dllcache\mxport.sys [08/29/2008 05:40 PM | 00,103,296 | ---- | C] (Matrox Graphics Inc) - C:\WINDOWS\System32\dllcache\mtxvideo.sys [08/29/2008 05:41 PM | 00,013,664 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128.sys [08/29/2008 05:41 PM | 00,027,936 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i3d.sys [08/29/2008 05:41 PM | 00,028,672 | ---- | C] (National Semiconductor Corporation) - C:\WINDOWS\System32\dllcache\nscirda.sys [08/29/2008 05:41 PM | 00,032,840 | ---- | C] (NETGEAR Corporation.) - C:\WINDOWS\System32\dllcache\ngrpci.sys [08/29/2008 05:41 PM | 00,033,088 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128v2.sys [08/29/2008 05:41 PM | 00,035,392 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128.dll [08/29/2008 05:41 PM | 00,039,264 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\neo20xx.sys [08/29/2008 05:41 PM | 00,051,552 | ---- | C] (Kensington Technology Group) - C:\WINDOWS\System32\dllcache\ntgrip.sys [08/29/2008 05:41 PM | 00,059,104 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128v2.dll [08/29/2008 05:41 PM | 00,060,480 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\neo20xx.dll [08/29/2008 05:41 PM | 00,065,278 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\netflx3.sys [08/29/2008 05:41 PM | 00,087,040 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\nm6wdm.sys [08/29/2008 05:41 PM | 00,091,488 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i3disp.dll [08/29/2008 05:41 PM | 00,126,080 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\nm5a2wdm.sys [08/29/2008 05:41 PM | 00,128,000 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\n100325.sys [08/29/2008 05:41 PM | 00,132,695 | ---- | C] (802.11b) - C:\WINDOWS\System32\dllcache\netwlan5.sys [08/29/2008 05:42 PM | 00,026,153 | ---- | C] (Linksys) - C:\WINDOWS\System32\dllcache\pcmlm56.sys [08/29/2008 05:42 PM | 00,027,209 | ---- | C] (Ositech Communications, Inc.) - C:\WINDOWS\System32\dllcache\otc06x5.sys [08/29/2008 05:42 PM | 00,029,502 | ---- | C] (Marconi Communications, Inc.) - C:\WINDOWS\System32\dllcache\pca200e.sys [08/29/2008 05:42 PM | 00,029,769 | ---- | C] (AMD Inc.) - C:\WINDOWS\System32\dllcache\pcntn5m.sys [08/29/2008 05:42 PM | 00,030,282 | ---- | C] (AMD Inc.) - C:\WINDOWS\System32\dllcache\pcntn5hl.sys [08/29/2008 05:42 PM | 00,030,495 | ---- | C] (Linksys) - C:\WINDOWS\System32\dllcache\pc100nds.sys [08/29/2008 05:42 PM | 00,043,689 | ---- | C] (Ositech Communications, Inc.) - C:\WINDOWS\System32\dllcache\otceth5.sys [08/29/2008 05:42 PM | 00,054,186 | ---- | C] (Ositech Communications, Inc.) - C:\WINDOWS\System32\dllcache\otcsercb.sys [08/29/2008 05:42 PM | 00,054,528 | ---- | C] (Yamaha Corp.) - C:\WINDOWS\System32\dllcache\opl3sax.sys [08/29/2008 05:43 PM | 00,016,128 | ---- | C] (SCM Microsystems, Inc.) - C:\WINDOWS\System32\dllcache\pscr.sys [08/29/2008 05:43 PM | 00,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm2.sys [08/29/2008 05:43 PM | 00,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm3.sys [08/29/2008 05:43 PM | 00,035,328 | ---- | C] (AMD Inc.) - C:\WINDOWS\System32\dllcache\pcntpci5.sys [08/29/2008 05:43 PM | 00,086,016 | ---- | C] (PCtel, Inc.) - C:\WINDOWS\System32\dllcache\pctspk.exe [08/29/2008 05:43 PM | 00,128,286 | ---- | C] (PCTEL, INC.) - C:\WINDOWS\System32\dllcache\ptserli.sys [08/29/2008 05:43 PM | 00,169,984 | ---- | C] (Cisco Systems) - C:\WINDOWS\System32\dllcache\pcx500.sys [08/29/2008 05:43 PM | 00,175,104 | ---- | C] () - C:\WINDOWS\System32\dllcache\pintlcsa.dll [08/29/2008 05:43 PM | 00,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm2dll.dll [08/29/2008 05:43 PM | 00,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm3dd.dll [08/29/2008 05:44 PM | 00,009,216 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\rsmgrstr.dll [08/29/2008 05:44 PM | 00,019,017 | ---- | C] (Realtek Semiconductor Corporation) - C:\WINDOWS\System32\dllcache\rtl8029.sys [08/29/2008 05:44 PM | 00,037,563 | ---- | C] (RadioLAN) - C:\WINDOWS\System32\dllcache\rlnet5.sys [08/29/2008 05:44 PM | 00,079,104 | ---- | C] (Comtrol Corporation) - C:\WINDOWS\System32\dllcache\rocket.sys [08/29/2008 05:44 PM | 00,086,097 | ---- | C] (Xircom) - C:\WINDOWS\System32\dllcache\reslog32.dll [08/29/2008 05:44 PM | 00,112,574 | ---- | C] (PCTEL, INC.) - C:\WINDOWS\System32\dllcache\ptserlp.sys [08/29/2008 05:44 PM | 00,130,942 | ---- | C] (PCTEL, INC.) - C:\WINDOWS\System32\dllcache\ptserlv.sys [08/29/2008 05:44 PM | 00,714,762 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\r2mdmkxx.sys [08/29/2008 05:44 PM | 00,899,146 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\r2mdkxga.sys [08/29/2008 05:45 PM | 00,023,936 | ---- | C] (OMNIKEY AG) - C:\WINDOWS\System32\dllcache\sccmn50m.sys [08/29/2008 05:45 PM | 00,023,936 | ---- | C] (OMNIKEY AG) - C:\WINDOWS\System32\dllcache\sccmusbm.sys [08/29/2008 05:45 PM | 00,024,576 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rw430ext.dll [08/29/2008 05:45 PM | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rw330ext.dll [08/29/2008 05:45 PM | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rw450ext.dll [08/29/2008 05:45 PM | 00,041,216 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mt3d.sys [08/29/2008 05:45 PM | 00,061,504 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav3dm.sys [08/29/2008 05:45 PM | 00,062,496 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mtrio.dll [08/29/2008 05:45 PM | 00,077,824 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav4m.sys [08/29/2008 05:45 PM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia001.dll [08/29/2008 05:45 PM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia330.dll [08/29/2008 05:45 PM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia430.dll [08/29/2008 05:45 PM | 00,082,432 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia450.dll [08/29/2008 05:45 PM | 00,166,720 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3m.sys [08/29/2008 05:45 PM | 00,179,264 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav3d.dll [08/29/2008 05:45 PM | 00,182,272 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mt3d.dll [08/29/2008 05:45 PM | 00,198,400 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav4.dll [08/29/2008 05:45 PM | 00,210,496 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mvirge.dll [08/29/2008 05:45 PM | 00,495,616 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\sblfx.dll [08/29/2008 05:46 PM | 00,017,280 | ---- | C] (SCM Microsystems) - C:\WINDOWS\System32\dllcache\scr111.sys [08/29/2008 05:46 PM | 00,018,400 | ---- | C] (Micro Systemation) - C:\WINDOWS\System32\dllcache\sgsmld.sys [08/29/2008 05:46 PM | 00,032,768 | ---- | C] (SiS Corporation) - C:\WINDOWS\System32\dllcache\sisnic.sys [08/29/2008 05:46 PM | 00,036,480 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\sfmanm.sys [08/29/2008 05:46 PM | 00,098,080 | ---- | C] (Trident Microsystems Inc.) - C:\WINDOWS\System32\dllcache\sgiulnt5.sys [08/29/2008 05:46 PM | 00,161,568 | ---- | C] (Micro Systemation) - C:\WINDOWS\System32\dllcache\sgsmusb.sys [08/29/2008 05:46 PM | 00,386,560 | ---- | C] (Trident Microsystems Inc.) - C:\WINDOWS\System32\dllcache\sgiul50.dll [08/29/2008 05:47 PM | 00,024,576 | ---- | C] (SMC Networks, Inc.) - C:\WINDOWS\System32\dllcache\smc8000n.sys [08/29/2008 05:47 PM | 00,025,034 | ---- | C] (SMC Networks, Inc.) - C:\WINDOWS\System32\dllcache\smcpwr2n.sys [08/29/2008 05:47 PM | 00,035,913 | ---- | C] (SMC) - C:\WINDOWS\System32\dllcache\smcirda.sys [08/29/2008 05:47 PM | 00,058,368 | ---- | C] (Silicon Motion Inc.) - C:\WINDOWS\System32\dllcache\smiminib.sys [08/29/2008 05:47 PM | 00,063,547 | ---- | C] (Symbol Technologies) - C:\WINDOWS\System32\dllcache\sla30nd5.sys [08/29/2008 05:47 PM | 00,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) - C:\WINDOWS\System32\dllcache\skfpwin.sys [08/29/2008 05:47 PM | 00,094,698 | ---- | C] (SysKonnect GmbH.) - C:\WINDOWS\System32\dllcache\sk98xwin.sys [08/29/2008 05:47 PM | 00,147,200 | ---- | C] (Silicon Motion Inc.) - C:\WINDOWS\System32\dllcache\smidispb.dll [08/29/2008 05:48 PM | 00,016,896 | ---- | C] (SCM Microsystems, Inc.) - C:\WINDOWS\System32\dllcache\stcusb.sys [08/29/2008 05:48 PM | 00,019,072 | ---- | C] (Adaptec, Inc.) - C:\WINDOWS\System32\dllcache\sparrow.sys [08/29/2008 05:48 PM | 00,024,660 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\spxupchk.dll [08/29/2008 05:48 PM | 00,048,736 | ---- | C] (3Com) - C:\WINDOWS\System32\dllcache\srwlnd5.sys [08/29/2008 05:48 PM | 00,053,248 | ---- | C] (Stallion Technologies) - C:\WINDOWS\System32\dllcache\stlncoin.dll [08/29/2008 05:48 PM | 00,061,824 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\speed.sys [08/29/2008 05:48 PM | 00,106,584 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\spdports.dll [08/29/2008 05:48 PM | 00,155,648 | ---- | C] (Stallion Technologies) - C:\WINDOWS\System32\dllcache\stlnprop.dll [08/29/2008 05:48 PM | 00,285,760 | ---- | C] (Stallion Technologies) - C:\WINDOWS\System32\dllcache\stlnata.sys [08/29/2008 05:49 PM | 00,094,293 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\sxports.dll [08/29/2008 05:49 PM | 00,103,936 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\sx.sys [08/31/2008 01:39 AM | 00,085,969 | ---- | C] (GMER) - C:\WINDOWS\System32\drivers\gmer.sys [2 C:\WINDOWS\*.tmp files] [08/29/2008 04:45 PM | ---D | C] - C:\WINDOWS\5888428E699C4E71BF7194EE06B497DA.TMP [08/31/2008 01:39 AM | 00,000,080 | ---- | C] () - C:\WINDOWS\gmer_uninstall.cmd [08/31/2008 01:39 AM | 00,000,250 | ---- | C] () - C:\WINDOWS\gmer.ini [08/31/2008 01:39 AM | 00,811,008 | ---- | C] () - C:\WINDOWS\gmer.exe [08/31/2008 01:39 AM | 00,884,736 | ---- | C] () - C:\WINDOWS\gmer.dll [08/31/2008 04:18 AM | ---D | C] - C:\WINDOWS\ERUNT [08/28/2008 08:18 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Avira [08/31/2008 10:21 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Malwarebytes [08/28/2008 08:18 AM | 00,001,862 | ---- | C] () - C:\Documents and Settings\All Users\Desktop\AntiVir PE Classic.lnk [08/28/2008 08:18 AM | ---D | C] - C:\Program Files\Avira [08/31/2008 10:21 AM | ---D | C] - C:\Program Files\Malwarebytes' Anti-Malware ========== Files - Modified Within 30 days ========== [08/31/2008 02:01 AM | 00,066,048 | ---- | M] () - C:\mbr.exe [08/31/2008 04:22 AM | 00,000,686 | ---- | M] () - C:\WINDOWS\System32\drivers\etc\HOSTS [08/31/2008 01:39 AM | 00,085,969 | ---- | M] (GMER) - C:\WINDOWS\System32\drivers\gmer.sys [08/31/2008 02:37 AM | 00,137,472 | ---- | M] () - C:\WINDOWS\System32\drivers\PnkBstrK.sys [3 C:\WINDOWS\System32\*.tmp files] [08/31/2008 02:37 AM | 00,111,928 | ---- | M] () - C:\WINDOWS\System32\PnkBstrB.exe [08/31/2008 04:27 AM | 00,001,158 | ---- | M] () - C:\WINDOWS\System32\wpa.dbl [08/31/2008 04:32 AM | 00,000,246 | ---- | M] () - C:\WINDOWS\System\hpsysdrv.dat [2 C:\WINDOWS\*.tmp files] [08/11/2008 06:09 PM | 00,000,105 | ---- | M] () - C:\WINDOWS\muveeapp.INI [08/13/2008 03:02 AM | 00,001,374 | ---- | M] () - C:\WINDOWS\imsins.BAK [08/28/2008 08:19 AM | 00,001,031 | ---- | M] () - C:\WINDOWS\win.ini [08/31/2008 01:39 AM | 00,000,080 | ---- | M] () - C:\WINDOWS\gmer_uninstall.cmd [08/31/2008 01:39 AM | 00,884,736 | ---- | M] () - C:\WINDOWS\gmer.dll [08/31/2008 03:01 AM | 00,000,250 | ---- | M] () - C:\WINDOWS\gmer.ini [08/31/2008 04:25 AM | 00,002,048 | --S- | M] () - C:\WINDOWS\bootstat.dat [08/31/2008 04:25 AM | 00,000,006 | -H-- | M] () - C:\WINDOWS\tasks\SA.DAT [08/31/2008 04:25 AM | 00,000,492 | ---- | M] () - C:\WINDOWS\tasks\1-Click Maintenance.job [08/28/2008 08:18 AM | 00,001,862 | ---- | M] () - C:\Documents and Settings\All Users\Desktop\AntiVir PE Classic.lnk < End of report >
|
|
#34
August 31st, 2008, 03:32 PM
|
|||
|
|||
|
Malwarebytes' Anti-Malware 1.25
Database version: 1101 Windows 5.1.2600 Service Pack 2 10:26:34 AM 8/31/2008 mbam-log-08-31-2008 (10-26-34).txt Scan type: Quick Scan Objects scanned: 49270 Time elapsed: 3 minute(s), 25 second(s) Memory Processes Infected: 0 Memory Modules Infected: 0 Registry Keys Infected: 1 Registry Values Infected: 0 Registry Data Items Infected: 0 Folders Infected: 0 Files Infected: 2 Memory Processes Infected: (No malicious items detected) Memory Modules Infected: (No malicious items detected) Registry Keys Infected: HKEY_CLASSES_ROOT\WUSN.1 (Adware.WhenUSave) -> Quarantined and deleted successfully. Registry Values Infected: (No malicious items detected) Registry Data Items Infected: (No malicious items detected) Folders Infected: (No malicious items detected) Files Infected: C:\WINDOWS\system32\rlls.dll (Spyware.MarketScore) -> Quarantined and deleted successfully. C:\Documents and Settings\HP_Administrator\Local Settings\Temporary Internet Files\ijjistarter2FxB.exe (Trojan.Agent) -> Quarantined and deleted successfully. C:\WINDOWS\tasks\At25.job moved successfully. C:\WINDOWS\tasks\At26.job moved successfully. C:\WINDOWS\tasks\At27.job moved successfully. C:\WINDOWS\tasks\At28.job moved successfully. C:\WINDOWS\tasks\At29.job moved successfully. C:\WINDOWS\tasks\At30.job moved successfully. C:\WINDOWS\tasks\At31.job moved successfully. C:\WINDOWS\tasks\At32.job moved successfully. C:\WINDOWS\tasks\At33.job moved successfully. C:\WINDOWS\tasks\At34.job moved successfully. C:\WINDOWS\tasks\At35.job moved successfully. C:\WINDOWS\tasks\At36.job moved successfully. C:\WINDOWS\tasks\At37.job moved successfully. C:\WINDOWS\tasks\At38.job moved successfully. C:\WINDOWS\tasks\At40.job moved successfully. C:\WINDOWS\tasks\At41.job moved successfully. C:\WINDOWS\tasks\At42.job moved successfully. C:\WINDOWS\tasks\At43.job moved successfully. C:\WINDOWS\tasks\At44.job moved successfully. C:\WINDOWS\tasks\At45.job moved successfully. C:\WINDOWS\tasks\At46.job moved successfully. C:\WINDOWS\tasks\At47.job moved successfully. C:\WINDOWS\tasks\At48.job moved successfully. C:\WINDOWS\tasks\At1.job moved successfully. C:\WINDOWS\tasks\At10.job moved successfully. C:\WINDOWS\tasks\At11.job moved successfully. C:\WINDOWS\tasks\At12.job moved successfully. C:\WINDOWS\tasks\At13.job moved successfully. C:\WINDOWS\tasks\At14.job moved successfully. C:\WINDOWS\tasks\At15.job moved successfully. C:\WINDOWS\tasks\At16.job moved successfully. C:\WINDOWS\tasks\At17.job moved successfully. C:\WINDOWS\tasks\At18.job moved successfully. C:\WINDOWS\tasks\At19.job moved successfully. C:\WINDOWS\tasks\At2.job moved successfully. C:\WINDOWS\tasks\At20.job moved successfully. C:\WINDOWS\tasks\At21.job moved successfully. C:\WINDOWS\tasks\At22.job moved successfully. C:\WINDOWS\tasks\At23.job moved successfully. C:\WINDOWS\tasks\At24.job moved successfully. C:\WINDOWS\tasks\At3.job moved successfully. C:\WINDOWS\tasks\At4.job moved successfully. C:\WINDOWS\tasks\At5.job moved successfully. C:\WINDOWS\tasks\At6.job moved successfully. C:\WINDOWS\tasks\At7.job moved successfully. C:\WINDOWS\tasks\At8.job moved successfully. C:\WINDOWS\tasks\At9.job moved successfully. C:\WINDOWS\tasks\At39.job moved successfully. OTMoveIt2 by OldTimer - Version 1.0.4.3 log created on 08312008_101629
|
|
#35
August 31st, 2008, 11:33 PM
|
||||
|
||||
|
I need to check some registry values. Go to Start > Run and copy and paste the following command in the below code box and click ok.
Code:
regedit /e C:\look.txt "HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders" Code:
regedit /e C:\look1.txt "HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser"
|
|
#36
September 1st, 2008, 06:37 AM
|
|||
|
|||
|
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders] "SecurityProviders"="msapsspc.dll schannel.dll digest.dll msnsspc.dll" [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SaslProfiles] "GSSAPI"="Kerberos" [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL] "EventLogging"=dword:00000001 [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\DES 56/56] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\NULL] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\RC2 128/128] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\RC2 40/128] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\RC2 56/128] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\RC4 128/128] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\RC4 40/128] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\RC4 56/128] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Ciphers\Triple DES 168/168] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Hashes] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Hashes\MD5] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Hashes\SHA] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\KeyExchangeAlgorithms] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\KeyExchangeAlgorithms \Diffie-Hellman] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\KeyExchangeAlgorithms \PKCS] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\Multi-Protocol Unified Hello] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\Multi-Protocol Unified Hello\Client] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\Multi-Protocol Unified Hello\Server] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\PCT 1.0] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\PCT 1.0\Client] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\PCT 1.0\Server] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\SSL 2.0] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\SSL 2.0\Client] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\SSL 2.0\Server] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\SSL 3.0] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\SSL 3.0\Client] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\SSL 3.0\Server] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\TLS 1.0] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\TLS 1.0\Client] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\SCHANNEL\Protocols\TLS 1.0\Server] [HKEY_LOCAL_MACHINE\system\currentcontrolset\contro l\securityproviders\WDigest] "Lifetime"=dword:00008ca0 "Negotiate"=dword:00000000 "UTF8HTTP"=dword:00000001 "UTF8SASL"=dword:00000001 2nd Windows Registry Editor Version 5.00 [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser] "{01E04581-4EEE-11D0-BFE9-00AA005B4383}"=hex:81,45,e0,01,ee,4e,d0,11,bf,e9,0 0,\ aa,00,5b,43,83,10,00,00,00,00,00,00,00,01,e0,32,f4 ,01,00,00,00 "{5CBE2611-C31B-401F-89BC-4CBB25E853D7}"=hex:11,26,be,5c,1b,c3,1f,40,89,bc,4 c,\ bb,25,e8,53,d7 "ITBarLayout"=hex:11,00,00,00,4c,00,00,00,00,00,00 ,00,24,00,00,00,1b,00,00,00,\ 64,00,00,00,01,00,00,00,20,07,00,00,a0,0f,00,00,05 ,00,00,00,62,05,00,00,26,\ 00,00,00,02,00,00,00,21,07,00,00,a0,0f,00,00,04,00 ,00,00,21,01,00,00,a0,0f,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00,00,00,00,00,00,00,\ 00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00,00 ,00,00
|
|
#37
September 1st, 2008, 07:32 AM
|
||||
|
||||
|
I have to make some repairs. Please create a restore point and go here and download POne.reg to your Desktop. Doubleclick on it and ok the prompt to merge with your registry.
Please reboot and post a new OTViewIt log.
|
|
#38
September 1st, 2008, 09:34 AM
|
|||
|
|||
|
OTViewIt logfile created on: 9/1/2008 4:32:53 AM - Run 4
OTViewIt by OldTimer - Version 1.0.1.7 Folder = C:\Documents and Settings\HP_Administrator\Desktop Windows XP Media Center Edition Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy 1015.29 Mb Total Physical Memory | 651.58 Mb Available Physical Memory | 64.18% Memory free 2.38 Gb Paging File | 2.13 Gb Available in Paging File | 89.42% Paging File free Paging file location(s): C:\pagefile.sys 1524 3048; %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 178.30 Gb Total Space | 113.46 Gb Free Space | 63.63% Space Free | Partition Type: NTFS Drive D: | 8.00 Gb Total Space | 0.91 Gb Free Space | 11.42% Space Free | Partition Type: FAT32 E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: YOUR-B27FB1C401 Current User Name: Possible Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Whitelist: On ===== Processes - Non-Microsoft Only ===== [06/08/2005 01:59 PM | 00,077,824 | ---- | M] (Intel Corporation) - C:\WINDOWS\system32\hkcmd.exe [06/08/2005 02:03 PM | 00,114,688 | ---- | M] (Intel Corporation) - C:\WINDOWS\system32\igfxpers.exe [09/28/2005 02:05 AM | 00,098,304 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\QuickTime\qttask.exe [01/24/2005 05:56 AM | 00,544,768 | ---- | M] (Motorola Inc.) - C:\WINDOWS\sm56hlpr.exe [09/26/2007 12:51 AM | 00,066,872 | ---- | M] () - C:\WINDOWS\system32\PnkBstrA.exe ===== Win32 Services - Non-Microsoft Only ===== (iPodService) iPod Service [Disabled | Stopped] [05/05/2005 03:21 AM | 00,327,680 | ---- | M] (Apple Computer, Inc.) - C:\Program Files\iPod\bin\iPodService.exe (PnkBstrA) PnkBstrA [Auto | Running] [09/26/2007 12:51 AM | 00,066,872 | ---- | M] () - C:\WINDOWS\system32\PnkBstrA.exe (TuneUp.Defrag) TuneUp Drive Defrag Service [Disabled | Stopped] [04/06/2008 05:29 AM | 00,307,968 | ---- | M] (TuneUp Software GmbH) - C:\WINDOWS\system32\TuneUpDefragService.exe ===== Driver Services - Non-Microsoft Only ===== (catchme) catchme [On_Demand | Stopped] File not found - C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\catchme.sys (ftsata2) ftsata2 [Boot | Stopped] File not found - C:\WINDOWS\system32\DRIVERS\ftsata2.sys (giveio) giveio [Boot | Running] [04/03/1996 03:33 PM | 00,005,248 | ---- | M] () - C:\WINDOWS\system32\giveio.sys (gmer) gmer [On_Demand | Stopped] [08/31/2008 01:39 AM | 00,085,969 | ---- | M] (GMER) - C:\WINDOWS\system32\drivers\gmer.sys (ialm) ialm [On_Demand | Running] [06/08/2005 02:27 PM | 01,050,140 | ---- | M] (Intel Corporation) - C:\WINDOWS\system32\drivers\ialmnt5.sys (iaStor) Intel RAID Controller [Boot | Running] [03/09/2005 09:09 PM | 00,870,912 | ---- | M] (Intel Corporation) - C:\WINDOWS\system32\drivers\iaStor.sys (ltmodem5) LT Modem Driver [On_Demand | Stopped] [08/04/2004 08:41 AM | 00,606,684 | ---- | M] (LT) - C:\WINDOWS\system32\drivers\ltmdmnt.sys (mbmiodrvr) mbmiodrvr [Auto | Running] [04/10/2004 09:42 AM | 00,002,944 | ---- | M] (cansoft@livewiredev.com) - C:\WINDOWS\system32\mbmiodrvr.sys (mbr) mbr [On_Demand | Stopped] File not found - C:\DOCUME~1\HP_ADM~1\LOCALS~1\Temp\mbr.sys (RTL8023xp) Realtek 10/100/1000 NIC Family all in one NDIS XP Driver [On_Demand | Running] [03/04/2005 02:10 PM | 00,074,496 | ---- | M] (Realtek Semiconductor Corporation ) - C:\WINDOWS\system32\drivers\Rtlnicxp.sys (rtl8139) Realtek RTL8139(A/B/C)-based PCI Fast Ethernet Adapter NT Driver [On_Demand | Stopped] [08/04/2004 08:31 AM | 00,020,992 | ---- | M] (Realtek Semiconductor Corporation) - C:\WINDOWS\system32\drivers\RTL8139.sys (samhid) samhid [On_Demand | Stopped] [01/07/2006 12:09 PM | 00,007,548 | ---- | M] () - C:\WINDOWS\system32\drivers\Samhid.sys (smserial) smserial [On_Demand | Running] [01/25/2005 09:56 AM | 00,923,863 | ---- | M] (Motorola Inc.) - C:\WINDOWS\system32\drivers\smserial.sys (speedfan) speedfan [Boot | Running] [09/24/2006 09:28 AM | 00,005,248 | ---- | M] (Windows (R) 2000 DDK provider) - C:\WINDOWS\system32\speedfan.sys (sptd) sptd [Boot | Running] [10/22/2006 05:00 AM | 00,611,064 | ---- | M] () - C:\WINDOWS\system32\drivers\sptd.sys (XDva016) XDva016 [On_Demand | Stopped] File not found - C:\WINDOWS\system32\XDva016.sys (XDva024) XDva024 [On_Demand | Stopped] File not found - C:\WINDOWS\system32\XDva024.sys (XTrapD12) XTrapD12 [On_Demand | Stopped] File not found - C:\WINDOWS\system32\XTrapD12.sys ========== Run Keys ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\Run] "avgnt" = "C:\Program Files\Avira\AntiVir PersonalEdition Classic\avgnt.exe" /min [06/12/2008 02:28 PM | 00,266,497 | ---- | M] (Avira GmbH) "High Definition Audio Property Page Shortcut" = HDAShCut.exe [01/08/2005 03:07 AM | 00,061,952 | ---- | M] (Windows (R) Server 2003 DDK provider) "HotKeysCmds" = C:\WINDOWS\system32\hkcmd.exe [06/08/2005 01:59 PM | 00,077,824 | ---- | M] (Intel Corporation) "HP Software Update" = C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [05/08/2007 04:24 PM | 00,054,840 | ---- | M] (Hewlett-Packard) "HPBootOp" = "C:\Program Files\Hewlett-Packard\HP Boot Optimizer\HPBootOp.exe" /run [02/26/2005 01:34 AM | 00,245,760 | ---- | M] (Hewlett-Packard Company) "HPHUPD08" = c:\Program Files\HP\Digital Imaging\{33D6CC28-9F75-4d1b-A11D-98895B3A3729}\hphupd08.exe [06/02/2005 02:35 AM | 00,049,152 | ---- | M] (Hewlett-Packard) "KBD" = C:\HP\KBD\KBD.EXE [02/02/2005 04:44 PM | 00,061,440 | ---- | M] (Hewlett-Packard Company) "Persistence" = C:\WINDOWS\system32\igfxpers.exe [06/08/2005 02:03 PM | 00,114,688 | ---- | M] (Intel Corporation) "QuickTime Task" = "C:\Program Files\QuickTime\qttask.exe" -atboottime [09/28/2005 02:05 AM | 00,098,304 | ---- | M] (Apple Computer, Inc.) "SMSERIAL" = sm56hlpr.exe [01/24/2005 05:56 AM | 00,544,768 | ---- | M] (Motorola Inc.) "SunJavaUpdateSched" = "C:\Program Files\Java\jre1.6.0_05\bin\jusched.exe" [02/22/2008 04:25 AM | 00,144,784 | ---- | M] (Sun Microsystems, Inc.) "TkBellExe" = "C:\Program Files\Common Files\Real\Update_OB\realsched.exe" -osboot [04/12/2008 10:15 PM | 00,185,896 | ---- | M] (RealNetworks, Inc.) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = Reg Error: Value load does not exist or could not be read. "run" = Reg Error: Value run does not exist or could not be read. [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = "run" = Reg Error: Value run does not exist or could not be read. [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = "run" = Reg Error: Value run does not exist or could not be read. [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = "run" = Reg Error: Value run does not exist or could not be read. [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = "run" = Reg Error: Value run does not exist or could not be read. [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = "run" = Reg Error: Value run does not exist or could not be read. [HKEY_USERS\S-1-5-21-3168850613-2940384695-3104939514-1008\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows] "load" = "run" = Reg Error: Value run does not exist or could not be read. ========== Startup Folders ========== [Administrator Startup Folder - C:\Documents and Settings\Administrator\Start Menu\Programs\Startup] [All Users Startup Folder - C:\Documents and Settings\All Users\Start Menu\Programs\Startup] [Default User Startup Folder - C:\Documents and Settings\Default User\Start Menu\Programs\Startup] [HP_Administrator Startup Folder - C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup] ========== BHO's ========== [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] HKLM CLSID: (Adobe PDF Reader Link Helper) - [12/18/2006 05:16 AM | 00,059,032 | ---- | M] (Adobe Systems Incorporated) C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{3049C3E9-B461-4BC5-8870-4C09146192CA}] HKLM CLSID: (RealPlayer Download and Record Plugin for Internet Explorer) - [04/12/2008 10:15 PM | 00,308,856 | ---- | M] (RealPlayer) C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\Curr entVersion\Explorer\Browser Helper Objects\{761497BB-D6F0-462C-B6EB-D4DAF1D92D43}] HKLM CLSID: (SSVHelper Class) - [02/22/2008 04:25 AM | 00,509,328 | ---- | M] (Sun Microsystems, Inc.) C:\Program Files\Java\jre1.6.0_05\bin\ssv.dll ========== Toolbars ========== [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser] "{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened. [HKEY_USERS\S-1-5-21-3168850613-2940384695-3104939514-1008\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser] "{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" HKLM CLSID: (Reg Error: Key does not exist or could not be opened.) - File not found Reg Error: Key does not exist or could not be opened. ========== AppInit_Dlls ========== ========== HKLM Security Providers ========== ========== HKLM Winlogon Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell] "Explorer.exe" - [06/13/2007 06:23 AM | 01,033,216 | ---- | M] (Microsoft Corporation) C:\WINDOWS\explorer.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UserInit] "C:\WINDOWS\system32\userinit.exe" - [08/10/2004 03:00 PM | 00,024,576 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\userinit.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\UIHost] "logonui.exe" - [08/10/2004 03:00 PM | 00,514,560 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\logonui.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\VMApplet] "rundll32 shell32" - [10/25/2007 11:34 PM | 08,460,288 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\shell32.dll "Control_RunDLL "sysdm.cpl"" - [08/10/2004 03:00 PM | 00,298,496 | ---- | M] (Microsoft Corporation) C:\WINDOWS\system32\sysdm.cpl ========== User's Winlogon Settings ========== ========== Winlogon Notify Settings ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\igfxcui] "DllName" = C:\WINDOWS\system32\igfxdev.dll [06/08/2005 01:58 PM | 00,131,072 | ---- | M] (Intel Corporation) ========== Policies ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\policies\Explorer] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\Curr entVersion\policies\System] "dontdisplaylastusername" = 0 "legalnoticecaption" = "legalnoticetext" = "shutdownwithoutlogon" = 1 "undockwithoutlogon" = 1 "InstallVisualStyle" = C:\WINDOWS\Resources\Themes\Royale\Royale.mss File not found "InstallTheme" = C:\WINDOWS\Resources\Themes\Royale.the File not found [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\policies\Explorer] "NoDriveTypeAutoRun" = 145 "NoBandCustomize" = 0 "NoMovingBands" = 0 "NoCloseDragDropBands" = 0 "NoSetTaskbar" = 0 "NoToolbarsOnTaskbar" = 0 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\policies\System] [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\Cur rentVersion\policies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\Cur rentVersion\policies\System] [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System] [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System] Unable to open key or key not present! [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\Explorer] "NoDriveTypeAutoRun" = 145 [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\polic ies\System] Unable to open key or key not present! [HKEY_USERS\S-1-5-21-3168850613-2940384695-3104939514-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\Explorer] "NoDriveTypeAutoRun" = 145 "NoBandCustomize" = 0 "NoMovingBands" = 0 "NoCloseDragDropBands" = 0 "NoSetTaskbar" = 0 "NoToolbarsOnTaskbar" = 0 [HKEY_USERS\S-1-5-21-3168850613-2940384695-3104939514-1008\SOFTWARE\Microsoft\Windows\CurrentVersion\pol icies\System] ========== Lsa Authentication Packages ========== ========== Lsa Security Packages ========== ========== Desktop Components ==========
|
|
#39
September 1st, 2008, 09:35 AM
|
|||
|
|||
|
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Desktop\Components\0]
"FriendlyName" = "My Current Home Page" "Source" = "About:Home" "SubscribedURL" = "About:Home" ========== Safeboot Options ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Contro l\SafeBoot] "AlternateShell" = cmd.exe ========== Disabled MsConfig Items ========== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\services] "TuneUp.Defrag" = 3 "LightScribeService" = 2 "iPodService" = 3 "Fax" = 3 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^Adobe Reader Speed Launch.lnk] "path" = C:\Documents and Settings\All Users\Start Menu\Programs\Startup\Adobe Reader Speed Launch.lnk File not found "backup" = C:\WINDOWS\pss\Adobe Reader Speed Launch.lnk File not found "location" = Common Startup "command" = C:\Program Files\Adobe\Acrobat 7.0\Reader\reader_sl.exe [09/23/2005 11:05 PM | 00,029,696 | ---- | M] (Adobe Systems Incorporated) "item" = Adobe Reader Speed Launch [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^All Users^Start Menu^Programs^Startup^HP Digital Imaging Monitor.lnk] "path" = C:\Documents and Settings\All Users\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk File not found "backup" = C:\WINDOWS\pss\HP Digital Imaging Monitor.lnk File not found "location" = Common Startup "command" = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe [05/12/2005 09:23 AM | 00,282,624 | ---- | M] (Hewlett-Packard Co.) "item" = HP Digital Imaging Monitor [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupfolder\C:^Documents and Settings^HP_Administrator^Start Menu^Programs^Startup^Cyber-shot Viewer Media Check Tool.lnk] "path" = C:\Documents and Settings\HP_Administrator\Start Menu\Programs\Startup\Cyber-shot Viewer Media Check Tool.lnk File not found "backup" = C:\WINDOWS\pss\Cyber-shot Viewer Media Check Tool.lnk File not found "location" = Startup "command" = C:\Program Files\Sony\Sony Picture Utility\VolumeWatcher\SPUVolumeWatcher.exe [10/28/2005 03:12 PM | 00,155,648 | ---- | M] (Sony Corporation) "item" = Cyber-shot Viewer Media Check Tool [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = "hkey" = HKCU "command" = "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Aim6] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = AOLLaunch "hkey" = HKCU "command" = C:\Program Files\Common Files\AOL\Launch\aollaunch.exe [12/15/2005 09:38 PM | 00,050,792 | ---- | M] (America Online, Inc.) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\googletalk] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = googletalk "hkey" = HKCU "command" = C:\Program Files\Google\Google Talk\googletalk.exe File not found "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\HostManager] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = AOLHostManager "hkey" = HKLM "command" = C:\Program Files\Common Files\AOL\1141872391\ee\AOLHostManager.exe [12/15/2005 09:38 PM | 00,013,416 | ---- | M] (America Online, Inc.) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\MSMSGS] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = msmsgs "hkey" = HKCU "command" = C:\Program Files\Messenger\msmsgs.exe [10/13/2004 07:24 PM | 01,694,208 | ---- | M] (Microsoft Corporation) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\PCDrProfiler] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = "hkey" = HKLM "command" = "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\TkBellExe] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = realsched "hkey" = HKLM "command" = C:\Program Files\Common Files\Real\Update_OB\realsched.exe [04/12/2008 10:15 PM | 00,185,896 | ---- | M] (RealNetworks, Inc.) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\updateMgr] "key" = SOFTWARE\Microsoft\Windows\CurrentVersion\Run "item" = AdobeUpdateManager "hkey" = HKCU "command" = C:\Program Files\Adobe\Acrobat 7.0\Reader\AdobeUpdateManager.exe [03/30/2006 05:45 PM | 00,313,472 | R--- | M] (Adobe Systems Incorporated) "inimapping" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\MSConfig\state] "system.ini" = 0 "win.ini" = 0 "bootini" = 0 "services" = 2 "startup" = 2 ========== CDRom AutoRun Settings ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Cdrom] "AutoRun" = 1 ========== Autorun Files on Drives ========== AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | ] [09/28/2005 02:09 AM | 00,000,100 | ---- | M] () C:\AUTOEXEC.BAT [ NTFS ] AUTOEXEC.BAT [] [07/28/2001 05:07 AM | 00,000,000 | -HS- | M] () D:\AUTOEXEC.BAT [ FAT32 ] Autorun.inf [[AUTORUN] | ShellExecute=Info.exe protect.ed 480 480 | ] [04/30/2004 09:01 PM | 00,000,053 | -HS- | M] () D:\Autorun.inf [ FAT32 ] ========== MountPoints2 ========== [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{009a82f9-d3bc-11db-8dbc-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{051d8e46-9750-11db-8db8-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{af221b6f-bd0f-11db-8dba-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{af221b75-bd0f-11db-8dba-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{c7dea048-c1c8-11db-8dbb-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{df4591b8-8279-11db-8db5-0013d4e9e658}\Shell] "" = None [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\Curre ntVersion\Explorer\MountPoints2\{e619c920-81a8-11db-8db4-0013d4e9e658}\Shell] "" = None ========== DNS Name Servers ========== [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\Adapters\{24C35E9D-43DE-47B3-8C8D-C6AC403DF807}] Servers: | Description: Realtek RTL8139 Family PCI Fast Ethernet NIC [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\Adapters\{B43D45C4-246C-4B18-8A68-6B1D4349FF5E}] Servers: | Description: 1394 Net Adapter [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Tcpip\Parameters\Adapters\{F2EA6E95-22A4-4FA3-AC0B-59DAE1720471}] Servers: | Description: Realtek RTL8139/810x Family Fast Ethernet NIC ========== Hosts File ========== HOSTS File = (686 bytes) - C:\WINDOWS\System32\drivers\etc\Hosts First 25 entries... 127.0.0.1 localhost ========== Files/Folders - Created Within 30 days ========== [08/31/2008 02:01 AM | 00,066,048 | ---- | C] () - C:\mbr.exe [08/31/2008 04:17 AM | ---D | C] - C:\SDFix [08/31/2008 10:16 AM | ---D | C] - C:\_OTMoveIt [08/29/2008 05:31 PM | 00,004,639 | ---- | C] () - C:\WINDOWS\System32\dllcache\mplayer2.exe [08/29/2008 05:31 PM | 00,009,472 | ---- | C] () - C:\WINDOWS\System32\dllcache\ativmdcd.sys [08/29/2008 05:31 PM | 00,010,240 | ---- | C] () - C:\WINDOWS\System32\dllcache\atipcxxx.sys [08/29/2008 05:31 PM | 00,010,880 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\admjoy.sys [08/29/2008 05:31 PM | 00,016,969 | ---- | C] (AmbiCom, Inc.) - C:\WINDOWS\System32\dllcache\amb8002.sys [08/29/2008 05:31 PM | 00,017,152 | ---- | C] () - C:\WINDOWS\System32\dllcache\atitunep.sys [08/29/2008 05:31 PM | 00,017,152 | ---- | C] () - C:\WINDOWS\System32\dllcache\atitvsnd.sys [08/29/2008 05:31 PM | 00,019,456 | ---- | C] () - C:\WINDOWS\System32\dllcache\ativttxx.sys [08/29/2008 05:31 PM | 00,020,160 | ---- | C] (ADMtek Incorporated) - C:\WINDOWS\System32\dllcache\adm8511.sys [08/29/2008 05:31 PM | 00,023,552 | ---- | C] () - C:\WINDOWS\System32\dllcache\atixbar.sys [08/29/2008 05:31 PM | 00,026,624 | ---- | C] () - C:\WINDOWS\System32\dllcache\ativxbar.sys [08/29/2008 05:31 PM | 00,026,880 | ---- | C] () - C:\WINDOWS\System32\dllcache\atirtsnd.sys [08/29/2008 05:31 PM | 00,036,128 | ---- | C] (3Dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\banshee.sys [08/29/2008 05:31 PM | 00,036,992 | ---- | C] (Aztech Systems Ltd) - C:\WINDOWS\System32\dllcache\aztw2320.sys [08/29/2008 05:31 PM | 00,037,568 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\avmwan.sys [08/29/2008 05:31 PM | 00,046,112 | ---- | C] (Adaptec, Inc ) - C:\WINDOWS\System32\dllcache\adptsf50.sys [08/29/2008 05:31 PM | 00,046,464 | ---- | C] () - C:\WINDOWS\System32\dllcache\atibt829.sys [08/29/2008 05:31 PM | 00,049,920 | ---- | C] () - C:\WINDOWS\System32\dllcache\atirtcap.sys [08/29/2008 05:31 PM | 00,061,440 | ---- | C] (Color Flatbed Scanner) - C:\WINDOWS\System32\dllcache\acerscad.dll [08/29/2008 05:31 PM | 00,077,568 | ---- | C] (ATI Technologies, Inc.) - C:\WINDOWS\System32\dllcache\ati.sys [08/29/2008 05:31 PM | 00,084,480 | ---- | C] (VIA Technologies, Inc.) - C:\WINDOWS\System32\dllcache\ac97via.sys [08/29/2008 05:31 PM | 00,087,552 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\avmcoxp.dll [08/29/2008 05:31 PM | 00,089,952 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\b1cbase.sys [08/29/2008 05:31 PM | 00,096,256 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\ac97intc.sys [08/29/2008 05:31 PM | 00,097,354 | ---- | C] (Bay Networks, Inc.) - C:\WINDOWS\System32\dllcache\aspndis3.sys [08/29/2008 05:31 PM | 00,098,304 | ---- | C] (Aureal Semiconductor) - C:\WINDOWS\System32\dllcache\a3d.dll [08/29/2008 05:31 PM | 00,144,384 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\avmenum.dll [08/29/2008 05:31 PM | 00,148,352 | ---- | C] (3dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\3dfxvsm.sys [08/29/2008 05:31 PM | 00,297,728 | ---- | C] (Silicon Integrated Systems Corp.) - C:\WINDOWS\System32\dllcache\ac97sis.sys [08/29/2008 05:31 PM | 00,342,336 | ---- | C] (3Dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\banshee.dll [08/29/2008 05:31 PM | 00,462,848 | ---- | C] (Aureal Inc.) - C:\WINDOWS\System32\dllcache\a3dapi.dll [08/29/2008 05:31 PM | 00,553,984 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\adm8820.sys [08/29/2008 05:31 PM | 00,584,448 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\adm8810.sys [08/29/2008 05:31 PM | 00,689,216 | ---- | C] (3dfx Interactive, Inc.) - C:\WINDOWS\System32\dllcache\3dfxvs.dll [08/29/2008 05:31 PM | 00,747,392 | ---- | C] (Aureal, Inc.) - C:\WINDOWS\System32\dllcache\adm8830.sys [08/29/2008 05:31 PM | 00,762,780 | ---- | C] (3Com, Inc.) - C:\WINDOWS\System32\dllcache\3cwmcru.sys [08/29/2008 05:32 PM | 00,002,944 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brfilt.sys [08/29/2008 05:32 PM | 00,003,168 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brparimg.sys [08/29/2008 05:32 PM | 00,003,968 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brfiltup.sys [08/29/2008 05:32 PM | 00,005,120 | ---- | C] (Brother Industries,Ltd.) - C:\WINDOWS\System32\dllcache\brscnrsm.dll [08/29/2008 05:32 PM | 00,009,728 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brcoinst.dll [08/29/2008 05:32 PM | 00,009,728 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brserif.dll [08/29/2008 05:32 PM | 00,010,368 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brusbscn.sys [08/29/2008 05:32 PM | 00,011,008 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brusbmdm.sys [08/29/2008 05:32 PM | 00,012,160 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brfiltlo.sys [08/29/2008 05:32 PM | 00,012,800 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brevif.dll [08/29/2008 05:32 PM | 00,015,360 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmfbidi.dll [08/29/2008 05:32 PM | 00,019,456 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brbidiif.dll [08/29/2008 05:32 PM | 00,020,736 | ---- | C] (OMNIKEY AG) - C:\WINDOWS\System32\dllcache\cmbp0wdm.sys [08/29/2008 05:32 PM | 00,021,530 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\ce2n5.sys [08/29/2008 05:32 PM | 00,022,044 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cem28n5.sys [08/29/2008 05:32 PM | 00,022,044 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cem33n5.sys [08/29/2008 05:32 PM | 00,027,164 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\ce3n5.sys [08/29/2008 05:32 PM | 00,029,696 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmflpt.dll [08/29/2008 05:32 PM | 00,031,529 | ---- | C] (BreezeCOM) - C:\WINDOWS\System32\dllcache\brzwlan.sys [08/29/2008 05:32 PM | 00,032,256 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmfrsmg.exe [08/29/2008 05:32 PM | 00,032,256 | ---- | C] (Eicon Technology Corporation) - C:\WINDOWS\System32\dllcache\diapi2NT.dll [08/29/2008 05:32 PM | 00,037,916 | ---- | C] (Fast Ethernet Controller Provider) - C:\WINDOWS\System32\dllcache\cb102.sys [08/29/2008 05:32 PM | 00,039,552 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brparwdm.sys [08/29/2008 05:32 PM | 00,039,680 | ---- | C] (Silicom Ltd.) - C:\WINDOWS\System32\dllcache\cb325.sys [08/29/2008 05:32 PM | 00,041,472 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\brmfusb.dll [08/29/2008 05:32 PM | 00,046,108 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cben5.sys [08/29/2008 05:32 PM | 00,049,182 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cem56n5.sys [08/29/2008 05:32 PM | 00,054,528 | ---- | C] (Philips Semiconductors GmbH) - C:\WINDOWS\System32\dllcache\cap7146.sys [08/29/2008 05:32 PM | 00,060,416 | ---- | C] (Brother Industries Ltd.) - C:\WINDOWS\System32\dllcache\brserwdm.sys [08/29/2008 05:32 PM | 00,164,923 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\diapi2.sys [08/29/2008 05:32 PM | 00,173,568 | ---- | C] () - C:\WINDOWS\System32\dllcache\chtskf.dll [08/29/2008 05:32 PM | 00,272,640 | ---- | C] (RAVISENT Technologies Inc.) - C:\WINDOWS\System32\dllcache\cinemclc.sys [08/29/2008 05:32 PM | 00,714,698 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\cbmdmkxx.sys [08/29/2008 05:32 PM | 00,871,388 | ---- | C] (BCM) - C:\WINDOWS\System32\dllcache\bcmdm.sys [08/29/2008 05:32 PM | 00,980,034 | ---- | C] (Xircom) - C:\WINDOWS\System32\dllcache\cicap.sys [08/29/2008 05:33 PM | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwbase.sys [08/29/2008 05:33 PM | 00,003,072 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwbmidi.sys [08/29/2008 05:33 PM | 00,003,584 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwcosnt5.sys [08/29/2008 05:33 PM | 00,003,712 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\ctljystk.sys [08/29/2008 05:33 PM | 00,004,096 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\ctwdm32.dll [08/29/2008 05:33 PM | 00,006,216 | ---- | C] () - C:\WINDOWS\System32\dllcache\divaci.dll [08/29/2008 05:33 PM | 00,006,729 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\disrvci.dll [08/29/2008 05:33 PM | 00,006,912 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\ctlfacem.sys [08/29/2008 05:33 PM | 00,020,928 | ---- | C] (Digital Networks, LLC) - C:\WINDOWS\System32\dllcache\defpa.sys [08/29/2008 05:33 PM | 00,021,533 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\cpqndis5.sys [08/29/2008 05:33 PM | 00,024,064 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\devldr32.exe [08/29/2008 05:33 PM | 00,024,648 | ---- | C] (D-Link) - C:\WINDOWS\System32\dllcache\dfe650.sys [08/29/2008 05:33 PM | 00,024,649 | ---- | C] (D-Link) - C:\WINDOWS\System32\dllcache\dfe650d.sys
|
|
#40
September 1st, 2008, 09:35 AM
|
|||
|
|||
|
[08/29/2008 05:33 PM | 00,029,768 | ---- | C] () - C:\WINDOWS\System32\dllcache\divasu.dll
[08/29/2008 05:33 PM | 00,031,305 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\disrvpp.dll [08/29/2008 05:33 PM | 00,037,962 | ---- | C] () - C:\WINDOWS\System32\dllcache\divaprop.dll [08/29/2008 05:33 PM | 00,038,985 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\disrvsu.dll [08/29/2008 05:33 PM | 00,048,640 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwrwdm.sys [08/29/2008 05:33 PM | 00,060,970 | ---- | C] (Compaq Computer Corp.) - C:\WINDOWS\System32\dllcache\cpqtrnd5.sys [08/29/2008 05:33 PM | 00,063,208 | ---- | C] (Intel Corporation.) - C:\WINDOWS\System32\dllcache\dc21x4.sys [08/29/2008 05:33 PM | 00,072,832 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwbwdm.sys [08/29/2008 05:33 PM | 00,091,305 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\dimaint.sys [08/29/2008 05:33 PM | 00,093,952 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwcwdm.sys [08/29/2008 05:33 PM | 00,096,256 | ---- | C] (Copyright (C) Creative Technology Ltd. 1994-2001) - C:\WINDOWS\System32\dllcache\ctlsb16.sys [08/29/2008 05:33 PM | 00,111,872 | ---- | C] (Crystal Semiconductor Corp.) - C:\WINDOWS\System32\dllcache\cwcspud.sys [08/29/2008 05:33 PM | 00,117,760 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\d100ib5.sys [08/29/2008 05:33 PM | 00,216,064 | ---- | C] (COMPAQ Inc.) - C:\WINDOWS\System32\dllcache\cpscan.dll [08/29/2008 05:33 PM | 00,236,060 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\ditrace.exe [08/29/2008 05:33 PM | 00,249,856 | ---- | C] (ComtrolŪ Corporation) - C:\WINDOWS\System32\dllcache\ctmasetp.dll [08/29/2008 05:33 PM | 00,256,512 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\devcon32.dll [08/29/2008 05:34 PM | 00,018,503 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\epro4.sys [08/29/2008 05:34 PM | 00,019,594 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\e100isa4.sys [08/29/2008 05:34 PM | 00,026,698 | ---- | C] (D-Link Corporation) - C:\WINDOWS\System32\dllcache\dlh5xnd5.sys [08/29/2008 05:34 PM | 00,028,062 | ---- | C] (National Semiconductor Coproration) - C:\WINDOWS\System32\dllcache\dp83820.sys [08/29/2008 05:34 PM | 00,029,696 | ---- | C] (CNet Technology, Inc. ) - C:\WINDOWS\System32\dllcache\dm9pci5.sys [08/29/2008 05:34 PM | 00,037,120 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\es1370mp.sys [08/29/2008 05:34 PM | 00,040,704 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\es1371mp.sys [08/29/2008 05:34 PM | 00,050,719 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\e1000nt5.sys [08/29/2008 05:34 PM | 00,072,192 | ---- | C] (ESS Technology Inc.) - C:\WINDOWS\System32\dllcache\es1969.sys [08/29/2008 05:34 PM | 00,117,760 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\e100b325.sys [08/29/2008 05:34 PM | 00,283,904 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\emu10k1m.sys [08/29/2008 05:34 PM | 00,334,208 | ---- | C] (Yamaha Corp.) - C:\WINDOWS\System32\dllcache\ds1wdm.sys [08/29/2008 05:34 PM | 00,952,007 | ---- | C] (Eicon Technology) - C:\WINDOWS\System32\dllcache\diwan.sys [08/29/2008 05:35 PM | 00,011,850 | ---- | C] (FUJITSU LIMITED) - C:\WINDOWS\System32\dllcache\f3ab18xj.sys [08/29/2008 05:35 PM | 00,012,362 | ---- | C] (FUJITSU LIMITED) - C:\WINDOWS\System32\dllcache\f3ab18xi.sys [08/29/2008 05:35 PM | 00,016,998 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\ex10.sys [08/29/2008 05:35 PM | 00,024,618 | ---- | C] (NETGEAR) - C:\WINDOWS\System32\dllcache\fa410nd5.sys [08/29/2008 05:35 PM | 00,027,165 | ---- | C] (VIA Technologies, Inc. ) - C:\WINDOWS\System32\dllcache\fetnd5.sys [08/29/2008 05:35 PM | 00,031,744 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esucmd.dll [08/29/2008 05:35 PM | 00,034,173 | ---- | C] (Marconi Communications, Inc.) - C:\WINDOWS\System32\dllcache\forehe.sys [08/29/2008 05:35 PM | 00,034,816 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuimg.dll [08/29/2008 05:35 PM | 00,043,008 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esucm.dll [08/29/2008 05:35 PM | 00,045,056 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esunid.dll [08/29/2008 05:35 PM | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuni.dll [08/29/2008 05:35 PM | 00,045,568 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esunib.dll [08/29/2008 05:35 PM | 00,057,856 | ---- | C] (SEIKO EPSON CORP.) - C:\WINDOWS\System32\dllcache\esuimgd.dll [08/29/2008 05:35 PM | 00,094,208 | ---- | C] () - C:\WINDOWS\System32\dllcache\fpencode.dll [08/29/2008 05:35 PM | 00,441,728 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fpcmbase.sys [08/29/2008 05:35 PM | 00,442,240 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fpnpbase.sys [08/29/2008 05:35 PM | 00,444,416 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fpcibase.sys [08/29/2008 05:35 PM | 00,454,912 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fxusbase.sys [08/29/2008 05:35 PM | 00,455,296 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fusbbase.sys [08/29/2008 05:35 PM | 00,455,680 | ---- | C] (AVM GmbH) - C:\WINDOWS\System32\dllcache\fus2base.sys [08/29/2008 05:36 PM | 00,017,408 | ---- | C] (Gemplus) - C:\WINDOWS\System32\dllcache\gpr400.sys [08/29/2008 05:36 PM | 00,028,288 | ---- | C] (Gemplus) - C:\WINDOWS\System32\dllcache\grserial.sys [08/29/2008 05:36 PM | 00,068,608 | ---- | C] (Avisioin) - C:\WINDOWS\System32\dllcache\hpgt53tk.dll [08/29/2008 05:36 PM | 00,082,304 | ---- | C] (Gemplus) - C:\WINDOWS\System32\dllcache\grclass.sys [08/29/2008 05:36 PM | 00,083,968 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt21.dll [08/29/2008 05:36 PM | 00,089,088 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt33.dll [08/29/2008 05:36 PM | 00,093,696 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt42.dll [08/29/2008 05:36 PM | 00,101,376 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt34.dll [08/29/2008 05:36 PM | 00,108,827 | ---- | C] () - C:\WINDOWS\System32\dllcache\hanja.lex [08/29/2008 05:36 PM | 00,126,976 | ---- | C] (Hewlett Packard) - C:\WINDOWS\System32\dllcache\hpgt34tk.dll [08/29/2008 05:36 PM | 00,165,888 | ---- | C] () - C:\WINDOWS\System32\dllcache\hpgt53.dll [08/29/2008 05:37 PM | 00,009,216 | ---- | C] (IBM Corporation) - C:\WINDOWS\System32\dllcache\ibmsgnet.dll [08/29/2008 05:37 PM | 00,028,700 | ---- | C] (IBM Corp.) - C:\WINDOWS\System32\dllcache\ibmexmp.sys [08/29/2008 05:37 PM | 00,058,592 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\i740nt5.sys [08/29/2008 05:37 PM | 00,100,936 | ---- | C] (IBM Corporation) - C:\WINDOWS\System32\dllcache\ibmtok.sys [08/29/2008 05:37 PM | 00,109,085 | ---- | C] (IBM Corporation) - C:\WINDOWS\System32\dllcache\ibmtrp.sys [08/29/2008 05:37 PM | 00,353,184 | ---- | C] (Intel Corporation) - C:\WINDOWS\System32\dllcache\i740dnt5.dll [08/29/2008 05:37 PM | 13,463,552 | ---- | C] () - C:\WINDOWS\System32\dllcache\hwxjpn.dll [08/29/2008 05:38 PM | 00,023,552 | ---- | C] (MKNet Corporation) - C:\WINDOWS\System32\dllcache\irmk7.sys [08/29/2008 05:38 PM | 00,038,784 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\io8.sys [08/29/2008 05:38 PM | 00,045,632 | ---- | C] (Interphase (R) Corporation a Windows (R) 2000 DDK Driver Provider) - C:\WINDOWS\System32\dllcache\ip5515.sys [08/29/2008 05:38 PM | 00,059,392 | ---- | C] () - C:\WINDOWS\System32\dllcache\imscinst.exe [08/29/2008 05:38 PM | 00,090,200 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\io8ports.dll [08/29/2008 05:38 PM | 00,134,339 | ---- | C] () - C:\WINDOWS\System32\dllcache\imekr.lex [08/29/2008 05:38 PM | 00,196,665 | ---- | C] () - C:\WINDOWS\System32\dllcache\imjpinst.exe [08/29/2008 05:38 PM | 00,372,824 | ---- | C] (Xircom) - C:\WINDOWS\System32\dllcache\iconf32.dll [08/29/2008 05:39 PM | 00,015,744 | ---- | C] (Litronic Industries) - C:\WINDOWS\System32\dllcache\lit220p.sys [08/29/2008 05:39 PM | 00,019,016 | ---- | C] (Kingston Technology Company ) - C:\WINDOWS\System32\dllcache\ktc111.sys [08/29/2008 05:39 PM | 00,020,573 | ---- | C] (The Linksts Group ) - C:\WINDOWS\System32\dllcache\lne100.sys [08/29/2008 05:39 PM | 00,020,864 | ---- | C] (Logitech Inc.) - C:\WINDOWS\System32\dllcache\lwadihid.sys [08/29/2008 05:39 PM | 00,022,848 | ---- | C] (Logitech Inc.) - C:\WINDOWS\System32\dllcache\lwusbhid.sys [08/29/2008 05:39 PM | 00,025,065 | ---- | C] (D-Link) - C:\WINDOWS\System32\dllcache\lmndis3.sys [08/29/2008 05:39 PM | 00,026,442 | ---- | C] (SMSC) - C:\WINDOWS\System32\dllcache\lanepic5.sys [08/29/2008 05:39 PM | 00,034,688 | ---- | C] (Toshiba Corp.) - C:\WINDOWS\System32\dllcache\lbrtfdc.sys [08/29/2008 05:39 PM | 00,070,730 | ---- | C] (Linksys Group, Inc.) - C:\WINDOWS\System32\dllcache\lne100tx.sys [08/29/2008 05:39 PM | 00,164,586 | ---- | C] (Madge Networks Ltd) - C:\WINDOWS\System32\dllcache\mdgndis5.sys [08/29/2008 05:39 PM | 00,420,992 | ---- | C] (LT) - C:\WINDOWS\System32\dllcache\ltmdmntt.sys [08/29/2008 05:39 PM | 00,576,746 | ---- | C] (LT) - C:\WINDOWS\System32\dllcache\ltmdmntl.sys [08/29/2008 05:39 PM | 00,727,786 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\ltck000c.sys [08/29/2008 05:39 PM | 00,797,500 | ---- | C] (LT) - C:\WINDOWS\System32\dllcache\ltsmt.sys [08/29/2008 05:39 PM | 00,802,683 | ---- | C] (Lucent Technologies) - C:\WINDOWS\System32\dllcache\ltsm.sys [08/29/2008 05:39 PM | 01,158,818 | ---- | C] () - C:\WINDOWS\System32\dllcache\korwbrkr.lex [08/29/2008 05:40 PM | 00,007,168 | ---- | C] (Moxa Technologies Co., Ltd) - C:\WINDOWS\System32\dllcache\mxport.dll [08/29/2008 05:40 PM | 00,017,280 | ---- | C] (American Megatrends Inc.) - C:\WINDOWS\System32\dllcache\mraid35x.sys [08/29/2008 05:40 PM | 00,019,968 | ---- | C] (Macronix International Co., Ltd. ) - C:\WINDOWS\System32\dllcache\mxnic.sys [08/29/2008 05:40 PM | 00,019,968 | ---- | C] (Moxa Technologies Co., Ltd) - C:\WINDOWS\System32\dllcache\mxicfg.dll [08/29/2008 05:40 PM | 00,021,888 | ---- | C] (Moxa Technologies Co., Ltd.) - C:\WINDOWS\System32\dllcache\mxcard.sys [08/29/2008 05:40 PM | 00,052,255 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\n1000nt5.sys [08/29/2008 05:40 PM | 00,075,520 | ---- | C] (Moxa Technologies Co., Ltd.) - C:\WINDOWS\System32\dllcache\mxport.sys [08/29/2008 05:40 PM | 00,103,296 | ---- | C] (Matrox Graphics Inc) - C:\WINDOWS\System32\dllcache\mtxvideo.sys [08/29/2008 05:41 PM | 00,013,664 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128.sys [08/29/2008 05:41 PM | 00,027,936 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i3d.sys [08/29/2008 05:41 PM | 00,028,672 | ---- | C] (National Semiconductor Corporation) - C:\WINDOWS\System32\dllcache\nscirda.sys [08/29/2008 05:41 PM | 00,032,840 | ---- | C] (NETGEAR Corporation.) - C:\WINDOWS\System32\dllcache\ngrpci.sys [08/29/2008 05:41 PM | 00,033,088 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128v2.sys [08/29/2008 05:41 PM | 00,035,392 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128.dll [08/29/2008 05:41 PM | 00,039,264 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\neo20xx.sys [08/29/2008 05:41 PM | 00,051,552 | ---- | C] (Kensington Technology Group) - C:\WINDOWS\System32\dllcache\ntgrip.sys [08/29/2008 05:41 PM | 00,059,104 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i128v2.dll [08/29/2008 05:41 PM | 00,060,480 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\neo20xx.dll
|
|
#41
September 1st, 2008, 09:36 AM
|
|||
|
|||
|
[08/29/2008 05:41 PM | 00,065,278 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\netflx3.sys
[08/29/2008 05:41 PM | 00,087,040 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\nm6wdm.sys [08/29/2008 05:41 PM | 00,091,488 | ---- | C] (Number Nine Visual Technology Corp.) - C:\WINDOWS\System32\dllcache\n9i3disp.dll [08/29/2008 05:41 PM | 00,126,080 | ---- | C] (NeoMagic Corporation) - C:\WINDOWS\System32\dllcache\nm5a2wdm.sys [08/29/2008 05:41 PM | 00,128,000 | ---- | C] (Compaq Computer Corporation) - C:\WINDOWS\System32\dllcache\n100325.sys [08/29/2008 05:41 PM | 00,132,695 | ---- | C] (802.11b) - C:\WINDOWS\System32\dllcache\netwlan5.sys [08/29/2008 05:42 PM | 00,026,153 | ---- | C] (Linksys) - C:\WINDOWS\System32\dllcache\pcmlm56.sys [08/29/2008 05:42 PM | 00,027,209 | ---- | C] (Ositech Communications, Inc.) - C:\WINDOWS\System32\dllcache\otc06x5.sys [08/29/2008 05:42 PM | 00,029,502 | ---- | C] (Marconi Communications, Inc.) - C:\WINDOWS\System32\dllcache\pca200e.sys [08/29/2008 05:42 PM | 00,029,769 | ---- | C] (AMD Inc.) - C:\WINDOWS\System32\dllcache\pcntn5m.sys [08/29/2008 05:42 PM | 00,030,282 | ---- | C] (AMD Inc.) - C:\WINDOWS\System32\dllcache\pcntn5hl.sys [08/29/2008 05:42 PM | 00,030,495 | ---- | C] (Linksys) - C:\WINDOWS\System32\dllcache\pc100nds.sys [08/29/2008 05:42 PM | 00,043,689 | ---- | C] (Ositech Communications, Inc.) - C:\WINDOWS\System32\dllcache\otceth5.sys [08/29/2008 05:42 PM | 00,054,186 | ---- | C] (Ositech Communications, Inc.) - C:\WINDOWS\System32\dllcache\otcsercb.sys [08/29/2008 05:42 PM | 00,054,528 | ---- | C] (Yamaha Corp.) - C:\WINDOWS\System32\dllcache\opl3sax.sys [08/29/2008 05:43 PM | 00,016,128 | ---- | C] (SCM Microsystems, Inc.) - C:\WINDOWS\System32\dllcache\pscr.sys [08/29/2008 05:43 PM | 00,027,904 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm2.sys [08/29/2008 05:43 PM | 00,028,032 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm3.sys [08/29/2008 05:43 PM | 00,035,328 | ---- | C] (AMD Inc.) - C:\WINDOWS\System32\dllcache\pcntpci5.sys [08/29/2008 05:43 PM | 00,086,016 | ---- | C] (PCtel, Inc.) - C:\WINDOWS\System32\dllcache\pctspk.exe [08/29/2008 05:43 PM | 00,128,286 | ---- | C] (PCTEL, INC.) - C:\WINDOWS\System32\dllcache\ptserli.sys [08/29/2008 05:43 PM | 00,169,984 | ---- | C] (Cisco Systems) - C:\WINDOWS\System32\dllcache\pcx500.sys [08/29/2008 05:43 PM | 00,175,104 | ---- | C] () - C:\WINDOWS\System32\dllcache\pintlcsa.dll [08/29/2008 05:43 PM | 00,211,712 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm2dll.dll [08/29/2008 05:43 PM | 00,259,328 | ---- | C] (Microsoft Corp., 3Dlabs Inc. Ltd.) - C:\WINDOWS\System32\dllcache\perm3dd.dll [08/29/2008 05:44 PM | 00,009,216 | ---- | C] (Brother Industries, Ltd.) - C:\WINDOWS\System32\dllcache\rsmgrstr.dll [08/29/2008 05:44 PM | 00,019,017 | ---- | C] (Realtek Semiconductor Corporation) - C:\WINDOWS\System32\dllcache\rtl8029.sys [08/29/2008 05:44 PM | 00,037,563 | ---- | C] (RadioLAN) - C:\WINDOWS\System32\dllcache\rlnet5.sys [08/29/2008 05:44 PM | 00,079,104 | ---- | C] (Comtrol Corporation) - C:\WINDOWS\System32\dllcache\rocket.sys [08/29/2008 05:44 PM | 00,086,097 | ---- | C] (Xircom) - C:\WINDOWS\System32\dllcache\reslog32.dll [08/29/2008 05:44 PM | 00,112,574 | ---- | C] (PCTEL, INC.) - C:\WINDOWS\System32\dllcache\ptserlp.sys [08/29/2008 05:44 PM | 00,130,942 | ---- | C] (PCTEL, INC.) - C:\WINDOWS\System32\dllcache\ptserlv.sys [08/29/2008 05:44 PM | 00,714,762 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\r2mdmkxx.sys [08/29/2008 05:44 PM | 00,899,146 | ---- | C] (Xircom, Inc.) - C:\WINDOWS\System32\dllcache\r2mdkxga.sys [08/29/2008 05:45 PM | 00,023,936 | ---- | C] (OMNIKEY AG) - C:\WINDOWS\System32\dllcache\sccmn50m.sys [08/29/2008 05:45 PM | 00,023,936 | ---- | C] (OMNIKEY AG) - C:\WINDOWS\System32\dllcache\sccmusbm.sys [08/29/2008 05:45 PM | 00,024,576 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rw430ext.dll [08/29/2008 05:45 PM | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rw330ext.dll [08/29/2008 05:45 PM | 00,026,624 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rw450ext.dll [08/29/2008 05:45 PM | 00,041,216 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mt3d.sys [08/29/2008 05:45 PM | 00,061,504 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav3dm.sys [08/29/2008 05:45 PM | 00,062,496 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mtrio.dll [08/29/2008 05:45 PM | 00,077,824 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav4m.sys [08/29/2008 05:45 PM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia001.dll [08/29/2008 05:45 PM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia330.dll [08/29/2008 05:45 PM | 00,079,872 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia430.dll [08/29/2008 05:45 PM | 00,082,432 | ---- | C] (Ricoh Co., Ltd.) - C:\WINDOWS\System32\dllcache\rwia450.dll [08/29/2008 05:45 PM | 00,166,720 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3m.sys [08/29/2008 05:45 PM | 00,179,264 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav3d.dll [08/29/2008 05:45 PM | 00,182,272 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mt3d.dll [08/29/2008 05:45 PM | 00,198,400 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3sav4.dll [08/29/2008 05:45 PM | 00,210,496 | ---- | C] (S3 Incorporated) - C:\WINDOWS\System32\dllcache\s3mvirge.dll [08/29/2008 05:45 PM | 00,495,616 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\sblfx.dll [08/29/2008 05:46 PM | 00,017,280 | ---- | C] (SCM Microsystems) - C:\WINDOWS\System32\dllcache\scr111.sys [08/29/2008 05:46 PM | 00,018,400 | ---- | C] (Micro Systemation) - C:\WINDOWS\System32\dllcache\sgsmld.sys [08/29/2008 05:46 PM | 00,032,768 | ---- | C] (SiS Corporation) - C:\WINDOWS\System32\dllcache\sisnic.sys [08/29/2008 05:46 PM | 00,036,480 | ---- | C] (Creative Technology Ltd.) - C:\WINDOWS\System32\dllcache\sfmanm.sys [08/29/2008 05:46 PM | 00,098,080 | ---- | C] (Trident Microsystems Inc.) - C:\WINDOWS\System32\dllcache\sgiulnt5.sys [08/29/2008 05:46 PM | 00,161,568 | ---- | C] (Micro Systemation) - C:\WINDOWS\System32\dllcache\sgsmusb.sys [08/29/2008 05:46 PM | 00,386,560 | ---- | C] (Trident Microsystems Inc.) - C:\WINDOWS\System32\dllcache\sgiul50.dll [08/29/2008 05:47 PM | 00,024,576 | ---- | C] (SMC Networks, Inc.) - C:\WINDOWS\System32\dllcache\smc8000n.sys [08/29/2008 05:47 PM | 00,025,034 | ---- | C] (SMC Networks, Inc.) - C:\WINDOWS\System32\dllcache\smcpwr2n.sys [08/29/2008 05:47 PM | 00,035,913 | ---- | C] (SMC) - C:\WINDOWS\System32\dllcache\smcirda.sys [08/29/2008 05:47 PM | 00,058,368 | ---- | C] (Silicon Motion Inc.) - C:\WINDOWS\System32\dllcache\smiminib.sys [08/29/2008 05:47 PM | 00,063,547 | ---- | C] (Symbol Technologies) - C:\WINDOWS\System32\dllcache\sla30nd5.sys [08/29/2008 05:47 PM | 00,091,294 | ---- | C] (SysKonnect, a business unit of Schneider & Koch & Co. Datensysteme GmbH.) - C:\WINDOWS\System32\dllcache\skfpwin.sys [08/29/2008 05:47 PM | 00,094,698 | ---- | C] (SysKonnect GmbH.) - C:\WINDOWS\System32\dllcache\sk98xwin.sys [08/29/2008 05:47 PM | 00,147,200 | ---- | C] (Silicon Motion Inc.) - C:\WINDOWS\System32\dllcache\smidispb.dll [08/29/2008 05:48 PM | 00,016,896 | ---- | C] (SCM Microsystems, Inc.) - C:\WINDOWS\System32\dllcache\stcusb.sys [08/29/2008 05:48 PM | 00,019,072 | ---- | C] (Adaptec, Inc.) - C:\WINDOWS\System32\dllcache\sparrow.sys [08/29/2008 05:48 PM | 00,024,660 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\spxupchk.dll [08/29/2008 05:48 PM | 00,048,736 | ---- | C] (3Com) - C:\WINDOWS\System32\dllcache\srwlnd5.sys [08/29/2008 05:48 PM | 00,053,248 | ---- | C] (Stallion Technologies) - C:\WINDOWS\System32\dllcache\stlncoin.dll [08/29/2008 05:48 PM | 00,061,824 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\speed.sys [08/29/2008 05:48 PM | 00,106,584 | ---- | C] (Perle Systems Ltd.) - C:\WINDOWS\System32\dllcache\spdports.dll [08/29/2008 05:48 PM | 00,155,648 | ---- | C] (Stallion Technologies) - C:\WINDOWS\System32\dllcache\stlnprop.dll [08/29/2008 05:48 PM | 00,285,760 | ---- | C] (Stallion Technologies) - C:\WINDOWS\System32\dllcache\stlnata.sys [08/29/2008 05:49 PM | 00,094,293 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\sxports.dll [08/29/2008 05:49 PM | 00,103,936 | ---- | C] (Perle Systems Ltd. ) - C:\WINDOWS\System32\dllcache\sx.sys [08/31/2008 01:39 AM | 00,085,969 | ---- | C] (GMER) - C:\WINDOWS\System32\drivers\gmer.sys [2 C:\WINDOWS\*.tmp files] [08/29/2008 04:45 PM | ---D | C] - C:\WINDOWS\5888428E699C4E71BF7194EE06B497DA.TMP [08/31/2008 01:39 AM | 00,000,080 | ---- | C] () - C:\WINDOWS\gmer_uninstall.cmd [08/31/2008 01:39 AM | 00,000,250 | ---- | C] () - C:\WINDOWS\gmer.ini [08/31/2008 01:39 AM | 00,811,008 | ---- | C] () - C:\WINDOWS\gmer.exe [08/31/2008 01:39 AM | 00,884,736 | ---- | C] () - C:\WINDOWS\gmer.dll [08/31/2008 04:18 AM | ---D | C] - C:\WINDOWS\ERUNT [08/28/2008 08:18 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Avira [08/31/2008 10:21 AM | ---D | C] - C:\Documents and Settings\All Users\Application Data\Malwarebytes [08/28/2008 08:18 AM | 00,001,862 | ---- | C] () - C:\Documents and Settings\All Users\Desktop\AntiVir PE Classic.lnk [08/28/2008 08:18 AM | ---D | C] - C:\Program Files\Avira [08/31/2008 10:21 AM | ---D | C] - C:\Program Files\Malwarebytes' Anti-Malware [08/31/2008 12:03 PM | ---D | C] - C:\Program Files\FlightGear ========== Files - Modified Within 30 days ========== [08/31/2008 02:01 AM | 00,066,048 | ---- | M] () - C:\mbr.exe [08/31/2008 04:22 AM | 00,000,686 | ---- | M] () - C:\WINDOWS\System32\drivers\etc\HOSTS [08/31/2008 01:39 AM | 00,085,969 | ---- | M] (GMER) - C:\WINDOWS\System32\drivers\gmer.sys [09/01/2008 01:57 AM | 00,137,472 | ---- | M] () - C:\WINDOWS\System32\drivers\PnkBstrK.sys [3 C:\WINDOWS\System32\*.tmp files] [09/01/2008 01:57 AM | 00,111,928 | ---- | M] () - C:\WINDOWS\System32\PnkBstrB.exe [09/01/2008 04:32 AM | 00,001,158 | ---- | M] () - C:\WINDOWS\System32\wpa.dbl [09/01/2008 04:30 AM | 00,000,246 | ---- | M] () - C:\WINDOWS\System\hpsysdrv.dat [2 C:\WINDOWS\*.tmp files] [08/11/2008 06:09 PM | 00,000,105 | ---- | M] () - C:\WINDOWS\muveeapp.INI [08/13/2008 03:02 AM | 00,001,374 | ---- | M] () - C:\WINDOWS\imsins.BAK [08/28/2008 08:19 AM | 00,001,031 | ---- | M] () - C:\WINDOWS\win.ini [08/31/2008 01:39 AM | 00,000,080 | ---- | M] () - C:\WINDOWS\gmer_uninstall.cmd [08/31/2008 01:39 AM | 00,884,736 | ---- | M] () - C:\WINDOWS\gmer.dll [08/31/2008 03:01 AM | 00,000,250 | ---- | M] () - C:\WINDOWS\gmer.ini [09/01/2008 04:31 AM | 00,002,048 | --S- | M] () - C:\WINDOWS\bootstat.dat [09/01/2008 04:31 AM | 00,000,006 | -H-- | M] () - C:\WINDOWS\tasks\SA.DAT [09/01/2008 04:31 AM | 00,000,492 | ---- | M] () - C:\WINDOWS\tasks\1-Click Maintenance.job [08/28/2008 08:18 AM | 00,001,862 | ---- | M] () - C:\Documents and Settings\All Users\Desktop\AntiVir PE Classic.lnk < End of report >
|
|
#42
September 1st, 2008, 11:44 AM
|
||||
|
||||
|
Go to Start > Run and type:
cmd.exe and click ok. Copy and paste the below command after the prompt and hit Enter. Code:
del C:\WINDOWS\*.tmp Next please go here and run the online scanner (disable your antivirus program first). Save the report and post it here please. Also tell me what problems you still have (if any).
|
|
#43
September 1st, 2008, 11:52 PM
|
|||
|
|||
|
Thanks again AnnMarie, Here is the Kaskpersky Scan. Everything seems to be running smoothly and I haven't had any problems as far as Avira detecting anything. My only other concern is this TuneUp utilities I cannot seem to get off of my computer. I keep getting an error when I try to remove this from the add/remove programs list. Error 1722 saying something about the windows installer, not sure if this is malware related.
----------------------------------------------------------------------- KASPERSKY ONLINE SCANNER 7 REPORT Monday, September 1, 2008 Operating System: Microsoft Windows XP Professional Service Pack 2 (build 2600) Kaspersky Online Scanner 7 version: 7.0.25.0 Program database last update: Monday, September 01, 2008 19:05:34 Records in database: 1174733 -------------------------------------------------------------------------------- Scan settings: Scan using the following database: extended Scan archives: yes Scan mail databases: yes Scan area - My Computer: C:\ D:\ E:\ F:\ G:\ H:\ I:\ J:\ Scan statistics: Files scanned: 89493 Threat name: 3 Infected objects: 3 Suspicious objects: 0 Duration of the scan: 02:25:34 File name / Threat name / Threats count C:\Documents and Settings\All Users\test.exe Infected: Hoax.Win32.Renos.vava 1 C:\Program Files\Online Services\AOL\United States\AOL90\comps\toolbar\toolbr.EXE Infected: not-a-virus:AdWare.Win32.SearchIt.t 1 C:\WINDOWS\system32\rlvknlg.exe Infected: not-a-virus:AdWare.Win32.RK.k 1 The selected area was scanned.
|
|
#44
September 3rd, 2008, 09:07 AM
|
||||
|
||||
|
Hi PossibleOne. Your Kaspersky log only identifies minor league malware. Go ahead and delete the below file in bold.
C:\WINDOWS\system32\rlvknlg.exe I wouldnt worry about the AOL file. As far as TuneUp is concerned, it's legitimate software and the accepted fix is to reinstall the software. Reboot and now see if you can uninstall it.
|
|
#45
September 3rd, 2008, 01:14 PM
|
|||
|
|||
|
Alright done and done...
Thanks for your help...its really appreciated. The thing with TuneUp well...thats just it it won't let me uninstall it, and it won't let me reinstall it. When the program was on here, it said it needed a dll file to run. When it was deleted it said that the Windows installer is messed up and to contact the vendor. But the installer works just fine for any other program...But if theres nothing I can do I can just leave it be. Thanks for your help again...take it easy.
|
|
| Bookmarks |
«
Previous Topic
|
Next Topic
»
|
|
Similar Topics
|
||||
| Topic | Topic Starter | Forum | Replies | Last Post |
| How to De-Crypt Infected Files from Virus | leachim | Malware Removal | 3 | May 31st, 2014 11:04 PM |
| Infected with kd Crypt worm | rainie | Malware Removal | 18 | February 15th, 2009 01:33 AM |
| Trojan.Win32.crypt.o | blakeh7787 | Malware Removal | 44 | July 26th, 2006 04:32 AM |
| Malware? Virus? Trojan? (HJT, ewido logs inside) | AlphaShadow | Malware Removal | 4 | June 8th, 2006 02:59 AM |
| Searchem.net Problem (popups... logs inside) | ShhBeqQuiet9772 | Malware Removal | 3 | May 12th, 2005 01:11 PM |
All times are GMT +1. The time now is 11:24 PM.